Closed Bug 1565013 Opened 5 years ago Closed 5 years ago

HACL image builder times out while fetching gpg key

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.46

People

(Reporter: kjacobs, Assigned: kjacobs)

Details

Attachments

(1 file)

Bug 1565013 - Populate hacl docker image with public key for clang+llvm verification r=jcj 5 years ago Kevin Jacobs [:kjacobs] 47 bytes, text/x-phabricator-request		Details \| Review

Kevin Jacobs [:kjacobs]

Assignee

Description

•

5 years ago

HACL image builder is failing in setup.sh, due to a timeout while fetching a gpg key for clang/llvm package verification:

[0m[91mcurl -LO https://releases.llvm.org/3.9.1/clang+llvm-3.9.1-x86_64-linux-gnu-ubuntu-16.04.tar.xz.sig
[0m[91m+ curl -LO https://releases.llvm.org/3.9.1/clang+llvm-3.9.1-x86_64-linux-gnu-ubuntu-16.04.tar.xz.sig
[0m[91m  % Total    % Received % Xferd  Ave[0m[91mrage Speed   Time    Time     Time  Current
                [0m[91m                 Dloa[0m[91md  Upload   Total   Spent    Left  Spe[0m[91med

  0     [0m[91m0    0     0    0   [0m[91m  0      0      0 --:-[0m[91m-:-- --:--:-- --:--:--  [0m[91m   0[0m[91m
  0     0    0     0    0     0  [0m[91m    0      0 --:--:-- --:--:-- --:--:--     0[0m[91m
100   543  100   543    0     0   200[0m[91m4      0 --:--:-- --:--:-- --:--:--  2003
[0m[91m# Verify the signature.
[0m[91mgpg --keyserver pool.sks-keyservers.net --recv-keys B6C8F98282B944E3B0D5C2530FC3042E345AD05D
+ gpg --keyserver pool.sks-keyservers.net --recv-keys B6C8F98282B944E3B0D5C2530FC3042E345AD05D
[0m[91mgpg: directory `/root/.gnupg' created
[0m[91mgpg: new configuration file `/root/.gnupg/gpg.conf' created
gpg: WARNING: options in `/root/.gnupg/gpg.conf' are not yet active during this run
[0m[91mgpg: keyring `/root/.gnupg/secring.gpg' created
[0m[91mgpg: keyring `/root/.gnupg/pubring.gpg' created
[0m[91mgpg: requesting key 345AD05D from hkp server pool.sks-keyservers.net
[0mgpgkeys: key B6C8F98282B944E3B0D5C2530FC3042E345AD05D can't be retrieved
[91mgpg: no valid OpenPGP data found.
gpg: Total number processed: 0
gpg: keyserver communications error: keyserver helper general error
gpg: [0m[91mkeyserver communications error: unknown pubkey algorithm
gpg: keyserver receive failed: unknown pubkey algorithm
[0m[34mINFO[0m[0145] The command [/bin/sh -c bash /tmp/setup.sh] returned a non-zero code: 2 
[taskcluster 2019-07-10 19:36:13.933Z] === Task Finished ===```

J.C. Jones [:jcj] (he/they)

Comment 1

•

5 years ago

ugh, can we check in that key as part of the tooling? That seems safer.

Kevin Jacobs [:kjacobs]

Assignee

Comment 2

•

5 years ago

Attached file Bug 1565013 - Populate hacl docker image with public key for clang+llvm verification r=jcj — Details

This patch adds a copy of the expected key for clang+llvm package verification, rather than fetching it each time we build.

J.C. Jones [:jcj] (he/they)

Comment 3

•

5 years ago

https://hg.mozilla.org/projects/nss/rev/67ef8e69aa7b281ab69cc7f24f3b37e47a4fb13e

Status: NEW → RESOLVED

Closed: 5 years ago

Resolution: --- → FIXED

Target Milestone: --- → 3.46

Comment hidden (Intermittent Failures Robot)

You need to log in before you can comment on or make changes to this bug.

Bugzilla

HACL image builder times out while fetching gpg key

Categories

(NSS :: Test, defect, P1)

Tracking

(Not tracked)

People

(Reporter: kjacobs, Assigned: kjacobs)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Comment 1

Comment 2

Comment 3

Comment 4

Attachment

General

Description

File Name

Content Type