8000 apt_key fails if keyring option is used. "msg": "key does not seem to have been added" · Issue #72741 · ansible/ansible · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
apt_key fails if keyring option is used. "msg": "key does not seem to have been added" #72741
New issue
New issue
Open
Open
apt_key fails if keyring option is used. "msg": "key does not seem to have been added"#72741
Labels
P3Priority 3 - Approved, No Time Limitationaffects_2.9This issue/PR affects Ansible v2.9bugThis issue/PR relates to a bug.moduleThis issue/PR relates to a module.packagingPackaging categorysupport:coreThis issue/PR relates to code supported by the Ansible Engineering Team.
@selivan

Description

@selivan
selivan
opened on Nov 27, 2020
SUMMARY

apt_key module fails to add key if keyring option is specified.

Same configuration work fine without keyring option, using default common keyring file /etc/apt/trusted.gpg.

ISSUE TYPE
  • Bug Report
COMPONENT NAME

apt_key

ANSIBLE VERSION
ansible 2.9.15
  config file = /etc/ansible/ansible.cfg
  configured module search path = [u'/home/user/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules']
  ansible python module location = /usr/lib/python2.7/dist-packages/ansible
  executable location = /usr/bin/ansible
  python version = 2.7.17 (default, Sep 30 2020, 13:38:04) [GCC 7.5.0]
CONFIGURATION
ANSIBLE_NOCOWS(/home/user/ansible/ansible.cfg) = True
ANSIBLE_PIPELINING(/home/user/ansible/ansible.cfg) = True
ANSIBLE_SSH_CONTROL_PATH(/home/user/ansible/ansible.cfg) = /tmp/ansible-ssh-%%h-%%p-%%r
ANSIBLE_SSH_RETRIES(/home/user/ansible/ansible.cfg) = 1
CACHE_PLUGIN(/home/user/ansible/ansible.cfg) = memory
DEFAULT_FORKS(/home/user/ansible/ansible.cfg) = 20
DEFAULT_HOST_LIST(/home/user/ansible/ansible.cfg) = [u'/home/user/ansible/inventory']
DEFAULT_JINJA2_EXTENSIONS(/home/user/ansible/ansible.cfg) = jinja2.ext.do,jinja2.ext.loopcontrols
DEFAULT_MANAGED_STR(/home/user/ansible/ansible.cfg) = Ansible managed: {file} modified by {uid} on {host}
DEFAULT_MODULE_NAME(/home/user/ansible/ansible.cfg) = shell
DEFAULT_TRANSPORT(/home/user/ansible/ansible.cfg) = smart
DEFAULT_VARS_PLUGIN_PATH(/home/user/ansible/ansible.cfg) = [u'/usr/lib/python2.7/dist-packages/ansible/plugins/vars']
RETRY_FILES_ENABLED(/home/user/ansible/ansible.cfg) = False
OS / ENVIRONMENT

Tagret host OS: Ubuntu 16.04.7 LTS with latest updates

STEPS TO REPRODUCE
- name: add certbot repository key
  apt_key:
    data: "{{ lookup('file', 'apt-key-certbot.asc') }}"
    keyring: certbot_ubuntu_certbot.gpg
    id: 75BCA694
    state: present

apt-key-certbot.asc: https://gist.github.com/selivan/90d37fd76b56f5d1622c2196ebbb183c

EXPECTED RESULTS

Key should be added successfully to /etc/apt/trusted.gpg.d/certbot_ubuntu_certbot.gpg

ACTUAL RESULTS

"msg": "key does not seem to have been added"

TASK [letsencrypt : add certbot repository key] *********************************************************************************************************
task path: /home/user/ansible/roles/letsencrypt/tasks/main.yml:17
Using module file /usr/lib/python2.7/dist-packages/ansible/modules/packaging/os/apt_key.py
Pipelining is enabled.
<N.N.N.N> ESTABLISH SSH CONNECTION FOR USER: pavel.selivanov
<N.N.N.N> SSH: EXEC ssh -C -o ControlMaster=auto -o ControlPersist=60s -o KbdInteractiveAuthentication=no -o PreferredAuthentications=gssapi-with-mic,gssapi-keyex,hostbased,publickey -o PasswordAuthentication=no -o 'User="pavel.selivanov"' -o ConnectTimeout=10 -o 'ProxyCommand= ssh pavel.selivanov@172.20.113.11 -o Port=22 -W %h:%p' -o ControlPath=/tmp/ansible-ssh-%h-%p-%r N.N.N.N '/bin/sh -c '"'"'sudo -H -S -n  -u root /bin/sh -c '"'"'"'"'"'"'"'"'echo BECOME-SUCCESS-yewbnlqukjbrcqvbrdmozotqsiirllum ; /usr/bin/python'"'"'"'"'"'"'"'"' && sleep 0'"'"''
Escalation succeeded
<N.N.N.N> (1, '\n{"msg": "key does not seem to have been added", "failed": true, "id": "75BCA694", "invocation": {"module_args": {"file": null, "keyserver": null, "url": null, "validate_certs": true, "keyring": "certbot_ubuntu_certbot", "state": "present", "key": null, "data": "-----BEGIN PGP PUBLIC KEY BLOCK-----\\r\\n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\\r\\nMH02CcBF3c+pR6ZREHnyoN2wqY8Qkw==\\r\\n=bXUY\\r\\n-----END PGP PUBLIC KEY BLOCK-----", "id": "75BCA694"}}}\n', '')
<N.N.N.N> Failed to connect to the host via ssh: 
fatal: [rep1-ire1]: FAILED! => {
    "changed": false, 
    "id": "75BCA694", 
    "invocation": {
        "module_args": {
            "data": "-----BEGIN PGP PUBLIC KEY BLOCK-----\r\n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\r\nMH02CcBF3c+pR6ZREHnyoN2wqY8Qkw==\r\n=bXUY\r\n-----END PGP PUBLIC KEY BLOCK-----", 
            "file": null, 
            "id": "75BCA694", 
            "key": null, 
            "keyring": "certbot_ubuntu_certbot", 
            "keyserver": null, 
            "state": "present", 
            "url": null, 
            "validate_certs": true
        }
    }, 
    "msg": "key does not seem to have been added"
}

Metadata

Metadata

Assignees

No one assigned

    Labels

    P3Priority 3 - Approved, No Time Limitationaffects_2.9This issue/PR affects Ansible v2.9bugThis issue/PR relates to a bug.moduleThis issue/PR relates to a module.packagingPackaging categorysupport:coreThis issue/PR relates to code supported by the Ansible Engineering Team.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      0