I've followed the instructions here to activate obcommunity: https://web.obarun.org/index.php?id=140

However, I'm still receiving invalid signature errors for lib32-dbus and lib32-p11-kit (both from obcommunity):

error: lib32-dbus: signature from "advesperascit <null.dereference@protonmail.com>" is unknown trust
:: File /var/cache/pacman/pkg/lib32-dbus-1.14.10-2-x86_64.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 
error: lib32-p11-kit: signature from "advesperascit <null.dereference@protonmail.com>" is unknown trust
:: File /var/cache/pacman/pkg/lib32-p11-kit-0.25.1-2-x86_64.pkg.tar.xz is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] 
error: failed to commit transaction (invalid or corrupted package (PGP signature))
Errors occurred, no packages were upgraded.
 -> error installing repo packages

Repeating the steps in the link above, and reinstalling obcommunity-keyring yielded the same errors.

Might this be an error on my part?
Or are these packages actually still unvalidated?

  • nfg replied to this.

    Hyperspace

    No error on your part. @advesperascit has to decide whether to add their signing key to the obcommunity-keyring or remove it from each of the listed packages and allow those packages to be built just with the obcommunity key.

    If you want to install these packages in the meantime, you can follow the same process for installing the obcommunity-keyring itself, i.e. temporarily setting SigLevel to Never for the obcommunity repo, install the packages, and set the SigLevel back to DatabaseOptional.

    I'm dropping my key. The packages have been rebuilt using the default signing key.

    Hyperspace changed the title to [SOLVED] Activated obcommunity, but lib32-dbus, lib32-p11-kit throws errors .
    4 months later

    Powered by Obarun