Bug#969590: marked as done (sqop: Cannot use certificates for signature verification?)

Sat, 20 Jul 2024 11:06:26 -0700 

Your message dated Sun, 21 Jul 2024 02:04:07 +0800
with message-id <e75b0c80-6c6c-4c37-ac27-147399a7d...@sail.ng>
and subject line Re: sqop: Cannot use certificates for signature verification?
has caused the Debian Bug report #969590,
regarding sqop: Cannot use certificates for signature verification?
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
969590: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=969590
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Package: sqop
Version: 0.17.0-2
Severity: normal

Hi!

I was trying out sqop, to potentially add native support for it into
dpkg-dev, but when trying to verify a signature, it does not seem work
as expected and I'm at a loss due to the lack of man page (see the
other report :).

  $ apt source libbsd
  $ sqop verify libbsd_0.10.0.orig.tar.xz.asc \
      libbsd-0.10.0/debian/upstream/signing-key.asc \
      < libbsd_0.10.0.orig.tar.xz
  Missing key 4F3E74F436050C10F5696574B972BF3EA4AE57A3, which is needed to 
verify signature.
           No acceptable signatures found
  $ sqop verify libbsd_0.10.0.orig.tar.xz.asc \
      /usr/share/keyrings/debian-keyring.gpg \
      < libbsd_0.10.0.orig.tar.xz 
  Failed to load key from file "/usr/share/keyrings/debian-keyring.gpg"
    because: Invalid data type 

(The error message output looks a bit mangled too.)

The latter does work with sqv, so its failure here is rather
confusing, and I'm not sure what to pass instead.

Thanks,
Guillem

--- End Message ---
--- Begin Message --- 
On Tue, 28 Nov 2023 00:38:15 +0100 Guillem Jover <guil...@debian.org> wrote:
> Hi!
> 
> On Mon, 2023-11-27 at 17:14:16 +0800, Blair Noctis wrote:
> > > Package: sqop
> > > Version: 0.17.0-2
> > > Severity: normal
> > 
> > > I was trying out sqop, to potentially add native support for it into
> > > dpkg-dev, but when trying to verify a signature, it does not seem work
> > > as expected and I'm at a loss due to the lack of man page (see the
> > > other report :).
> > 
> > Since even oldstable (11/bulleye as of 2023-11-27) has 0.22.1 of sqop, and
> > stable (12/bookworm) has 0.27.3, unstable 0.31.0, is this still relevant?
> 
> Ah, I think this can be closed, yes. dpkg even grew sqop support some
> time ago.

Closing with Guillem's approval.

-- 
Sdrager,
Blair Noctis

Attachment: OpenPGP_signature.asc
Description: OpenPGP digital signature


--- End Message ---

Reply via email to