Comments (3)
@crazy-max any ideas on how this could be solved? I'll give the implementation a shot once there's a plan.
from ghaction-import-gpg.
We struggle with this as well. Error logs from attempting to encrypt deployment secrets via helm secrets
:
Could not generate data key: [failed to encrypt new data key with master key "*************": could not encrypt data key with PGP key: golang.org/x/crypto/openpgp error: key with fingerprint ************* is not available in keyring and could not be retrieved from keyserver; GPG binary error: exit status 2]
Error: plugin "secrets" exited with error
Error: Process completed with exit code 1.
The actual fingerprint has been replaced by *************. The aforementioned logs from the Post step are identical for us. We are currently executing this action with a concurrency of 7. Most of these steps succeed but 1-3 will always fail. If we re-run those, they will be successful as well.
from ghaction-import-gpg.
There is another error message that we sometimes see when invoking our helm secrets
step concurrently:
Group 0: FAILED
*************: FAILED
- | could not decrypt data key with PGP key:
| github.com/ProtonMail/go-crypto/openpgp error: Could not
| load secring: open /home/github/.gnupg/secring.gpg: no such
| file or directory; GPG binary error: exit status 2
Recovery failed because no master key was able to decrypt the file. In
order for SOPS to recover the file, at least one key has to be successful,
but none were.
Error: plugin "secrets" exited with error
Error: Process completed with exit code 1.
Here, the fingerprint has been replaced by ************* and the Post step logs complain about not finding the key as well.
from ghaction-import-gpg.
Related Issues (20)
- No errors but can't sign commits HOT 5
- Set trust on private key import HOT 2
- Transient ERR 67108891 Not found <GPG Agent> HOT 5
- Error: Misformed armored text HOT 1
- Delete key fails when you use set a subkey for the fingerprint input HOT 2
- 67108933 Not implemented <GPG Agent> HOT 3
- No secret key when signing with goreleaser HOT 1
- Allow using any UID from a key
- Deprecated Node.js 12 actions (Update to Node.js 16) HOT 2
- Unable to export GPG key HOT 3
- Keygrip empty
- SSH Signing-Key Support? HOT 1
- Input required and not supplied: gpg_private_key HOT 2
- Error raised if '.gnupg/gpg-agent.conf' does not exist HOT 2
- openpgp is an outdated version that does not support ECC keys HOT 4
- Getting error `gpg: error reading key: No secret key` HOT 4
- Suggestion: pass or allow `--global` flag when configuring properties in `git config` HOT 2
- Post-cleanup GPG action generates a warning if the same key is imported twice HOT 1
- Support `if-asked` for `git-push-gpgsign` HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ghaction-import-gpg.