syslog: Jun 24 15:20:54 amalthea seahorse-agent[4120]: unrecognized command: GETINFO terminal: chainsaw@amalthea ~ $ gpg --decrypt test.txt.asc You need a passphrase to unlock the secret key for user: "Tony Vroon (Chainsaw) <chainsaw@gentoo.org>" 4096-bit ELG key, ID 51FA82E0, created 2004-01-01 (main key ID B5058F9A) gpg: problem with the agent: Not supported gpg: encrypted with 4096-bit ELG key, ID 51FA82E0, created 2004-01-01 "Tony Vroon (Chainsaw) <chainsaw@gentoo.org>" gpg: public key decryption failed: General error gpg: decryption failed: No secret key
[ebuild R ] app-crypt/gnupg-2.0.12 USE="adns bzip2 ldap nls -caps -doc -openct -pcsc-lite (-selinux) -smartcard* -static" 0 kB [ebuild R ] app-crypt/seahorse-2.26.2 USE="avahi ldap libnotify -debug -doc -test" 0 kB [ebuild R ] app-crypt/seahorse-plugins-2.26.2 USE="applet epiphany gedit libnotify nautilus -debug -test" 0 kB Portage 2.1.6.13 (default/linux/amd64/2008.0/no-multilib, gcc-4.3.3, glibc-2.10.1-r0, 2.6.30-08503-g4e8a237 x86_64) ================================================================= System uname: Linux-2.6.30-08503-g4e8a237-x86_64-Intel-R-_Core-TM-2_Duo_CPU_T9400_@_2.53GHz-with-gentoo-2.0.1 Timestamp of tree: Unknown app-shells/bash: 4.0_p24 dev-java/java-config: 1.3.7-r1, 2.1.8-r1 dev-lang/python: 2.4.4-r6, 2.5.4-r2, 2.6.2-r1 dev-python/pycrypto: 2.0.1-r8 dev-util/cmake: 2.6.4 sys-apps/baselayout: 2.0.1 sys-apps/openrc: 0.4.3-r3 sys-apps/sandbox: 2.0 sys-devel/autoconf: 2.13, 2.63-r1 sys-devel/automake: 1.5, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2, 1.10.2, 1.11 sys-devel/binutils: 2.19.1-r1 sys-devel/gcc-config: 1.4.1 sys-devel/libtool: 2.2.6a virtual/os-headers: 2.6.29 ACCEPT_KEYWORDS="amd64 ~amd64" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-O2 -march=native -mtune=native -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /var/lib/hsqldb" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/gentoo-release /etc/revdep-rebuild /etc/sandbox.d /etc/splash /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c /etc/udev/rules.d" CXXFLAGS="-O2 -march=native -mtune=native -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="distlocks fixpackages parallel-fetch protect-owned sandbox sfperms sign strict unmerge-orphans userfetch" GENTOO_MIRRORS="http://gentoo.virginmedia.com" LANG="en_GB.UTF-8" LC_ALL="en_GB.UTF-8" LDFLAGS="-Wl,--as-needed" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/cvs/gentoo-x86" PORTDIR_OVERLAY="/usr/local/portage" SYNC="cvs://chainsaw@cvs.gentoo.org:/var/cvsroot" USE="16bit 16bit-indices 7zip S3TC X a52 aac aalib ace acpi adns adplug alac alsa amd64 amr amrnb amrwb animgif aotuv applet archive aspell async asyncns audacious audiofile autoipd avahi bash-completion berkdb binary-drivers binfilter bluetooth bonjour bs2b bzip2 cairo calendar canberra cardbus cdaudio cdda cddb cdparanoia cdr cdrkit cdrom chardet chipcard chm cleartype cli consolekit cpio cracklib crypt css cups curl dbus device-mapper dhcp dhcpcd dirac disk-partition diskio divx djvu dmi dri drm dts dv dvd dvdr dvi ecc eds elf enca encode epiphany erandom exif exiv2 expat fam fat fbcon fbcondecor ffmpeg fftw flac fortran ftp fuse g15 galago gconf gd gdbm gdl gdm gedit gif gimp glib glitz glut gmedia gnome gnome-keyring gnutls gpg gphoto2 gs gsf gsm gstreamer gtk gzip hal hddtemp hdri hfs howl-compat hpn ical icons iconv id3 id3tag idle idn ieee1394 imagemagick imap imlib inkjar inotify ipod ipv6 irda isdnlog jabber java jbig jce john jpeg jpeg2k juju keyring lame laptop lcms ldap libburn libcaca libgcrypt libnotify libsamplerate libsexy libssh2 libwww lilo logrotate lzma lzo mad magic md5sum mdnsresponder-compat midi mikmod mime mjpeg mmap mmx mmxext mng modplug moonlight mp2 mp3 mp4 mpeg mplayer mudflap musepack music nano-syntax nautilus ncurses nemesi neon network-cron networkmanager nls nptl nptlonly nsplugin nss nuv nvidia ogg opengl openmp openssl otr ots pam pango pccts pcmcia pcre pdf perl physfs pidgin plotutils png pnm policykit posix postscript ppds pppd pulseaudio python rar rdesktop readline reflection replytolist resolvconf rss rtc samba scenarios schroedinger screenshot scrobbler sdl session sftp shorten sid smp sms sndfile snmp soup sourceview sox span speex spell spl sqlite srt srv sse sse2 sse3 ssl ssse3 startup-notification subtitles svg svgz sysfs syslog szip t1lib taglib tagwriting tcpd theora thesaurus threads tiff timidity tk tls tordns totem tracker trayicon truetype tta twolame unicode urandom usb v4l2 vcd vnc vorbis vorbis-psy vte wav wavpack webkit wifi wma wmf wmp xcb xcomposite xface xhtml xinerama xml xmp xorg xpm xscreensaver xsettings xslt xulrunner xv xvid xvmc yv12 zeroconf zlib" ALSA_CARDS="hda-intel" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" USERLAND="GNU" VIDEO_CARDS="intel" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, LINGUAS, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
Suggestion from Cardoe to mask 2.0.12 makes sense. I must agree with the FreeBSD user, breaking API like that on a minor version bump is unacceptable.
