[CentOS] Building packages using RPMBUILD

Sun Dec 19 12:29:37 UTC 2010
Keith Roberts <keith at karsites.net>

On Sat, 18 Dec 2010, R P Herrold wrote:

> To: CentOS mailing list <centos at centos.org>
> From: R P Herrold <herrold at centos.org>
> Subject: [CentOS] Building packages using RPMBUILD
> On Sat, 18 Dec 2010, Keith Roberts wrote:
>>> gpg --import-key yourkey.asc
>> Thanks for your reply Tim. It still does not work though.
>> [rpmbuilder at karsites qps]$ gpg --import
>> Fedora6-GPG-public-key.asc
>> [rpmbuilder at karsites qps]$ rpm -K qps-
>> qps- (SHA1) DSA sha1 md5 (GPG) NOT OK
>> (MISSING KEYS: GPG#1ac70ce6)
> Different issue in play here -- rpm (and also perhaps rpmbuild
> if a --rebuild is used) needs the key in the rpm database to
> consult
> Probably as root you want:
> 	# rpm --import Fedora6-GPG-public-key.asc
> and then that objection will be silenced

Thanks Russ.

That has cured the problem.

Do I need the .gpg subdirectory in my rpmbuilder homedir?

Also, is there an option to rpm and rpmbuild that would 
allow me to do all the verification checks, except for the 
package signer's pub key check?



In theory, theory and practice are the same;
in practice they are not.

This email was sent from my laptop with Centos 5.5