[Bug 205688] New: kmail can't decrypt gpg encrypted messages - "ask passphrase" dialog broken
https://bugzilla.novell.com/show_bug.cgi?id=205688 Summary: kmail can't decrypt gpg encrypted messages - "ask passphrase" dialog broken Product: SUSE Linux 10.1 Version: Final Platform: x86-64 OS/Version: SuSE Linux 10.1 Status: NEW Severity: Critical Priority: P5 - None Component: KDE AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: admin@eregion.de QAContact: kde-maintainers@suse.de I'm running a 10.1 x86_64 box, kept up-to-date from YOU + kde build tree. when i open a gpg-encrypted mail in kontact, the "ask passphrase" dialogbox does not show up (in fact, it looks like a window appears and disappears again, but I can't say if its that dilogbox, it happens too fast), then kmail tells me "wrong passphrase" and refuses to decrypt the mail. before i copied my ~ to that new x86_64 box, it used to work... and before you close this as WONTFIX because of using build tree stuff, how else do you accept feedback about buildtree stuff? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688
------- Comment #1 from admin@eregion.de 2006-09-14 08:58 MST -------
ok, here's a bit more debugging done:
on a shell in kde:
mathias@pippin:~> eval $(gpg-agent --daemon --log-file ~/gpg-agent.log )
mathias@pippin:~> gpg -s apache.txt
You need a passphrase to unlock the secret key for
user: "Mathias Homann
https://bugzilla.novell.com/show_bug.cgi?id=205688 aj@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team- |kssingvo@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 kssingvo@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|kssingvo@novell.com |pnemec@novell.com ------- Comment #2 from kssingvo@novell.com 2006-09-20 11:28 MST ------- *sic* gpg-agent is package "gpg2" and not "gpg". reassign to gpg2 maintainer. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |admin@eregion.de ------- Comment #3 from pnemec@novell.com 2006-10-03 06:40 MST ------- This look really strange. kmail should open /usr/bin/pinentry which is actually link to /usr/bin/pinentry-qt. Kmail complains probably because of window is closed and pinentry return wrong value. Sorry i do not understand deutsch so good, could you please repost your previous post with: LANG=C gpg -s apache.txt I would like to know if opening key from terminal worked or not. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688
------- Comment #4 from admin@eregion.de 2006-10-03 13:48 MST -------
it didn't work (at least not through the agent):
mathias@pippin:~> eval $(LANG="" gpg-agent --daemon --log-file ~/gpg-agent.log)
mathias@pippin:~> LANG="" gpg -s apache.txt
You need a passphrase to unlock the secret key for
user: "Mathias Homann
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED ------- Comment #5 from admin@eregion.de 2006-10-03 13:49 MST ------- Created an attachment (id=100192) --> (https://bugzilla.novell.com/attachment.cgi?id=100192&action=view) strace output of failing gpg-agent -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |admin@eregion.de ------- Comment #6 from pnemec@novell.com 2006-10-09 01:04 MST ------- I of course cannot reproduce it. For now it look like x86-64 or user specific problem. Could you please create an test user, generate key for him and test it? Could you also post here rpm -qv --changelog gpg2 rpm -qv --changelog libksba I just want to now which updates and version you have installed. Thanks -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|admin@eregion.de | ------- Comment #7 from admin@eregion.de 2006-10-09 02:07 MST ------- Seems to be user-specific, gpg with gpg-agent works for another user. now here's the strange part: ~/.gnupg of the user where it works, and ~/.gnupg of the user where it doesn't, are SYNCED. with unison. so the contents of the directories are supposed to be binary identical... pippin:~ # rpm -qv --changelog gpg2 * Mon Aug 07 2006 - pnemec@suse.cz - fixed security fix with large uid CVE-2006-3746 [#195569] added *-cap_large_uid.patch * Tue Jun 27 2006 - pnemec@suse.cz - security fix for large uid issue [#180615] added *-large_uid.patch * Thu Feb 23 2006 - pnemec@suse.cz - fixed signature security problem CVE-2006-0455 (bugzilla#150742) * Thu Feb 02 2006 - pnemec@suse.cz - fixed install info in spec file * Thu Jan 26 2006 - sbrabec@suse.cz - Added missing %install_info. * Wed Jan 25 2006 - mls@suse.de - converted neededforbuild to BuildRequires * Fri Aug 05 2005 - postadal@suse.cz - updated to version to 1.9.18 - removed obsoleted gcc patch - added patch tmpdir.diff for using $TMPDIR by gpg-agent [#bug95732] * Tue Jul 12 2005 - postadal@suse.cz - updated to version to 1.9.17 - updated pth to version 2.0.4 - removed obsoleted