396370 – opensuseupdater-kde + PackageKit: Repository Signature Required

Bug 396370 - opensuseupdater-kde + PackageKit: Repository Signature Required

Summary: opensuseupdater-kde + PackageKit: Repository Signature Required

Status:	RESOLVED DUPLICATE of bug 389415

Alias:	None

Product:	openSUSE 11.0
Classification:	openSUSE
Component:	libzypp (show other bugs)
Version:	RC 1
Hardware:	Other Other

Priority:	P5 - None Severity: Normal (vote)
Target Milestone:	---
Assignee:	Scott Reeves
QA Contact:	E-mail List

URL:
Whiteboard:	packagekit_devel
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2008-06-02 13:28 UTC by Martin Vidner
Modified:	2008-06-09 07:05 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
pkg-reposig.png (34.31 KB, image/png) 2008-06-02 13:28 UTC, Martin Vidner	Details
pkd.log (48.18 KB, text/plain) 2008-06-02 16:29 UTC, Martin Vidner	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Martin Vidner 2008-06-02 13:28:54 UTC

Created attachment 219513 [details]
pkg-reposig.png

When the applet checks for updates, I get the attached pop-up, twice at once. Answering Yes makes it ask again, and again. Answering No appears to work as designed: the icon says Signature verification... failed.

It can also be seen in the verbose output of packagekitd:
TI:15:27:32     TH:0x810fb98    FI:pk-backend.c FN:pk_backend_repo_signature_required,1152
 - emit repo-signature-required dummy;0.0.1;i386;data, factory-non-oss, http://download.opensuse.org/distribution/SL-Factory-non-oss/inst-source-extra/, SuSE Package Signing Key <build@suse.de>, A84EDAE89C800ACA, 79C179B2E1C820C1890F9994A84EDAE89C800ACA, Mon Oct  9 01:00:00 2000, 0
TI:15:27:32     TH:0x810fb98    FI:pk-transaction.c     FN:pk_transaction_repo_signature_required_cb,622
 - emitting repo_signature_required dummy;0.0.1;i386;data, factory-non-oss, http://download.opensuse.org/distribution/SL-Factory-non-oss/inst-source-extra/, SuSE Package Signing Key <build@suse.de>, A84EDAE89C800ACA, 79C179B2E1C820C1890F9994A84EDAE89C800ACA, Mon Oct  9 01:00:00 2000, gpg
TI:15:27:32     TH:0x810fb98    FI:pk-backend.c FN:pk_backend_error_code,1291
 - emit error-code gpg-failure, Signature verification for Repository factory-non-oss failed
TI:15:27:32     TH:0x810fb98    FI:pk-transaction.c     FN:pk_transaction_error_code_cb,395
 - emitting error-code gpg-failure, 'Signature verification for Repository factory-non-oss failed'                                                                                

See how PKd immediately logs failure and seems not to wait for a response from the applet.
Also notice how the ID differs from the ID in rpmdb, and the date is also a little off:
$ rpm -qi gpg-pubkey-9c800aca-40d8063e | gpg
pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing Key <build@suse.de>
sub  2048g/8495160C 2000-10-19 [expires: 2008-06-21]
$ rpm -qi gpg-pubkey-9c800aca-481f343a | gpg
pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing Key <build@suse.de>
sub  2048g/8495160C 2000-10-19 [expires: 2010-05-05]

This may be related to bug 393160 (autobuild updated a key to extend expiration time but kept its ID), but previously I was seeing the issue with the Packman key.

PackageKit-0.2.1-12
kde4-opensuse-updater-0.7.17-3
libzypp-4.25.0-5

Comment 1 Martin Vidner 2008-06-02 16:29:41 UTC

Created attachment 219566 [details]
pkd.log

Here is the packagekitd log.

Watching DBus traffic, I see Error org.freedesktop.PackageKit.Transaction.RefusedByPolicy: 'org.freedesktop.packagekit.install-signature auth_admin'. At that point the applet should ask me for root password, I think.

Comment 2 JP Rosevear 2008-06-09 05:00:29 UTC

If its KDE, its a dupe of bug 389415

Comment 3 Martin Vidner 2008-06-09 07:05:52 UTC

It is, thanks.

*** This bug has been marked as a duplicate of bug 389415 ***