You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ratis.apache.org by "Attila Doroszlai (Jira)" <ji...@apache.org> on 2021/08/17 09:36:00 UTC

[jira] [Updated] (RATIS-1395) Wrong dash in signature check command

     [ https://issues.apache.org/jira/browse/RATIS-1395?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Attila Doroszlai updated RATIS-1395:
------------------------------------
    Description: 
Steps to verify Ratis download using GPG contain some commands that cannot be used as is:

{code}
$ gpg –import KEYS
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
usage: gpg [options] [filename]
{code}

The problem is caused by HTML-specific dash character.

Additionally, {{verify}} command fails due to wrong argument:

{code}
$ gpg --verify apache-ratis-2.1.0-src.tar.gz
gpg: no valid OpenPGP data found.
gpg: the signature could not be verified.
Please remember that the signature file (.sig or .asc)
should be the first file given on the command line.
{code}

It should be:

{code}
$ gpg --verify apache-ratis-2.1.0-src.tar.gz.asc
gpg: assuming signed data in 'apache-ratis-2.1.0-src.tar.gz'
gpg: Signature made Sat Jun 26 08:17:39 2021 CEST
gpg:                using RSA key 1CEF33FA61800117BDB2E0E0D51EA8F00EE79B28
gpg: Good signature from "Marton Elek (CODE SIGNING KEY) <el...@apache.org>" [unknown]
{code}

  was:
Steps to verify Ratis download using GPG contain some commands that cannot be used as is:

{code}
$ gpg –import KEYS
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
usage: gpg [options] [filename]
{code}

The problem is caused by HTML-specific dash character.


> Wrong dash in signature check command
> -------------------------------------
>
>                 Key: RATIS-1395
>                 URL: https://issues.apache.org/jira/browse/RATIS-1395
>             Project: Ratis
>          Issue Type: Bug
>          Components: website
>            Reporter: Attila Doroszlai
>            Assignee: Attila Doroszlai
>            Priority: Major
>
> Steps to verify Ratis download using GPG contain some commands that cannot be used as is:
> {code}
> $ gpg –import KEYS
> gpg: WARNING: no command supplied.  Trying to guess what you mean ...
> usage: gpg [options] [filename]
> {code}
> The problem is caused by HTML-specific dash character.
> Additionally, {{verify}} command fails due to wrong argument:
> {code}
> $ gpg --verify apache-ratis-2.1.0-src.tar.gz
> gpg: no valid OpenPGP data found.
> gpg: the signature could not be verified.
> Please remember that the signature file (.sig or .asc)
> should be the first file given on the command line.
> {code}
> It should be:
> {code}
> $ gpg --verify apache-ratis-2.1.0-src.tar.gz.asc
> gpg: assuming signed data in 'apache-ratis-2.1.0-src.tar.gz'
> gpg: Signature made Sat Jun 26 08:17:39 2021 CEST
> gpg:                using RSA key 1CEF33FA61800117BDB2E0E0D51EA8F00EE79B28
> gpg: Good signature from "Marton Elek (CODE SIGNING KEY) <el...@apache.org>" [unknown]
> {code}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)