[SOLVED] Pacman Key Signing Strange Activity

Hi,
I was just setting up the package verification system with pacman when I noticed it was doing something unusual.  When I ran:
pacman-key --init
instead of waiting for entropy, it just returned the prompt.  Next, when I ran:
pacman-key --populate archlinux
it seemed to go through the entire signing process itself, stating that they didn't need to be signed again (sorry for the vagueness as I can't fetch exactly what it said by redirecting it into a file or something).  The point is, usually I have to confirm each signature.
Is this normal?
Last edited by Mindstormscreator (2012-08-26 15:42:40)

Does the contents of /etc/pacman.d/gnupg look normal? You could compare that directory with the one on the live media (diff -rq) to test that theory.
When I set up package signing, I think I signed five master keys manually which I'd compared from two somewhat independent sources. After that, I don't remember having to *sign* any more signatures but only to confirm it was OK to import them. And now pacman seems to handle much of that automatically... But it is hard to imagine it would be meant to sign the master keys automatically since that would seem to undermine the point of having them in the first place.
On a fresh install, too, the init should take longer because so little is going on. (Hence all the threads here about it hanging because people haven't read the instructions for creating entropy .)

Similar Messages

  • [SOLVED] ALT+key gives strange characters in xterm

    If pressing ALT plus a key gives you strange characters in xterm (e.g.  ALT+x gives ø), the solution that worked for me was to add the following to .XDefaults:
    XTerm*VT100*metaSendsEscape: true

    I owe you an awesome, gigantic beer, I have googled hours to find the solution of this strange issue, and it was here in the forums of my distribution

  • [SOLVED] Can't sign key with pacman-key

    I've been reading and digging all over the place but I can't seem to find anything on this.
    1. I have created my own keys for signing packages that I want to put in a local repo so I don't have to compile the same package over and over on all my machines.
    2. I have imported said key using sudo pacman-key --add rdjack21.pgp
    3. Used sudo pacman-key --lsign rdjack21 I get this output:
      -> Locally signing key rdjack21...
    ==> ERROR: rdjack21 could not be locally signed.
    4. Ok so lets sudo pacman-key --edit rdjack21  output:
    gpg> sign
    pub  rsa2048/3D1B5544
         created: 2014-11-30  expires: never       usage: SC 
         trust: ultimate      validity: ultimate
    Primary key fingerprint: B0D7 C728 31FA B2B0 6A3C  7086 DC7F DE0C 3D1B 5544
         Richard Jackson <[email protected]>
    Are you sure that you want to sign this key with your
    key "Pacman Keyring Master Key <pacman@localhost>" (645ECB0E)
    Really sign? (y/N) y
    gpg: signing failed: No pinentry
    gpg: signing failed: No pinentry
    gpg>
    5. To hack this and make pacman work with my local repo signed by the rdjack21 key I had to change the trust to ultimate but I do not like that solution. I would prefer to sign the key and move the trust back down to full which is where it should be.
    This is happening on all of my boxes not just one of them. I did find something on the web about "No pinentry" message above and the sugestion was to change the owner of the tty I'm using to be root for the signing to work but that did not work for me (su'ed to root first instead of running everything with sudo).
    While changeing the trust works that just feels wrong to me. I really should beable to sign the key.
    Last edited by rdjack21 (2014-12-01 01:50:05)

    Taking a clue post gnupg 2.1.0-4 upgrade breaks passphrase via STDIN I was able to solve the problem and I can now sign keys.
    The solution is add "pinentry-mode loopback" to /etc/pacman.d/gnupg/gpg.conf
    And create the file /etc/pacman.d/gnupg/gpg-agent.conf and put "allow-loopback-pinentry" in the file.
    Once that is done everythings works as expected!
    Marking this as solved.

