Hide Forgot
Description of problem: yum does not need --nogpgcheck for installing unsigned package. Version-Release number of selected component (if applicable): RHEL6.2 yum-3.2.29-22.el6.noarch How reproducible: 100% Steps to Reproduce: 1.Copy the RPM attached to this BZ to an RHEL6.2 machine. 2. "cd" to the download folder. 3. Make sure gpgcheck is enabled # grep gpgcheck /etc/yum.conf gpgcheck=1 4. yum install -y test-regular-test_sw_system_snapshot_fri06apr2012_07_28_52_24962-0.1-1.x86_64.rpm Actual results: The package is installed. Expected results: Package test-regular-test_sw_system_snapshot_fri06apr2012_07_28_52_24962-0.1-1.x86_64.rpm is not signed Additional info:
Created attachment 577737 [details] Unsigned RPM
That's a local package, so it's controlled by: localpkg_gpgcheck Either `1' or `0'. This tells yum whether or not it should perform a GPG signature check on local packages (packages in a file, not in a repositoy). The default is `0'.
Hi James, The problem is that RHEL5 (yum-3.2.22-39.el5) does not respect "localpkg_gpgcheck" and default behaviour for local packages is to check for gpg. This makes scripts that works just fine on RHEL5 to fail on RHEL6. Dimi