1 Topic by izzy27182

  • izzy27182
  • Beginner
  • Offline
  • Registered: 2026-03-25
  • Posts: 1

Topic: Troubles with downloading keys during pacstrap and key's expiration

I have a problem with downloading keys during the base system installation step. Here's the output of "pacstrap /mnt base":

==> Creating install root at /mnt
==> Installing packages to /mnt
:: Synchronizing package databases...
 core is up to date
 extra is up to date
:: There are 49 members in group base:
:: Repository core
   1) bash-shcompat  2) bzip2  3) coreutils  4) device-mapper  5) dhcpcd  6) diffutils  7) e2fsprogs  8) file  9) filesystem  10) findutils  11) gawk  12) gcc-libs  13) glibc  14) grep  15) gzip  16) hyperrc-sysvcompat  17) iproute2  18) iputils  19) jfsutils  20) less  21) licenses  22) linux-libre-lts  23) logrotate  24) lsb-release  25) lvm2  26) man-db  27) man-pages  28) mdadm  29) mksh-kshcompat  30) nano  31) netifrc  32) pacman  33) pacman-mirrorlist  34) pciutils  35) pcmciautils  36) perl  37) procps-ng  38) psmisc  39) reiserfsprogs  40) s-nail  41) sed  42) shadow  43) sysfsutils  44) tar  45) texinfo  46) usbutils  47) util-linux  48) which  49) xfsprogs

Enter a selection (default=all): 
resolving dependencies...
looking for conflicting packages...
warning: dependency cycle detected:
warning: bzip2 will be installed before its bash-shcompat dependency
warning: dependency cycle detected:
warning: ca-certificates-mozilla will be installed before its ca-certificates dependency

Packages (123) acl-2.2.53-1  attr-2.4.48-2  bash-5.1+008-2  ca-certificates-20210119-1  ca-certificates-mozilla-3.61-3  curl-7.72.0-5  db-5.3.28-4  eudev-3.2.9-4  expat-2.3.0-2  gdbm-1.18.1-3  gmp-6.2.1-1  gnupg-stable-2.2.27-3  gnutls-3.6.14-2  gpgme-1.14.0-3  groff-headless-1.22.4-2  hwids-20200813.1-1  hyperbola-keyring-20201208-1  hyperrc-0.28-4  iana-etc-20200904-1  icu-67.1-2  jansson-2.13.1-1  kbd-2.0.4-5  keyutils-1.6.1-2  kmod-27-2  krb5-1.17-3  libaio-0.3.112-2  libarchive-3.4.3-3  libassuan-2.5.3-1  libcap-2.43-3  libelf-0.180-2  libeudev-3.2.9-4  libffi-3.3-1  libgcrypt-1.8.7-1  libgpg-error-1.38-2  libidn2-2.3.0-1  libksba-1.4.0-3  libldap-2.4.50-3  libmnl-1.0.4-2  libnftnl-1.1.8-1  libnghttp2-1.41.0-1  libpipeline-1.5.3-1  libpsl-0.21.0-3  libressl-3.2.6-1  libsasl-2.1.27-1  libseccomp-2.4.3-1  libssh2-1.8.0-4  libtasn1-4.16.0-2  libunistring-0.9.10-1  libusb-1.0.23-3  libutil-linux-2.36.1-6  libxcrypt-4.4.17-1  linux-libre-lts-api-headers-5.10_gnu1-1  lz4-1:1.9.2-1  lzip-1.22-1  mkinitcpio-23-7  mkinitcpio-busybox-1.25.1-4  mksh-r.59.c-4  mpfr-4.1.0.p13-1  ncurses-6.2-3  nettle-3.6-1  nftables-1:0.9.7-3  npth-1.6-3  p11-kit-0.23.21-3  pcre-8.44-3  pinentry-1.1.0-5  pinentry-tty-1.1.0-5  popt-1.18-1  readline-8.0+004-3  sqlite-3.32.3-2  thin-provisioning-tools-0.9.0-1  tzdata-2020a-1  vlock-2.2.2-2  xz-5.2.4-2  zlib-1:1.2.11-4  bash-shcompat-5.1+008-2  bzip2-1.0.8-2  coreutils-8.30-2  device-mapper-2.03.11-3  dhcpcd-7.1.0-2  diffutils-3.7-2  e2fsprogs-1.45.6-1  file-5.38-2  filesystem-2017.03-11  findutils-4.7.0-2  gawk-5.0.1-2  gcc-libs-8.4.0-6  glibc-2.30-3  grep-3.4-2  gzip-1.10-3  hyperrc-sysvcompat-0.28-4  iproute2-5.9.0-2  iputils-20200821-2  jfsutils-1.1.15-5  less-551-2  licenses-20181108-5  linux-libre-lts-5.10.191_gnu1-1  logrotate-3.17.0-1  lsb-release-1.4-16  lvm2-2.03.11-3  man-db-2.9.3-3  man-pages-5.09-2  mdadm-4.1-3  mksh-kshcompat-r.59.c-4  nano-5.2-1  netifrc-0.7.1-2  pacman-5.0.2-11  pacman-mirrorlist-20230901-1  pciutils-3.7.0-2  pcmciautils-018-9  perl-5.30.3-3  procps-ng-3.3.16-3  psmisc-23.3-1  reiserfsprogs-3.6.27-1  s-nail-14.9.19-2  sed-4.7-2  shadow-4.8.1-6  sysfsutils-2.1.0-10  tar-1.30-2  texinfo-6.7-3  usbutils-013-1  util-linux-2.36.1-6  which-2.21-5  xfsprogs-5.6.0-1

