Hi there! When we built a package, we can sign it at build time by issuing the command:
rpm -ba --sign file.spec
and it will prompt for something like this:
Enter pass phrase: <passphrase> (Not echoed)
Now on my system I need to build rpm automatically ( without human intervention)! Is it possible to have my paraphrase being read in a file rather than me sitting in front of the computer and actually typing it?
I know it's not a very good idea but my rpms need to be generated automatically daily via cron, and I can't sit behind my pc and type the paraphrase each time one rpm is being built.
Can I avoid the prompting of the paraphrase if I want to sign my packages at build-time and everything be done automatically? Thanks.
This is for the purpose of a repository and things like these need to be automated when dealing with multiple packages.
With kind regards,
Didier.
--- PhD student.
Singapore Synchrotron Light Source (SSLS) 5 Research Link, Singapore 117603
Email: didierbe at sps dot nus dot edu dot sg
On Wed, 2004-06-23 at 10:01, Didier Casse wrote:
Now on my system I need to build rpm automatically ( without human intervention)! Is it possible to have my paraphrase being read in a file rather than me sitting in front of the computer and actually typing it?
Maybe "yum install expect ; man expect" ?
I would need that too because I generate a lot of configuration rpms with the application xml2hostconf ( http://xml2hostconf.sf.net ).
gpg-agent together with rpmbuild would be a nice combination to do this. It doesn't seem possible at the momement:
http://lists.gnupg.org/pipermail/gnupg-users/2004-January/021302.html
I haven't looked closely into this yet. In my trials I laborated a while with rpmbuild and some --define command line options, but I soon found out it is actually rpmbuild that asks for the passphrase.
cheers, Erik Sjölund
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
I've done something similar. I've attached the expect script I use.
On Wednesday 23 June 2004 02:01, Didier Casse wrote:
Hi there! When we built a package, we can sign it at build time by issuing the command:
rpm -ba --sign file.spec
and it will prompt for something like this:
Enter pass phrase: <passphrase> (Not echoed)
Now on my system I need to build rpm automatically ( without human intervention)! Is it possible to have my paraphrase being read in a file rather than me sitting in front of the computer and actually typing it?
I know it's not a very good idea but my rpms need to be generated automatically daily via cron, and I can't sit behind my pc and type the paraphrase each time one rpm is being built.
Can I avoid the prompting of the paraphrase if I want to sign my packages at build-time and everything be done automatically? Thanks.
This is for the purpose of a repository and things like these need to be automated when dealing with multiple packages.
With kind regards,
Didier.
PhD student.
Singapore Synchrotron Light Source (SSLS) 5 Research Link, Singapore 117603
Email: didierbe at sps dot nus dot edu dot sg
- -- Public Key available Here: http://www.bravegnuworld.com/~rjune/rjune.asc
devel@lists.stg.fedoraproject.org