Re: Trouble with GnuPG 2.1

From: Nils Gillmann <niasterisk@grrlz.net>
To: info-gnus-english@gnu.org
Subject: Re: Trouble with GnuPG 2.1
Date: Mon, 14 Mar 2016 10:39:18 +0100	[thread overview]
Message-ID: <87vb4pwg8p.fsf@grrlz.net> (raw)
In-Reply-To: <87mvq2qugx.fsf@grrlz.net>

The last message did break in an unexpected way. Here should be
the real message:

Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:

> On 2016-03-13, at 17:21, Nils Gillmann wrote:
>
>> Jens Lechtenboerger <jens.lechtenboerger@fsfe.org> writes:
>>
>>> On 2016-03-13, at 16:16, Nils Gillmann wrote:
>>>
>>>> So I ran into this issue with gpg2.1 on emacs-24.5 and Gnus where
>>>> I can *de*crypt emails but I can't encrypt or sign.
>>>
>>> What exactly is the problem?
>>>
>>> You are using EasyPG, right?  In your configuration,
>>> (setq epg-debug t)
>>> appeared in comments.  What do you see in the debug buffer if you
>>> enable debugging?
>>
>>
>> Right, sorry I forgot that part.
>> Here's the debugger output with the NUL symbols striped:
>>
>> Debugger entered--Lisp error: (error "Process epg not running")
>>   signal(error ("Process epg not running"))
>>   byte-code("\b\203\302\b@!\210\bA\211\204\303 @ A\"\207"
>> [mml2015-epg-secret-key-id-list error password-cache-remove signal] 4)
>>   mml2015-epg-encrypt((part (sign . "pgpmime") (encrypt . "pgpmime")
>> (tag-location . 281) (contents . "\nThis is a test reply to get an debug
>> result for Gnus\n\n-- \nng\npersonal contact: http://krosos.sdf.org\nEDN:
>> https://wiki.c3d2.de/Echt_Dezentrales_Netz/en\n")) t)
>
> I’ve never seen this.
>
> What is your epg-gpg-program?

I was only used to epa-file method, if I set epg-program (see the
first post for the content) it does not change the behavior.
As sources on this differ, what is the recommended way to do
gpg2.1 encryption with Gnus? what's the minimum to have in your
.gnus.el?

> Is gpg-agent running?

yes, with `/home/niasterisk/.guix-profile/bin/gpg-agent --sh
--daemon --write-env-file /home/niasterisk/.cache/gpg-agent-info

> If so is the correct version of gpg-agent running?
> Maybe kill gpg-agent first; it should be started automatically
> with gpg-2.1.

killing the agent, restarting Gnus and sending this

From: Nils Gillmann <niasterisk@grrlz.net>
To: niasterisk@grrlz.net
Subject: asdf
Gcc: nnfolder+archive:sent.2016-03
Date: Sun, 13 Mar 2016 20:38:15 +0100
Message-ID: <87a8m2b23c.fsf@grrlz.net>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux)
--text follows this line--
<#secure method=pgpmime mode=signencrypt>
asdf
-- 
ng
personal contact: http://krosos.sdf.org
EDN: https://wiki.c3d2.de/Echt_Dezentrales_Netz/en

gives me:

Debugger entered--Lisp error: (error "Process epg not running")
  signal(error ("Process epg not running"))
  byte-code("\b\203..\302\b@!\210\bA\211.\204..\303	@	A\"\207" [mml2015-epg-secret-key-id-list error password-cache-remove signal] 4)
  mml2015-epg-encrypt((part (sign . "pgpmime") (encrypt . "pgpmime")
(tag-location . 280) (contents . "asdf\n-- \nng\npersonal contact:
http://krosos.sdf.org\nEDN:
https://wiki.c3d2.de/Echt_Dezentrales_Netz/en\n")) t)
  mml2015-encrypt((part (sign . "pgpmime") (encrypt . "pgpmime")
(tag-location . 280) (contents . "asdf\n-- \nng\npersonal contact:
http://krosos.sdf.org\nEDN:
https://wiki.c3d2.de/Echt_Dezentrales_Netz/en\n")) t)
  mml-pgpmime-encrypt-buffer((part (sign . "pgpmime") (encrypt
. "pgpmime") (tag-location . 280) (contents . "asdf\n-- \nng\npersonal
contact: http://krosos.sdf.org\nEDN:
https://wiki.c3d2.de/Echt_Dezentrales_Netz/en\n")) t)
  mml-generate-mime-1((part (sign . "pgpmime") (encrypt . "pgpmime")
(tag-location . 280) (contents . "asdf\n-- \nng\npersonal contact:
http://krosos.sdf.org\nEDN:
https://wiki.c3d2.de/Echt_Dezentrales_Netz/en\n")))
  mml-generate-mime()
  message-encode-message-body()
  message-send-mail(nil)
  message-send-via-mail(nil)
  message-send(nil)
  message-send-and-exit(nil)
  call-interactively(message-send-and-exit nil nil)
  command-execute(message-send-and-exit)

But gpg-agent does not continue to run or does not restart with
Gnus.

contents in ~/.gnupg/ is:

~/.gnupg/gpg-agent.conf:
pinentry-program /home/niasterisk/.guix-profile/bin/pinentry-gtk
default-cache-ttl 86400
max-cache-ttl 86400
# workaround for broken2.1?
allow-loopback-pinentry
#allow-emacs-pinentry

~/.gnupg/gpg.conf:
#keyserver hkps://hkps.pool.sks-keyserver.net
#keyserver-options ca-cert-file=~/certificates/sks-keyservers.netCA.pem
keyserver-options no-honor-keyserver-url include-revoked
#keyserver-options include-revoked

fixed-list-mode
keyid-format 0xlong
personal-digest-preferences SHA512 SHA384 SHA256 SHA224
default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 BZIP2 ZLIB ZIP Uncompressed
use-agent
verify-options show-uid-validity
list-options show-uid-validity
cert-digest-algo SHA512

# workaround for broken2.1?
pinentry-mode loopback

no-comments
with-fingerprint
no-emit-version

~/.gnupg/dirmngr.conf
keyserver hkp://hkps.pool.sks-keyservers.net
hkp-cacert /home/niasterisk/certificates/sks-keyservers.netCA.pem

> If you set
> (setq epg-debug t)
> what does the buffer " *epg-debug*" contain?

the output in the comment above

>
> Best wishes
> Jens

-- 
ng
personal contact: http://krosos.sdf.org
EDN: https://wiki.c3d2.de/Echt_Dezentrales_Netz/en

_______________________________________________
info-gnus-english mailing list
info-gnus-english@gnu.org
https://lists.gnu.org/mailman/listinfo/info-gnus-english