Total Installed Size:  600.47 MiB

:: Proceed with installation? [Y/n] 
checking keyring...
downloading required keys...
error: key "5AA99D86E1AC7510" could not be looked up remotely
error: required key missing from keyring
error: failed to commit transaction (unexpected error)
Errors occurred, no packages were upgraded.
==> ERROR: Failed to install packages to new root

I tried to import the Hyperbola signing key following the reference_installation wiki page and noticed that the key has expired recently.

Output of "gpg --list-key --with-fingerprint F9704456":

pub   rsa4096 2012-06-23 [SC] [expired: 2026-03-22]
      C92B AA71 3B8D 53D3 CAE6  3FC9 E697 4752 F970 4456
uid           [ expired] André Silva <emulatorman@hyperbola.info>
uid           [ expired] André Silva <emulatorman@riseup.net>

2 Reply by throgh

  • throgh
  • throgh
  • Package Development
  • Offline
  • From: Planet Earth
  • Registered: 2017-12-28
  • Posts: 3,156

Re: Troubles with downloading keys during pacstrap and key's expiration

Hello and welcome to the forums: You do not need to add / upgrade any key especially not from individual members from the team. If you look into the repositories: The package hyperbola-keyring is essential for all packages.

https://www.hyperbola.info/packages/cor … a-keyring/

And all packages are signed using exactly our build-server only.

Human being in favor with clear principles and so also for freedom in soft- and hardware!

Certainly anyone who has the power to make you believe absurdities has the power to make you commit injustices: For a life of every being full with peace and kindness, including diversity and freedom. Capitalism is destroying our minds, the planet itself and the universe in the end!

3 Reply by Patrick (edited by Patrick 2026-05-28 14:25:29)

  • Patrick
  • Beginner
  • Offline
  • Registered: 2026-05-28
  • Posts: 3

Re: Troubles with downloading keys during pacstrap and key's expiration

Hi,
I'm trying to install Hyperbola and I have the exact same problem (by the way, I never used pacman nor pacstrap, I've been in debian and debian derivatives since 2004).
So, I looked online after the man of pacstrap (as it's not available in the install .iso) and it did not helped: I tried the -G option (just in case it would work), the result was the same and the -K option that I found on the man online does not exist:

# packstrap -K /mnt base

outputs:

==> ERROR: pacstrap: invalid option -- 'K'

If I understand your message correctly, there should be no problem then, but we both have the same errors in the same place when trying to install Hyperbola, so, what can we do from there to solve this problem to finish the installation?
Edit: I specify that I didn't install exactly like in the installation guide as I want to have a normal /boot primary volume and an encrypted primary volume with a few logical volume (/, /home, /var and the swap), but I set the date correctly and I don't see no reason why this would have any influence on this problem.
Yet Another Edit: I suppressed part of the message as I was wrong, the keyring content is where it should be:

# gpg --show-keys /etc/pacman.d/gnupg/pubring.gpg

outputs:

pub   rsa2048 2010-01-01 [SC]
      7AEB39B6A8FA2D1BC4806049BEC320D3CC1FF7D
uid                      Pacman Keyring Master Key <pacman@localhost>

4 Reply by Patrick

  • Patrick
  • Beginner
  • Offline
  • Registered: 2026-05-28
  • Posts: 3

Re: Troubles with downloading keys during pacstrap and key's expiration

Patrick wrote:

I set the date correctly

It looks like the problem was there, I set the date when indicated in the installation guide and that is quite late in the installing process, as a result, the files creation date came from my old computer unused for months whose clock had been reset to default, so I suppose that the creation date of the file of the key and the date creation of the key itself conflicted.
So, I'm done with that problem, I just restarted my computer went to the BIOS to be sure that the date was still accurate start the installation again and the problem was gone.