#239 wrong fingerprint displayed when "fingerprint" in gpg.conf

fixed
nobody
None
1.5.1
Minor
17.0.10-1~deb7u1
1.4.12
Linux
1.7.0
2014-07-10
2014-01-09
julm
No

STEPS TO REPRODUCE:
put "fingerprint" or "with-fingerprint" in ~/.gnupg/gpg.conf,
and check in enigmail the properties of a primary key having a subkey.
EXPECTING: fingerprint of the primary key being displayed.
PROBLEM: fingerprint of the last subkey is displayed.

Discussion

  • Ludwig Hügelschäfer

     
  • Ludwig Hügelschäfer

    I can reproduce this. Thanks for the report!

     
  • Ludwig Hügelschäfer

    Enigmail uses the following command to retrieve the key properties (relevant paramters only):

    gpg --with-fingerprint --fixed-list-mode --with-colons --list-sig <key-id>

    If there is a "with-fingerprint" in the gpg.conf file, then it will -among all the other key parts- print the fingerprint of first the primary and then the subkey, otherwise only the fingerprint of the primary.

    Enigmail will record the last occurrence of a fingerprint line, so it shows the fingerprint of the subkey.

    The question is, whether the gpg output as it is meets the expectations of the gpg developers. On the other hand, Enigmail could only record the first fingerprint in the output.

     
  • julm

    julm - 2014-01-09

    I think Enigmail should effectively use the first :fpr: line after the wanted :pub: line.

     
  • Patrick Brunschwig

    • status: open --> wont-fix
     
  • Patrick Brunschwig

    You should not add "with-fingerprint" to gpg.conf.

    Enigmail expects fingerprint information for some results, but not for all. The output format in GnuPG is such that the interpretation depends on how you specify the parameters. I.e. cannot interpret the output of GnuPG 100% correctly without knowing all command line (and gpg.conf) options.

    As there is no "--no-fingerprint" option for GnuPG, Enigmail expects that "with-fingerprint" is not a permanent option in gpg.conf.

     
  • Daniel Kahn Gillmor

    even if enigmail breaks in other places when "fingerprint" is present in gpg.conf, i don't see why we should avoid fixing the problem in this location, when the fix is clearly correct.

     
  • Patrick Brunschwig

    • status: wont-fix --> fixed
    • Fixed in version: --- --> 1.6.1
     
  • Patrick Brunschwig

    Fixed on trunk by Daniel's patch.

     
  • julm

    julm - 2014-01-11

    thank you all :)

     
  • Patrick Brunschwig

    • Fixed in version: 1.6.1 --> 1.7.0
     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks