-
We discussed about this a bit at #1795 (comment) on-wards. Issue details: I followed https://access.redhat.com/articles/3359321 to generate keys. But after this fix, I'm unable to import the keys. root [ ~ ]# rpm --import foo.key root [ ~ ]# rpm -qi rpm Can you please assist me on generating the keys properly? Here are my patches where I back ported this CVE fix to 4.16.x https://github.com/vmware/photon/blob/4.0/SPECS/rpm/CVE-2021-3521-1.patch cc: @DemiMarie Similar issue: #1977 |
Beta Was this translation helpful? Give feedback.
Replies: 5 comments 5 replies
-
@DemiMarie I took daeddb0 as well but no progress, issue persists. |
Beta Was this translation helpful? Give feedback.
-
That commit is needed for the PR to not cause a regression. It is not going to solve this problem. Please provide the steps you are using to generate the keys. |
Beta Was this translation helpful? Give feedback.
-
Here is the key I'm using:
Steps:
|
Beta Was this translation helpful? Give feedback.
-
I used |
Beta Was this translation helpful? Give feedback.
-
I think I got it. Off the top of my head, I took one of your fix related to pgp parsing, it was an embargo issue or something like it where we were supposed to fix it within given time. https://github.com/vmware/photon/blob/4.0/SPECS/rpm/Fix-OpenPGP-parsing-bugs.patch After removing this patch and consuming a bunch of other patches which does the job of this patch got things back to normal. I think I took a really early version of that patch and now it's causing this issue. But upstream doesn't contain this code, so I guess the patch that was provided during the deadline and the actual code that went in were different. |
Beta Was this translation helpful? Give feedback.
I think I got it. Off the top of my head, I took one of your fix related to pgp parsing, it was an embargo issue or something like it where we were supposed to fix it within given time.
https://github.com/vmware/photon/blob/4.0/SPECS/rpm/Fix-OpenPGP-parsing-bugs.patch
After removing this patch and consuming a bunch of other patches which does the job of this patch got things back to normal.
I think I took a really early version of that patch and now it's causing this issue. But upstream doesn't contain this code, so I guess the patch that was provided during the deadline and the actual code that went in were different.