You are not logged in.

#1 2020-06-09 14:26:33

Zyxer
Member
Registered: 2020-06-09
Posts: 1

Invalid or Corrupted Package (PGP Signature) (all packages)

Whenever I try to update or install any package, all I get is error about "Invalid or Corrupted Package (PGP Signature)".

I got some other errors after updating BIOS because HW clock got messed up, but I fixed those issues and before it wouldn't even get the keys of any packages when I tried resetting all keys. Now I can do that, and everything seems to work (I am still newbie so might have missed something) until it gets to verifying packages, then suddenly everything is corrupt. Steps I have taken:
1.

# sudo pacman -S archlinux-keyring

output where it starts to act differently is

(1/1) checking package integrity                   [######################] 100%
error: archlinux-keyring: signature from "Christian Hesse (Arch Linux Package Signing) <arch@eworm.de>" is unknown trust
:: File /var/cache/pacman/pkg/archlinux-keyring-20200603-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.

When asked if I want to delete it I have tried both yes and no.

2.

# rm -R /etc/pacman.d/gnupg/
# rm -R /root/.gnupg/ 
# gpg --refresh-keys
# pacman-key --init && pacman-key --populate archlinux
# pacman-key --refresh-keys

Still gives issue when trying to updtate

I am not sure what else I have tried or in what order, since I have done a lot of looking around and such.

Some more info:
I am in sweden, so timezone is UTC+1 +Daylight time Saving (now it is UTC+2).
output of uname -a

Linux EArch 5.6.7-arch1-1 #1 SMP PREEMPT Thu, 23 Apr 2020 09:13:56 +0000 x86_64 GNU/Linux

Output of which pacman

/usr/bin/pacman

Output of which gpgme-tool

/usr/bin/gpgme-tool

Output of pacman --version

 
 .--.                  Pacman v5.2.1 - libalpm v12.0.1
/ _.-' .-.  .-.  .-.   Copyright (C) 2006-2019 Pacman Development Team
\  '-. '-'  '-'  '-'   Copyright (C) 2002-2006 Judd Vinet
 '--'
                       This program may be freely redistributed under
                       the terms of the GNU General Public License.

output of gpgme-tools --version

bash: gpgme-tools: command not found

Ouptut of pacman -Qi pacman gpgme

Name            : pacman
Version         : 5.2.1-4
Description     : A library-based package manager with dependency support
Architecture    : x86_64
URL             : https://www.archlinux.org/pacman/
Licenses        : GPL
Groups          : base-devel
Provides        : libalpm.so=12-64
Depends On      : bash  glibc  libarchive  curl  gpgme  pacman-mirrorlist
                  archlinux-keyring
Optional Deps   : perl-locale-gettext: translation support in makepkg-template
Required By     : base  pacman-contrib  yay
Optional For    : None
Conflicts With  : None
Replaces        : None
Installed Size  : 4.41 MiB
Packager        : Levente Polyak <anthraxx@archlinux.org>
Build Date      : Fri Jan 10 03:24:37 2020
Install Date    : Sat Apr 4 00:06:59 2020
Install Reason  : Installed as a dependency for another package
Install Script  : No
Validated By    : Signature

Name            : gpgme
Version         : 1.13.1-3
Description     : A C wrapper library for GnuPG
Architecture    : x86_64
URL             : https://www.gnupg.org/related_software/gpgme/
Licenses        : LGPL
Groups          : None
Provides        : None
Depends On      : libgpg-error  gnupg>=2
Optional Deps   : None
Required By     : libreoffice-fresh  pacman  samba  volume_key
Optional For    : None
Conflicts With  : None
Replaces        : None
Installed Size  : 1260.55 KiB
Packager        : Felix Yan <felixonmars@archlinux.org>
Build Date      : Sun Nov 3 22:13:24 2019
Install Date    : Sat Apr 4 00:06:59 2020
Install Reason  : Installed as a dependency for another package
Install Script  : No
Validated By    : Signature

Output of pacman -Syyuv

(532/532) checking package integrity               [######################] 100%
error: linux-api-headers: signature from "BartÅomiej Piotrowski <bpiotrowski@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/linux-api-headers-5.6.11-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 

and it repeats that for seemingly ALL pacages (I just hold enter and it scrolls through a lot. Fills entire terminal so I can't even scroll to the first error message)

Offline

#2 2020-06-09 15:08:23

eschwartz
Trusted User/Bug Wrangler
Registered: 2014-08-08
Posts: 3,616

Re: Invalid or Corrupted Package (PGP Signature) (all packages)

Try selecting one of those files, downloading the corresponding *.sig file from your mirror or from https://archive.archlinux.org/packages/, and using

pacman-key --verify /var/cache/pacman/pkg/${package_file}.sig /var/cache/pacman/pkg/${package_file}

to check what the error is.


Managing AUR repos The Right Way -- aurpublish (now a standalone tool)

Offline

Board footer

Powered by FluxBB