https://issues.rudder.io/https://issues.rudder.io/themes/rudder7/favicon/favicon.ico?17096450182015-06-30T11:56:38ZIssue TrackerRudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=433072015-06-30T11:56:38ZNicolas CHARLESnicolas.charles@rudder.io
<ul><li><strong>Category</strong> set to <i>Techniques</i></li></ul><p>Hi Janos,</p>
<p>thank you for this suggestion. Is there an easy way to check if a key is already accepted, without running rpm ? Does it stores the keys in a specific location ?</p> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=433102015-06-30T12:13:56ZJanos Mattyasovszky
<ul></ul><p>Hi,</p>
<p>GPG Keys are identified by the Pubkey's signature, and are handled as "meta RPM packages", like these:</p>
<pre>
# rpm -qa gpg-pubkey\*
gpg-pubkey-b37b98a9-4be01a1a
gpg-pubkey-307e3d54-4be01a65
gpg-pubkey-9c800aca-4be01999
gpg-pubkey-512adb3c-544a7777
gpg-pubkey-6a89acb9-54f5c0fa
gpg-pubkey-3d25d3d9-36e12d04
gpg-pubkey-cb53db96-544a7c27
</pre>
<p>They are stored in the <i>/var/lib/rpm</i> Directory in flatfile-Based BDB (Berkeley Database) Files:</p>
<pre>
# file /var/lib/rpm/Packages
/var/lib/rpm/Packages: Berkeley DB (Hash, version 8, native byte-order)
# db_stat -d /var/lib/rpm/Packages
Tue Jun 30 14:08:44 2015 Local time
61561 Hash magic number
8 Hash version number
Little-endian Byte order
Flags
4096 Underlying database page size
0 Specified fill factor
750 Number of keys in the database
750 Number of data items in the database
4 Number of hash buckets
600 Number of bytes free on bucket pages (96% ff)
6974 Number of overflow pages
1468848 Number of bytes free in overflow pages (94% ff)
1 Number of bucket overflow pages
4007 Number of bytes free in bucket overflow pages (2% ff)
0 Number of duplicate pages
0 Number of bytes free in duplicate pages (0% ff)
744 Number of pages on the free list
</pre>
<p>There is not easy way to check for the existence of any imported GPG Key without using RPM, that's designed to handle these files, except of using some kind of DB-Manipulation self-compiled C Program using BDB Bindings, which is absolute non sense, as RPM is basically <i>the</i> binary to handle this format :)</p>
<p>And the impact of an RPM call is way below anything worth mentioning:</p>
<pre>
# time (rpm --quiet -q gpg-pubkey-6a89acb9-54f5c0fa; echo $?)
0
real 0m0.036s
user 0m0.016s
sys 0m0.016s
# time (rpm --quiet -q gpg-pubkey-6a89acb9-foobarxx; echo $?)
1
real 0m0.033s
user 0m0.016s
sys 0m0.012s
</pre>
<p>There are way bigger things that eat away performance :-)</p> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=476772015-11-09T00:03:38ZJanos Mattyasovszky
<ul><li><strong>Pull Request</strong> set to <i>https://github.com/Normation/rudder-techniques/pull/763</i></li></ul><p>Please review and merge if acceptable:</p>
<p><a class="external" href="https://github.com/Normation/rudder-techniques/pull/763">https://github.com/Normation/rudder-techniques/pull/763</a></p>
<p>thx<br />Janos</p> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=476782015-11-09T00:04:16ZJanos Mattyasovszky
<ul><li><strong>Assignee</strong> set to <i>Nicolas CHARLES</i></li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=476912015-11-09T16:48:06ZJanos Mattyasovszky
<ul><li><strong>Pull Request</strong> changed from <i>https://github.com/Normation/rudder-techniques/pull/763</i> to <i>https://github.com/Normation/rudder-techniques/pull/764</i></li></ul><p>Updating PR</p>
<p><a class="external" href="https://github.com/Normation/rudder-techniques/pull/764">https://github.com/Normation/rudder-techniques/pull/764</a></p>
<p>Hope this suits now :)</p> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=519362016-02-12T15:20:03ZAlexis Moussetalexis.mousset@rudder.io
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-6 priority-16 priority-default closed" href="/issues/4876">Bug #4876</a>: On SLES, zypper repositories configured by Rudder request a GPG key check at each manual execution of CFEngine agent</i> added</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=522192016-02-29T16:14:20ZJanos Mattyasovszky
