gpg2 handles 1024R keys incorrectly
patrick at mozilla-enigmail.org
Wed Oct 18 08:39:42 CEST 2006
Hirohisa Yamaguchi wrote:
> While I'm testing gpg2 (1.9.92) on FreeBSD/amd64.
> I got messages below a thousand times.
> gpg: packet(2) too short
> gpg: keyring_get_keyblock: read error: invalid packet
> gpg: keydb_get_keyblock failed: invalid keyring
> I removed pubring.gpg from ~/.gnupg and tried to rebuild it.
> while adding 1024R keys (e.g. 0x16F4CCE9 from sendmail.org)
> I got following
> $ gpg2 --verbose --recv-keys 0x16F4CCE9
> gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
> gpg: It is only intended for test purposes and should NOT be
> gpg: used in a production environment or with production keys!
> Warning: using insecure memory!
> gpg: requesting key 16F4CCE9 from hkp server subkeys.pgp.net
> Version: SKS 1.0.9
> gpg: armor header:
> Sendmail Security <sendmail-security at sendmail.org>
> gpg: pub 1024R/E9CCF416 1999-06-23
> gpg: key E9CCF416: skipped user ID "Sendmail Security <sendmail-security at sendmail.org>"
> gpg: key E9CCF416: no valid user IDs
> gpg: this may be caused by a missing self-signature
> gpg: Total number processed: 1
> gpg: w/o user IDs: 1
I can confirm this (also with 2048R keys). E.g. import David's old key
with gpg (v1.4) and then list it with gpg2:
gpg2 --list-key 0x3CB3B415
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
gpg: error reading key: No public key
More information about the Gnupg-devel