From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 07 14:03:25 2013 Received: (at submit) by debbugs.gnu.org; 7 Oct 2013 18:03:25 +0000 Received: from localhost ([127.0.0.1]:60767 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTF9N-0006rf-B2 for submit@debbugs.gnu.org; Mon, 07 Oct 2013 14:03:25 -0400 Received: from eggs.gnu.org ([208.118.235.92]:55680) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTF9H-0006rU-Mf for submit@debbugs.gnu.org; Mon, 07 Oct 2013 14:03:19 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VTF9C-0005nF-No for submit@debbugs.gnu.org; Mon, 07 Oct 2013 14:03:15 -0400 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on eggs.gnu.org X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,T_DKIM_INVALID autolearn=disabled version=3.3.2 Received: from lists.gnu.org ([2001:4830:134:3::11]:52979) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTF9C-0005nB-Jr for submit@debbugs.gnu.org; Mon, 07 Oct 2013 14:03:10 -0400 Received: from eggs.gnu.org ([2001:4830:134:3::10]:57376) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTF97-0002Nq-JG for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 14:03:10 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VTF92-0005e8-21 for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 14:03:05 -0400 Received: from mail-qa0-x22c.google.com ([2607:f8b0:400d:c00::22c]:63862) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VTF91-0005dy-Tu for bug-gnu-emacs@gnu.org; Mon, 07 Oct 2013 14:02:59 -0400 Received: by mail-qa0-f44.google.com with SMTP id j7so3246746qaq.3 for ; Mon, 07 Oct 2013 11:02:59 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:subject:date:message-id:mime-version:content-type; bh=W4qvwttrfBkehB3zj05DxH22JFbBa4VMy5Jh/nMxNok=; b=WUTap8UIdJamCe+JWMEqK8ZKjqVQ23leRRkEPNq6Re45eHfHr38SgmfsMj1auz00M9 qfb0UfNvi66xPoWUr4YsspXwxGi8Pfu1zYNGqM9587tr5oYtBeG7OgWEIorSRtK0X/QT SxJgtVLZ8NlDTkcvAN43pwePH7MAwo1MFZjMk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:subject:date:message-id:mime-version :content-type; bh=W4qvwttrfBkehB3zj05DxH22JFbBa4VMy5Jh/nMxNok=; b=k+5MLYrwHEhqPg1c3YWZ+ZpBaLj0c0RxnsyBEQ91bxSWMNLNoDR6O/TerrTPZQENAE Xpf2jw6SzSTr9M56PbeFuXFTGo36p4Nq5TqBuZvGrLBpskOoq5SGXSj/ZrAu2dnkXN5B SWJmsZiSNw9GxvlC8aea68XmV43YJj5f4n/hL3V9D2XtJeNUkfidtluUQExtZrQTfgZS meOWGo+LhsoguT/dw56T80hpwHlWVmloAA2JG6m2X+zfA2DXKebXvjA+mCGH7o2Bjp3+ N4OxsxxO1g6NyyrDNqLLFaFBBPKOJ/jtCfV6WQaDSRmdoI0atHzvUhUSG5enQwukacOu Ytsw== X-Gm-Message-State: ALoCoQmOMDajTPiT7/8E098QsjEvHwATRwkUEEtjgmcTBBdbJXkrVwbYcFA5xcXB20xOtmB524M1 X-Received: by 10.49.12.14 with SMTP id u14mr10666257qeb.74.1381168979270; Mon, 07 Oct 2013 11:02:59 -0700 (PDT) Received: from flea.lifelogs.com (c-98-229-61-72.hsd1.ma.comcast.net. [98.229.61.72]) by mx.google.com with ESMTPSA id y9sm64585401qaj.9.1969.12.31.16.00.00 (version=TLSv1.2 cipher=RC4-SHA bits=128/128); Mon, 07 Oct 2013 11:02:58 -0700 (PDT) From: Teodor Zlatanov To: bug-gnu-emacs@gnu.org Subject: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Date: Mon, 07 Oct 2013 14:03:08 -0400 Message-ID: <87mwml0xib.fsf@flea.lifelogs.com> MIME-Version: 1.0 Content-Type: text/plain X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-Received-From: 2001:4830:134:3::11 X-Spam-Score: -5.0 (-----) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.0 (-----) 1. Install GnuPG 2.x, don't run gpg-agent 2. Open file.gpg, X or curses pinentry dialog pops up The suggested workaround is to run gpg-agent. Problems: - on a headless server this can lock up Emacs - if the GPG agent is dead, locked up, or not running, there's no remedy - the X pinentry dialog is very non-specific ("Enter passphrase") so there's no way to know what passphrase is being requested and why if you don't have the specific instance in focus. - there's no way to avoid the prompt in favor of an Emacs minibuffer query In GNU Emacs 24.3.50.2 (x86_64-unknown-linux-gnu, GTK+ Version 3.4.4) of 2013-09-20 on flea.lifelogs.com Bzr revision: 114415 rgm@gnu.org-20130921005207-1eq49miu7feptu8i Windowing system distributor `The X.Org Foundation', version 11.0.11304000 System Description: Gentoo Base System release 2.2 From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 07 19:54:29 2013 Received: (at control) by debbugs.gnu.org; 7 Oct 2013 23:54:29 +0000 Received: from localhost ([127.0.0.1]:33191 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTKdA-0007z5-Lt for submit@debbugs.gnu.org; Mon, 07 Oct 2013 19:54:29 -0400 Received: from fencepost.gnu.org ([208.118.235.10]:46915) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTKd7-0007yt-VH; Mon, 07 Oct 2013 19:54:26 -0400 Received: from du-a.org ([2001:e41:db5e:fb14::1]:38389 helo=debian) by fencepost.gnu.org with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1VTKd6-0005Fv-M6; Mon, 07 Oct 2013 19:54:25 -0400 Message-ID: <87a9ikwsbi.fsf-ueno-ueno@gnu.org> From: Daiki Ueno To: Teodor Zlatanov Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files In-Reply-To: <87mwml0xib.fsf@flea.lifelogs.com> (Teodor Zlatanov's message of "Mon, 07 Oct 2013 14:03:08 -0400") References: <87mwml0xib.fsf@flea.lifelogs.com> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (gnu/linux) Date: Tue, 08 Oct 2013 08:54:17 +0900 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Spam-Score: -5.2 (-----) X-Debbugs-Envelope-To: control Cc: 15553-done@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.2 (-----) tags 15553 notabug thanks Teodor Zlatanov writes: > 1. Install GnuPG 2.x, don't run gpg-agent > 2. Open file.gpg, X or curses pinentry dialog pops up > > The suggested workaround is to run gpg-agent. So you can workaround, what's your problem? > Problems: > > - on a headless server this can lock up Emacs Not a problem if you use the workaround. > - if the GPG agent is dead, locked up, or not running, there's no remedy Ditto. > - the X pinentry dialog is very non-specific ("Enter passphrase") so > there's no way to know what passphrase is being requested and why if > you don't have the specific instance in focus. Unreleated to this bug, please open a new one. > - there's no way to avoid the prompt in favor of an Emacs minibuffer query As I said a number of times, that degrades security. If the insecurity is okay for you, what's the reason you want to use GnuPG 2.x rather than GnuPG 1.x? From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 07 21:01:01 2013 Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 01:01:01 +0000 Received: from localhost ([127.0.0.1]:33268 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLfY-0002BX-HG for submit@debbugs.gnu.org; Mon, 07 Oct 2013 21:01:00 -0400 Received: from mail-qe0-f52.google.com ([209.85.128.52]:58019) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTLfV-0002BN-KQ for 15553@debbugs.gnu.org; Mon, 07 Oct 2013 21:00:58 -0400 Received: by mail-qe0-f52.google.com with SMTP id w7so1842985qeb.11 for <15553@debbugs.gnu.org>; Mon, 07 Oct 2013 18:00:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lifelogs.com; s=google; h=from:to:cc:subject:organization:references:mail-copies-to :gmane-reply-to-list:date:in-reply-to:message-id:user-agent :mime-version:content-type; bh=UHO0WpoghLn9384Cg4iG3YZ8hLTCK03TX9e903YFelM=; b=n/D1TwGrGEaY2rO1bwNMARuVTwflD76ysFUT2rRhLT2pLjPdkN1vJUPhSkbfqKXbLT rWNGl+btWXQZzh9B+0LQaTXqiBP8oahtCI44rtGPf+aqJEOc+g73sQgWB2hcLgCUKF9m WoEWmb8D5ohwIKUC2n3085tQ4LThe9ml/fCx0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:organization:references :mail-copies-to:gmane-reply-to-list:date:in-reply-to:message-id :user-agent:mime-version:content-type; bh=UHO0WpoghLn9384Cg4iG3YZ8hLTCK03TX9e903YFelM=; b=LymnOC6CWmgpvBLF2d4bBTqQriJ+emuMumXEAXy64NLBa+whRg3LSnXmFYYsuuQ48X yemr3JM15JJvzp5wp4fVCQqB0c4vS8HCAZ60XpZqbPVGodxr5cobX8aGz/i/JdQRgo50 