majormoses
commented
5 years ago @mesgme That is a very old version of sensu and I am pretty sure that was before the packages were signed. Can you validate if you see the same with a recent version?
Open mesgme opened 5 years ago
majormoses
commented
5 years ago @mesgme That is a very old version of sensu and I am pretty sure that was before the packages were signed. Can you validate if you see the same with a recent version?
mesgme
commented
5 years ago Thanks for getting back to me Ben. Yes it is old however that's the version they've standardised on at work.
It seems like the line repo.gpgcheck(true) if repo.respond_to?(:gpgcheck) in _linux.rb
looks like checks that the repo supports gpg checking and is therefore set to true, but that particular package isn't signed and so there's an issue.
I've hacked a fix to always set gpgchecking to false in a private fork. A more robust solution would be to either: Catch the error when the package is not signed and set gpgcheck(false) or Allow the gpg check to be set in attributes and then honoured in this check.
If either seem appropriate let me know - I can make the change via PR then you can approve if you think it's worth it.
majormoses
commented
5 years ago
repo.gpgcheck(true) if repo.respond_to?(:gpgcheck)
I believe this is actually not meant to test the package if it supports gpg its to test if the resource itself supports gpg keychecks. Perhaps something along the lines of (pseudo code):
repo.gpgcheck(true) if repo.respond_to?(:gpgcheck) && sensu_version >= first_signed_versionI'd certainly accept a PR that implements that properly.
Expected Behavior
Should install without error
Current Behavior
Steps to Reproduce (for bugs)
Run kitchen converge with a centos 6.8 vagrant provisioner.
Context
Unble to install sensu
Your Environment