Hi Daniel,
I am not using any base in fact. I am using container by systemd-nspawn. I have installed it long ago by command from man systemd-nspawn, Example 2. at the bottom.
Since then I am trying rolling updates to keep it Raw(hide). It fails every release once branched, because signatures cannot be verified.
I just do dnf upgrade from time to time, when I check something there.
My main issue is I am too stubborn to turn off gpg verification. Instead, I want verification working.
It seems branching was almost correct this time. But fedora-repos-33-0.9 does not contain arch symlinks. And rawhide contains packages already signed by the new key. Either install first gpg keys from koji, or disable gpg when upgrading fedora-gpg-keys.
Best Regards, Petr
On 8/25/20 12:05 PM, Daniel P. Berrangé wrote:
On Tue, Aug 25, 2020 at 11:40:21AM +0200, Petr Menšík wrote:
Hi Vít,
Unfortunately your workaround does not on my rawhide container. I think the problem is in missing gpg keys from fedora-gpg-keys, which do not contain also architecture specific keys.
When you say "rawhide container", where are you pulling the base image from ? If you're pulling from docker.io, then perhaps you are hitting the same problem as me, which is that the image hasn't been updated in over a month:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org/...
Regards, Daniel