Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.
Sign upEnigmail 2.0 update breaks qubes-gpg-split #3750
Comments
andrewdavidwong
added
bug
C: other
labels
Mar 27, 2018
andrewdavidwong
added this to the Release 3.2 updates milestone
Mar 27, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
holiman
commented
Mar 27, 2018
•
edited
Edited 1 time
-
holiman
edited Mar 27, 2018 (most recent)
edited
-
Mar 27, 2018 (most recent)
|
Can confirm the same on |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
mfc
Mar 27, 2018
Member
thanks @TFQOS for investigating the root cause.
I would bump up the priority of this and get the quick fix out, as this bug will break the most common split-gpg setups for all Qubes users.
related threads:
qubes-users: https://groups.google.com/d/msg/qubes-users/G2ii-BBOQgE/G5QV1w_1CQAJ
enigmail-users: https://admin.hostpoint.ch/pipermail/enigmail-users_enigmail.net/2018-March/004854.html
|
thanks @TFQOS for investigating the root cause. I would bump up the priority of this and get the quick fix out, as this bug will break the most common split-gpg setups for all Qubes users. related threads: |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
TFQOS
Mar 27, 2018
@@ -10,6 +10,10 @@
while [[ $1 ]]; do
if ! ((eoo)); then
case "$1" in
+ # https://github.com/QubesOS/qubes-issues/issues/3750
+ --no-auto-check-trustdb)
+ shift
+ ;;
--import)
# ignore all the options and only collect file name(s) - if any
shift
This patch should be applied to /usr/bin/qubes-gpg-client-wrapper (preferably in the template, or at each start of the VM)
'--no-auto-check-trustdb' seems related to performance concerns, should we just ignore it in qubes wrapper?
Or should we patch qubes-gpg-client binary?
TFQOS
commented
Mar 27, 2018
This patch should be applied to /usr/bin/qubes-gpg-client-wrapper (preferably in the template, or at each start of the VM) '--no-auto-check-trustdb' seems related to performance concerns, should we just ignore it in qubes wrapper? |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
Mar 28, 2018
Member
After reading https://dev.gnupg.org/T2019, I'd go with adding the option to the whitelist.
|
After reading https://dev.gnupg.org/T2019, I'd go with adding the option to the whitelist. |
andrewdavidwong
added
the
P: major
label
Mar 28, 2018
marmarek
closed this
in
marmarek/qubes-app-linux-split-gpg@232687a
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split-dom0-2.0.29-1.fc23 has been pushed to the r3.2 testing repository for dom0.
To test this update, please install it with the following command:
sudo qubes-dom0-update --enablerepo=qubes-dom0-current-testing
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
the
r3.2-dom0-cur-test
label
Mar 28, 2018
qubesos-bot
referenced this issue
in QubesOS/updates-status
Mar 28, 2018
Closed
app-linux-split-gpg v2.0.29 (r3.2) #464
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package app-linux-split-gpg has been pushed to the r4.0 testing repository for the CentOS centos7 template.
To test this update, please install it with the following command:
sudo yum update --enablerepo=qubes-vm-r4.0-current-testing
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
the
r4.0-centos7-cur-test
label
Mar 28, 2018
qubesos-bot
referenced this issue
in QubesOS/updates-status
Mar 28, 2018
Closed
app-linux-split-gpg v2.0.29 (r4.0) #465
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split-dom0-2.0.29-1.fc25 has been pushed to the r4.0 testing repository for dom0.
To test this update, please install it with the following command:
sudo qubes-dom0-update --enablerepo=qubes-dom0-current-testing
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
r4.0-dom0-cur-test
r3.2-fc25-cur-test
labels
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The component app-linux-split-gpg (including package qubes-gpg-split-2.0.29-1.fc26) has been pushed to the r3.2 testing repository for the Fedora template.
To test this update, please install it with the following command:
sudo yum update --enablerepo=qubes-vm-r3.2-current-testing
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The component |
qubesos-bot
added
the
r3.2-fc26-cur-test
label
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The component app-linux-split-gpg (including package qubes-gpg-split-2.0.29-1.fc26) has been pushed to the r4.0 testing repository for the Fedora template.
To test this update, please install it with the following command:
sudo yum update --enablerepo=qubes-vm-r4.0-current-testing
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The component |
qubesos-bot
added
the
r4.0-fc26-cur-test
label
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.29-1+deb10u1 has been pushed to the r3.2 testing repository for the Debian template.
To test this update, first enable the testing repository in /etc/apt/sources.list.d/qubes-*.list by uncommenting the line containing buster-testing (or appropriate equivalent for your template version), then use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
r3.2-buster-cur-test
r3.2-jessie-cur-test
labels
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.29-1+deb9u1 has been pushed to the r3.2 testing repository for the Debian template.
To test this update, first enable the testing repository in /etc/apt/sources.list.d/qubes-*.list by uncommenting the line containing stretch-testing (or appropriate equivalent for your template version), then use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
the
r3.2-stretch-cur-test
label
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.29-1+deb10u1 has been pushed to the r4.0 testing repository for the Debian template.
To test this update, first enable the testing repository in /etc/apt/sources.list.d/qubes-*.list by uncommenting the line containing buster-testing (or appropriate equivalent for your template version), then use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
r4.0-buster-cur-test
r4.0-jessie-cur-test
labels
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Mar 28, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.29-1+deb9u1 has been pushed to the r4.0 testing repository for the Debian template.
To test this update, first enable the testing repository in /etc/apt/sources.list.d/qubes-*.list by uncommenting the line containing stretch-testing (or appropriate equivalent for your template version), then use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
Mar 28, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
the
r4.0-stretch-cur-test
label
Mar 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
cooperq
Mar 29, 2018
for those who are hand patching this I also had to add the following line to /usr/bin/qubes-gpg-client-wrapper:
--sender)
shift
;;
cooperq
commented
Mar 29, 2018
|
for those who are hand patching this I also had to add the following line to --sender)
shift
;; |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
Cyrixo
Apr 2, 2018
Hello,
I use Qubes r4.0 and thunderbird, enigmail on fedora 26.
I installed the update under dom0 and fedora but the body of the message in thunderbird remains white.
Cyrixo
commented
Apr 2, 2018
|
Hello, |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
andrewdavidwong
Apr 3, 2018
Member
I use Qubes r4.0 and thunderbird, enigmail on fedora 26.
I installed the update under dom0 and fedora but the body of the message in thunderbird remains white.
The problem you're describing sounds different from the bug that this issue is about. If that's correct, please file a separate issue for your problem. If it's incorrect, please explain how the problem you're describing is the same as the one this issue is about.
The problem you're describing sounds different from the bug that this issue is about. If that's correct, please file a separate issue for your problem. If it's incorrect, please explain how the problem you're describing is the same as the one this issue is about. |
thewildcat
referenced this issue
Apr 9, 2018
Closed
Enigmail 2.0 update breaks qubes-gpg-split #2 #3807
added a commit
to marmarek/qubes-app-linux-split-gpg
that referenced
this issue
Apr 15, 2018
qubesos-bot
added
the
r3.2-buster-cur-test
label
Apr 15, 2018
qubesos-bot
referenced this issue
in QubesOS/updates-status
Apr 15, 2018
Closed
app-linux-split-gpg v2.0.30 (r3.2) #472
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Apr 15, 2018
Automated announcement from builder-github
The component app-linux-split-gpg (including package qubes-gpg-split-2.0.30-1.fc26) has been pushed to the r4.0 testing repository for the Fedora template.
To test this update, please install it with the following command:
sudo yum update --enablerepo=qubes-vm-r4.0-current-testing
qubesos-bot
commented
Apr 15, 2018
|
Automated announcement from builder-github The component |
qubesos-bot
added
the
r4.0-fc26-cur-test
label
Apr 15, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
grote
Apr 27, 2018
I am now having a similar issue with Enigmail adding --sender address@example.org to the command. Anybody else seeing this?
grote
commented
Apr 27, 2018
|
I am now having a similar issue with Enigmail adding |
andrewdavidwong
reopened this
Apr 28, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 7, 2018
Automated announcement from builder-github
The package qubes-gpg-split-dom0-2.0.30-1.fc25 has been pushed to the r4.0 stable repository for dom0.
To install this update, please use the standard update command:
sudo qubes-dom0-update
Or update dom0 via Qubes Manager.
qubesos-bot
commented
May 7, 2018
|
Automated announcement from builder-github The package Or update dom0 via Qubes Manager. |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 7, 2018
Automated announcement from builder-github
The package app-linux-split-gpg has been pushed to the r4.0 stable repository for the Fedora centos7 template.
To install this update, please use the standard update command:
sudo yum update
qubesos-bot
commented
May 7, 2018
|
Automated announcement from builder-github The package |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 7, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.30-1+deb9u1 has been pushed to the r4.0 stable repository for the Debian template.
