rpm --nosignature reversed meaning

Elan Ruusamäe glen at pld-linux.org
Tue Aug 30 12:44:31 CEST 2016

On 30.08.2016 12:17, Tomasz Pala wrote:
> Apparently noone here uses this...
> http://ftp.th.pld-linux.org/dists/th/PLD-3.0-Th-GPG-key.asc
it is used to sign all packages in th...
> ~: rpm -qp --nosignature  keepassx-2.0.2-2.x86_64.rpm	(reversed meaning in query mode bug)
> error: keepassx-2.0.2-2.x86_64.rpm: Header V4 DSA signature: BAD, key ID e4f1bc2d
> error: reading keepassx-2.0.2-2.x86_64.rpm manifest, non-printable characters found
> ~: rpm -K keepassx-2.0.2-2.x86_64.rpm
> keepassx-2.0.2-2.x86_64.rpm: (SHA1) DSA sha1 md5 NOT_OK

poldek seems to validate the signature ok. i have it enabled as it's 
default option.
> ~: rpm -qa gpg-pubkey\*
> gpg-pubkey-e4f1bc2d-47b351f0
> ~: diff PLD-3.0-Th-GPG-key.asc /etc/pki/rpm-gpg/PLD-3.0-Th-GPG-key.asc
> (BTW this key is not automatically imported to rpm database).

yes, you need to rpm --import /etc/pki/rpm-gpg/PLD-3.0-Th-GPG-key.asc 
when you first install your pld node.


More information about the pld-devel-en mailing list