From mboxrd@z Thu Jan  1 00:00:00 1970
Path: news.gmane.org!not-for-mail
From: Daniel Dehennin <daniel.dehennin@baby-gnu.org>
Newsgroups: gmane.emacs.devel
Subject: Re: Gnus + GPG integration broken after revision 102412.
Date: Wed, 22 Dec 2010 09:29:40 +0100
Message-ID: <87r5dab47f.fsf@hati.baby-gnu.org>
References: <868vzkbz8n.fsf@chateau.d.if> <m362unq5ac.fsf-ueno@unixuser.org>
	<86ei9bmlkm.fsf@chateau.d.if> <m3ei9aoaor.fsf-ueno@unixuser.org>
	<86hbe679gs.fsf@chateau.d.if>
NNTP-Posting-Host: lo.gmane.org
Mime-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
	micalg=pgp-sha512; protocol="application/pgp-signature"
X-Trace: dough.gmane.org 1293015185 27850 80.91.229.12 (22 Dec 2010 10:53:05 GMT)
X-Complaints-To: usenet@dough.gmane.org
NNTP-Posting-Date: Wed, 22 Dec 2010 10:53:05 +0000 (UTC)
Cc: Daiki Ueno <ueno@unixuser.org>, emacs-devel@gnu.org
To: wahjava.ml@gmail.com (Ashish SHUKLA)
Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Wed Dec 22 11:52:56 2010
Return-path: <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>
Envelope-to: ged-emacs-devel@m.gmane.org
Original-Received: from lists.gnu.org ([199.232.76.165])
	by lo.gmane.org with esmtp (Exim 4.69)
	(envelope-from <emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org>)
	id 1PVMJT-0007C6-Nx
	for ged-emacs-devel@m.gmane.org; Wed, 22 Dec 2010 11:52:55 +0100
Original-Received: from localhost ([127.0.0.1]:37714 helo=lists.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43)
	id 1PVMJQ-0001Tt-Pi
	for ged-emacs-devel@m.gmane.org; Wed, 22 Dec 2010 05:52:52 -0500
Original-Received: from [140.186.70.92] (port=43001 helo=eggs.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1PVK4v-0005et-NX
	for emacs-devel@gnu.org; Wed, 22 Dec 2010 03:29:47 -0500
Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <daniel.dehennin@baby-gnu.org>) id 1PVK4u-000683-MJ
	for emacs-devel@gnu.org; Wed, 22 Dec 2010 03:29:45 -0500
Original-Received: from zion.baby-gnu.org ([82.233.222.74]:55984)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <daniel.dehennin@baby-gnu.org>) id 1PVK4u-00065i-FK
	for emacs-devel@gnu.org; Wed, 22 Dec 2010 03:29:44 -0500
Original-Received: from hati.asgardr.info ([192.168.1.2] helo=hati.baby-gnu.org)
	by zion.baby-gnu.org with esmtp (Exim 4.72)
	(envelope-from <daniel.dehennin@baby-gnu.org>)
	id 1PVK4q-0002nK-TS; Wed, 22 Dec 2010 09:29:40 +0100
In-Reply-To: <86hbe679gs.fsf@chateau.d.if> (Ashish SHUKLA's message of "Wed,
	22 Dec 2010 09:19:39 +0530")
User-Agent: Gnus/5.110011 (No Gnus v0.11) Emacs/24.0.50 (gnu/linux)
Organisation: Dark Church of Emacs
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6 (newer, 2)
X-Mailman-Approved-At: Wed, 22 Dec 2010 05:52:45 -0500
X-BeenThere: emacs-devel@gnu.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Emacs development discussions." <emacs-devel.gnu.org>
List-Unsubscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/emacs-devel>
List-Post: <mailto:emacs-devel@gnu.org>
List-Help: <mailto:emacs-devel-request@gnu.org?subject=help>
List-Subscribe: <http://lists.gnu.org/mailman/listinfo/emacs-devel>,
	<mailto:emacs-devel-request@gnu.org?subject=subscribe>
Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org
Xref: news.gmane.org gmane.emacs.devel:133897
Archived-At: <http://permalink.gmane.org/gmane.emacs.devel/133897>

--=-=-=
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable

wahjava.ml@gmail.com (Ashish SHUKLA) writes:

> Daiki Ueno writes:
>> wahjava.ml@gmail.com (Ashish SHUKLA) writes:
>
>>> #v+
>>> /usr/local/bin/gpg2 --no-tty --status-fd 1 --yes --use-agent --command-=
fd 0 --armor --textmode --output /tmp/epg-output62957uOj --detach-sign -u 1=
F2F8410762E5E74
>>> Warning: using insecure memory!
>>> gpg: skipped "1F2F8410762E5E74": Unusable secret key
>>> [GNUPG:] INV_SGNR 9 1F2F8410762E5E74
>>> gpg: signing failed: Unusable secret key
>>> #v-
>>>=20
>>> The above mentioned key id belongs to my GPG key which I revoked, but i=
t's
>>> still present in my system to decrypt old content encrypted with it.
>
>> It looks strange that mml2015 passes the expired key to gpg, since
>> `mml2015-epg-sign' is expected to reject such a key through
>> `mml2015-epg-find-usable-key'.
>
>> Do you see 1F2F8410762E5E74 key with:
>
>> (mml2015-epg-find-usable-key
>>  (epg-list-keys (epg-make-context 'OpenPGP) "1F2F8410762E5E74" t)
>>  'sign)
>
> Yes, I see that key. And, please note that it's not expired, it's revoked.

Hello,

mml2015-epg-find-usable-key should remove revoked keys.

Can you test the following for me?

#v+
(defun test-mml2015-epg-find-usable-key (signers)
  (let* ((context (epg-make-context))
	 (keys (epg-list-keys context signers))
	 (validities nil))
    (while keys
      (let ((pointer (epg-key-sub-key-list (car keys))))
	(while pointer
	  (setq validities (cons=20
			    (cons (epg-sub-key-id (car pointer)) (symbol-name (epg-sub-key-valid=
ity (car pointer))))
			    validities))
	  (setq pointer (cdr pointer))))
      (setq keys (cdr keys)))
    validities))

(test-mml2015-epg-find-usable-key '("1F2F8410762E5E74"))
#v-

Thanks.
=2D-=20
Daniel Dehennin
R=C3=A9cup=C3=A9rer ma clef GPG:
gpg --keyserver pgp.mit.edu --recv-keys 0x6A2540D1

--=-=-=
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEAREKAAYFAk0RtvQACgkQb97L6l6P4FurnQCgiYwRjYdLkZbaHLXtYZHxOlfB
tKMAn1kFs+87lO7WEceJVc/t6HpIH/xh
=n8x0
-----END PGP SIGNATURE-----
--=-=-=--