Re: Help!! Can't sign package: secret key not available
Hello all,
I finally managed to sign my package, by specifying the keyid on the
command-line to dpkg-buildpackage (with the -k option). However, I am
still at a loss to explain why I needed to specify it explicitly... As
you can see below, gpg _can_ find the secret key, but dpkg seems to be
unable to... Should I file a bug against dpkg??
Anyways, thanks to everyone who responded to my pleas for help!
Joe Nahmias
joe@a750:/usr/local/src/fceu-0.81 $ dpkg-parsechangelog | sed -n 's/^Maintainer: //p'
Joe Nahmias <joe@nahmias.net>
joe@a750:/usr/local/src/fceu-0.81 $ gpg --list-secret-keys $(dpkg-parsechangelog | sed -n 's/^Maintainer: //p')
sec 1024D/E61612A5 2002-09-13 Joseph Nahmias <joe@nahmias.net>
ssb 2048g/1870C37C 2002-09-13
joe@a750:/usr/local/src/fceu-0.81 $ dpkg-buildpackage -rfakeroot
[snip]
dpkg-deb: building package `fceu' in `../fceu_0.81-1_i386.deb'.
signfile fceu_0.81-1.dsc
gpg: skipped `Joe Nahmias <joe@nahmias.net>': secret key not available
gpg: [stdin]: clearsign failed: secret key not available
> Good Morning Joe,
>
> On [13/09/02 18:34], Joe Nahmias wrote:
> > I am trying to package FCE Ultra (bug #160810), however when I
> > come to the crucial `dpkg-buildpackage` step, I get the following error
> > message:
>
> > gpg: skipped 'Joe Nahmias <joe@nahmias.net>': secret key not available
>
> > However I am able to see my secret key when I issue the command
> > `gpg --list-secret-keys`, and I am able to sign files.
>
> This means that there's no secret key with a UID named 'Joe Nahmias
> <joe@nahmias.net>'. A quick look at dpkg-buildpackage suggests that it
> first tries uses the value of the command line option -e to decide which
> key to use. If this fails, it will try the value of the command line
> option -m. If both fail, it will try to parse the changelog with this
> command 'dpkg-parsechangelog | sed -n 's/^Maintainer: //p'. Now please
> run the last command and look at the output, it should be something like
> this:
>
> Christian Kurz <shorty@debian.org>
>
> Now please run gpg --list-secret-keys and give as last option the output
> from the command. I'll currently guess that gpg won't show a secret key
> for this name. This would either mean that you need to change the
> maintainer entry in the changelog or use the option -k to specify which
> key to use for signing the package.
>
> Christian
>
> --
> Debian Developer (http://www.debian.org)
> 1024D/B7CEC7E8 44BD 1F9E A997 3BE2 A44F 96A4 1C98 EEF3 B7CE C7E8
Reply to: