From 6897b52335f430bf37e7d0c801d5e66b33fb0cd4 Mon Sep 17 00:00:00 2001
From: nolim1t <hello@nolim1t.co>
Date: Tue, 14 Sep 2021 15:12:34 +0700
Subject: [PATCH] Change the way verification works

---
 22.0/Dockerfile | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/22.0/Dockerfile b/22.0/Dockerfile
index acf4578..cde31cc 100644
--- a/22.0/Dockerfile
+++ b/22.0/Dockerfile
@@ -52,8 +52,10 @@ FROM preparer-base AS preparer-release
 
 ARG VERSION
 
-# Download checksums
+# Download sigs
 ADD https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS.asc  ./
+# Download checksums
+ADD https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS  ./
 
 # Download source code (intentionally different website than checksums)
 # uncomment
@@ -61,10 +63,10 @@ ADD https://bitcoincore.org/bin/bitcoin-core-$VERSION/SHA256SUMS.asc  ./
 ADD https://bitcoincore.org/bin/bitcoin-core-$VERSION/bitcoin-$VERSION.tar.gz ./
 
 # Verify that hashes are signed with the previously imported key
-RUN gpg --verify SHA256SUMS.asc
+RUN gpg --verify SHA256SUMS.asc SHA256SUMS
 
 # Verify that downloaded source-code archive matches exactly the hash that's provided
-RUN grep " bitcoin-$VERSION.tar.gz\$" SHA256SUMS.asc | sha256sum -c -
+RUN grep " bitcoin-$VERSION.tar.gz\$" SHA256SUMS | sha256sum -c -
 
 # Extract
 RUN tar -xzf "bitcoin-$VERSION.tar.gz" && \