[WBEL-devel] How to generate RPM-GPG-KEY?
Milan Kerslager
milan.kerslager@pslib.cz
Wed, 7 Jan 2004 13:29:43 +0100
On Wed, Jan 07, 2004 at 05:53:53PM +0800, aiic wrote:
> Hi everyone!
>
> I saw that WBEL has its own RPM-GPG-KEY, how was it generated? And
> how to build rpms with the my own key? I have these lines in my
> /root/.rpmmacros, how to do with them?
>
> %_signature gpg
> %_gpg_path /root/.gnupg/
> %_gpg_name 73307DE6
> %_gpgbin /usr/bin/gpg
You have to generate your own key-pair:
$ gpg --gen-key
...answer questions here...
Then you have to export your public key:
$ gpg -a --export
Then sign or build and sign RPM packages:
$ rpm --resig *.rpm
$ rpmbuild -ba --sign SPEC/package.spec
When you would like to check digital signature, you need to import the
public key into the RPM database:
$ rpm --import FILE.WITH.PUBLIC.key
And now you are able to verify package:
$ rpm -K package.rpm
--
Milan Kerslager
E-mail: milan.kerslager@pslib.cz
WWW: http://www.pslib.cz/~kerslage/