EnigMail signature status icon wrong?
OpenPGP addon for Mozilla Thunderbird
Brought to you by:
pbrunschwig
Menu
▾
▴
Hi,
since I've updated EnigMail to version 2.0.8, the signature status icon is displaying a question mark overlay. So it suggests, that there's some problem with checking the signature. At least, I didn't realize this before.
But the header bar and the info dialog show the message, that the mail was encrypted and signed correctly.
Is this a known problem? Do you need more information to diagnose it?
Kind regards
Michael
It doesn't necessarily indicate a problem. It just indicates that you didn't verify the key. I.e. there is no confirmation that the sender is the person you think it is.
Actually, this didn't happen before.
It's also the case for sent mails (so the signature is from my key, which has implicit trust).
I've also signed my contact's key (it's displayed as "trusted" in EnigMail's key manager)
The icon corresponds to the color of the Enigmail header bar. If the header bar is green, the icon should not contain a question mart; if the header bar is cyan or yellow, the icon will contain a question mark or a "broken" sign.
Could it be that your key expired?
I think image's will help.
The image on the top is a mail, sent by myself, EnigMail version is 2.0.6.1 (green bar, no question mark)
The image in the middle is the result with EnigMail 2.0.7 and 2.0.8 on the very same message (cyan bar, question mark)
The bottom one is a screenshot of the signature key's properties (Key is valid and never expires)
The only difference I could see, is, that in version 2.0.6.1 "Schlüsselkennung" uses the short value, while later versions use the long value.
2.0.7 contained an error that made all valid signed messages display a cyan header bar, and the icon with a "?". But that was fixed in 2.0.8.
I have this behavior also with version 2.0.8. Do you need further information? Can I make any tests, that will help to find the problem?
I'm sure there is an explanation. Please attach a debug log file that you create right after decrypting the message.
See https://www.enigmail.net/index.php/en/faq-en?view=topic&id=15 for how to create that.
Hi,
here's the debug log. I replaced mail addresses, key ids and other identifiable information with different place holders.
Thanks for the log. I found the error: detection only works correctly with GnuPG 2.2.x - it doesn't detect trusted signatures with GnuPG 2.0.x. I fixed this for the next release.
Thank you :)
I'm looking forward to the new release.