View previous topic :: View next topic |
Author |
Message |
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Tue Jun 20, 2017 10:54 pm Post subject: Can't fetch keys to verify |
|
|
Hello,
Before I get into my issue I want to introduce myself as far as explaining why I'm trying to run Gentoo. I've been running Linux Mint for a while now and I'm getting tired of people on youtube saying that Mint is for noobs. I realize that it is but since I consider myself a junior developer and read on distrowatch as well as elsewhere that Gentoo is for developers I want to try to get iit running in a VM (Linux Mint being the host OS) and see if supports all the hardware and software I'd be running. Now getting to my issue. While going through the install guide here I got stuck trying to verify the installation because I can't even get gpg to fetch either of the two valid keys. I've tired both of the still valid keys listed here this is the output of my terminal
Code: | ~ $ gpg --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: can't open `0xDB6B8C1F96D8BF6D' |
|
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Tue Jun 20, 2017 11:29 pm Post subject: |
|
|
Zane314,
Welcome to Gentoo.
Your command is not complete, add --receive-keys.
Code: | $ gpg --receive-keys --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: key DB6B8C1F96D8BF6D: public key "Gentoo Portage Snapshot Signing Key (Automated Signing Key)" imported
gpg: marginals needed: 3 completes needed: 1 trust model: classic
gpg: depth: 0 valid: 5 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 5u
gpg: next trustdb check due at 2019-02-05
gpg: Total number processed: 1
gpg: imported: 1
| The guide has things in a different order.
Gentoo supports all the same hardware as any other distro using the linux kernel. Likewise for software.
You can check software in a VM but hardware testing is somewhat limited.
For that, do a dual boot system. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Wed Jun 21, 2017 12:32 am Post subject: |
|
|
running that command gives the following output.
Code: | gpg --receive-keys --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: Invalid option "--receive-keys" |
Thanks for the info about the hardware and software support. I'll just do the VM to get used to the install process including installation of extra packages. |
|
Back to top |
|
|
charles17 Advocate
Joined: 02 Mar 2008 Posts: 3664
|
Posted: Wed Jun 21, 2017 5:58 am Post subject: |
|
|
See the --recv-keys? |
|
Back to top |
|
|
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Wed Jun 21, 2017 9:09 am Post subject: |
|
|
charles17 wrote: | See the --recv-keys? |
Got it sorry. Now I get this.
Code: | gpg --recv-keys --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: requesting key 96D8BF6D from hkp server hkps.pool.sks-keyservers.net
gpg: /home/coder/.gnupg/trustdb.gpg: trustdb created
gpg: key 96D8BF6D: public key "Gentoo Portage Snapshot Signing Key (Automated Signing Key)" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg: imported: 1 (RSA: 1)
|
Then I realized from re-reading that part of the guide that that check only checks the .asc file which is one file I hadn't actually downloaded since it was veiwable in my broswer. After copy the contents of and saving the file with that name I re-ran the same command and got this
Code: | gpg --recv-keys --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: requesting key 96D8BF6D from hkp server hkps.pool.sks-keyservers.net
gpg: key 96D8BF6D: "Gentoo Portage Snapshot Signing Key (Automated Signing Key)" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
|
I had saved the file with this name using gedit. install-amd64-minimal-20170615.iso.DIGESTS.asc
What am I doing wrong? |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Wed Jun 21, 2017 10:03 am Post subject: |
|
|
Zane314,
Nothing. That command only fetches the key.
Continue to the next step
Code: | gpg --verify install-amd64-minimal-20141204.iso.DIGESTS.asc |
That's an example, its unlikely you will be using the install-amd64-minimal-20141204.iso in 2017.
Verifying that the digests file is sufficient. Once you have verified the signature on the digests file, you can trust its contents as much as you trust the key.
