RPM signing issue in RHEL6

Solution Verified - Updated -

Issue

  • When I sign an RPM in `RHEL6` with our existing signature that we used in `RHEL5` it does not sign it correctly.  The resulting RPM cannot be verified in either `RHEL6` or `RHEL5`. Similarly RPMs signed with our key in `RHEL5` cannot be verified correctly in `RHEL6` (but can be in `RHEL5`).

  • When I query it under `RHEL6` :

    # rpm -q --checksig -p mypackage-internal-1.2.0-11.lrh6.x86_64.rpm
mypackage-internal-1.2.0-11.lrh6.x86_64.rpm: RSA sha1 ((MD5) PGP) md5 NOT OK (MISSING KEYS: (MD5) PGP#cd18465e)

    When I query it under `RHEL5` :

    # rpm -K mypackage-internal-1.2.0-11.lrh6.x86_64.rpm
mypackage-internal-1.2.0-11.lrh6.x86_64.rpm: RSA sha1 MD5 PGP MD5 PGP md5 NOT OK

Environment

  • Red Hat Enterprise Linux (RHEL) 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content