GNU bug report logs - #15553
24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files

Previous Next

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Daiki Ueno <ueno <at> gnu.org>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#15553: closed (24.3.50; epg.el and GnuPG 2.x cause
 unavoidable pinentry prompts for symmetrically encrypted files)
Date: Mon, 07 Oct 2013 23:55:02 +0000

[Message part 1 (text/plain, inline)]

Your message dated Tue, 08 Oct 2013 08:54:17 +0900
with message-id <87a9ikwsbi.fsf-ueno-ueno <at> gnu.org>
and subject line Re: bug#15553: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files
has caused the debbugs.gnu.org bug report #15553,
regarding 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for symmetrically encrypted files
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
15553: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=15553
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]

From: Teodor Zlatanov <tzz <at> lifelogs.com>
To: bug-gnu-emacs <at> gnu.org
Subject: 24.3.50; epg.el and GnuPG 2.x cause unavoidable pinentry prompts for
 symmetrically encrypted files
Date: Mon, 07 Oct 2013 14:03:08 -0400

1. Install GnuPG 2.x, don't run gpg-agent
2. Open file.gpg, X or curses pinentry dialog pops up

The suggested workaround is to run gpg-agent.

Problems:

- on a headless server this can lock up Emacs

- if the GPG agent is dead, locked up, or not running, there's no remedy

- the X pinentry dialog is very non-specific ("Enter passphrase") so
  there's no way to know what passphrase is being requested and why if
  you don't have the specific instance in focus.

- there's no way to avoid the prompt in favor of an Emacs minibuffer query



In GNU Emacs 24.3.50.2 (x86_64-unknown-linux-gnu, GTK+ Version 3.4.4)
 of 2013-09-20 on flea.lifelogs.com
Bzr revision: 114415 rgm <at> gnu.org-20130921005207-1eq49miu7feptu8i
Windowing system distributor `The X.Org Foundation', version 11.0.11304000
System Description:	Gentoo Base System release 2.2

[Message part 3 (message/rfc822, inline)]

From: Daiki Ueno <ueno <at> gnu.org>
To: Teodor Zlatanov <tzz <at> lifelogs.com>
Cc: 15553-done <at> debbugs.gnu.org
Subject: Re: bug#15553: 24.3.50;
 epg.el and GnuPG 2.x cause unavoidable pinentry prompts for
 symmetrically encrypted files
Date: Tue, 08 Oct 2013 08:54:17 +0900

tags 15553 notabug
thanks

Teodor Zlatanov <tzz <at> lifelogs.com> writes:

> 1. Install GnuPG 2.x, don't run gpg-agent
> 2. Open file.gpg, X or curses pinentry dialog pops up
>
> The suggested workaround is to run gpg-agent.

So you can workaround, what's your problem?

> Problems:
>
> - on a headless server this can lock up Emacs

Not a problem if you use the workaround.

> - if the GPG agent is dead, locked up, or not running, there's no remedy

Ditto.

> - the X pinentry dialog is very non-specific ("Enter passphrase") so
>   there's no way to know what passphrase is being requested and why if
>   you don't have the specific instance in focus.

Unreleated to this bug, please open a new one.

> - there's no way to avoid the prompt in favor of an Emacs minibuffer query

As I said a number of times, that degrades security.  If the insecurity
is okay for you, what's the reason you want to use GnuPG 2.x rather than
GnuPG 1.x?

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.