[pkg-gnupg-maint] Bug#906545: gnupg 2.1 (in stretch) fails to fetch some ECC keys
Roger Shimizu
rogershimizu at gmail.com
Sat Aug 18 10:27:34 BST 2018
Package: gnupg
Version: 2.1.18-8~deb9u2
Severity: normal
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Dear Maintainer,
I'm trying to use my stretch box to caff sign the keys from DebConf18.
But I find that almost all ECC keys failed, except Niibe-san's one.
I digged a bit and find the reason is that caff fails to fetch those
ECC keys.
In order to avoid importing keys to the keyring, the following sample
use the caff's gnupghome directory.
Bad case:
$ GNUPGHOME=~/.caff/gnupghome gpg -v --recv-keys 0x86B2250DBAC0ABC0
gpg: data source: https://176.9.147.41:443
gpg: armor header: Version: SKS 1.1.6
gpg: armor header: Comment: Hostname: keyserver.ntzwrk.org
gpg: pub ed25519/0x86B2250DBAC0ABC0 2016-08-23 Shen-Ta Hsieh (謝昇達)
<sthsieh at synology.com>
gpg: key 0x86B2250DBAC0ABC0: no subkey for subkey binding signature
gpg: key 0x86B2250DBAC0ABC0: no subkey for key binding
gpg: key 0x86B2250DBAC0ABC0: no subkey for subkey binding signature
gpg: key 0x86B2250DBAC0ABC0: no subkey for key binding
gpg: key 0x86B2250DBAC0ABC0: no user ID for key signature packet of
class 13
gpg: key 0x86B2250DBAC0ABC0: no user ID for signature
gpg: Total number processed: 1
Good case:
$ GNUPGHOME=~/.caff/gnupghome gpg -v --recv-keys 0xE267B052364F028D
gpg: data source: https://176.9.147.41:443
gpg: armor header: Version: SKS 1.1.6
gpg: armor header: Comment: Hostname: keyserver.ntzwrk.org
gpg: pub ed25519/0xE267B052364F028D 2015-08-12 NIIBE Yutaka
<gniibe at fsij.org>
gpg: key 0xE267B052364F028D: invalid subkey binding
gpg: key 0xE267B052364F028D: "NIIBE Yutaka <gniibe at fsij.org>"
gpg: Total number processed: 1
And I confirm above issue cannot be reproduced under gnugp 2.2
(sid version).
So maybe this can be fixed for the stretch/stable version?
Thanks!
Cheers,
Roger
- -- System Information:
Debian Release: 9.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.16.0-0.bpo.2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages gnupg depends on:
ii gnupg-agent 2.1.18-8~deb9u2
ii libassuan0 2.4.3-2
ii libbz2-1.0 1.0.6-8.1
ii libc6 2.24-11+deb9u3
ii libgcrypt20 1.7.6-2+deb9u3
ii libgpg-error0 1.26-2
ii libksba8 1.3.5-2
ii libreadline7 7.0-3
ii libsqlite3-0 3.16.2-5+deb9u1
ii zlib1g 1:1.2.8.dfsg-5
Versions of packages gnupg recommends:
ii dirmngr 2.1.18-8~deb9u2
pn gnupg-l10n <none>
Versions of packages gnupg suggests:
pn parcimonie <none>
pn xloadimage <none>
- -- no debconf information
-----BEGIN PGP SIGNATURE-----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=HgPq
-----END PGP SIGNATURE-----
More information about the pkg-gnupg-maint
mailing list