patch agent-cache-fix.diff - fixed ccid-driver.c - fixed gcc4 - explicitly enabled gpg building in configure * Thu Mar 24 2005 - postadal@suse.cz - fixed caching passphrase in gpg-agent [#71975] * Tue Mar 22 2005 - postadal@suse.cz - fixed on 64bit archs [#72440] * Wed Feb 23 2005 - postadal@suse.cz - security fix for cfb-cipher issue [#65862] * Wed Jan 12 2005 - postadal@suse.cz - update to version 1.9.14 - removed obsoleted patch automake-fixes.diff * Tue Sep 28 2004 - adrian@suse.de - link against libpth staticaly to make S/MIME support in kmail usable. Hopefully we can convert this to a native thread implementation later. (#46260) * Sat Jul 31 2004 - adrian@suse.de - update to version 1.9.10 * Tue Jul 20 2004 - adrian@suse.de - remove openct and opensc packages from nfb (we will need thread support, when enabling card reader support, but it isn't anyway implemented yet in gpg2) * Mon Jul 12 2004 - adrian@suse.de - use GnuPG 2 sources version 1.9.9 - opensc support misses some functions atm, support disabled for now - threading is disabled, since we do not have a pth package for now - prepare for nld * Thu Feb 26 2004 - postadal@suse.cz - adapted some functions to the libgcrypt version 1.1.91 [#34987] - added libgpg-error to needforbuild flag * Wed Feb 18 2004 - kukuk@suse.de - Don't build against libpth. * Tue Feb 10 2004 - postadal@suse.cz - fixed code that broke strict aliasing * Fri Dec 05 2003 - garloff@suse.de - disable core dumpe in child after forking. [#33499] * Mon Aug 11 2003 - adrian@suse.de - cleanup #neededforbuild and requires * Mon Aug 04 2003 - ro@suse.de - added openct to neededforbuild * Fri Jul 18 2003 - mc@suse.de - build against opensc * Thu Jun 19 2003 - schwab@suse.de - Add %install_info. * Mon Mar 17 2003 - adrian@suse.de - add signal handler to check if the parent is still alive and exit if not - use pinentry-qt by default (/usr/bin/pinentry do not exist) * Tue Feb 11 2003 - mc@suse.de - initial release --------------------------- pippin:~ # rpm -qv --changelog libksba * Fri Jun 23 2006 - pnemec@suse.cz - fixed security bug #177462 * Wed Jan 25 2006 - mls@suse.de - converted neededforbuild to BuildRequires * Mon Sep 26 2005 - mls@suse.de - make devel package require base package * Fri Aug 05 2005 - postadal@suse.cz - updated to version 0.9.12 * Mon Jul 11 2005 - postadal@suse.cz - updated to version 0.9.11 - removed obsoleted patch autoconf-fix.diff * Wed Jan 12 2005 - postadal@suse.cz - update to version 0.9.10 * Thu Sep 30 2004 - postadal@suse.cz - restored autoconf-fix.diff patch removed by last update [#36193, #46036] (fixed autoconf issue - quoted definition of AM_PATH_KSBA) * Wed Jul 28 2004 - adrian@suse.de - update to version 0.9.8 * Wed Jul 14 2004 - adrian@suse.de - create -devel sub package - prepare for nld * Mon Jul 12 2004 - adrian@suse.de - update to version 0.9.7 * Wed Mar 17 2004 - postadal@suse.cz - fixed autoconf issue (quoted definition of AM_PATH_KSBA) [#36193] * Tue Feb 10 2004 - postadal@suse.cz - fixed code that broke strict aliasing - bziped tarball * Sun Jan 11 2004 - adrian@suse.de - add %run_ldconfig * Mon Jun 02 2003 - mc@suse.de - switch to version 0.4.7 This fixes a problem mainly relevant to certificate request creation (if you must use the ugly way of putting the email address into the subject DN) * Thu Feb 20 2003 - mc@suse.de - initial version -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED ------- Comment #8 from admin@eregion.de 2006-10-09 02:10 MST ------- thanks for pointing me into the right direction, dude. I ran diff across both .gnupg directories, and found a little difference in gnupg.conf, which for the user where it didnt work had an extra character after the "default-key" line... so i unison-synced the two folders again, with all the accumulated ignore options reset. .. now it works. note: no extra characters after "default-key <keyid>", else it breaks. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #9 from pnemec@novell.com 2006-10-09 02:59 MST ------- I am glad you made it work ;) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #10 from admin@eregion.de 2006-10-09 03:49 MST ------- guess how glad I am... just to give a hint: with the current tendency of german gouvernment / EU "government", wanting to store any communication of any innocent citizen for any period of time, disregarding citizen rights anfd everything, more and more people here start to gpg-encrypt by default. Especially more and more of my friends... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | ------- Comment #11 from admin@eregion.de 2006-10-09 11:58 MST ------- sorry to have to reopen, but it's not fixed... I was testing via ssh from remote earlier today, and it worked. now that i'm logged into that machine locally, it doesn't work. as soon as i do "ssh localhost", then start the gpg-agent in that session, it works. something wrong with pinentry-qt and $DISPLAY=:0 ? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #12 from admin@eregion.de 2006-10-09 13:32 MST ------- i created a clean user account, and a keyring containing only that users key, and gpg-agent works as expected... i thought it could be related to the fact that my user's account has TWO different private keys, so i created a second key, and tried again. gpg-agent still works ok. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #13 from admin@eregion.de 2006-10-09 13:57 MST ------- this thread on a kde mailing list seems to hint at a possible solution: http://lists.kde.org/?l=kdepim-users&m=108595756518723&w=2 the guy who started the thread is using the plastik kde style, like me... the user where gpg-agent works as expected does as well, but with a different windowframe style. but after switching to the same as in the "broken" user, it still works... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #14 from admin@eregion.de 2006-10-09 14:38 MST ------- i changed gpg-agent.conf to use pinentry-gtk-2 instead of pinentry-qt and *blam* it works... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #15 from admin@eregion.de 2006-10-09 15:15 MST ------- another fun fact: i configure gpg-agent to use pinentry-qt and login to a different session type, lik FVWM, and it works ok. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO Info Provider| |admin@eregion.de ------- Comment #16 from pnemec@novell.com 2006-10-20 01:58 MST ------- Some bug in bugzilla, i did not received that you reopened bug, so sorry for not being in touch ;) So first, i need it to reproduce it, so i can debug it. But you saying that you cannot neither reproduce it with new user nor reproduce it now when you made some change? can you? If you can still reproduce it, could you please check if /usr/bin/pinentry is link and if, than where it link? Test it please also with default style, and window decoration. Guy from link use old version 0.6.8 SL10.1 use 0.7.2 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|admin@eregion.de | ------- Comment #17 from admin@eregion.de 2006-10-20 11:57 MST ------- mathias@pippin:/usr/bin> ls -l pinentry* lrwxrwxrwx 1 root root 12 2006-10-11 07:37 pinentry -> pinentry-gtk -rwxr-xr-x 1 root root 44920 2006-10-10 23:20 pinentry-curses lrwxrwxrwx 1 root root 14 2006-10-11 07:37 pinentry-gtk -> pinentry-gtk-2 -rwxr-xr-x 1 root root 97744 2006-10-10 23:20 pinentry-gtk-2 -rwxr-xr-x 1 root root 150584 2006-10-10 23:20 pinentry-qt and as i said, in my gpg-agent.conf i'm directly pointing to pinentry-gtkright now; when i use pinentry-qt there, it breaks. When i run under a different DE (like FVWM or xfce4), it works. I switched to the style named "SUSE_Default" in kde control center, and still it breaks. I tried several combinations of window decorations, kde styles, and icon themes, and still it breaks... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |admin@eregion.de ------- Comment #18 from pnemec@novell.com 2006-10-23 01:52 MST ------- HM , pinentry-qt was coded as default and it had been ever working for me. I tried it (put pinentry-qt) directly into gpg-agent.conf and it worked for me. May be this could be caused by updating your qt libraries. You said that you use KDE from build tree. In that case, you should try rebuild pinentry on your system. I can help you with that, if you want give it a try. Which qt version you have installed? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688
admin@eregion.de changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEEDINFO |ASSIGNED
Info Provider|admin@eregion.de |
------- Comment #19 from admin@eregion.de 2006-10-23 02:15 MST -------
rpm -qi qpippin:~ # rpm -qi qt3 pinentry
Name : qt3 Relocations: (not relocatable)
Version : 3.3.6 Vendor: openSUSE Build Service
Release : 185.1 Build Date: Wed Sep 20 15:54:22
2006
Install Date: Thu Sep 21 12:51:09 2006 Build Host: build02
Group : System/Libraries Source RPM: qt3-3.3.6-185.1.srcrpm
Size : 13058899 License: GPL, QPL
Signature : DSA/SHA1, Wed Sep 20 15:46:04 2006, Key ID 3b3011b76b9d6523
URL : http://www.trolltech.com/
Summary : A library for developing applications with graphical user
interfaces
Description :
Qt is a program library for developing applications with graphical user
interfaces. It allows you to rapidly develop professional programs. The
Qt library is available not only for Linux but for a great number of
Unices and even for Windows. Thus it is possible to write programs that
may be easily ported to those platforms.