  • [SOLVED] check pacman source sign failed on sh4 CPU

    I've build 'base' packages on sh4 CPU. (Some base library still use the original linux distributions. eg. gcc,glibc,...)
    I followed Pacman-key to setup key rings.
    pacman-key --init
    pacman-key --populate archlinux
    pacman-key --refresh-keys
    I run previous commands through ssh.  I tried to build haveged, but it occurs following messages, I guess it is caused by old kernel and my hardware haven't realtime clock. So I forgive it.
    gcc -Wall -I.. -O2 -pipe -o haveged haveged.o havege.o havegetune.o havegecollect.o havegetest.o
    havegecollect.o: In function `havege_gather':
    havegecollect.c:(.text+0x264): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x6a0): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x9d0): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0xd8c): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x1208): undefined reference to `HARDCLOCK'
    havegecollect.o:havegecollect.c:(.text+0x1684): more undefined references to `HARDCLOCK' follow
    collect2: ld returned 1 exit status
    And rerun makepkg on pacman.
    ==> Validating source files with md5sums...
    pacman-4.0.3.tar.gz ... Passed
    pacman-4.0.3.tar.gz.sig ... Passed
    0001-Add-conflict-for-replacing-owned-empty-directory.patch ... Passed
    0002-Check-empty-subdirectory-ownership.patch ... Passed
    0003-Ensure-pre_upgrade-scriptlet-gets-old-package-version.patch ... Passed
    pacman.conf ... Passed
    pacman.conf.x86_64 ... Passed
    pacman.conf.sh4 ... Passed
    makepkg.conf ... Passed
    ==> Verifying source file signatures with gpg...
    pacman-4.0.3.tar.gz ... FAILED (unknown public key 5C2E46A0F53A76ED)
    ==> WARNING: Warnings have occurred while verifying the signatures.
    Please make sure you really trust them.
    Even I manual add the key on message, it is still failed.
    $ sudo pacman-key -r 5C2E46A0F53A76ED
    gpg: requesting key F53A76ED from hkp server pool.sks-keyservers.net
    gpg: key F53A76ED: "Dan McGee <[email protected]>" not changed
    gpg: Total number processed: 1
    gpg: unchanged: 1
    ==> Updating trust database...
    gpg: next trustdb check due at 2014-01-22
    $ makepkg
    ==> Verifying source file signatures with gpg...
    pacman-4.0.3.tar.gz ... FAILED (unknown public key 5C2E46A0F53A76ED)
    BTW, in the process of building gpgme, I can not build pinentry successful, so I pass and use fedora's.
    fedora9 pinentry 0.7.4-5.fc9.sh4
    Solved, I guess wrong direction, that's cause I forgot to read Makepkg again.
    gpg --list-keys
    echo 'keyring /etc/pacman.d/gnupg/pubring.gpg' >> ~/.gnupg/gpg.conf
    Last edited by dlin (2013-02-07 01:42:56)

    I've build 'base' packages on sh4 CPU. (Some base library still use the original linux distributions. eg. gcc,glibc,...)
    I followed Pacman-key to setup key rings.
    pacman-key --init
    pacman-key --populate archlinux
    pacman-key --refresh-keys
    I run previous commands through ssh.  I tried to build haveged, but it occurs following messages, I guess it is caused by old kernel and my hardware haven't realtime clock. So I forgive it.
    gcc -Wall -I.. -O2 -pipe -o haveged haveged.o havege.o havegetune.o havegecollect.o havegetest.o
    havegecollect.o: In function `havege_gather':
    havegecollect.c:(.text+0x264): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x6a0): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x9d0): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0xd8c): undefined reference to `HARDCLOCK'
    havegecollect.c:(.text+0x1208): undefined reference to `HARDCLOCK'
    havegecollect.o:havegecollect.c:(.text+0x1684): more undefined references to `HARDCLOCK' follow
    collect2: ld returned 1 exit status
    And rerun makepkg on pacman.
    ==> Validating source files with md5sums...
    pacman-4.0.3.tar.gz ... Passed
    pacman-4.0.3.tar.gz.sig ... Passed
    0001-Add-conflict-for-replacing-owned-empty-directory.patch ... Passed
    0002-Check-empty-subdirectory-ownership.patch ... Passed
    0003-Ensure-pre_upgrade-scriptlet-gets-old-package-version.patch ... Passed
    pacman.conf ... Passed
    pacman.conf.x86_64 ... Passed
    pacman.conf.sh4 ... Passed
    makepkg.conf ... Passed
    ==> Verifying source file signatures with gpg...
    pacman-4.0.3.tar.gz ... FAILED (unknown public key 5C2E46A0F53A76ED)
    ==> WARNING: Warnings have occurred while verifying the signatures.
    Please make sure you really trust them.
    Even I manual add the key on message, it is still failed.
    $ sudo pacman-key -r 5C2E46A0F53A76ED
    gpg: requesting key F53A76ED from hkp server pool.sks-keyservers.net
    gpg: key F53A76ED: "Dan McGee <[email protected]>" not changed
    gpg: Total number processed: 1
    gpg: unchanged: 1
    ==> Updating trust database...
    gpg: next trustdb check due at 2014-01-22
    $ makepkg
    ==> Verifying source file signatures with gpg...
    pacman-4.0.3.tar.gz ... FAILED (unknown public key 5C2E46A0F53A76ED)
    BTW, in the process of building gpgme, I can not build pinentry successful, so I pass and use fedora's.
    fedora9 pinentry 0.7.4-5.fc9.sh4
    Solved, I guess wrong direction, that's cause I forgot to read Makepkg again.
    gpg --list-keys
    echo 'keyring /etc/pacman.d/gnupg/pubring.gpg' >> ~/.gnupg/gpg.conf
    Last edited by dlin (2013-02-07 01:42:56)

  • [SOLVED] Pacman is unable to look up keys?

    Hi there,
    I'm using Arch Linux for a while, and I'm using pacman 4.0 as well as key signing. It works without any problems, and I run system upgrades every 3 days or so.
    Today i just want to initiate the upgrade with "pacman -Syu" as usual, but pacman refuses it because it is unable to check the keys. Since it did work perfectly before, I - of course - did pacman key initialization and configured the pacman.conf properly.
    :: Synchronizing package databases...
    core is up to date
    extra is up to date
    community is up to date
    :: Starting full system upgrade...
    resolving dependencies...
    warning: dependency cycle detected:
    warning: udev will be installed before its util-linux dependency
    looking for inter-conflicts...
    Targets (25): binutils-2.22-5 coreutils-8.16-2 dhcpcd-5.5.6-1 expat-2.1.0-1
    filesystem-2012.2-4 gcc-4.7.0-3 gcc-libs-4.7.0-3 glibc-2.15-10
    gnutls-3.0.18-1 kmod-7-2 krb5-1.10.1-2 libarchive-3.0.4-1
    libltdl-2.4.2-5 libpng-1.5.10-1 libtool-2.4.2-5 linux-3.2.14-1
    linux-api-headers-3.3-1 mkinitcpio-0.8.6-2 pcmciautils-018-4
    perl-net-ssleay-1.46-1 syslinux-4.05-4 syslog-ng-3.3.4-5
    tzdata-2012c-1 udev-181-9 util-linux-2.21.1-2
    Total Installed Size: 245.35 MiB
    Net Upgrade Size: 5.96 MiB
    Proceed with installation? [Y/n] y
    (25/25) checking package integrity [######################] 100%
    error: libarchive: key "5C2E46A0F53A76ED" is unknown
    error: key "5C2E46A0F53A76ED" could not be looked up remotely
    error: failed to commit transaction (invalid or corrupted package)
    Errors occurred, no packages were upgraded.
    My pacman.conf looks like this (important parts)
    # PGP signature checking
    # NOTE: None of this will work without running `pacman-key --init` first.
    # The compiled in default is equivalent to the following line. This requires
    # you to locally sign and trust packager keys using `pacman-key` for them to be
    # considered valid.
    #SigLevel = Optional TrustedOnly
    # If you wish to check signatures but avoid local sign and trust issues, use
    # the following line. This will treat any key imported into pacman's keyring as
    # trusted.
    SigLevel = Optional TrustAll
    # For now, off by default unless you read the above.
    #SigLevel = Never
    [core]
    SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    [extra]
    SigLevel = PackageOptional
    Include = /etc/pacman.d/mirrorlist
    [community]
    SigLevel = PackageOptional
    Include = /etc/pacman.d/mirrorlist
    gpg.conf
    no-greeting
    no-permission-warning
    lock-never
    keyserver hkp://keys.gnupg.net
    keyserver-options timeout=10
    I also tried increasing the timeout and changing the keyserver to hkp://pgp.mit.edu:11371, as adviced in other threads, but no help.
    Cleaning the caches with pacman -Sc didn't help ether. I also restarted the system several times, but no success.
    Any help? Thanks!
    Last edited by silentsnake (2012-04-07 14:56:24)

    Cleaning the cache with pacman -Sc will leave the most recent downloaded version there, so delete the package manually from the cache and run pacman -Syu again.

  • [Solved] Pacman -Su stuck at downloading required keys

    With updating my system (with pacman -Syu), pacman seems stuck with the last operation "Checking keys in the keyring". What I see is:
    (167/167) checking keys in keyring                                 [####################################] 100%
    downloading required keys...
    After 20 minutes or so I killed the process and initialized the keyring from scratch, following the instructions on the wiki, hoping this would give some clues. Unfortunately, this problem still persists.
    Any suggestions on what may be the problem, or how to fix it?
    Last edited by Floris (2015-02-12 14:04:31)

    Thanks for that hint. The debug showed that it was fetching a key remotely, and then nothing. With that, I was able to find this similar thread on this forum. I followed the suggested procedure:
    mauritiusdadd wrote:# rm -R /etc/pacman.d/gnupg/
    # rm -R /root/.gnupg/  # only if the directory exists
    # gpg --refresh-keys
    # pacman-key --init && pacman-key --populate
    # pacman-key --refresh-keys
    and it solved the stall. I think that the second instruction really helped, because I did rebuild the keychain multiple times today. Apparently something was cached in the .gnupg folder that might have interfered.
    Thanks!
    Last edited by Floris (2015-02-12 16:54:23)

  • Circular: can't install libusb-compat for `pacman-key --init` [SOLVED]

    So like a lot of people on here have upgraded to pacman 4.
    I can't run `pacman-key --init` to update the keyring:
    [stuart@myhost ~]$ sudo pacman-key --init
    Password:
    gpg: error while loading shared libraries: libusb-0.1.so.4: cannot open shared object file: No such file or directory
    chmod: cannot access `/etc/pacman.d/gnupg/trustdb.gpg': No such file or directory
    gpg: error while loading shared libraries: libusb-0.1.so.4: cannot open shared object file: No such file or directory
    gpg: error while loading shared libraries: libusb-0.1.so.4: cannot open shared object file: No such file or directory
    ==> Updating trust database...
    gpg: error while loading shared libraries: libusb-0.1.so.4: cannot open shared object file: No such file or directory
    And because of signature issues can't install libusb-compat:
    [stuart@myhost ~]$ sudo pacman -S libusb-compat
    Password:
    resolving dependencies...
    looking for inter-conflicts...
    Targets (1): libusb-compat-0.1.3-2
    Total Installed Size: 0.06 MiB
    Net Upgrade Size: -0.02 MiB
    Proceed with installation? [Y/n] y
    (1/1) checking package integrity [######################] 100%
    warning: Public keyring not found; have you run 'pacman-key --init'?
    error: GPGME error: Invalid crypto engine
    error: failed to commit transaction (invalid or corrupted package (PGP signature))
    Errors occurred, no packages were upgraded.
    Last edited by Skipper_the_eye_child (2012-01-26 19:24:00)

    That worked - thanks. It'd have helped had I remembered to write over pacman.conf of course! I've not done any mainentance for while, got a little rusty i'm afraid.
    Last edited by Skipper_the_eye_child (2012-04-11 14:02:52)

  • [SOLVED] Pacman won't look up gpg keys

    Ever since I upgraded gnupg/gpgme today, pacman won't look up (or rather fail looking up) any missing GPG keys. Relevant part of pacman's output:
    debug: checking signature for /var/cache/pacman/pkg/privoxy-3.0.19-2-i686.pkg.tar.xz
    debug: 1 signatures returned
    debug: fingerprint: C06086337C50773E
    debug: summary: key missing
    debug: status: No public key
    debug: timestamp: 1328647189
    debug: exp_timestamp: 0
    debug: validity: unknown; reason: Success
    debug: key lookup failed, unknown key
    debug: signature is not valid
    debug: looking up key C06086337C50773E locally
    debug: key lookup failed, unknown key
    error: privoxy: key "C06086337C50773E" is unknown
    debug: looking up key C06086337C50773E remotely
    debug: key lookup failed, unknown key
    debug: looking up key 7C50773E remotely
    debug: key lookup failed, unknown key
    debug: gpg error: End of file
    error: key "C06086337C50773E" could not be looked up remotely
    error: failed to commit transaction (invalid or corrupted package (PGP signature))
    Errors occurred, no packages were upgraded.
    Failing to import the key directly through pacman, I tried
    pacman-key --recv-key C06086337C50773E
    which successfully added the key to my keyring.
    I could then install the package. I also tried switching to different keyserves, but without success.
    Everything pacman{, -key} related worked fine until the update, but I can't say for certain that it was the gnupg/gpgme update that broke something.
    Does anyone else have this issue or is there something wrong with my setup? I already thought of opening a bug report, but I want to make sure it's not my fault.
    btw: Hi, everyone :)
    Last edited by vehk (2012-03-28 07:54:28)

    This wasn't explicitly stated above, but to do the manual import with pacman-key, I had to prefix the fingerprint with 0x, as so:
    $ sudo pacman-key -r 0x5C2E46A0F53A76ED
    However, the default keyserver is giving me problems currently:
    $ sudo pacman-key -r 0x5C2E46A0F53A76ED
    Password:
    gpg: requesting key F53A76ED from hkp server keys.gnupg.net
    gpgkeys: HTTP fetch error 7: couldn't connect: End of file
    gpg: no valid OpenPGP data found.
    gpg: Total number processed: 0
    ==> ERROR: Remote key not fetched correctly from keyserver.
    So in the end, I used a different keyserver:
    sudo pacman-key -r 0x5C2E46A0F53A76ED --keyserver hkp://subkeys.pgp.net
    Hope that helps anyone else.

  • [SOLVED] [pacman] My 'pacman-key --init' issue

    pacman-key --init
    gpg: Generating pacman keychain master key...
    Not enough random bytes available. Please do some other work to give
    the OS a chance to collect more entropy! (Need 211 more bytes)
    Well, I thought that I could resolve it using random bytes from RANDOM.ORG (http://www.random.org/, in particularly http://www.random.org/bytes/), a really useful website.
    Is it a good solution, or is it mandatory to generate random bytes using my PC? And in that case, how can I use random bytes generated from that site?
    Last edited by metre (2011-10-14 09:48:31)

    teratomata wrote:
    hussam wrote:
    I installed pacman 4.0 from testing. I did pacman-key --init
    but now I can't install anything again
    trying to install hplip
    Proceed with installation? [Y/n] y
    (1/1) checking package integrity [####################################] 100%
    error: hplip: key &quot;FCF2CB179205AC90&quot; is unknown
    :: Import PGP key 9205AC90, &quot;Eric Belanger &lt;[email protected]&gt;&quot;, created 2011-04-20? [Y/n] y
    (1/1) checking package integrity [####################################] 100%
    error: hplip: signature from &quot;Eric Belanger &lt;[email protected]&gt;&quot; is unknown trust
    error: failed to commit transaction (invalid or corrupted package (PGP signature))
    Errors occurred, no packages were upgraded.
    I found that my pacman.conf didn't get updated, but once I moved /etc/pacman.conf.pacnew to /etc/pacman.conf, everything worked.
    I just wanted to say thanks teratomata. I did everything that was mentioned and was continually being asked if I wanted to import keys.  Moved pacman.conf.pacnew to pacman.conf and everything works great!

