Hi, Am 14.04.25 um 13:00 schrieb Holger Levsen:
control: reassign -1 src:libreoffice control: severity -1 normal control: affects -1 gpg-from-sq thanks On Mon, Apr 14, 2025 at 10:05:20AM +0200, Justus Winter wrote:Looking purely at the key material I see:[...]It is not incompatible, just that gpg-from-sq rejects weak hash algorithms. Note that the signature extracted from xmlsecurity/qa/unit/signing/data/goodGPG.odt is fine:[...]Therefore, an easy way to recover is to fix the certificates:[...] thanks, reassigning accordingly.
It's unfortunately not that easy. After updating the secring.gpg I get the exact same failure. I wouldn't rule out that's "just" because it's not a C/C++ binary and LO (and gpgme inside that LO process) is not able to call rust binaries... Asked upstream. (Though a --- snip --- #!/bin/sh gpg-sq $@ -- snip --- as gpg also fails.. That means for now I need the Build-Conflicts: even if I added the new secring.gpg, which makes it moot. It's submitted upstream, though. Regards, Rene