Actually the command that fails is --list-keys not --recv-keys. --list-keys is run after the various imports to detect keyID collisions and retrieve key fingerprints.
However from the debug trace it looks like --recv-keys isn't run at all; you don't have “$CONFIG{'no-download'} = 1” in your caffrc, right? For the record here is what I get with your ~/.gnupg/{dirmngr,gnupg}.conf: ~$ caff --debug 39278DA8109E6244 […] [NOTICE] Fetching keys from a keyserver (this may take a while)... [DEBUG] gpg --batch --no-tty --homedir /tmp/caff/gnupghome --trust-model=always --no-options --use-agent --keyserver=hkps://hkps.pool.sks-keyservers.net --keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked --no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ --personal-cipher-preferences=AES256 AES192 AES CAST5 --personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 --cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb ... [DEBUG] stdin: <&=4, stdout: >&=4, status: IO::Handle=GLOB(0x37ef790) [DEBUG] Imported 7420DF86BCE15A458DCE997639278DA8109E6244 for 39278DA8109E6244 [INFO] Key 39278DA8109E6244 not changed gpg: key 39278DA8109E6244: "Guilhem Moulin" not changed gpg: Total number processed: 1 gpg: unchanged: 1 [DEBUG] gpg --batch --no-tty --homedir /tmp/caff/gnupghome --trust-model=always --no-options --use-agent --keyserver=hkps://hkps.pool.sks-keyservers.net --keyserver-options=no-honor-keyserver-url --keyserver-options=include-revoked --no-greeting --ask-cert-level --set-policy-url=http://www.gothgoose.net/pgp/ --personal-cipher-preferences=AES256 AES192 AES CAST5 --personal-digest-preferences=SHA512 SHA384 SHA256 SHA224 --cert-digest-algo=SHA512 --no-autostart --no-auto-check-trustdb --with-fingerprint --with-colons ... [DEBUG] stdout: IO::Handle=GLOB(0x37f72c0), stdin: <&=4 [NOTICE] Sign the following keys according to your policy, then exit gpg with 'save' after signing each key […] In your case the first gpg command (--recv-keys) is missing; the second one (--list-keys) fails because there is no matching key in caff's keyring. I don't exclude a regression bug yet, but could you share your ~/.caffrc? -- Guilhem.
signature.asc
Description: PGP signature