I’ve got an odd issue. I haven’t used my machine in a while, so my packages are fairly out of date. When trying to update the packages, I got the usual “invalid or corrupted package” PGP errors like I usually do when it’s been a while since updating.
BUT, here’s what’s different. I am getting an “invalid or corrupted package” error WHILE running pacman -Sy endeavouros-keyring:
error: endeavouros-keyring: signature from "manuel <manuel@endeavouros.com>" is unknown trust
:: File /var/cache/pacman/pkg/endeavouros-keyring-20231222-1-any.pkg.tar.zst is corrupted (invalid or corrupted package (PGP signature)).
Do you want to delete it? [Y/n] y
The problem is, /var/cache/pacman/pkg/endeavouros-keyring-20231222-1-any.pkg.tar.zst DOES NOT EXIST when I try to delete it, and running the last command in that article (sudo pacman -U /var/cache/pacman/pkg/{archlinux,endeavouros}-keyring*.pkg.tar.zst) says no matches are found.
And if this still doesn’t work, and you trust that the packages are actually correct and not corrupt and haven’t been interfered with, then you can force (re)installation of the keyring packages:
We just disabled temporarily the signature check for that one package to get the keys installed.
A sort of “workaround” somewhat similar to the suggestion in the wiki but since you didn’t have that package in the cache, it needed to be installed from the repo.
Just a reminder:
Glad you got it resolved and welcome to the community @Souper!
PS. please mark the relevant post leading to the solution as such. Perhaps other users facing the same issue in the future will find the suggestion useful.