Ar6BW+MoDUfXnZX+h52ja2ZyshGFMiijiUhFaHMGPPVoNLdHac4SV8Zz+yL42MBGrayo RW3E141u3ntUsQpkkzFM17F0Z9o+FggK70OQWFAHxt3QfMwYCqypRMzt+gLhTTbsm5TW EP2BlSjd0GgvDAXGr/6/eNR7ZN4WImyV0W5m94SDMgiQu6rPAg7h2NwissoPoyIn76ZO ys8w== X-Gm-Message-State: ALoCoQmF9FKDXGCdt4HiXQ/r+gl1nsPW2izfnVK/YakpZkwJzo5qd6hGL43Fe42Y3zb085HZMFTI X-Received: by 10.224.5.137 with SMTP id 9mr347173qav.65.1381194056848; Mon, 07 Oct 2013 18:00:56 -0700 (PDT) Received: from flea.lifelogs.com (c-98-229-61-72.hsd1.ma.comcast.net. [98.229.61.72]) by mx.google.com with ESMTPSA id 4sm65714034qak.11.1969.12.31.16.00.00 (version=TLSv1.2 cipher=RC4-SHA bits=128/128); Mon, 07 Oct 2013 18:00:56 -0700 (PDT) From: Ted Zlatanov To: 15553@debbugs.gnu.org Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Organization: =?utf-8?B?0KLQtdC+0LTQvtGAINCX0LvQsNGC0LDQvdC+0LI=?= @ Cienfuegos References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> X-Face: bd.DQ~'29fIs`T_%O%C\g%6jW)yi[zuz6; d4V0`@y-~$#3P_Ng{@m+e4o<4P'#(_GJQ%TT= D}[Ep*b!\e,fBZ'j_+#"Ps?s2!4H2-Y"sx" Mail-Copies-To: never Gmane-Reply-To-List: yes Date: Mon, 07 Oct 2013 21:01:06 -0400 In-Reply-To: <87a9ikwsbi.fsf-ueno-ueno@gnu.org> (Daiki Ueno's message of "Tue, 08 Oct 2013 08:54:17 +0900") Message-ID: <874n8szict.fsf@flea.lifelogs.com> User-Agent: Gnus/5.130008 (Ma Gnus v0.8) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -0.7 (/) X-Debbugs-Envelope-To: 15553 Cc: ueno@gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -0.7 (/) On Tue, 08 Oct 2013 08:54:17 +0900 Daiki Ueno wrote: DU> Teodor Zlatanov writes: >> 1. Install GnuPG 2.x, don't run gpg-agent >> 2. Open file.gpg, X or curses pinentry dialog pops up >> >> The suggested workaround is to run gpg-agent. DU> So you can workaround, what's your problem? See below. >> Problems: >> >> - on a headless server this can lock up Emacs DU> Not a problem if you use the workaround. >> - if the GPG agent is dead, locked up, or not running, there's no remedy DU> Ditto. Look. gpg-agent is an external daemon. Kill it manually or it dies accidentally or it blocks for whatever reason. Now the user has no access to their secret data and Emacs could even completely lock up. You're assuming access to a resource that you can't verify (gpg-agent). Or rather, GnuPG is depending on it. >> - there's no way to avoid the prompt in favor of an Emacs minibuffer query DU> As I said a number of times, that degrades security. If the insecurity DU> is okay for you, what's the reason you want to use GnuPG 2.x rather than DU> GnuPG 1.x? I'd rather not use either but have no choice right now. I would like to avoid the GnuPG dependency altogether as I've explained. Anyhow, I was hoping that GnuPG 2.x can provide a special option (as we've discussed that you could propose) to make this possible. If that's not your interest, then let's just call this one done as a "user misunderstanding of basic security" or whatever you like. Thanks for your time Ted From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 07 21:43:33 2013 Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 01:43:33 +0000 Received: from localhost ([127.0.0.1]:33347 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTMKi-0003Al-9c for submit@debbugs.gnu.org; Mon, 07 Oct 2013 21:43:33 -0400 Received: from fencepost.gnu.org ([208.118.235.10]:48168) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTMKg-0003Ac-Am for 15553@debbugs.gnu.org; Mon, 07 Oct 2013 21:43:30 -0400 Received: from du-a.org ([2001:e41:db5e:fb14::1]:38394 helo=debian) by fencepost.gnu.org with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1VTMKf-00008W-Br for 15553@debbugs.gnu.org; Mon, 07 Oct 2013 21:43:29 -0400 Message-ID: <871u3wwn9f.fsf-ueno@gnu.org> From: Daiki Ueno To: 15553@debbugs.gnu.org Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <874n8szict.fsf@flea.lifelogs.com> Date: Tue, 08 Oct 2013 10:43:24 +0900 In-Reply-To: <874n8szict.fsf@flea.lifelogs.com> (Ted Zlatanov's message of "Mon, 07 Oct 2013 21:01:06 -0400") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Spam-Score: -5.2 (-----) X-Debbugs-Envelope-To: 15553 X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.2 (-----) Ted Zlatanov writes: > Look. gpg-agent is an external daemon. Kill it manually or it dies > accidentally or it blocks for whatever reason. It's as easy to restart as kill it manually. Even gpg2 automatically respawns it if it is not running. If it dies accidentally or blocks, you should report it to GnuPG. From debbugs-submit-bounces@debbugs.gnu.org Mon Oct 07 23:27:52 2013 Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 03:27:52 +0000 Received: from localhost ([127.0.0.1]:33495 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTNxf-0005cc-Tn for submit@debbugs.gnu.org; Mon, 07 Oct 2013 23:27:52 -0400 Received: from ironport2-out.teksavvy.com ([206.248.154.182]:13130) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTNxe-0005cV-Lg for 15553@debbugs.gnu.org; Mon, 07 Oct 2013 23:27:51 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Av8EABK/CFHO+K8t/2dsb2JhbAA8CLs1g1kXc4IfAQVWIxALNAcLFBgNiEjBLY0bRk2CXAOkeoFegmop X-IPAS-Result: Av8EABK/CFHO+K8t/2dsb2JhbAA8CLs1g1kXc4IfAQVWIxALNAcLFBgNiEjBLY0bRk2CXAOkeoFegmop X-IronPort-AV: E=Sophos;i="4.84,565,1355115600"; d="scan'208";a="34990411" Received: from 206-248-175-45.dsl.teksavvy.com (HELO pastel.home) ([206.248.175.45]) by ironport2-out.teksavvy.com with ESMTP/TLS/ADH-AES256-SHA; 07 Oct 2013 23:24:10 -0400 Received: by pastel.home (Postfix, from userid 20848) id 8724A6049A; Mon, 7 Oct 2013 23:27:49 -0400 (EDT) From: Stefan Monnier To: 15553@debbugs.gnu.org Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Message-ID: References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> Date: Mon, 07 Oct 2013 23:27:49 -0400 In-Reply-To: <87a9ikwsbi.fsf-ueno-ueno@gnu.org> (Daiki Ueno's message of "Tue, 08 Oct 2013 08:54:17 +0900") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.3 (/) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, ueno@gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) >> - on a headless server this can lock up Emacs That's not good. We should try to make sure that detect the problematic situation, or make it easy for the user to get out of it (with something like a C-g). >> - if the GPG agent is dead, locked up, or not running, there's no remedy > Ditto. It can be very annoying for the user, and tricky to trackdown, so it's clearly a real problem. Of course, I have no idea how easy it would be to fix it, but that doesn't make it a non-problem. It incidentally does sound like it matches the symptom of a problem I've had a few times (tho I never bothered to track it down enough to be able to confirm that it was indeed this problem). >> - there's no way to avoid the prompt in favor of an Emacs minibuffer query > As I said a number of times, that degrades security. If the insecurity > is okay for you, what's the reason you want to use GnuPG 2.x rather than > GnuPG 1.x? Maybe the user doesn't really want to use gpg2 (maybe it's installed for some other user, maybe gpg1 is not installed for some reason, or maybe the user didn't realize that gpg1 is not obsoleted by gpgp2), yet the user may not care about the degraded security. Stefan From debbugs-submit-bounces@debbugs.gnu.org Tue Oct 08 03:07:47 2013 Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 07:07:47 +0000 Received: from localhost ([127.0.0.1]:33792 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTROT-0003FV-8f for submit@debbugs.gnu.org; Tue, 08 Oct 2013 03:07:46 -0400 Received: from fencepost.gnu.org ([208.118.235.10]:52203) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTROQ-0003FN-Pv for 15553@debbugs.gnu.org; Tue, 08 Oct 2013 03:07:43 -0400 Received: from