[pkg-gnupg-maint] Bug#867268: dirmngr: Can't set nameserver port

Sandro Knauß hefee at debian.org
Wed Jul 5 10:43:45 UTC 2017 

Package: gnupg2
Version: 2.1.21-2
Severity: normal

Hey,

I'm using gnupg with use-tor option and a onion address as keyserver.
All wents find to search keys over the keyserver and so one. But it
fails, if I try to search at a keyserver with a "normal" dns name like
keyserver.debian.org:

$ gpg --keyserver hkp://keyring.debian.org --recv-key 0x78754D07BC095C7448F78D66058C1CF944F6BD3C
gpg: keyserver receive failed: Invalid textual address form

if I comment in my dirmgr.conf the use-tor. It all works fine:
$ killall dirmngr
$ gpg2 --keyserver hkp://keyring.debian.org --recv-key 0x78754D07BC095C7448F78D66058C1CF944F6BD3C
gpg: key 0xB82A217AFDFE09F2: "David Prévot <david at tilapin.org>" not changed
gpg: Total number processed: 1
gpg:              unchanged: 1

from the dirmngr.log it looks like the problem is my nameserver entry in
dirmgr:
failed to set nameserver '[127.0.0.1:1053]:53': Invalid textual address form
resolving 'keyring.debian.org' failed: Invalid textual address form
can't connect to 'keyring.debian.org': host not found
error connecting to 'http://keyring.debian.org:11371': Invalid textual address form

so it looks like he is unhappy about my nameserver entry in dirmgr.conf:
nameserver 127.0.0.1:1053

it is quite unexpected, that I can't overwrite the port for the nameserver. The nameserver port is the dnsport from tor:
/etc/tor/torrc:

DNSPort 127.0.0.1:1053

and I actually wants to make sure that gnupg is using dns over tor.

Best Regards,

sandro

PS: dirmngr.conf:
use-tor
nameserver 127.0.0.1:1053
keyserver hkp://jirk5u4osbsr34t5.onion
log-file /tmp/dirmngr.log
debug-level expert
disable-ldap
disable-http
ignore-ldap-dp

allow-ocsp
ocsp-responder http://wwwkeys.eu.pgp.net
honor-http-proxy
ignore-ocsp-service-url


-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'oldstable-updates'), (500, 'unstable'), (500, 'testing'), (500, 'oldstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE=en_US (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gnupg2 depends on:
ii  gnupg  2.1.21-2

gnupg2 recommends no packages.

gnupg2 suggests no packages.

-- no debconf information

More information about the pkg-gnupg-maint mailing list