[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: authenticating git checkouts
From: |
Simon Josefsson |
Subject: |
Re: authenticating git checkouts |
Date: |
Thu, 09 May 2024 11:41:54 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) |
Simon Josefsson via <help-guix@gnu.org> writes:
> jas@kaka:~/src/libntlm$ guix git authenticate
> guix git: successfully authenticated commit
> a94cffff085b17dd72904d8913411e1e85477e12
> jas@kaka:~/src/libntlm$ git commit -m"maint: Mention guix git introductory
> commit." README.md
> [master 4f64fd9] maint: Mention guix git introductory commit.
> 1 file changed, 8 insertions(+)
> jas@kaka:~/src/libntlm$ guix git authenticate
> Authenticating commits a94cfff to 4f64fd9 (1 new commits)...
> ▕██████████████████████████████████████████████████████████████████████████████▏guix
> git: fel: commit 4f64fd94d5e11b0f9226a3e15cae69ef9fdbb585 not signed by an
> authorized key: A3CC 9C87 0B9D 310A BAD4 CF2F 5172 2B08 FE47 45A2
> jas@kaka:~/src/libntlm$
I forgot to show git log output here, proving that this git commit was
actually signed: see below. I suspect there is some primary vs subkey
confusion, but maybe it could be some parsing issue? I'm using guix on
Trisquel 11 with fairly old gpg and git.
jas@kaka:~/src/libntlm$ git log -1 --show-signature
commit 4f64fd94d5e11b0f9226a3e15cae69ef9fdbb585 (HEAD -> master)
gpg: Signatur gjord tor 9 maj 2024 10:49:27 CEST
gpg: med EDDSA-nyckeln A3CC9C870B9D310ABAD4CF2F51722B08FE4745A2
gpg: Korrekt signatur från "Simon Josefsson <simon@josefsson.org>"
[förbehållslös]
Author: Simon Josefsson <simon@josefsson.org>
Date: Thu May 9 10:49:27 2024 +0200
maint: Mention guix git introductory commit.
jas@kaka:~/src/libntlm$
/Simon
signature.asc
Description: PGP signature