Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign upSplit gpg does not on Fedora 23 template-based qube as gpg backend #1641
Comments
marmarek
added
bug
C: other
P: major
labels
Jan 16, 2016
marmarek
added this to the Release 3.1 milestone
Jan 16, 2016
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
|
cc @rootkovska |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Jan 16, 2016
Member
Interesting, it works fine after just listing keys in the backend:
[user@vault ~]$ gpg2 -K
gpg: starting migration from earlier GnuPG versions
gpg: porting secret keys from '/home/user/.gnupg/secring.gpg' to gpg-agent
gpg: key A67A3024: secret key imported
gpg: migration succeeded
/home/user/.gnupg/pubring.gpg
-----------------------------
sec rsa2048/A67A3024 2016-01-16
uid [ultimate] Real name (Comment) <Email@address>
ssb rsa2048/D755AC2A 2016-01-16
Apparently automatic key migration is done on listing keys, but not decryption. Also listing keys through split-gpg (qubes-gpg-client -K) is enough. This is why on my email VM I haven't such problem - mutt first list available keys.
I guess Thunderbird also list the keys, so also shouldn't be a problem there too. And ultimately, this isn't exactly split-gpg problem - the same happens when you try to decrypt a message directly using gpg2, without listing keys first (which would trigger keys migration).
Can we close this issue @rootkovska ? Or some action here is needed?
|
Interesting, it works fine after just listing keys in the backend:
Apparently automatic key migration is done on listing keys, but not decryption. Also listing keys through split-gpg ( I guess Thunderbird also list the keys, so also shouldn't be a problem there too. And ultimately, this isn't exactly split-gpg problem - the same happens when you try to decrypt a message directly using |
marmarek commentedJan 16, 2016
It works fine after switching backend qube back to Fedora 21 template.