Upstream bug filed
I've CCed crypto so they're aware that gnupg-2.0.12 could probably do with a temporary mask and/or a tracker bug...
(In reply to comment #2) I think that app-crypt/seahorse{,-plugins} could temporarily depend on older versions of app-crypt/gnupg. There is no reason to force downgrade of GnuPG for users of KMail or KGPG.
mozilla-thunderbird+enigmail dont work with gnupg-2.0.12 too
@crypto, are we masking this yet ?
Arfrever, since you're not on IRC I'm CCing you again. Please note that this breaks both seahorse and enigmail, which for a lot of people are the primary means of using GPG. Please mask 2.0.12 until new releases of seahorse & enigmail are available. Explicitly depending on older versions from seahorse/enigmail is likely to cause up/downgrade yoyo effects for users. I doubt they will appreciate that.
(In reply to comment #8) > Arfrever, since you're not on IRC I'm CCing you again. I'm in crypto project and I don't want to receive the same e-mails twice :) . I will reconsider masking 2.0.12.
I masked 2.0.12 yesterday. Gnome: please backport the patch for seahorse ASAP.
Well... I was wondering why I had a downgrade for a lib that works no problem, and I found out that this was not the lib that caused problem, but some programs that were broken by a change in the lib, that's nice and all but the problem isn't really from the lib, so why mask it ? Wouldn't it be a better thing to put a dependency on <app-crypt/gnupg-2.0.12 in the programs that are broken ?
(In reply to comment #11) > Wouldn't it be a better thing to put a dependency on <app-crypt/gnupg-2.0.12 in > the programs that are broken ? short answer: no, because the lib shouldn't have changed that way in a minor release. That's what have been said in the comments already.
gnome, mozilla: Is this fixed yet? crypto would like to unmask app-crypt/gnupg-2.0.12.
Crypto team members decided that >=app-crypt/gnupg-2.0.12 will be unmasked no later than on 2009-10-04.
(In reply to comment #14) >=app-crypt/gnupg-2.0.12 has been unmasked.
(In reply to comment #15) >=app-crypt/gnupg-2.0.12 has been unmasked. With the upstream commit going in today and not yet applied downstream. You just broke all Gnome users again.
And the mask has been added back. Seriously, do not break other packages on purpose. Actions like that won't be tolerated. Tony, How soon do you think we can get the upstream changes pulled into the tree?
(In reply to comment #17) > How soon do you think we can get the upstream changes pulled into the tree? I have spoken to Gilles, he will commit as soon as he has time for it (he is currently working on Gnome 2.28 ebuild verification so it can go into the tree).
And anybody with DSA2 smartcards is S.O.L. until they have GnuPG 2.0.12 or newer. The issue has been described for enigmail for many months, and I've seen patches for it. I'd personally hoped that we could have support for DSA2 cards in the 10.0 media, but that's now a complete fail. Your GNOME tracker has had a patch for more than a month, and it was 3 months ago that I asked you to backport said patches. We heard nothing on progress from you, so we gave you a further month's notice to solve it, and then you get upset again because you ignored the notice.
besides the fact that the patch was obviously incomplete and upstream didn't say a word about if it was good enough or not before commiting it yesterday ? Sorry, I don't play like this with user's systems. Thanks for the notice anyway, we'll deal with the borkage as time permits.
anyone using gpg-agent which is most enigmail users, please restart your gpg-agent daemon after update to ensure you will be able to continue to sign your email.
(In reply to comment #16) > (In reply to comment #15) > >=app-crypt/gnupg-2.0.12 has been unmasked. > > With the upstream commit going in today and not yet applied downstream. You > just broke all Gnome users again. > How does this break all gnome users? I do not see any problem with enigmail/thunderbird as long as gpg-agent is restarted after the upgrade. seahorse-plugin has a patch that could be applied to ensure it works with >=gnupg-2.0.12 just a matter of maintainer adding it to the tree.
+*seahorse-plugins-2.26.2-r1 (17 Oct 2009) + + 17 Oct 2009; Romain Perier <mrpouet@gentoo.org> + +seahorse-plugins-2.26.2-r1.ebuild, + +files/seahorse-plugins-2.26.2-agent-gpg-compat.patch: + Fix compatibility with gnupg-2.0.12 per bug #275291, patch import from + upstream bug #586855. :)
>=app-crypt/gnupg-2.0.12 has been unmasked.
(In reply to comment #21) > anyone using gpg-agent which is most enigmail users, please restart your > gpg-agent daemon after update to ensure you will be able to continue to sign > your email. > Thx, fixed it for me :-)
*** Bug 291385 has been marked as a duplicate of this bug. ***
Reopening per bug 291385 Cardoe: please try to poke at what the GnuPG/seahorse response to the GETINFO command per the upstream patch added by mrpouet is? you'll have to strace -ff on seahorse's pid to find the unix socket fun.
Nothing to be done for mozilla team, an ewarn is already in the gnupg ebuild wanring about restarting the daemon.
Could someone clarify why is this bug still open ? I don't remember having problems with 2.26 once gnupg-2.0.12 finally got unmasked and 2.28 certainly doesn't.
Is anyone still suffering this?
(In reply to comment #30) > Is anyone still suffering this? > Closing then
