-
Notifications
You must be signed in to change notification settings - Fork 841
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
gpg: BAD signature from "Commercial Haskell all-cabal-files ..." #2773
gpg: BAD signature from "Commercial Haskell all-cabal-files ..." #2773
Comments
Another interesting detail. If I set
|
Pinging @dysinger , not sure if this is a code issue or documentation. |
It could be me, of course. To clarify, I've had the same GPG setup working on CI for a while using |
Is anyone else experiencing this issue? I'm still experiencing the same problem when I add |
Anyone had an opportunity to check this out yet? |
I've managed to narrow this down to verifying the git tag:
|
I'm getting this same issue, did someone sign something incorrectly, or is something else going on here? The signature sure seems to be invalid. |
I can confirm that the signature is invalid. This appears to be a problem with the tag signing code in the commercialhaskell/all-cabal-tool repo. |
… package. Fixes tag gpg signing. Also fixes commercialhaskell/stack#2773
Tag signing in all-cabal-tool was fixed, so this tag signature validation error should now be gone.
That problem is actually related to hackage itself. Package version |
I'm getting gpg "Bad signature" errors on my local machine and on CI.
I'm not certain if this is something I'm doing wrong so i'll be happy to try out any suggestions.
Steps to reproduce
For example:
stack update
orstack install
Stack version
I've also tested w/ latest from
git
:The text was updated successfully, but these errors were encountered: