Bug 396370

Summary: opensuseupdater-kde + PackageKit: Repository Signature Required
Product: [openSUSE] openSUSE 11.0 Reporter: Martin Vidner <mvidner>
Component: libzyppAssignee: Scott Reeves <sreeves>
Status: RESOLVED DUPLICATE QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: tgoettlicher
Version: RC 1   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard: packagekit_devel
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Attachments: pkg-reposig.png
pkd.log

Description Martin Vidner 2008-06-02 13:28:54 UTC 
Created attachment 219513 [details]
pkg-reposig.png

When the applet checks for updates, I get the attached pop-up, twice at once. Answering Yes makes it ask again, and again. Answering No appears to work as designed: the icon says Signature verification... failed.

It can also be seen in the verbose output of packagekitd:
TI:15:27:32     TH:0x810fb98    FI:pk-backend.c FN:pk_backend_repo_signature_required,1152
 - emit repo-signature-required dummy;0.0.1;i386;data, factory-non-oss, http://download.opensuse.org/distribution/SL-Factory-non-oss/inst-source-extra/, SuSE Package Signing Key <build@suse.de>, A84EDAE89C800ACA, 79C179B2E1C820C1890F9994A84EDAE89C800ACA, Mon Oct  9 01:00:00 2000, 0
TI:15:27:32     TH:0x810fb98    FI:pk-transaction.c     FN:pk_transaction_repo_signature_required_cb,622
 - emitting repo_signature_required dummy;0.0.1;i386;data, factory-non-oss, http://download.opensuse.org/distribution/SL-Factory-non-oss/inst-source-extra/, SuSE Package Signing Key <build@suse.de>, A84EDAE89C800ACA, 79C179B2E1C820C1890F9994A84EDAE89C800ACA, Mon Oct  9 01:00:00 2000, gpg
TI:15:27:32     TH:0x810fb98    FI:pk-backend.c FN:pk_backend_error_code,1291
 - emit error-code gpg-failure, Signature verification for Repository factory-non-oss failed
TI:15:27:32     TH:0x810fb98    FI:pk-transaction.c     FN:pk_transaction_error_code_cb,395
 - emitting error-code gpg-failure, 'Signature verification for Repository factory-non-oss failed'                                                                                

See how PKd immediately logs failure and seems not to wait for a response from the applet.
Also notice how the ID differs from the ID in rpmdb, and the date is also a little off:
$ rpm -qi gpg-pubkey-9c800aca-40d8063e | gpg
pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing Key <build@suse.de>
sub  2048g/8495160C 2000-10-19 [expires: 2008-06-21]
$ rpm -qi gpg-pubkey-9c800aca-481f343a | gpg
pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing Key <build@suse.de>
sub  2048g/8495160C 2000-10-19 [expires: 2010-05-05]

This may be related to bug 393160 (autobuild updated a key to extend expiration time but kept its ID), but previously I was seeing the issue with the Packman key.

PackageKit-0.2.1-12
kde4-opensuse-updater-0.7.17-3
libzypp-4.25.0-5
Comment 1 Martin Vidner 2008-06-02 16:29:41 UTC 
Created attachment 219566 [details]
pkd.log

Here is the packagekitd log.

Watching DBus traffic, I see Error org.freedesktop.PackageKit.Transaction.RefusedByPolicy: 'org.freedesktop.packagekit.install-signature auth_admin'. At that point the applet should ask me for root password, I think.
Comment 2 JP Rosevear 2008-06-09 05:00:29 UTC 
If its KDE, its a dupe of bug 389415
Comment 3 Martin Vidner 2008-06-09 07:05:52 UTC 
It is, thanks.

*** This bug has been marked as a duplicate of bug 389415 ***