From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp1 ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms0.migadu.com with LMTPS id KIzpNPdLPWFaSgAAgWs5BA (envelope-from ) for ; Sun, 12 Sep 2021 02:38:15 +0200 Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp1 with LMTPS id oJCAMPdLPWF/agAAbx9fmQ (envelope-from ) for ; Sun, 12 Sep 2021 00:38:15 +0000 Received: from mail.notmuchmail.org (nmbug.tethera.net [IPv6:2607:5300:201:3100::1657]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id E542F2EF41 for ; Sun, 12 Sep 2021 02:38:14 +0200 (CEST) Received: from nmbug.tethera.net (localhost [127.0.0.1]) by mail.notmuchmail.org (Postfix) with ESMTP id A775A202B7; Sat, 11 Sep 2021 20:38:10 -0400 (EDT) Received: from fethera.tethera.net (fethera.tethera.net [IPv6:2607:5300:60:c5::1]) by mail.notmuchmail.org (Postfix) with ESMTP id E70411FB79 for ; Sat, 11 Sep 2021 20:38:07 -0400 (EDT) Received: by fethera.tethera.net (Postfix, from userid 1001) id 6EEAF5FD5C; Sat, 11 Sep 2021 20:38:07 -0400 (EDT) Received: (nullmailer pid 1386802 invoked by uid 1000); Sun, 12 Sep 2021 00:38:05 -0000 From: David Bremner To: notmuch@notmuchmail.org Subject: Re: T355-smime.sh is flaky In-Reply-To: <87h7pxiek3.fsf@tethera.net> References: <87h7pxiek3.fsf@tethera.net> Date: Sat, 11 Sep 2021 21:38:05 -0300 Message-ID: <87czper5le.fsf@tethera.net> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="=-=-=" Message-ID-Hash: ACPB4KN4IQBCSNPB4EBFYILBI3CWONQK X-Message-ID-Hash: ACPB4KN4IQBCSNPB4EBFYILBI3CWONQK X-MailFrom: david@tethera.net X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-notmuch.notmuchmail.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; suspicious-header CC: Daniel Kahn Gillmor X-Mailman-Version: 3.2.1 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-Migadu-Flow: FLOW_IN ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1631407095; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post; bh=aiz1EUUGDCgb3i2Py/O16INtB9DYOO0IlQ6zamuyIyI=; b=osnNtQshYGZbbA7RIIQevgZwxB9H+mqdj+ogKaHmdSkqT+f6DX1y9rd3BCCLPIU+5wueSe bsLhcuk+pSIasU2gWNhty2ZNioEr69bQlZ9m24BB+1qYDjCerwWkL8FoAY/bBxlFFxvhP9 tNCXL6lDaBrlrK1HhUzR8V61xDAicxECXv+WMumBMVYD1EfAsSUICBM9Ug2XR3AGLHRIuL v5YPBohoHUpBIpy6yrnVhjlDgBCyjCSy+HwichAsSAVDPeo8GC4jzJoc4YMXHS++rIBfK3 ZENaJQ9jk10rpGThP5qKe3U+BvXuHWygIzThKF3lqPObXIrAllMLJ1spiPdPHg== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1631407095; a=rsa-sha256; cv=none; b=NMs1tV57LSb3RW6D9VksnADBSMnvX9q7+fHEH8wOxjgOc4BrnXV3oHzhJ7zwJbUoZRQKd1 wlYn8DBjo/E5l0gH//FOLdK0CLIeg7eIY6HC/ybUMy8HbZcniLxxUuOds6hZVGw01uN65X ZTpHzDUlpSw+qxV7b2gJGz6UMiPmG8ladXzZZPcDAAj0oJAZXZvzUqC6ipI+DkG3XDi//M ogRpTDC3LmNH9qNBvyUh9LjCWsWyIsXz0PRW6SKqb2YDpnbHOsicC2IIH3+ZU5ZWFr3xwH 49DMq/ZZyg0kwqxbEuLigTeneWEQr8lVrfCA0EvR8tBbC2Jn8CV+x0R73CXtVg== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 2607:5300:201:3100::1657 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org X-Migadu-Spam-Score: -0.53 Authentication-Results: aspmx1.migadu.com; dkim=none; dmarc=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 2607:5300:201:3100::1657 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org X-Migadu-Queue-Id: E542F2EF41 X-Spam-Score: -0.53 X-Migadu-Scanner: scn0.migadu.com X-TUID: HaMNkjRzUMGn --=-=-= Content-Type: text/plain David Bremner writes: > After digging through mml-secure for a while, I realized that the > problem is not actually in emacs, but in our test harness for gpgsm. I > added the gpgsm -K to the script, and you can see that the > test_suite@notmuchmail.org key is not being added. > > I think that means there is some kind of intermittent failure with the > following pipeline > > openssl pkcs12 -export -passout pass: -inkey "$NOTMUCH_SRCDIR/test/smime/key+cert.pem" \ > < "$NOTMUCH_SRCDIR/test/smime/test.crt" | \ > gpgsm --batch --no-tty --no-common-certs-import --pinentry-mode=loopback --passphrase-fd 3 \ > --disable-dirmngr --import >"$GNUPGHOME"/import.log 2>&1 3<<<'' > I wrote the output from openssl to a temporary file, and it appears that sometimes (like the case I attached), this cannot be imported by "gpgsm --import". It might be related to the existing bug report [1] from dkg. One thing I noticed is that the debugging output has broken looking offset in it. gpgsm: 872 bytes of RC2 encrypted text gpgsm: processing certBag gpgsm: 1224 bytes of 3DES encrypted text gpgsm: decryption failed; trying charset 'ISO-8859-1' gpgsm: decryption failed; trying charset 'ISO-8859-15' gpgsm: decryption failed; trying charset 'ISO-8859-2' gpgsm: decryption failed; trying charset 'ISO-8859-3' gpgsm: decryption failed; trying charset 'ISO-8859-4' gpgsm: decryption failed; trying charset 'ISO-8859-5' gpgsm: decryption failed; trying charset 'ISO-8859-6' gpgsm: decryption failed; trying charset 'ISO-8859-7' gpgsm: decryption failed; trying charset 'ISO-8859-8' gpgsm: decryption failed; trying charset 'ISO-8859-9' gpgsm: decryption failed; trying charset 'KOI8-R' gpgsm: decryption failed; trying charset 'IBM437' gpgsm: decryption failed; trying charset 'IBM850' gpgsm: decryption failed; trying charset 'EUC-JP' gpgsm: decryption failed; trying charset 'BIG5' gpgsm: data error at "decrypted-text", offset 2646783990 gpgsm: error at "bag-sequence", offset 996 gpgsm: error parsing or decrypting the PKCS#12 file gpgsm: total number processed: 1 gpgsm: imported: 1 [1]: https://dev.gnupg.org/T4751 --=-=-= Content-Type: application/pkcs12 Content-Disposition: attachment; filename=bad.p12 Content-Transfer-Encoding: base64 MIIJSQIBAzCCCQ8GCSqGSIb3DQEHAaCCCQAEggj8MIII+DCCA68GCSqGSIb3DQEHBqCCA6AwggOc AgEAMIIDlQYJKoZIhvcNAQcBMBwGCiqGSIb3DQEMAQYwDgQIYAZJByKzSxICAggAgIIDaMPbm7Tw KneL3Pe1cr8WCMcOEOLoykMNngcZ6QZnuRSjh2j7O5ZVm9kXfc9jK6t5CQBktvDqCPAhy48/5zV0 /XNgQoYfQFSS5k6xGQzjs8BXCquxBoi951NensnmoqNBZNs4rnqZYtcCfvvcVeIllXmEv/nicBy5 wqsNiGUqdnZkZX8jEETn3khuD3UqNu9uoJ4LskbtqcVoIvpAloKsccoFEjsZDJxSVArU1HM5lr9T