GPG failures

[mooperd]

Hi,

Not sure if I'm doing something stupid here but I'm getting the following errors building https://github.com/nodejs/docker-node/blob/master/Dockerfile-alpine.template

I've copied the contents to a Docker file and run docker build .

Any ideas?

Executing ca-certificates-20161130-r0.trigger
OK: 222 MiB in 56 packages
gpg: directory '/root/.gnupg' created
gpg: new configuration file '/root/.gnupg/dirmngr.conf' created
gpg: new configuration file '/root/.gnupg/gpg.conf' created
gpg: keybox '/root/.gnupg/pubring.kbx' created
gpg: /root/.gnupg/trustdb.gpg: trustdb created
gpg: key DBE9B9C5: public key "Colin Ihrig <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 4EB7990E: public key "Jeremiah Senkpiel <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 7EDE3FC1: public key "keybase.io/jasnell <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 7D83545D: public key "Rod Vagg <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key CC11F4C8: public key "Myles Borins <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 4C206CA9: public key "Evan Lucas <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 3C4CFFFE: public key "Italo A. Casas <[email protected]>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
gpg: key 821C587A: public key "Gibson Fahnestock <[email protected]>" imported
gpg: Total number processed: 1
gpg:               imported: 1
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  6628    0  6628    0     0      1      0 --:--:--  1:11:35 --:--:-- 13837
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  2272    0  2272    0     0   2272      0 --:--:-- --:--:-- --:--:--  4971
gpg: no valid OpenPGP data found.
gpg: decrypt_message failed: Unknown system error
The command '/bin/sh -c addgroup -g 1000 node     && adduser -u 1000 -G node -s /bin/sh -D node     && apk add --no-cache         libstdc++     && apk add --no-cache --virtual .build-deps         binutils-gold         curl         g++         gcc         gnupg         libgcc         linux-headers         make         python   && for key in     94AE36675C464D64BAFA68DD7434390BDBE9B9C5     FD3A5288F042B6850C66B31F09FE44734EB7990E     71DCFD284A79C3B38668286BC97EC7A07EDE3FC1     DD8F2338BAE7501E3DD5AC78C273792F7D83545D     C4F0DFFF4E8C1A8236409D08E73BC641CC11F4C8     B9AE9905FFD7803F25714661B63B535A4C206CA9     56730D5401028683275BD23C23EFEFE93C4CFFFE     77984A986EBC2AA786BC0F66B01FBB92821C587A   ; do     gpg --keyserver pgp.mit.edu --recv-keys "$key" ||     gpg --keyserver keyserver.pgp.com --recv-keys "$key" ||     gpg --keyserver ha.pool.sks-keyservers.net --recv-keys "$key" ;   done     && curl -SLO "https://nodejs.org/dist/v$NODE_VERSION/node-v$NODE_VERSION.tar.xz"     && curl -SLO --compressed "https://nodejs.org/dist/v$NODE_VERSION/SHASUMS256.txt.asc"     && gpg --batch --decrypt --output SHASUMS256.txt SHASUMS256.txt.asc     && grep " node-v$NODE_VERSION.tar.xz\$" SHASUMS256.txt | sha256sum -c -     && tar -xf "node-v$NODE_VERSION.tar.xz"     && cd "node-v$NODE_VERSION"     && ./configure     && make -j$(getconf _NPROCESSORS_ONLN)     && make install     && apk del .build-deps     && cd ..     && rm -Rf "node-v$NODE_VERSION"     && rm "node-v$NODE_VERSION.tar.xz" SHASUMS256.txt.asc SHASUMS256.txt' returned a non-zero code: 2

[chorrell]

This looks like a similar issue to what we see in Travis-CI when doing test builds. At some point when building the Alpine image there seems to be a network issue (like lose of connectivity) and things like fetching the gpg keys fail. It seems related to how long it can take to build the Alpine image

Does the build still fail if you use the --force-rm flag?

docker build --force-rm .

[mbajur]

I'm experiencing the same in gitlab runner and --force-rm changes nothing

edit: actually these errors persisted but image built fine.

[chorrell]

We recently update images with some improvements when fetching the gpg keys in the alpine image:

#623
#622
#621

Those changes seem to have reduced the gpg/network issues we were seeing. Try the latest version of https://github.com/nodejs/docker-node/blob/master/Dockerfile-alpine.template and see if that helps.

[SimenB]

@chorrell did you see docker-library/official-images#4006 (comment)?

[chorrell]

Oh! No, I missed that.

So yeah, we should probably drop keyserver.pgp.com if it's problematic. I'll work on a PR and I'll rearrange the list so that we try the sks-keyservers.net servers first, then pgp.mit.edu.

[chorrell]

--> #632

[chorrell]

I think we can probably close this. I don't think we've seen the GPG issues since the #632 PR.