[Bug 1089389] Re: juju bootstrap fail behind a proxy when a gpg key must be imported
Nate Mara
1089389 at bugs.launchpad.net
Thu Jan 11 19:07:21 UTC 2018
I noticed that this problem can be fixed for me if the
GPG_DEFAULT_OPTIONS variable on line 171 of ppa.py is changed. If I add
these two properties to the list, then the problem goes away completely:
"--keyserver-options", "http-proxy=" + os.environ['http_proxy']
Obviously, you would want to check for the existence of this variable
before you just went using it, but it looks like this is the problem.
The PPA library does not forward the HTTP proxy settings along to GPG,
so GPG tries and fails to make a direct connection to the keyserver. Am
I missing something about the way this works, or can we make a similar
change and resolve these proxy issues?
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to software-properties in Ubuntu.
https://bugs.launchpad.net/bugs/1089389
Title:
juju bootstrap fail behind a proxy when a gpg key must be imported
Status in software-properties package in Ubuntu:
Triaged
Bug description:
This is related to a Maas environment hosted behind a proxy.
I'm trying to use
juju 0.6.0.1+bzr603-0juju1~precise1
ubuntu at maas:~$ cat .juju/environments.yaml
environments:
mymaas:
type: maas
maas-server: 'http://192.168.124.2:80/MAAS'
maas-oauth: 'UP5Qay8Nsku8K98fqn:LjhnStY2HjfCeKfvmg:BxA586DWVNPKrT9ASNj9QasMvSPdgavt'
admin-secret: 'nothing'
default-series: precise
juju-origin: ppa
When juju boostrap, things do not behave as expected on the zookeeper
node.
Excerpt from the cloud-init-output.log:
W: GPG error: http://ppa.launchpad.net precise Release: The following
signatures couldn't be verified because the public key is not
available: NO_PUBKEY 376A290EC8068B11
On the zookeeper node, if i try to apt-add-repository , the needed gpg
key is not injected, but the scrpit does not return any error code:
ubuntu at zookeeper:/var/log$ sudo mv /etc/apt/sources.list.d/juju-pkgs-precise.list /tmp/
ubuntu at zookeeper:/var/log$ sudo ls /etc/apt/sources.list.d/
ubuntu at zookeeper:/var/log$ sudo apt-add-repository ppa:juju/pkgs --yes
gpg: keyring `/tmp/tmpmlP7VA/secring.gpg' created
gpg: keyring `/tmp/tmpmlP7VA/pubring.gpg' created
gpg: requesting key C8068B11 from hkp server keyserver.ubuntu.com
gpgkeys: key A2EB2DEC0BD7519B7B38BE38376A290EC8068B11 not found on keyserver
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
recv failed
ubuntu at zookeeper:/var/log$ echo $?
0
Trying to inject key while setting the http_proxy environment variable works better:
ubuntu at zookeeper:/var/log$ sudo http_proxy=http://91.189.90.174:3128/ apt-add-repository ppa:juju/pkgs --yes
gpg: keyring `/tmp/tmp1pAd6X/secring.gpg' created
gpg: keyring `/tmp/tmp1pAd6X/pubring.gpg' created
gpg: requesting key C8068B11 from hkp server keyserver.ubuntu.com
gpg: /tmp/tmp1pAd6X/trustdb.gpg: trustdb created
gpg: key C8068B11: public key "Launchpad Ensemble PPA" imported
gpg: Total number processed: 1
gpg: imported: 1 (RSA: 1)
OK
ubuntu at zookeeper:/var/log$ echo $?
0
On the zookeeper node, python-software-properties is version 0.82.7.3
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: python-software-properties 0.82.7.3
ProcVersionSignature: Ubuntu 3.2.0-34.53-generic 3.2.33
Uname: Linux 3.2.0-34-generic x86_64
ApportVersion: 2.0.1-0ubuntu15
Architecture: amd64
Date: Wed Dec 12 14:40:21 2012
EcryptfsInUse: Yes
InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release amd64 (20111012)
MarkForUpload: True
PackageArchitecture: all
SourcePackage: software-properties
UpgradeStatus: Upgraded to precise on 2012-05-14 (212 days ago)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/software-properties/+bug/1089389/+subscriptions
More information about the foundations-bugs
mailing list