GPG keys are not fetched from the configured keyserver Fri, 10 Apr 2026 18:48:30 +0000 https://bugs.horde.org/ticket/11380 GPG keys are not fetched from the configured keyserver https://github.com/horde/horde/pull/16 https://github.com/horde/horde/pull/16 Mon, 27 Aug 2012 10:30:22 +0000 https://bugs.horde.org/ticket/11380#t72403 Actually there was even more wrong in this case. See my upda Actually there was even more wrong in this case. See my updated pull request for a second patch which checks all fetched keyids if they actually have a correct uid: (git log) Fix: horde picks mismatching gpg-keys. We should only use gpg keys with an uid containing a matching email address to encrypt mails. How a keyserver responds to a text search is not standardized. See https://tools.ietf.org/html/draft-shaw-openpgp-hkp-00#page-3 3.1.1.3. Text Searches How a keyserver handles a textual search is implementation defined. See also the definition of the "exact" variable for a method to give additional instructions to the server on how the search is to be executed. We should therefore not rely to get the correct key, just because we where searching for an email address. This patch removes all keys from the candidates list, which do not contain the correct email address between <> in the uid field. uid lines from the keyserver are constructed as follows: uid:escaped uid string:creationdate:expirationdate:flags (s.openpgp-hkp rfc draft) where all pgp compatible tools that i know of use the following uid format: name (comment) <email> Mon, 27 Aug 2012 13:18:38 +0000 https://bugs.horde.org/ticket/11380#t72404 Changes have been made in Git (FRAMEWORK_4): commit 948add6 Changes have been made in Git (FRAMEWORK_4): commit 948add61abd6fe549c1bd7b152e8b4b7a30814ce Author: Michael M Slusarz <slusarz@horde.org> Date: Mon Aug 27 15:35:35 2012 -0600 [mms] Improvements in obtaining GPG keys from a keyserver (Bug #11380) (o+horde@immerda.ch). Use keyserver parameters passed in original method call When using keyserver, only use gpg keys with a UID containing a matching email address framework/Crypt/lib/Horde/Crypt/Pgp.php | 27 ++++++++++++++++++++++++--- framework/Crypt/package.xml | 4 ++-- 2 files changed, 26 insertions(+), 5 deletions(-) http://git.horde.org/horde-git/-/commit/948add61abd6fe549c1bd7b152e8b4b7a30814ce Mon, 27 Aug 2012 21:42:47 +0000 https://bugs.horde.org/ticket/11380#t72409 Changes have been made in Git (develop): commit 425bcf0cf8e Changes have been made in Git (develop): commit 425bcf0cf8e5686fe273ff9345be1e06bf5a487b Author: Michael M Slusarz <slusarz@horde.org> Date: Mon Aug 27 15:35:35 2012 -0600 [mms] Improvements in obtaining GPG keys from a keyserver (Bug #11380) (o+horde@immerda.ch). Use keyserver parameters passed in original method call When using keyserver, only use gpg keys with a UID containing a matching email address framework/Crypt/lib/Horde/Crypt/Pgp.php | 27 ++++++++++++++++++++++++--- framework/Crypt/package.xml | 4 ++-- 2 files changed, 26 insertions(+), 5 deletions(-) http://git.horde.org/horde-git/-/commit/425bcf0cf8e5686fe273ff9345be1e06bf5a487b Mon, 27 Aug 2012 21:44:10 +0000 https://bugs.horde.org/ticket/11380#t72410 Changes have been made in Git (master): commit 425bcf0cf8e5 Changes have been made in Git (master): commit 425bcf0cf8e5686fe273ff9345be1e06bf5a487b Author: Michael M Slusarz <slusarz@horde.org> Date: Mon Aug 27 15:35:35 2012 -0600 [mms] Improvements in obtaining GPG keys from a keyserver (Bug #11380) (o+horde@immerda.ch). Use keyserver parameters passed in original method call When using keyserver, only use gpg keys with a UID containing a matching email address framework/Crypt/lib/Horde/Crypt/Pgp.php | 27 ++++++++++++++++++++++++--- framework/Crypt/package.xml | 4 ++-- 2 files changed, 26 insertions(+), 5 deletions(-) http://git.horde.org/horde-git/-/commit/425bcf0cf8e5686fe273ff9345be1e06bf5a487b Wed, 29 Aug 2012 12:50:03 +0000 https://bugs.horde.org/ticket/11380#t72662