gpg tells me a signature from my own key is a forgery.

Fri, 30 Aug 2019 09:45:49 -0700 

I am testing signing with multiple keys.  However, gpg tells me that my
own key is a forgery.  I know it is not a forgery because I didn't forge
it.  Is there a way to tell gpg that my own key is good?  I'm using
trust model tofu+pgp, and both of my keys are cross-signed and set to
ultimate trust.

Here's an example:

$ echo this message is signed|gpg --local-user 37B9507ACFF2016E! --local-user 
6B8EB3A065CFBAA9! --local-user 04D3ED26E707AD0643EBA7EC44F35EDB355D526A 
--clearsign|gpg
gpg: WARNING: no command supplied.  Trying to guess what you mean ...
this message is signed
gpg: Signature made Fri 30 Aug 2019 11:36:33 AM CDT
gpg:                using EDDSA key EED0158013DC2E6D6E001EA437B9507ACFF2016E
gpg:                issuer "brian@minton.systems"
gpg: Good signature from "Brian Minton <br...@minton.name>" [ultimate]
gpg:                 aka "keybase.io/bjmgeek <bjmg...@keybase.io>" [ultimate]
gpg:                 aka "Brian Minton <bjmg...@gmail.com>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@freeshell.de>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@freeshell.org>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@blinkenshell.org>" [ultimate]
gpg:                 aka "[jpeg image of size 5202]" [never]
gpg: WARNING: We do NOT trust this key!
gpg:          The signature is probably a FORGERY.
gpg: Signature made Fri 30 Aug 2019 11:36:33 AM CDT
gpg:                using DSA key F9C4BB760E783F0DEC10A68A6B8EB3A065CFBAA9
gpg:                issuer "brian@minton.systems"
gpg: Good signature from "Brian Minton <br...@minton.name>" [ultimate]
gpg:                 aka "keybase.io/bjmgeek <bjmg...@keybase.io>" [ultimate]
gpg:                 aka "Brian Minton <bjmg...@gmail.com>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@freeshell.de>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@freeshell.org>" [ultimate]
gpg:                 aka "Brian Minton <bmin...@blinkenshell.org>" [ultimate]
gpg:                 aka "[jpeg image of size 5202]" [never]
gpg: WARNING: We do NOT trust this key!
gpg:          The signature is probably a FORGERY.
gpg: Signature made Fri 30 Aug 2019 11:36:33 AM CDT
gpg:                using EDDSA key 04D3ED26E707AD0643EBA7EC44F35EDB355D526A
gpg:                issuer "brian@minton.systems"
gpg: Good signature from "Brian Minton <brian@minton.systems>" [ultimate]

Attachment: signature.asc
Description: PGP signature

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to