Thread: Failed rpm package signature checks with reposync

Hi,

Just saw this email. Does the problem still persist?

Regards, Devrim

On Wed, 2018-04-25 at 11:22 -0400, Bruno Lavoie wrote:
> Hello,
>
> Don't know if I should post it to hackers list, by I'll try here first.
>
> For many reasons, we're currently deploying a mirror for postgresql rpm
> packages. And when we run reposync (yum mirroring tool) with --gpgcheck
> switch some packages are removed due to failed signature check.
>
> Command and output:
> # reposync --repoid=pgdg10 --gpgcheck
> --download_path=/var/www/html/centos7/repos/postgresql/
>
> Package mysql_fdw_10-2.3.0-3.rhel7.x86_64.rpm is not signed 0% [
>                                      ]  0.0 B/s |    0 B  --:--:-- ETA
> (1/4): mysql_fdw_10-2.3.0-3.rhel7.x86_64.rpm
>                                                 |  30 kB  00:00:00
> (2/4): mysql_fdw_10-debuginfo-2.3.0-3.rhel7.x86_64.rpm
>                                                 | 117 kB  00:00:00
> (3/4): osm2pgrouting_10-2.3.3-1.rhel7.x86_64.rpm
>                                                 | 134 kB  00:00:00
> (4/4): osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64.rpm
>                                                 |  17 kB  00:00:00
> Removing mysql_fdw_10-2.3.0-3.rhel7.x86_64.rpm due to failed signature
> check.
> Removing mysql_fdw_10-debuginfo-2.3.0-3.rhel7.x86_64.rpm due to failed
> signature check.
> Removing osm2pgrouting_10-2.3.3-1.rhel7.x86_64.rpm due to failed signature
> check.
> Removing osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64.rpm due to failed
> signature check.
>
> Here is the used .repo file:
> [pgdg10]
> name=PostgreSQL 10 - RHEL 7 - x86_64
> baseurl=
> https://download.postgresql.org/pub/repos/yum/10/redhat/rhel-7-x86_64
> enabled=0
> gpgcheck=1
> gpgkey=https://download.postgresql.org/pub/repos/yum/RPM-GPG-KEY-PGDG-10
>
>
> Any reasons for this?
>
> Thanks
> Bruno Lavoie

--
Devrim Gündüz
EnterpriseDB: https://www.enterprisedb.com
PostgreSQL Consultant, Red Hat Certified Engineer
Twitter: @DevrimGunduz , @DevrimGunduzTR

Hi Bruno,

On Mon, 2018-06-18 at 08:31 -0400, Bruno Lavoie wrote:
>
> Sorry, me too just saw your email...
>
> Issue still persists:
>
> # reposync --repoid=pgdg10 --gpgcheck
> --download_path=/var/www/html/centos7/repos/postgresql/
> Repository 'base' is missing name in configuration, using id
> Removing mysql_fdw_10-2.3.0-3.rhel7.x86_64.rpm due to failed signature
> check.
> Removing mysql_fdw_10-debuginfo-2.3.0-3.rhel7.x86_64.rpm due to failed
> signature check.
> Removing osm2pgrouting_10-2.3.3-1.rhel7.x86_64.rpm due to failed signature
> check.
> Removing osm2pgrouting_10-debuginfo-2.3.3-1.rhel7.x86_64.rpm due to failed
> signature check.

Ok, verified on my end as well. Fixed this, and pushed them to the repo. They
will be available 1 hour later. Can you please try again then?

Regards,
--
Devrim Gündüz
EnterpriseDB: https://www.enterprisedb.com
PostgreSQL Consultant, Red Hat Certified Engineer
Twitter: @DevrimGunduz , @DevrimGunduzTR

The problem appeared today:

reposync -g -l -n --repoid=pgdg10 --download_path=repos
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
 * base: mirror.as29550.net
 * extras: centos.serverspace.co.uk
 * updates: mirror.cwcs.co.uk
warning:
/repo/centos7/repos/pgdg10/bgw_replstatus10-1.0.1-1.rhel7.x86_64.rpm: Header
V4 DSA/SHA1 Signature, key ID 442df0f8: NOKEY                                              
]  0.0 B/s |    0 B  --:--:-- ETA Public key for
bgw_replstatus10-1.0.1-1.rhel7.x86_64.rpm is not installed
(1/139): bgw_replstatus10-1.0.1-1.rhel7.x86_64.rpm
...
(139/139): wal2json10-2.2-1.rhel7.x86_64.rpm
                                                                   
 
|  22 kB  00:00:00
Removing amcheck_next10-1.5-1.rhel7.x86_64.rpm, due to missing GPG key.
...

#######

rpm -qa|grep pgdg
pgdg-redhat-repo-42.0-11.noarch




--
Sent from: https://www.postgresql-archive.org/PostgreSQL-general-f1843780.html