Openssl-1.0 build problem

anon6839238 · 26 December 2022 14:12

AUR update problem: I am not even sure why I even need this package. I think it must be a transitive dependency. Anyhows, I need to know what to do to fix it

Warning: Building packages as dynamic user
Warning: Setting build directory to /var/cache/pamac
Preparing...
Synchronizing package databases...
Refreshing AUR...                                                               
Cloning openssl-1.0 build files...                                              
Running as unit: run-u101.service
fatal: not a git repository (or any parent up to mount point /var/cache/private)
Stopping at filesystem boundary (GIT_DISCOVERY_ACROSS_FILESYSTEM not set).
Finished with result: exit-code
Main processes terminated with: code=exited/status=128
Service runtime: 9ms
CPU time consumed: 8ms
Running as unit: run-u102.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 53ms
CPU time consumed: 10ms
Running as unit: run-u103.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 1.605s
CPU time consumed: 115ms
Generating openssl-1.0 information...
Running as unit: run-u104.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 1.051s
CPU time consumed: 1.176s
Checking openssl-1.0 dependencies...
The PGP key 8657ABB260F056B1E5190839D9C4D26D0E604491 is needed to verify openssl-1.0 source files.
Trust Matt Caswell <matt@openssl.org> and import the PGP key ? [y/N] y
gpg: key D9C4D26D0E604491: public key "Matt Caswell <matt@openssl.org>" imported
gpg: Total number processed: 1
gpg:               imported: 1

The PGP key 7953AC1FBC3DC8B3B292393ED5E9E43F7DF9EE8C is needed to verify openssl-1.0 source files.
Trust Richard Levitte <richard@levitte.org> and import the PGP key ? [y/N] y
gpg: key D5E9E43F7DF9EE8C: 1 duplicate signature removed
gpg: key D5E9E43F7DF9EE8C: public key "Richard Levitte <richard@levitte.org>" imported
gpg: Total number processed: 1
gpg:               imported: 1

Cloning pip-tools build files...
Running as unit: run-u105.service
fatal: not a git repository (or any parent up to mount point /var/cache/private)
Stopping at filesystem boundary (GIT_DISCOVERY_ACROSS_FILESYSTEM not set).
Finished with result: exit-code
Main processes terminated with: code=exited/status=128
Service runtime: 12ms
CPU time consumed: 11ms
Running as unit: run-u106.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 11ms
CPU time consumed: 11ms
Running as unit: run-u107.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 623ms
CPU time consumed: 126ms
Generating pip-tools information...
Running as unit: run-u108.service
Finished with result: success
Main processes terminated with: code=exited/status=0
Service runtime: 1.076s
CPU time consumed: 1.208s
Checking pip-tools dependencies...
Resolving dependencies...
Checking inter-conflicts...

To build (2):
  openssl-1.0  1.0.2.u-3  (1.0.2.u-1)  AUR
  pip-tools    6.12.1-1   (6.12.0-1)   AUR


Edit build files : [e] 
Apply transaction ? [e/y/N] y


Building openssl-1.0...
Running as unit: run-u109.service
Press ^] three times within 1s to disconnect TTY.
==> Making package: openssl-1.0 1.0.2.u-3 (Mon 26 Dec 2022 14:08:46 GMT)
==> Checking runtime dependencies...
==> Checking buildtime dependencies...
==> Retrieving sources...
  -> Downloading openssl-1.0.2u.tar.gz...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100 5229k  100 5229k    0     0  3073k      0  0:00:01  0:00:01 --:--:-- 3072k
  -> Downloading openssl-1.0.2u.tar.gz.asc...
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100   488  100   488    0     0   1123      0 --:--:-- --:--:-- --:--:--  1127
  -> Found no-rpath.patch
  -> Found ssl3-test-failure.patch
  -> Found openssl-1.0-versioned-symbols.patch
==> Validating source files with sha256sums...
    openssl-1.0.2u.tar.gz ... Passed
    openssl-1.0.2u.tar.gz.asc ... Skipped
    no-rpath.patch ... Passed
    ssl3-test-failure.patch ... Passed
    openssl-1.0-versioned-symbols.patch ... Passed
==> Verifying source file signatures with gpg...
    openssl-1.0.2u.tar.gz ... cat: write error: Broken pipe
FAILED
==> ERROR: One or more PGP signatures could not be verified!
Finished with result: exit-code
Main processes terminated with: code=exited/status=1
Service runtime: 3.246s
CPU time consumed: 1.464s
Error: Failed to build openssl-1.0

linux-aarhus · 26 December 2022 14:13

There is your answer - it is not a git repo you are trying to build

anon6839238 · 26 December 2022 14:20

so I need to contact the package owner?

linux-aarhus · 26 December 2022 15:15

I cannot say - what I do wonder is why you feel the need to build openssl 1 when 3 is the new version.

