You are not logged in.

#1 2022-06-12 13:51:30

0x4TLAS
Member
Registered: 2022-06-12
Posts: 3

[SOLVED] Invalid or corrupted package (pgp signature)

Hello!
Recently i have been experiencing a problem when trying to install packages.
Whenever i try to install a package (e.g. audacity) i get errors.
Here is a log of me trying to install audacity, but it happens with other packages too

~$ sudo pacman -S audacity
resolving dependencies...
looking for conflicting packages...

Packages (8) libid3tag-0.15.1b-11  libmad-0.15.1b-9  portsmf-234-2  soundtouch-2.3.1-2
             suil-0.10.12-2  twolame-0.4.0-2  vamp-plugin-sdk-2.10.0-1
             audacity-1:2.4.1-7

Total Download Size:    0.58 MiB
Total Installed Size:  29.76 MiB

:: Proceed with installation? [Y/n] y
:: Retrieving packages...
vamp-plugin-sdk-2....   234.8 KiB  1642 KiB/s 00:00 [############################] 100%
twolame-0.4.0-2-x86_64   78.2 KiB  2.54 MiB/s 00:00 [############################] 100%
portsmf-234-2-x86_64     75.4 KiB  2.04 MiB/s 00:00 [############################] 100%
soundtouch-2.3.1-2...    68.1 KiB  2.22 MiB/s 00:00 [############################] 100%
libmad-0.15.1b-9-x...    67.7 KiB  2.00 MiB/s 00:00 [############################] 100%
libid3tag-0.15.1b-...    36.2 KiB  1342 KiB/s 00:00 [############################] 100%
suil-0.10.12-2-x86_64    31.5 KiB  1052 KiB/s 00:00 [############################] 100%
Total (7/7)             591.9 KiB  1377 KiB/s 00:00 [############################] 100%
(8/8) checking keys in keyring                       [############################] 100%
(8/8) checking package integrity                     [############################] 100%
error: libmad: signature from "Evangelos Foutras <evangelos@foutrelis.com>" is unknown trust
:: File /var/cache/pacman/pkg/libmad-0.15.1b-9-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: soundtouch: signature from "Evangelos Foutras <evangelos@foutrelis.com>" is unknown trust
:: File /var/cache/pacman/pkg/soundtouch-2.3.1-2-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: libid3tag: signature from "David Runge <dvzrv@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/libid3tag-0.15.1b-11-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: suil: signature from "David Runge <dvzrv@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/suil-0.10.12-2-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: twolame: signature from "David Runge <dvzrv@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/twolame-0.4.0-2-x86_64.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: vamp-plugin-sdk: signature from "David Runge <dvzrv@archlinux.org>" is invalid
:: File /var/cache/pacman/pkg/vamp-plugin-sdk-2.10.0-1-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: portsmf: signature from "Evangelos Foutras <evangelos@foutrelis.com>" is unknown trust
:: File /var/cache/pacman/pkg/portsmf-234-2-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: audacity: signature from "David Runge <dvzrv@archlinux.org>" is unknown trust
:: File /var/cache/pacman/pkg/audacity-1:2.4.1-7-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.

Any help would be appreciated, i tried fixing this yesterday but i got some sort of block errors, but a block scan showed everything being fine, also sometimes it asks me to import pgp keys too, probably deleted them while trying to fix this mess yesterday, but after i import them t says its unknown trust and a package is corrupted

P.S: Probably unrelated but i noticed this after i added permissions for my user to write, read,execute for /dev/input/event3 (i needed it for a coding project, that is my keyboard, its still working fine)

Last edited by 0x4TLAS (2022-06-12 17:14:00)

Offline

#2 2022-06-12 14:05:18

Scimmia
Fellow
Registered: 2012-09-01
Posts: 9,433

Re: [SOLVED] Invalid or corrupted package (pgp signature)

You have 2 different errors there. The unknown trust errors could be from you screwing up the keyring, reinstall the archlinux-keyring package.

The invalid error points to the package actually being corrupt. You deleted it, so if redownloading it doesn't work, try a different mirror.

Online

#3 2022-06-12 14:17:03

0x4TLAS
Member
Registered: 2022-06-12
Posts: 3

Re: [SOLVED] Invalid or corrupted package (pgp signature)

Scimmia wrote:

You have 2 different errors there. The unknown trust errors could be from you screwing up the keyring, reinstall the archlinux-keyring package.

The invalid error points to the package actually being corrupt. You deleted it, so if redownloading it doesn't work, try a different mirror.

If i try to reinstall archlinux-keyring i get a message that the package is corrupted, if i edit /etc/pacman.d/mirrorlist it doesnt fix anything

Offline

#4 2022-06-12 14:19:34

Scimmia
Fellow
Registered: 2012-09-01
Posts: 9,433

Re: [SOLVED] Invalid or corrupted package (pgp signature)

So you completely destroyed your keyring. See https://wiki.archlinux.org/title/Pacman … l_the_keys

Online

#5 2022-06-12 15:57:43

0x4TLAS
Member
Registered: 2022-06-12
Posts: 3

Re: [SOLVED] Invalid or corrupted package (pgp signature)

Scimmia wrote:

So you completely destroyed your keyring. See https://wiki.archlinux.org/title/Pacman … l_the_keys

OMG Thank you so much! I followed the steps and everything seems to be in order now.

Offline

#6 2022-06-12 16:54:45

2ManyDogs
Forum Moderator
Registered: 2012-01-15
Posts: 4,045

Re: [SOLVED] Invalid or corrupted package (pgp signature)

Please remember to mark your thread [SOLVED] (edit the title of your first post).


How to post. A sincere effort to use modest and proper language and grammar is a sign of respect toward the community.

Offline

#7 2022-07-23 02:28:47

muddy
Member
Registered: 2016-08-10
Posts: 16

Re: [SOLVED] Invalid or corrupted package (pgp signature)

Scimmia wrote:

You have 2 different errors there. The unknown trust errors could be from you screwing up the keyring, reinstall the archlinux-keyring package.

The invalid error points to the package actually being corrupt. You deleted it, so if redownloading it doesn't work, try a different mirror.


Thanks Scimmia, worked for me.

Offline

#8 2022-07-27 01:15:49

flurrywinde
Member
Registered: 2022-07-27
Posts: 1

Re: [SOLVED] Invalid or corrupted package (pgp signature)

I had to also run `sudo pacman-key --refresh-keys` after the `--populate` step in the wiki (see above link that solved OP's issue). Not sure what the difference is and why the wiki doesn't have it. Anybody know? Should the wiki be updated?

Offline

Board footer

Powered by FluxBB