Tensorflow-opt-cuda signature error

loumierex · 11 December 2023 14:03

Hello, I am running into the following error, i know it has already been asked many times but I tried all the solution I could find without success.

error: tensorflow-opt-cuda: signature from "Sven-Hendrik Haase <sh@lutzhaase.com>" is invalid
:: File /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
error: failed to commit transaction (invalid or corrupted package (PGP signature))

I managed to update my system and all packages through pamac except this package.
I unsuccesfully ran the following steps

checked my time synchronization
changing the mirrors: sudo pacman-mirrors -g -c Germany or sudo pacman-mirrors --continent
emptying the sache running sudo pacman -Sc
deleting /var/lib/pacman/sync/*
populating and refreshing the keys (the key causing the problem is marked as not modified during the refresh):

sudo pacman-key --init
sudo pacman-key --refresh-keys
sudo pacman-key --populate archlinux manjaro

in this order and also with the populate before the refresh.

reinstall archlinux and manjaro keiring : sudo pacman -Sy archlinux-keyring manjaro-keyring
try running pamac update --force-refresh
run sudo pacman -Syyu after doing all the above steps and restarting my machine.

I am still running in the same error and being relatively new to linux, would appreciate any lead.

Mirdarthos · 11 December 2023 14:15

Hi @loumierex,

Try removing that file, specifically, from the cache:

sudo rm /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst

loumierex · 11 December 2023 14:28

Hi, thanks for your reply.
I tried the command and it looks like it was already deleted, the /var/cache/pacman/pkg/ looks empty

$ sudo rm /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst
rm: cannot remove '/var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst': No such file or directory
$ cd /var/cache/pacman/pkg                    
/var/c/pa/pkg$ ls                                    
/var/c/pa/pkg$

Mirdarthos · 11 December 2023 14:34

Try the following:

pamac install --overwrite tensorflow-opt-cuda

loumierex · 11 December 2023 14:43

if i run this pamac install --overwrite tensorflow-opt-cuda my console is replying with the pamac install --help ouput.

pamac install --overwrite tensorflow-opt-cuda 
Install packages from repositories, path or url

pamac install [options] <package(s),group(s)>

options:
  --ignore <package(s)> : ignore a package upgrade, multiple packages can be
                          specified by separating them with a comma
  --overwrite <glob>    : overwrite conflicting files, multiple patterns can be
                          specified by separating them with a comma
  --download-only, -w   : download all packages but do not install/upgrade
                          anything
  --dry-run, -d         : only print what would be done but do not run the
                          transaction
  --as-deps             : mark all packages installed as a dependency
  --as-explicit         : mark all packages explicitly installed
  --upgrade             : check for updates
  --no-upgrade          : do not check for updates
  --no-confirm          : bypass any and all confirmation messages

Am I missing something ?

Mirdarthos · 11 December 2023 15:00

No. I did, sorry. The correct command, I think, is:

pamac install --overwrite='/usr/include/tensorflow,/usr/include/tensorflow/*,/usr/lib/libtensorflow.so.*' tensorflow-opt-cuda

If this doesn’t work, I suspect your key. But provide the full output in that case, please.

loumierex · 11 December 2023 15:19

It didnt work, same mistake

$ pamac install --overwrite='/usr/include/tensorflow,/usr/include/tensorflow/*,/usr/lib/libtensorflow.so.*' tensorflow-opt-cuda

Preparing...
Synchronizing package databases...
Refreshing AUR...                                                               
Resolving dependencies...                                                       
Checking inter-conflicts...

To upgrade (1):
  tensorflow-opt-cuda  2.15.0-4  (2.15.0-2)  extra  168,2 MB

Total download size: 168,2 MB
Total installed size: 150,2 kB

Apply transaction ? [y/N] y
==== AUTHENTICATING FOR org.manjaro.pamac.commit ====
Authentication is required to install, update, or remove packages
Authenticating as: Mayeul SGC (mayeul)
Password: 
==== AUTHENTICATION COMPLETE ====
Download of tensorflow-opt-cuda (2.15.0-4) started                              
Download of tensorflow-opt-cuda (2.15.0-4) finished                             
Checking keyring...                                                        [1/1]
Checking integrity...                                                      [1/1]
Error: tensorflow-opt-cuda: signature from "Sven-Hendrik Haase <sh@lutzhaase.com>" is invalid
Removing invalid files and retrying...
Resolving dependencies...
Checking inter-conflicts...
Download of tensorflow-opt-cuda (2.15.0-4) started                              
Download of tensorflow-opt-cuda (2.15.0-4) finished                             
Checking keyring...                                                        [1/1]
Checking integrity...                                                      [1/1]
Error: tensorflow-opt-cuda: signature from "Sven-Hendrik Haase <sh@lutzhaase.com>" is invalid
Error: Failed to commit transaction: invalid or corrupted package (PGP signature):

