在构建打包机映像时,在使用ansible:安装epel的过程中
- name: install EPEL yum repository
yum:
name: https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
state: present
我得到这个错误:
fatal: [default]: FAILED! => {"changed": false, "msg": "warning: /home/centos/~user/.ansible/tmp/ansible-tmp-1602677619.35-135127023136118/epel-release-latest-7.noarch4i6J_H.rpm: Header V3 RSA/SHA256 Signature, key ID 352c64e5: NOKEYnnnPublic key for epel-release-latest-7.noarch4i6J_H.rpm is not installedn", "rc": 1, "results": ["Loaded plugins: fastestmirrornExamining /home/centos/~user/.ansible/tmp/ansible-tmp-1602677619.35-135127023136118/epel-release-latest-7.noarch4i6J_H.rpm: epel-release-7-12.noarchnMarking /home/centos/~user/.ansible/tmp/ansible-tmp-1602677619.35-135127023136118/epel-release-latest-7.noarch4i6J_H.rpm to be installednResolving Dependenciesn--> Running transaction checkn---> Package epel-release.noarch 0:7-12 will be installedn--> Finished Dependency ResolutionnnDependencies Resolvednn================================================================================n Package Arch Version Repository Sizen================================================================================nInstalling:n epel-release noarch 7-12 /epel-release-latest-7.noarch4i6J_H 24 knnTransaction Summaryn================================================================================nInstall 1 PackagennTotal size: 24 knInstalled size: 24 knDownloading packages:n"]}
to retry, use: --limit @/home/ansible/install.retry
PLAY RECAP *********************************************************************
default : ok=3 changed=2 unreachable=0 failed=1
有人面临类似的问题吗?
您的系统上缺少epel GPG密钥,您应该添加
disable_gpg_check: yes
到您的任务中完全跳过gpg检查(不安全,不良做法(,或使用rpm_key
模块添加实际的gpg密钥,即在运行任务之前
- name: Import a key from a url
rpm_key:
state: present
key: https://dl.fedoraproject.org/pub/epel/RPM-GPG-KEY-EPEL-7
你可以在重剑根部找到合适的钥匙。
然而,如果你有一个centos 7系统,添加epel的最简单方法是安装epel发布包,而不需要从fedora项目中实际提取rpm,即
- name: install EPEL yum repository
yum:
name: epel-release
state: present