Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

GPG Keyserver for gosu key intermittently fails #64

Closed
craSH opened this issue Oct 16, 2017 · 4 comments
Closed

GPG Keyserver for gosu key intermittently fails #64

craSH opened this issue Oct 16, 2017 · 4 comments

Comments

@craSH
Copy link
Contributor

craSH commented Oct 16, 2017

Host operating system

macOS High Sierra 10.13

Docker Version

Client:
 Version:      17.09.0-ce
 API version:  1.32
 Go version:   go1.8.3
 Git commit:   afdb6d4
 Built:        Tue Sep 26 22:40:09 2017
 OS/Arch:      darwin/amd64

Server:
 Version:      17.09.0-ce
 API version:  1.32 (minimum version 1.12)
 Go version:   go1.8.3
 Git commit:   afdb6d4
 Built:        Tue Sep 26 22:45:38 2017
 OS/Arch:      linux/amd64
 Experimental: false

What tag are you using

Example: beta

What complete docker command or docker-compose.yml do you use to launch the container (omitting sensitive values)?

docker build -t unifi-beta --build-arg PKGURL=<unifi-beta-controller-url>/unifi_sysvinit_all.deb .

What do you expect to happen?

Command within Dockerfile to retrieve the PGP key should succeed, and then proceed to import it/continue as normal.

What actually happens?

[...]


2017-10-16 06:31:30 (33.1 MB/s) - '/usr/local/bin/gosu.asc' saved [543/543]

+ mktemp -d
+ export GNUPGHOME=/tmp/tmp.8DN8Bjgz7Y
+ gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4
gpg: keybox '/tmp/tmp.8DN8Bjgz7Y/pubring.kbx' created
gpg: keyserver receive failed: Cannot assign requested address

If I run the same gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 command on my host system (same network path to the keyserver), I also observe an error. The GPG version is different, so the output differs a little:

gpg: keyserver receive failed: No data

Similar issue reported elsewhere

This is the same issue as reported in this other project's issue, and it is not specific to that project nor this one, but just an issue with the particular GPG keyserver that is being used: tianon/gosu#35

There is a workaround suggested in that issue thread for trying several explicit keyservers until the command succeeds, since it appears that if a single server within a pool fails, the client just aborts entirely. Would you be open to having something like that implemented to handle this situation?

@jacobalberty
Copy link
Owner

I'd seen the thread and have played with it the list on my local branch. I just spent all of my free time today straightening out the travis-ci checks. I'll check in the fix for this shortly

@craSH
Copy link
Contributor Author

craSH commented Oct 16, 2017

Thanks!

@jacobalberty
Copy link
Owner

NP, thanks for the curl fix as well

@marcus-aa
Copy link

It is some kind of IPV6-related issue. Try ipv4.pool.sks-keyservers.net instead.

thewtex added a commit to thewtex/dockcross that referenced this issue Jan 20, 2019
The base image moved from jessie to stretch, so update sources and
packages. Also update gosu binary install to support gpg2 and work
around:

  gpg: cannot open '/dev/tty': No such device or address

as suggested here:

  nodejs/docker-node#922

  gpg: keyserver receive failed: Cannot assign requested address

as suggested here:

  jacobalberty/unifi-docker#64
avelino added a commit to avelino/theia-apps that referenced this issue Mar 4, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants