-
Notifications
You must be signed in to change notification settings - Fork 289
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
My key expired again - need archlinuxcn-keyring updated #300
Comments
No wonder I failed to upgrade Hope it resolved soon. |
@bianjp, you can just run these 2 commands
to get my new signatures and sign them, and then you will be able to get those upgrades (although I think there's still something wrong with the numix-icon-theme-git signature - I will upload that again, and also maybe deal with the issue where the version went backwards). |
Should be fixed by f22bc0f , let's wait for it to enter our repo server and test. |
Strange that simply update the key didn't fix that. |
It only worked for me when I specified --keyserver pgp.mit.edu (and signed it with --lsign-key). |
@farseerfc the same to you, I update the key and it still report error. |
What does fingerprint report:
It should report:
Since you get the error, I think instead of "expires: 2019-11-017", it will report that the key and subkey are expired, so it wasn't really updated. I don't know why it wouldn't update though if you specified the keyserver. Maybe you have to delete all the keys and repopulate. I actually tried that before specifying the keyserver. |
@colinkeenan I tried to change the key server to
|
Our messages crossed. Yes, I have the same fingerprint. Are you saying you have my key and it still gives the same error for installing my most recently updated packages (acroread-fonts-systemwide numix-icon-theme-git updated numix-circle-icon-theme-git youtube-dl-git supertux-git inkscape-bzr)? |
Yes, I have installed |
If you did the same as last year: #170 (comment), I wonder why it doesn't work this time. |
I've installed
For me two problems packages are |
I have the same problem with @Arondight , but it works for me only when i run the command |
It is a strange problem. I have just tested the archlinuxcn-keyring, and it is up to date and working fine as far as I can tell. I tested it by deleting my key with |
@forblackking Yes |
|
My suspect is that we need to wait for all keyservers under Here is my console output trying to search the key within 10mins: https://cfp.vim-cn.com/cbcJ9/txt (sorry for Chinese locale). It seems that the keyserver is synced during the 10mins timespan. |
Do pacman-key use network during the install / upgrade? I don't feel so because it's fast. |
@lilydjwg Some more findings on a machine that has this problem: I am looking into why a |
Apply Please reopen this issue if upgrade to |
Wow! I'm glad you found and fixed the problem so that it won't be an issue in the future. It will be 3 years before my key will need me to sign again. I must be the only one that allows my key to expire? |
Did a grep on our keyring:
We will have to solve this eventually. |
It works for me 👍 |
wicast 上传新的密钥了么?过几天就要过期了。
|
@SilverRainZ 好久沒看到 @wicast 了…… |
@colinkeenan three years have passed quickly! Please renew your key once again! |
I renewed my key again soon after you posted, but I still can't install packages that I sign. When I check my fingerprint using gpg, it says it won't expire until 2024 (I set it to 5 years). But, when I check with pacman-keys, it says it expired a few days ago. I've refreshed keys and told it to get the key from various places, but it never updates the expiration date. |
got your renewed key from |
Maybe you need to do a Anyway, thank you! I am closing this issue for now, please re-open if your key is not working. |
@colinkeenan By the way, you might need to re-sign and re-upload the packages that you updated in the last 4 days. Your key with key-id |
I've extended the key for another 3 years, and now the archlinuxcn-keyring needs to have my new signatures added.
I've also uploaded new signatures for those packages I just updated with the wrong signatures: acroread-fonts-systemwide numix-icon-theme-git updated numix-circle-icon-theme-git youtube-dl-git supertux-git.
I don't know how long it takes for my updated signatures to be propagated to all the keyservers. In order for me to get refreshing my key to work on my own system just after making the new signatures, I had to specify the keyserver to check:
sudo pacman-key --keyserver pgp.mit.edu -r 0940E3F9
sudo pacman-key --lsign-key 0940E3F9
The text was updated successfully, but these errors were encountered: