Adding new uid to causes bad signature

Ming Kuang ming at imkuang.com
Sat May 4 09:34:36 CEST 2024 

On Friday, May 3, 2024 8:44 PM +0800, Eva Bolten wrote:
> [snip]
> Importing your second pubkey did not change anything noticeable, gpg reported
> no changes on the key and there is no new UID to be seen.
> So it seems it was not exported. To avoid any confusion does

This may be due to the fact that gunpg ignores invalid self-signed uids by default.
There is an --allow-non-selfsigned-uid parameter that allows importing such a uid (
replaced email addresses to avoid crawler spamming):

~$ gpg --verbose --import --allow-non-selfsigned-uid test2.asc
gpg: pub  ed25519/29AD46D6F58287A3 2022-10-26  Rens Rikkerink <xxx1>
gpg: key 29AD46D6F58287A3: 1 bad signature
gpg: key 29AD46D6F58287A3: invalid self-signature on user ID "Rens Rikkerink <xxx2>"
gpg: key 29AD46D6F58287A3: accepted non self-signed user ID "Rens Rikkerink <xxx2>"
gpg: key 29AD46D6F58287A3: "Rens Rikkerink <xxx1>" 1 new user ID
gpg: key 29AD46D6F58287A3: "Rens Rikkerink <xxx1>" 1 new signature
gpg: Total number processed: 1
gpg:           new user IDs: 1
gpg:         new signatures: 1

And I've noticed that the preferences list seems a bit strange (only SHA1 digest?):
gpg> showpref
[ unknown] (1). Rens Rikkerink < xxx1>
     Cipher: AES256, AES192, AES, 3DES
     AEAD: OCB, [1]
     Digest: SHA512, SHA384, SHA256, SHA224, SHA1
     Compression: ZLIB, BZIP2, ZIP, Uncompressed
     Features: MDC, Keyserver no-modify
[ unknown] (2)  Rens Rikkerink < xxx2>
     Cipher: 3DES
     AEAD:
     Digest: SHA1
     Compression: ZIP, Uncompressed
     Features: AEADKeyserver no-modify

Also, @Werner, Do we have an error in the formatting of the Features line of the
showpref command in --edit-key? I think there should be a comma between "AEAD"
and "Keyserver no-modify".
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 834 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20240504/4616e080/attachment.sig>

More information about the Gnupg-users mailing list