You need a license for using Qt with a non-GPL application, which can
be acquired from sales@trolltech.com.
See /usr/share/doc/packages/qt3 for details about the new features of
the current Qt library!
Authors:
--------
Troll Tech AS, Norway
Distribution: (none)
Name : pinentry Relocations: (not relocatable)
Version : 0.7.2 Vendor: (none)
Release : 15.2 Build Date: Tue Oct 10 23:20:19
2006
Install Date: Wed Oct 11 07:37:36 2006 Build Host: pippin.eregion.home
Group : Productivity/Other Source RPM:
pinentry-0.7.2-15.2.src.rpm
Size : 373118 License: GPL
Signature : DSA/SHA1, Tue Oct 10 23:20:21 2006, Key ID a3b936c90e5114a7
URL : http://www.gnupg.org/aegypten/
Summary : Collection of Simple PIN or Passphrase Entry Dialogs
Description :
This is a collection of simple PIN or passphrase entry dialogs which
utilize the Assuan protocol as described by the Aegypten project.
Authors:
--------
Robert Bihlmeyer
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |anicka@novell.com Status|ASSIGNED |RESOLVED Resolution| |WORKSFORME ------- Comment #20 from pnemec@novell.com 2006-11-08 03:42 MST ------- I really can`t reproduce it. If you figure out how to reproduce it (with new user) please reopen. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #21 from pnemec@novell.com 2006-11-20 00:16 MST ------- Hm, look like that this problem backfire in SL 10.2 Beta 2 :( bug #219764. But in that case, it is reproduce-able. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #22 from wstephenson@novell.com 2006-11-20 02:45 MST ------- I think it's a problem in gpg-agent but it seems to affect only updating users (from what i've seen on #219764) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WORKSFORME | ------- Comment #23 from admin@eregion.de 2006-11-20 02:57 MST ------- what do you mean by "updating users"? people who upgraded to 10.2 beta from a 10.1? or people using 10.1+buildtree? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #24 from wstephenson@novell.com 2006-11-20 03:10 MST ------- I meant "10.1+buildtree updaters". -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 nadvornik@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |nadvornik@novell.com ------- Comment #25 from nadvornik@novell.com 2006-11-21 02:21 MST ------- I have run into this problem too. I have kmail run from windowmaker. What happens in my case is this: The pinentry script select pinentry-curses, probably because it is not full kde session. However it can't work, because pinentry-curses does not have any terminal, the output is redirected to some file or socket. When I change the pinentry script to run always pinentry-qt, it works ok. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #26 from anicka@novell.com 2006-11-21 02:54 MST ------- Then there are two separate problems in pinentry script. First of all, we should try to use pinentry-qt instead of pinentry-curses even if user is not running KDE. pinentry-gtk-2 is preferred but it does not have to be installed after the package split. Second, when no graphical frontend is installed and we have to use pinentry-curses, we should run pinentry-curses in xterm, if there is no terminal already running. These two issues can be easily fixed in pinentry shell script. But even then there is a problem described in bug #219764: Calling gpg-agent often ends this way and I do not know yet why it happens: LANG=en_US /usr/bin/gpg-agent --sh -v gpg-agent: can't connect to `/suse/mc/.gnupg/S.gpg-agent': No such file or directory -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 pnemec@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |pnemec@novell.com AssignedTo|pnemec@novell.com |anicka@novell.com Status|REOPENED |NEW ------- Comment #27 from pnemec@novell.com 2006-11-21 03:15 MST ------- Vlado, your bug described in comment #25 is different. That one is in pinentry shell script which will be fixed. This bug is duplicate of bug 219764 which is bug for 10.2 Because Mathias keep his system up to date, he found this problem even in 10.1 I am not sure if this problem should be disscused on two place, IMHO this bug should be closed as duplicate of #219764. But i am reassigning to anicka for better tracking. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #28 from admin@eregion.de 2006-11-21 06:35 MST ------- What kind of pinentry script is this you guys keep talking about? on my boxes, /usr/bin/pinentry is not a script but a link, at the moment pointing to /usr/bin/pinentry-gtk-2 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #29 from anicka@novell.com 2006-11-21 06:40 MST ------- We wrote script which determines the binary that should be executed depending on environment you are running for 10.2. There are still some already known bugs that we are going to fix. But I see you encountered another bug, which I unfortunately cannot solve at the moment. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mc@novell.com ------- Comment #30 from anicka@novell.com 2006-11-21 11:59 MST ------- *** Bug 219764 has been marked as a duplicate of this bug. *** -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |mc@novell.com ------- Comment #31 from anicka@novell.com 2006-11-21 16:02 MST ------- As for the other bug: It looks that a variable GPG_AGENT_INFO sometimes does not propagate correctly. In bug #219764 this error message was reported: gpg-agent: can't connect to `/suse/mc/.gnupg/S.gpg-agent': No such file or directory This happens only when GPG_AGENT_INFO is not set, otherwise gpg-agent connects to a socket in /tmp and its path is stored in this variable. /etc/X11/xdm/sys.xsession script should take care of it. So either there is a bug in this script or this script was not used at all. How do you start your gpg-agent, Michael? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 mc@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|mc@novell.com | ------- Comment #32 from mc@novell.com 2006-11-22 01:32 MST ------- Via kdm. I am using /etc/X11/xdm/sys.xsession and for me this script works. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO Info Provider| |mc@novell.com ------- Comment #33 from anicka@novell.com 2006-11-22 05:29 MST ------- And do you still encounter the same error message? What is the value of your GPG_AGENT_INFO variable then? I am unable to reproduce this bug anymore, it seems to me that it disappeared after the fix of the pinentry wrapper script. But actually I think that these two things have nothing to do with each other, that is why I am keeping on asking. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 mc@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|mc@novell.com | ------- Comment #34 from mc@novell.com 2006-11-22 05:48 MST ------- No, I do not get the error "can't connect to `/suse/mc/.gnupg/S.gpg-agent': No such file or directory". For me GPG_AGENT_INFO was always set correctly. Oh, you have a fix for the pinentry problem? I will test it with RC1. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED ------- Comment #35 from anicka@novell.com 2006-11-22 08:06 MST ------- OK, so it looks this socket bug does not exist any more. At least I have not heard anyone have reproduced it lately. Pinentry wrapper script was fixed for RC1. I hope that everything works fine in RC1. If not, feel free to reopen, I am closing now. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | ------- Comment #36 from admin@eregion.de 2006-11-22 08:22 MST ------- reopened for several reasons: 1. this bug was never about that socket problem 2. this bug was never about a "pinentry wrapper script" which does not exist in 10.1 anyways, and besides it doesnt help me on a 10.1 that a different problem is to be fixed on 10.2. Gimme this ominous wrapper script, and i'll bet you that, if it selects pinentry-qt, it will still be broken on my systems. 3. this bug still exists in 10.1, on both x86 and x86_64. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEEDINFO Info Provider| |admin@eregion.de ------- Comment #37 from anicka@novell.com 2006-11-22 08:46 MST ------- Well, in this case I got lost :-) I have read the communication over again and maybe because I was not solving this issue from the beginning, I am still not sure whether I can see what is wrong. Do I get it right, that it is only a problem of pinentry-qt and pinentry-gtk-2 works for you? And that pinentry-qt works when you are not running it in KDE? I will be also glad for any hint how to reproduce this bug, I did not encounter it yet... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #38 from wstephenson@novell.com 2006-11-22 09:10 MST ------- Anna: does echo "test" | gpg -ase -r 0xYOUR-KEY-ID | gpg work for you? This was my minimal test case from #219674. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #39 from admin@eregion.de 2006-11-22 11:24 MST ------- re #37: that's exactly the problem. pinentry-gtk* work ok, pinentry-qt works only outside KDE. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|admin@eregion.de | ------- Comment #40 from anicka@novell.com 2006-11-23 02:58 MST ------- Will: Unfortunately it works without any problems. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 lmichnovic@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|wstephenson@novell.com | ------- Comment #42 from lmichnovic@novell.com 2006-11-23 13:18 MST ------- If you deinstall pinentry-gtk2 and leave only pinentry-qt, decrypting stops working in Kgpg invoked from Kmail. No passphrase dialog appears. If I have installed pinentry-gtk2, it opens a dialog pinentry-gtk2 for passphrase. So I assume the pinentry-qt is broken. I have RC1. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #43 from lmichnovic@novell.com 2006-11-24 03:28 MST ------- Oh, I can't reproduce this again. pinentry-qt started to work again. I have investigated this: The first condition in the pinentry script is false + '[' x = xtrue -a -f /usr/bin/pinentry-qt ']' that explains why is gtk2 preferred the check for gtk2 follows + '[' -f /usr/bin/pinentry-gtk-2 ']' the repeated check for qt saves the situation when gtk2 is not installed + '[' -f /usr/bin/pinentry-qt ']' . -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |WORKSFORME ------- Comment #44 from anicka@novell.com 2006-11-24 07:41 MST ------- Sorry, I give up. I spent whole yesterday trying to figure out what happens and reproduce the bug but unfortunately it still works for me, even when trying to update from 10.1 to 10.2. If anyone is able to supply some clear description how to reproduce this bug, I will try it once again. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|WORKSFORME | ------- Comment #45 from admin@eregion.de 2006-11-24 08:54 MST ------- just a little hint, i'm running 10.1 here, not 10.2. and on my systems this bug is easily reproducable on ia32 and x86_64... -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #46 from admin@eregion.de 2006-11-24 12:01 MST ------- I just reproduced it on my system with a freshly created user and freshly created gpg keys; the "enter passphrase" box pops up, and closes immediately. suse 10.1 + kde buildtree on a intel p4 with 512meg ram. on a freshly created user, it even crashes with /usr/bin/pinentry pointing at /usr/bin/pinentry-gtk-2 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #48 from admin@eregion.de 2006-11-25 00:51 MST ------- that freshly created user doesnt ave a gpg-agent.conf, so the agent uses its harwired defaults. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 admin@eregion.de changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Info Provider|admin@eregion.de | ------- Comment #49 from admin@eregion.de 2006-11-25 00:52 MST ------- and here's gpg-agent.conf of my normal user: mathias@pippin:~> cat .gnupg/gpg-agent.conf pinentry-program /usr/bin/pinentry no-grab default-cache-ttl 1800 mathias@pippin:~> -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 anicka@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |WORKSFORME ------- Comment #50 from anicka@novell.com 2006-11-27 08:20 MST ------- I cannot reproduce it even when I am doing everything you described - pinentry-qt dialog appears and works for me exactly like expected even on 10.1 with KDE buildtree installed. I am sorry. If you get some more useful information, please reopen. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #51 from admin@eregion.de 2006-11-27 08:27 MST ------- did you look at the attached strace output? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #52 from anicka@novell.com 2006-11-27 16:10 MST ------- I did. Some unhandled exception, but I have no clue where - maybe in pinentry-qt, maybe in qt3. It could help me to have a core file but it means that you would have to install packages with debuginfo at least for pinentry and qt3. Could you rebuild these packages with debuginfo and send me a coredump? And one more question: Do you have installed original pinentry from 10.1 and new qt3 from buildtree? I think that pinentry is not shipped in buildtree. So your pinentry-qt is build against other version of qt3 than you have installed. And it could explain why I am not able to reproduce the bug - I would probably need exactly the same binaries. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #53 from admin@eregion.de 2006-11-28 02:30 MST ------- you know what... lets give up on this. I'll configure my gpg-agent to use pinentry-gtk, which works fine, and i'll upgrade to 10.2 fairly soon anyways, for various other reasons. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=205688 ------- Comment #54 from admin@eregion.de 2006-12-25 12:26 MST ------- just for the record: on 10.2 x86_64, pinentry-qt works just fine. will check on 10.2 i586 after i get home after the xmas hols. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com