Keepassxc: gpg: Can't check signature: No public key

Created on 7 May 2018  路  7Comments  路  Source: keepassxreboot/keepassxc

During GPG check i get: gpg: Can't check signature: No public key

Expected Behavior

Proper GPG check

Current Behavior

During GPG check i get: gpg: Can't check signature: No public key

Possible Solution

?

Steps to Reproduce (for bugs)

  1. open MacOS Terminal
  2. gpg --verify /Volumes/user/********/Downloads/KeePassXC-2.3.1.dmg.sig
    3. 3. 
gpg: directory '/Volumes/user/********/.gnupg' created
gpg: keybox '/Volumes/user/********/.gnupg/pubring.kbx' created
gpg: assuming signed data in '/Volumes/user/********/Downloads/KeePassXC-2.3.1.dmg'
gpg: Signature made Tue Mar  6 23:17:55 2018 CET
gpg:                using RSA key C1E4CBA3AD78D3AFD894F9E0B7A66F03B59076A8
gpg: Can't check signature: No public key

Context

I try to check the GPG signature before installing.

Debug Info

KeePassXC-2.3.1.dmg
KeePassXC-2.3.1.dmg.sig

Operating system: MacOS 10.10.5

Enabled extensions: NONE

picture bartatgithub

Most helpful comment

Then sorry to disturb.
Your help page about signaturen verification isn't too clear.
Thanks

On 8 May 2018 00:22:17 CEST, Jonathan White notifications@github.com wrote:

Your issue is you have not imported our public key into your keyring.
You skipped a step.

--
You are receiving this because you authored the thread.
Reply to this email directly or view it on GitHub:
https://github.com/keepassxreboot/keepassxc/issues/1918#issuecomment-387224998

--
Sent from my Android device with K-9 Mail. Please excuse my brevity.

picture bartatgithub on 8 May 2018
👍5 👎1

All 7 comments

Please check out the Verifying Signatures guide: https://keepassxc.org/verifying-signatures/

TheZ3ro picture TheZ3ro on 7 May 2018

Closing since this is user error

droidmonkey picture droidmonkey on 7 May 2018

That's exactly the page that i have followed up. I would never start a thread on a forum or github if i haven't searched all possible solution that i can find on the web.

Tomorrow i am back on that computer, to test more.

bartatgithub picture bartatgithub on 7 May 2018
👍2

The step to reproduce in your first message only list the --verify command.
You have to execute gpg --import or gpg --fetch-keys as well.

TheZ3ro picture TheZ3ro on 7 May 2018

Your issue is you have not imported our public key into your keyring. You skipped a step.

gpg --keyserver pool.sks-keyservers.net --recv-keys 0xBF5A669F2272CF4324C1FDA8CFB4C2166397D0D2

droidmonkey picture droidmonkey on 8 May 2018

Then sorry to disturb.
Your help page about signaturen verification isn't too clear.
Thanks

On 8 May 2018 00:22:17 CEST, Jonathan White notifications@github.com wrote:

Your issue is you have not imported our public key into your keyring.
You skipped a step.

--
You are receiving this because you authored the thread.
Reply to this email directly or view it on GitHub:
https://github.com/keepassxreboot/keepassxc/issues/1918#issuecomment-387224998

--
Sent from my Android device with K-9 Mail. Please excuse my brevity.

bartatgithub picture bartatgithub on 8 May 2018
👍5 👎1

What? lol...

really

droidmonkey picture droidmonkey on 8 May 2018
👎3 👍1
Was this page helpful?
0 / 5 - 0 ratings

Related issues

JosephHatfield picture JosephHatfield  路  3Comments
guihkx picture guihkx  路  3Comments
amvasilyev picture amvasilyev  路  3Comments
MisterY picture MisterY  路  3Comments
clementlesne picture clementlesne  路  3Comments