Mailing List Archive

Using WKD via http_proxy without DNS server available
Hello,

We received a report from one of our users who was unable to get GnuPG
to fetch keys from behind a HTTP proxy [1]. From our investigation, it
seems that GnuPG does not even try to use the proxy if the system does
not have a DNS server configured. In particular, the log posted at [2]
states:

2019-10-17 16:28:05 dirmngr[17549.6] DBG: chan_6 <- WKD_GET -- infrastructure@gentoo.org
2019-10-17 16:28:05 dirmngr[17549.6] DBG: dns: libdns initialized
2019-10-17 16:28:05 dirmngr[17549.6] DBG: dns: resolve_dns_name(openpgpkey.gentoo.org): Server indicated a failure
2019-10-17 16:28:05 dirmngr[17549.6] DBG: dns: getsrv(_openpgpkey._tcp.gentoo.org): Server indicated a failure
2019-10-17 16:28:05 dirmngr[17549.6] command 'WKD_GET' failed: Server indicated a failure <Unspecified source>
2019-10-17 16:28:05 dirmngr[17549.6] DBG: chan_6 -> ERR 219 Server indicated a failure <Unspecified source>
2019-10-17 16:28:05 dirmngr[17549.6] DBG: chan_6 <- BYE
2019-10-17 16:28:05 dirmngr[17549.6] DBG: chan_6 -> OK closing connection
2019-10-17 16:28:05 dirmngr[17549.6] handler for fd 6 terminated

FWICS the problem is that dirmngr aborts immediately upon getting DNS
error. Could it be changed to proceed as if no DNS records were
received, and attempt to perform the request via proxy? TIA.


[1] https://bugs.gentoo.org/661376
[2] https://bugs.gentoo.org/661376#c31

--
Best regards,
Micha? Górny