You are not logged in.

#1 2022-07-18 15:57:10

NikitaIvanov
Member
Registered: 2022-07-18
Posts: 4

[SOLVED] uknown public key and the public key is not trusted errors

I've made a program and an AUR package for it. I sign all my commits in the git repository and set "?signed" query in the PKGBUILD.

If you follow the link, you will notice that the first commentator couldn't install a package due to the "unknown public key" error.

Actually, it's the second time someone has this kind of an error. The first time it was reported on GitHub.

They managed to get the key by running "gpg --recv-keys" but then they got "the public key is not trusted" error. They fixed it by editing the key with gpg and somehow making it trustworthy.

What am I doing wrong as a package maintainer that users of my package have to do all this stuff to verify my key? I use lots of AUR packages myself and I never had problems with public keys. How can I make my key "trustworthy" so users of my package don't have to manually edit the key to make makepkg trust it?

Last edited by NikitaIvanov (2022-07-19 06:57:19)

Offline

#2 2022-07-18 16:31:08

progandy
Member
Registered: 2012-05-17
Posts: 5,184

Re: [SOLVED] uknown public key and the public key is not trusted errors

gpg --recv-keys is always necessary unless the user configures their gpg to automatically fetch keys.
To trust the key in that pkgbuild, you'll have to add the validpgpkeys array.
https://wiki.archlinux.org/title/Makepk … e_checking

The linux kernel package is a good example: https://github.com/archlinux/svntogit-p … k/PKGBUILD


| alias CUTF='LANG=en_XX.UTF-8@POSIX ' |

Offline

#3 2022-07-18 22:05:35

NikitaIvanov
Member
Registered: 2022-07-18
Posts: 4

Re: [SOLVED] uknown public key and the public key is not trusted errors

progandy wrote:

gpg --recv-keys is always necessary unless the user configures their gpg to automatically fetch keys.
To trust the key in that pkgbuild, you'll have to add the validpgpkeys array.
https://wiki.archlinux.org/title/Makepk … e_checking

The linux kernel package is a good example: https://github.com/archlinux/svntogit-p … k/PKGBUILD

The problem seems to be fixed now, thank you!

Offline

#4 2022-07-19 06:54:07

seth
Member
Registered: 2012-09-03
Posts: 49,992

Re: [SOLVED] uknown public key and the public key is not trusted errors

Please always remember to mark resolved threads by editing your initial posts subject - so others will know that there's no task left, but maybe a solution to find.
Thanks.

Offline

#5 2022-07-19 06:57:42

NikitaIvanov
Member
Registered: 2022-07-18
Posts: 4

Re: [SOLVED] uknown public key and the public key is not trusted errors

seth wrote:

Please always remember to mark resolved threads by editing your initial posts subject - so others will know that there's no task left, but maybe a solution to find.
Thanks.

Done.

Offline

Board footer

Powered by FluxBB