Mirdarthos · 11 December 2023 15:21

Then…

Sorry

megavolt · 11 December 2023 15:48

Try this:

export URL="https://notabug.org/megavolt/random-scripts/raw/master/fix-gpg-pacman.sh"
bash <(curl -s "$URL") --ask

See: [HowTo] Work around gpg verification issue on left behind systems

loumierex · 11 December 2023 17:30

didn’t work, same error, all 3 different modes …

Abog · 12 December 2023 22:00

yo so its actually because his signature is outdated… Here, Arch Linux - python-tensorflow-opt-cuda 2.15.0-4 (x86_64) If you look at signature date its 12/1/2023 which was 11 days ago…

anon51566685 · 12 December 2023 22:13

Yo, no it’s actually not.

Abog · 12 December 2023 22:15

That was my only idea of what it might have been, what is the actual problem then?

anon51566685 · 12 December 2023 22:24

pacman/Package signing - ArchWiki should work.

Yochanan · 12 December 2023 22:41

That’s the date the package was signed by the maintainer. His signing key is fine.

Abog · 12 December 2023 23:08

I tried the entire, 4.1 section of troubleshooting invalid signature errors and I keep getting the same error. I could just disable signature checking but I think that choice will bite back eventually.
Seperately
I tried

sudo pacman-key --refresh Sven

and got

gpg: error retrieving 'sh@lutzhaase.com' via WKD: No data
gpg: error reading key: No data
gpg: key 39E4B877E62EB915: "Sven-Hendrik Haase <sh@lutzhaase.com>" not changed
gpg: Total number processed: 1
gpg:              unchanged: 1
pub   rsa4096 2011-09-10 [SC]
      8FC15A064950A99DD1BD14DD39E4B877E62EB915
uid           [marginal] Sven-Hendrik Haase <sh@lutzhaase.com>
uid           [  full  ] Sven-Hendrik Haase <svenstaro@archlinux.org>
uid           [marginal] Sven-Hendrik Haase <svenstaro@gmail.com>
sub   rsa4096 2022-07-10 [A]
sub   rsa4096 2011-09-10 [E]

sitic · 13 December 2023 01:31

The issue is not with the signature, but that the mirrors only serve a corrupted, partial file.

du -sh /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst
161M    /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst

But it should be 747.9 MB.

Several mirrors seem to serve me this broken file, I’ve ended up downloading it from the Arch “Download From Mirror” and installing it with sudo pacman --sync.

This causes the signature error, the signature key itself is trusted (works for python-tensorflow-opt-cuda):

pacman-key --verify /var/cache/pacman/pkg/python-tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst.sig
==> Checking /var/cache/pacman/pkg/python-tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst.sig... (detached)
gpg: Signature made Fri 01 Dec 2023 12:54:06 AM PST
gpg:                using RSA key 8FC15A064950A99DD1BD14DD39E4B877E62EB915
gpg: Note: trustdb not writable
gpg: Good signature from "Sven-Hendrik Haase <sh@lutzhaase.com>" [marginal]
gpg:                 aka "Sven-Hendrik Haase <svenstaro@gmail.com>" [marginal]
gpg:                 aka "Sven-Hendrik Haase <svenstaro@archlinux.org>" [full]

pacman-key --verify /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst.sig
==> Checking /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst.sig... (detached)
gpg: Signature made Fri 01 Dec 2023 12:53:50 AM PST
gpg:                using RSA key 8FC15A064950A99DD1BD14DD39E4B877E62EB915
gpg: Note: trustdb not writable
gpg: BAD signature from "Sven-Hendrik Haase <sh@lutzhaase.com>" [marginal]
==> ERROR: The signature identified by /var/cache/pacman/pkg/tensorflow-opt-cuda-2.15.0-4-x86_64.pkg.tar.zst.sig could not be verified.

Abog · 13 December 2023 02:30

Thank you! I did the same and now I have it all installed.

Takakage · 13 December 2023 03:57

Just for reference:

Arch Linux

$ pacman -Si tensorflow-opt-cuda
Name            : tensorflow-opt-cuda
Version         : 2.15.0-4
Download Size   : 747.86 MiB
Installed Size  : 2926.89 MiB
Packager        : Sven-Hendrik Haase <svenstaro@archlinux.org>
Build Date      : Wed 29 Nov 2023 08:24:34 PM PST

Manjaro

$ pacman -Si tensorflow-opt-cuda
Name            : tensorflow-opt-cuda
Version         : 2.15.0-4
Download Size   : 160.43 MiB
Installed Size  : 2926.89 MiB
Packager        : Sven-Hendrik Haase <svenstaro@archlinux.org>
Build Date      : Wed 29 Nov 2023 08:24:34 PM PST

anon51566685 · 13 December 2023 06:20

Nice catch.