[packman] RPM problem with packet signatures (not zypper and repomd.xml!)

Leon Freitag leon at links2linux.de
Wed Mar 23 19:20:40 CET 2011


> Hm maybe. But I am sorry I cannot check this due to the lack of a
> 11.1 Installation, anyone else?
I just remembered I had the same issue back in the days when every packager 
used his own key to manually sign the packages. I had a 4096 bit key, and I 
had to generate a new 1024 bit key to work around the problem. But this was 
back in 2006, when 10.1 with the buggy package management was out, and the 
error was slightly different, too. See here:

http://lists.links2linux.de/pipermail/packman/2006-April/002406.html

However the bug might have been unaddressed in rpm until the advent of rpm 
4.7.1; opensuse 11.1 has rpm 4.4.x

https://bugzilla.redhat.com/show_bug.cgi?id=436812

> Maybe we can offer a backported rpm version from 11.2 for 11.1?

Hopefully it won't break anything. Additionally, users would have to either 
install it off the repository or disable signature checks (since the package 
would be signed with a bad key either)

Maybe signing the 11.1 packages with a separate 1024 bit signing key could be 
an alternative, or is it too much of a hassle? 

Leon

 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.links2linux.de/pipermail/packman/attachments/20110323/5131ab28/attachment.sig>


More information about the Packman mailing list