Yes i’ve read the pinned topic.
I’m trying to install “PasswordSafe” from AUR via pamac
sudo pamac build passwordsafe
this is the output:
Warning: Building packages as root Warning: Setting build directory to /var/cache/pamac Preparing... Cloning passwordsafe build files... Running as unit: run-u144.service Finished with result: success Main processes terminated with: code=exited/status=0 Service runtime: 250ms CPU time consumed: 67ms Running as unit: run-u145.service Finished with result: success Main processes terminated with: code=exited/status=0 Service runtime: 5ms CPU time consumed: 5ms Checking passwordsafe dependencies... Resolving dependencies... Checking inter-conflicts... To build (1): passwordsafe 1.13.0-1 AUR Edit build files : [e] Apply transaction ? [e/y/N] y Building passwordsafe... Running as unit: run-u147.service Press ^] three times within 1s to disconnect TTY. ==> Making package: passwordsafe 1.13.0-1 (Sat 11 Sep 2021 14:34:44 BST) ==> Checking runtime dependencies... ==> Checking buildtime dependencies... ==> Retrieving sources... -> Found passwordsafe-1.13.0.tar.gz -> Found passwordsafe-1.13.0.tar.gz.sig ==> Validating source files with sha1sums... passwordsafe-1.13.0.tar.gz ... Passed passwordsafe-1.13.0.tar.gz.sig ... Skipped ==> Verifying source file signatures with gpg... passwordsafe-1.13.0.tar.gz ... cat: write error: Broken pipe FAILED ==> ERROR: One or more PGP signatures could not be verified! Finished with result: exit-code Main processes terminated with: code=exited/status=1 Service runtime: 1.118s CPU time consumed: 1.259s Error: Failed to build passwordsafe
I think the error:
==> ERROR: One or more PGP signatures could not be verified!
may be a red-herring, or possibly a different keyring is being used that I don’t know how to update.
Notice before that there is this:
cat: write error: Broken pipe FAILED
I have imported the keys from here:
gpg --keyserver keyserver.ubuntu.com --recv-keys C8876BE69A8EC6414C8C8729B131423D7F2F1BB9
When downloading the files from AUR manually I can verify them with GPG no problem:
gpg --verify 1.13.0.tar.gz.sig pwsafe-1.13.0.tar.gz
with the output:
gpg: Signature made Fri 19 Feb 2021 07:50:22 GMT gpg: using RSA key B131423D7F2F1BB9 gpg: Good signature from "Rony Shapiro (PasswordSafe signing key) <email@example.com>" [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: C887 6BE6 9A8E C641 4C8C 8729 B131 423D 7F2F 1BB9
This suggests to me that the problem is not related to the actual PGP key verification, but some issue with the build.
any help appreciated.
Edit: note I tried installing this package from AUR in an Arch install I have in a VM using yay. That worked without any issue. I have now installed yay on my Manjaro machine, and similarly it has installed the package with no problems. So it seems like its a pamac problem, or something about pamac that i don’t understand.