I decided to put F38 onto my new machine from the start (so a clean install), and now it seems to have some errors with DNF/RPM that I haven't seen before on F37 when I tried the same thing.
Specifically, I am trying to install packages from a 3rd-party repository (the Intel oneAPI repo), and it is throwing errors like:
package intel-basekit-2023.1.0-46401.x86_64 does not verify: RSA signature: BAD (package tag 1002: invalid OpenPGP signature)
package intel-hpckit-2023.1.0-46346.x86_64 does not verify: RSA signature: BAD (package tag 1002: invalid OpenPGP signature)
package intel-hpckit-2023.1.0-46346.x86_64 does not verify: RSA signature: BAD (package tag 1002: invalid OpenPGP signature)
There are two things I don't understand here.
The first is, why does DNF/RPM in F38 fail to parse this GPG signature, while DNF/RPM on F37 does parse it?
Second, as a workaround I set both gpgcheck options in the repo file for this repository to be 0, but it still returns the same errors, so why is it still checking the GPG signature of the package if I disabled the GPG checks for the entire repo?
For completeness, the versions are:
F38:
DNF 4.15.0-1.fc38
RPM 4.18.1-1.fc38
F37
DNF 4.14.0-1.fc37
RPM 4.18.0-1.fc37
Thanks,
-Ian
_______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue