workaround
TMPDIR=$(mktemp -d)
git clone https://aur.archlinux.org/freeipa.git $TMPDIR
gpg --import $TMPDIR/keys/pgp/*asc
rm -fr $TMPDIR
Search Criteria
Package Details: freeipa-common 4.12.2-2
Package Actions
| Git Clone URL: | https://aur.archlinux.org/freeipa.git (read-only, click to copy) |
|---|---|
| Package Base: | freeipa |
| Description: | Common files used by IPA |
| Upstream URL: | http://www.freeipa.org/ |
| Keywords: | freeipa identity management policy trusts |
| Licenses: | GPL3 |
| Submitter: | chenxiaolong |
| Maintainer: | patlefort |
| Last Packager: | patlefort |
| Votes: | 24 |
| Popularity: | 0.26 |
| First Submitted: | 2012-11-15 23:50 (UTC) |
| Last Updated: | 2024-12-23 11:47 (UTC) |
Dependencies (16)
- ding-libs (make)
- gettext (gettext-gitAUR) (make)
- krb5 (krb5-gitAUR) (make)
- libsasl (make)
- libxmlrpc (make)
- nspr (nspr-hgAUR) (make)
- nss (nss-hgAUR) (make)
- openldap (openldap-gnutlsAUR) (make)
- openssl (openssl-gitAUR, openssl-staticAUR) (make)
- popt (popt-gitAUR) (make)
- python (python37AUR, python311AUR, python310AUR) (make)
- python-jinja (make)
- python-pyasn1-modules (make)
- python-setuptools (make)
- python-systemd (make)
- sssd (sssd-gitAUR, sssd-nosmbAUR) (make)
Required by (3)
Sources (5)
thekoma commented on 2024-08-01 14:07 (UTC)
patlefort commented on 2024-07-23 11:37 (UTC)
Keys are in keys/pgp of this package.
BPplays commented on 2024-07-23 09:11 (UTC)
gpg keys are still broken
pavkamlc commented on 2024-06-04 06:43 (UTC)
At now I have problem only with building. pgp key must be imported manualy but then build and ipa-client-install works without problem.
patlefort commented on 2024-06-04 02:00 (UTC)
Version 4.12 contain a fix for this exact issue: https://pagure.io/freeipa/c/a45a7a20d96af51d463a285cb9318582720be708?branch=master and some discussion here: https://www.mail-archive.com/freeipa-users@lists.fedorahosted.org/msg17613.html so I'm at a loss for what could be the problem. Can you try a clean build and also make sure you have the latest python-cryptography installed from system and not from pip?
CupricReki commented on 2024-06-03 22:56 (UTC)
@patlefort Still getting the same issue as @pavkamic with 4.12.
patlefort commented on 2024-06-02 13:00 (UTC)
I've included the pgp keys in keys/pgp of this package. Let me know if it still happen on version 4.12.
pavkamlc commented on 2024-06-02 12:01 (UTC) (edited on 2024-06-02 12:11 (UTC) by pavkamlc)
With version 4.11.1-3 I have this problem with or without downgraded python-crypthography:
2024-06-02T11:57:11Z ERROR unable to convert the attribute 'cacertificate;binary' value b'0\x82\x04\x8b0\x82\x0......xe2' to type <class 'cryptography.x509.base.Certificate'>
Now is there newer version 4.12.0-2 which I cannot upgrade because unknown pgp key:
gpg: error reading key: No public key
pub rsa4096 2017-11-28 [SC]
0E63D716D76AC080A4A33513F40800B6298EB963
uid [ unknown] FreeIPA Master Signing Key
:: PGP keys need importing:
-> D756764D4D7E297C6DAD117269876F72A6E2D34F, required by: freeipa
:: Import? [Y/n]
:: Importing keys with gpg...
gpg: keyserver receive failed: No data
-> problem importing keys
DVS999 commented on 2024-05-23 22:24 (UTC)
Hoping this may help other people. I've had a few problems with freeipa (specifically ipa-client-install) with the current python-cryptography package, 42.0.6-1 at the time of writing.
retrieving schema for SchemaCache url=ldap://xxx.xxx.xxx:389 conn=<ldap.ldapobject.SimpleLDAPObject object at 0x792aa8a01790>
unable to convert the attribute 'cacertificate;binary' value b'0\x82\x04\xac0\x82\x03\x14\xa0\x03\x02\x01\........
I forced a downgrade of python-cryptography and ipa-client-install then completed without issue.
python3 -m pip install --break-system-packages cryptography==37.0.4
Probably not the best solution but solved my immediate problem.
Pinned Comments
patlefort commented on 2024-07-23 11:37 (UTC)
Keys are in
keys/pgpof this package.