You are not logged in.
pacman fails to download keys
$ pacman -Syu
...
:: Proceed with installation? [Y/n]
(24/24) checking keys in keyring [##################################] 100%
downloading required keys...
error: key "CEB167EFB5722BD6" could not be looked up remotely
error: required key missing from keyring
error: failed to commit transaction (unexpected error)
Errors occurred, no packages were upgraded.
The problem seems to be gpg, but I don't know what to make of this "no name" error.
$ gpg --debug-level guru --keyserver hkp://keys.gnupg.net --search-keys CEB167EFB5722BD6
gpg: enabled debug flags: packet mpi crypto filter iobuf memory cache memstat trust hashing ipc clock lookup extprog
gpg: DBG: [not enabled in the source] start
gpg: DBG: chan_3 <- # Home: /home/walz/.gnupg
gpg: DBG: chan_3 <- # Config: /home/walz/.gnupg/dirmngr.conf
gpg: DBG: chan_3 <- OK Dirmngr 2.2.4 at your service
gpg: DBG: connection to the dirmngr established
gpg: DBG: chan_3 -> GETINFO version
gpg: DBG: chan_3 <- D 2.2.4
gpg: DBG: chan_3 <- OK
gpg: DBG: chan_3 -> KEYSERVER --clear hkp://keys.gnupg.net
gpg: DBG: chan_3 <- OK
gpg: DBG: chan_3 -> KS_SEARCH -- CEB167EFB5722BD6
gpg: DBG: chan_3 <- ERR 167772380 No name <Dirmngr>
gpg: error searching keyserver: No name
gpg: keyserver search failed: No name
gpg: DBG: chan_3 -> BYE
gpg: DBG: [not enabled in the source] stop
gpg: keydb: handles=0 locks=0 parse=0 get=0
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=0 found=0 not=0 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=0 cached=0 good=0 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: rndjent stat: collector=0x0000000000000000 calls=0 bytes=0
gpg: secmem usage: 0/32768 bytes in 0 blocks
Last edited by walz (2018-01-08 17:14:24)
Offline
Did you search the key "abc" instead of "CEB167EFB5722BD6"? It works for me.
can you run "pacman -Syu" again? and post full output. maybe is a temporary issue with the server.
check also the wiki https://wiki.archlinux.org/index.php/Pa … leshooting
Last edited by a821 (2018-01-08 09:41:20)
Offline
Yes, I searched for the key as well, and it doesn't seem to be a temporary issue.
I added all relevant lines of "pacman -Syu" above.
Offline
You can try changing the gpg.conf of your pacman-key keyring in /etc/pacman.d/gnupg/ to use the hkps:// keyserver instead of the hkp:// keyserver, since hkps runs over the common 443 port also used for HTTPS.
Alternatively, install the archlinux-keyring package from testing as it contains my new signing key also.
Last edited by eschwartz (2018-01-08 12:11:21)
Managing AUR repos The Right Way -- aurpublish (now a standalone tool)
Offline
I got the same uninformative "gpg: error searching keyserver: No name" error with hkps:// keyserver specified in /etc/pacman.d/gnupg/gpg.conf and via --keyserver
Installing archlinux-keyring from testing fixed my pacman issue.
Thanks!
Offline
is there a way to solve this problem without installing the package from testing?
Offline
You can install the package from testing without having to enable the [testing] repo, archlinux-keyring is one of the few packages where this is safe to do.
pacman -U http://mirror2.f4st.host/archlinux/testing/os/x86_64/archlinux-keyring-20180108-1-any.pkg.tar.xz
Offline
The real fix is to fix gpg. I have no idea what the "No name" error is, you'd probably want to talk to upstream.
Offline
for me - the problem was solved after I re-enabled IPv6 once I realized that
`pacman-key --refresh-keys`
fails with the error
`keyserver refresh failed: Address family not supported by protocol`
Offline
That's a different problem from mine
$ pacman-key --refresh-keys
gpg: refreshing 100 keys from hkps://pool.sks-keyservers.net
gpg: keyserver refresh failed: No name
==> ERROR: A specified local key could not be updated from a keyserver.
