[SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

djg1971 · 2026-05-11 15:38:37

Hello,

I've had the oft-reported issue of signature problems (preventing pacman -Syu) several times in the past ~6 months. Basically always it's "Levente Polyak" for me (in this case (today), 7 packages are listed as invalid or corrupted because of pgp signature). [they are: libbpf, jasper, tree-sitter, emacs, inetutils, vpnc, xscreensaver]

I've tried updating the keyring, using the --needed flag, combining with pacman -Su, etc. For me, nothing works. I absolutely cannot risk a reinstall of this particular system. With great pains, I overcame the problem last time (read: system completely bricked, a week's worth of trickery to get it to do a full update *and* actually boot again), but now today it's here again. I know there is a lot written about such issues in the wiki...nevertheless people keep getting frustrated and the general issue keeps coming up in the forum(s).

If you are an adept user/admin and are simply inclined to dump on this post, then please refrain from posting anything at all. I'm not interested in hearing how those of us that have used Arch for ~20 years and rely on it for work-related systems (but have never been particularly adept post-systemd era) have to get with the program.

On the other hand, if anyone has seen (very recently) this issue, specifically with the above packages related to Levente Polyak, and knows how to quash that, please let me know.

If there are no constructive replies, so be it, I will just carry on as long as possible.

D

Last edited by djg1971 (2026-05-12 14:53:29)

V1del · 2026-05-11 15:53:24

Recurrent issues in this space normally point to either

Your timezone/system clock being set up incorrectly https://wiki.archlinux.org/title/System … ronization
Your "top" level mirror (the one that's at the top of the list in your mirrorlist) being out of date/delivering corrupted packages, make sure you use some known good mirror here: https://wiki.archlinux.org/title/Mirror … ng_mirrors -- might want to double check https://archlinux.org/mirrors/status/ -- You ideally want one with a small delay and high completion %
Since quite a few version archlinux-keyring should ship with a systemd timer that should automatically ensure the keyring is up to date enough to give you new enough signatures https://wiki.archlinux.org/title/Pacman … _regularly -- note the note box, what's the status of that

Which exact error do you get? Depending on the message this could hint to which of these three being the actual offender, i'm somewhat inclined to your mirror being suboptimal potentially corrupted

mithrial · 2026-05-11 15:54:04

Without the actual error, it is hard to find out what exactly happened. You can see that the key is valid until the end of 2027 and was recreated in the beginning of 2025: https://keyserver.ubuntu.com/pks/lookup … n&op=index

So it can only be that this specific maintainer continuously (?) fails to use the correct key, which I don't believe is happening. I rather believe that the updated files are not yet fully synced. This can happen if the sig-file is already updated but the tar.zst not yet, or the other way around. So the signature doesn't match the file, so it's a good thing it doesn't continue because you would install a different package than intended (which is the full reason why there are these signatures in the first place.)

As a minor disclaimer, do you have any other repositories configured (Cachy, blackarch, etc.) which might interfere?

djg1971 · 2026-05-11 17:25:04

Thanks for the replies:

Time zone seems fine, and date outputs correct time.

First uncommented mirror is bloomu (I always use only U.S. mirrors), which is not the fastest but seems good enough(?)

By the "Note box," I assume you mean issuing this command?:

[root@my_machine]# systemctl status archlinux-keyring-wkd-sync.service
○ archlinux-keyring-wkd-sync.service - Refresh existing keys of archlinux-keyring
Loaded: loaded (/usr/lib/systemd/system/archlinux-keyring-wkd-sync.service; static)
Active: inactive (dead) since Mon 2026-05-11 12:16:39 EDT; 10min ago
Invocation: 2be835aed5554ebfaeba884f859a9716
TriggeredBy: ● archlinux-keyring-wkd-sync.timer
Process: 1279284 ExecStart=/usr/bin/archlinux-keyring-wkd-sync (code=exited, status=0/SUCCESS)
Main PID: 1279284 (code=exited, status=0/SUCCESS)
Mem peak: 3.5M
CPU: 2.308s

May 11 12:16:39 djg-lt archlinux-keyring-wkd-sync[1297446]: 24E80F8B10FFDDEB4AD3C0D3D11E9FC4F7C9DA3C
May 11 12:16:39 djg-lt archlinux-keyring-wkd-sync[1297446]: uid [ full ] Claudia Pellegrino <auerhuhn@archlinux.org>
May 11 12:16:39 djg-lt archlinux-keyring-wkd-sync[1297446]: uid [ unknown] Claudia Pellegrino <arch@cpellegrino.de>
May 11 12:16:39 djg-lt archlinux-keyring-wkd-sync[1297446]: sub rsa4096 2021-09-01 [expires: 2031-03-15]

and so on...so I think it worked alright. I truncated the output but there are no actions related to Levente Polyak.