  • [Solved] Pacman unable to look up keys remotely

    My [testing] install has been running pacman 4 ever since Allan put a provisional package up for testing (outside the [testing] repo). The key verification worked okay.
    However, I am not able to upgrade any more packages it seems, due to pacman being unable to look up the keys online. I don't know if the gnupg 2 move has anything to do with it. I already tried changing the key server in /etc/pacman.d/gnupg/gpg.conf from the default one to the MIT one (which seems to be a lot more responsive). That doesn't help any.
    This is what pacman spits out:
    error: libnfs: key "DB323392796CA067" is unknown
    error: key "DB323392796CA067" could not be looked up remotely
    error: afpfs-ng: key "DB323392796CA067" is unknown
    error: key "DB323392796CA067" could not be looked up remotely
    error: libshairport: key "DB323392796CA067" is unknown
    error: key "DB323392796CA067" could not be looked up remotely
    error: xbmc: key "DB323392796CA067" is unknown
    error: key "DB323392796CA067" could not be looked up remotely
    error: failed to commit transaction (invalid or corrupted package (PGP signature))
    Errors occurred, no packages were upgraded.
    Curiously, all those packages are xbmc 11.0 and its new dependencies. It's just one key. I ran pacman-key -u and it says there is no need for updating (I may be misled about the purpose of the -u option though ).
    Any pointers?
    Last edited by .:B:. (2012-03-28 14:16:38)

    Thanks.
    Too bad there was nothing about that on the general dev ML, or I must have overlooked it. I have followed the discussion about dropping the gnupg 1.4 branch, but no mention whatsoever of this breakage that the patch mentioned in the dev ML will fix.
    Last edited by .:B:. (2012-03-28 14:21:46)

  • Pacman-key local sign

    Hi,
    new installation, runned those commands:
    pacman-key --init
    pacman-key --populate archlinux
    pacman-key --keyserver pgp.mit.edu --recv-keys 0xabed422d653c3094
    pacman-key --lsign-key 0xabed422d653c3094
    But the last command returns me
    ERROR: The key identified by 0xabed422d653c3094 could not be found locally
    Somebody got a clue ?
    Thanks.

    Yes my bad, didn't write what I am trying to do.
    I'm trying to install this unofficial key, i posted the four commands to show that I didn't do some weird stuff before.
    I initialised the keys with the two first commands, and then tried to install this unofficial key, which happend to fail, and I don't understand why.
    Thanks for your reply ;-).

  • [SOLVED] PACMAN sig errors

    Hi,
    So i have this problem which started about a week ago, i reckon around the time of that pacman update. Anyway i'm getting signing erros on package installs and  a sudo pacman-key --init
    sudo pacman-key --populate archlinux with and without sudo pacman -Syy fixes it....till i reboot then it errors up again. I've removed the /etc/pacman.d/gnupg folder etc reinstalled archlinux-keyring, pacman without a fix. Sorry my first post here is a beg for ideas to help but i'm more of a lurker then poster.
    If anyone needs more info i am happy to provide as i really would love to solve this. Long live arch linux
    cheers
    Al
    edit:
    Should add the keys show up with pacman-key -l or -f etc after reboot but doesn't stop me from errors. so the keyring is still there but not searched?   but if i do a pacman-key --refresh-keys then it will find new keys but this will not fix the errors and allow package install.   needs the --init  then populate to allow install.
    hope i'm clear enough
    Last edited by woznme (2013-03-12 12:39:32)

    Allan it appears to be correct, and i disabled the ntpd check/set i had autostarting and that made no difference. Thanks for your efforts in helping troubleshoot this.
    not sure this helps but if I logout my openbox session  (--exit) then logon again the keyring is still working fine.
    Last edited by woznme (2013-03-10 14:22:23)

  • Pacman-key --edit-key without any TTY

    Hi, I want to enable package signing on my vServer.
    The problem is there is no TTY available.
    # LANG=C pacman-key --edit-key 0x6AC6A4C2 ...
    gpg: cannot open tty `/dev/tty': No such file or directory
    ==> ERROR: The key identified by 0x6AC6A4C2 could not be edited.
    After adding "no-tty" to gpg.conf:
    gpg: Sorry, no terminal at all requested - can't get input
    ==> ERROR: The key identified by 0x6AC6A4C2 could not be edited.
    Please help me to solve this.
    Thanks
    - Radioactiveman

    I have copied the gnupg directory from my PC to the server but that should be just a workaround.
    Does nobody have an idea?

  • (SOLVED) Pacman error: GPGME does not exist

    Hi, I have also just been struck with the same issue - a broken pacman (and for no reason that I can fathom). Was working perfectly yesterday and all I did that wan't usual was to uninstall clamav.
    Anyway, I have read this post and done a pacman -Syy, which upgraded core and archlinuxfr only. I then ran pacman -Syu and received this:
    [grant@ARCH ~]$ sudo pacman -Syy
    [sudo] password for grant:
    error: GPGME error: No data
    error: GPGME error: No data
    error: GPGME error: No data
    :: Synchronizing package databases...
    error: failed retrieving file 'core.db' from mirror.aarnet.edu.au : Connection time-out
    core 106.2 KiB 353K/s 00:00 [######################] 100%
    error: GPGME error: No data
    error: failed to update extra (invalid or corrupted database (PGP signature))
    error: GPGME error: No data
    error: failed to update community (invalid or corrupted database (PGP signature))
    error: GPGME error: No data
    error: failed to update multilib (invalid or corrupted database (PGP signature))
    archlinuxfr 30.3 KiB 81.9K/s 00:00 [######################] 100%
    error: database 'extra' is not valid (invalid or corrupted database (PGP signature))
    error: database 'community' is not valid (invalid or corrupted database (PGP signature))
    error: database 'multilib' is not valid (invalid or corrupted database (PGP signature))
    [grant@ARCH ~]$
    Should I do a reinstall of pacman using the CD? I know this is clumsy, but anything I have missed?
    Last edited by mcduling (2012-12-03 06:43:56)