wflWUiuRlipyXBwwfP5EzkpKew6jw0mgzA7c1rA4mnmyQ8Csv17Dq/LFk0lKPjIHqR8UidzqFy3J zDY1LbDwrPE0n8xQRMxWbeuZyf3uFdG4Jj+xwAvjur9KbIp2xos6ob93aRsClUC85BzVMn7JW2UZ 6zEaoZKM8W3FR1G3j9qeyPaGoAbfjAaeyN+VLPiLTbCzLkM/jjFsBPc9cgC+Zot96lkn18H6vHE8 lZXS7yayCFF8SNx7ZiwsY5LYUNSk2gTPi0ajeDU3TV2+eeprZJTbfxYjsXiw5E+cSUKXWhltHrj7 yz/p3oMLP4S+5XbWcgVEYrG9QS19LwMdfnN116pBLIbhX9cQJewIOq0SMQQRPXsBQA0yhxCqsCdc T4kCSGcLN4drzUnz7Xba4up3oleCRjS52/ajK+ui5jc+z2WtLv8mRRZLNFs7zp3Cxr4ZY9Ompoo/ MCnuYaPkQeVqFu+m7tWhLuJ6tjdLn61U8EHyh0qql7EG12p1h1jEBJgMk4vXqtH3hg8xL3RM7Axg S8MOuTPoLVYz4SWUN08ykYMBCc79/hoE0hE6yJfjoNMvbWGZKv7F5SOaLblyOxyOcsuyPVOdhD/L 0FzEpmxlZRKCG8kNCZSB6Bc+2kJKp3OWZlerdB9NFnsAJ/wkzOztc7o8yW5u8wHT5rjgK9YOPkuZ v60DoJzbe6GccNGuIKLfLE7dX7liLVSF3z3/oox37OqloaGYPY3oYVj263+FxFjw2/3q7h9YjqvT 2NSBecz2K2gOe3jYCWxxuyG0XTPfcof+e+eG0kQQt0C0jlTTyLlxRIly5chVgQZtSUREZhgrPe9C cxddVlB28ZWvZxW22eOnl/3kfbozPZ885OAmu17Px911ZGJWb1kdZ5OTbek0IhOt3Zqj9voamlgF bGpfeA43xNDhEYN+MIIFQQYJKoZIhvcNAQcBoIIFMgSCBS4wggUqMIIFJgYLKoZIhvcNAQwKAQKg ggTuMIIE6jAcBgoqhkiG9w0BDAEDMA4ECOMXaURx7V0IAgIIAASCBMj1744Ec8ABh4nMQYhoOo22 9XLh+pqiw5zTqc0V7x59ts25VagrPO4fS1JQNWFzerOux1t1dW1HrMQhCdQKJiq66Mohm9x+/Q62 no3spkUSFAro91V2ptlWYKEnIVG1B0bpnZpWmzqL5BD/SlUaN8Hq065bmYqoUPPpxq+sIFyqfN4L 9YLyMdN5lFYGvCF3V7GPvhRT+ed/6tmA0YyvuTbPX8acCqOCUdQH0eAaAxO9/AjvkydJ0lx4rEWI MThGqJ2WNcXvy6BpzIV1PuTEO0/AsyHBEZnLXqH1VY5N0Ri3qt6Z+JvXIC2X4hXFCOz/lNUp0OnH fB44vglslz4etID5wTwmhvoVkdAZbgYOUbqWI9PN6NdZB4UCqa2oEyUeIZJGkpR7RssCwcxua1k4 wRuGxhBXawwBpTi4Ig4PtpBB0ScbnZcos3HFrIuFTHxMVAsU/RxN8zVI20SPtULMIwRXkzyBKTyv bKI1rF3iJGmU5EHlKSNQXMQ6T6qcoSJIZ9Al3jgbAGsZsW9kI2X51MeqfLUIHa47bmWkm+1+9d31 jrNUuYKoRYZ9O6UMdqOakKvE6CaFDcT1/wLir0R9XrHjvLrJ+/DfqfYW6M7KVgcc1tz2Ux202S+R Wr9wx0Ax5Mc6e5IfacHP0tT8azVDv29+BJBgYxscCpPGHBl9xIQCQ5nwtiJqZHBhuSJcJtIRFPaw mRg/e5zSkoQ2aTCZP1aBaP/m8iqOqtOy9OsqZFot4rYHrV9vl9wEk03Y/2A1zqWsT2Btu3AsAeWv 1XUkxILl24NIXGI2g+LtOE1NitLcbnQAqPWuJ0AnS0XmF3skYp6pd+HDrXflOCDjKCmJDJK9ReiO nTuMXcCDl9enx/vUm1ceWZyeybEBMC0kZNdwSmLRV+y+Xai/k62YSzXk1d8I6nrQgvxpk/0KjJ0F 6LJ+S+EoCDXgQ49l777sopKoXzpjbXQXezHXfsrPJjHtuX2LvIfhakH57BrNTQPPvNbHNjfbOHGx uK9LauYzKZ6j+Ki/7NU5ZLI0tPZ0/nc0yxIU02NJNW8Uv0M9kgGtED6sL9WabgEVvbdFxHxK/dfW kCaRamjabdkDw/csi+5qWLgOMIpXzucMB7oGhqpZTXnhu3PZN8HstlnPV30ffbz79EyKTlQvbe0Z frDi4B5WQ+NYvrgq/Gsxg3tdUpPICole97Um5CgTsShQzycBxxGm3TazrJqJQz8eaIwp3/LzS00G 4ZbRfwTAxrf0V1X/PsA9QnrO3ISQ0tHeJt+osfq465JAEETdQBNGmJZmoyfLIqNFcKBVuNemV49t xa9ccepVdJPngSObUEzzrtGYNPP/LstWWKx/nAymMuv6ZtDmdpgudJFlluOtl5R2joOI4MtbKuhw 3Zw0zA56Z70sALVfA4RjVr+S8m82OsBd5vrKEjCW6fj+I3sAa7StXJ7Fh7DlPRxdcWqQiIhjjMel rYBe+Uqqku/kds21zSqcjVk780TeDB8TjMuVZUcMzRPra1VDi9/eg4p1dzXOyrVfKPVDdYOTknnO HpmK1vtG/muG0T6NPaYU7teY67Feu7h7kIjVzpOpsT73bosCxxVViAJX6W8DhAg1fSAIn8422yHA /qohCvQx9y+VP0cxJTAjBgkqhkiG9w0BCRUxFgQUYW9GzXODTGOEd1avDftkpuCXKkcwMTAhMAkG BSsOAwIaBQAEFFCKlUez2A9iP4kT+QXcWnvCbLLTBAiXvgSDCc1FYgICCAA= --=-=-= Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline --=-=-=--