Red Hat Bugzilla – Bug 814945
Software Update claims all packages are untrusted
Last modified: 2012-05-11 12:08:07 EDT
+++ This bug was initially created as a clone of Bug #771746 +++
Any attempt to use the Software Update or Add/Remove Software tools results in an 'Authenticate' dialog. The text is
"The software is not from a trusted source. Do not update these packages unless you are sure it is safe to do so."
Clicking on details gives the following:
Vendor: The PackageKit Project
Testing indicates this dialog occurs for *any* package, from all the default repositories. I do not know why Software Update wants a root password as no changes to the repository configuration have been changed.
This behavior started after updating to PackageKit 0.6.22.1.fc16.
I see this too.
This just occured again for me as well. I will provide a yum history of updates soon.
According to the package log, Richard removed Nils patch from bug 771746 with the latest release thinking it had been upstreamed. Unfortunately only part 1 of the patch was. I cannot find a matching commit for part 2 of his patch upstream.
*** Bug 816025 has been marked as a duplicate of this bug. ***
I've looked into this yesterday a bit and found that using pkcon (the command line tool) from the 0.6.x branch reproduced this bug reliably. The same set of commits is in the master branch however and the behavior isn't faulty.
I'm seeing this as well; yum update reports no problems with the updated packages and successfully updates the system, however, this bug effectively makes the graphical tool useless since no one should be installing untrusted packages.
I've come up with a patch which fixes the behavior in every situation imaginable to me, installing or updating, signed or unsigned or signed with an unknown key present in /etc/pki/rpm-gpg. PackageKit-0.6.22-2.fc16 is building right now with this patch, please test thoroughly. Thanks!
PackageKit-0.6.22-2.fc16 has been submitted as an update for Fedora 16.
NB: I'll be on vacation and will return on May 10th.
* should fix your issue,
* was pushed to the Fedora 16 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing PackageKit-0.6.22-2.fc16'
as soon as you are able to.
Please go to the following url:
then log in and leave karma (feedback).
PackageKit-0.6.22-2.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
*** Bug 815541 has been marked as a duplicate of this bug. ***
This might have regressed again, I see this issue with PackageKit-0.7.4-1.fc17.x86_64 and gnome-packagekit-3.4.0-1.fc17.x86_64 each time I try to update or add packages. This happens even with all *-updates-testing repositories disabled. yum on the command line has nothing to complain about.
Cloned for Fedora 17: bug #821015