problem with public key (PKGBUILD) [SOLVED]

j2lapoin · 2015-08-15 17:13:57

Ok I'm doing a package from the bash with only help, a PKGBUILD. So far have been collected pieces of files required by the program. I got problem when it's time to makepkg -S. The system send me as error message:

==> Making package: vim 7.4.410-1 (Sat Aug 15 13:12:31 EDT 2015)
==> Retrieving sources...
  -> Found vim-7.4.410.tar.xz
  -> Found vim-7.4.410.tar.xz.sig
  -> Found vimrc
  -> Found archlinux.vim
  -> Found gvim.desktop
==> Validating source files with md5sums...
    vim-7.4.410.tar.xz ... Passed
    vim-7.4.410.tar.xz.sig ... Skipped
    vimrc ... Skipped
    archlinux.vim ... Skipped
    gvim.desktop ... Skipped
==> Verifying source file signatures with gpg...
    vim-7.4.410.tar.xz ... FAILED (the public key 34C5D94FE7E7913E86DC427E7FB1A3800C84C0A5 is not trusted)
==> ERROR: One or more PGP signatures could not be verified!

Should someone can explain me how to make this process working without commenting it.

Last edited by j2lapoin (2015-08-15 19:37:59)

karol · 2015-08-15 17:17:12

Please use a more informative title and read https://wiki.archlinux.org/index.php/Pacman-key

j2lapoin · 2015-08-15 17:25:40

My bad, I didn't think about that. But for the link, I doubt that what I need. I seem to think that I need to give to PKGBUILD a number or somesort. I already gpg --recv-key 34C5D94FE7E7913E86DC427E7FB1A3800C84C0A5 the previous key. Feel free to give me more advice or to cover which section in pacman howto.

j2lapoin · 2015-08-15 17:48:53

the key number has been added, as by ...

==> Verifying source file signatures with gpg...
    vim-7.4.410.tar.xz ... FAILED (the public key 34C5D94FE7E7913E86DC427E7FB1A3800C84C0A5 is not trusted)
==> ERROR: One or more PGP signatures could not be verified!
[j2lapoin@localhost gvim-pythonsix]$  gpg --recv-key 34C5D94FE7E7913E86DC427E7FB1A3800C84C0A5
gpg: key 0C84C0A5: "Thomas Dziedzic <gostrc@gmail.com>" not changed
gpg: Total number processed: 1
gpg:              unchanged: 1

But eventough, I add this key, it keep telling me that the key is not trustable. I doubt that my solution is a pacman one. I presume I could get some help.

ayekat · 2015-08-15 17:56:26

What about

pacman-key --recv-keys

?

[EDIT]
or even less hack'ish:

pacman-key --refresh-keys

Last edited by ayekat (2015-08-15 17:58:38)

j2lapoin · 2015-08-15 18:00:49

i did but for some reason that did nothing to my situation. I finally opted to comment this section (the one about md5sum verification of pkgbuild), that work but it's not what I wanted. I wanted to know how to fix the problem otherwise.

I get an error by doing refresh key...

==> ERROR: pacman-key needs to be run as root for this operation.
[j2lapoin@localhost gvim-pythonsix]$ sudo pacman-key --refresh-keys
gpg: refreshing 82 keys from hkp://pool.sks-keyservers.net

gpg: connecting dirmngr at '/root/.gnupg/S.dirmngr' failed: IPC connect call failed
gpg: keyserver refresh failed: No dirmngr
==> ERROR: A specified local key could not be updated from a keyserver

Last edited by j2lapoin (2015-08-15 18:06:19)

Trilby · 2015-08-15 18:10:17

karol wrote:

Please use a more informative title

Seconded.

j2lapoin wrote:

My bad, I didn't think about that.

Now you have. Please click the edit button on your first post - this will allow you to change the title.

Raynman · 2015-08-15 18:11:10

karol wrote:

Please use a more informative title and read https://wiki.archlinux.org/index.php/Pacman-key

You still haven't acted on the first part. As for the second part, I think karol may have misled you with that link (surely not intentionally). I would suggest https://wiki.archlinux.org/index.php/Ma … e_checking

Be sure to also check out Allan's blog post -- there's a link in the "Note". And then if it's still not clear enough what the difference is between adding and trusting/signing keys, you can read about gnupg in general (both wiki pages provide you with relevant links).

