RPM-SETUP-AUTOSIGN(1) General Commands Manual RPM-SETUP-AUTOSIGN(1)

rpm-setup-autosign - Set up automatic signing for rpmbuild

rpm-setup-autosign [options]

rpm-setup-autosign is used to set up automatic signing from rpmbuild(1). It generates a user- and host-specific, passwordless OpenPGP key, configures rpmbuild(1) to use that key and exports the public key (aka certificate) for importing to the persistent rpm(8) keyring.

The purpose of automatic signing is to make testing local builds painless. For distributing packages, it's recommended to use a separate signing account that cannot be compromised by a build.

-p <gpg|sq>, --prog <gpg|sq>

Specify the signing program to use: GnuPG or Sequoia PGP's sq.

On successful completion, one or more of the following macros will be configured in the user's macro configuration file. See rpm-config(5) for details:

  • %_openpgp_autosign_id
  • %_openpgp_sign

On success, 0 is returned, a nonzero failure code otherwise.

~/.config/rpm/rpmbuild-*.asc
~/.config/rpm/macros

/usr/lib/rpm/rpm-setup-autosign -p sq

Set up rpmbuild(1) autosigning using Sequoia-sq.

rpm(8) rpmsign(1) rpmbuild(1)

http://www.rpm.org/

2026-01-08 RPM 6.0.1