I do not have any other repositories configured.

The exact error(s) look like this, one per package:

(1243/1243) checking package integrity [###################################################] 100%
error: libbpf: signature from "Levente Polyak (anthraxx) <levente@leventepolyak.net>" is unknown trust
:: File /var/cache/pacman/pkg/libbpf-1.7.0-1-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).

I wasn't sure anyone was going to reply (or be able to solve it, since I had tried reasonably hard last time this came up), so I went ahead and did a pacman -Syu with the checking disabled, since I knew everything passed except the 7 packages mentioned above associated with Levente Polyak, and I've been through this before... that succeeded, but I'm seeing issues related to

1) Job for user@11167.service failed. ...This appears to be harmless? There are a ton of coredump files in /var/lib/systemd/coredump/ related to drkonqi ... I deleted them.
2) akonadi database moving to sqlite and so I may need to run akonadi-db-migrator manually ...?
3) warning: /etc/mkinitcpio.conf installed as /etc/mkinitcpio.conf.pacnew
4) warning: /etc/pam.d/xscreensaver installed as /etc/pam.d/xscreensaver.pacnew

Now, in the post-transaction hooks portion of the process, I see this again:

( 7/43) Reloading user manager configuration...
Job for user@11167.service failed.
See "systemctl status user@11167.service" and "journalctl -xeu user@11167.service" for details.
error: command failed to execute correctly

But those commands both show things that look fairly innocuous and are mostly related to drkonqi. I don't think I even use it; will consider removing it.

The mkinitcpio phase seemed to work fine (no errors reported), however, I will have to look at the config files since there is a new one and see if something looks like it actually needs attention.

Thanks for the input.

seth · 2026-05-11 17:38:26

Please use [code][/code] tags.

Does

pacman -S libbpf

now work w/o skipping signature checks?
If not

pacman-key -l antraxx
pacman -Qs keyring

djg1971 · 2026-05-11 17:55:27

Still seems to be a problem...

[djg-lt djg]# pacman-key -l anthraxx 
pub   rsa4096 2011-11-07 [SC] [expires: 2027-12-31]
      E240B57E2C4630BA768E2F26FC1B547C8D8172C8
uid           [ unknown] Levente Polyak (anthraxx) <levente@leventepolyak.net>
uid           [ unknown] Levente Polyak <Z3r0.0x00@gmail.com>
uid           [ unknown] Levente Polyak <anthraxx@archlinux.org>
uid           [ unknown] Levente Polyak <anthraxx@hamburg.ccc.de>
uid           [ unknown] Levente Polyak <levente@leventepolyak.de>
uid           [ unknown] Levente Polyak (Jabber/XMPP only) <anthraxx@jabber.ccc.de>
sub   rsa4096 2011-11-07 [E]
sub   rsa4096 2023-12-26 [A]

pub   rsa4096 2018-11-08 [SC]
      D8AFDDA07A5B6EDFA7D8CCDAD6D055F927843F1C
uid           [  full  ] Levente Polyak (Arch Linux Master Key) <anthraxx@master-key.archlinux.org>
sub   rsa4096 2018-11-08 [E]
sub   rsa4096 2018-11-08 [A]

pub   rsa4096 2011-11-07 [SC] [expired: 2025-12-31]
      E240B57E2C4630BA768E2F26FC1B547C8D8172C8
uid           [ expired] Levente Polyak <anthraxx@archlinux.org>

[djg-lt djg]# cd /etc/
[djg-lt etc]# vim pacman.conf
[djg-lt etc]# cd
[djg-lt ~]# pacman -S libbpf 
warning: libbpf-1.7.0-1 is up to date -- reinstalling
resolving dependencies...
looking for conflicting packages...