Offline
You can install the package from testing without having to enable the [testing] repo, archlinux-keyring is one of the few packages where this is safe to do.
pacman -U http://mirror2.f4st.host/archlinux/testing/os/x86_64/archlinux-keyring-20180108-1-any.pkg.tar.xz
Thanks. This works.
Offline
Yeah, it works until the next time. Fix gpg.
Offline
bug reported;
I don't really know what I'm doing.
Offline
opened upstream https://dev.gnupg.org/T3722
Offline
Hi,
I also get the exact same error when running "pacman -Syu" on one of my machines (strangely, my desktop was updated without an issue), though, in my case, the error message I get from running "pacman-key --refresh-keys" complains that no keyserver is available:
# pacman-key --refresh-keys
gpg: refreshing 99 keys from hkp://ipv4.pool.sks-keyservers.net:11371
gpg: keyserver refresh failed: No keyserver available
==> ERROR: A specified local key could not be updated from a keyserver.
Using keyring from testing also resolved my case.
Last edited by maxchaos (2018-01-08 21:22:31)
Offline
walz, can you post your nsswitch.conf?
Offline
I had the exact same error during -Syu
downloading required keys...
error: key "CEB167EFB5722BD6" could not be looked up remotely
error: required key missing from keyring
error: failed to commit transaction (unexpected error)
So I switched keyserver to keyserver hkp://pgp.mit.edu:11371 as suggested in the wiki
And the -Syu completed successfully
downloading required keys...
:: Import PGP key 4096R/BD27B07A5EF45C2ADAF70E0484818A6819AF4A9B, "Eli Schwartz <eschwartz93@gmail.com>", created: 2016-05-04? [Y/n] Y
Online
Same issue here.
~~~~
downloading required keys...
error: key "CEB167EFB5722BD6" could not be looked up remotely
error: required key missing from keyring
error: failed to commit transaction (unexpected error)
~~~~
Offline
Rather than bumping the thread with an empty post, did you try changing the keyserver?
https://wiki.archlinux.org/index.php/Co … mpty_posts
Offline
For me hkps://hkps.pool.sks-keyservers.net:443 works fine
Offline
walz, can you post your nsswitch.conf?
Nothing special here.
$ cat /etc/nsswitch.conf
passwd: files mymachines systemd
group: files mymachines systemd
shadow: files
publickey: files
hosts: files mymachines resolve [!UNAVAIL=return] dns myhostname
networks: files
protocols: files
services: files
ethers: files
rpc: files
netgroup: files
Offline
Hey,
Didn't help:
* reinstall keyering
* refreshing keys
* changing Keyserver
shifted the brokeness one space to the right (Did fix it):
You can install the package from testing without having to enable the [testing] repo, archlinux-keyring is one of the few packages where this is safe to do.
pacman -U http://mirror2.f4st.host/archlinux/testing/os/x86_64/archlinux-keyring-20180108-1-any.pkg.tar.xz
Offline
For me hkps://hkps.pool.sks-keyservers.net:443 works fine
This worked for me: almost certainly I had an old keyserver.
Thanks cappuccino and everybody else!
my gpg.conf
no-greeting
no-permission-warning
lock-never
#keyserver hkp://pool.sks-keyservers.net
keyserver hkps://hkps.pool.sks-keyservers.net:443
Last edited by pittix (2018-01-09 14:36:19)
Offline
Funnily enough, hkps://hkps.pool.sks-keyservers.net:443 is the default if keyserver is not specified. See https://bugs.archlinux.org/task/55278
Managing AUR repos The Right Way -- aurpublish (now a standalone tool)
Offline
hkps://hkps.pool.sks-keyservers.net:443 works fine
This setting in /etc/pacman.d/gnupg/gpg.conf, a subsequent `pacman-key --refresh-keys` and a final `pacman -Syu` resolved the issue for me; the last pacman command then asked whether to import key BD27B07A5EF45C2ADAF70E0484818A6819AF4A9B and proceeded normally. No sideloading of the testing package needed.
Offline