[Disorderfs 0.5.9] doesn't pass signature verificatino

Santiago Torres-Arias santiago at archlinux.org
Sun Apr 19 23:23:50 UTC 2020


I tried to build disorderfs for Arch, and it seems to me that the tar.gz
in [1] doesn't pass signature verification:

    [santiago at meme-cluster trunk]$ gpg --verify disorderfs-0.5.9.tar.gz disorderfs-0.5.9.tar.gz.asc 
    gpg: Signature made Thu 16 Apr 2020 06:19:16 AM EDT
    gpg:                using RSA key C2FE4BD271C139B86C533E461E953E27D4311E58
    gpg: BAD signature from "Chris Lamb <chris at chris-lamb.co.uk>" [unknown]

Could we get in resigned (or verified that it's proper)?

Thank you!

P.S. If there is anything I can help with the release process of
disorderfs/diffoscope I'd be more than happy to help with...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.reproducible-builds.org/pipermail/rb-general/attachments/20200419/8448a27b/attachment.sig>

More information about the rb-general mailing list