Error with gpg at ha.pool.sks-keyservers.net

tianon / gosu

Simple Go-based setuid+setgid+setgroups+exec

Apache License 2.0

4.71k stars 320 forks source link

Error with gpg at ha.pool.sks-keyservers.net #17

Closed ovnicraft closed 8 years ago

ovnicraft commented 8 years ago

Hi, i am trying to install at debian jessie and this:

gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4

its giving:

gpg: keyring /tmp/tmp.EfjkDu6PA3/secring.gpg' created gpg: keyring/tmp/tmp.EfjkDu6PA3/pubring.gpg' created gpg: requesting key BF357DD4 from hkp server ha.pool.sks-keyservers.net gpg: keyserver timed out gpg: keyserver receive failed: keyserver error

problem with server ?

tianon commented 8 years ago

Do you have a corporate firewall of some kind in place that might be blocking the traffic?

You can try hkp://p80.pool.sks-keyservers.net:80 or hkps://hkps.pool.sks-keyservers.net in place of ha.pool.sks-keyservers.net, and might have more success in limited enviroments (since it'll then use port 80 or 443 instead):

gpg --keyserver hkp://p80.pool.sks-keyservers.net:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4

ovnicraft commented 8 years ago

@tianon yes you got me, i confirm i am behind a firewall (i am at hotel). BTW thanks for quick answer !

JoAngel8 commented 8 years ago

docker-library/postgres Before, we have this error :

+ gpg --keyserver ha.pool.sks-keyservers.net --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4 gpg: keyring/tmp/tmp.OiN4X7QrgC/secring.gpg' created gpg: keyring `/tmp/tmp.OiN4X7QrgC/pubring.gpg' created gpg: requesting key BF357DD4 from hkp server ha.pool.sks-keyservers.net

gpg: keyserver timed out gpg: keyserver receive failed: keyserver error ERROR: Service...`

JoAngel8 commented 8 years ago

I also work behind a firewall. Thanks, after replace ha.pool.sks-keyservers.net

in the 2 lines in my Dokerfile like : gpg --keyserver hkp://p80.pool.sks-keyservers.net:80 --recv-keys B42F6819007F00F88E364FD4036A9C25BF357DD4

Docker-compose success to up my postrgres 9.5 Dockerfile. Thansk a lot for you answer.

srosato commented 7 years ago

Thanks a lot @tianon ! I was also behind corporate firewall, hkp://p80.pool.sks-keyservers.net:80 worked, but hkps://hkps.pool.sks-keyservers.net did not, which, in my case, was expected.

nicolas-albert commented 6 years ago

Hi, I use CircleCI to build docker images. For a same build, I have 2 success and 1 failure for a gpg recv-keys : https://circleci.com/gh/convertigo/docker/270

I don't know if it's a good idea to switch to the unsecured server instead of "broken" secure.

Maybe ha.pool.sks-keyservers.net have a temporary failure …

nicolas-albert commented 6 years ago

Ok, I have modified my Dockerfiles to get keys from 3 servers, just in case. It works !

( gpg --keyserver ha.pool.sks-keyservers.net --recv-keys "$GPG_KEYS" \
  || gpg --keyserver pgp.mit.edu --recv-keys "$GPG_KEYS" \
  || gpg --keyserver keyserver.pgp.com --recv-keys "$GPG_KEYS" )