Previously, many DeepOps roles were importing the full Fedora GPG keychain from https://getfedora.org/static/fedora.gpg. At some point in the past several days, this started failing with errors that look like this:
2022-06-16T16:15:03.7136338Z fatal: [dcgm-centos-7]: FAILED! => {"changed": false, "msg": "Not a public key: https://getfedora.org/static/fedora.gpg"}
Unfortunately, it's difficult to tell what may have changed with the upstream URL.
Because we're just interested in EPEL anyway, this PR changes the URL import to the EPEL-specific key for the distro in question, i.e. https://download.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-{{ ansible_distribution_major_version }}.
Test plan
All Molecule tests should pass following this change. (Jenkins CI is still broken 😢 for other reasons around a Helm chart.)
Summary
Previously, many DeepOps roles were importing the full Fedora GPG keychain from
https://getfedora.org/static/fedora.gpg
. At some point in the past several days, this started failing with errors that look like this:Unfortunately, it's difficult to tell what may have changed with the upstream URL.
Because we're just interested in EPEL anyway, this PR changes the URL import to the EPEL-specific key for the distro in question, i.e.
https://download.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-{{ ansible_distribution_major_version }}
.Test plan
All Molecule tests should pass following this change. (Jenkins CI is still broken 😢 for other reasons around a Helm chart.)