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Pending release</i></li><li><strong>% Done</strong> changed from <i>0</i> to <i>100</i></li></ul><p>Applied in changeset <a class="changeset" title="Fixes: #6756 Technique to manage Repo GPG Keys The Technique allows multiple GPG keys to be impo..." href="https://issues.rudder.io/projects/rudder/repository/rudder-techniques/revisions/8fb8ce0cc34d9180d17719e8885d7724b8160838">rudder-techniques|8fb8ce0cc34d9180d17719e8885d7724b8160838</a>.</p> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=522372016-02-29T18:24:10ZNicolas CHARLESnicolas.charles@rudder.io
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-5 priority-16 priority-default closed child" href="/issues/8003">Bug #8003</a>: update list of technique in maintained technique</i> added</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=522542016-03-01T09:46:59ZNicolas CHARLESnicolas.charles@rudder.io
<ul><li><strong>Related to</strong> <i><a class="issue tracker-1 status-5 priority-16 priority-default closed child" href="/issues/8011">Bug #8011</a>: Technique check repository gpg key doesn't follow the normal ordering</i> added</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=530272016-03-16T15:36:28ZVincent MEMBRÉvme@rudder.io
<ul><li><strong>Target version</strong> set to <i>2.11.19</i></li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=531372016-03-24T10:19:30ZAlexis Moussetalexis.mousset@rudder.io
<ul><li><strong>Has duplicate</strong> <i><a class="issue tracker-2 status-6 priority-6 priority-low2 closed" href="/issues/3371">User story #3371</a>: APT package manager should manage GPG keys for added repos</i> added</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=531452016-03-24T14:45:20ZVincent MEMBRÉvme@rudder.io
<ul><li><strong>Subject</strong> changed from <i>Please create technique to import a GPG Key into RPM</i> to <i>New Technique to import a GPG Key into RPM</i></li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=531472016-03-24T14:50:00ZVincent MEMBRÉvme@rudder.io
<ul><li><strong>Related to</strong> deleted (<i><a class="issue tracker-1 status-5 priority-16 priority-default closed child" href="/issues/8003">Bug #8003</a>: update list of technique in maintained technique</i>)</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=531502016-03-24T14:50:47ZVincent MEMBRÉvme@rudder.io
<ul><li><strong>Related to</strong> deleted (<i><a class="issue tracker-1 status-5 priority-16 priority-default closed child" href="/issues/8011">Bug #8011</a>: Technique check repository gpg key doesn't follow the normal ordering</i>)</li></ul> Rudder - User story #6756: New Technique to import a GPG Key into RPMhttps://issues.rudder.io/issues/6756?journal_id=531682016-03-24T16:26:33ZVincent MEMBRÉvme@rudder.io
<ul><li><strong>Status</strong> changed from <i>Pending release</i> to <i>Released</i></li></ul><p>This bug has been fixed in Rudder 2.11.19, 3.0.14, 3.1.8 and 3.2.1 which were released today. </p>
<ul>
<li>2.11: <a href="http://www.rudder-project.org/pipermail/rudder-announce/2016-March/000183.html" class="external">Announce</a> <a href="http://www.rudder-project.org/foswiki/bin/view/System/Documentation:ChangeLog211" class="external">Changelog</a></li>
<li>3.0: <a href="http://www.rudder-project.org/pipermail/rudder-announce/2016-March/000182.html" class="external">Announce</a> <a href="http://www.rudder-project.org/foswiki/bin/view/System/Documentation:ChangeLog30" class="external">Changelog</a></li>
<li>3.1: <a href="http://www.rudder-project.org/pipermail/rudder-announce/2016-March/000181.html" class="external">Announce</a> <a href="http://www.rudder-project.org/foswiki/bin/view/System/Documentation:ChangeLog31" class="external">Changelog</a></li>
<li>3.2: <a href="http://www.rudder-project.org/pipermail/rudder-announce/2016-March/000184.html" class="external">Announce</a> <a href="http://www.rudder-project.org/foswiki/bin/view/System/Documentation:ChangeLog32" class="external">Changelog</a></li>
<li>Download: <a class="external" href="https://www.rudder-project.org/site/get-rudder/downloads/">https://www.rudder-project.org/site/get-rudder/downloads/</a></li>
</ul>