You are not logged in.

#1 2022-02-03 01:36:30

primslim
Member
Registered: 2022-02-03
Posts: 2

Trouble updating system / updating keyring

The Problem:
I have been trying to update the keyring of my system so that I can update my system at all. The trouble is, that "Christian Hesse" is untrusted, and the update, whether it be for a keyring or the whole -Syu.

Here is what my terminal reads.

[xxx@xxx]: ~>$ sudo pacman -Sy archlinux-keyring
:: Synchronizing package databases...
 core is up to date
 extra is up to date
 community is up to date
resolving dependencies...
looking for conflicting packages...

Packages (1) archlinux-keyring-20220125-1

Total Download Size:   1.01 MiB
Total Installed Size:  1.43 MiB

:: Proceed with installation? [Y/n] 
:: Retrieving packages...
 archlinux-keyring-20220125-1-any              1036.5 KiB  1234 KiB/s 00:01 [###########################################] 100%
(1/1) checking keys in keyring                                              [###########################################] 100%
downloading required keys...
:: Import PGP key 6D42BDD116E0068F, "Christian Hesse <eworm@archlinux.org>"? [Y/n] 
(1/1) checking package integrity                                            [###########################################] 100%
error: archlinux-keyring: signature from "Christian Hesse <eworm@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/archlinux-keyring-20220125-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.

Failed Solution:
I have tried to do the following solution to no avail:

Step 1:
sudo rm -r /etc/pacman.d/gnupg
Step 2:
sudo pacman-key --init
Step 3:
sudo pacman-key --populate archlinux 
Step 4:
sudo pacman-key --refresh-keys
Step 5:
sudo pacman -Sy gnupg archlinux-keyring 
Step 6:
sudo pacman -Sc

This solution fails at step 5.
The output I get for that step is this.

[XXX@XXX]: ~>$ sudo pacman -Sy gnupg archlinux-keyring
:: Synchronizing package databases...
 core is up to date
 extra is up to date
 community is up to date
warning: gnupg-2.2.32-2 is up to date -- reinstalling
resolving dependencies...
looking for conflicting packages...

Packages (2) archlinux-keyring-20220125-1  gnupg-2.2.32-2

Total Download Size:    3.39 MiB
Total Installed Size:  11.39 MiB
Net Upgrade Size:       1.43 MiB

:: Proceed with installation? [Y/n] 
:: Retrieving packages...
 gnupg-2.2.32-2-x86_64                            2.4 MiB  1586 KiB/s 00:02 [###########################################] 100%
 archlinux-keyring-20220125-1-any              1036.5 KiB  1426 KiB/s 00:01 [###########################################] 100%
 Total (2/2)                                      3.4 MiB  1463 KiB/s 00:02 [###########################################] 100%
(2/2) checking keys in keyring                                              [###########################################] 100%
downloading required keys...
:: Import PGP key 51E8B148A9999C34, "Evangelos Foutras <foutrelis@archlinux.org>"? [Y/n] 
:: Import PGP key 6D42BDD116E0068F, "Christian Hesse <eworm@archlinux.org>"? [Y/n] 
(2/2) checking package integrity                                            [###########################################] 100%
error: gnupg: signature from "Evangelos Foutras <foutrelis@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/gnupg-2.2.32-2-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 
error: archlinux-keyring: signature from "Christian Hesse <eworm@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/archlinux-keyring-20220125-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.

It is also worth noting that step 2 seems to fail too.

[xxx@xxx]: ~>$ sudo pacman-key --init
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: key 8EE2B561EACA1ED9 marked as ultimately trusted
gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
gpg: revocation certificate stored as '/etc/pacman.d/gnupg/openpgp-revocs.d/11lotsOfNums1234143124.rev'
gpg: Done
==> Updating trust database...
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u

Additional Context
I also went and renamed my /etc/pacman.conf.pacnew into my /etc/pacman.conf

Last edited by primslim (2022-02-03 02:00:02)

Offline

#2 2022-02-03 01:48:34

gh0stzk
Member
Registered: 2020-03-28
Posts: 31

Re: Trouble updating system / updating keyring

It must be a general problem today, February 2. I frequently install arch on my physical machine and on qemu very often, until yesterday I had no problems, but today those problems started with the keyring. I am making a custom installation script and today I have created at least 8 virtual machines to install arch and it gives me the same problem. my solution is:

killall gpg-agent
rm -rf /etc/pacman.d/gnupg
pacman-key --init
pacman-key --populate archlinux

and done.. but i guess is a general arch problem,,,

Offline

#3 2022-02-03 01:57:29

primslim
Member
Registered: 2022-02-03
Posts: 2

Re: Trouble updating system / updating keyring

Well, I tried it out, and this is what I got

[xxx@xxx]: ~>$ sudo killall gpg-agent
[sudo] password for xxx: 
[xxx@xxx]: ~>$ sudo rm -rf /etc/pacman.d/gnupg
[xxx@xxx]: ~>$ sudo pacman-key --init
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: key 571889807DAB39B4 marked as ultimately trusted
gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
gpg: revocation certificate stored as '/etc/pacman.d/gnupg/openpgp-revocs.d/2009AD5D9AC0538F12DF5A52571889807DAB39B4.rev'
gpg: Done
==> Updating trust database...
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
[xxx@xxx]: ~>$ pacman-key --populate archlinux
==> ERROR: pacman-key needs to be run as root for this operation.
[xxx@xxx]: ~>$ sudo pacman-key --populate archlinux
==> Appending keys from archlinux.gpg...
gpg: no valid OpenPGP data found.
==> Updating trust database...
gpg: no need for a trustdb check

I then tried to update with pacman -Syu

[xxx@xxx]: ~>$ sudo pacman -Syu
:: Synchronizing package databases...
 core is up to date
 extra is up to date
 community is up to date
:: Starting full system upgrade...
:: Replace hwids with core/hwdata? [Y/n] 
resolving dependencies...
looking for conflicting packages...
error: failed to prepare transaction (could not satisfy dependencies)
:: installing expat (2.4.4-1) breaks dependency 'expat=2.4.2' required by lib32-expat

Seems I have a new problem

Offline

#4 2022-02-03 02:21:17

jasonwryan
Anarchist
From: .nz
Registered: 2009-05-09
Posts: 29,999
Website

Re: Trouble updating system / updating keyring

┌─[veles ~]
└─╼ pkgsearch lib32-expat
• lib32-expat [multilib] 2.4.4-1

But multilib is not enabled in your conf, so you have screwed that up at some point...


Arch + dwm   •   Mercurial repos  •   Surfraw

Registered Linux User #482438

Offline

#5 2022-05-14 08:30:28

parkour_peter
Member
Registered: 2020-04-28
Posts: 6

Re: Trouble updating system / updating keyring

Did you solve this? I'm having the same problem after loosing power on my BIOS battery and not noticing until I already had ran pacman. I then updated the time during the pacman update which might have destroyed some invariants pacman believes in...

Offline

Board footer

Powered by FluxBB