tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/66720-gpg-keyserver-send-failed-no-dataGPGTools: Discussion 2019-05-29T14:19:26Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T17:50:36Z2018-01-10T17:50:37Zgpg: keyserver send failed: No data<div><p>I tried sending my own key to our private server using GPG Keychain and received the same error:</p>
<p>Send keys failed! (No data)<br>
Code = 58<br>
Error text:<br>
gpg: sending key KeyID to hkps://keyserverURL<br>
gpg: keyserver send failed: No data<br>
gpg: keyserver send failed: No data</p>
<p>I went ahead and submitted a report to include my version numbers.</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T17:53:02Z2018-01-10T17:53:03Zgpg: keyserver send failed: No data<div><p>Report submitted via GPG Keychain: <a href="https://gpgtools.tenderapp.com/discussions/problems/66803">https://gpgtools.tenderapp.com/discussions/problems/66803</a></p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T19:00:03Z2018-01-10T19:00:03Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>the problem is that the output of GnuPG has changed. The fingerprint is now on the next line. What you are currently getting is part of the creation date.</p>
<p>I'm having a look at what the quickest way to get this working might be.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T19:08:42Z2018-01-10T19:09:03Zgpg: keyserver send failed: No data<div><p>If you switch your command with the following command to fetch short key id it should work again:</p>
<pre>
<code>SHORT_KEY="$(gpg -K --with-fingerprint --with-colons | grep "sec" | cut -f5 -d ':' | cut -c 9-16)"</code>
</pre>
<p>As an alternative you can also fetch the long key or fingerprint with the following two commands:</p>
<pre>
<code>LONG_KEY="$(gpg -K --with-fingerprint --with-colons | grep "sec" | cut -f5 -d ':')"
FINGERPRINT="$(gpg -K --with-fingerprint --with-colons | grep "fpr" | cut -f10 -d ':')"</code>
</pre>
<p>This version should also be future proof, since it uses the output which is especially formatted for machine processing.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T19:47:16Z2018-01-10T19:47:17Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Thanks again for the help here!</p>
<p>I tried all three options you've provided but I'm still getting the same message. What concerns me is that I also get the same error when uploading using the GPG Keychain GUI.</p>
<p>Here's the link to the report I submitted earlier with the error from GPG Keychain: <a href="https://gpgtools.tenderapp.com/discussions/problems/66803">https://gpgtools.tenderapp.com/discussions/problems/66803</a></p>
<p>Does <code>Error 58</code> mean anything to you?</p>
<p>Thanks again!<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T20:55:53Z2018-01-10T20:55:53Zgpg: keyserver send failed: No data<div><p>Ah hmm... if you are around, I could have a look at it in our live support:<br>
<a href="https://www.hipchat.com/gEAi9viX4">https://www.hipchat.com/gEAi9viX4</a></p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T21:09:50Z2018-01-10T21:09:51Zgpg: keyserver send failed: No data<div><p>Thanks, Luke. I am around. However, it seems that our keyserver just went down. I'm finding out from my admin if he did this on purpose.</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T23:09:50Z2018-01-10T23:09:51Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>We disabled authentication on they private keyserver and the key uploaded right away. Now we just need to figure out why it won't work anymore with authentication. If you have any references, please let me know.</p>
<p>Thanks again!<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-10T23:10:58Z2018-01-10T23:10:58Zgpg: keyserver send failed: No data<div><p>I'm currently having a look into the gnupg source code. In theory basic auth should be supported.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-11T00:26:35Z2018-01-11T00:26:36Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Sorry to deviate from the topic but I was wondering if you can tell me the command to remove key(s) from our private key server. During troubleshooting, I ended up creating 3 different keys that I now need to remove.</p>
<p>Thanks,<br>
John</p>
<p>-- This email may contain material that is confidential for the sole use of<br>
the intended recipient(s). Any review, reliance or distribution or<br>
disclosure by others without express permission is strictly prohibited. If<br>
you are not the intended recipient, please contact the sender and delete<br>
all copies of this message.</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-11T00:28:54Z2018-01-11T00:28:54Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>unfortunately there's no such thing as removing keys from a keyserver, you can only revoke them if you still have the revocation certificates. For each secret key you create, a revocation certificate is created in ~/.gnupg/openpgp-revocs.d<br>
By importing the revocation certificate and sending the key to server afterwards, you'll be able to revoke them and prevents others from importing them.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-11T00:30:52Z2018-01-11T00:30:53Zgpg: keyserver send failed: No data<div><p>That's what I thought. Thanks for the quick reply and clarification!</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-11T00:32:38Z2018-01-11T00:32:38Zgpg: keyserver send failed: No data<div><p>I'm currently filing a bug with the GnuPG team for HTTP Basic Auth, since from the source code I could now confirm that this feature no longer works. Not sure since when, but it must be quite some time already. I still believe however, that a change of your internal key server system triggered the error you were seeing.</p>
<p>Let's hope they re-add Basic Auth in the future.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-11T12:16:45Z2018-01-11T12:16:45Zgpg: keyserver send failed: No data<div><p>Quick Update: I've submitted a patch to the folks of GnuPG and they will have a look. Werner (the lead developer of GnuPG) however also questioned the security advantage of using HTTP Basic Auth.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-12T19:44:55Z2018-01-12T19:44:58Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Thank you for this. As we discussed, we wanted to prevent our own users from uploading keys to our keyserver. We want our IT department to have complete control of key management. We also frequently have contractors working with us and this is a security measure we had to take.</p>
<p>As an update to removing keys from the keyserver, we found a way in case someone else is interested. The command is:<br>
<code>sks drop <hash></code></p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-01-15T11:20:13Z2018-01-15T11:20:13Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>you are absolutely right. If you are the administrator of an sks keyserver, you can of course remove an uploaded key. Sorry for the misunderstanding.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-03-01T20:51:12Z2018-03-01T20:51:15Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Any updates on the patch you submitted regarding http basic auth?</p>
<p>Thanks,<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-03-02T09:45:09Z2018-03-02T09:45:09Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>unfortunately we haven't heard back from the gnupg developers and unfortunately I don't believe it is a priority for them. We might consider including the patch in our version of gnupg, but it would feel better to receive approval from the gnupg developers.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-03-06T18:14:02Z2018-03-06T18:14:03Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Thanks. We can certainly test it for you if you were to include it in your version. If not, are there any other ways to secure the keyserver that you can recommend?</p>
<p>Thanks,<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-04-23T15:54:41Z2018-04-23T15:54:42Zgpg: keyserver send failed: No data<div><p>Hi Luke,</p>
<p>Do you have any updates? As I said, we'd be willing to test this out if you include this in your next patch.</p>
<p>Thanks,<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-04-24T09:23:30Z2018-04-24T09:23:30Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>we submitted a patch to gnupg in 2018 jan. Pinged them in march and april but did not hear back :/</p>
<p>You may want to ask about the state on their <a href="https://gnupg.org/documentation/mailing-lists.html">gnupg users mailling list</a>.</p>
<p>The patch is here: <a href="https://dev.gnupg.org/T3730">https://dev.gnupg.org/T3730</a></p>
<p>All the best,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-04-24T22:55:40Z2018-04-24T22:56:15Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>we have now added support for HTTP auth to our version of GnuPG and the fix is included in the <a href="https://hotfixes.gpgtools.org">latest hotfix of GPG Suite</a>.</p>
<p>Please let us know if that works for you,</p>
<p>Disclaimer: This is a development version which has not been thoroughly tested yet - bugs or crashes are to be expected. Thanks for helping us test.</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-04-24T23:14:56Z2018-04-24T23:14:57Zgpg: keyserver send failed: No data<div><p>This is excellent news, Luke. Thank you.</p>
<p>Do we have to do anything on the server side to get this to work?</p>
<p>Thanks,<br>
John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-04-25T11:53:28Z2018-04-25T11:53:28Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>no, in theory no changes on the server side should be necessary.<br>
Simply change the keyserver URL to include the authentication data in the URL, so basically:</p>
<pre>
<code>hkp://user:pwd@keyserver.com</code>
</pre>
<p>Please let us know if it works.<br>
Thanks!</p></div>Luke Letag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-05-01T13:07:49Z2018-05-01T13:07:49Zgpg: keyserver send failed: No data<div><p>Hi John,</p>
<p>were you able to give this a spin? Make sure to use the latest hotfix build as we fixed a regression in regards to the hkp patch.</p>
<p>Best,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-05-09T20:11:40Z2018-05-09T20:11:43Zgpg: keyserver send failed: No data<div><p>Hi Steve,</p>
<p>I installed 2151n and I was able to upload to our private key server with authentication turned on. Are there any other enhancements on this build? Should we expect this fix to make it to the release version?</p>
<p>Thanks for letting us test it!</p>
<p>John</p></div>John Riveratag:gpgtools.tenderapp.com,2011-11-04:Comment/444760252018-05-09T20:48:35Z2018-05-09T20:48:35Zgpg: keyserver send failed: No data<div><p>That sounds good. Yeah, the fix will be included in the upcoming release.</p>
<p>I'm closing this discussion. Should you need further assistance or have questions you can re-open this discussion here or open a new one any time.</p>
<p>Best,<br>
steve</p></div>Steve