support hkps key servers
Reported by steve | December 20th, 2012 @ 07:11 PM | in 2.0.26b3 (closed)
Add support for hkps key servers
When that is done, test and add the following key servers
- hkps://keys.indymedia.org
- hkps://keys.mayfirst.org
- hkps://keys.riseup.net
- hkps://pgp.mit.edu
- hkps://hkps.pool.sks-keyservers.net
Also see
Comments and changes to this ticket
-
Mento April 11th, 2013 @ 12:51 PM
- State changed from “new” to “hold”
- Importance changed from “” to “Low”
gpg2 wirft folgenden Fehler wenn ein hkps Server verwendet wird:
gpgkeys: HTTP search error 60: SSL certificate problem, verify that the CA cert is OK. Details: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failedDaher werden vorerst keine hkps Server hinzugefügt.
-
Patrick Fasano August 4th, 2013 @ 04:08 PM
An update for this -- the HKPS servers in the SKS Keyservers pool use the SKS Keyservers CA -- this is documented here and CA certificate is available at https://sks-keyservers.net/sks-keyservers.netCA.pem
According to the documentation, these lines in gpg.conf would allow it to work -- not sure what else it would break:
keyserver hkps://hkps.pool.sks-keyservers.net keyserver-options ca-cert-file=/path/to/CA/sks-keyservers.netCA.pem -
-
mark hellewell July 9th, 2014 @ 02:03 PM
I came across this issue while using the GPGTools bundle from gpgtools.org. In order to be able to specify a
keyserver-options ca-cert-file=…in your config file, the libcurl gpg was built with must have OpenSSL support.The options in my gpg.conf
keyserver hkps://hkps.pool.sks-keyservers.net keyserver-options ca-cert-file=/path/to/sks-keyservers.netCA.pemResult in the following error from gpg when interacting with the keyserver:
gpgkeys: HTTP search error 60: SSL certificate problem: Invalid certificate chain -
-
-
-
steve November 19th, 2014 @ 10:45 PM
- Title changed from “add hkps.pool.sks-keyservers.net to key server list” to “support hkps key servers”
-
Support November 21st, 2014 @ 11:06 PM
(from [2b00ba57a691a9824c80a1362ab8ac3cc1845ca2]) [FIX] Support for hkps://hkps.pool.sks-keyservers.net
curl with ca-cert support added.
[#119] https://github.com/GPGTools/MacGPG2/commit/2b00ba57a691a9824c80a136... -
steve November 22nd, 2014 @ 11:36 AM
- Assigned user set to “Mento”
- Milestone set to “2.0.27”
-
steve November 22nd, 2014 @ 08:32 PM
- State changed from “hold” to “verified”
This is now supported. We still need to adjust the key server list.
https://gpgtools.lighthouseapp.com/projects/65684-gpg-keychain-acce...
will deal with the remaining tasks.
-
steve December 30th, 2014 @ 07:32 PM
- Milestone changed from “2.0.27” to “2.0.26b3”
-
Please Sign in or create a free account to add a new ticket.
With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.
Create new ticket
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
Alex (via GPGTools)
Luke Le
steve