* [Qemu-devel] public key not found?
@ 2013-09-04 11:47 Michael S. Tsirkin
2013-09-04 13:11 ` Anthony Liguori
0 siblings, 1 reply; 6+ messages in thread
From: Michael S. Tsirkin @ 2013-09-04 11:47 UTC (permalink / raw)
To: Anthony Liguori, qemu-devel
I noticed recent merges of the pci tree have this text:
# gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
# ID D28D5469
# gpg: Can't check signature: public key not found
Why is that?
Linus seems to have no trouble pulling trees with this
signature, and pulls don't have this error message.
--
MST
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found?
2013-09-04 11:47 [Qemu-devel] public key not found? Michael S. Tsirkin
@ 2013-09-04 13:11 ` Anthony Liguori
2013-09-04 14:30 ` Paolo Bonzini
2013-09-04 16:08 ` Andreas Färber
0 siblings, 2 replies; 6+ messages in thread
From: Anthony Liguori @ 2013-09-04 13:11 UTC (permalink / raw)
To: Michael S. Tsirkin; +Cc: qemu-devel
On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote:
> I noticed recent merges of the pci tree have this text:
>
> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
> # ID D28D5469
> # gpg: Can't check signature: public key not found
>
> Why is that?
Because I haven't signed your key. We'll address this at this year's KVM Forum:
http://wiki.qemu.org/KeySigningParty2013
> Linus seems to have no trouble pulling trees with this
> signature, and pulls don't have this error message.
I'm not sure how wide Linus extends his trust. We have a much smaller
pool of submaintainers and I've met most in person at some point so
I'm going to try to keep it as tight as possible.
Regards,
Anthony Liguori
> --
> MST
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found?
2013-09-04 13:11 ` Anthony Liguori
@ 2013-09-04 14:30 ` Paolo Bonzini
2013-09-04 16:08 ` Andreas Färber
1 sibling, 0 replies; 6+ messages in thread
From: Paolo Bonzini @ 2013-09-04 14:30 UTC (permalink / raw)
To: Anthony Liguori; +Cc: qemu-devel, Michael S. Tsirkin
Il 04/09/2013 15:11, Anthony Liguori ha scritto:
> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote:
>> I noticed recent merges of the pci tree have this text:
>>
>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
>> # ID D28D5469
>> # gpg: Can't check signature: public key not found
>>
>> Why is that?
>
> Because I haven't signed your key. We'll address this at this year's KVM Forum:
>
> http://wiki.qemu.org/KeySigningParty2013
>
>> Linus seems to have no trouble pulling trees with this
>> signature, and pulls don't have this error message.
>
> I'm not sure how wide Linus extends his trust.
Getting a kernel.org account requires 3 signatures from someone else who
has a kernel.org account *and* communicating the particular key to the
kernel.org sysadmins. So I guess Linus extends his trust to all keys
that were processed this way, or something like that.
Paolo
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found?
2013-09-04 13:11 ` Anthony Liguori
2013-09-04 14:30 ` Paolo Bonzini
@ 2013-09-04 16:08 ` Andreas Färber
2013-09-04 16:13 ` Anthony Liguori
2013-09-04 16:15 ` Eric Blake
1 sibling, 2 replies; 6+ messages in thread
From: Andreas Färber @ 2013-09-04 16:08 UTC (permalink / raw)
To: Anthony Liguori, Eric Blake; +Cc: qemu-devel, Michael S. Tsirkin
Am 04.09.2013 15:11, schrieb Anthony Liguori:
> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote:
>> I noticed recent merges of the pci tree have this text:
>>
>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
>> # ID D28D5469
>> # gpg: Can't check signature: public key not found
>>
>> Why is that?
>
> Because I haven't signed your key. We'll address this at this year's KVM Forum:
>
> http://wiki.qemu.org/KeySigningParty2013
Doesn't "public key not found" rather indicate that you have not
imported that key to your keyring yet, not even with untrusted status?
Some days ago I had asked about the indicated keyserver.cryptnet.net,
which was ping'able but not reachable via http, https, ldap or hkp.
Today there is a Fedora Apache test page via http, but still no success
using that server with Seahorse.
Eric was said to have succeeded in uploading his key there?
Usually it is no problem configuring multiple key servers for you to
obtain our (untrusted) keys to at least improve the error message. :)
Regards,
Andreas
--
SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 Nürnberg, Germany
GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer; HRB 16746 AG Nürnberg
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found?
