-
Bug
-
Resolution: Unresolved
-
Undefined
-
None
-
rhel-9.4.z
-
None
-
No
-
Moderate
-
rhel-sst-image-builder
-
ssg_front_door
-
None
-
False
-
-
None
-
Red Hat Enterprise Linux
-
None
-
None
-
None
-
-
All
-
None
What were you trying to do that didn't work?
Installing an EPEL package like "htop" won't work by defining a custom 3rd party repository when checkgpg = true and a gpgkey pointing to an URL.
What is the impact of this issue to you?
Limited, as including the pub key inline still works.
Please provide the package NVR for which the bug is seen:
osbuild-composer-101-1.el9
How reproducible is this bug?:
Always
Steps to reproduce
Add an EPEL source repo (`composer-cli sources add epel.toml`)
id = "epel" name = "epel" type = "yum-baseurl" url = "https://dl.fedoraproject.org/pub/epel/9/Everything/x86_64/" check_gpg = true check_ssl = true gpgkeys=["https://dl.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-9"]
Use a blueprint containing an EPEL package:
[[packages]] name = "htop" version = "*"
And compose it.
Expected results
Works
Actual results
Stage: org.osbuild.rpm Output: Failed to open file "/sys/fs/selinux/checkreqprot": Read-only file system imported gpg key imported gpg key error: /tmp/gpgkey.epf97adn: import read failed(0). Traceback (most recent call last): File "/run/osbuild/bin/org.osbuild.rpm", line 382, in <module> r = main(args["tree"], args["inputs"], args["options"]) File "/run/osbuild/bin/org.osbuild.rpm", line 281, in main subprocess.run([ File "/usr/lib64/python3.9/subprocess.py", line 528, in run raise CalledProcessError(retcode, process.args, subprocess.CalledProcessError: Command '['rpmkeys', '--root', '/run/osbuild/tree', '--import', '/tmp/gpgkey.epf97adn']' returned non-zero exit status 1.