Packages (1) libbpf-1.7.0-1

Total Installed Size:  0.82 MiB
Net Upgrade Size:      0.00 MiB

:: Proceed with installation? [Y/n] y
(1/1) checking keys in keyring                                                           [###################################################] 100%
(1/1) checking package integrity                                                         [###################################################] 100%
error: libbpf: signature from "Levente Polyak (anthraxx) <levente@leventepolyak.net>" is unknown trust
:: File /var/cache/pacman/pkg/libbpf-1.7.0-1-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] n
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.
[djg-lt ~]# pacman -Qs keyring 
local/archlinux-keyring 20260420-1
    Arch Linux PGP keyring
local/gnome-keyring 1:50.0-1 (gnome)
    Stores passwords and encryption keys
local/libgnome-keyring 1:3.12.0+r14+g23438cc-1
    GNOME keyring client library (deprecated)
local/python-keyring 25.7.0-3
    Store and access your passwords safely

seth · 2026-05-11 18:01:24

https://wiki.archlinux.org/title/Pacman … l_the_keys and recheck anthraxx' keys.

djg1971 · 2026-05-11 18:20:51

I assume this is not what you were expecting?:

[djg-lt pacman.d]# pacman-key --init 
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: agent_genkey failed: No such file or directory
gpg: key generation failed: No such file or directory
gpg: Done
==> Updating trust database...
gpg: no need for a trustdb check
[djg-lt pacman.d]# pacman-key --populate 
==> ERROR: There is no secret key available to sign with.
==> Use 'pacman-key --init' to generate a default secret key.
[djg-lt pacman.d]# pacman-key --init 
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: agent_genkey failed: No such file or directory
gpg: key generation failed: No such file or directory
gpg: Done
==> Updating trust database...
gpg: no need for a trustdb check
[djg-lt pacman.d]#

It's not what I was expecting...

djg1971 · 2026-05-11 18:44:27

Btw I did also do this:

[djg-lt pkg]# rm libbpf-1.7.0-1-x86_64.pkg.tar.zst libbpf-1.7.0-1-x86_64.pkg.tar.zst.sig jasper-4.2.9-1-x86_64.pkg.tar.zst jasper-4.2.9-1-x86_64.pkg.tar.zst.sig tree-sitter-0.26.8-1-x86_64.pkg.tar.zst tree-sitter-0.26.8-1-x86_64.pkg.tar.zst.sig emacs-30.2-3-x86_64.pkg.tar.zst emacs-30.2-3-x86_64.pkg.tar.zst.sig inetutils-2.8-1-x86_64.pkg.tar.zst inetutils-2.8-1-x86_64.pkg.tar.zst.sig vpnc-1\:0.5.3.r557.r241-1-x86_64.pkg.tar.zst vpnc-1\:0.5.3.r557.r241-1-x86_64.pkg.tar.zst.sig xscreensaver-6.15-1-x86_64.pkg.tar.zst xscreensaver-6.15-1-x86_64.pkg.tar.zst.sig

and then this:

[djg-lt ~]# pacman-key --init 
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: agent_genkey failed: No such file or directory
gpg: key generation failed: No such file or directory
gpg: Done
==> Updating trust database...
gpg: no need for a trustdb check
[djg-lt ~]# pacman-key --populate 
==> ERROR: There is no secret key available to sign with.
==> Use 'pacman-key --init' to generate a default secret key.

so something still seems broken.

seth · 2026-05-11 19:51:36

I assume this is not what you were expecting?:

Not really.

sudo ls -lRa /etc/pacman.d/gnupg
stat /etc/pacman.d
pacman-conf

djg1971 · 2026-05-11 19:56:07

[djg-lt ~]# ls -lRa /etc/pacman.d/gnupg
/etc/pacman.d/gnupg:
total 24
drwxr-xr-x 2 root root 4096 May 11 14:16 .
drwxr-xr-x 3 root root 4096 May 11 14:16 ..
-rw-r--r-- 1 root root   17 May 11 14:16 gpg-agent.conf
-rw-r--r-- 1 root root  130 May 11 14:16 gpg.conf
-rw------- 1 root root    0 May 11 14:16 .gpg-v21-migrated
-rw-r--r-- 1 root root    0 May 11 14:16 pubring.gpg
-rw------- 1 root root    0 May 11 14:16 secring.gpg
-rw-r--r-- 1 root root 1200 May 11 14:16 trustdb.gpg

[djg-lt ~]# stat /etc/pacman.d 
  File: /etc/pacman.d
  Size: 4096      	Blocks: 16         IO Block: 4096   directory
Device: 253,0	Inode: 57671717    Links: 3
Access: (0755/drwxr-xr-x)  Uid: (    0/    root)   Gid: (    0/    root)
Access: 2026-03-06 09:36:03.578504872 -0500
Modify: 2026-05-11 14:16:28.956170603 -0400
Change: 2026-05-11 14:16:28.956170603 -0400
 Birth: 2018-10-23 04:14:47.205183101 -0400

[djg-lt ~]# pacman-conf 
[options]
RootDir = /
DBPath = /var/lib/pacman/
CacheDir = /var/cache/pacman/pkg/
HookDir = /etc/pacman.d/hooks/
GPGDir = /etc/pacman.d/gnupg/
LogFile = /var/log/pacman.log
DownloadUser = alpm
Architecture = x86_64
CheckSpace
ParallelDownloads = 5
CleanMethod = KeepInstalled
SigLevel = PackageRequired
SigLevel = PackageTrustedOnly
SigLevel = DatabaseOptional
SigLevel = DatabaseTrustedOnly
LocalFileSigLevel = PackageOptional
LocalFileSigLevel = PackageTrustedOnly
[core]
Usage = All
Server = https://mirrors.bloomu.edu/archlinux/core/os/x86_64
Server = https://arch-mirror.brightlight.today/core/os/x86_64
Server = https://mirror.clarkson.edu/archlinux/core/os/x86_64
Server = https://arch.mirror.constant.com/core/os/x86_64
Server = https://mirror.cs.odu.edu/archlinux/core/os/x86_64
Server = https://repo.ialab.dsu.edu/archlinux/core/os/x86_64
Server = https://mirrors.kernel.org/archlinux/core/os/x86_64
Server = https://mirrors.lug.mtu.edu/archlinux/core/os/x86_64
Server = https://mirrors.mit.edu/archlinux/core/os/x86_64
Server = https://mirrors.ocf.berkeley.edu/archlinux/core/os/x86_64
Server = https://mirrors.rit.edu/archlinux/core/os/x86_64
Server = https://mirror.umd.edu/archlinux/core/os/x86_64
[extra]
Usage = All
Server = https://mirrors.bloomu.edu/archlinux/extra/os/x86_64
Server = https://arch-mirror.brightlight.today/extra/os/x86_64
Server = https://mirror.clarkson.edu/archlinux/extra/os/x86_64
Server = https://arch.mirror.constant.com/extra/os/x86_64
Server = https://mirror.cs.odu.edu/archlinux/extra/os/x86_64
Server = https://repo.ialab.dsu.edu/archlinux/extra/os/x86_64
Server = https://mirrors.kernel.org/archlinux/extra/os/x86_64
Server = https://mirrors.lug.mtu.edu/archlinux/extra/os/x86_64
Server = https://mirrors.mit.edu/archlinux/extra/os/x86_64
Server = https://mirrors.ocf.berkeley.edu/archlinux/extra/os/x86_64
Server = https://mirrors.rit.edu/archlinux/extra/os/x86_64
Server = https://mirror.umd.edu/archlinux/extra/os/x86_64
[multilib]
Usage = All
Server = https://mirrors.bloomu.edu/archlinux/multilib/os/x86_64
Server = https://arch-mirror.brightlight.today/multilib/os/x86_64
Server = https://mirror.clarkson.edu/archlinux/multilib/os/x86_64
Server = https://arch.mirror.constant.com/multilib/os/x86_64
Server = https://mirror.cs.odu.edu/archlinux/multilib/os/x86_64
Server = https://repo.ialab.dsu.edu/archlinux/multilib/os/x86_64
Server = https://mirrors.kernel.org/archlinux/multilib/os/x86_64
Server = https://mirrors.lug.mtu.edu/archlinux/multilib/os/x86_64
Server = https://mirrors.mit.edu/archlinux/multilib/os/x86_64
Server = https://mirrors.ocf.berkeley.edu/archlinux/multilib/os/x86_64
Server = https://mirrors.rit.edu/archlinux/multilib/os/x86_64
Server = https://mirror.umd.edu/archlinux/multilib/os/x86_64
[djg-lt ~]#

seth · 2026-05-11 20:05:21

# printenv | grep -i pg

but if there isn't some obvious misdirection (GNUPGHOME or other GPG related variables) we'll just use the broadsword

