RPM Warning Installing From Packman Repo?

I’ve just done a clean install of OS 11.2 x86_64, KDE 4.3.1, and got the following message from RPM while installing multimedia support files from Packman using zypper on the command line:

warning: /var/cache/zypp/packages/ftp.skynet.be-suse/noarch/rpmkey-packman-0.3.8-1.pm.1.1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 9a795806

Similar messages were coming up while installing other packages through Yast, and I’m wondering what the issue is. All of the messages were about the “key ID” at the end of the example line. (Everything is working so I’m not sure if this is a problem or not.)

Cheers. :slight_smile:

This does happen from time to time. If you remove the Packman repo and re-add it, it should sort it.

Thank you, I’ll give that a try.

Just wanted to add that I tried your suggestion, but it didn’t work. It only happens with the Packman repo so far as I can tell. I installed a few things with zypper from the main repo & no extra messages. Installed some updates in Yast and all the ones from Packman had the extra output.

Not sure what’s going on, but it doesn’t seem to keep things from working. :slight_smile:

It seems that each contributor of Packman packages uses his/her own package signing key. These are published on their web site, and in this package: rpmkey-packman

Installing the package and importing all the keys in it to rpm database seems to get rid of the NOKEY messages:

$ rpm -i rpmkey-packman-0.3.8-1.pm.1.1.noarch.rpm
$ rpm --import $(rpm -ql rpmkey-packman | grep 'asc$')

Thanks for that info! That got rid of the nokey messages.

:slight_smile:

jkupec wrote:

>
> It seems that each contributor of Packman packages uses his/her own
> package signing key. These are published on their web site, and in
> this package: ‘rpmkey-packman’
> (http://packman.links2linux.org/package/rpmkey-packman)
>
> Installing the package and importing all the keys in it to rpm
> database seems to get rid of the NOKEY messages:
>
> Code:
> --------------------
> $ rpm -i rpmkey-packman-0.3.8-1.pm.1.1.noarch.rpm
> $ rpm --import $(rpm -ql rpmkey-packman | grep ‘asc$’)
> --------------------
>
Thanks for posting this. I installed the package from packman using
YaST. Do I still need to execute the import command or does YaST do it
automatically?

Thanks for the information. Those warning messages were getting on my
Nerves.


Russ
[openSUSE 11.2 (2.6.31.8-0.1-desktop, x86_64] KDE 4.3.4 release 2,
Intel Core 2 Dual E7200, 4 GB RAM, GeForce 8400 GS, 320GB Disc (2)

The same error message has cropped up on my system again. :frowning: Now I’m back to the NOKEY message from rpm when installing from the Packman repo + another problem.

Here’s what happened when I tried a query & import of the keys again:

linux-xzny:/home/bruces/Downloads # rpm -i rpmkey-packman-0.3.8-1.pm.1.1.noarch.rpm
warning: rpmkey-packman-0.3.8-1.pm.1.1.noarch.rpm: Header V3 DSA signature: NOKEY, key ID 9a795806
        package rpmkey-packman-0.3.8-1.pm.1.1.noarch is already installed
linux-xzny:/home/bruces/Downloads # rpm --import $(rpm -ql rpmkey-packman | grep 'asc$')
error: /usr/lib/rpm/gnupg/packman-signing.asc: import failed.

The package seems to be installed, but I have no idea why the error message came back. The good news is that everything still seems to work okay.

I needed to do the import manually, so the package probably wasn’t meant to do it for us.

I already tried those tricks, installing the packman keys packages, importing keys. I always install packages with zypper (from a script). I could never get rid of these warnings.

  1. Warnings seem to stay, even after import of file. One thing occurred to me, how often do the key owners change their keys?

  2. Any idea?

or does one need to update this key file every time?

This issue is still present!

  1. SUSE updater applet hangs from time to time during checking system updates on 40%…

  2. Same thing happens while refreshing repositories within Software Management in YaST - at the moment of checking the Packman Repo

  3. When it finally works, there are long pauses between downloading packages… but strange thing is that when it start downloading then the dwnl speed is great

  4. Almost every package shows up in log signature: NOKEY

//Tried to remove & re-add repo some time ago without success

Packman “NOKEY” is still happening:

sudo rpm --import $(rpm -ql rpmkey-packman | grep 'asc$')                                                                                                                                              
error: /usr/lib/rpm/gnupg/packman-signing.asc: import failed. 

I’ve been away from Suse for a while, the Packman “NOKEY” horror was something I hoped I’d seen the last of. Does this ever end ?

:frowning:

Hm, that never happened to me… do you import the keys correctly when being asked to? Could this be a network issue?

The key that gets imported when you add the repo is 1ABD1AFB, the one used to sign the metadata. The one used to sign the packages is 9A795806, you need to manually import that one. jkupec explained how to do that.

If someone has a problem with this complain to Packman: PackMan :: Documentation. It’s really so simple.