You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Michael Cronenworth <mi...@cchtml.com> on 2011/11/02 14:51:15 UTC
sa-update has been failing gpg verification
Hello,
I'm using Spamassassin 3.3.2 on Fedora 15. I'm using the distro supplied
system script and the included automatic cron job to run sa-update every
night. Any output from sa-update is put into /var/log/sa-update.log.
Spam filtering and updating has been functioning correctly up until
three days ago.
For the past three days sa-update has not been able to update. I receive
this in the sa-update.log:
error: GPG validation failed!
The update downloaded successfully, but the GPG signature verification
failed.
channel: GPG validation failed, channel failed
02-Nov-2011 05:35:21: SpamAssassin: Update available, but download or extract failed
Is there any thing I can look at to see what's causing this GPG check to
fail?
Thanks,
Michael
Re: sa-update has been failing gpg verification
Posted by Karsten Bräckelmann <gu...@rudersport.de>.
On Sat, 2011-11-05 at 18:51 -0500, Michael Cronenworth wrote:
> > Running sa-update manually as root does not produce any error message.
> > The update completes successfully. I will file a bug with Fedora,
> If anyone is curious the problem seems to be caused by SELinux denying
> gpg access to a temp file.
>
> https://bugzilla.redhat.com/show_bug.cgi?id=747401
Ah, good to know. Thanks for the update, Michael.
--
char *t="\10pse\0r\0dtu\0.@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
Re: sa-update has been failing gpg verification
Posted by Michael Cronenworth <mi...@cchtml.com>.
On 11/02/2011 01:26 PM, Michael Cronenworth wrote:
> Running sa-update manually as root does not produce any error message.
> The update completes successfully. I will file a bug with Fedora,
> however, the last Fedora update was over a month ago.
If anyone is curious the problem seems to be caused by SELinux denying
gpg access to a temp file.
https://bugzilla.redhat.com/show_bug.cgi?id=747401
Re: sa-update has been failing gpg verification
Posted by da...@chaosreigns.com.
On 11/02, Karsten Bräckelmann wrote:
> The reason for this breaking about 3 days ago, while the last distro
> update was older, most likely would be the updates itself -- about 3
> days ago is when a new stock rules update has been pushed, with no
> updates for a couple weeks previously.
9.1 weeks.
--
"it's not how good you are, it's how bad you want it" - no fear
http://www.ChaosReigns.com
Re: sa-update has been failing gpg verification
Posted by Karsten Bräckelmann <gu...@rudersport.de>.
On Wed, 2011-11-02 at 13:26 -0500, Michael Cronenworth wrote:
> Karsten Bräckelmann wrote:
> > Manually running 'sa-update -D', and dig through the verbose debug
> > output for some relevant information.
>
> Running sa-update manually as root does not produce any error message.
> The update completes successfully. I will file a bug with Fedora,
> however, the last Fedora update was over a month ago.
Good, so it probably is related to your cron job's environment.
The reason for this breaking about 3 days ago, while the last distro
update was older, most likely would be the updates itself -- about 3
days ago is when a new stock rules update has been pushed, with no
updates for a couple weeks previously.
--
char *t="\10pse\0r\0dtu\0.@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
Re: sa-update has been failing gpg verification
Posted by Michael Cronenworth <mi...@cchtml.com>.
Karsten Bräckelmann wrote:
> Manually running 'sa-update -D', and dig through the verbose debug
> output for some relevant information.
Running sa-update manually as root does not produce any error message.
The update completes successfully. I will file a bug with Fedora,
however, the last Fedora update was over a month ago.
Re: sa-update has been failing gpg verification
Posted by Karsten Bräckelmann <gu...@rudersport.de>.
On Wed, 2011-11-02 at 08:51 -0500, Michael Cronenworth wrote:
> For the past three days sa-update has not been able to update. I receive
> this in the sa-update.log:
>
> error: GPG validation failed!
> The update downloaded successfully, but the GPG signature verification
> failed.
> channel: GPG validation failed, channel failed
> 02-Nov-2011 05:35:21: SpamAssassin: Update available, but download or extract failed
>
>
> Is there any thing I can look at to see what's causing this GPG check to
> fail?
Manually running 'sa-update -D', and dig through the verbose debug
output for some relevant information.
--
char *t="\10pse\0r\0dtu\0.@ghno\x4e\xc8\x79\xf4\xab\x51\x8a\x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}