* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
@ 2015-05-11 19:19 Artur Malabarba
2015-05-11 22:48 ` Daiki Ueno
0 siblings, 1 reply; 9+ messages in thread
From: Artur Malabarba @ 2015-05-11 19:19 UTC (permalink / raw)
To: 20550
As is well-documented, the variable
`epa-file-cache-passphrase-for-symmetric-encryption'` has no effect on
GnuPG 2.0.
I would like to request this support be added, if possible.
Ted mentioned on another thread that GnuPG 2.x recently added this
functionality, but he wasn't sure and I have no idea how to check that.
^ permalink raw reply [flat|nested] 9+ messages in thread
* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
2015-05-11 19:19 bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption Artur Malabarba
@ 2015-05-11 22:48 ` Daiki Ueno
2015-05-11 23:25 ` Artur Malabarba
0 siblings, 1 reply; 9+ messages in thread
From: Daiki Ueno @ 2015-05-11 22:48 UTC (permalink / raw)
To: Artur Malabarba; +Cc: 20550
Artur Malabarba <bruce.connor.am@gmail.com> writes:
> As is well-documented, the variable
> `epa-file-cache-passphrase-for-symmetric-encryption'` has no effect on
> GnuPG 2.0.
>
> I would like to request this support be added, if possible.
> Ted mentioned on another thread that GnuPG 2.x recently added this
> functionality, but he wasn't sure and I have no idea how to check that.
I'm not sure what you want, but perhaps this might help:
https://lists.gnu.org/archive/html/emacs-devel/2014-11/msg00421.html
Regards,
--
Daiki Ueno
^ permalink raw reply [flat|nested] 9+ messages in thread
* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
2015-05-11 22:48 ` Daiki Ueno
@ 2015-05-11 23:25 ` Artur Malabarba
2015-05-12 8:49 ` Artur Malabarba
0 siblings, 1 reply; 9+ messages in thread
From: Artur Malabarba @ 2015-05-11 23:25 UTC (permalink / raw)
To: Daiki Ueno; +Cc: 20550
[-- Attachment #1: Type: text/plain, Size: 281 bytes --]
> I'm not sure what you want, but perhaps this might help:
> https://lists.gnu.org/archive/html/emacs-devel/2014-11/msg00421.html
Might be, thanks. I'll try it out tomorrow.
If it works I'll add a sentence to the docstring of
*epa-file-cache-passphrase-for-symmetric-encryption*.
[-- Attachment #2: Type: text/html, Size: 430 bytes --]
^ permalink raw reply [flat|nested] 9+ messages in thread
* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
2015-05-11 23:25 ` Artur Malabarba
@ 2015-05-12 8:49 ` Artur Malabarba
2015-05-12 10:48 ` Daiki Ueno
0 siblings, 1 reply; 9+ messages in thread
From: Artur Malabarba @ 2015-05-12 8:49 UTC (permalink / raw)
To: Daiki Ueno; +Cc: 20550
2015-05-12 0:25 GMT+01:00 Artur Malabarba <bruce.connor.am@gmail.com>:
>> I'm not sure what you want, but perhaps this might help:
>> https://lists.gnu.org/archive/html/emacs-devel/2014-11/msg00421.html
>
> Might be, thanks. I'll try it out tomorrow.
> If it works I'll add a sentence to the docstring of
> epa-file-cache-passphrase-for-symmetric-encryption.
It didn't help. Well, it sort of did, but it also made things worse.
- It helped in the sense that now I only get prompted the first time I
open the file (instead of every time).
- It made things worse in the sense that I now have to type the
password 4(!) times when saving the file (all prompts are inside
emacs). The first prompt is "Passphrase for symmetric encryption for
/.../file.gpg: ", then I get "Confirm password: ", then I get the
first one again, then the second one again.