2013-09-04 16:08 ` Andreas Färber
@ 2013-09-04 16:13 ` Anthony Liguori
2013-09-04 16:15 ` Eric Blake
1 sibling, 0 replies; 6+ messages in thread
From: Anthony Liguori @ 2013-09-04 16:13 UTC (permalink / raw)
To: Andreas Färber; +Cc: qemu-devel, Michael S. Tsirkin
On Wed, Sep 4, 2013 at 11:08 AM, Andreas Färber <afaerber@suse.de> wrote:
> Am 04.09.2013 15:11, schrieb Anthony Liguori:
>> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote:
>>> I noticed recent merges of the pci tree have this text:
>>>
>>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
>>> # ID D28D5469
>>> # gpg: Can't check signature: public key not found
>>>
>>> Why is that?
>>
>> Because I haven't signed your key. We'll address this at this year's KVM Forum:
>>
>> http://wiki.qemu.org/KeySigningParty2013
>
> Doesn't "public key not found" rather indicate that you have not
> imported that key to your keyring yet, not even with untrusted status?
>
> Some days ago I had asked about the indicated keyserver.cryptnet.net,
> which was ping'able but not reachable via http, https, ldap or hkp.
> Today there is a Fedora Apache test page via http, but still no success
> using that server with Seahorse.
>
> Eric was said to have succeeded in uploading his key there?
>
> Usually it is no problem configuring multiple key servers for you to
> obtain our (untrusted) keys to at least improve the error message. :)
Yeah, I'm not going to wait until KVM Forum to work this all out but
suffice to say, it's not a high priority just yet.
Regards,
Anthony Liguori
>
> Regards,
> Andreas
>
> --
> SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 Nürnberg, Germany
> GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer; HRB 16746 AG Nürnberg
^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found?
2013-09-04 16:08 ` Andreas Färber
2013-09-04 16:13 ` Anthony Liguori
@ 2013-09-04 16:15 ` Eric Blake
1 sibling, 0 replies; 6+ messages in thread
From: Eric Blake @ 2013-09-04 16:15 UTC (permalink / raw)
To: Andreas Färber; +Cc: qemu-devel, Anthony Liguori, Michael S. Tsirkin
[-- Attachment #1: Type: text/plain, Size: 2036 bytes --]
On 09/04/2013 10:08 AM, Andreas Färber wrote:
> Am 04.09.2013 15:11, schrieb Anthony Liguori:
>> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote:
>>> I noticed recent merges of the pci tree have this text:
>>>
>>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
>>> # ID D28D5469
>>> # gpg: Can't check signature: public key not found
>>>
>>> Why is that?
>>
>> Because I haven't signed your key. We'll address this at this year's KVM Forum:
>>
>> http://wiki.qemu.org/KeySigningParty2013
>
> Doesn't "public key not found" rather indicate that you have not
> imported that key to your keyring yet, not even with untrusted status?
>
> Some days ago I had asked about the indicated keyserver.cryptnet.net,
> which was ping'able but not reachable via http, https, ldap or hkp.
> Today there is a Fedora Apache test page via http, but still no success
> using that server with Seahorse.
>
> Eric was said to have succeeded in uploading his key there?
If I recall, I had to upload my key by pasting it into the form on the
web-page, rather than my typical procedure of 'gpg --send-keys ...' with
a specific keyserver listing. Don't know why the site seems to have
gone down in the meantime.
>
> Usually it is no problem configuring multiple key servers for you to
> obtain our (untrusted) keys to at least improve the error message. :)
In particular, a lot of the keyservers participate in a sharing setup,
so that if you put your keys on one, they will show up in others within
a few hours. I may be showing some bias, but I like:
Web interface at http://keys.fedoraproject.org or
https://keys.fedoraproject.org
HKP (keyserver protocol) by doing "gpg --keyserver
keys.fedoraproject.org --recv-keys 0x110810E9" (just an example)
You could also put in ~/.gnupg/gpg.conf:
keyserver hkp://keys.fedoraproject.org
--
Eric Blake eblake redhat com +1-919-301-3266
Libvirt virtualization library http://libvirt.org
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 621 bytes --]
^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2013-09-04 16:15 UTC | newest]
Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-09-04 11:47 [Qemu-devel] public key not found? Michael S. Tsirkin
2013-09-04 13:11 ` Anthony Liguori
2013-09-04 14:30 ` Paolo Bonzini
2013-09-04 16:08 ` Andreas Färber
2013-09-04 16:13 ` Anthony Liguori
2013-09-04 16:15 ` Eric Blake
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).