http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c1 Dr. Werner Fink changed: What |Removed |Added ---------------------------------------------------------------------------- Severity|Normal |Critical --- Comment #1 from Dr. Werner Fink --- With the default command --list-packets and -v I see the tow lines but also much more ... gpg: public key is BEDE59896B2B2DF9 gpg: public key is F4D1428776173888 3, hlen=2 hlen=3 what is the reason to break an already existing API? https://lists.gnupg.org/pipermail/gnupg-commits/2017-February.txt ... search for the string "WARNING: no command supplied." -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c2 Andreas Stieger changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CONFIRMED CC| |astieger@suse.com Summary|gpg 2.1.19 breaks tools |gpg 2.1.19 additional |with sudden warning message |warning message Severity|Critical |Normal --- Comment #2 from Andreas Stieger --- (In reply to Dr. Werner Fink from comment #0)

Currently password-store does not build in Tumbleweed

Actually it does, SR#477543 is not even in. I think you mean security:privacy. (In reply to Dr. Werner Fink from comment #1)

what is the reason to break an already existing API?

Take it easy, you make it sound as if this was deliberate? That is kind of what staging is for. And frankly I would claim that gpg2 is a little further down in the rings than password-store. Thanks for the references, will be checked out. -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c4 --- Comment #4 from Dr. Werner Fink --- (In reply to Andreas Stieger from comment #3) I already have a patch which fixes both the test suite as well as the final pass bash script password-store-gpg-2.1.patch also I have send it to Jason@zx2c4.com -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c6 Andreas Stieger changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |astieger@suse.com --- Comment #6 from Andreas Stieger --- I see that you remove -v, add --list-packets and then do some sed. Maybe you wanted -v --decrypt --list-only, which is the action gpg would actually fall back previously. -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c8 --- Comment #8 from Dr. Werner Fink --- With the new password-store version 1.7 there could exist a package password-store-extensions. -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c10 --- Comment #10 from Dr. Werner Fink --- (In reply to Andreas Stieger from comment #9) Hmmm ... with --decrypt the test suite shows on stderr gpg: encrypted with RSA key, ID BEDE59896B2B2DF9 gpg: encrypted with RSA key, ID 4137F8355122C2A5 gpg: encrypted with RSA key, ID 2EE5CDCE9B368A49 gpg: encrypted with RSA key, ID F4D1428776173888 with --list-packets the output on stdout is # off=0 ctb=85 tag=1 hlen=3 plen=268 :pubkey enc packet: version 3, algo 1, keyid F4D1428776173888 data: [2047 bits] # off=271 ctb=85 tag=1 hlen=3 plen=268 :pubkey enc packet: version 3, algo 1, keyid 2EE5CDCE9B368A49 data: [2047 bits] # off=542 ctb=85 tag=1 hlen=3 plen=268 :pubkey enc packet: version 3, algo 1, keyid 4137F8355122C2A5 data: [2047 bits] # off=813 ctb=85 tag=1 hlen=3 plen=268 :pubkey enc packet: version 3, algo 1, keyid BEDE59896B2B2DF9 data: [2047 bits] # off=1084 ctb=d2 tag=18 hlen=2 plen=99 new-ctb :encrypted data packet: length: 99 mdc_method: 2 and if in last case -q is used then no output goes to stderr -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c12 --- Comment #12 from Andreas Stieger --- Way to go for casually glancing over the NOT "simply wrong". -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c15 --- Comment #15 from Swamp Workflow Management --- This is an autogenerated message for OBS integration: This bug (1028867) was mentioned in https://build.opensuse.org/request/show/708025 15.0 / password-store -- You are receiving this mail because: You are on the CC list for the bug.

http://bugzilla.suse.com/show_bug.cgi?id=1028867 http://bugzilla.suse.com/show_bug.cgi?id=1028867#c16 --- Comment #16 from Swamp Workflow Management --- openSUSE-OU-2019:1610-1: An update that solves one vulnerability and has one errata is now available. Category: optional (low) Bug References: 1028867,1097774 CVE References: CVE-2018-12356 Sources used: openSUSE Leap 15.0 (src): password-store-1.7.3-lp150.2.1 -- You are receiving this mail because: You are on the CC list for the bug.