From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ciao.gmane.io (ciao.gmane.io [116.202.254.214]) by sourceware.org (Postfix) with ESMTPS id 2D223387476C for ; Fri, 24 Jun 2022 16:54:37 +0000 (GMT) DMARC-Filter: OpenDMARC Filter v1.4.1 sourceware.org 2D223387476C Authentication-Results: sourceware.org; dmarc=fail (p=none dis=none) header.from=gmail.com Authentication-Results: sourceware.org; spf=pass smtp.mailfrom=m.gmane-mx.org Received: from list by ciao.gmane.io with local (Exim 4.92) (envelope-from ) id 1o4mZn-0006vS-Rj for cygwin@cygwin.com; Fri, 24 Jun 2022 18:54:35 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: cygwin@cygwin.com From: =?UTF-8?Q?Ren=c3=a9_Berber?= Subject: Re: weird error gpg Date: Fri, 24 Jun 2022 11:54:31 -0500 Message-ID: <0c2062f0-27db-56ec-f158-13e06706a9ee@gmail.com> References: <201387757.8392172.1656086113460.ref@mail.yahoo.com> <201387757.8392172.1656086113460@mail.yahoo.com> <504329927.8430732.1656088907620@mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.19) Gecko/20081209 Lightning/0.9 Thunderbird/2.0.0.19 Mnenhy/0.7.6.0 Content-Language: en-US In-Reply-To: <504329927.8430732.1656088907620@mail.yahoo.com> X-Spam-Status: No, score=-0.3 required=5.0 tests=BAYES_00, DKIM_ADSP_CUSTOM_MED, FORGED_GMAIL_RCVD, FREEMAIL_FORGED_FROMDOMAIN, FREEMAIL_FROM, HEADER_FROM_DIFFERENT_DOMAINS, KAM_DMARC_STATUS, KAM_LOTSOFHASH, KAM_SHORT, NICE_REPLY_A, NML_ADSP_CUSTOM_MED, SPF_HELO_NONE, SPF_PASS, TXREP, T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org X-BeenThere: cygwin@cygwin.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: General Cygwin discussions and problem reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jun 2022 16:54:39 -0000 Message-ID: <20220624165431.nXFaozR4uFpETiVhmOvcPSUosR1Ha7ISzemjJR7rWJA@z> Hi, Two things come to mind: 1. Is the file fedora.asc being through an editor? Does it have \r\n terminators by accident? i.e. is DOS formated, not the original format. 2. You should be using the original file, I don't see the point of what you pasted into Notepad, and Notepad by default will mangle the file anyway (i.e. with the wrong line terminators). BTW gpg expects the original file, w/o the sha256 sums it can't do its checking (of the .iso file). Regards. On 6/24/2022 11:41 AM, Jim McNamara via Cygwin wrote: > Hi Rene- > > Everything you mentioned checked out. I took the bottom of the sha256sum file where it was ascii armor and pasted it into notepad and saved it. > > I don't know why it isn't verifying. I named that file fedora.asc. Here is what the original file looks like. > > Please see below for the part that I copied and pasted into notepad. > > # Fedora-Cinnamon-Live-x86_64-36-1.5.iso: 2220474368 bytes > SHA256 (Fedora-Cinnamon-Live-x86_64-36-1.5.iso) = 03db083afb8e25dcf3f433c1c07064650010dfc99ebc930b58ee34d328758cf6 > # Fedora-KDE-Live-x86_64-36-1.5.iso: 2214592512 bytes > SHA256 (Fedora-KDE-Live-x86_64-36-1.5.iso) = b1da6062ee2e90695557f93a3e13a594884d8ab08ac48a93118eca68bc9108a8 > # Fedora-LXDE-Live-x86_64-36-1.5.iso: 1478590464 bytes > SHA256 (Fedora-LXDE-Live-x86_64-36-1.5.iso) = 57aa7b4df1138e755fdfebf8c60e49609f86f6f096baa578afabc1e91ef8576a > # Fedora-LXQt-Live-x86_64-36-1.5.iso: 1502576640 bytes > SHA256 (Fedora-LXQt-Live-x86_64-36-1.5.iso) = 8fc59e536571dd146f1f73272097e3355860fa54fff9ff0461c8243a58cadefb > # Fedora-MATE_Compiz-Live-x86_64-36-1.5.iso: 2195668992 bytes > SHA256 (Fedora-MATE_Compiz-Live-x86_64-36-1.5.iso) = ccf352edf7286e15968048abcc7b3f760067e74da27e904efab8302c40f8ada4 > # Fedora-SoaS-Live-x86_64-36-1.5.iso: 