Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 657776 - sys-apps/portage emerge GPG verification doesn't work behind Tor exits
Summary: sys-apps/portage emerge GPG verification doesn't work behind Tor exits
Alias: None
Product: Gentoo Linux
Classification: Unclassified
Component: Current packages (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Portage team
Depends on:
Blocks: 650144
  Show dependency tree
Reported: 2018-06-11 00:42 UTC by John Tate
Modified: 2024-03-03 21:45 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description John Tate 2018-06-11 00:42:22 UTC
When trying `emerge --sync` on a box behind a Tor transparent proxy it tries to import some GPG keys from keyservers. However, this fails with an ambiguous error 'server indicated a failure'

I believe the error is caused by blocking Tor exits. One solution would be that I manually import keys. I can't find an option to disable automatic refetching so it skips this step, uses manually imported keys and does GPG verification.

At the moment all I can do to update the system is turn off verification entirely. This is bad because, as pointed out, I am behind Tor exits which might be bad.
Comment 1 Zac Medico gentoo-dev 2018-06-12 19:48:34 UTC
Maybe a duplicate of bug 648586.
Comment 2 Zac Medico gentoo-dev 2018-06-13 17:19:23 UTC
For bug 648586, the underlying issue related to gnupg dirmngr interaction with DNS handling of SRV records is tracked by You need to verify the behavior of your DNS server, as discussed there.