Yochanan · 26 December 2022 15:18

No, it’s a local issue, not an issue with the PKGBUILD. Do not run pamac with sudo, for one.

You most likely do not need openssl-1.0. It was dropped to the AUR from the Arch repos as it is obsolete and insecure. Check and see if anything requires it:

pacman -Qi openssl-1.0 | grep 'Required By\|Optional For'

Locutus · 26 December 2022 19:33

I thought I had seen it during updates so I ran your command and sure enough. Looks like I cantact the Jackett devs and see what the story is.

     ~  pacman -Qi openssl-1.0 | grep 'Required By\|Optional For'             ✔  at 11:30:36 AM   
Required By     : jackett
Optional For    : None

Strit · 26 December 2022 19:35

jackett requires openssl 3 (regular openssl package) according to it’s AUR page and has since Novmeber. In any case. Remove jackett. Update your system, reinstall jackett if you really need it.

cyrus · 26 December 2022 21:11

pacman -S archlinux-keyring
pacman -S openssl

Yochanan · 26 December 2022 21:38

Welcome to the forum!

Not related.

Indeed. Did you read the thread before posting?

Locutus · 27 December 2022 11:02

For some reason it’s still in use by jackett. I put in a ticket about it with them.

Strit · 27 December 2022 12:18

Not according to the AUR PKGBUILD. It was switched on November 19th.

So again. Please uninstall Jackett, do the update, then re-install Jackett.

Locutus · 27 December 2022 15:20

I did just that when it was first suggested and Jackett still wanted to pull in 1.0 even though 3.0 is installed.

     ~  pacman -Qi openssl | grep 'Required By\|Optional For'                 ✔  at 07:15:30 AM   
Required By     : bind  coreutils  cryptsetup  curl  deluge  dotnet-runtime-6.0  efitools  git  grub-customizer  gst-plugins-bad  kmod  ldns  lib32-openssl  libarchive  libevent  libgit2  libsasl  libshout  libssh  libssh2  libtorrent-rasterbar  libzip  nodejs  ntp  openssh  openvpn  ostree  pkcs11-helper  ppp  python  rsync  s-nail  sane  socat  srt  sudo  systemd  tpm2-tss  wpa_supplicant  xmlsec
Optional For    : None
     ~  pacman -Qi openssl-1.1 | grep 'Required By\|Optional For'             ✔  at 07:15:46 AM   
Required By     : telegram-desktop
Optional For    : None
     ~  pacman -Qi openssl-1.0 | grep 'Required By\|Optional For'             ✔  at 07:17:00 AM   
Required By     : jackett
Optional For    : None

Yochanan · 27 December 2022 15:45

The Maintainer did not bump the pkgrel, so if you attempt to reinstall 0.20.2264-1, the already built package in your cache will be reinstalled. Do a clean build.

RobBurke · 29 December 2022 13:11

Hey Guys,
just wanted to say thank you for discussing this issue here. I had the very same problem as well, and I was wondering what was wrong with the public key, so this helped to understand it better.
In my case I do not even use jackett, so even less reason to have this package.

About solving this: In addition to the pacman -Qi command above, I also did a

pactree -acr openssl-1.0

to find out about any dependencies on that package before removing it. Since nothing apart from the package itself turned up, I immediate got rid of it,

So thanks again for this thread. I feel I haven’t had any issues that hasn’t been discussed and solved already in a long time.

Lolix · 29 December 2022 15:10

You need to add the key to your local keyring which can be done with the command
gpg --recv-key $key
usually, or
gpg --keyserver $link --recv-key $key
if you need to specify a keyserver
some AUR helpers like pamac (and paru ?) automatically ask to import the key

anon6839238 · 29 December 2022 16:00

I have a dep on libopenssl. I contacted the package owner of openssl and he said that it had been moved out of the official repo into AUR.

He recommended that I download the repo, and do makepkg -si and install it that way. I have just done that now and it seems to have worked. He said there’s something wrong with my AUR helper that it didn’t work.

JCOHara · 30 December 2022 06:12

I disagree. I had the same problem and getting the archlinux-keyring is what fixed it.