Necessary key not found on key server

[pfeiferbit]

First, when I tried to update, the following happened:

$ pacman -Syu
:: Synchronizing package databases...
 mingw32                  639.0   B  0.00B/s 00:00 [#####################] 100%
 mingw32.sig              639.0   B  0.00B/s 00:00 [#####################] 100%
error: GPGME error: No data
error: failed to update mingw32 (invalid or corrupted database (PGP signature))
 mingw64                  639.0   B  0.00B/s 00:00 [#####################] 100%
 mingw64.sig              639.0   B  0.00B/s 00:00 [#####################] 100%
error: GPGME error: No data
error: failed to update mingw64 (invalid or corrupted database (PGP signature))
 msys                     639.0   B  0.00B/s 00:00 [#####################] 100%
 msys.sig                 639.0   B  0.00B/s 00:00 [#####################] 100%
error: GPGME error: No data
error: failed to update msys (invalid or corrupted database (PGP signature))
error: failed to synchronize any databases
error: failed to init transaction (invalid or corrupted database (PGP signature))

I've found an old sourceforge.net post in the Google cache (you really should move everything away from sourceforge, really, asap) that it might help to delete /etc/pacman.d/gnupg and run the following commands. I'll just include their output right here.

$ rm /etc/pacman.d/gnupg/ -r

$ pacman-key --init
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: /etc/pacman.d/gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: Generating pacman keyring master key...
gpg: skipping control `%no-protection' ()
......+++++
..+++++
gpg: key 59CD7F5B marked as ultimately trusted
gpg: Done
==> Updating trust database...
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u

$ pacman-key --populate msys2
==> Appending keys from msys2.gpg...
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0  valid:   1  signed:   0  trust: 0-, 0q, 0n, 0m, 0f, 1u
==> Locally signing trusted keys in keyring...
  -> Locally signing key D55E7A6D7CE9BA1587C0ACACF40D263ECA25678A...
  -> Locally signing key 123D4D51A1793859C2BE916BBBE514E53E0D0813...
  -> Locally signing key B91BCF3303284BF90CC043CA9F418C233E652008...
  -> Locally signing key 9DD0D4217D75A33B896159E6DA7EF2ABAEEA755C...
==> Importing owner trust values...
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: setting ownertrust to 4
gpg: setting ownertrust to 4
gpg: setting ownertrust to 4
gpg: inserting ownertrust of 4
==> Updating trust database...
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0  valid:   1  signed:   4  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1  valid:   4  signed:   3  trust: 0-, 0q, 0n, 4m, 0f, 0u
gpg: depth: 2  valid:   3  signed:   0  trust: 3-, 0q, 0n, 0m, 0f, 0u

$ pacman-key --refresh-keys
gpg: WARNING: using insecure memory!
gpg: please see http://www.gnupg.org/documentation/faqs.html for more information
gpg: refreshing 8 keys from hkp://pool.sks-keyservers.net
gpg: requesting key 59CD7F5B from hkp server pool.sks-keyservers.net
gpg: requesting key CA25678A from hkp server pool.sks-keyservers.net
gpg: requesting key AEEA755C from hkp server pool.sks-keyservers.net
gpg: requesting key 3E0D0813 from hkp server pool.sks-keyservers.net
gpg: requesting key 3E652008 from hkp server pool.sks-keyservers.net
gpg: requesting key A47D45A1 from hkp server pool.sks-keyservers.net
gpg: requesting key F93FC717 from hkp server pool.sks-keyservers.net
gpg: requesting key 4CA56930 from hkp server pool.sks-keyservers.net
gpgkeys: key AB9F2B8A4A6E0D0A9B458DEEF56DE64459CD7F5B not found on keyserver
gpg: DBG: armor-keys-failed (KEY 0xAB9F2B8A4A6E0D0A9B458DEEF56DE64459CD7F5B BEGIN
) ->0
gpg: DBG: armor-keys-failed (KEY 0xAB9F2B8A4A6E0D0A9B458DEEF56DE64459CD7F5B FAILED 6
) ->6
gpg: key CA25678A: "Alexey Pavlov (Alexpux) <alexey.pawlow@gmail.com>" 4 new signatures
gpg: key AEEA755C: "Martell Malone (martell) <martellmalone@gmail.com>" 3 new signatures
gpg: key 3E0D0813: "Ray Donnelly (MSYS2 Developer - master key) <mingw.android@gmail.com>" 2 new signatures
gpg: key 3E652008: "Ignacio Casal Quinteiro <icquinteiro@gmail.com>" 2 new signatures
gpg: key A47D45A1: "Alexey Pavlov (Alexpux) <alexpux@gmail.com>" 1 new signature
gpg: key F93FC717: "Martell Malone (martell) <me@martellmalone.com>" not changed
gpg: key 4CA56930: "Ray Donnelly (MSYS2 Developer) <mingw.android@gmail.com>" 2 new signatures
gpg: Total number processed: 7
gpg:              unchanged: 1
gpg:         new signatures: 14
gpg: keyserver communications error: key not found
gpg: keyserver communications error: bad public key
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0  valid:   1  signed:   4  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1  valid:   4  signed:   3  trust: 0-, 0q, 0n, 4m, 0f, 0u
gpg: depth: 2  valid:   3  signed:   0  trust: 3-, 0q, 0n, 0m, 0f, 0u
gpg: keyserver refresh failed: bad public key
==> ERROR: A specified local key could not be updated from a keyserver.

