Rocky Linux 9 (Fedora 34) cannot recognize the signature added by Gitea

[ExplodingDragon]

Due to ProtonMail/go-crypto#208, RPM versions < 4.17 cannot recognize signature information generated by ProtonMail/go-crypto. (see ProtonMail/go-crypto#263)

There is no need to consider fixing this issue until a better solution is available; this issue is only for archiving purposes.

Affected versions : all versions after a8e7cae.

[wxiaoguang]

The ProtonMail/go-crypto 1.1.x is required by go-git 5.13

• https://github.com/go-git/go-git/blob/v5.12.0/go.mod (go-crypto 1.0)
• https://github.com/go-git/go-git/blob/v5.13.0/go.mod (go-crypto 1.1)

And yes, according to ProtonMail/go-crypto#263, it is a regression in go-crypto 1.1 ..... I guess it should be fixed by upstream, either revert to the old behavior, or introduce an option

ps: Gitea 1.23.x is also affected because go-git there was also upgraded to 5.13 to fix security issues (#33133 in 1.23)

[wxiaoguang]

Upstream has merged the fix: Make Issuer Key ID signature subpacket non-critical ProtonMail/go-crypto#266