You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ratis.apache.org by "Attila Doroszlai (Jira)" <ji...@apache.org> on 2021/08/17 09:36:00 UTC
[jira] [Updated] (RATIS-1395) Wrong dash in signature check command
[ https://issues.apache.org/jira/browse/RATIS-1395?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Attila Doroszlai updated RATIS-1395:
------------------------------------
Description:
Steps to verify Ratis download using GPG contain some commands that cannot be used as is:
{code}
$ gpg –import KEYS
gpg: WARNING: no command supplied. Trying to guess what you mean ...
usage: gpg [options] [filename]
{code}
The problem is caused by HTML-specific dash character.
Additionally, {{verify}} command fails due to wrong argument:
{code}
$ gpg --verify apache-ratis-2.1.0-src.tar.gz
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.
{code}
It should be:
{code}
$ gpg --verify apache-ratis-2.1.0-src.tar.gz.asc
gpg: assuming signed data in 'apache-ratis-2.1.0-src.tar.gz'
gpg: Signature made Sat Jun 26 08:17:39 2021 CEST
gpg: using RSA key 1CEF33FA61800117BDB2E0E0D51EA8F00EE79B28
gpg: Good signature from "Marton Elek (CODE SIGNING KEY) <el...@apache.org>" [unknown]
{code}
was:
Steps to verify Ratis download using GPG contain some commands that cannot be used as is:
{code}
$ gpg –import KEYS
gpg: WARNING: no command supplied. Trying to guess what you mean ...
usage: gpg [options] [filename]
{code}
The problem is caused by HTML-specific dash character.
> Wrong dash in signature check command
> -------------------------------------
>
> Key: RATIS-1395
> URL: https://issues.apache.org/jira/browse/RATIS-1395
> Project: Ratis
> Issue Type: Bug
> Components: website
> Reporter: Attila Doroszlai
> Assignee: Attila Doroszlai
> Priority: Major
>
> Steps to verify Ratis download using GPG contain some commands that cannot be used as is:
> {code}
> $ gpg –import KEYS
> gpg: WARNING: no command supplied. Trying to guess what you mean ...
> usage: gpg [options] [filename]
> {code}
> The problem is caused by HTML-specific dash character.
> Additionally, {{verify}} command fails due to wrong argument:
> {code}
> $ gpg --verify apache-ratis-2.1.0-src.tar.gz
> gpg: no valid OpenPGP data found.
> gpg: the signature could not be verified.
> Please remember that the signature file (.sig or .asc)
> should be the first file given on the command line.
> {code}
> It should be:
> {code}
> $ gpg --verify apache-ratis-2.1.0-src.tar.gz.asc
> gpg: assuming signed data in 'apache-ratis-2.1.0-src.tar.gz'
> gpg: Signature made Sat Jun 26 08:17:39 2021 CEST
> gpg: using RSA key 1CEF33FA61800117BDB2E0E0D51EA8F00EE79B28
> gpg: Good signature from "Marton Elek (CODE SIGNING KEY) <el...@apache.org>" [unknown]
> {code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)