Page MenuHome GnuPG
Create Task
Maniphest T6209

GnuPG unable to interact with any keyserver throwing a "Not enabled" error
Closed, ResolvedPublic
Actions

Description

Using Arch Linux after a recent update to GnuPG when I try to interact with a keyserver (like fetching a key or refreshing keys), gpg throws a "Not enabled" error. While using --recv-key fails I can download a public key from a keyserver and use the --import flag with no problem so it is just when gpg is trying to work with a keyserver. I did try restarting dirmngr and gpg-agent to no avail.

Example output:

[~]─> gpg -vvv --refresh-keys
gpg: using character set 'utf-8'
gpg: refreshing 61 keys from hkps://keys.openpgp.org
gpg: keyserver refresh failed: Not enabled

dirmngr.conf:

dirmngr.conf2 KBDownload

gpg-agent.conf:

gpg-agent.conf333 BDownload

gpg.conf:

gpg.conf5 KBDownload

Details

Version
gpg (GnuPG) 2.2.39 libgcrypt 1.10.1-unknown

Event Timeline

vendion created this task.Sep 16 2022, 12:15 PM
ikloecker added a subscriber: ikloecker.Sep 16 2022, 2:02 PM

I suspect that this has to do with your usage of tor (or gpg thinking that you use tor) because in dirmngr/dns-stuff.c I found

if (tor_mode)
  return gpg_error (GPG_ERR_NOT_ENABLED);

and all other places returning GPG_ERR_NOT_ENABLED seem to be related to S/MIME.

werner added a subscriber: werner.Sep 16 2022, 5:14 PM

The use of

   hkp-cacert /usr/share/gnupg/sks-keyservers.netCA.pem

does not make any sense - that keyserver network has been shutddown and the certs won't work. anymore. Also the use of the standard-resolver is not a good idea because it does not work with Tor.

vendion added a comment.Sep 16 2022, 9:34 PM
In T6209#163363, @werner wrote:

Also the use of the standard-resolver is not a good idea because it does not work with Tor.

It seems that was precisely the issue, sorry for the noise, I just couldn't find anything when I was searching the error message and didn't get any help on the Arch forums.

werner closed this task as Resolved.Sep 19 2022, 8:46 AM
werner claimed this task.
canti59 added a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:10 AM
gniibe removed a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:50 AM