881679 – GLEP 79: Failing repo verification with gemato due to invalid cross-certification

Bug 881679 - GLEP 79: Failing repo verification with gemato due to invalid cross-certification

Summary: GLEP 79: Failing repo verification with gemato due to invalid cross-certifica...

Status:	UNCONFIRMED

Alias:	None

Product:	Gentoo Infrastructure
Classification:	Unclassified
Component:	Other (show other bugs)
Hardware:	All Linux

Importance:	Normal normal
Assignee:	Gentoo Infrastructure

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2022-11-17 18:40 UTC by David Sardari
Modified:	2022-11-21 23:30 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Steps to reproduce (steps.txt,2.35 KB, text/plain) 2022-11-17 18:41 UTC, David Sardari	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description David Sardari 2022-11-17 18:40:07 UTC

The repo verification as suggested by the gemato project fails ([1]).

[1] https://github.com/projg2/gemato/#verification

Reproducible: Always

Steps to Reproduce:
The steps taken are shown in attached .txt.
Actual Results:  
Repo verification fails.

Expected Results:  
Repo verification should succeed.

This could be solved by resigning the chain. While you are it, you could update selfsigs and get rid of SHA1 based signatures.

Comment 1 David Sardari 2022-11-17 18:41:42 UTC

Created attachment 833211 [details]
Steps to reproduce