[PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?

gabriel rosenkoetter on Wed, 26 Feb 2003 22:50:31 -0500

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?

From: gabriel rosenkoetter <gr@eclipsed.net>

To: PLUG mailing list <plug@lists.phillylinux.org>, SLUG mailing list <slug@sccs.swarthmore.edu>

Subject: [PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?

Date: Wed, 26 Feb 2003 22:38:51 -0500

Delivery-date: Wed, 26 Feb 2003 22:50:31 -0500

Envelope-to: jeff@localhost

Mail-followup-to: PLUG mailing list <plug@lists.phillylinux.org>, SLUG mailing list <slug@sccs.swarthmore.edu>

Reply-to: plug@lists.phillylinux.org

Sender: plug-admin@lists.phillylinux.org

User-agent: Mutt/1.4i

Every time a key is added to my public keyring, GnuPG forces a trustdb check. Is anyone else experiencing this aberrant behavior? Using --no-auto-check-trustdb makes reading mail with mutt practical again. Using --no-expensive-trust-checks has no visible effect (still). Exporting my trust, blowing away trustdb.gpg, and reimporting my trust doesn't change this behavior. There is no sane explanation for needing to do a trustdb check with every imported key. If that were going to be necessary, then it shouldn't ever have been modularized out. I don't think I have an excessively large web of trust, but what do I know. For reference, here's what a --check-trustdb looks like for me these days: uriel:~% time gpg --check-trustdb gpg: checking at depth 0 signed=46 ot(-/q/n/m/f/u)=0/0/0/0/0/1 gpg: checking at depth 1 signed=84 ot(-/q/n/m/f/u)=0/0/0/17/29/0 gpg: checking at depth 2 signed=288 ot(-/q/n/m/f/u)=0/0/0/72/7/0 gpg: checking at depth 3 signed=181 ot(-/q/n/m/f/u)=0/74/0/22/1/0 gpg: checking at depth 4 signed=0 ot(-/q/n/m/f/u)=0/0/0/0/1/0 gpg: next trustdb check due at 2003-03-07 gpg --check-trustdb 109.24s user 20.77s system 80% cpu 2:40.70 total This is on a PowerPC G3 (a 750, running, I believe, at 300 MHz, but it's been a long time since I thought about it and NetBSD/macppc doesn't report cycle speed in dmesg(8)) with 288 MBs (says dmesg(8); I don't recall exactly what DIMMs I've got in there) of memory. The disk isn't the fastest around, but this process is clearly (based on zsh's time builtin's output and also observation of top(1) while the thing is running) cpu-bound, so that doesn't matter here. I'm using: uriel:~% gpg --version gpg (GnuPG) 1.2.1 Copyright (C) 2002 Free Software Foundation, Inc. This program comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under certain conditions. See the file COPYING for details. Home: ~/.gnupg Supported algorithms: Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA, ELG Cipher: 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH Hash: MD5, SHA1, RIPEMD160, TIGER192 Compress: Uncompressed, ZIP, ZLIB There doesn't seem to be any discussion of this on either gnupg-devel or gnupg-users (searched for "1.2.1 trustdb" using http://marc.theaimsgroup.com/). So perhaps I should bring it up there. -- gabriel rosenkoetter gr@eclipsed.net
Attachment: pgpO62gchRHI8.pgp
Description: PGP signature

Follow-Ups:

Re: [PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?
From: Walt Mankowski <waltman@pobox.com>

Re: [PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?
From: David Shaw <dshaw@jabberwocky.com>

Prev by Date: Re: [PLUG] Clie and Linux

Next by Date: Re: [PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?

Previous by thread: Re: [PLUG] iBook Linux compatibility

Next by thread: Re: [PLUG] GnuPG 1.2.1 trustdb checks for every pubkey import?

Index(es):

Date

Thread