Just tried to update via pacman -Syu and am getting: error: cachyos-testing-v3: signature from “CachyOS admin@cachyos.org ” is unknown trust error: cachyos-extra-v3: signature from “CachyOS admin@cachyos.org ” is unknown trust error: cachyos-core-v3: signature from “CachyOS admin@cachyos.org ” is unknown trust error: cachyos-v3: signature from “CachyOS admin@cachyos.org ” is unknown trust error: cachyos: signature from “CachyOS admin@cachyos.org ” is unknown trust error: database ‘cachyos-testing-v3’ is not valid (invalid or corrupted database (PGP signature)) error: database ‘cachyos-extra-v3’ is not valid (invalid or corrupted database (PGP signature)) error: database ‘cachyos-core-v3’ is not valid (invalid or corrupted database (PGP signature)) error: database ‘cachyos-v3’ is not valid (invalid or corrupted database (PGP signature)) error: database ‘cachyos’ is not valid (invalid or corrupted database (PGP signature)) Instead of doing a local signing (refresh-key is not updating), can this be looked at upstream ?

Remove the key and follow the manual installation : sudo pacman-key -d F3B607488DB35A47 sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com sudo pacman-key --lsign-key F3B607488DB35A47 if(window.hljsLoader && !document.currentScript.parentNode.hasAttribute('data-s9e-livepreview-onupdate')) { window.hljsLoader.highlightBlocks(document.currentScript.parentNode); }

CachyOS key expired ?

alex50

i’m facing the same issue, was going crazy clearing pacman cache and re-singing local key, probably problem on the upstream server

Fijxu

Same issue. sudo pacman-key --init; sudo pacman-key --populate; sudo pacman-key --lsign cachyos doesn’t work at all.

rimuruweeb

scruffidog sudo pacman-key --refresh-keys

this helped me resolve the key issue

IUseCachyOSBtw

rimuruweeb
Didn’t help over here.

alex50

rimuruweeb didnt helped me either

HyperVon

rimuruweeb Solved the issue for me. Thanks 🙂

TiagodePAlves

If somehow someone else fucks up your keyring, like me, here is my solution:

# nuke the keyring
> sudo killall gpg-agent
> sudo rm -rf /etc/pacman.d/gnupg
# recreate the keyring
> sudo pacman-key --init
> sudo pacman-key --populate
# reinstall cachyos keys (https://wiki.cachyos.org/en/home/Repo#option-2-manual-installation)
> sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
> sudo pacman-key --lsign-key F3B607488DB35A47
> sudo pacman -U 'https://mirror.cachyos.org/repo/x86_64/cachyos/cachyos-keyring-2-1-any.pkg.tar.zst' 'https://mirror.cachyos.org/repo/x86_64/cachyos/cachyos-mirrorlist-17-1-any.pkg.tar.zst' 'https://mirror.cachyos.org/repo/x86_64/cachyos/cachyos-v3-mirrorlist-17-1-any.pkg.tar.zst' 'https://mirror.cachyos.org/repo/x86_64/cachyos/cachyos-v4-mirrorlist-5-1-any.pkg.tar.zst' 'https://mirror.cachyos.org/repo/x86_64/cachyos/pacman-6.0.2-11-x86_64.pkg.tar.zst'

IUseCachyOSBtw

Looks like we have this but didn’t get the alert since pacman couldn’t verify they key:

Update notice: Our(CachyOS) key has expired.
Please run following commands:
sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
sudo pacman-key --lsign-key F3B607488DB35A47

Mister-Arkse

Remove the key and follow the manual installation:

sudo pacman-key -d F3B607488DB35A47
sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
sudo pacman-key --lsign-key F3B607488DB35A47

scruffidog

Still saying key expired.
And cachyos/cachyos-keyring is at version 3-1….

ptr1337

Hey @everyone ,

Our GPG key expired because I have mixed up the dates (thought it is in october).
Sorry for this, but we already were able to fix it.

Please run the following commands:

sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
sudo pacman-key --lsign-key F3B607488DB35A47

or if you still have issues

sudo pacman-key --refresh-keys
sudo pacman -Syu

Be aware that at the command above, will come some errors due the keyring from arch and their wkd.
It will take around 5 minutes till this process is done.

This will fetch the gpg keyring from the servers and the signed packages are working again.
We will release also soon a fresh cachyos-keyring package, which fixes the ISOs also.

Thanks and best regards

The CachyOS Team

invisiblefriend

ptr1337 Done, working as usual. Thanks 👍️

Locutus

Over the last several days I’ve been getting the below with your repos in Arch. I have never had a issue with them working before, and I’ve had them in this install for at least a month. I did a search to see if there were any updated repos from you but the only thing I can find is what I have been using to install your repos. Any idea what is going on? Thanks

 cachyos-v3                       96.2 KiB  78.2 KiB/s 00:01 [#################################] 100%
 cachyos-core-v3                 129.4 KiB   105 KiB/s 00:01 [#################################] 100%
 cachyos-extra-v3                  4.0 MiB  1935 KiB/s 00:02 [#################################] 100%
 cachyos                         366.2 KiB   261 KiB/s 00:01 [#################################] 100%
error: cachyos-v3: signature from "CachyOS <admin@cachyos.org>" is unknown trust
error: cachyos-core-v3: signature from "CachyOS <admin@cachyos.org>" is unknown trust
error: cachyos-extra-v3: signature from "CachyOS <admin@cachyos.org>" is unknown trust
error: cachyos: signature from "CachyOS <admin@cachyos.org>" is unknown trust
error: failed to synchronize all databases (invalid or corrupted database (PGP signature))

https://wiki.cachyos.org/en/home/Repo

EDIT:

ptr1337 Hey @everyone ,

Our GPG key expired because I have mixed up the dates (thought it is in october).
Sorry for this, but we already were able to fix it.

Please run the following commands:

sudo pacman-key –recv-keys F3B607488DB35A47 –keyserver keyserver.ubuntu.com
sudo pacman-key –lsign-key F3B607488DB35A47
or if you still have issues
sudo pacman-key –refresh-keys
sudo pacman -Syu

Be aware that at the command above, will come some errors due the keyring from arch and their wkd.
It will take around 5 minutes till this process is done.

This will fetch the gpg keyring from the servers and the signed packages are working again.
We will release also soon a fresh cachyos-keyring package, which fixes the ISOs also.

Thanks and best regards

The CachyOS Team

I fixed my issue with your one post I quoted. New question is are you going to fix the wiki? Thanks

MikolajQ

Doesn’t work for me 🙁

sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
[sudo] password for miq: 
gpg: keyserver receive failed: Server indicated a failure
==> ERROR: Remote key not fetched correctly from keyserver.

What can I do to solve this issue?

ptr1337

MikolajQ

It seems like a DNS issue on your side.
We had some people which expired this issue.

Can you try with:

sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keys.openpgp.org
sudo pacman-key --lsign-key F3B607488DB35A47

sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver pgp.mit.edu
sudo pacman-key --lsign-key F3B607488DB35A47

MikolajQ

Thank’s for the reply,
Unfortunately none of this commands work for me 🙁
I’ve tried to change DNS resolver to 8.8.8.8 or 1.0.0.1 but it did not help.
Any ideas how can I regain ability to update the system?
Maybe some of my network settings is wrong, but what exactly?
My resolv.conf looks like these:

nameserver 127.0.0.1
options edns0 single-request-reopen

Any help would be appreciated. I can provide any required data, just say what You need.

ptr1337

MikolajQ

Hi,

Can you provide the log when running following command:

rm -rf /etc/pacman.d/gnupg/
sudo pacman-key --init
sudo pacman-key --populate
sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
sudo pacman-key --lsign-key F3B607488DB35A47

MikolajQ

That’s crazy but still nothing….


 sudo rm -rf /etc/pacman.d/gnupg/
[sudo] password for miq: 

~
❯ sudo pacman-key --init
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/etc/pacman.d/gnupg/secring.gpg' to gpg-agent
gpg: migration succeeded
==> Generating pacman master key. This may take some time.
gpg: Generating pacman keyring master key...
gpg: directory '/etc/pacman.d/gnupg/openpgp-revocs.d' created
gpg: revocation certificate stored as '/etc/pacman.d/gnupg/openpgp-revocs.d/76D25E0946CA2007E19E427152EE2895C54662A2.rev'
gpg: Done
==> Updating trust database...
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u

~
❯ sudo pacman-key --populate
==> Appending keys from alhp.gpg...
==> Appending keys from archlinux.gpg...
==> Appending keys from cachyos.gpg...
==> Locally signing trusted keys in keyring...
  -> Locally signed 6 keys.
==> Importing owner trust values...
gpg: setting ownertrust to 5
gpg: setting ownertrust to 4
gpg: setting ownertrust to 4
gpg: setting ownertrust to 4
gpg: inserting ownertrust of 4
gpg: setting ownertrust to 4
==> Disabling revoked keys in keyring...
  -> Disabled 36 keys.
==> Updating trust database...
gpg: marginals needed: 3  completes needed: 1  trust model: pgp
gpg: depth: 0  valid:   1  signed:   6  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1  valid:   6  signed:  96  trust: 0-, 0q, 0n, 5m, 1f, 0u
gpg: depth: 2  valid:  74  signed:  27  trust: 74-, 0q, 0n, 0m, 0f, 0u
gpg: next trustdb check due at 2023-10-27

~ 11s
❯ sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keyserver.ubuntu.com
gpg: keyserver receive failed: Server indicated a failure
==> ERROR: Remote key not fetched correctly from keyserver.

~
❯ sudo pacman-key --recv-keys F3B607488DB35A47 --keyserver keys.openpgp.org
gpg: keyserver receive failed: Server indicated a failure
==> ERROR: Remote key not fetched correctly from keyserver.

~

ptr1337

MikolajQ

Can you try a VPN or changing your DNS?

MikolajQ

OK, after many many days I’ve solved that issue.
The problem is cachyos-dnscrypt-proxy package that was installed in my system long long ago. Everything start working after removing this package.
I don’t know if this is bug in cachyos-dnscrypt-proxy package or somewhere else and I am not sure where should I report the bug.

ptr1337

MikolajQ

The maintainer of this package is currently not active.
When I find some time, I could try to rework this whole thing.