GNU bug report logs -
#36051
"guix import gnu" says public key is not in keyring
Previous Next
Full log
View this message in rfc822 format
[Message part 1 (text/plain, inline)]
Your message dated Mon, 02 Sep 2019 21:41:32 +0200
with message-id <87mufm7afn.fsf <at> gnu.org>
and subject line Re: bug#36051: "guix import gnu" says public key is not in keyring
has caused the debbugs.gnu.org bug report #36051,
regarding "guix import gnu" says public key is not in keyring
to be marked as done.
(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)
--
36051: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=36051
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems
[Message part 2 (message/rfc822, inline)]
I am trying to define the gnurobots package using guix import. I try
the following and get the corresponding results:
~$ guix import gnu gnurobots
Starting download of /tmp/guix-file.sRnZ4I
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz...
gnurobots-1.2.0.tar.gz 173KiB 163KiB/s 00:01
[##################] 100.0%
Starting download of /tmp/guix-file.cZoC7H
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz.sig...
….0.tar.gz.sig 72B 170KiB/s 00:00
[##################] 100.0% In execvp of gpgv: No such file or directory
guix import: warning: signature verification failed for
`ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz' guix import:
warning: (could be because the public key is not in your keyring) guix
import: error: 'gnu' import failed
~$ guix import gnu --key-download=interactive gnurobots
Starting download of /tmp/guix-file.e0KAGy
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz...
gnurobots-1.2.0.tar.gz 173KiB 162KiB/s 00:01
[##################] 100.0%
Starting download of /tmp/guix-file.lStU1V
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz.sig...
….0.tar.gz.sig 72B 111KiB/s 00:00
[##################] 100.0% In execvp of gpgv: No such file or directory
guix import: warning: signature verification failed for
`ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz' guix import:
warning: (could be because the public key is not in your keyring) guix
import: error: 'gnu' import failed
~$ guix import gnu --key-download=always gnurobots
Starting download of /tmp/guix-file.DtCU1Y
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz...
gnurobots-1.2.0.tar.gz 173KiB 178KiB/s 00:01
[##################] 100.0%
Starting download of /tmp/guix-file.QOlbzN
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz.sig...
….0.tar.gz.sig 72B 48KiB/s 00:00
[##################] 100.0% In execvp of gpgv: No such file or directory
guix import: warning: signature verification failed for
`ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz' guix import:
warning: (could be because the public key is not in your keyring) guix
import: error: 'gnu' import failed
~$ guix import gnu --key-download=never gnurobots
Starting download of /tmp/guix-file.fgTq6E
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz...
gnurobots-1.2.0.tar.gz 173KiB 132KiB/s 00:01
[##################] 100.0%
Starting download of /tmp/guix-file.v4rsPY
From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz.sig...
….0.tar.gz.sig 72B 51KiB/s 00:00
[##################] 100.0% In execvp of gpgv: No such file or directory
guix import: warning: signature verification failed for
`ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz' guix import:
warning: (could be because the public key is not in your keyring) guix
import: error: 'gnu' import failed
It appears the --key-download option does nothing, even though the
documentation says --key-download=always should automatically
install the missing keys, and there should be a prompt if the option
is omitted. This is fixed when I install gnupg. It appears guix needs
gnupg as a propagated input for this function to work statelessly.
If anyone has a contrary opinion, please express it. I will
make, test, and submit a patch on Monday if nobody beats me to it.
--Jesse
[Message part 3 (message/rfc822, inline)]
Hi Jesse,
Jesse Gibbons <jgibbons2357 <at> gmail.com> (by way of Jesse Gibbons
<jgibbons2357 <at> gmail.com>) skribis:
> On Sun, 02 Jun 2019 18:13:16 +0200
> Ludovic Courtès <ludo <at> gnu.org> wrote:
>
>> Hi,
>>
>> Jesse Gibbons <jgibbons2357 <at> gmail.com> skribis:
>>
>> > Starting download of /tmp/guix-file.cZoC7H
>> > From ftp://ftp.gnu.org/gnu/gnurobots/gnurobots-1.2.0.tar.gz.sig...
>> > ….0.tar.gz.sig 72B 170KiB/s 00:00
>> > [##################] 100.0% In execvp of gpgv: No such file or
>> > directory
>>
>> The real issue here is that ‘gpgv’ cannot be found in $PATH.
>>
>> I think you have to run “guix install gnupg” to fix it.
>>
>> HTH,
>> Ludo’.
>
> I pointed that out at the end of my bug report. I thought guix was
> supposed to be stateless, with behavior independent on what the user has
> installed, so I recommended adding gnupg as a propagated input so it
> wouldn't be dependant on a user (or administrator) installing gnupg.
> If it is preferrable not to install gnupg alongside guix, then I will
> note in the docs that gnupg must be found in $PATH for "guix import
> gnu", "guix import elpa" and "guix refresh" to be successful, and then
> we can close this issue.
I finally went ahead and mentioned it in the manual in commit
d34e9114e679666dfbf7caf577117010eca20520.
Thanks,
Ludo’.
This bug report was last modified 5 years and 258 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.