Last edited by Raynman (2015-08-15 18:13:36)

progandy · 2015-08-15 18:13:50

Why do you want to compile an old vim version? If you do that, then you have to react to a few changes in the behaviour of makepkg in relation to gpg signatures.

Tip: Adding a key is not the same as trusting the owner.
Edit: A pointed example: I'll send you a bogous invoice per mail and sign it with pgp. Now you can fetch my public key and verify that I have written it, but do you trust me that the bill is valid and has to be paid?

Last edited by progandy (2015-08-15 19:26:30)

j2lapoin · 2015-08-15 18:18:54

https://bbs.archlinux.org/viewtopic.php?id=186059 gvim-pythonsix: Vim with simultaneous python2 and python3 support

should i put a md5sum of the file in PKGBUILD. Eventough i try.

Last edited by j2lapoin (2015-08-15 18:22:33)

ewaller · 2015-08-15 18:28:21

J2lapoin,

If you are wondering what happened to your first post, I think you hit the report link, not the reply link It happens more than you might imagine.

WorMzy · 2015-08-15 18:33:09

If you're wondering where your original post went, j2lapoin, you accidentally clicked report rather than quote/reply.

I'm not sure what relevance that topic has to your current problem, but like progandy hinted, try trusting the key. Alternatively, add they key to the validpgpkeys array in the PKGBUILD (see 'man PKGBUILD').

EDIT: hah, beaten by ewaller by five minutes. I'm too easily distracted.

Last edited by WorMzy (2015-08-15 18:34:18)

karol · 2015-08-15 18:36:15

Raynman wrote:

karol wrote:
Please use a more informative title and read https://wiki.archlinux.org/index.php/Pacman-key
You still haven't acted on the first part. As for the second part, I think karol may have misled you with that link (surely not intentionally). I would suggest https://wiki.archlinux.org/index.php/Ma … e_checking
Be sure to also check out Allan's blog post -- there's a link in the "Note". And then if it's still not clear enough what the difference is between adding and trusting/signing keys, you can read about gnupg in general (both wiki pages provide you with relevant links).

My bad.
I was adding links to my notes and posted the wrong one here.

j2lapoin · 2015-08-15 18:37:03

WorMzy wrote:

If you're wondering where your original post went, j2lapoin, you accidentally clicked report rather than quote/reply.
I'm not sure what relevance that topic has to your current problem, but like progandy hinted, try trusting the key. Alternatively, add they key to the validpgpkeys array in the PKGBUILD (see 'man PKGBUILD').
EDIT: hah, beaten by ewaller by five minutes. I'm too easily distracted.

Ok great, now i seem to know a little better where im going.

j2lapoin · 2015-08-15 18:48:13

i added this line in my pkgbuild and fix definitely part of my problem.

validpgpkeys=('34C5D94FE7E7913E86DC427E7FB1A3800C84C0A5')

* the other part of the problem it's a compilation thing. Thank your for helping.

Arch Linux

#1 2015-08-15 17:13:57

problem with public key (PKGBUILD) [SOLVED]

#2 2015-08-15 17:17:12

Re: problem with public key (PKGBUILD) [SOLVED]

#3 2015-08-15 17:25:40

Re: problem with public key (PKGBUILD) [SOLVED]

#4 2015-08-15 17:48:53

Re: problem with public key (PKGBUILD) [SOLVED]

#5 2015-08-15 17:56:26

Re: problem with public key (PKGBUILD) [SOLVED]

#6 2015-08-15 18:00:49

Re: problem with public key (PKGBUILD) [SOLVED]

#7 2015-08-15 18:10:17

Re: problem with public key (PKGBUILD) [SOLVED]

#8 2015-08-15 18:11:10

Re: problem with public key (PKGBUILD) [SOLVED]

#9 2015-08-15 18:13:50

Re: problem with public key (PKGBUILD) [SOLVED]

#10 2015-08-15 18:18:54

Re: problem with public key (PKGBUILD) [SOLVED]

#11 2015-08-15 18:28:21

Re: problem with public key (PKGBUILD) [SOLVED]

#12 2015-08-15 18:33:09

Re: problem with public key (PKGBUILD) [SOLVED]

#13 2015-08-15 18:36:15

Re: problem with public key (PKGBUILD) [SOLVED]

#14 2015-08-15 18:37:03

Re: problem with public key (PKGBUILD) [SOLVED]

#15 2015-08-15 18:48:13

Re: problem with public key (PKGBUILD) [SOLVED]

Board footer