LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (https://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   Bad signature on every kernel I download. Am I checking wrong? (https://www.linuxquestions.org/questions/linux-newbie-8/bad-signature-on-every-kernel-i-download-am-i-checking-wrong-4175457721/)

Miranden 04-10-2013 04:29 PM
Bad signature on every kernel I download. Am I checking wrong?
 
Hi,

I am trying to compile a kernel, but every one I download fails the gpg check on the sign file. I have never done this before. Did I do something wrong? Thanks.

Code:
bash-4.2# cd Linux\ Kernels/
bash-4.2# ls
keys.txt  linux-3.8.6.tar.sign        linux-3.8.6.tar.xz
bash-4.2# gpg linux-3.8.6.tar.sign
Detached signature.
Please enter name of data file: linux-3.8.6.tar.xz
gpg: Signature made Fri 05 Apr 2013 12:49:42 PM EDT using RSA key ID 6092693E
gpg: Can't check signature: public key not found
bash-4.2# ^C
bash-4.2# gpg --keyserver pgpkeys.mit.edu --recv-key 6092693E
gpg: requesting key 6092693E from hkp server pgpkeys.mit.edu
gpg: key 6092693E: public key "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:              imported: 1  (RSA: 1)
bash-4.2# gpg linux-3.8.6.tar.xz
gpg: [don't know]: invalid packet (ctb=6b)
bash-4.2# gpg linux-3.8.6.tar.sign
Detached signature.
Please enter name of data file: linux-3.8.6.tar.xz
gpg: Signature made Fri 05 Apr 2013 12:49:42 PM EDT using RSA key ID 6092693E
gpg: BAD signature from "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>"
bash-4.2# wget https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.8.6.tar.xz
--2013-04-10 17:15:42--  https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.8.6.tar.xz
Resolving www.kernel.org (www.kernel.org)... 198.145.20.140, 149.20.20.133
Connecting to www.kernel.org (www.kernel.org)|198.145.20.140|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 70996924 (68M) [application/x-xz]
Saving to: 'linux-3.8.6.tar.xz.1'

100%[==========================================================>] 70,996,924  1.29MB/s  in 58s   

2013-04-10 17:16:41 (1.17 MB/s) - 'linux-3.8.6.tar.xz.1' saved [70996924/70996924]

bash-4.2# ls
keys.txt  linux-3.8.6.tar.sign        linux-3.8.6.tar.xz  linux-3.8.6.tar.xz.1
bash-4.2# gpg linux-3.8.6.tar.sign
Detached signature.
Please enter name of data file: linux-3.8.6.tar.xz.1
gpg: Signature made Fri 05 Apr 2013 12:49:42 PM EDT using RSA key ID 6092693E
gpg: BAD signature from "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>"
bash-4.2# cd try2/
bash-4.2# wget https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.4.39.tar.xz
--2013-04-10 17:20:10--  https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.4.39.tar.xz
Resolving www.kernel.org (www.kernel.org)... 149.20.20.133, 198.145.20.140
Connecting to www.kernel.org (www.kernel.org)|149.20.20.133|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 67124864 (64M) [application/x-xz]
Saving to: 'linux-3.4.39.tar.xz'

100%[==========================================================>] 67,124,864  410KB/s  in 1m 57s

2013-04-10 17:22:08 (560 KB/s) - 'linux-3.4.39.tar.xz' saved [67124864/67124864]

bash-4.2# wget https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.4.39.tar.sign
--2013-04-10 17:22:52--  https://www.kernel.org/pub/linux/kernel/v3.x/linux-3.4.39.tar.sign
Resolving www.kernel.org (www.kernel.org)... 198.145.20.140, 149.20.20.133
Connecting to www.kernel.org (www.kernel.org)|198.145.20.140|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 836 [application/pgp-signature]
Saving to: 'linux-3.4.39.tar.sign'

100%[==========================================================>] 836        --.-K/s  in 0s     

2013-04-10 17:22:53 (44.1 MB/s) - 'linux-3.4.39.tar.sign' saved [836/836]

bash-4.2# ls
linux-3.4.39.tar.sign  linux-3.4.39.tar.xz
bash-4.2# gpg linux-3.4.39.tar.sign
Detached signature.
Please enter name of data file: linux-3.4.39.tar.xz
gpg: Signature made Fri 05 Apr 2013 01:09:35 PM EDT using RSA key ID 6092693E
gpg: BAD signature from "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>"
bash-4.2#

Emerson 04-10-2013 05:53 PM
Quote:
cd Linux\ Kernels/
Sorry but I've never seen a crazy thing like this associated with Linux kernel. I wouldn't be surprised if this is the root of your issue.

Miranden 04-10-2013 06:31 PM
Quote:
Originally Posted by Emerson (Post 4929380)
Sorry but I've never seen a crazy thing like this associated with Linux kernel. I wouldn't be surprised if this is the root of your issue.
Ah, sorry, you're probably not used to seeing that because it's a bit of a Windows artifact. I downloaded the kernel onto a flash drive under a Windows machine, into a folder named "Linux Kernels." It had a space in it, you see, so I had to use the slash like that as an escape character to get into the directory under Linux.

Anyway, I just found the problem. I evidently needed to unxz it first. This worked:

Code:
bash-4.2# unxz linux-3.8.6.tar.xz
bash-4.2# gpg --verify linux-3.8.6.tar.sign
gpg: Signature made Fri 05 Apr 2013 12:49:42 PM EDT using RSA key ID 6092693E
gpg: Good signature from "Greg Kroah-Hartman (Linux kernel stable release signing key) <greg@kroah.com>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 647F 2865 4894 E3BD 4571  99BE 38DB BDC8 6092 693E
bash-4.2#
Thanks.


All times are GMT -5. The time now is 01:19 PM.