我在 macOS 上运行gpg (GnuPG) 2.2.10
。
我尝试将其用作hkps://hkps.pool.sks-keyservers.net
密钥服务器。由于keyserver
的选项gnupg
已弃用,因此我将以下内容添加到~/.gnupg/dirmngr.conf
:
# dirmngr.conf
keyserver hkps://hkps.pool.sks-keyservers.net
据我了解,该证书与此版本的 捆绑在一起gnupg
,并且sks-keyservers.netCA.pem
确实存在于 中/usr/local/share/gnupg
。
我有两个问题:
1. 密钥服务器不工作
尝试对密钥服务器执行任何操作都会产生以下结果No route to host
:
$ gpg -vvv --debug-all --search-keys [Some KeyID]
gpg: reading options from '/Users/username/.gnupg/gpg.conf'
gpg: using character set 'utf-8'
gpg: enabled debug flags: packet mpi crypto filter iobuf memory cache memstat trust hashing ipc clock lookup extprog
gpg: DBG: [not enabled in the source] start
gpg: DBG: chan_6 <- # Home: /Users/username/.gnupg
gpg: DBG: chan_6 <- # Config: /Users/username/.gnupg/dirmngr.conf
gpg: DBG: chan_6 <- OK Dirmngr 2.2.10 at your service
gpg: DBG: connection to the dirmngr established
gpg: DBG: chan_6 -> GETINFO version
gpg: DBG: chan_6 <- D 2.2.10
gpg: DBG: chan_6 <- OK
gpg: DBG: chan_6 -> KS_SEARCH -- [Some KeyID]
gpg: DBG: chan_6 <- ERR 167804970 No route to host <Dirmngr>
gpg: error searching keyserver: No route to host
gpg: keyserver search failed: No route to host
gpg: DBG: chan_6 -> BYE
gpg: DBG: [not enabled in the source] stop
gpg: keydb: handles=0 locks=0 parse=0 get=0
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=0 found=0 not=0 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=0 cached=0 good=0 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: secmem usage: 0/32768 bytes in 0 blocks
2. dirmngr.conf 实际上被忽略了
如果我尝试使用任何其他密钥服务器,则更改它dirmngr.conf
不会执行任何操作,但会将其输入到中gpg.conf
,如下所示:
# gpg.conf
keyserver hkp://ipv4.pool.sks-keyservers.net
确实起作用,并且密钥服务器操作正常运行。
看起来我的dirmngr.conf
实际上被忽略了并且 hkps 池被用作内置默认值。
如果选项在后者不起作用但在前者仍然有效,那么为什么--keyserver
选项被弃用gpg
并委托给呢?dirmngr
那么问题是什么hkps
? 有没有办法进一步调试它?
编辑 0:拼写