To install this update, please use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
May 7, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
r4.0-stretch-stable
and removed
r4.0-stretch-cur-test
labels
May 7, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
cubi7
May 14, 2018
Will the be a plan to add the updated qubes-gpg-split to r3.2 stable? It is still on 2.0.28 and can not work with new enigmail and never version are nearly 2 months old. This will stop user be able to update enigmail to fix coming GPG secuity issues
cubi7
commented
May 14, 2018
|
Will the be a plan to add the updated qubes-gpg-split to r3.2 stable? It is still on 2.0.28 and can not work with new enigmail and never version are nearly 2 months old. This will stop user be able to update enigmail to fix coming GPG secuity issues |
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
marmarek
May 14, 2018
Member
GPG update is not the same as enigmail update or qubes-gpg-split update.
|
GPG update is not the same as enigmail update or qubes-gpg-split update. |
marmarek
closed this
May 14, 2018
qubesos-bot
added
r3.2-buster-stable
r3.2-jessie-stable
and removed
r3.2-buster-cur-test
r3.2-jessie-cur-test
labels
May 14, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 14, 2018
Automated announcement from builder-github
The package qubes-gpg-split_2.0.30-1+deb9u1 has been pushed to the r3.2 stable repository for the Debian template.
To install this update, please use the standard update command:
sudo apt-get update && sudo apt-get dist-upgrade
qubesos-bot
commented
May 14, 2018
|
Automated announcement from builder-github The package |
qubesos-bot
added
r3.2-stretch-stable
and removed
r3.2-stretch-cur-test
labels
May 14, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 14, 2018
Automated announcement from builder-github
The package qubes-gpg-split-dom0-2.0.30-1.fc23 has been pushed to the r3.2 stable repository for dom0.
To install this update, please use the standard update command:
sudo qubes-dom0-update
Or update dom0 via Qubes Manager.
qubesos-bot
commented
May 14, 2018
|
Automated announcement from builder-github The package Or update dom0 via Qubes Manager. |
qubesos-bot
added
r3.2-dom0-stable
r3.2-fc25-stable
and removed
r3.2-dom0-cur-test
r3.2-fc25-cur-test
labels
May 14, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 14, 2018
Automated announcement from builder-github
The component app-linux-split-gpg (including package qubes-gpg-split-2.0.30-1.fc26) has been pushed to the r3.2 stable repository for the Fedora template.
To install this update, please use the standard update command:
sudo yum update
qubesos-bot
commented
May 14, 2018
|
Automated announcement from builder-github The component |
qubesos-bot
added
r3.2-fc26-stable
and removed
r3.2-fc26-cur-test
labels
May 14, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
May 14, 2018
Automated announcement from builder-github
The component app-linux-split-gpg (including package qubes-gpg-split-2.0.30-1.fc26) has been pushed to the r4.0 stable repository for the Fedora template.
To install this update, please use the standard update command:
sudo yum update
qubesos-bot
commented
May 14, 2018
|
Automated announcement from builder-github The component |
qubesos-bot
added
r4.0-fc26-stable
and removed
r4.0-fc26-cur-test
labels
May 14, 2018
This comment has been minimized.
Show comment
Hide comment
This comment has been minimized.
qubesos-bot
Jun 18, 2018
Automated announcement from builder-github
The package app-linux-split-gpg has been pushed to the r4.0 testing repository for the CentOS centos7 template.
To test this update, please install it with the following command:
sudo yum update --enablerepo=qubes-vm-r4.0-current-testing
qubesos-bot
commented
Jun 18, 2018
|
Automated announcement from builder-github The package |
TFQOS commentedMar 26, 2018
Qubes OS version:
R3.2, fedora 26, testing repos enabled
Affected component(s):
qubes-gpg-split
Steps to reproduce the behavior:
Use Enigmail 2.0 (on Thunderbird 52.7.0 x64) with qubes-gpg-split
Expected behavior:
qubes-gpg-split should support '--no-auto-check-trustdb' option
Actual behavior:
Thunderbird stays frozen indefinitely trying the command:
/usr/bin/qubes-gpg-client-wrapper --charset utf-8 --display-charset utf-8 --no-auto-check-trustdb --batch --no-tty --status-fd 2 --with-fingerprint --fixed-list-mode --with-colons --list-keysThe command returns:
qubes-gpg-client: unrecognized option '--no-auto-check-trustdbGeneral notes:
Enigmail 2.0 use a new command-line option '--no-auto-check-trustdb'.
qubes-gpg-split should support this option.
Temporary fix: patching /usr/bin/qubes-gpg-client-wrapper with
to ignore the option.
Related issues:
Not found