FS#75725 : [matrix-synapse] FTBFS because PGP signatures could not be verified

FS#75725 - [matrix-synapse] FTBFS because PGP signatures could not be verified

Attached to Project: Community Packages
Opened by Zhang Yi-ning (yi-ning) - Monday, 29 August 2022, 07:19 GMT
Last edited by Toolybird (Toolybird) - Monday, 29 August 2022, 20:37 GMT

Task Type	Bug Report
Category	Packages
Status	Closed
Assigned To	No-one
Architecture	All
Severity	Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description:
Verifying source file signatures with gpg...
matrix-synapse git repo ... FAILED (unknown public key 8884880D2EFE5FF4)
==> ERROR: One or more PGP signatures could not be verified!
==> ERROR: Could not download sources.

After I imported the public key manually with gpg --recv-key 8884880D2EFE5FF4, the package can be successfully built.

Additional info:
* package version(s) 1.65.0
* config and/or log files etc.
* link to upstream bug report, if any

Steps to reproduce:
1. asp checkout
2. extra-x86_64-build

This task depends upon

Closed by Toolybird (Toolybird)
Monday, 29 August 2022, 20:37 GMT
Reason for closing: Not a bug
Additional comments about closing: See comments

Comment by Toolybird (Toolybird) - Monday, 29 August 2022, 20:37 GMT

Thanks for reporting, but please read [1] to see why this is not a bug and why Arch has come up with a workaround for unreliable PGP infra.

[1] https://gitlab.archlinux.org/archlinux/rfcs/-/blob/master/rfcs/0011-store-source-signing-keys.rst

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#75725 - [matrix-synapse] FTBFS because PGP signatures could not be verified

Details

Loading...