package signing fails because user cannot specify key

Bug #890866 reported by Rick McBride on 2011-11-15
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
doit
Undecided
Unassigned
packager
Undecided
Unassigned

Bug Description

Now signing changes and any dsc files...
 signfile checkbox-website_0.1-0ubuntu2.dsc Rick McBride <email address hidden>
gpg: skipped "Rick McBride <email address hidden>": secret key not available
gpg: /tmp/debsign.yWPy2tbS/checkbox-website_0.1-0ubuntu2.dsc: clearsign failed: secret key not available
debsign: gpg error occurred! Aborting....
debuild: fatal error at line 1269:
running debsign failed
########################################
TaskError - taskid:source
PythonAction Error
Traceback (most recent call last):
  File "/usr/lib/python2.7/dist-packages/doit/action.py", line 291, in execute
    returned_value = self.py_callable(*self.args, **kwargs)
  File "/usr/lib/python2.7/dist-packages/packager/dodo.py", line 143, in create_source_package
    shell=True)
  File "/usr/lib/python2.7/subprocess.py", line 511, in check_call
    raise CalledProcessError(retcode, cmd)
CalledProcessError: Command 'debuild --no-tgz-check -S' returned non-zero exit status 29

This happens because I have multiple keys associated with my canonical email address. I use a different key for signing packages than for my email and otehr signatures.

When signing packages locally, I typically use

'debuild -S -sa -k<mykey>'

It doesn't appear to be possible to pass the key via packager, so operations requiring a signed package fail.

Rick McBride (rmcbride) wrote :

Though it appears the root of this may be in doit, upon further review of the PythonAction Error listed.

schettino72 (schettino72) wrote :

Hi Rick,

This is not a problem with doit. It is on my TODO list to remove the "doit" part of the traceback when it is not a doit error to avoid this kind of confusion :)

"TaskError" means it is an error in the task itself, not on doit code. A python-action can not raise exceptions. http://python-doit.sourceforge.net/tasks.html#python-action

> It doesn't appear to be possible to pass the key via packager, so operations requiring a signed package fail.
Packager uses doit as a library with its own command line interface. So I can't really help you on that without digging into Packager code.

On 11/16/2011 04:25 AM, schettino72 wrote:
> Hi Rick,
>
> This is not a problem with doit. It is on my TODO list to remove the
> "doit" part of the traceback when it is not a doit error to avoid this
> kind of confusion :)
>
> "TaskError" means it is an error in the task itself, not on doit code. A
> python-action can not raise exceptions. http://python-
> doit.sourceforge.net/tasks.html#python-action
>
>> It doesn't appear to be possible to pass the key via packager, so operations requiring a signed package fail.
> Packager uses doit as a library with its own command line interface. So I can't really help you on that without digging into Packager code.
>

OK noted. The traceback section appeared to reference doit, hence my
confusion there.

Thanks for the clarification.

Changed in doit:
status: New → Invalid
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers