gpg can decrypt mail, Enigmail can't
OpenPGP addon for Mozilla Thunderbird
Brought to you by:
pbrunschwig
Menu
▾
▴
Hi all.
Some time ago it works as expected. Now I can't read encrypted emails in Thunderbird on my Linux desktop. When receivingencrypted mail, mail body window is empty, with pink top bar 'Decryption incomplete; blabla'; clicking on 'Details' -> 'Security info' gives only the same 'Decryption incomplete', nothing more.
Here is related part of the enigmail log:
2016-03-03 13:41:58.060 [DEBUG] enigmailCommon.jsm: decryptMessageStart: verifyOnly=false
2016-03-03 13:41:58.061 execution.jsm: execStart: command = /usr/bin/gpg2 --charset utf-8 --display-charset utf-8 --use-agent --debug-level expert --debug-all --batch --no-tty --status-fd 2 --max-output 108500 --decrypt, needPassphrase=true, domWindow=[object ChromeWindow], listener=[object Object]
2016-03-03 13:41:58.061 [CONSOLE] enigmail> /usr/bin/gpg2 --charset utf-8 --display-charset utf-8 --use-agent --debug-level expert --debug-all --batch --no-tty --status-fd 2 --max-output 108500 --decrypt
2016-03-03 13:41:58.070 [DEBUG] enigmail> DONE
2016-03-03 13:41:58.091 [DEBUG] enigmailCommon.jsm: decryptMessageEnd: uiFlags=8, verifyOnly=false, noOutput=false
2016-03-03 13:41:58.092 [DEBUG] enigmailCommon.jsm: decryptMessageEnd: stderrStr=
gpg: NOTE: no default option file `/home/user/.gnupg/gpg.conf'
gpg: enabled debug flags: packet filter cache memstat trust extprog assuan
gpg: DBG: armor-filter: control: 5
gpg: DBG: armor-filter: control: 1
gpg: DBG: armor-filter: control: 3
gpg: DBG: armor-filter: control: 2
gpg: no valid OpenPGP data found.
[GNUPG:] NODATA 1
[GNUPG:] NODATA 2
gpg: decrypt_message failed: Unknown system error
random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
secmem usage: 0/65536 bytes in 0 blocks
When i save encrypted email as mail.eml and use command:
cat mail.eml | /usr/bin/gpg2 --charset utf-8 --display-charset utf-8 --use-agent --batch --no-tty --status-fd 2 --max-output 108500 --decrypt
result is decrypted message.
My guess gpg is ok, and problem is on Enigmail part.
How can I get more details on this mystical 'Unknown system error' from enigmail?
You should go to menu Enigmail > Preferences. Make sure the expert setting are visible, then click on the Advanced tab.
You should then DISable the option "Only download attachments when opened (IMAP only)".
PS. on a side remark, I would strongly recommend that you do not set options like -debug-level expert --debug-all in Enigmail. This tends to confuse Enigmail as it is not always clear what is true output and what is debug output.
That GPG debug options, it was temporary. It really gives nothing, so I turned it off already.
That option was disabled. I tried to turn it on - result is the same. Turned it off again. But, Patrik, thanks anyway.
What else could I try?
What I do in such cases is to create a completely new profile (or even a completely new system as I did today to debug my "gpg-agent is not started" issue. In that new environment, do a basich setup of your mail account, generate NEW TEST ONLY keys, send messages to yourself. If all works fine there, start to modify things, such as importing your keyring, your GnuPG config files, your per-receipient rules, your Enigmail settings --- one by one, to see where it breaks.
Done this before starting this thread. Already done. Renamed my old ~/.thunderbird , start Thunderbird and filled in minimal data for single email account. But thanks for your hint, Olav, I will try another system.
Do you keep your mails on an IMAP server? If yes, try to copy one of the mails to a local folder and see if it can be decrypted.
Is 'Save as...' (to .eml) in Thunderbird is different thing? (If not, please re-read my first post for 'When I save encrypted email ...')
I use single email account for experimenting on this issue. In my main profile, it uses POP3. In my 'experimental' profile, it uses IMAP. Problem seems to be unrelated to protocol.
Last edit: Mr. Wolf 2016-03-03
I mean right click on a mail > Copy To > (some folder in Thunderbird that is not on an IMAP server). And then try to read the mail in Thunderbird.
That's something entirely different than using the command line.
'Copy To' from POP3 mailbox folder to local Thunderbird foilder gives nothing. Same empty mail window with pink bar ...
Can you send me such a message (please use forward as attachment): I don't need to be able to decrypt it, but I'd like to check the structure. Please send it to patrick AT enigmail DOT net.
(I might need a few days to look at it though ...)