[digikam] [Bug 440927] New: Verifying PGP Signature Fails

bugzilla_noreply at kde.org bugzilla_noreply at kde.org
Fri Aug 13 14:48:09 BST 2021 

https://bugs.kde.org/show_bug.cgi?id=440927

            Bug ID: 440927
           Summary: Verifying PGP Signature Fails
           Product: digikam
           Version: 7.3.0
          Platform: macOS (DMG)
                OS: macOS
            Status: REPORTED
          Severity: normal
          Priority: NOR
         Component: Website
          Assignee: digikam-bugs-null at kde.org
          Reporter: software_frank at runbox.com
  Target Milestone: ---

Created attachment 140691
  --> https://bugs.kde.org/attachment.cgi?id=140691&action=edit
gpg session for key verification

SUMMARY

The package digiKam-7.3.0-MacOS-x86-64.pkg fails PGP signature verification
with the key digikamdeveloper at gmail.com (D1CF 2444 A785 8C5F 2FB0...).  Other
downloads, for example the 7.2.0 macOS package and the 7.3.0 Windows package
pass the verification step, so something is wrong with this specific package.

STEPS TO REPRODUCE
1. Download digiKam-7.3.0-MacOS-x86-64.pkg from any mirror
2. Download the accompanying PGP signature
3. Import the digiKam public key.
4. Verify the signature with gpg --verify <>.sig <>. 

OBSERVED RESULT

gpg reports that the package signature is invalid.

EXPECTED RESULT

gpg reports that the package signature is valid.

SOFTWARE/OS VERSIONS
Windows: 
macOS: 11.5.2 
Linux/KDE Plasma: 
(available in About System)
KDE Plasma Version: 
KDE Frameworks Version: 
Qt Version: 

ADDITIONAL INFORMATION

-- 
You are receiving this mail because:
You are watching all bug changes.

More information about the kde-mac mailing list