Bug#811146: [pkg-gnupg-maint] Bug#811146: gnupg2: gpg2.1 failing to handle hkps keyservers
Version: 2.1.15-9 On Mon 2016-11-14 18:13:05 +0900, Phil Dibowitz wrote: > On 11/14/2016 12:14 AM, Daniel Kahn Gillmor wrote: >> If everything is working for you now, i suspect we can close this ticket >> (or close it by merging with 834602 if that was really the issue). > > Just re-tested, looks good. Thanks for following up. great to hear, thanks. I haven't tried to bisect the history to know where it was fixed; if you do find an earlier version where it was fixed, feel free to update this report to make the fixed version more precise than 2.1.15-9 i've noted above. --dkg signature.asc Description: PGP signature
Bug#811146: [pkg-gnupg-maint] Bug#811146: gnupg2: gpg2.1 failing to handle hkps keyservers
On 11/14/2016 12:14 AM, Daniel Kahn Gillmor wrote: > If everything is working for you now, i suspect we can close this ticket > (or close it by merging with 834602 if that was really the issue). Just re-tested, looks good. Thanks for following up. -- Phil Dibowitz p...@ipom.com Open Source software and tech docsInsanity Palace of Metallica http://www.phildev.net/ http://www.ipom.com/ "Be who you are and say what you feel, because those who mind don't matter and those who matter don't mind." - Dr. Seuss signature.asc Description: OpenPGP digital signature
Bug#811146: [pkg-gnupg-maint] Bug#811146: gnupg2: gpg2.1 failing to handle hkps keyservers
Control: tags 811146 + moreinfo unreproducible Hi Phil-- On Sun 2016-01-31 03:02:19 +0900, Phil Dibowitz wrote: > On 01/25/2016 12:24 PM, Daniel Kahn Gillmor wrote: >> this looks like gpg, since the 2.1 series is currently provided as >> /usr/bin/gpg2. >> >> what does gpg --version tell you? >> >> gpg 2.1 never talks to the network itself at all; it relies entirely on >> dirmngr to do that work. > > [phil@rider ~]$ gpg --version > gpg (GnuPG) 2.1.11 > > [phil@rider ~]$ type gpg > gpg is aliased to `/usr/bin/gpg2' > > > The same results happen calling 'gpg2' directly. Does this still fail for you? There have been many fixes in dirmngr and gnupg2 since #811146 was reported. Also, i just now noticed that in your original bug report, there are at least two different versions of dirmngr active: 2.1.8 and 2.1.10 (And in your followup, you've got gpg 2.1.11). the interdependencies between gnupg and dirmngr versions are now also much tighter (see https://bugs.debian.org/834602). If everything is working for you now, i suspect we can close this ticket (or close it by merging with 834602 if that was really the issue). --dkg signature.asc Description: PGP signature
Bug#811146: [pkg-gnupg-maint] Bug#811146: gnupg2: gpg2.1 failing to handle hkps keyservers
On 01/25/2016 12:24 PM, Daniel Kahn Gillmor wrote: > this looks like gpg, since the 2.1 series is currently provided as > /usr/bin/gpg2. > > what does gpg --version tell you? > > gpg 2.1 never talks to the network itself at all; it relies entirely on > dirmngr to do that work. [phil@rider ~]$ gpg --version gpg (GnuPG) 2.1.11 [phil@rider ~]$ type gpg gpg is aliased to `/usr/bin/gpg2' The same results happen calling 'gpg2' directly. -- Phil Dibowitz p...@ipom.com Open Source software and tech docsInsanity Palace of Metallica http://www.phildev.net/ http://www.ipom.com/ "Be who you are and say what you feel, because those who mind don't matter and those who matter don't mind." - Dr. Seuss signature.asc Description: OpenPGP digital signature
Bug#811146: [pkg-gnupg-maint] Bug#811146: gnupg2: gpg2.1 failing to handle hkps keyservers
Hi Phil-- On Fri 2016-01-15 23:07:53 -0500, Phil Dibowitz wrote: > Sometime recently gpg2.1 stopped handling HKPS keyservers. dirmngr can > still do it if I ask directly, but gpg2.1 won't. All of the debug info I > can think of is below. > > Relevant ~/.gnupg/gpg.conf lines: > > keyserver hkps://hkps.pool.sks-keyservers.net > keyserver-options auto-key-retrieve no-honor-keyserver-url include-revoked > > Relevant ~/.gnupg/dirmngr.conf lines: > > hkp-cacert /usr/local/share/ca-certificates/sks-keyservers.netCA.pem > > When I try through gpg (first without debug for clarity) I get: > > $ gpg --search-key 58E11BB1E414D9AD > gpg: error searching keyserver: General error > gpg: keyserver search failed: General error this looks like gpg, since the 2.1 series is currently provided as /usr/bin/gpg2. what does gpg --version tell you? gpg 2.1 never talks to the network itself at all; it relies entirely on dirmngr to do that work. --dkg