Page MenuHome GnuPG
Create Task
Maniphest T1221

gpg misinterprets under-implemented keyservers as empty, misreports search results to users
Closed, ResolvedPublic
Actions

Description

hkp://keyring.debian.org used to return HTTP 406 when a user tried to do a gpg
--search (searching is not implemented in that keyserver). I pointed them at
the old HKP I-D, and they updated it to now return 501 when a search is attempted:

https://rt.debian.org/Ticket/Display.html?id=2220

(guest RT login is currently u:guest/p:readonly, according to
https://wiki.debian.org/rt.debian.org)

But gpg still does not report that the keyserver doesn't support the particular
query: http://bugs.debian.org/574915 -- instead, it tells the user that no key
was found. This seems misleading. And we ought to be able to do the Right
Thing, especially for keyserver operators/implementors who are willing to modify
their tool to report "unimplemented" properly.

#651 might also be relevant here.

Related Objects

Event Timeline

dkg added projects: gnupg, Bug Report.May 5 2010, 12:21 AM
dkg added a subscriber: dkg.
werner lowered the priority of this task from Normal to Wishlist.May 12 2010, 10:36 AM
werner removed a project: Bug Report.
werner added a project: Feature Request.
neal added a subscriber: neal.Nov 6 2015, 2:25 PM

This seems to still be a problem:

$ gpg2 --keyserver hkp://keyring.debian.org --search-keys dkg
gpg: error searching keyserver: No data
gpg: keyserver search failed: No data

justus claimed this task.Dec 3 2015, 5:54 PM
justus added a subscriber: justus.

The problem here is that the hkp client code folds all http status codes other
than 200 and 3xx into GPG_ERR_NO_DATA. This is also a problem for issue #1038.

justus closed this task as Resolved.Dec 4 2015, 1:02 PM

Fixed in a8308ba5.

% g10/gpg2 --keyserver hkp://keyring.debian.org --search-keys dkg
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
gpg: error searching keyserver: Not implemented
gpg: keyserver search failed: Not implemented