^ permalink raw reply [flat|nested] 9+ messages in thread
* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
2015-05-12 8:49 ` Artur Malabarba
@ 2015-05-12 10:48 ` Daiki Ueno
2015-05-12 11:26 ` Werner Koch
0 siblings, 1 reply; 9+ messages in thread
From: Daiki Ueno @ 2015-05-12 10:48 UTC (permalink / raw)
To: Artur Malabarba; +Cc: Werner Koch, 20550
Artur Malabarba <bruce.connor.am@gmail.com> writes:
> - It made things worse in the sense that I now have to type the
> password 4(!) times when saving the file (all prompts are inside
> emacs). The first prompt is "Passphrase for symmetric encryption for
> /.../file.gpg: ", then I get "Confirm password: ", then I get the
> first one again, then the second one again.
Oh, you are right. GnuPG 2.1 --pinentry-mode=loopback asks passphrase
twice on symmetric encryption, while GnuPG 1.x does that only once (look
at the GET_HIDDEN lines below):
$ gpg2 --command-fd=1 --status-fd=1 --pinentry-mode=loopback --symmetric -o /dev/null < /dev/null
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
[GNUPG:] NEED_PASSPHRASE_SYM 7 3 2
[GNUPG:] GET_HIDDEN passphrase.enter
test
[GNUPG:] GOT_IT
[GNUPG:] GET_HIDDEN passphrase.enter
test
[GNUPG:] GOT_IT
[GNUPG:] BEGIN_ENCRYPTION 2 7
[GNUPG:] END_ENCRYPTION
$ gpg --command-fd=1 --status-fd=1 --symmetric -o /dev/null < /dev/null
[GNUPG:] NEED_PASSPHRASE_SYM 3 3 2
[GNUPG:] GET_HIDDEN passphrase.enter
test
[GNUPG:] GOT_IT
[GNUPG:] BEGIN_ENCRYPTION 0 3
[GNUPG:] END_ENCRYPTION
Though I suppose the repetition is meant to be a confirmation, I think
it is not very useful for clients (since we already know that the
confirmation is needed) and causes compatibility issues.
Could this be fixed in GnuPG itself?
Thanks,
--
Daiki Ueno
^ permalink raw reply [flat|nested] 9+ messages in thread
* bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption.
2015-05-12 10:48 ` Daiki Ueno
@ 2015-05-12 11:26 ` Werner Koch
2015-05-12 23:05 ` Daiki Ueno
0 siblings, 1 reply; 9+ messages in thread
From: Werner Koch @ 2015-05-12 11:26 UTC (permalink / raw)
To: Daiki Ueno; +Cc: Artur Malabarba, 20550
On Tue, 12 May 2015 12:48, ueno@gnu.org said:
> Oh, you are right. GnuPG 2.1 --pinentry-mode=loopback asks passphrase
> twice on symmetric encryption, while GnuPG 1.x does that only once (look
That is quite possible, the loopback mode basically emulates the calls
to the pinentry, which is in this case called twice. It is not intended
as a replacement for the passphrase-fd stuff from gpg 1.
> Could this be fixed in GnuPG itself?
I think this makes sense. Can you please file a bug at bugs.gnupg.org?
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2015-06-21 18:53 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-05-11 19:19 bug#20550: 25.0.50; Add GnuPG 2.x support to epa-file-cache-passphrase-for-symmetric-encryption Artur Malabarba
2015-05-11 22:48 ` Daiki Ueno
2015-05-11 23:25 ` Artur Malabarba
2015-05-12 8:49 ` Artur Malabarba
2015-05-12 10:48 ` Daiki Ueno
2015-05-12 11:26 ` Werner Koch
2015-05-12 23:05 ` Daiki Ueno
2015-06-19 9:09 ` Daiki Ueno
2015-06-21 18:53 ` Artur Malabarba
Code repositories for project(s) associated with this external index
https://git.savannah.gnu.org/cgit/emacs.git
https://git.savannah.gnu.org/cgit/emacs/org-mode.git
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.