summary refs log tree commit diff
path: root/doc
diff options
context:
space:
mode:
authorLudovic Courtès <ludo@gnu.org>2019-09-02 11:28:18 +0200
committerLudovic Courtès <ludo@gnu.org>2019-09-02 15:25:00 +0200
commitd34e9114e679666dfbf7caf577117010eca20520 (patch)
tree1e4c5bbb28c9554612157fe2f3be19866a487b73 /doc
parenteb98d5a83ce98ece279fec51085521aafd976ec4 (diff)
downloadguix-d34e9114e679666dfbf7caf577117010eca20520.tar.gz
doc: Explain that "guix import" and "guix refresh" may need GnuPG.
Fixes <https://bugs.gnu.org/36051>.
Reported by Jesse Gibbons <jgibbons2357@gmail.com>.

* doc/guix.texi (Invoking guix import, Invoking guix refresh): Mention
that GnuPG must be installed.
Diffstat (limited to 'doc')
-rw-r--r--doc/guix.texi14
1 files changed, 11 insertions, 3 deletions
diff --git a/doc/guix.texi b/doc/guix.texi
index 031ee53295..0510f57c23 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -8509,8 +8509,13 @@ guix import @var{importer} @var{options}@dots{}
 
 @var{importer} specifies the source from which to import package
 metadata, and @var{options} specifies a package identifier and other
-options specific to @var{importer}.  Currently, the available
-``importers'' are:
+options specific to @var{importer}.
+
+Some of the importers rely on the ability to run the @command{gpgv} command.
+For these, GnuPG must be installed and in @code{$PATH}; run @code{guix install
+gnupg} if needed.
+
+Currently, the available ``importers'' are:
 
 @table @code
 @item gnu
@@ -8959,7 +8964,10 @@ update the version numbers and source tarball hashes of those package
 recipes (@pxref{Defining Packages}).  This is achieved by downloading
 each package's latest source tarball and its associated OpenPGP
 signature, authenticating the downloaded tarball against its signature
-using @command{gpg}, and finally computing its hash.  When the public
+using @command{gpgv}, and finally computing its hash---note that GnuPG must be
+installed and in @code{$PATH}; run @code{guix install gnupg} if needed.
+
+When the public
 key used to sign the tarball is missing from the user's keyring, an
 attempt is made to automatically retrieve it from a public key server;
 when this is successful, the key is added to the user's keyring; otherwise,