-
Bug
-
Resolution: Unresolved
-
Major
-
None
-
rhel-10.1
-
None
-
Low
-
1
-
image-builder
-
2
-
False
-
False
-
-
None
-
IB Upcoming Priorities
-
None
-
None
-
Unspecified
-
Unspecified
-
Unspecified
-
-
All
-
None
What were you trying to do that didn't work?
Trying to compose a distro = "rhel-10" fails with the signature verification on the `glib2` package. Switching explicitly to the last minor release 10.1 works.
What is the impact of this issue to you?
Prevent to use "10" (the latest release available)
Please provide the package NVR for which the bug is seen:
osbuild-composer-149-4.el10_1.x86_64
How reproducible is this bug?:
Always
Steps to reproduce
- Prepare a blueprint with the `glib2` package and `distro = "rhel-10"`.
- Push it
- Compose it
Expected results
The signature is verified
Actual results
Pipeline: build Stage: org.osbuild.rpm Output: Failed to open file "/sys/fs/selinux/checkreqprot": Read-only file system imported gpg key Signature check failed on sha256:9d0a71d87912a815f837f8427438936d6e9842834cc1f1062b90b2a41fbde594, lookup package name in manifest. Traceback (most recent call last): File "/run/osbuild/bin/org.osbuild.rpm", line 262, in <module> r = main(args["tree"], args["inputs"], args["options"]) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/run/osbuild/bin/org.osbuild.rpm", line 162, in main subprocess.run([ File "/usr/lib64/python3.12/subprocess.py", line 571, in run raise CalledProcessError(retcode, process.args, subprocess.CalledProcessError: Command '['rpmkeys', '--root', '/run/osbuild/tree', '--checksig', 'sha256:9d0a71d87912a815f837f8427438936d6e9842834cc1f1062b90b2a41fbde594']' returned non-zero exit status 1.
rpm -qp --qf '%{name}-%{version}-%{release}\n' /var/cache/osbuild-worker/osbuild-store/sources/org.osbuild.files/sha256:9d0a71d87912a815f837f8427438936d6e9842834cc1f1062b90b2a41fbde594 glib2-2.80.4-10.el10_1.124