# strace  -f -o /tmp/pacman-key.strace pacman-key --init # use a root shell, not sudo, in doubt "sudo -i")
cat /tmp/pacman-key.strace | curl -s -H "Accept: application/json, */*" --upload-file - 'https://paste.c-net.org/'

Edit: sanity check

pacman -Qikk pacman gnupg

Last edited by seth (2026-05-11 20:11:22)

djg1971 · 2026-05-11 20:15:01

The colored tags seem to get lost...there were three

:*.jpg=01;35
*.pgm=01;35
*.mpg=01;35

full output:

[djg-lt ~]# printenv | grep -i pg
LS_COLORS=rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.jpg=01;35:*.jpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.axv=01;35:*.anx=01;35:*.ogv=01;35:*.ogx=01;35:*.pdf=00;32:*.ps=00;32:*.txt=00;32:*.patch=00;32:*.diff=00;32:*.log=00;32:*.tex=00;32:*.doc=00;32:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.axa=00;36:*.oga=00;36:*.spx=00;36:*.xspf=00;36:

Time for the sword? Or something else?

djg1971 · 2026-05-11 20:17:18

Just saw your edit...

[djg-lt ~]# pacman -Qikk pacman gnupg
Name            : pacman
Version         : 7.1.0.r9.g54d9411-2
Description     : A library-based package manager with dependency support
Architecture    : x86_64
URL             : https://www.archlinux.org/pacman/
Licenses        : GPL-2.0-or-later
Groups          : None
Provides        : libalpm.so=16-64
Depends On      : bash  coreutils  curl  libcurl.so=4-64  gawk  gettext  glibc  gnupg  gpgme  libgpgme.so=45-64  grep  libarchive
                  libarchive.so=13-64  openssl  libcrypto.so=3-64  pacman-mirrorlist  systemd  libmakepkg-dropins
Optional Deps   : base-devel: required to use makepkg
                  perl-locale-gettext: translation support in makepkg-template
Required By     : appstream-glib  archlinux-keyring  base  expac  package-query  pacman-contrib  pkgfile  yaourt  yay
Optional For    : None
Conflicts With  : None
Replaces        : None
Installed Size  : 5.04 MiB
Packager        : Christian Hesse <eworm@archlinux.org>
Build Date      : Wed 06 May 2026 04:46:32 AM EDT
Install Date    : Mon 11 May 2026 11:51:04 AM EDT
Install Reason  : Explicitly installed
Install Script  : No
Validated By    : Signature

backup file: pacman: /etc/makepkg.conf (Modification time mismatch)
backup file: pacman: /etc/makepkg.conf (Size mismatch)
backup file: pacman: /etc/makepkg.conf (SHA256 checksum mismatch)
backup file: pacman: /etc/pacman.conf (Modification time mismatch)
backup file: pacman: /etc/pacman.conf (Size mismatch)
backup file: pacman: /etc/pacman.conf (SHA256 checksum mismatch)
backup file: pacman: /etc/makepkg.conf.d/fortran.conf (Modification time mismatch)
backup file: pacman: /etc/makepkg.conf.d/fortran.conf (Size mismatch)
backup file: pacman: /etc/makepkg.conf.d/fortran.conf (SHA256 checksum mismatch)
pacman: 426 total files, 0 altered files
Name            : gnupg
Version         : 2.4.9-1
Description     : Complete and free implementation of the OpenPGP standard
Architecture    : x86_64
URL             : https://www.gnupg.org/
Licenses        : BSD-2-Clause  BSD-3-Clause  BSD-4-Clause  CC0-1.0  GPL-2.0-or-later  GPL-3.0-or-later  LGPL-2.1-or-later
                  LGPL-3.0-or-later OR GPL-2.0-or-later  MIT  Unicode-TOU
Groups          : None
Provides        : None
Depends On      : glibc  gnutls  libgcrypt  libgpg-error  libksba  libldap  libusb  pinentry  sh  sqlite  tpm2-tss  zlib  bzip2  libbz2.so=1.0-64
                  libassuan  libassuan.so=9-64  npth  libnpth.so=0-64  readline  libreadline.so=8-64
Optional Deps   : pcsclite: for using scdaemon not with the gnupg internal card driver [installed]
Required By     : gpgme  pacman  thunderbird
Optional For    : None
Conflicts With  : None
Replaces        : None
Installed Size  : 10.28 MiB
Packager        : David Runge <dvzrv@archlinux.org>
Build Date      : Tue 30 Dec 2025 07:11:16 PM EST
Install Date    : Mon 02 Mar 2026 06:54:53 PM EST
Install Reason  : Installed as a dependency for another package
Install Script  : Yes
Validated By    : Signature