Then you use the contents of the digest to verify the download. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Wed Jun 21, 2017 9:46 pm Post subject: |
|
|
Ok thanks I'm working on installing now and yes I know minimal isn't needed for the hardware we have nowadays I was just following the guide. Besides I want the full experience of installing from the ground up. |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Thu Jun 22, 2017 8:10 am Post subject: |
|
|
Zane314,
The minimal CD is a bit "hair shirt". As the boot media only provides a set a tools to accomplish the install, it does not contribute any code to the install, you don't lose anything by using a different boot media.
System Rescue CD is good. Its gentoo based and provides a GUI so you can browse the web to read the handbook and the forums while you install.
You still do the install the same way. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
Chiitoo Administrator
Joined: 28 Feb 2010 Posts: 2581 Location: Here and Away Again
|
Posted: Thu Jun 22, 2017 2:59 pm Post subject: ><)))°€ |
|
|
Teegrins, Zane314!
Zane314 wrote: | running that command gives the following output.
Code: | gpg --receive-keys --keyserver hkps.pool.sks-keyservers.net 0xDB6B8C1F96D8BF6D
gpg: Invalid option "--receive-keys" |
|
In case you were wondering about this, the alias '--receive-keys' seems to have been added somewhere between 'app-crypt/gnupg-2.1.15' and 2.1.18 (from the versions available via Portage at this time), though somehow I didn't manage to find the actual commit for it yet. I'd guess NeddySeagoon has something around 2.1.21, while your environment has (or had) something that doesn't yet have it.
Welcome to Gentoo! :] _________________ Kindest of regardses. |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Thu Jun 22, 2017 3:02 pm Post subject: |
|
|
Chiitoo,
Code: | $ gpg --version
gpg (GnuPG) 2.1.21
libgcrypt 1.7.7
...
|
_________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Thu Jun 22, 2017 8:43 pm Post subject: |
|
|
NeddySeagoon wrote: | Zane314,
The minimal CD is a bit "hair shirt". As the boot media only provides a set a tools to accomplish the install, it does not contribute any code to the install, you don't lose anything by using a different boot media.
System Rescue CD is good. Its gentoo based and provides a GUI so you can browse the web to read the handbook and the forums while you install.
You still do the install the same way. |
I'm not quite sure what you mean. I admit that when I wrote that previous post I didn't realize stage 3 files are still used in conjunction with doing a minimal install and I assumed you were referring to this directory which I just now realized isn't an install directory. (my bad) In that case though I don't understand what you meant by what you originally said. What did you mean by "you wouldn't use minimal install in 2017? Previous I assumed you were referring to an install that as precompiled stuff like the stages.
@Chitoo
You hit the nail on the head my gpg version is 1.4.16. Didn't realize Gentoo packages are that far ahead of Mint. |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Thu Jun 22, 2017 10:55 pm Post subject: |
|
|
Zane314,
The minimal CDs all have their build date in their name.
I pointed out that the handbook says Code: | gpg --verify install-amd64-minimal-20141204.iso.DIGESTS.asc |
That's a minimal CD from 4 December 2014. I was pointing out that it was an example and that you would be unlikely to be using a minimal CD from 2014 in 2017.
The admin CD is a step up from the minimal. I've never used it.
As the boot media is just a toolkit for accomplishing the install, almost anything that will provide a root shell can be used for a Gentoo install.
The binaries needed to get started are provided by the stage3 tarball, not the boot media. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
Zane314 n00b
Joined: 20 Jun 2017 Posts: 6
|
Posted: Fri Jun 23, 2017 1:17 am Post subject: |
|
|
I had a felling that's what you meant but I don't know how to get a more updated one since that one came from one of the links that the guide linked to. |
|
Back to top |
|
|
NeddySeagoon Administrator
Joined: 05 Jul 2003 Posts: 54300 Location: 56N 3W
|
Posted: Fri Jun 23, 2017 9:08 am Post subject: |
|
|
Zane314,
No matter, whatever version of the liveCD you have, it worked for you. That's what matters. _________________ Regards,
NeddySeagoon
Computer users fall into two groups:-
those that do backups
those that have never had a hard drive fail. |
|
Back to top |
|
|
|