I am trying to cleanly add a repository to my Fedora 43 system. Doing so works in the end, but it also spits out errors in the process of installation. My question is, what can be done against these errors?
The repository I built up works and is tested. The RPM files on it are signed as well as the metadata file http://repo-server.local/fedora/repodata/repomd.xml of which there is a repomd.xml.asc in the same folder.
To add the repository to my client I added a file /etc/yum.repos.d/repo-server.local.repo with this content:
[repo-server.local] name=repo-server.local RPM Repository baseurl=http://repo-server.local/fedora enabled=1 gpgcheck=1 repo_gpgcheck=1 gpgkey=http://repo-server.local/fedora/repo-key.gpg After that I execute these two commands:
sudo dnf clean all sudo dnf makecache -y Now, as said, it works, but I get a very ugly output with red error lines. This is the complete output I get after executing these two commands:
Removed 32 files, 21 directories (total of 83 MiB). 0 errors occurred. Updating and loading repositories: repo-server.local RPM Repository 100% | 6.2 KiB/s | 2.3 KiB | 00m00s >>> repomd.xml GPG signature verification error: Signing key not found RPM Fusion for Fedora 43 - Nonfree - Steam 100% | 11.3 KiB/s | 13.4 KiB | 00m01s RPM Fusion for Fedora 43 - Nonfree - NVIDIA Driver 100% | 16.7 KiB/s | 16.9 KiB | 00m01s Copr repo for PyCharm owned by phracek 100% | 8.5 KiB/s | 4.1 KiB | 00m00s Fedora 43 openh264 (From Cisco) - x86_64 100% | 4.8 KiB/s | 5.8 KiB | 00m01s Fedora 43 - x86_64 - Updates 100% | 2.7 MiB/s | 7.5 MiB | 00m03s google-chrome 100% | 1.2 KiB/s | 3.3 KiB | 00m03s Fedora 43 - x86_64 100% | 6.8 MiB/s | 35.4 MiB | 00m05s http://repo-server.local/fedora/repo-key.gpg 100% | 239.4 KiB/s | 3.1 KiB | 00m00s Importing OpenPGP key 0x1D407482: UserID : "John Doe (Automated Repository Key) <[email protected]>" Fingerprint: 47657DB40C1D90BD24C40025C01530901D407482 From : http://repo-server.local/fedora/repo-key.gpg The key was successfully imported. repo-server.local RPM Repository 100% | 114.3 KiB/s | 3.0 KiB | 00m00s Repositories loaded. Metadata cache created. Now the error lines that are colored in red in the terminal are line 3 and 4:
repo-server.local RPM Repository 100% | 6.2 KiB/s | 2.3 KiB | 00m00s >>> repomd.xml GPG signature verification error: Signing key not found Ok, so the way I interpret these lines is that dnf tries to update its knowledge about all its known repositories, including the one I just added. The problem it finds here is that it does not have any valid GPG key for the repository, and hence it spits out an ugly red error message. After that a bit later it downloads and imports the GPG key and everything works from there on.
Now my question. Is there a way to import a Fedora repository in a cleaner way without this verification error?
