Recently, I've been seeing more and more cases of eix-sync fail on key refresh from the key server. The following error is provided: OpenPGP keyring refresh failed: gpg: refreshing 4 keys from hkps://hkps.pool.sks-keyservers.net gpg: keyserver refresh failed: No keyserver available There are a few users who encounter this issue ( https://forums.gentoo.org/viewtopic-t-1084746.html ) Seems like this has to do with the fact that the hkps protocol is used, while only 1 or 2 servers from the pool support hkps ( as per list here: https://sks-keyservers.net/status/ )
Just had the very same happen to me.
Same here. FWIW, you can still sync using emerge-webrsync (cuz' no GPG check)
The bug is wrongly assigned: It has nothing to do eix. Changing subject and removing myself from CC list.
I hope that it is OK that I also changed the bug assignee to the IMHO correct team (portage). If you think that I was wrong, please drop me a pm (since I am no longer on CC for this bug).
In app-portage/gemato-14.0, keys are fetched via WKD by default, and it only falls back to hkps if one or more keys in the keychain (provided by app-crypt/openpgp-keys-gentoo-release) fails to import from WKD: https://github.com/mgorny/gemato/commit/909390c25a0ab589a4ae10d20cb9e321a51163b2
Hi Zac, I generally use eix-sync; forgive my ignorance here, should I be using gemato, or gemato is a package required by/depended on by eix-sync?
(In reply to Max Nokhrin from comment #6) > Hi Zac, > > I generally use eix-sync; forgive my ignorance here, should I be using > gemato, or gemato is a package required by/depended on by eix-sync? NVM guys, looked it up and get it now, thank you.
I met the same issue today.
Me too: vps-02 ~ # LC_ALL=C eix-sync -c emaint -C sync -C -A * Running emaint sync -A >>> Syncing repository 'gentoo' into '/usr/portage'... * Using keys from /usr/share/openpgp-keys/gentoo-release.asc * Refreshing keys via WKD ... [ !! ] * Refreshing keys from keyserver hkps://keys.gentoo.org ...OpenPGP keyring refresh failed: gpg: refreshing 4 keys from hkps://keys.gentoo.org gpg: keyserver refresh failed: General error OpenPGP keyring refresh failed: gpg: refreshing 4 keys from hkps://keys.gentoo.org gpg: keyserver refresh failed: General error OpenPGP keyring refresh failed: gpg: refreshing 4 keys from hkps://keys.gentoo.org gpg: keyserver refresh failed: General error
(In reply to Manuel Friedli from comment #9) > Me too: > > vps-02 ~ # LC_ALL=C eix-sync -c emaint -C sync -C -A > * Running emaint sync -A > >>> Syncing repository 'gentoo' into '/usr/portage'... > * Using keys from /usr/share/openpgp-keys/gentoo-release.asc > * Refreshing keys via WKD ... > [ !! ] > * Refreshing keys from keyserver hkps://keys.gentoo.org ...OpenPGP keyring > refresh failed: > gpg: refreshing 4 keys from hkps://keys.gentoo.org > gpg: keyserver refresh failed: General error > > OpenPGP keyring refresh failed: > gpg: refreshing 4 keys from hkps://keys.gentoo.org > gpg: keyserver refresh failed: General error > > OpenPGP keyring refresh failed: > gpg: refreshing 4 keys from hkps://keys.gentoo.org > gpg: keyserver refresh failed: General error Please file a new bug. The original issue was related to hkps://hkps.pool.sks-keyservers.net, but defaults have since changed to use WKD with hkps://keys.gentoo.org fallback.