du-a.org ([2001:e41:db5e:fb14::1]:38420 helo=debian) by fencepost.gnu.org with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1VTROQ-0001pG-6B; Tue, 08 Oct 2013 03:07:42 -0400 Message-ID: <87d2ngutom.fsf-ueno@gnu.org> From: Daiki Ueno To: Stefan Monnier Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> Date: Tue, 08 Oct 2013 16:07:37 +0900 In-Reply-To: (Stefan Monnier's message of "Mon, 07 Oct 2013 23:27:49 -0400") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Spam-Score: -5.2 (-----) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.2 (-----) Stefan Monnier writes: >>> - on a headless server this can lock up Emacs > > That's not good. We should try to make sure that detect the > problematic situation, or make it easy for the user to get out of it > (with something like a C-g). I doubt such a hard lockup is possible, as epg.el uses async process. From debbugs-submit-bounces@debbugs.gnu.org Tue Oct 08 12:58:00 2013 Received: (at 15553) by debbugs.gnu.org; 8 Oct 2013 16:58:00 +0000 Received: from localhost ([127.0.0.1]:35283 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTabf-0001tV-NN for submit@debbugs.gnu.org; Tue, 08 Oct 2013 12:58:00 -0400 Received: from ironport2-out.teksavvy.com ([206.248.154.182]:9224) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTabb-0001tI-B2 for 15553@debbugs.gnu.org; Tue, 08 Oct 2013 12:57:57 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Av8EABK/CFHO+K8t/2dsb2JhbABEuzWDWRdzgh8BBVYjEAs0BwsUGA0kiCSxH5AOkQoDpHqBXoMT X-IPAS-Result: Av8EABK/CFHO+K8t/2dsb2JhbABEuzWDWRdzgh8BBVYjEAs0BwsUGA0kiCSxH5AOkQoDpHqBXoMT X-IronPort-AV: E=Sophos;i="4.84,565,1355115600"; d="scan'208";a="35034577" Received: from 206-248-175-45.dsl.teksavvy.com (HELO pastel.home) ([206.248.175.45]) by ironport2-out.teksavvy.com with ESMTP/TLS/ADH-AES256-SHA; 08 Oct 2013 12:54:12 -0400 Received: by pastel.home (Postfix, from userid 20848) id ED8A36028B; Tue, 8 Oct 2013 12:57:53 -0400 (EDT) From: Stefan Monnier To: Daiki Ueno Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Message-ID: References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <87d2ngutom.fsf-ueno@gnu.org> Date: Tue, 08 Oct 2013 12:57:53 -0400 In-Reply-To: <87d2ngutom.fsf-ueno@gnu.org> (Daiki Ueno's message of "Tue, 08 Oct 2013 16:07:37 +0900") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.3 (/) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) >>>> - on a headless server this can lock up Emacs >> That's not good. We should try to make sure that detect the >> problematic situation, or make it easy for the user to get out of it >> (with something like a C-g). > I doubt such a hard lockup is possible, as epg.el uses async process. But it calls accept-process-output, so it can still get stuck. And even if inhibit-quit is nil, maybe there's no frame open anywhere so the user can't hit C-g. So the only recourse would be connecting to it via another emacsclient, which might fail to work if Emacs is stuck in an accept-process-output waiting for a specific process. Stefan From debbugs-submit-bounces@debbugs.gnu.org Tue Oct 08 20:39:23 2013 Received: (at 15553) by debbugs.gnu.org; 9 Oct 2013 00:39:23 +0000 Received: from localhost ([127.0.0.1]:36138 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VThoA-0008BV-DF for submit@debbugs.gnu.org; Tue, 08 Oct 2013 20:39:22 -0400 Received: from fencepost.gnu.org ([208.118.235.10]:40883) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTho1-0008BH-Ry for 15553@debbugs.gnu.org; Tue, 08 Oct 2013 20:39:17 -0400 Received: from du-a.org ([2001:e41:db5e:fb14::1]:38498 helo=debian) by fencepost.gnu.org with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1VTho0-0005Pg-W9; Tue, 08 Oct 2013 20:39:13 -0400 Message-ID: <87bo2zcm6s.fsf-ueno@gnu.org> From: Daiki Ueno To: Stefan Monnier Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <87d2ngutom.fsf-ueno@gnu.org> Date: Wed, 09 Oct 2013 09:39:07 +0900 In-Reply-To: (Stefan Monnier's message of "Tue, 08 Oct 2013 12:57:53 -0400") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/23.4 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Spam-Score: -5.3 (-----) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.3 (-----) Stefan Monnier writes: >>>>> - on a headless server this can lock up Emacs >>> That's not good. We should try to make sure that detect the >>> problematic situation, or make it easy for the user to get out of it >>> (with something like a C-g). >> I doubt such a hard lockup is possible, as epg.el uses async process. > > But it calls accept-process-output, so it can still get stuck. Yes, but it's not a hard lockup. I can get out from the loop with C-g. And actually Emacs 24 has the code to allow pinentry to fallback into the curses mode in that case (though the interaction is not very well). From debbugs-submit-bounces@debbugs.gnu.org Tue Oct 08 23:05:35 2013 Received: (at 15553) by debbugs.gnu.org; 9 Oct 2013 03:05:35 +0000 Received: from localhost ([127.0.0.1]:36337 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTk5e-00039V-63 for submit@debbugs.gnu.org; Tue, 08 Oct 2013 23:05:34 -0400 Received: from ironport2-out.teksavvy.com ([206.248.154.182]:10029) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTk5c-00039N-5n for 15553@debbugs.gnu.org; Tue, 08 Oct 2013 23:05:32 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Av8EABK/CFHO+K8t/2dsb2JhbABEuzWDWRdzgh4BAQQBViMFCws0BwsUGA0kiB4GsR+QDpEKA6R6gV6DEw X-IPAS-Result: Av8EABK/CFHO+K8t/2dsb2JhbABEuzWDWRdzgh4BAQQBViMFCws0BwsUGA0kiB4GsR+QDpEKA6R6gV6DEw X-IronPort-AV: E=Sophos;i="4.84,565,1355115600"; d="scan'208";a="35077206" Received: from 206-248-175-45.dsl.teksavvy.com (HELO fmsmemgm.homelinux.net) ([206.248.175.45]) by ironport2-out.teksavvy.com with ESMTP/TLS/ADH-AES256-SHA; 08 Oct 2013 23:01:48 -0400 Received: by fmsmemgm.homelinux.net (Postfix, from userid 20848) id 6A723AE215; Tue, 8 Oct 2013 23:05:31 -0400 (EDT) From: Stefan Monnier To: Daiki Ueno Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Message-ID: References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <87d2ngutom.fsf-ueno@gnu.org> <87bo2zcm6s.fsf-ueno@gnu.org> Date: Tue, 08 Oct 2013 23:05:31 -0400 In-Reply-To: <87bo2zcm6s.fsf-ueno@gnu.org> (Daiki Ueno's message of "Wed, 09 Oct 2013 09:39:07 +0900") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.3 (/) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) >> But it calls accept-process-output, so it can still get stuck. > Yes, but it's not a hard lockup. I can get out from the loop with C-g. But if you have no terminal open (yet) on that emacs-server, you can't hit C-g. > And actually Emacs 24 has the code to allow pinentry to fallback into > the curses mode in that case (though the interaction is not very well). And same as above: there might not be any tty for curses to talk to. Stefan From debbugs-submit-bounces@debbugs.gnu.org Wed Oct 09 00:10:49 2013 Received: (at 15553) by debbugs.gnu.org; 9 Oct 2013 04:10:49 +0000 Received: from localhost ([127.0.0.1]:36441 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTl6m-0004g1-Pf for submit@debbugs.gnu.org; Wed, 09 Oct 2013 00:10:49 -0400 Received: from fencepost.gnu.org ([208.118.235.10]:43388) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VTl6k-0004fu-R0 for 15553@debbugs.gnu.org; Wed, 09 Oct 2013 00:10:47 -0400 Received: from du-a.org ([2001:e41:db5e:fb14::1]:38531 helo=localhost.localdomain) by fencepost.gnu.org with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1VTl6k-0004GF-C6; Wed, 09 Oct 2013 00:10:46 -0400 Message-ID: From: Daiki Ueno To: Stefan Monnier Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <87d2ngutom.fsf-ueno@gnu.org> <87bo2zcm6s.fsf-ueno@gnu.org> Date: Wed, 09 Oct 2013 13:10:43 +0900 In-Reply-To: (Stefan