Header Shadow Image


Linux RPM GPG Key: V3 DSA signature: NOKEY, key ID db42a60e

Your RPM GPG Key is missing.  You may receive this error, especially on new installations and when you try to install fresh RPM packages for the first time.  This means you will need to install one: PROBLEM

$ rpm -qp –qf i386 /Files/RHEL4-22/RedHat/RPMS/anaconda-runtime-[0-9]*
warning: /Files/RHEL4-22/RedHat/RPMS/anaconda-runtime-10.1.1.25-1.i386.rpm: V3 DSA signature: NOKEY, key ID db42a60e i386
$ rpm –rebuilddb
$ lcoate RPM-GPG-KEY
-bash: lcoate: command not found  (oOps!)

SOLUTION

$ locate RPM-GPG-KEY
/usr/share/doc/rpm-4.3.3/RPM-GPG-KEY
/usr/share/doc/bridge-utils-1.0.4/RPM-GPG-KEY
/usr/share/doc/redhat-release-4ES/RPM-GPG-KEY
/usr/share/rhn/RPM-GPG-KEY-fedora-test
/usr/share/rhn/BETA-RPM-GPG-KEY
/usr/share/rhn/RPM-GPG-KEY
/usr/share/rhn/RPM-GPG-KEY-fedora
/Files/RHEL4-22/RPM-GPG-KEY
$ rpm –import /usr/share/doc/redhat-release-4ES/RPM-GPG-KEY
$ rpm -qp –qf i386 /Files/RHEL4-22/RedHat/RPMS/anaconda-runtime-[0-9]*
$ rpm -qp –qf i686 /Files/RHEL4-22/RedHat/RPMS/anaconda-runtime-[0-9]*
i686
$

The location may differ for you on your distribution.  You can run locate RPM-GPG-KEY as you did above to locate yours.  Here is a one liner you can use to locate your key with:

$ locate RPM-GPG|awk '{ print "ls -alS "$1 }'|sh|awk '{ print $8" "$7" "$6" "$9 }'|sort -n|grep "KEY$"

(And, yes, that's a $ sign not an S at the end of KEY above. )On FC6 this located the latest key here:

$ locate RPM-GPG|awk '{ print "ls -alS "$1 }'|sh|awk '{ print $8" "$7" "$6" "$9 }'|sort -n|grep "KEY$"
2002 19 Mar /usr/share/rhn/BETA-RPM-GPG-KEY
2002 29 Aug /usr/share/rhn/RPM-GPG-KEY
2004 16 Dec /Files/RHEL4-22/RPM-GPG-KEY
2004 3 Nov /home/ftplinux/fc3/RPM-GPG-KEY
2006 15 Oct /etc/pki/rpm-gpg/RPM-GPG-KEY
$

So if I needed to I would install the latest one available above.  If in doubt, do a comparison of the RPPM GPG Keys using something like this:

$ diff /usr/share/rhn/RPM-GPG-KEY /etc/pki/rpm-gpg/RPM-GPG-KEY
2c2
< signed by Red Hat Software using `rpm -K' using the GNU GPG package.

> signed by Red Hat, Inc. using `rpm -K' using the GNU GPG package.
$

This confirms that the actual keys themselves are identical and only differ in the header.  So in this case using either one is fine however the latest one from '/etc/pki/rpm-gpg/RPM-GPG-KEY' above is most likely the latest one to use because of it's most recent date.

One Response to “Linux RPM GPG Key: V3 DSA signature: NOKEY, key ID db42a60e”

  1. Much easier if instead of :

    locate RPM-GPG|awk '{ print "ls -alS "$1 }'|sh|awk '{ print $8" "$7" "$6" "$9 }'|sort -n|grep "KEY$"

    locate RPM-GPG | xargs ls -la

    # locate RPM-GPG-KEY | xargs ls -la
    -r–r–r–  1 root root 1795 Feb 19 10:11 /root/RPM-GPG-KEY
    -r–r–r–  1 root root 1795 Feb 19 10:11 /root/RPM-GPG-KEY-centos4
    -rw-r–r–  1 root root 1910 Apr 22  2009 /usr/share/doc/redhat-release-4ES/RPM-GPG-KEY
    -rw-r–r–  1 root root 1913 Nov 11  2004 /usr/share/doc/rpm-4.3.3/RPM-GPG-KEY
    -rw-r–r–  1 root root 1489 Dec  5  2006 /usr/share/rhn/BETA-RPM-GPG-KEY
    -rw-r–r–  1 root root 1913 Dec  5  2006 /usr/share/rhn/RPM-GPG-KEY
    -rw-r–r–  1 root root 1519 Dec  5  2006 /usr/share/rhn/RPM-GPG-KEY-fedora
    -rw-r–r–  1 root root 1076 Dec  5  2006 /usr/share/rhn/RPM-GPG-KEY-fedora-test
     

Leave a Reply

You must be logged in to post a comment.


     
  Copyright © 2003 - 2013 Tom Kacperski (microdevsys.com). All rights reserved.

Creative Commons License
This work is licensed under a Creative Commons Attribution 3.0 Unported License