Bitcoin Core setup error verifying the pgp signature

[eiger3970]

Hello, I'm trying to setup a Bitcoin Core full node, however the pgp signature verification is brining up the error:

Code:

Mac:Downloads macUser$ gpg --verify SHA256SUMS.asc
gpg: WARNING: multiple signatures detected.  Only the first will be checked.
gpg: no signed data
gpg: can't hash datafile: No data

[bigmanik]

Well I believe this error message occurs when GPG is unable to verify the signature because it is expecting an actual file(SHA256SUMS) to be present alongside the signature file (SHA256SUMS.asc)

So if I'm correct what you should do is
You should download both SHA256SUMS and SHA256SUMS.asc from the Bitcoin core website
Place both files in the same directory.
And  Run: `gpg --verify SHA256SUMS.asc SHA256SUMS`

If this doesn't work you should specify the signature file explicitly
And the manually check the hash

[DireWolfM14]

bigmanik is correct, GnuPG is unable to find the data to which the signature file pertains.  Bitcoin core has a two-step verification process; first you need to download three files; the binary (.zip) for your version of MacOS, the SHA256 binary hashes, and SHA256 binary signature.  The binary hashes file will not have a file extension, but it can be opened and read by any text editor.  The signature file (it looks like you've already downloaded that) will have the .asc file extension.  Download all the files to the same directory, then open a terminal window in that directory.


The first step; use GPG to verify the hash file matches the data signed by the signatures in the signature file.

Code:

gpg --verify SHA256SUMS.asc

The second step; use the MacOS built in sha tool to very the hash of the .zip file.

Code:

shasum -a 256 --ignore-missing --check SHA256SUMS

More detailed instructions can be found here: https://bitcoincore.org/en/download/

[eiger3970]

Thanks, but it's unclear to which is a hash file, a signature and whatever else.

Here's the latest output:

Code:

Mac:Downloads macUser$ ls
Bitcoin-Qt.app				bitcoin-27.0-x86_64-apple-darwin.zip
SHA256SUMS.asc
Mac:Downloads macUser$ gpg --verify SHA256SUMS.asc 
gpg: WARNING: multiple signatures detected.  Only the first will be checked.
gpg: no signed data
gpg: can't hash datafile: No data
Mac:Downloads macUser$ shasum -a 256 --ignore-missing --check SHA256SUMS.asc 
Unknown option: ignore-missing
Type shasum -h for help

[achow101]

You need to also download the file SHA256SUMS. That is the file which actually contains the hashes for the shasum command later.

SHA256SUMS.asc contains the signatures over the SHA256SUMS file, both need to be present, in addition the the GPG keys you wish to verify with, for gpg to do any verification.