From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Richard Stallman Newsgroups: gmane.emacs.devel Subject: Re: Fix needed for communication with gpg-agent Date: Fri, 23 Feb 2007 17:09:31 -0500 Message-ID: References: <87irdzs6pp.fsf@stupidchicken.com> <87fy91g1pl.fsf@catnip.gol.com> <87wt2dk2rv.fsf@stupidchicken.com> <873b4yt7xx.fsf@stupidchicken.com> <87ps82ukz8.fsf@wheatstone.g10code.de> <87slcynii0.fsf@stupidchicken.com> Reply-To: rms@gnu.org NNTP-Posting-Host: lo.gmane.org Content-Type: text/plain; charset=ISO-8859-15 X-Trace: sea.gmane.org 1172268715 4808 80.91.229.12 (23 Feb 2007 22:11:55 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Fri, 23 Feb 2007 22:11:55 +0000 (UTC) Cc: wk@gnupg.org, cyd@stupidchicken.com, miles@gnu.org, ueno@unixuser.org, emacs-devel@gnu.org To: Sascha Wilde Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Fri Feb 23 23:11:48 2007 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1HKidl-00072V-Mh for ged-emacs-devel@m.gmane.org; Fri, 23 Feb 2007 23:11:45 +0100 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1HKidl-0004jx-A9 for ged-emacs-devel@m.gmane.org; Fri, 23 Feb 2007 17:11:45 -0500 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1HKid7-0004Un-6A for emacs-devel@gnu.org; Fri, 23 Feb 2007 17:11:05 -0500 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1HKid6-0004UX-M6 for emacs-devel@gnu.org; Fri, 23 Feb 2007 17:11:04 -0500 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1HKid6-0004UQ-HI for emacs-devel@gnu.org; Fri, 23 Feb 2007 17:11:04 -0500 Original-Received: from fencepost.gnu.org ([199.232.76.164]) by monty-python.gnu.org with esmtp (Exim 4.52) id 1HKid6-0003vc-A3 for emacs-devel@gnu.org; Fri, 23 Feb 2007 17:11:04 -0500 Original-Received: from rms by fencepost.gnu.org with local (Exim 4.60) (envelope-from ) id 1HKibb-0000kX-WC; Fri, 23 Feb 2007 17:09:32 -0500 In-reply-to: (message from Sascha Wilde on Thu, 22 Feb 2007 23:00:49 +0100) X-detected-kernel: Linux 2.6, seldom 2.4 (older, 4) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:66708 Archived-At: I think this suggestion is based on a misunderstanding -- the security problems in the current implementation (when not using gpg-agent) has nothing to do with caching, it comes form the fact, that emacs writes the the passphrase to an temporary file (which is then feed to gpg). Thanks for filling in that important detail. (This is why I said we needed to involve you in the discussion before deciding what to do.) If all we have to do is avoid passing it thru a temporary file, there must be lots of other ways to avoid that. Could it be passed through a pipe or a socket? Someone says it already is: The current version of pgg in Emacs CVS uses start-process to create an asynchronous gpg process, and communicates with it using process-send-string. On systems that support ptys, Emacs communicates with asynchronous processes through ptys (see create_process in process.c:1815), not tempfiles. Unless there is some security risk in the way we use ptys that I'm not aware of, I don't think there is a problem in the way we communicate with gpg. Does this mean the problem is already fixed?