Feature #26278: GPG sign Foreman client RPM repository - Packaging - Foreman

Actions

Feature #26278

closed

GPG sign Foreman client RPM repository

Added by Peter Oliver almost 6 years ago. Updated over 5 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Ewoud Kohl van Wijngaarden

Category:

RPMs

Target version:

Foreman - 1.23.0

Difficulty:

Triaged:

No

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman-packaging/pull/3862, https://github.com/theforeman/foreman-packaging/pull/3863, https://github.com/theforeman/foreman-packaging/pull/3874, https://github.com/theforeman/foreman-packaging/pull/3875

Fixed in Releases:

Foreman - 1.21.1, Foreman - 1.22.1, Foreman - 1.23.0

Found in Releases:

Foreman - 1.20.0

Red Hat JIRA:

Description

Package https://yum.theforeman.org/client/1.20/el7/x86_64/foreman-client-release-1.20.2-1.el7.noarch.rpm sets up a GPG public key, but it is not the key used to sign the packages found in that repository. After some trial and error, I found the correct key, D0B17F13, at https://github.com/theforeman/foreman-packaging/blob/rpm/1.20/packages/katello-3.9/katello-repos-3.9/RPM-GPG-KEY-katello-2015.

Related issues 1 (0 open — 1 closed)

Actions

#1

Updated by Ewoud Kohl van Wijngaarden almost 6 years ago

At this point we're not signing the client packages repository. The packages in that repository are signed by some key, which for those packages happens to be that key. There is however no guarantee and we could include updates packages which might not be signed or signed with a different key.

Actions

#2

Updated by Ewoud Kohl van Wijngaarden almost 6 years ago

Related to Bug #26401: Remove Foreman GPG key from foreman-release-client added

Actions

#3

Updated by Ewoud Kohl van Wijngaarden over 5 years ago

Tracker changed from Bug to Feature
Subject changed from Incorrect GPG key for Foreman client RPM repository to GPG sign Foreman client RPM repository
Target version set to 1.23.0

Actions

#4

Updated by The Foreman Bot over 5 years ago

Status changed from New to Ready For Testing
Assignee set to Ewoud Kohl van Wijngaarden
Pull request https://github.com/theforeman/foreman-packaging/pull/3862 added

Actions

#5

Updated by The Foreman Bot over 5 years ago

Pull request https://github.com/theforeman/foreman-packaging/pull/3863 added

Actions

#6

Updated by Ewoud Kohl van Wijngaarden over 5 years ago

Status changed from Ready For Testing to Closed

Applied in changeset foreman-packaging|0c9164e8eab5f3ea084654cece4eca98c3e761cb.

Actions

#7

Updated by Ewoud Kohl van Wijngaarden over 5 years ago

Fixed in Releases 1.22.1, 1.23.0 added

Actions

#8

Updated by The Foreman Bot over 5 years ago

Pull request https://github.com/theforeman/foreman-packaging/pull/3874 added

Actions

#9

Updated by The Foreman Bot over 5 years ago

Pull request https://github.com/theforeman/foreman-packaging/pull/3875 added

Actions

#10

Updated by Ewoud Kohl van Wijngaarden over 5 years ago

Fixed in Releases 1.21.4 added

Actions

#11

Updated by Tomer Brisker over 5 years ago

Fixed in Releases 1.21.1 added
Fixed in Releases deleted (~~1.21.4~~)

Actions

Also available in: Atom PDF