1229389824 bytes > SHA256 (Fedora-SoaS-Live-x86_64-36-1.5.iso) = 09bbbdd5c92aff25db54ff0db683844d1cd9ed5dc0918b22a0f1ddb561b921d2 > # Fedora-Xfce-Live-x86_64-36-1.5.iso: 1694498816 bytes > SHA256 (Fedora-Xfce-Live-x86_64-36-1.5.iso) = 8c175c901393788a4a46ffeeb29b7f1eebde66d8c3226bd83675c2e7212a891d > # Fedora-i3-Live-x86_64-36-1.5.iso: 1482964992 bytes > SHA256 (Fedora-i3-Live-x86_64-36-1.5.iso) = c66c9521a1d73ac5505e1b523974c9604a4cf3d9823ee1e83fdf82d99174886c > > This is what i copied and pasted into notepad and called fedora.asc (see below): > > -----BEGIN PGP SIGNATURE----- > > iQIzBAEBCAAdFiEEU97Sy5Iti42eY/0YmZ98vzircfQFAmJ1Lu8ACgkQmZ98vzir > cfRuDA/+IoCBqNW8kGoVXyrf6OfUjoaDrPF48EdIHLh0rBLaPCFu0dCNr5hjJijy > bINk5ogc4dRteC+qHNa6HWpRh4hDv+YfMxtrNlMXc0udW79uZWNrUR4zsWiX1aOS > mgyCSTIwcxUi59Brzh12iFjb6Gg4AeiUBOY8C5joLkrreT6Z6lQ2FcQySdj5SSmk > dyEyZZI5eJQQ3yBtfVeNY+JnvobvGpENS3V4IlDDfLgjmlbgNaUdCZIy0QNkAH/P > VhMPNrnQXMvcrH9uhLXxpseqpN+ZfhK64F47iHpXQGpfZyPdII3qjE/hW1vCL4UK > AV8TqFRYPK5wXu/HSqz0Mg9TCtf95oPVqgug0Czme7x8ObQ8i2x+uU9QoOjEr8oP > 5U0DhrsUKzn7ogw6TfmBTDv3e+w0FBMqrHysWy9yU/SvsVKZRfz5l1fxYDI/Ifvn > K+oSCMG1wIhwVDBPO0rz/PdmeVnHNrLndrboJxYTApfJAZdVjoMwRivGtFtBjOPu > okSnkheDIwMnW3CvEwdxTrfZD2AL/nfm5I3qnJ6WSAwcF96TFWJj1/KDYrA1mE+b > hVbBkL7m+WCTN/DqegYefxDHEE09qvOLSDCSYOuZJpwVKxXame8C5/Zoe9AAJVDj > t8lbWKKPMauFFN/SXQ18JT0mECWWx84qmBvbezma2ecH2frMAuc= > =KcCN > -----END PGP SIGNATURE----- > > thanks for helping, > jim > > > > > > On Friday, June 24, 2022, 12:23:19 PM EDT, René Berber wrote: > > > > > > On 6/24/2022 10:55 AM, Jim McNamara via Cygwin wrote: > >> $ gpg --verify fedora.asc Fedora-KDE-Live-x86_64-36-1.5.iso >> gpg: can't handle text lines longer than 19995 characters >> gpg: Signature made Fri May 6 10:21:35 2022 EDT using RSA key ID 38AB71F4 >> gpg: BAD signature from "Fedora (36) " >> >> I am having a difficult time. I think they are breaking into my computer. >> They made it so I can't verify files. >> >> Is there any way I can fix it so that this error goes away? > > Start by checking gpg itself. > > > $ which gpg > /usr/bin/gpg > > $ gpg --version > gpg (GnuPG) 1.4.23 > Copyright (C) 2015 Free Software Foundation, Inc. > License GPLv3+: GNU GPL version 3 or later > > This is free software: you are free to change and redistribute it. > There is NO WARRANTY, to the extent permitted by law. > > Home: ~/.gnupg > Supported algorithms: > Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA > Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH, > CAMELLIA128, CAMELLIA192, CAMELLIA256 > Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224 > Compression: Uncompressed, ZIP, ZLIB, BZIP2 > > $ sha256sum /usr/bin/gpg > a72cb1fd7a1dcf94c7c8de2a2e749bce22f16af59c2b2157b01f73518e0bece7 > */usr/bin/gpg > > > Or... > > $ which gpg2 > /usr/bin/gpg2 > > $ gpg2 --version > gpg: WARNING: unsafe permissions on homedir '/home/reneb/.gnupg' > gpg (GnuPG) 2.2.35-unknown > libgcrypt 1.10.1-unknown > Copyright (C) 2022 g10 Code GmbH > License GNU GPL-3.0-or-later > This is free software: you are free to change and redistribute it. > There is NO WARRANTY, to the extent permitted by law. > > Home: /home/reneb/.gnupg > Supported algorithms: > Pubkey: RSA, ELG, DSA, ECDH, ECDSA, EDDSA > Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH, > CAMELLIA128, CAMELLIA192, CAMELLIA256 > Hash: SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224 > Compression: Uncompressed, ZIP, ZLIB, BZIP2 > > $ sha256sum /usr/bin/gpg2 > 87f54df3c700c2bae6211cdb71540b8cc26b43bed60c8b2821e156e070c625f9 > */usr/bin/gpg2 >