    Here is my pacman.conf in separate screens:
    GNU nano 2.2.6 File: /etc/pacman.conf
    # /etc/pacman.conf
    # See the pacman.conf(5) manpage for option and repository directives
    # GENERAL OPTIONS
    [options]
    # The following paths are commented out with their default values listed.
    # If you wish to use different paths, uncomment and update the paths.
    #RootDir = /
    #DBPath = /var/lib/pacman/
    #CacheDir = /var/cache/pacman/pkg/
    #LogFile = /var/log/pacman.log
    #GPGDir = /etc/pacman.d/gnupg/
    HoldPkg = pacman glibc
    # If upgrades are available for these packages they will be asked for first
    SyncFirst = pacman
    GNU nano 2.2.6 File: /etc/pacman.conf
    # If upgrades are available for these packages they will be asked for first
    SyncFirst = pacman
    #XferCommand = /usr/bin/curl -C - -f %u > %o
    #XferCommand = /usr/bin/wget --passive-ftp -c -O %o %u
    #CleanMethod = KeepInstalled
    Architecture = auto
    # Pacman won't upgrade packages listed in IgnorePkg and members of IgnoreGroup
    #IgnorePkg =
    #IgnoreGroup =
    #NoUpgrade =
    #NoExtract =
    # Misc options
    #UseSyslog
    #UseDelta
    #TotalDownload
    CheckSpace
    GNU nano 2.2.6 File: /etc/pacman.conf
    #TotalDownload
    CheckSpace
    #VerbosePkgLists
    # By default, pacman accepts packages signed by keys that its local keyring
    # trusts (see pacman-key and its man page), as well as unsigned packages.
    #SigLevel = Optional TrustedOnly
    # NOTE: You must run `pacman-key --init` before first using pacman; the local
    # keyring can then be populated with the keys of all official Arch Linux
    # packagers with `pacman-key --populate archlinux`.
    # REPOSITORIES
    # - can be defined here or included from another file
    # - pacman will search repositories in the order defined here
    # - local/custom mirrors can be added here or in separate files
    # - repositories listed first will take precedence when packages
    # have identical names, regardless of version number
    GNU nano 2.2.6 File: /etc/pacman.conf
    # - repositories listed first will take precedence when packages
    # have identical names, regardless of version number
    # - URLs will have $repo replaced by the name of the current repo
    # - URLs will have $arch replaced by the name of the architecture
    # Repository entries are of the format:
    # [repo-name]
    # Server = ServerName
    # Include = IncludePath
    # The header [repo-name] is crucial - it must be present and
    # uncommented to enable the repo.
    # The testing repositories are disabled by default. To enable, uncomment the
    # repo name header and Include lines. You can add preferred servers immediately
    # after the header, and they will be used before the default mirrors.
    #[testing]
    GNU nano 2.2.6 File: /etc/pacman.conf
    #[testing]
    #SigLevel = PackageRequired
    #Include = /etc/pacman.d/mirrorlist
    [core]
    SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    [extra]
    SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    #[community-testing]
    #SigLevel = PackageRequired
    #Include = /etc/pacman.d/mirrorlist
    [community]
    SigLevel = PackageRequired
    GNU nano 2.2.6 File: /etc/pacman.conf
    [community]
    SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    # If you want to run 32 bit applications on your x86_64 system,
    # enable the multilib repositories as required here.
    #[multilib-testing]
    #SigLevel = PackageRequired
    #Include = /etc/pacman.d/mirrorlist
    [multilib]
    #SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    [archlinuxfr]
    Server = http://repo.archlinux.fr/$arch
    # An example of a custom package repository. See the pacman manpage for
    GNU nano 2.2.6 File: /etc/pacman.conf
    # An example of a custom package repository. See the pacman manpage for
    # tips on creating your own repositories.
    #[custom]
    #SigLevel = Optional TrustAll
    #Server = file:///home/custompkgs

  • [SOLVED] Pacman not working after updating.

