[ansible-devel] Bug? package, yum and dnf modules apparently ignore localpkg_gpgcheck on CentOS 8

Thu, 18 Nov 2021 13:36:54 -0800 

I ran into a problem that I think is a bug, but I saw that I should bring 
it up as a question on the mailing list first.  So, my question is, is it 
expected behavior for ansible.builtin.package, ansible.builtin.yum and 
ansible.builtin.dnf to ignore the localpkg_gpgcheck setting in 
/etc/dnf/dnf.conf?

On CentOS 7, the package module and the yum module both honor the 
localpkg_gpgcheck setting in /etc/yum.conf.  If you set it to 0, you can 
install unsigned packages from a file using the package module (which 
doesn't have a disable_gpg_check option).

On CentOS 8, these modules appear to ignore the localpkg_gpgcheck setting 
in /etc/dnf/dnf.conf (which is soft linked to /etc/yum.conf).

Attached is a minimal example of the behavior...
If I just dnf install the RPM, it works like a charm.

-- 
You received this message because you are subscribed to the Google Groups 
"Ansible Development" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/ansible-devel/2f7007e4-9554-4255-be38-f5bd668b48cfn%40googlegroups.com.

[centos@localhost tmp]$ grep "localpkg_gpgcheck" /etc/dnf/dnf.conf
localpkg_gpgcheck=0
[centos@localhost tmp]$ ls -la /etc/yum.conf
lrwxrwxrwx. 1 root root 12 Sep 17 15:05 /etc/yum.conf -> dnf/dnf.conf
[centos@localhost tmp]$ cat playbook.yml
---
- hosts: all
  connection: local
  become: true
  vars:
    ansible_user: centos
  tasks:
    - name: Install local package
      yum:
        name: /tmp/cloud-init-vmware-guestinfo-1.1.0-1.el7.noarch.rpm
        state: latest
[centos@localhost tmp]$ ansible-playbook -i localhost, playbook.yml

PLAY [all] 
*************************************************************************************************************************

TASK [Gathering Facts] 
*************************************************************************************************************
ok: [localhost]

TASK [Install local package] 
*******************************************************************************************************
fatal: [localhost]: FAILED! => {"changed": false, "msg": "Failed to validate 
GPG signature for cloud-init-vmware-guestinfo-1.1.0-1.el7.noarch"}

PLAY RECAP 
*************************************************************************************************************************
localhost                  : ok=1    changed=0    unreachable=0    failed=1    
skipped=0    rescued=0    ignored=0

Reply via email to