Skip to content

Rocky Linux 9 (Fedora 34) cannot recognize the signature added by Gitea #33296

New issue
New issue
Closed
#33745
Closed
Rocky Linux 9 (Fedora 34) cannot recognize the signature added by Gitea#33296
#33745
Labels
type/bugtype/upstreamThis is an issue in one of Gitea's dependencies and should be reported there
Milestone
1.23.5
@ExplodingDragon

Description

@ExplodingDragon
ExplodingDragon
opened on Jan 16, 2025 · edited by ExplodingDragon
Contributor

Due to ProtonMail/go-crypto#208, RPM versions < 4.17 cannot recognize signature information generated by ProtonMail/go-crypto. (see ProtonMail/go-crypto#263)

There is no need to consider fixing this issue until a better solution is available; this issue is only for archiving purposes.

Affected versions : all versions after a8e7cae.

Activity

ExplodingDragon
added
type/bug
on Jan 16, 2025
wxiaoguang

wxiaoguang commented on Jan 16, 2025

@wxiaoguang
wxiaoguang
on Jan 16, 2025 · edited by wxiaoguang
Contributor

The ProtonMail/go-crypto 1.1.x is required by go-git 5.13

And yes, according to ProtonMail/go-crypto#263, it is a regression in go-crypto 1.1 ..... I guess it should be fixed by upstream, either revert to the old behavior, or introduce an option

ps: Gitea 1.23.x is also affected because go-git there was also upgraded to 5.13 to fix security issues (#33133 in 1.23)

wxiaoguang
added
type/upstreamThis is an issue in one of Gitea's dependencies and should be reported there
on Jan 16, 2025
wxiaoguang
mentioned this on Jan 25, 2025
wxiaoguang

wxiaoguang commented on Feb 27, 2025

@wxiaoguang
wxiaoguang
on Feb 27, 2025 · edited by lunny
Contributor

Upstream has merged the fix: Make Issuer Key ID signature subpacket non-critical ProtonMail/go-crypto#266

lunny
mentioned this on Feb 27, 2025
lunny
added this to the 1.23.5 milestone on Feb 27, 2025
wxiaoguang
closed this as completedin #33745on Feb 28, 2025
wxiaoguang
added a commit that references this issue on Feb 28, 2025

upgrade go-crypto from 1.1.5 to 1.1.6 (#33745)

ae4a3d7
lunny
added a commit that references this issue on Feb 28, 2025

upgrade go-crypto from 1.1.5 to 1.1.6 (go-gitea#33745)

579e138
lunny
mentioned this on Feb 28, 2025
go-gitea
locked as resolved and limited conversation to collaborators on May 30, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    type/bugtype/upstreamThis is an issue in one of Gitea's dependencies and should be reported there

    Type

    No type

    Projects

    No projects

    Milestone

    Relationships

    None yet

      Development

      Participants

      @lunny@wxiaoguang@ExplodingDragon

      Issue actions
        Rocky Linux 9 (Fedora 34) cannot recognize the signature added by Gitea · Issue #33296 · go-gitea/gitea