You are not logged in.
Pages: 1
Topic closed
The Problem:
I have been trying to update the keyring of my system so that I can update my system at all. The trouble is, that "Christian Hesse" is untrusted, and the update, whether it be for a keyring or the whole -Syu.
Here is what my terminal reads.
[xxx@xxx]: ~>$ sudo pacman -Sy archlinux-keyring
:: Synchronizing package databases...
core is up to date
extra is up to date
community is up to date
resolving dependencies...
looking for conflicting packages...
Packages (1) archlinux-keyring-20220125-1
Total Download Size: 1.01 MiB
Total Installed Size: 1.43 MiB
:: Proceed with installation? [Y/n]
:: Retrieving packages...
archlinux-keyring-20220125-1-any 1036.5 KiB 1234 KiB/s 00:01 [###########################################] 100%
(1/1) checking keys in keyring [###########################################] 100%
downloading required keys...
:: Import PGP key 6D42BDD116E0068F, "Christian Hesse <eworm@archlinux.org>"? [Y/n]
(1/1) checking package integrity [###########################################] 100%
error: archlinux-keyring: signature from "Christian Hesse <eworm@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/archlinux-keyring-20220125-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.
Failed Solution:
I have tried to do the following solution to no avail:
Step 1:
sudo rm -r /etc/pacman.d/gnupg
Step 2:
sudo pacman-key --init
Step 3:
sudo pacman-key --populate archlinux
Step 4:
sudo pacman-key --refresh-keys
Step 5:
sudo pacman -Sy gnupg archlinux-keyring
Step 6:
sudo pacman -Sc
This solution fails at step 5.
The output I get for that step is this.
[XXX@XXX]: ~>$ sudo pacman -Sy gnupg archlinux-keyring
:: Synchronizing package databases...
core is up to date
extra is up to date
community is up to date
warning: gnupg-2.2.32-2 is up to date -- reinstalling
resolving dependencies...
looking for conflicting packages...
Packages (2) archlinux-keyring-20220125-1 gnupg-2.2.32-2
Total Download Size: 3.39 MiB
Total Installed Size: 11.39 MiB
Net Upgrade Size: 1.43 MiB
:: Proceed with installation? [Y/n]
:: Retrieving packages...
gnupg-2.2.32-2-x86_64 2.4 MiB 1586 KiB/s 00:02 [###########################################] 100%
archlinux-keyring-20220125-1-any 1036.5 KiB 1426 KiB/s 00:01 [###########################################] 100%
Total (2/2) 3.4 MiB 1463 KiB/s 00:02 [###########################################] 100%
(2/2) checking keys in keyring [###########################################] 100%
downloading required keys...
:: Import PGP key 51E8B148A9999C34, "Evangelos Foutras <foutrelis@archlinux.org>"? [Y/n]
:: Import PGP key 6D42BDD116E0068F, "Christian Hesse <eworm@archlinux.org>"? [Y/n]
(2/2) checking package integrity [###########################################] 100%
error: gnupg: signature from "Evangelos Foutras <foutrelis@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/gnupg-2.2.32-2-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]
error: archlinux-keyring: signature from "Christian Hesse <eworm@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/archlinux-keyring-20220125-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.
It is also worth noting that step 2 seems to fail too.
[xxx@xxx]: ~>$ sudo pacman-key --init
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: key 8EE2B561EACA1ED9 marked as ultimately trusted
gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
gpg: revocation certificate stored as '/etc/pacman.d/gnupg/openpgp-revocs.d/11lotsOfNums1234143124.rev'
gpg: Done
==> Updating trust database...
gpg: marginals needed: 3 completes needed: 1 trust model: pgp
gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u
Additional Context
I also went and renamed my /etc/pacman.conf.pacnew into my /etc/pacman.conf
Last edited by primslim (2022-02-03 02:00:02)
Offline
It must be a general problem today, February 2. I frequently install arch on my physical machine and on qemu very often, until yesterday I had no problems, but today those problems started with the keyring. I am making a custom installation script and today I have created at least 8 virtual machines to install arch and it gives me the same problem. my solution is:
killall gpg-agent
rm -rf /etc/pacman.d/gnupg
pacman-key --init
pacman-key --populate archlinux
and done.. but i guess is a general arch problem,,,
Offline
Well, I tried it out, and this is what I got
[xxx@xxx]: ~>$ sudo killall gpg-agent
[sudo] password for xxx:
[xxx@xxx]: ~>$ sudo rm -rf /etc/pacman.d/gnupg
[xxx@xxx]: ~>$ sudo pacman-key --init
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: key 571889807DAB39B4 marked as ultimately trusted
gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
gpg: revocation certificate stored as '/etc/pacman.d/gnupg/openpgp-revocs.d/2009AD5D9AC0538F12DF5A52571889807DAB39B4.rev'
gpg: Done
==> Updating trust database...
gpg: marginals needed: 3 completes needed: 1 trust model: pgp
gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u
[xxx@xxx]: ~>$ pacman-key --populate archlinux
==> ERROR: pacman-key needs to be run as root for this operation.
[xxx@xxx]: ~>$ sudo pacman-key --populate archlinux
==> Appending keys from archlinux.gpg...
gpg: no valid OpenPGP data found.
==> Updating trust database...
gpg: no need for a trustdb check
I then tried to update with pacman -Syu
[xxx@xxx]: ~>$ sudo pacman -Syu
:: Synchronizing package databases...
core is up to date
extra is up to date
community is up to date
:: Starting full system upgrade...
:: Replace hwids with core/hwdata? [Y/n]
resolving dependencies...
looking for conflicting packages...
error: failed to prepare transaction (could not satisfy dependencies)
:: installing expat (2.4.4-1) breaks dependency 'expat=2.4.2' required by lib32-expat
Seems I have a new problem
Offline
┌─[veles ~]
└─╼ pkgsearch lib32-expat
• lib32-expat [multilib] 2.4.4-1
But multilib is not enabled in your conf, so you have screwed that up at some point...
Offline
Did you solve this? I'm having the same problem after loosing power on my BIOS battery and not noticing until I already had ran pacman. I then updated the time during the pacman update which might have destroyed some invariants pacman believes in...
Offline
It must be a general problem today, February 2. I frequently install arch on my physical machine and on qemu very often, until yesterday I had no problems, but today those problems started with the keyring. I am making a custom installation script and today I have created at least 8 virtual machines to install arch and it gives me the same problem. my solution is:
killall gpg-agent
rm -rf /etc/pacman.d/gnupg
pacman-key --init
pacman-key --populate archlinuxand done.. but i guess is a general arch problem,,,
you definitely saved my day. After a day trying to fic pacman after a new installation on virtualbox 7, your support fixed all my issues. Every package I tried to install went in abort with keyring and certificates issues. Thanks!
Offline
The OP has not been back since February 2022, so I am going to consider this thread abandoned and close it now.
Offline
Pages: 1
Topic closed