Page MenuHome GnuPG
Create Task
Maniphest T800

When sig-keyserver-url is set and pgp[267] are used, spurious warnings are printed
Closed, ResolvedPublic
Actions

Description

With sig-keyserver-url $URL in gpg.conf:

$ gpg --pgp7 --detach-sign test

You need a passphrase to unlock the secret key for
[...]
gpg: can't put a preferred keyserver URL into v3 signatures

Now, I know that I can't do that but I don't want to be told about it
every time I sign something when I've explcitly enabled --pgp7. Would
it be unreasonable to ignore preferred keyserver urls when pgp[67] are
used?

I've been using the attached patch (minus the pgp2 part which I just
added) for a while to do just this and I haven't noticed any problems.
(There may be cleaner ways to do this, but this was what I got working
without knowing the code too well. :)

If it's not appropriate to patch this out, is there a good way to
silence this without losing other info? The --quiet option doesn't do
it.

Details

Version
1.4

Related Objects

Event Timeline

tmz added a subscriber: tmz.May 21 2007, 6:14 PM

D42: 134_gpg-pgp-compat.diff

tmz added projects: gnupg, Bug Report.May 21 2007, 6:14 PM
tmz set Version to 1.4.
werner added a subscriber: werner.Jun 4 2007, 6:12 PM

David, what do you say?

werner assigned this task to dshaw.Jun 4 2007, 6:12 PM
werner added a subscriber: dshaw.
dshaw added a comment.Jun 7 2007, 2:54 AM

I think this is good, but doesn't go far enough. I'm thinking that if
force_v3_sigs is set (either directly or via --pgpX commands), then we should
allow that to override all of policy URLs, notations, and keyserver URLs. Right
now, it only overrides expiration dates, which is inconsistent (overriding some
v4 features, but not all). I'll see what I can make for that.

dshaw added a comment.Jul 7 2007, 2:55 AM

This is done. --force-v3-sigs (including --pgpX) disables all v4 sig features.

dshaw closed this task as Resolved.Jul 7 2007, 2:55 AM