    While I'm trying to resolve issue "package-query: requires pacman<3.6", I did wrong that entering "pacman-key --init" right after upgrading pacman. Now it neither upgrade nor install programs.
    pacman -Syu
    :: Synchronizing package databases...
    error: failed retrieving file 'core.db' from mirrors.kernel.org : Could not resolve host: mirrors.kernel.org; Name or service not known
    error: failed retrieving file 'core.db' from mirror.yandex.ru : Could not resolve host: mirror.yandex.ru; Name or service not known
    error: failed to update core (download library error)
    error: failed retrieving file 'extra.db' from mirrors.kernel.org : Could not resolve host: mirrors.kernel.org; Name or service not known
    error: failed retrieving file 'extra.db' from mirror.yandex.ru : Could not resolve host: mirror.yandex.ru; Name or service not known
    error: failed to update extra (download library error)
    error: failed retrieving file 'community.db' from mirrors.kernel.org : Could not resolve host: mirrors.kernel.org; Name or service not known
    error: failed retrieving file 'community.db' from mirror.yandex.ru : Could not resolve host: mirror.yandex.ru; Name or service not known
    error: failed to update community (download library error)
    error: failed to synchronize any databases
    error: failed to init transaction (download library error)
    pacman.conf
    # See the pacman.conf(5) manpage for option and repository directives
    # GENERAL OPTIONS
    [options]
    # The following paths are commented out with their default values listed.
    # If you wish to use different paths, uncomment and update the paths.
    #RootDir = /
    #DBPath = /var/lib/pacman/
    #CacheDir = /var/cache/pacman/pkg/
    #LogFile = /var/log/pacman.log
    #GPGDir = /etc/pacman.d/gnupg/
    HoldPkg = pacman glibc
    # If upgrades are available for these packages they will be asked for first
    SyncFirst = pacman
    #XferCommand = /usr/bin/curl -C - -f %u > %o
    #XferCommand = /usr/bin/wget --passive-ftp -c -O %o %u
    #CleanMethod = KeepInstalled
    Architecture = auto
    # Pacman won't upgrade packages listed in IgnorePkg and members of IgnoreGroup
    #IgnorePkg =
    #IgnoreGroup =
    #NoUpgrade =
    #NoExtract =
    # Misc options
    #UseSyslog
    #UseDelta
    #TotalDownload
    CheckSpace
    #VerbosePkgLists
    # PGP signature checking
    # NOTE: None of this will work without running `pacman-key --init` first.
    # The compiled in default is equivalent to the following line. This requires
    # you to locally sign and trust packager keys using `pacman-key` for them to be
    # considered valid.
    #SigLevel = Optional TrustedOnly
    # If you wish to check signatures but avoid local sign and trust issues, use
    # the following line. This will treat any key imported into pacman's keyring as
    # trusted.
    #SigLevel = Optional TrustAll
    # For now, off by default unless you read the above.
    SigLevel = Never
    # REPOSITORIES
    # - can be defined here or included from another file
    # - pacman will search repositories in the order defined here
    # - local/custom mirrors can be added here or in separate files
    # - repositories listed first will take precedence when packages
    # have identical names, regardless of version number
    # - URLs will have $repo replaced by the name of the current repo
    # - URLs will have $arch replaced by the name of the architecture
    # Repository entries are of the format:
    # [repo-name]
    # Server = ServerName
    # Include = IncludePath
    # The header [repo-name] is crucial - it must be present and
    # uncommented to enable the repo.
    # The testing repositories are disabled by default. To enable, uncomment the
    # repo name header and Include lines. You can add preferred servers immediately
    # after the header, and they will be used before the default mirrors.
    #[testing]
    #SigLevel = PackageRequired
    #Include = /etc/pacman.d/mirrorlist
    [core]
    #SigLevel = PackageRequired
    Include = /etc/pacman.d/mirrorlist
    [extra]
    #SigLevel = PackageOptional
    Include = /etc/pacman.d/mirrorlist
    #[community-testing]
    #SigLevel = PackageRequired
    #Include = /etc/pacman.d/mirrorlist
    [community]
    #SigLevel = PackageOptional
    Include = /etc/pacman.d/mirrorlist
    # An example of a custom package repository. See the pacman manpage for
    # tips on creating your own repositories.
    #[custom]
    #SigLevel = Optional TrustAll
    #Server = file:///home/custompkgs
    Last edited by bilgee0629 (2012-02-06 13:34:40)

