| View previous topic :: View next topic |
| Author |
Message |
Genetic
Tux's lil' helper
Joined: 09 Jun 2006
Posts: 111
|
 Posted: Sat Apr 21, 2007 9:13 am Post subject: Thunderbird 2.0 and gpg |
 |
|
Hello,
since the thunderbird 2 upgrade I can't decrypt email encrypted with my public key. Thunderbird/Enigmail gives me the following error message:
| Quote: |
OpenPGP Security Info
Error - secret key needed to decrypt message
gpg command line and output:
/usr/bin/gpg --charset utf8 --batch --no-tty --status-fd 2 -d --use-agent
gpg: problem with the agent: No pinentry
gpg: encrypted with 2048-bit ELG key, ID ..., created 2004-01-29
"X Y <xy@xy.net>"
gpg: encrypted with 4096-bit ELG key, ID ..., created 2006-07-25
"Y Z <yz@yz.de>"
gpg: public key decryption failed: General error
gpg: encrypted with 2048-bit ELG key, ID ..., created 2003-11-22
"Z A <za@freenet.de>"
gpg: decryption failed: No secret key
|
(I replaced the key IDs with ... and changed the email addresses). The second key is mine (the one above the "General error" line. As I'm not familiar with gpg, can someone give me a hint of what's wrong or how to fix it? It worked just fine with Thunderbird 1.x.
Thanks in advance
//Genetic |
|
| Back to top |
|
 |
IQgryn
l33t
Joined: 05 Sep 2005
Posts: 764
Location: WI, USA
|
| Posted: Sat Apr 21, 2007 4:10 pm Post subject: |
|
|
| You may need to re-emerge enigmail after upgrading thunderbird. |
|
| Back to top |
|
|
Genetic
Tux's lil' helper
Joined: 09 Jun 2006
Posts: 111
|
| Posted: Sat Apr 21, 2007 7:15 pm Post subject: |
|
|
I already did that. I even did an 'emerge -e thunderbird', where the last ebuild is enigmail.
By the way: I also tried gpg --encrypt and gpg --decrypt which worked for my private/public key.
//Genetic |
|
| Back to top |
|
|
Genetic
Tux's lil' helper
Joined: 09 Jun 2006
Posts: 111
|
| Posted: Sun Apr 22, 2007 3:00 pm Post subject: |
|
|
Little addition: I just tried Thunderbird 1.5 and it works...
Do you think it is a bug in Thunderbird 2?
//Genetic |
|
| Back to top |
|
|
meadlin
n00b
Joined: 15 Jan 2003
Posts: 14
Location: California City, CA
|
| Posted: Sun Apr 29, 2007 4:09 am Post subject: bump |
|
|
| Having the same problems here. Exist when using the xpi version of enigmail with the mozilla-thunderbird ebuild also. Note, I'm not using the mozilla-thunderbird-bin ebuild, but enigmail generates the error with the 0.95 ebuild of enigmail as well. |
|
| Back to top |
|
|
karnesky
Apprentice
Joined: 18 Mar 2004
Posts: 218
|
| Posted: Tue May 01, 2007 3:48 pm Post subject: |
|
|
The enigmail in portage with Thunderbird 2 mangles my outgoing PGP/MIME messages. The XPI version leads to the errors reported previously. This is on two different boxes (an x86 and an amd64). Something funny is going on.
Reverting to TB 1.5 fixes everything.
_________________
Donate to F/OSS |
|
| Back to top |
|
|
meadlin
n00b
Joined: 15 Jan 2003
Posts: 14
Location: California City, CA
|
| Posted: Wed May 02, 2007 6:56 am Post subject: [Solved]...Partially... |
|
|
Ok, after uninstalling the XPI, and the ebuild, and the mozilla-thunderbird ebuild...
If you install the mozilla-thunderbird-bin ebuild, then install the XPI version of enigmail, it works, at least for me. |
|
| Back to top |
|
|
Skyr
n00b
Joined: 16 Mar 2005
Posts: 8
|
| Posted: Tue May 22, 2007 3:27 pm Post subject: Workaround: gpg-agent |
|
|
Same problem here, just emerged thunderbird-2.0 (source, not the bin package) and enigmail; as a workaround, I just set up gpg-agent: Emerge app-crypt/pinentry and net-misc/keychain. Put the following in your ~/.gnupg/gpg-agent.conf:
| Code: |
pinentry-program usr/bin/pinentry-gtk-2
default-cache-ttl 7200
max-cache-ttl 14400
|
Make sure your gpg-agent is running (and the environment is set properly) - keychain helps you with that. Thunderbird/Enigmail will use the gpg-agent daemon - which in turn will ask for a passphrase when needed. |
|
| Back to top |
|
|
grafrotz
n00b
Joined: 27 Aug 2006
Posts: 38
Location: Frankfurt, Germany
|
| Posted: Tue May 29, 2007 11:38 am Post subject: another solution |
|
|
i had the same problem in mozilla-thunderbird 2.0.0.0 and enigmail-0.95.0-tb.xpi. (i compiled mozilla-thunderbird from source - emerge - and downloaded the xpi by hand.)
| Code: |
...
gpg: Problem mit dem Agenten: Ungültige IPC Antwort
...
gpg: Entschlüsselung mit Public-Key-Verfahren fehlgeschlagen: Allgemeiner Fehler
gpg: Entschlüsselung fehlgeschlagen: Kein geheimer Schlüssel
|
i found that it happens too without mozilla-thunderbird. i saved an email-source-code to a textfile and tried in the console: "gpg email.txt". i received the same errors as in thunderbird. so the problem is in gpg and/or pinentry.
i found that /usr/bin/pinentry-gtk-2 causes the problem.
 my solution is to use another pinentry frontend: nano -w ~/.gnupg/gpg-agent.conf
| Code: |
pinentry-program /usr/bin/pinentry-qt
default-cache-ttl 7200
max-cache-ttl 14400
|
nano -w ~/.gnupg/gpg.conf
| Code: |
# Passphrase agent
use-agent
|
first i tried it with
| Code: |
gpg-agent --daemon
and copy&paste the output line to the command line (for example: "GPG_AGENT_INFO=/tmp/gpg-HqVL2H/S.gpg-agent:24323:1; export GPG_AGENT_INFO;")
|
but i noticed that when not starting "gpg-agent --daemon", gpg works too.
it works from the command line "gpg email.txt" and it works too out of thunderbird!
tip: start thunderbird from a console and watch the output.
update: using "pinentry-program /usr/bin/pinentry-curses" in the ~/.gnupg/gpg-agent.conf works too from the command line, but can not be used out of thunderbird (?!)...
perhaps the easiest solution is:
| Code: |
USE="-gtk qt3" emerge app-crypt/pinentry
|
and perhaps the problem is caused by gtk+... |
|
| Back to top |
|
|
|
Networking & Security
