Re: I deleted 80 % of my keyring, but my keybox file isn't shrinking
Thanks, that explains it. And the faketime gpgsm command worked (after installing faketime). But that's a hack, and users should not have to do this. Especially since GnuPG 2.1 defauls to keybox and more people recommend it with of the recent flooding issues. I opened an issue to track this: https://dev.gnupg.org/T4644 Werner Koch: Good catch. In gpg we have not implenteted the compression run: faketime -f +3 gpgsm -k foo >/dev/null -- ilf If you upload your address book to "the cloud", I don't want to be in it. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: I deleted 80 % of my keyring, but my keybox file isn't shrinking
On Wed, 17 Jul 2019 23:41, i...@zeromail.org said: > But the keybox file didn't get any smaller: Good catch. In gpg we have not implenteted the compression run: /* FIXME: Do a compress run if needed and no other user is currently using the keybox. */ However, in gpgsm this is done. It does not work immediately but is run only on gpgsm invocation iff there has been np update operaion in the last 3 hours. Thus to force a compression run you can do: faketime -f +3 gpgsm -k foo >/dev/null Note that gpgsm's option --faked-system-time does not work here ( I pushed a fix, though). > PS: This could probably be updated: > >> Well, OpenPGP keys are not implemented, gpg still used the keyring >> file pubring.gpg. Will do. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. signature.asc Description: PGP signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: I deleted 80 % of my keyring, but my keybox file isn't shrinking
Hi all, On 18.07.19 12:19, ilf wrote: > Same on a different box with a different keyring. I trimmed it down from > ~1250 keys to ~350 keys, but the size of pubring.kbx remains 19M. > > Does --delete really mean *delete* with keybox? > > ilf: >> This got my keyring down from 4.600 to 1.000 keys: >> But the keybox file didn't get any smaller: You might try exporting your keys and importing them into a completely new pubring. Best Michael signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
I deleted 80 % of my keyring, but my keybox file isn't shrinking
Over the years, my keyring grew and got rather big. So I did some cleaning and deleted some revoked and otherwise useless certificates. (If you wonder how, see this script - feedback welcome: https://github.com/ilf/gpg-maintenance/blob/master/gpg-delete-revoked-keys.sh) This got my keyring down from 4.600 to 1.000 keys: % kbxutil --stats ~/.gnupg.bak/pubring.kbx | grep -e "Total" -e "openpgp" Total number of blobs: 4656 openpgp: 4617 % kbxutil --stats ~/.gnupg/pubring.kbx | grep -e "Total" -e "openpgp" Total number of blobs: 1041 openpgp: 1002 But the keybox file didn't get any smaller: % du -h ~/.gnupg/pubring.kbx ~/.gnupg.bak/pubring.kbx 99M ~/.gnupg/pubring.kbx 99M ~/.gnupg.bak/pubring.kbx Why is this? I really don't understand keybox well enough to answer this myself. Thanks! PS: This could probably be updated: Well, OpenPGP keys are not implemented, gpg still used the keyring file pubring.gpg. https://www.gnupg.org/documentation/manuals/gnupg/kbxutil.html -- ilf If you upload your address book to "the cloud", I don't want to be in it. ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
