hkps ssl problem

labrani labrani at
Tue Apr 29 10:41:42 CEST 2014


I'm having some problem while trying to use an hkps pool server as keyserver.
i am using gpg2 client version on a mac  os x maverick os.
i have download the cacert file from the site and i verify that i have the good one while testing with curl.

here is the configuration of my client :

keyserver hkps://
keyserver-options ca-cert-file=/pathto/.gnupg/sks-keyservers.netCA.pem
keyserver-options no-honor-keyserver-url
keyserver-options debug
keyserver-options verbose
keyserver-options verbose
auto-key-locate keyserver
keyid-format 0xlong
verify-options show-uid-validity
list-options show-uid-validity
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
personal-digest-preferences SHA512
cert-digest-algo SHA512

and here is the error i have :

gpg2 --recv-keys 0xD9B53384
gpg: requesting key 0xD9B53384 from hkps server
gpgkeys: curl version = libcurl/7.30.0 SecureTransport zlib/1.2.5
Command:	GET
* Adding handle: conn: 0x1184800
* Adding handle: send: 0
* Adding handle: recv: 0
* Curl_addHandleToPipeline: length: 1
* - Conn 0 (0x1184800) send_pipe: 1, recv_pipe: 0
* About to connect() to port 443 (#0)
*   Trying
* Connected to ( port 443 (#0)
* SSL certificate problem: Invalid certificate chain
* Closing connection 0
gpgkeys: HTTP fetch error 60: SSL certificate problem: Invalid certificate chain
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0

thxs for your help

-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20140429/1b13d41b/attachment-0001.html>

More information about the Gnupg-users mailing list