    Gcool wrote:
    Could you post the output of the following commands:
    * ifconfig -a
    * cat /etc/resolv.conf
    * ping mirrors.kernel.org
    * ping 8.8.8.8
    * tail -50 /var/log/pacman.log
    1) 
    eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 metric 1
    inet6 fe80::ea9a:8fff:fe63:6190 prefixlen 64 scopeid 0x20<link>
    ether e8:9a:8f:63:61:90 txqueuelen 1000 (Ethernet)
    RX packets 6820 bytes 1956857 (1.8 MiB)
    RX errors 48 dropped 1 overruns 0 frame 46
    TX packets 3693 bytes 398312 (388.9 KiB)
    TX errors 0 dropped 0 overruns 0 carrier 1 collisions 48
    device interrupt 43
    lo: flags=73<UP,LOOPBACK,RUNNING> mtu 16436 metric 1
    inet 127.0.0.1 netmask 255.0.0.0
    inet6 ::1 prefixlen 128 scopeid 0x10<host>
    loop txqueuelen 0 (Local Loopback)
    RX packets 26 bytes 2052 (2.0 KiB)
    RX errors 0 dropped 0 overruns 0 frame 0
    TX packets 26 bytes 2052 (2.0 KiB)
    TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
    ppp0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1492 metric 1
    inet 49.0.145.198 netmask 255.255.255.255 destination 8.8.8.8
    ppp txqueuelen 3 (Point-to-Point Protocol)
    RX packets 3103 bytes 1539691 (1.4 MiB)
    RX errors 0 dropped 0 overruns 0 frame 0
    TX packets 3589 bytes 312371 (305.0 KiB)
    TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
    wlan0: flags=4098<BROADCAST,MULTICAST> mtu 1500 metric 1
    ether d0:df:9a:30:2d:8e txqueuelen 1000 (Ethernet)
    RX packets 0 bytes 0 (0.0 B)
    RX errors 0 dropped 0 overruns 0 frame 0
    TX packets 0 bytes 0 (0.0 B)
    TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
    2)
    nameserver 202.72.241.5
    nameserver 203.34.37.3
    3)
    PING mirrors.us.kernel.org (149.20.4.71) 56(84) bytes of data.
    64 bytes from mirrors2.kernel.org (149.20.4.71): icmp_req=1 ttl=53 time=241 ms
    64 bytes from mirrors2.kernel.org (149.20.4.71): icmp_req=2 ttl=53 time=242 ms
    64 bytes from mirrors2.kernel.org (149.20.4.71): icmp_req=3 ttl=53 time=242 ms
    ^C
    --- mirrors.us.kernel.org ping statistics ---
    3 packets transmitted, 3 received, 0% packet loss, time 2002ms
    rtt min/avg/max/mdev = 241.653/242.080/242.345/0.504 ms
    4)
    PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.
    64 bytes from 8.8.8.8: icmp_req=1 ttl=255 time=10.3 ms
    64 bytes from 8.8.8.8: icmp_req=2 ttl=255 time=11.4 ms
    64 bytes from 8.8.8.8: icmp_req=3 ttl=255 time=210 ms
    64 bytes from 8.8.8.8: icmp_req=4 ttl=255 time=7.34 ms
    64 bytes from 8.8.8.8: icmp_req=5 ttl=255 time=10.6 ms
    ^C
    --- 8.8.8.8 ping statistics ---
    5 packets transmitted, 5 received, 0% packet loss, time 4005ms
    rtt min/avg/max/mdev = 7.349/50.062/210.542/80.252 ms
    5)
    [2012-02-06 17:58] Running 'pacman -Rdd package-query'
    [2012-02-06 17:59] removed package-query (0.9-1)
    [2012-02-06 17:59] Running 'pacman -Syu'
    [2012-02-06 17:59] synchronizing package lists
    [2012-02-06 18:11] upgraded linux-api-headers (3.0.1-1 -> 3.1.6-1)
    [2012-02-06 18:11] warning: /etc/locale.gen installed as /etc/locale.gen.pacnew
    [2012-02-06 18:11] Generating locales...
    [2012-02-06 18:11] en_US.UTF-8... done
    [2012-02-06 18:11] en_US.ISO-8859-1... done
    [2012-02-06 18:11] Generation complete.
    [2012-02-06 18:11] upgraded glibc (2.14-6 -> 2.15-4)
    [2012-02-06 18:11] upgraded libarchive (2.8.5-2 -> 3.0.3-3)
    [2012-02-06 18:11] installed pth (2.0.7-4)
    [2012-02-06 18:11] installed gnupg (1.4.12-1)
    [2012-02-06 18:11] installed libksba (1.2.0-1)
    [2012-02-06 18:11] installed libassuan (2.0.3-1)
    [2012-02-06 18:11] installed pinentry (0.8.1-3)
    [2012-02-06 18:11] installed dirmngr (1.1.0-3)
    [2012-02-06 18:11] installed gnupg2 (2.0.18-1)
    [2012-02-06 18:11] installed gpgme (1.3.1-2)
    [2012-02-06 18:11] >>> Run `pacman-key --init` to set up your pacman keyring.
    [2012-02-06 18:11] upgraded pacman (3.5.4-4 -> 4.0.1-4)
    [2012-02-06 18:12] Running 'pacman -S firefo'
    [2012-02-06 18:13] Running 'pacman -S firefox'
    [2012-02-06 18:13] Running 'pacman -S package-query'
    [2012-02-06 18:13] Running 'pacman -Syu'
    [2012-02-06 18:13] synchronizing package lists

Maybe you are looking for

  • Project sporadically opens in a new window, instead of tab

    Hello, Thank you for taking the time to read my post. I have not been able to find this issue on the Internet or on this forum. I apologize in advance if it has been resolved. I always browse and open often my projects from my desktop. When I had Cap

  • Release strategy -multiple account assignment

    Hi, I have PO release strategy based on account assignment(one of the criteria). AAC used is P,Q, and N . Couple of questions - 1) I do not want to allow multiple account assignment in PO. 2) KNTTP is not available in CEKKO communication structure. I

  • Wakes from sleep at night

    Almost every night my iMac wakes itself up and then according to my energy saver preferences, goes back to sleep in 10 minutes.  I checked the console logs and it doesn't even show that it wakes up.  I do not have the wake for network access checked,

  • Unable to make a purchase

    I get this error when trying to purchase a app in the App Store "Your Purchase Could Not Be Completed"  I have a $50 balance in my account, and the app is $2.99 I'm new to apple, my first iPad, my first gift card, my first account, never had this pro

  • URGENT!! I can not see swing classes -:((((

    I am using Plug-In 1.3 and JRE but I do not see the swing classes. In addition there is an error InstantiationException when I use other applet with AWT. Microsoft (R) VM for Java, 5.0 Release 5.0.0.3234 ==============================================