Monnier's message of "Tue, 08 Oct 2013 23:05:31 -0400") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: -5.3 (-----) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -5.3 (-----) Stefan Monnier writes: >>> But it calls accept-process-output, so it can still get stuck. >> Yes, but it's not a hard lockup. I can get out from the loop with C-g. > > But if you have no terminal open (yet) on that emacs-server, you can't > hit C-g. Well, is that a realistic use case? What do you suppose precisely? I thought that you meant like: $ emacs -nw file.gpg or even $ emacs -batch -l file.el.gpg on a remote terminal. Either works fine here with pinentry-curses. From debbugs-submit-bounces@debbugs.gnu.org Wed Oct 09 20:34:05 2013 Received: (at 15553) by debbugs.gnu.org; 10 Oct 2013 00:34:05 +0000 Received: from localhost ([127.0.0.1]:38954 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VU4CZ-0007Jz-Jq for submit@debbugs.gnu.org; Wed, 09 Oct 2013 20:34:04 -0400 Received: from ironport2-out.teksavvy.com ([206.248.154.182]:53589) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1VU4CS-0007Jg-Au for 15553@debbugs.gnu.org; Wed, 09 Oct 2013 20:33:57 -0400 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: Av8EABK/CFFMCreE/2dsb2JhbABEuzWDWRdzgh4BAQQBViMFCws0BwsUGA0kiB4GwS2RCgOkeoFegxM X-IPAS-Result: Av8EABK/CFFMCreE/2dsb2JhbABEuzWDWRdzgh4BAQQBViMFCws0BwsUGA0kiB4GwS2RCgOkeoFegxM X-IronPort-AV: E=Sophos;i="4.84,565,1355115600"; d="scan'208";a="35158661" Received: from 76-10-183-132.dsl.teksavvy.com (HELO fmsmemgm.homelinux.net) ([76.10.183.132]) by ironport2-out.teksavvy.com with ESMTP/TLS/ADH-AES256-SHA; 09 Oct 2013 20:30:09 -0400 Received: by fmsmemgm.homelinux.net (Postfix, from userid 20848) id 56172AE0C1; Wed, 9 Oct 2013 20:33:55 -0400 (EDT) From: Stefan Monnier To: Daiki Ueno Subject: Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files Message-ID: References: <87mwml0xib.fsf@flea.lifelogs.com> <87a9ikwsbi.fsf-ueno-ueno@gnu.org> <87d2ngutom.fsf-ueno@gnu.org> <87bo2zcm6s.fsf-ueno@gnu.org> Date: Wed, 09 Oct 2013 20:33:55 -0400 In-Reply-To: (Daiki Ueno's message of "Wed, 09 Oct 2013 13:10:43 +0900") User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3.50 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Spam-Score: 0.3 (/) X-Debbugs-Envelope-To: 15553 Cc: tzz@lifelogs.com, 15553@debbugs.gnu.org X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: 0.3 (/) >>>> But it calls accept-process-output, so it can still get stuck. >>> Yes, but it's not a hard lockup. I can get out from the loop with C-g. >> But if you have no terminal open (yet) on that emacs-server, you can't >> hit C-g. > Well, is that a realistic use case? What do you suppose precisely? > I thought that you meant like: > $ emacs -nw file.gpg > or even > $ emacs -batch -l file.el.gpg Sorry I didn't use the right terminology. I meant an "emacs --daemon" I.e. run an emacs process as a server and then connect to it via emacsclient. This server can sit in the background with no tty nor GUI frame open anywhere. If you then "emacsclient -eval " and this involves opening a .gpg file you might get stuck with an emacs server. In any case, this is hypothetical. I haven't even tried it, and who knows maybe it does behave properly in the end (e.g. gpg2 errors out because it can't find any X11 display nor any tty to use to prompt the user). So let's not worry about it too much until there's a concrete problematic case. Stefan From unknown Sun Jun 22 07:54:02 2025 Received: (at fakecontrol) by fakecontrolmessage; To: internal_control@debbugs.gnu.org From: Debbugs Internal Request Subject: Internal Control Message-Id: bug archived. Date: Thu, 07 Nov 2013 12:24:04 +0000 User-Agent: Fakemail v42.6.9 # This is a fake control message. # # The action: # bug archived. thanks # This fakemail brought to you by your local debbugs # administrator