[packman] Header V4 RSA/SHA1 signature: BAD, key ID
Marc Schiffbauer
marc at schiffbauer.net
Tue Sep 13 12:27:41 CEST 2011
* Michael Kershaw schrieb am 13.09.11 um 05:47 Uhr:
> Well, first I've done this numerous times on my 64bit sled11 boxes.
> Simply just added the repo via zypper, and then performed the
> installation "zypper in vlc" and allowed all of it's dependencies go
> to town as you would expect.
>
> Now, went to do the same thing on our 32bit sled11 systems. Repo
> added fine. Went to install vlc, recognizes all dependencies,
> AAAANNNNNND:
>
> # zypper in vlc
[...]
> Retrieving: libvpx0-0.9.7-1.pm.7.1.i586.rpm [done]
> Installing: libvpx0-0.9.7-1.pm.7.1 [error]
> Installation of libvpx0-0.9.7-1.pm.7.1 failed:
> (with --nodeps --force) Error: Subprocess failed. Error: RPM failed:
> error: /var/cache/zypp/packages/packman/Essentials/i586/libvpx0-0.9.7-1.pm.7.1.i586.rpm:
> Header V4 RSA/SHA1 signature: abd1afb
> error: /var/cache/zypp/packages/packman/Essentials/i586/libvpx0-0.9.7-1.pm.7.1.i586.rpm
> cannot be installed
I now have checked the signatures of all 27861 packages currently in
the repository. All packages are fine (key and sig) here so I assume it must be
something wrong with rpm itself.
rpm --checksig sle_11_sp1/Essentials/i586/libvpx0-0.9.7-1.pm.7.1.i586.rpm
sle_11_sp1/Essentials/i586/libvpx0-0.9.7-1.pm.7.1.i586.rpm: rsa sha1 (md5) pgp md5 OK
rpm definitely has bugs in the signature handling code. For example
at the moment it is not possible to resign packages with the rpm
version in factory.
Anyone else here seeing this problem on SLED11 32 bit?
-Marc
--
8AAC 5F46 83B4 DB70 8317 3723 296C 6CCA 35A6 4134
More information about the Packman
mailing list