Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
daemon/rpm-c.c: Disable signature checking in librpm
Older distros (eg CentOS 6) used SHA-1 RPM package signatures which some newer distros (eg RHEL 9.0) prevent us from verifying. This resulted in packages with SHA-1 signatures being skipped by librpm (there is a warning in debug output, but if you're not looking at that then the package is silently ignored). In some cases essential packages like the kernel were skipped, which would be visible as a failure of virt-v2v. In other cases (eg virt-inspector) you'd just see fewer installed packages in the <applications> list. Since verifying package signatures is not essential for inspection, disable this feature in librpm. Reported-by: Xiaodai Wang Thanks: Panu Matilainen Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=2064182 Signed-off-by: Richard W.M. Jones <rjones@redhat.com>
- Loading branch information