rpmsign with a non-default-keyring didn't work

Daniel Spannbauer ds at marco.de
Mon Nov 9 15:25:37 UTC 2020


Hello,


I have try to sign packages with a key from a no-default-keystore, which
is temporarily created.

Bit I can't find the secret key, but it is definitly there.

I created my .rpmmacros with:

-----------------------------------------------------------------------------------------------------------------

%_gpg_name 5F8C177886634769
%_gpg_path /tmp/tmp.ombe7lRySW
%__gpg_sign_cmd %{__gpg} \
    --yes --no-default-keyring --no-armor --batch \
    --passphrase-file /mnt/home/sw/.gpg-passphrase  --pinentry-mode
loopback \
    %{?_gpg_sign_cmd_extra_args:%{_gpg_sign_cmd_extra_args}} \
    %{?_gpg_digest_algo:--digest-algo %{_gpg_digest_algo}} \
    --no-secmem-warning --keyring=/tmp/tmp.ombe7lRySW/pubring.gpg \
    -u %{_gpg_name} -sbo %{__signature_filename} %{__plaintext_filename}

-----------------------------------------------------------------------------------------------------------------

A "gpg --no-default-keyring -keyring /tmp/tmp.ombe7lRySW/pubring.gpg
--list-secret-keys" list the key:

-----------------------------------------------------------------------------------------------------------------

/tmp/tmp.ombe7lRySW/pubring.gpg
-------------------------------
sec   rsa2048 2017-07-17 [SC] [expires: 2022-07-16]
      8FCDB9E00762462B64BBC3AB5F8C177886634769
uid           [ unknown] marco GmbH <sw at marco.de>
ssb   rsa2048 2017-07-17 [E] [expires: 2022-07-16]

-----------------------------------------------------------------------------------------------------------------

But when I call rpmsign:

-----------------------------------------------------------------------------------------------------------------

ds at morbo rpmsign --addsign xxx-release-master.suse148-beta.x86_64.rpm
xxx-release-master.suse148-beta.x86_64.rpm:
gpg: skipped "5F8C177886634769": No secret key
gpg: signing failed: No secret key
-----------------------------------------------------------------------------------------------------------------

Any idea what I'm doing wrong? or is it a bug from rpmsign?


Regards


Daniel


-- 
Daniel Spannbauer                         Systemadministration
marco Systemanalyse und Entwicklung GmbH  Tel   +49 8333 9233-27 Fax -11
Rechbergstr. 4-6, D 87727 Babenhausen     Mobil +49 171 4033220
http://www.marco.de/                      Email ds at marco.de
Geschäftsführer Martin Reuter             HRB 171775 Amtsgericht München



More information about the Rpm-list mailing list