regression handling keyserver directives [was: Re: [Announce] GnuPG 2.2.20 released]

Phil Pennock gnupg-devel at spodhuis.org
Wed Mar 25 03:27:42 CET 2020


On 2020-03-24 at 10:09 +0100, Werner Koch via Gnupg-devel wrote:
> It seems to be a DNS problem with a wrong error code emitted.  Did you
> used
> 
>   debug dns,network
>   verbose
> 
> in your dirmngr.conf?

I wrote:
} With verbose / debug-all / gnutls-debug 9

That is:

    log-file /home/pdp/.gnupg/log.dirmngr
    verbose
    debug-all
    gnutls-debug 9

Moving aside ~/.gnupg/gpg.conf to use defaults, I get the failure from
the default of `hkps://hkps.pool.sks-keyservers.net`; I see the same for
`hkps://keys.openpgp.org` and `hkp://keys.openpgp.org`.

A bare `--keyserver pool.sks-keyservers.net` works.

I'm using systemd's resolved as the DNS resolver, and do not have IPv6
connectivity at home (sigh).

Compilation environment and configure args:

      "env": [
        "PKG_CONFIG_PATH=#{prefix}/lib/pkgconfig",
        "LDFLAGS=-L#{prefix}/lib -Wl,-R#{prefix}/lib"
      ],
      "params": [
        "--disable-nls",
        "--disable-ldap",
        "--enable-noexecstack",
        "--enable-key-cache=32768",
        "--enable-wks-tools",
        "--with-pinentry-pgm=#{prefix}/bin/pinentry-curses",
        "--with-libgpg-error-prefix=#{prefix}",
        "--with-libassuan-prefix=#{prefix}",
        "--with-libgcrypt-prefix=#{prefix}",
        "--with-ksba-prefix=#{prefix}",
        "--with-npth-prefix=#{prefix}"
      ],

    plus --prefix=/opt/gnupg

My attempts to add more logging seem to have triggered a switch to a
different error code so I'm doing something wrong and can't spend more
time on this now to chase further, sorry.  (I saw the error switch to
"Syntax error in URI" and do_parse_uri() trying to parse a URI from
the 0xFingerprint, not seeing what I changed to cause _that_).

-Phil



More information about the Gnupg-devel mailing list