Let me guess: You have both gpg version 1.4.x and version 2.1.y installed, and the key storage has been migrated from 1.4/2.0 to 2.1 format. CLI uses 1.4 and the old storage. Enigmail uses 2.1 and the new storage. The passphrase has been changed in the old storage, but not in the new. So far my hypothesis.
To prove whether this is true, please enter both
gpg --version
and
gpg2 --version
and post the directory listing of your gnupg directory. On windows this is
dir C:\Users\<yourUserId>\AppData\Roaming\gnupg\
for unixoid systems this is
ls -al ~/.gnupg
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
gpg --version
gpg (GnuPG) 1.4.21
Copyright (C) 2015 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
gpg2 --version
gpg (GnuPG) 2.1.13
libgcrypt 1.6.6
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later https://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
It's just as I assumed. GnuPG 2.1 has the private keys in the "private-keys-v1.d" directory. GnuPG 1.4 has them in "secring.gpg". If you want to change the passphrase for the 2.1 storage, you must change it in Enigmail or using the "gpg2" command. It depends on you whether to keep both key storage systems in sync (by doing the same operations on both) or if you drop 1.4 and move it to a backup.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
I changed my gpg passphrase using cli : gpg --editkey etc. But enigmail (thunderbird 45.4.0) still uses the old passphrase...
Why?
Thank you
Let me guess: You have both gpg version 1.4.x and version 2.1.y installed, and the key storage has been migrated from 1.4/2.0 to 2.1 format. CLI uses 1.4 and the old storage. Enigmail uses 2.1 and the new storage. The passphrase has been changed in the old storage, but not in the new. So far my hypothesis.
To prove whether this is true, please enter both
and
and post the directory listing of your gnupg directory. On windows this is
for unixoid systems this is
gpg --version
gpg (GnuPG) 1.4.21
Copyright (C) 2015 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: ~/.gnupg
Algorithmes pris en charge :
Clef publique : RSA, RSA-E, RSA-S, ELG-E, DSA
Chiffrement : IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256,
TWOFISH, CAMELLIA128, CAMELLIA192, CAMELLIA256
Hachage : MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression : Non compressé, ZIP, ZLIB, BZIP2
gpg2 --version
gpg (GnuPG) 2.1.13
libgcrypt 1.6.6
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later https://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
drwx------. 3 fp ufr 4096 2 déc. 11:00 ./
drwxr-xr-x. 54 fp ufr 4096 5 déc. 09:09 ../
-rw-------. 1 fp ufr 2858 26 déc. 2009 export-key.pri
-rw-------. 1 fp ufr 6890 26 déc. 2009 export-key.pub
-rw-r--r--. 1 fp ufr 2409 14 mars 2005 fpatte-efeo.asc
-rw-------. 1 fp ufr 2437 14 mars 2005 fpatte-univ.asc
-rw-------. 1 fp ufr 555 5 mai 2014 francis.asc
-rw-------. 1 fp ufr 151789 8 nov. 2008 François.jpg
-rw-------. 1 fp ufr 44 16 juil. 2015 gpg-agent.conf
-rw-r--r--. 1 fp ufr 284 7 août 2014 gpg-agent.conf.gpgconf.bak
-rw-------. 1 fp ufr 9207 6 févr. 2007 gpg.conf
-rw-r--r--. 1 fp ufr 0 15 sept. 22:46 .gpg-v21-migrated
-rw-------. 1 fp ufr 3021 8 nov. 2008 id.jpg
-rw-------. 1 fp ufr 11 20 nov. 2007 .#lk0x555555841020.dipankar.30287
-rw-------. 1 fp ufr 11 20 nov. 2007 .#lk0x55555584eb90.dipankar.30287
-rw-------. 1 fp ufr 11 20 nov. 2007 .#lk0x55555585a380.dipankar.30287
-rw-------. 1 fp ufr 12858 14 mars 2005 moineau.asc
drwx------. 2 fp ufr 4096 15 sept. 22:46 private-keys-v1.d/
-rw-------. 1 fp ufr 44564 7 sept. 16:51 pubring.gpg
-rw-------. 1 fp ufr 43419 7 sept. 16:51 pubring.gpg~
-rw-------. 1 fp ufr 600 2 déc. 11:15 random_seed
-rw-------. 1 fp ufr 5195 2 déc. 11:00 secring.gpg
-rw-------. 1 fp ufr 2080 31 janv. 2016 trustdb.gpg
It's just as I assumed. GnuPG 2.1 has the private keys in the "private-keys-v1.d" directory. GnuPG 1.4 has them in "secring.gpg". If you want to change the passphrase for the 2.1 storage, you must change it in Enigmail or using the "gpg2" command. It depends on you whether to keep both key storage systems in sync (by doing the same operations on both) or if you drop 1.4 and move it to a backup.