[systemd-devel] Fw: Errors using machinectl pull-tar and machinectl pull-dkr
Peter Paule
systemd-devel at fedux.org
Tue Feb 17 23:33:00 PST 2015
I tried systemd 219 on another system as well using some more debug
options. Here's the outcome of this.
1) Checking signature of tar.gz failed there as well
There's an error complaining about missing permissions to access
"/root/.gnupg/trustdb.gpg". It doesn't matter if the file exist. The
error is always the same.
Why does machinectl need access to that keyring? There's a keyring
available at
"/usr/lib/systemd/import-pubring.gpg", shouldn't "systemd-importd" also have
its own trustdb? Or is that import-pubring.gpg the trustdb of
"systemd-importd"
[root at host machinectl]# SYSTEMD_LOG_LEVEL=debug strace -o
/tmp/machinectl.log -f -e file machinectl pull-tar
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz
Sent message type=method_call sender=n/a
destination=org.freedesktop.DBus object=/org/freedesktop/DBus
interface=org.freedesktop.DBus member=Hello cookie=1 reply_cookie=0
error=n/a
Got message type=method_return sender=org.freedesktop.DBus
destination=:1.20 object=n/a interface=n/a member=n/a cookie=1
reply_cookie=1 error=n/a
Sent message type=method_call sender=n/a
destination=org.freedesktop.DBus object=/org/freedesktop/DBus
interface=org.freedesktop.DBus member=AddMatch cookie=2 reply_cookie=0
error=n/a
Sent message type=method_call sender=n/a
destination=org.freedesktop.DBus object=/org/freedesktop/DBus
interface=org.freedesktop.DBus member=AddMatch cookie=3 reply_cookie=0
error=n/a
Sent message type=method_call sender=n/a
destination=org.freedesktop.import1 object=/org/freedesktop/import1
interface=org.freedesktop.import1.Manager member=PullTar cookie=4
reply_cookie=0 error=n/a
Enqueued transfer job 1. Press C-c to continue download in background.
Got message type=signal sender=org.freedesktop.DBus destination=:1.20
object=/org/freedesktop/DBus interface=org.freedesktop.DBus
member=NameAcquired cookie=2 reply_cookie=0 error=n/a
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=6
reply_cookie=0 error=n/a
Pulling
'https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz', saving as
'trusty-server-cloudimg-amd64-root'.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=7
reply_cookie=0 error=n/a
Downloading 1.7K for
https://cloud-images.ubuntu.com/trusty/current/SHA256SUMS.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=8
reply_cookie=0 error=n/a
Download of https://cloud-images.ubuntu.com/trusty/current/SHA256SUMS
complete.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=9
reply_cookie=0 error=n/a
Downloading 177.6M for
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=10
reply_cookie=0 error=n/a
Downloading 836B for
https://cloud-images.ubuntu.com/trusty/current/SHA256SUMS.gpg.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=11
reply_cookie=0 error=n/a
Download of
https://cloud-images.ubuntu.com/trusty/current/SHA256SUMS.gpg complete.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=12
reply_cookie=0 error=n/a
Got 1% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=13
reply_cookie=0 error=n/a
Got 12% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 11s left at
13.1M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=14
reply_cookie=0 error=n/a
Got 18% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 12s left at
11.7M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=15
reply_cookie=0 error=n/a
Got 25% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 11s left at
11.9M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=16
reply_cookie=0 error=n/a
Got 31% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 10s left at
11.7M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=17
reply_cookie=0 error=n/a
Got 37% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 9s left at
11.5M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=18
reply_cookie=0 error=n/a
Got 45% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 8s left at
11.8M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=19
reply_cookie=0 error=n/a
Got 50% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 7s left at
11.5M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=20
reply_cookie=0 error=n/a
Got 56% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 6s left at
11.5M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=21
reply_cookie=0 error=n/a
Got 60% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 6s left at
11.0M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=22
reply_cookie=0 error=n/a
Got 65% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 5s left at
10.8M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=23
reply_cookie=0 error=n/a
Got 69% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 5s left at
10.4M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=24
reply_cookie=0 error=n/a
Got 74% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 4s left at
10.3M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=25
reply_cookie=0 error=n/a
Got 78% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 3s left at
10.1M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=26
reply_cookie=0 error=n/a
Got 83% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 2s left at
10.0M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=27
reply_cookie=0 error=n/a
Got 88% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 2s left at
9.8M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=28
reply_cookie=0 error=n/a
Got 94% of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz. 1s left at
9.8M/s.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=29
reply_cookie=0 error=n/a
Download of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz
complete.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=30
reply_cookie=0 error=n/a
SHA256 checksum of
https://cloud-images.ubuntu.com/trusty/current/trusty-server-cloudimg-amd64-root.tar.gz is
valid.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=31
reply_cookie=0 error=n/a
gpg: Signature made Tue 17 Feb 2015 05:27:03 AM UTC using RSA key ID 7DB87C81
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=32
reply_cookie=0 error=n/a
gpg: can't access '/root/.gnupg/trustdb.gpg': Permission denied
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=33
reply_cookie=0 error=n/a
gpg: Fatal: can't init trustdb: Trust DB error
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=34
reply_cookie=0 error=n/a
gpg failed with error code 2.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=35
reply_cookie=0 error=n/a
Signature verification failed.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1/transfer/_1
interface=org.freedesktop.import1.Transfer member=LogMessage cookie=36
reply_cookie=0 error=n/a
Exiting.
Got message type=signal sender=:1.21 destination=n/a
object=/org/freedesktop/import1
interface=org.freedesktop.import1.Manager member=TransferRemoved
cookie=37 reply_cookie=0 error=n/a
At first the file does not exist. But the error also occurs if the
file exists.
[root at host]# ls -al /root/.gnupg/trustdb.gpg
ls: cannot access /root/.gnupg/trustdb.gpg: No such file or directory
[root at host]# gpg --update-trustdb
gpg: keybox '/root/.gnupg/pubring.kbx' created
gpg: /root/.gnupg/trustdb.gpg: trustdb created
gpg: no ultimately trusted keys found
Running the command again raises the same error.
Here's an excerpt from the logs:
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) gpg: Signature
made Tue 17 Feb 2015 05:27:03 AM UTC using RSA key ID 7DB87C81
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) gpg: can't
access '/root/.gnupg/trustdb.gpg': Permission denied
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) gpg: Fatal:
can't init trustdb: Trust DB error
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) gpg failed
with error code 2.
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) Signature
verification failed.
Feb 18 06:57:31 host systemd-importd[1437]: (transfer1) Exiting.
Feb 18 06:57:32 host systemd-importd[1437]: Import process failed with
exit code 1.
BTW: There was also the following error in the logs
Feb 18 06:57:15 host systemd-pull[1438]: Libgcrypt warning: missing
initialization - please fix the application
2) Download docker images
Is this a btrfs-only feature? The only hint for this I found is this part of
the machinectl-manual: "places them in read-only subvolumes in
/var/lib/machines".
Would it be possible to make it usable on other filesystems - e.g.
ext4 - as well?
Cheers
/pp
More information about the systemd-devel
mailing list