gnupg: 255 total files, 0 altered files

seth · 2026-05-11 20:27:32

Time for the sword?

braveheart+sword.jpg

djg1971 · 2026-05-11 20:33:40

I applied your sword, but the following was echoed:

{"link":"PoisonMerrill","url":"https://paste.c-net.org/PoisonMerrill","delete_key":"vyt6UVv5pBSFUcTC"}

seth · 2026-05-11 20:54:44

Can you run this script?

#!/bin/bash
mkdir /tmp/gnupg
gpg -v --homedir /tmp/gnupg/ --gen-key --batch <<EOF
%echo Generating useless key...
Key-Type: RSA
Key-Length: 4096
Key-Usage: sign
Name-Real: foo
Name-Email: bar
Expire-Date: 0
%no-protection
%commit
%echo Done
EOF

Edit: fwiw,

1352551 write(3, "D (genkey(rsa(nbits 4:4096)))\n", 30) = 30
1352551 write(3, "END", 3)              = 3
1352551 write(3, "\n", 1)               = 1
1352551 read(3, "S PROGRESS primegen . 0 0\n", 1002) = 26
…
1352551 read(3, "S PROGRESS primegen + 0 0\n", 1002) = 26
1352551 read(3, "S PROGRESS primegen + 0 0\nS PROG"..., 1002) = 56
1352551 read(3, "S PROGRESS primegen . 0 0\n", 1002) = 26
…
1352551 read(3, "S PROGRESS primegen + 0 0\n", 1002) = 26
1352551 read(3, "S PROGRESS primegen + 0 0\nS PROG"..., 1002) = 56
1352551 read(3, "ERR 67141713 No such file or dir"..., 1002) = 51

Last edited by seth (2026-05-11 20:56:06)

djg1971 · 2026-05-11 20:59:01

script produces the following output:

gpg: enabled compatibility flags:
gpg: keybox '/tmp/gnupg/pubring.kbx' created
gpg: no running gpg-agent - starting '/usr/bin/gpg-agent'
gpg: waiting for the agent to come up ... (8s)
gpg: connection to the agent established
gpg: pinentry launched (1358146 gnome3:curses 1.3.2 - rxvt-unicode-256color :0 - 0/0 0)
gpg: agent_genkey failed: Inappropriate ioctl for device
gpg: key generation failed: Inappropriate ioctl for device

seth · 2026-05-11 21:04:13

1352524 openat(AT_FDCWD, "/dev/tty", O_RDWR|O_NONBLOCK) = 3
1352524 ioctl(3, TCGETS2, 0x7ffcd4e1e780) = -1 ENOTTY (Inappropriate ioctl for device)
1352524 ioctl(1, TCGETS2, 0x7ffcd4e1df10) = -1 ENOTTY (Inappropriate ioctl for device)
1352524 ioctl(0, TCGETS2, 0x7ffcd4e1d150) = -1 ENOTTY (Inappropriate ioctl for device)
1352525 ioctl(2, TCGETS2, 0x7fff3ac49ed0) = -1 ENOTTY (Inappropriate ioctl for device)
1352525 ioctl(1, TCGETS2, 0x7fff3ac49ed0) = -1 ENOTTY (Inappropriate ioctl for device)
1352525 ioctl(1, TCGETS2, 0x7fff3ac49be0) = -1 ENOTTY (Inappropriate ioctl for device)
1352536 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg.conf", O_RDONLY|O_NOCTTY) = 3
1352537 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg.conf", O_RDONLY|O_NOCTTY) = 3
1352538 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg.conf", O_RDONLY|O_NOCTTY) = 3
1352539 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg.conf", O_RDONLY|O_NOCTTY) = 3
1352542 ioctl(1, TCGETS2, 0x7ffdfd3a9380) = -1 ENOTTY (Inappropriate ioctl for device)
1352542 ioctl(0, TCGETS2, 0x7ffdfd3a9240) = -1 ENOTTY (Inappropriate ioctl for device)
1352544 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg.conf", O_RDONLY|O_NOCTTY) = 3
1352546 openat(AT_FDCWD, "/etc/pacman.d/gnupg//gpg-agent.conf", O_RDONLY|O_NOCTTY) = 3
1352551 ioctl(0, TCGETS2, 0x7ffc0f30bad0) = -1 ENOTTY (Inappropriate ioctl for device)
1352551 write(3, "OPTION ttytype=rxvt-unicode-256c"..., 36) = 36
1352551 ioctl(0, TCGETS2, 0x7ffc0f30bad0) = -1 ENOTTY (Inappropriate ioctl for device)

