You are not logged in.

Pages: 1

#1 2024-04-20 14:55:59

fredmyra
Member
Registered: 2024-04-20
Posts: 1

Unable to verify ipxe-arch.lkrn.4a40eeca92fb.sig

I have installed Arch Linux base a couple times, always in USB drivers (both pen+drives and external disks) always for the purposing of managing Grub for booting multiple Linux distros and eventually Windows.

I have now gained some confidence to try installing ArchLinux for everyday use, beguinning by tryng it on a multiboot set-up. I would like to learn how to install via netboot, and after reading or two days I did my first attempt by following  the links to https://wiki.archlinux.org/title/Netboot and to https://archlinux.org/releng/netboot/.

I think I understand the instructions in those  pages, even if I am not sure of how  a netboot works.

I want to try <ipxe-arch.lkrn> via Grub in a BIOS setup. So I downloaded  ipxe-arch.lkrn.4a40eeca92fb.sig and ipxe-arch.lkrn, but so far I have not been able to verify it. I have tried using gpg from Artix  but this was what I got:

:~/Downloads/ipxe-arch.lkrn$ gpg --keyserver-options auto-key-retrieve --verify ipxe-arch.lkrn.4a40eeca92fb.sig
gpg: no signed data
gpg: can't hash datafile: No data

Are there instructions somewhere for verification of ipxe-arch.lkrn ?

Offline

#2 2024-04-27 12:14:08

ua4000
Member
Registered: 2015-10-14
Posts: 421

Re: Unable to verify ipxe-arch.lkrn.4a40eeca92fb.sig

$  gpg --keyserver hkps://keys.openpgp.org/ --search-keys dvzrv@archlinux.org
gpg: data source: https://keys.openpgp.org:443
(1)     David Runge <dvzrv@archlinux.org>                                                   
          256 bit EDDSA key 139B09DA5BF0D338, created: 2022-05-10                                                
Keys 1-1 of 1 for "dvzrv@archlinux.org".  Enter number(s), N)ext, or Q)uit > 1                                                 
gpg: key 139B09DA5BF0D338: public key "David Runge <dvzrv@archlinux.org>" imported                                                             
gpg: Total number processed: 1                                                                                                                          
gpg:               imported: 1

Put the file to check at the end, when the filename cannot be guessed like in this case:

$ gpg  --verify ipxe-arch.lkrn.4a40eeca92fb.sig ipxe-arch.7db2ebf431ea.lkrn
gpg: Signature made 2023-08-28T12:34:20 CEST
gpg:                using EDDSA key 62CC73F884E52957B2FDD8839B7A287D9A2EC608
gpg:                issuer "dvzrv@archlinux.org"
gpg: Good signature from "David Runge <dvzrv@archlinux.org>" [unknown]
gpg: WARNING: The key's User ID is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 991F 6E3F 0765 CF62 9588  8586 139B 09DA 5BF0 D338
     Subkey fingerprint: 62CC 73F8 84E5 2957 B2FD  D883 9B7A 287D 9A2E C608

--> Good signature from...

If you switch to arch, I recommend you make yourself familiar with the arch wiki, e.g. in this case:
https://wiki.archlinux.org/title/GnuPG# … _signature

Offline

Pages: 1

Board footer

Powered by FluxBB