Trying to upload manually signed packages to PPA that are showing up as not signed.
UbuntuThis forum is for the discussion of Ubuntu Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Trying to upload manually signed packages to PPA that are showing up as not signed.
Just so you know, I am trying to upload packages to a PPA (packages that contain custom "sources.list"s designed to make upgrades or downgrades between Ubuntu releases easier) and, even after going through all that work to manually generate a key and sign them with gpg, dput still rejects them as "not signed". Any idea what could be causing this? What files is it looking for?
dput -f ppa:mango-k/ubuntu-releases *.changes
Checking signature on .changes
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.
No signature on /home/kenny_strawn/ubuntu-releases/ubuntu-release-dapper_6.06-0ubuntu1_i386.changes.
kenny_strawn@kenny-AOA110:~/ubuntu-releases$
Okay, now I (sort of) found out the problem: I had to specify the name of the .asc files that sign the packages. Now, however, I am getting a different error:
Code:
kenny_strawn@kenny-AOA110:~/ubuntu-releases$ dput -f *.asc ppa:mango-k/ubuntu-releases *.changes
No host ubuntu-release-dapper_6.06-0ubuntu1.dsc.asc found in config
kenny_strawn@kenny-AOA110:~/ubuntu-releases$
I have packages that include sources.list files for ALL the supported releases, in order to allow one to upgrade or downgrade at will.
Any help is appreciated. Please try to reply, not just glance and leave.
Last edited by Kenny_Strawn; 10-14-2010 at 01:14 PM.
Okay, after re-signing the files manually I now am getting an error that the signature is bad:
Code:
Checking signature on .changes
gpg: Signature made Thu 14 Oct 2010 03:52:21 PM PDT using RSA key ID 4C9C5444
gpg: BAD signature from "Kenny Strawn (This is a key for the Ubuntu Distribution Upgrades PPA.) <mango_k@att.net>"
Bad signature on /home/kenny_strawn/ubuntu-releases/ubuntu-release-dapper_6.06-0ubuntu1_i386.changes.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.