O.K. with holidays and everything this PC didn’t get the attention it deserved. So 228 files needed updated. It passed the Keyring stage so I take it it shouldn’t be unrecoverable, but what to do with this?
Total Installed Size: 4815.36 MiB
Net Upgrade Size: -59.74 MiB
:: Proceed with installation? [Y/n] y
(227/227) checking keys in keyring [--------------------------------] 100%
(227/227) checking package integrity [--------------------------------] 100%
error: openssl: signature from “Pierre Schmitz pierre@archlinux.org” is marginal trust
:: File /var/cache/pacman/pkg/openssl-3.0.7-4-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] n
error: openssl-1.1: signature from “Pierre Schmitz pierre@archlinux.org” is marginal trust
:: File /var/cache/pacman/pkg/openssl-1.1-1.1.1.s-4-x86_64.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n]
I just had the same problem to update, and installing archlinux-keyring fixed it.
Just out of curiosity, why do I have to install archlinux-keyring to update my system, shouldn’t this be installed out of the box, or is this just updating my keyrings in the system?
It is about the order of installing packages.
If Arch keyrings change, then we should install new keys before installing other packages (that already depend on the new keys).
I don’t actually know all the details, but this is basically my understanding about it.
Well, that happens… for systems that are not used for a long time. Could be e.g. a virtual machine, or an old laptop stored in a drawer, or whatever.
Happened very recently, within a couple of days, actually.
Question is, what if you went out of the country for a few months or a year and left your laptop behind? Would the keyring reload always work? Is there a time limit?
Is it like a clock or a timer of set duration or something squishier than that?
Never mind, reading further up explained it. Order of upgrading packages.