Issue #673
closed
signed pulp RPMs do not validate as signed on RHEL5
Description
Description of problem:
RHEL 5 systems are unable to verify the GPG signature of the 2.6 pulp RPMs. This does not affect RHEL6 or newer, or Fedora.
Version-Release number of selected component (if applicable): 2.6.0 beta 5
How reproducible: every time
Steps to Reproduce:
1. attempt to install client bits on rhel 5
Actual results: rpm signature errors. running "rpm -Kvv" will also show that the RPM's signature is invalid.
Expected results: no signature errors
Additional info:
There are a few bugs in RHEL 5's rpm signature checks that we need to work around. We need to create a new 2048 bit "signing-only" key with no subkeys, and also add the following to .rpmmacros when signing:
_gpg_sign_cmd %{_gpg}\
gpg --force-v3-sigs --digest-algo=sha1 --batch --no-verbose --no-armor \
--passphrase-fd 3 --no-secmem-warning -u "{_gpg_name}" \
-sbo %{__signature_filename} %{__plaintext_filename}
+ This bug was cloned from Bugzilla Bug #1184262 +
.
Merge pull request #673 from jortel/fix-unit-tests
Ensure that logging is shutdown on test teardown.