gnupg-2.1 -> 2.1 appears to break decryption of saved messages

David Wolfskill david at catwhisker.org
Wed Jan 7 19:27:44 UTC 2015 

On Wed, Jan 07, 2015 at 05:34:51PM +0000, Matthew Seaman wrote:
> ...
> >>   I also enjoyed some friction trying to use gnupg 2.1 with mutt,
> >> though I didn't get the "Could not copy message" error that you
> >> report.
> >>
> >>   Instead I was seeing 'no secret key'.  In my case, this was resolved
> >> by following the advice at
> >>   https://wiki.archlinux.org/index.php/GnuPG#Unattended_passphrase .
> ...
> > Unfortunately, that wasn't my experience.  I'll revert back to gnupg-2.0
> > for now.
> 
> I ran into this.  The trick is to re-import your key-rings into gpg
> after the upgrade:
> 
>     cd ~/.gnupg
>     mv pubring.gpg pubring-210.gpg
>     mv secring.gpg secring-210.gpg
>     mv trustdb.gpg trustdb-210.gpg
>     gpg --import pubring-210.gpg
>     gpg --import secring-210.gpg     (Prompts for passphrases)
>     rm pubring-210.gpg
>     rm secring-210.gpg
>     mv trustdb-210.gpg trustdb.gpg
> 
> Then you should be able to do 'gpg --list-secret-keys' and similar, and
> mutt should work properly again.
> ...

OK; I finally had some time to try this.

* I ran "portmaster -o security/gnupg{,20}" to replace security/gnupg20
  with security/gnupg.

* I performed the above setps (except for the "rm" ones).

* I attempted to use mutt to read a locally-stored encrypted messgae.
  That attempt failed is the (now) usual way.

* I performed the steps suggested by Corey Halpin(re. the "loopback"
  pinentry mode).

* I re-tried using mutt to read the encrypted message; it still failed
  for me in the same way.

* I ran "portmaster -o security/gnupg{20,}" to revert to
  security/gnupg20.

* I re-tried using mutt to read the encrypted message; it still failed
  for me in the same way.

* In ~/.gnupg, I moved aside the new *.gpg files and moved my old ones
  into place.

* I re-tried using mutt to read the encrypted message; it still failed
  for me in the same way.

* I reverted the "loopback" mode pinentry specifications in ~/.muttrc.

* I re-tried using mutt to read the encrypted message; it worked.

Ugh. :-(

Peace,
david
-- 
David H. Wolfskill				david at catwhisker.org
Actions have consequences ... as do inactions.

See http://www.catwhisker.org/~david/publickey.gpg for my public key.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 949 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20150107/6b2b2ff5/attachment.sig>

More information about the freebsd-ports mailing list