From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1NkFxc-0007Hl-7o for garchives@archives.gentoo.org; Wed, 24 Feb 2010 12:03:25 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D3BEFE0AB9 for ; Wed, 24 Feb 2010 12:03:23 +0000 (UTC) Received: from mail-bw0-f219.google.com (mail-bw0-f219.google.com [209.85.218.219]) by pigeon.gentoo.org (Postfix) with ESMTP id 46921E0858 for ; Wed, 24 Feb 2010 11:31:35 +0000 (UTC) Received: by bwz19 with SMTP id 19so3586555bwz.26 for ; Wed, 24 Feb 2010 03:31:34 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=5hiMzzh4kTlJ2BWCrSfKSypfUncif/WrIk+L6Pjbwew=; b=ikWdqN06bk5cBSx2GC/rEv4v9cr+nZjsu8BX5Mn2NlV1ltqSZDGb8qe/YnnNE2xyTG 7M8v6EELc2usfCFJPMyfgf+UGMYTmamaIkz7D7oBuP3CeRaqQ7UR9dH5fmDs4ftn72Hz rPleYObI0jYLgLtpSKgNExsmKlB2YFULrFfjY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=Y0hfe+aica87DCCY1OZmLynyorgr7rxHk8JOV6C3GgdHqoRQoZ2Q6oQK2wJjV/XdZb qjPBQuc5gV7P4pj5ukjZ88jDbi7K5diu7QeVs+KO1wuvUgp8cQGbdGIX4T/2f+nVSUpj goLqEcX/UjbSrmHklXlw0mrptsxr7HZBZkyS8= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.204.135.153 with SMTP id n25mr1301437bkt.156.1267011094474; Wed, 24 Feb 2010 03:31:34 -0800 (PST) In-Reply-To: <201002220649.20267.michaelkintzios@gmail.com> References: <201002211450.13952.michaelkintzios@gmail.com> <201002211532.03263.michaelkintzios@gmail.com> <20100221170113.GA13574@math.princeton.edu> <201002220649.20267.michaelkintzios@gmail.com> Date: Wed, 24 Feb 2010 11:31:34 +0000 Message-ID: <358eca8f1002240331y3c54d445h5ce25783878f7dd1@mail.gmail.com> Subject: Re: [gentoo-user] gnupg fails to decrypt on kmail From: Mick To: gentoo-user@lists.gentoo.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Archives-Salt: 5888eb2e-c21f-48a5-84d5-3e2493cca678 X-Archives-Hash: bfd0ad008444e38282c2ab5c61ecb542 On 22 February 2010 06:49, Mick wrote: > On Sunday 21 February 2010 17:01:13 Willie Wong wrote: >> On Sun, Feb 21, 2010 at 03:32:00PM +0000, Mick wrote: >> > On Sunday 21 February 2010 15:08:28 Willie Wong wrote: >> > > On Sun, Feb 21, 2010 at 02:50:09PM +0000, Mick wrote: >> > > > Yesterday I updated my system and after a series of: >> > > > >> > > > =A0revdep-rebuild --library libjpeg.so.7 >> > > > >> > > > and >> > > > >> > > > =A0revdep-rebuild -v -i >> > > > >> > > > I thought all was good to go. =A0Unfortunately, I now noticed that= I >> > > > cannot open encrypted messages anymore and signing mail fails. =A0= This >> > > > points towards gnupg which I remerged along with all packages I >> > > > thought might me relevant. =A0I haven't yet remerged openssl (will= try >> > > > that in a minute) but I am not sure that will help. =A0It's not ju= st >> > > > smime but also openpgp that fails. >> > > > >> > > > Has anyone else noticed this and have you found any fixes for it? >> > > >> > > Just a random guess: maybe revdep-rebuild updated to a new version a= nd >> > > configuration files changed? Did you look at the elogs of whatever y= ou >> > > re-emerged yesterday? >> > >> > Yes and I ran dispatch-conf for a couple of changes. =A0However, nothi= ng >> > that I recall was related to encryption: >> > >> > =A0 =A0 =A0Sat Feb 20 08:05:50 2010 >>> media-libs/jpeg-8 >> > =A0 =A0 =A0Sat Feb 20 08:20:29 2010 >>> media-sound/phonon-4.3.80-r1 >> > =A0 =A0 =A0Sat Feb 20 08:36:37 2010 >>> media-libs/tiff-3.9.2 >> > =A0 =A0 =A0Sat Feb 20 08:39:24 2010 >>> media-libs/libquicktime-1.1.3 >> > =A0 =A0 =A0Sat Feb 20 08:42:15 2010 >>> media-libs/gd-2.0.35-r1 >> > >> > Anything else I could look into? >> >> Then I am kind of out of ideas. You mentioned that you remerged gnupg: >> was there any warnings or logs at the end of the merge? (If you have >> it enabled, the logs maybe stored in /var/log/portage/elog/) >> >> You say that smime and openpgp fails, do you have the error message? >> It may help other people who know more about this to answer your >> question. > > Thanks again for your help. =A0The problem seems to be with pinentry when= gpg is > invoked manually: > > gpg: problem with the agent: No pinentry > > and then as a consequence: > > gpg: public key decryption failed: General error > gpg: decryption failed: No secret key > > However, I have remerged pinentry. =A0:-( > > Initially, I thought this was related to updating media-libs/jpeg-8 and > library libjpeg.so.7, but it seems that it may be related to qt3 becoming > deprecated? =A0Perhaps I should unmask app-crypt/pinentry-0.7.6 which has= qt4 in > its USE flags and try with that? > > Meanwhile I just resync'ed and there's a load of kde-4.3.5 updates. =A0Pe= rhaps I > was cought up in some major update bonanza and that's why this broke. =A0= I'll > finish the update and see how it goes. This is rather debilitating ... I have now update pinentry to 0.7.6 and I still have the same problem. :-( I may have to restore my system from a back up just to access my encrypted data, which is something I'd rather not have to do after a mammoth kde update. The elog of pinentry shows this, but I am not sure I understand what it means, or if it is related to my problem. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D >>> Messages generated by process 10763 on 2010-02-24 07:01:34 GMT for pack= age a pp-crypt/pinentry-0.7.6: LOG: postinst We no longer install pinentry-curses and pinentry-qt SUID root by default. Linux kernels >=3D2.6.9 support memory locking for unprivileged processes. The soft resource limit for memory locking specifies the limit an unprivileged process may lock into memory. You can also use POSIX capabilities to allow pinentry to lock memory. To do so activate the caps USE flag and add the CAP_IPC_LOCK capability to the permitted set of your users. =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Since invoking gpg on the CLI does not ask for a passphrase and it returns: gpg: problem with the agent: No pinentry I assume that the problem is with pinentry. Is there some other application involved here that I should look into? --=20 Regards, Mick