search

arangodb / arangodb-docker

Docker container for ArangoDB
Apache License 2.0
106 stars 32 forks source link

Issue with GPG keys #91

Open alexalv opened 3 years ago

alexalv commented 3 years ago

Hello, for some reason my builds always fail on RUN gpg --batch --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B

I am trying to build an alpine image with arangodb3-client installed, but I cannot get past this gpg step. Example dummy dockerfile that fails for me:

FROM alpine:3.8

# instal arango client
ENV ARANGO_VERSION 3.4.5
ENV ARANGO_URL https://download.arangodb.com/arangodb34/DEBIAN/amd64
ENV ARANGO_PACKAGE arangodb3-client_${ARANGO_VERSION}-1_amd64.deb
ENV ARANGO_PACKAGE_URL ${ARANGO_URL}/${ARANGO_PACKAGE}
ENV ARANGO_SIGNATURE_URL ${ARANGO_PACKAGE_URL}.asc

RUN apk add --no-cache gnupg pwgen nodejs npm binutils && \
    npm install -g foxx-cli && \
    rm -rf /root/.npm

RUN gpg --batch --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B

RUN cd /tmp                                && \
    wget ${ARANGO_SIGNATURE_URL}           && \
    wget ${ARANGO_PACKAGE_URL}             && \
    gpg --verify ${ARANGO_PACKAGE}.asc     && \
    ar x ${ARANGO_PACKAGE} data.tar.gz     && \
    tar -C / -x -z -f data.tar.gz          && \
    rm -f ${ARANGO_PACKAGE}* data.tar.gz

And the log of docker build

Sending build context to Docker daemon  48.13kB

Step 1/9 : FROM alpine:3.8
 ---> c8bccc0af957
Step 2/9 : ENV ARANGO_VERSION 3.4.5
 ---> Using cache
 ---> 916bf1683f1b
Step 3/9 : ENV ARANGO_URL https://download.arangodb.com/arangodb34/DEBIAN/amd64
 ---> Using cache
 ---> c2ed5e965faa
Step 4/9 : ENV ARANGO_PACKAGE arangodb3-client_${ARANGO_VERSION}-1_amd64.deb
 ---> Using cache
 ---> edd924fc9e35
Step 5/9 : ENV ARANGO_PACKAGE_URL ${ARANGO_URL}/${ARANGO_PACKAGE}
 ---> Using cache
 ---> dbf36093cd0f
Step 6/9 : ENV ARANGO_SIGNATURE_URL ${ARANGO_PACKAGE_URL}.asc
 ---> Using cache
 ---> 1cc3c3dc82db
Step 7/9 : RUN apk add --no-cache gnupg pwgen nodejs npm binutils &&     npm install -g foxx-cli &&     rm -rf /root/.npm
 ---> Using cache
 ---> ce86aeb96e3f
Step 8/9 : RUN gpg --batch --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B
 ---> Running in 337322ae046d
gpg: directory '/root/.gnupg' created
gpg: keybox '/root/.gnupg/pubring.kbx' created
gpg: keyserver receive failed: General error
The command '/bin/sh -c gpg --batch --keyserver hkps://hkps.pool.sks-keyservers.net --recv-keys CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B' returned a non-zero code: 2

The dockerfile I copypasted from one of the templates in this repo, tried going to http://hkps.pool.sks-keyservers.net/ and searching for the key with CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B signature - got a Not found error

Not sure what am I doing wrong, any ideas?

rasmusblassar commented 3 years ago

Looks like the keyserver pool hkps://hkps.pool.sks-keyservers.net is down atm.

You could try another pool

gpg --keyserver ipv4.pool.sks-keyservers.net --recv-keys CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B

Or download the public key from arangodb repository

curl https://download.arangodb.com/arangodb34/DEBIAN/Release.key | gpg --import \
&& gpg --fingerprint CD8CB0F1E0AD5B52E93F41E7EA93F5E56E751E9B