I guess the one missing/"bad" key has to be excluded somehow.

Still, of course I can't do updates for now:

$ pacman -Syu
error: GPGME error: No data
error: GPGME error: No data
error: GPGME error: No data
:: Synchronizing package databases...
 mingw32 is up to date
 mingw64 is up to date
 msys is up to date
error: database 'mingw32' is not valid (invalid or corrupted database (PGP signature))
error: database 'mingw64' is not valid (invalid or corrupted database (PGP signature))
error: database 'msys' is not valid (invalid or corrupted database (PGP signature))

Thanks in advance.
And please leave sourceforge!

[Sh4rK]

I just came here too to suggest moving away from sf, not only because it is down atm, but seeing there have been some "incidents" (taking over projects).

[Alexpux]

Currently we don't know where to move. We have big files repository that need to be hosted somewhere.

[Sh4rK]

How big is the whole repo approximately?

[Alexpux]

It's grown every day. Right now it about 50 Gb I think

[Sh4rK]

Amazon S3 seems to be cheap enough (if I understand the pricing correctly).
Storage is $0.03/GB/month under 1TB, so that's about $1.5 for a month
GET requests are $0.004/month for 10000 requests, which is only $0.4 for a million (It might not be enough, I don't know how many requests are in a month)

This actually seems to be too cheap, so I might be wrong.

[rubenvb]

You could try codeplex and fosshub too. I am unsure how they would perceive a project such as msys2 hosting binaries there, though. Most linux distro's have hosting of their own...

[Sh4rK]

Most linux distro's have hosting of their own...

Many distros have a huge number of mirrors too, and those aren't run by the distro's collaborators, so I think msys2+mingw could be hosted on these mirrors too. Maybe even ask the arch linux guys if they would host these packages (it's pacman after all :)

[mingwandroid]

FossHub have a 100MB per file limit and a 1GB limit per project limit. You can ask for more. I've setup a project today and asked them to remove their limits, but I have a feeling MSYS2 would draw too much bandwidth.

[quilloss]

How about https://www.maxcdn.com/open-source/? MPC-HC recently moved there from SourceForge.

[Sh4rK]

@quilloss That seems really nice! I started a chat there, and I was told to write an email to referrals@maxcdn.com for more info on the matter, but I think someone more qualified should do it :)
@Alexpux maybe it's worth a try ;)

[rubenvb]

How about asking the friendly people of github about this? In principle, binary files can be stored here, under "releases"... Just not sure about their policies on how big they can be.

[rubenvb]

I have just looked up some stuff in the github docs, and it seems github itself may be a tool usable for this:
https://help.github.com/articles/distributing-large-binaries/

There's no limits (except, well, 2GB per file) including bandwidth and number of files. Also, maybe it's worth looking into Github's large file versioning for this: https://help.github.com/articles/versioning-large-files/

[Alexpux]

This is true for releases https://help.github.com/articles/creating-releases/
But we can't create releases for every package update. Also we need big network bandwidth for our repos.

[Alexpux]

https://github.com/Alexpux/MINGW-packages/issues/702

[usta]

@Alexpux github announced Large File Support ( LFS ) . It is (1 packag) $5 per month, and provides 50 GB of bandwidth and 50 GB for storage. And you can buy same package again and again to increase quota. For example if we buy 3 pack it means 15$ for 150gb storage + 150gb bandwidth.

Also i believe github might be a sponsor for this project ( because of OpenSource )

https://help.github.com/articles/billing-plans-for-git-large-file-storage/
https://git-lfs.github.com/
https://help.github.com/articles/purchasing-additional-storage-and-bandwidth-for-a-personal-account/

[pfeiferbit]

Sorry, I didn't want this to become off-topic. The original issue has been fixed within 3 days.