Test an xterm, make sure $TERM says "xterm-256color"

djg1971 · 2026-05-11 21:05:37

close...

[djg@djg-lt ~]$ echo $TERM
xterm
[djg@djg-lt ~]$

seth · 2026-05-11 21:06:16

Should be good enough for this.

djg1971 · 2026-05-11 21:09:23

same script, but in xterm, yields:

gpg: enabled compatibility flags:
gpg: pinentry launched (1360259 curses 1.3.2 - xterm - - 0/0 0)
gpg: agent_genkey failed: Inappropriate ioctl for device
gpg: key generation failed: Inappropriate ioctl for device
[djg-lt ~]#

djg1971 · 2026-05-11 21:18:39

I did the following in the xterm:

export GPG_TTY=$(tty)

then tried the script again... this time it drew a box and asked me to enter a passphrase(?) which I let time out.

progress?

djg1971 · 2026-05-11 21:21:16

ran it again and hit return (empty passphrase). here is the output:

gpg: enabled compatibility flags:
gpg: pinentry launched (1362786 curses 1.3.2 /dev/pts/1 xterm - 20620/11167/5 0/0 0)
gpg: pinentry launched (1362800 curses 1.3.2 /dev/pts/1 xterm - 20620/11167/5 0/0 0)
gpg: writing self signature
gpg: RSA/SHA512 signature from: "3D679C2A9002F859 [?]"
gpg: writing public key to '/tmp/gnupg/pubring.kbx'
gpg: /tmp/gnupg/trustdb.gpg: trustdb created
gpg: using pgp trust model
gpg: directory '/tmp/gnupg/openpgp-revocs.d' created
gpg: writing to '/tmp/gnupg/openpgp-revocs.d/BCA461356D960FD72713317B3D679C2A9002F859.rev'
gpg: RSA/SHA512 signature from: "3D679C2A9002F859 foo <bar>"
gpg: revocation certificate stored as '/tmp/gnupg/openpgp-revocs.d/BCA461356D960FD72713317B3D679C2A9002F859.rev'
[djg-lt ~]#

djg1971 · 2026-05-11 21:24:28

I assume this shell now holds the magic wand; at which step should I pick back up?

Arch Linux

#1 2026-05-11 15:38:37

[SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#2 2026-05-11 15:53:24

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#3 2026-05-11 15:54:04

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#4 2026-05-11 17:25:04

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#5 2026-05-11 17:38:26

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#6 2026-05-11 17:55:27

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#7 2026-05-11 18:01:24

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#8 2026-05-11 18:20:51

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#9 2026-05-11 18:44:27

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#10 2026-05-11 19:51:36

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#11 2026-05-11 19:56:07

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#12 2026-05-11 20:05:21

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#13 2026-05-11 20:15:01

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#14 2026-05-11 20:17:18

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#15 2026-05-11 20:27:32

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#16 2026-05-11 20:33:40

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#17 2026-05-11 20:54:44

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#18 2026-05-11 20:59:01

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#19 2026-05-11 21:04:13

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#20 2026-05-11 21:05:37

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#21 2026-05-11 21:06:16

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#22 2026-05-11 21:09:23

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#23 2026-05-11 21:18:39

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#24 2026-05-11 21:21:16

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

#25 2026-05-11 21:24:28

Re: [SOLVED] signature from "Levente Polyak (anthraxx) <levente@leventepol

Board footer