No edit summary |
No edit summary |
||
| Line 10: | Line 10: | ||
OpenGPGPublicKeys = /etc/pki/rpm-gpg/RPM-GPG-KEY-fedora, /etc/pki/rpm-gpg/RPM-GPG-KEY-rpmfusion-free-fedora | OpenGPGPublicKeys = /etc/pki/rpm-gpg/RPM-GPG-KEY-fedora, /etc/pki/rpm-gpg/RPM-GPG-KEY-rpmfusion-free-fedora | ||
</pre> | </pre> | ||
'''Please rename <code>EnableOpenGPG</code> to <code>OpenGPGCheck</code>''' (it is a mistake in the config file) and set it to ''yes'' or ''no''. | |||
Set ''EnableOpenGPG'' to ''yes''. | Set ''EnableOpenGPG'' to ''yes''. | ||
Revision as of 12:30, 20 August 2009
Description
This is testing ABRT GPG check using custom GPG Keys That means you can add other trusted GPG keys used to sign packages from some repository (e.g. RPM Fusion). See also QA:Testcase_abrt_GPG_check.
This test case can't be tested on Rawhide or provided LiveCD because the packages are not properly signed in these distributions.
How to test
Edit config file /etc/abrt/abrt.conf, where you should find lines:
OpenGPGCheck = yes OpenGPGPublicKeys = /etc/pki/rpm-gpg/RPM-GPG-KEY-fedora, /etc/pki/rpm-gpg/RPM-GPG-KEY-rpmfusion-free-fedora
Please rename EnableOpenGPG to OpenGPGCheck (it is a mistake in the config file) and set it to yes or no.
Set EnableOpenGPG to yes. Add path to GPG signature, delimited by colon.
Restart ABRT:
# service abrt restart
Install package from the repository to which the new GPG key belongs to. Crash an application from this package - abrt should ignore it this time. Leave gpg check on and import the gpg key from the repo (if you haven't already). Add the gpg key into ABRT config, crash something from the package - and this time it should be reported.
<fixme: which repository to add as an example? how to install gpg key?>
Expected Results
ABRT should notice only crashes of applications from signed packages when OpenGPGCheck = yes, it should ignore packages from unsupported archives