[PATCH libgcrypt] * gcrypt.h.in: Set appropriate algo id for ECDSA and ECDH
Kristian Fiskerstrand
kristian.fiskerstrand at sumptuouscapital.com
Tue Nov 27 18:07:46 CET 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 11/27/2012 05:39 PM, Werner Koch wrote:
> On Mon, 19 Nov 2012 19:26,
> kristian.fiskerstrand at sumptuouscapital.com said:
>> Fair enough, but GnuPG is getting this from libgcrypt in
>> keyserver.c on line 509 which use
>>
>> const char *str = gcry_pk_algo_name (keyrec->type);
>
> Alright, this needs to be mapped from openpgp ids to gcrypt ids. I
> just pushed two fixes for 2.0 and master.
>
Just tried the patch and this works for me, thanks!
On another note, the dirmngr seems to be doing a reverse lookup (PTR)
on the records and use this for connecting rather than the provided
server name. This cause issues with keyservers on e.g. virtual host
settings that are expecting the specific name or the pool names to be
used (the pool crawler checks for an appropriate response using a
Host: header belonging to the pool before including a server) , and
result in NO DATA responses. In addition it cause problems with SNI
for TLS connections.
Beware that similar symptoms will also be the case when using the
keys.gnupg.net CNAME as not all servers are configured to respond to
this Host:.
- --
- ----------------------------
Kristian Fiskerstrand
http://www.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Primum ego, tum ego, deinde ego
First I, then I, thereafter I.
- ----------------------------
This email was digitally signed using the OpenPGP
standard. If you want to read more about this
The book: Sending Emails - The Safe Way: An
introduction to OpenPGP security is
available in both Amazon Kindle and Paperback
format at
http://www.amazon.com/dp/B006RSG1S4/
- ----------------------------
Public PGP key 0xE3EDFAE3 at http://www.sumptuouscapital.com/pgp/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.1.0-beta100 (GNU/Linux)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=SeI9
-----END PGP SIGNATURE-----
More information about the Gnupg-devel
mailing list