On 7/18/14, 3:08 PM, Jeffrey Johnson wrote:
On Jul 1, 2014, at 10:12 AM, Mark Hatle wrote:
The recent changes to add variable encryption have left one compilation issue
that I found. Attached is a patch that adds the missing ifdefs to resolve the
issue.
--Mark
<rpm-rpmpgp-fix.patch>
This patch finally checked in, thank you.
There's _STILL_ some problem with RSA using openssl:
:) At least you finally can reproduce it. We did get the Yocto Project up to
rpm 5.4.14. (I also have a 'CVS' recipe for the newer stuff..) So we are
testing much newer code at least now.
--Mark
[jbj@ha tests]$ while true; do make check-sign; done
...
=== check-sign ===
--> DSA:
--> RSA:
<-- rpmsslVerify(0x224ec30) BAD RSA/SHA1
error: edos-test/tyre-2-0.noarch.rpm: Header V4 RSA/SHA1 signature: BAD, key ID
36528658
error: reading edos-test/tyre-2-0.noarch.rpm manifest, non-printable characters
found
make: *** [check-sign] Error 1
This is just a loop resigning with a constant private key (using gpg2),
and verifying using rpm internal openssl.
The error is specific to openssl ... likely guess is that the
bit count has gone awry somehow. Dunno yet.
At least I have a reproducer ... digging.
73 de Jeff
______________________________________________________________________
RPM Package Manager http://rpm5.org
Developer Communication List rpm-devel@rpm5.org