Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have a package that was build for RPMv3. I'm in need of resigning the package on my RPMv4 system, but I've learnt that resigning RPMv3 packages in RPMv4 corrupts the package.
So, the way I see it, I need to either find a way to resign the package on my RPMv4 system, or downgrade RPMv4 to RPMv3 and then do the resigning.
Has anyone come across this issue? How can one downgrade RPM from version 4 to version 3?
I think downgrading the RPMDB to version 3 would be a mistake. What's the *real* problem? Wouldn't it be more efficient, safe, easier to rebuild the package for RPMv4 and *then* sign it?
I think downgrading the RPMDB to version 3 would be a mistake. What's the *real* problem? Wouldn't it be more efficient, safe, easier to rebuild the package for RPMv4 and *then* sign it?
I guess it would, but I don't have access to the source RPM. I've never rebuilt an RPM before, but thought I'd need the source RPM.
Is it possible to rebuild based on the ordinary RPM itself?
Yes, you'll need the .src.rpm or a tarball (plus .spec file). You can reconstruct an RPM manually or based on contents as the RPMDB sees them (see Sourceforge: "rpmrebuild") but the results can not be distributed publicly *ever*, are possibly incomplete and as such nobody in their right mind would support problems caused by a package rebuilt that way. Can you be more specific about what package(s) this is about?
Yes, you'll need the .src.rpm or a tarball (plus .spec file). You can reconstruct an RPM manually or based on contents as the RPMDB sees them (see Sourceforge: "rpmrebuild") but the results can not be distributed publicly *ever*, are possibly incomplete and as such nobody in their right mind would support problems caused by a package rebuilt that way. Can you be more specific about what package(s) this is about?
I totaly agree on the support thing. I'm pretty sure the vendor wouldn't want to provide support on such modified packages.
The packages I wish to resign are Legato NetWorker packages. So to sum up:
There is no way the vendor is just going to give me the source code.
I could hope that the vendor rebuild the package for RPMv4, men who knows how long that would take.
I do not wish to rebuild the package myself due to support problems.
I could downgrade RPMv3 on one of my servers and do the resigning there. I'm not sure if this would work, as the RPM DB probably would get broken.
Thanks for clarifying. Basically there should be no resigning because the signature should match the vendor or publisher and they should only initiate resigning if the key was faulty, expired, retracted or replaced. Explaining in detail what problems you encounter installing these packages (incl. error messages if any) could help us find you a workaround or solution.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
