Your message dated Thu, 03 Apr 2014 07:33:56 +0000 with message-id <[email protected]> and subject line Bug#727000: fixed in signing-party 1.1.6-1 has caused the Debian Bug report #727000, regarding signing-party: gpg-mailkeys should check for empty FROM to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 727000: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727000 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: signing-party Version: svn r505 Invoking gpg-mailkeys without setting EMAIL in ~/.gpg-mailkeys nor setting FROM in the environment sends out mails. Not setting these variables is most likely a configuration error and gpg-mailkeys should give an error and enforce setting the corresponding variables. I propose the following patch against r505 in svn: -- >8 -- --- gpg-mailkeys/gpg-mailkeys | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/gpg-mailkeys/gpg-mailkeys b/gpg-mailkeys/gpg-mailkeys index 7abe220..3bcfba8 100755 --- a/gpg-mailkeys/gpg-mailkeys +++ b/gpg-mailkeys/gpg-mailkeys @@ -47,6 +47,10 @@ fi if [ -n "$EMAIL" ]; then FROM="$EMAIL" fi +if [ -z "$FROM" ]; then + echo "Error: No EMAIL set in ~/.gpg-mailkeysrc and no FROM set in environment." + exit 1 +fi if [ -z "$SUBJECT" ]; then SUBJECT="Your signed GPG key" fi -- 1.8.1.5
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---Source: signing-party Source-Version: 1.1.6-1 We believe that the bug you reported is fixed in the latest version of signing-party, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Guilhem Moulin <[email protected]> (supplier of updated signing-party package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 22 Mar 2014 20:09:26 +0100 Source: signing-party Binary: signing-party Architecture: source amd64 Version: 1.1.6-1 Distribution: unstable Urgency: low Maintainer: Guilhem Moulin <[email protected]> Changed-By: Guilhem Moulin <[email protected]> Description: signing-party - Various OpenPGP related tools Closes: 594252 602284 603257 612178 618781 622560 622790 635359 637222 652686 659971 659990 679951 680136 693906 694465 720413 723024 727000 727001 735384 736963 738718 Changes: signing-party (1.1.6-1) unstable; urgency=low . [ Guilhem Moulin ] * Avoid unnecessary forks and calls to the command shell. * caff: + Properly MIME-Q encode e-mail headers. (Closes: #659971) + Convert internationalized addresses to ASCII in e-mail envelopes and headers. (Closes: #637222) + Adapt patch from Julius Seemayer to reopen STDIN as a TTY. (Closes: #723024) + Allow local and owner keyids to be specified as fingerprints. (Closes: #635359) + Don't redirect gpg's STDERR when importing the keys. (Closes: #612178) + Create the mail files in ~/.caff/keys when mail=no. (Closes: #652686) + Add an option 'mail-cant-encrypt' for special treatment of keys without encryption capability. (Closes: #622790) + Adapt patch from oli and add an option 'gpg-sign-type' for custom signature types. (Closes: #679951) + Add an option 'also-lsign-in-gnupghome' to add non-exportable signatures on the user's GnuPGHOME. (Closes: #680136) + Accept gpgparticipants formatted content on STDIN. (Closes: #622560) + Prefer the keyserver defined in ~/.gnupg/gpg.conf if found. (Closes: #720413) + Abort upon gpg failure. + Create temporary directories in $TMPDIR. (Closes: #735384) + Significant performance boost when importing and pruning. + Adapt patch from Gaudenz Steinlin and add an option 'show-photos' to view photos before signing. (Closes: #594252) + Ignore expired / invalid / revoked UIDs when pruning and exporting. * gpgsigs: + Allow long keyids and key fingerprints (preferred). (Closes: #736963) + Wrap long UIDs (when used with --latex) and digest lines. (Closes: #738718) + Make --latex produce a {pdf,lua,Xe}LaTeX-compatible output. (Closes: #618781) + Allow any checksum algorithm supported by gpg. + Don't identify two UATs that have the same size (use the packet hash to distinguish them). + Mark expired or revoked signatures as such. + Display the correct size of UATs. + Don't use a helper --photo-viewer to store the UATs; instead use --attribute-file and split the output. (Closes: #693906) + Add a dependency to GnuPG::Interface to separate the status output from STDOUT. * gpg-mailkeys: + Apply patch from Stefan Huber to check for empty FROM. (Closes: #727000) + Adapt patch from Stefan Huber to make sendmail's path configurable. (Closes: #727001) * gpgparticipants: + Adapt patch from Tanguy Ortolo to output to STDOUT. (Closes: #694465) + Adapt patch from Tanguy Ortolo to output to accept any digest algorithm supported by gpg (default: SHA256,RIPEMD160). (Closes: #659990) * gpglist: + Handle time-limited signatures (don't list them). + Don't mark a signature as revoked if another signature was created after the revocation certificate (cf. RFC 4880 section 5.2.1, signature type 0x30), or if the signature was non-revokable. + Don't identify two UATs that have the same size (use the packet hash to distinguish them). * pgpring: + Apply patch from Fabrizio Tarizzo to display the correct key length for DSA and Elgamal keys. (Closes: #602284) + Apply patch from Fabrizio Tarizzo to show creation date on signatures and, when present, expiration date on keys and signatures. Also, add options -E and -e to respectively exclude expired keys and signatures from the listing. (Closes: #603257) + Upgrade aclocal.m4 to autoconf 2.69. + Don't checkout unsafe symlink depcomp (automatically created by 'automake --add-missing') and other files automatically generated by automake or autoconf. * gpgwrap: + Link with "read-only relocation" flag set. * debian.control: + Add libnet-idn-encode-perl as Depends for gpgsigs. + Add texlive-xetex and fonts-droid as Suggests for gpgsigs. + Bump Standards-Version up to 3.9.5 (no changes). + Add autotools-dev as Build-Depends for keyanalyze. + Add ${python:Depends} as Depends and python as Build-Depends for gpgparticipants-prefill. + Add autoconf and automake1.11 as Build-Depends for keyanalyze. * Don't checkout empty directories, as git-svn(1) doesn't like them. . [ Thijs Kinkhorst ] * Remove Peter Palfrader and Christoph Berg from uploaders, as per their request. Checksums-Sha1: 63f64e521ae9e9f7c296f1b17be53fcf8db3d5be 1695 signing-party_1.1.6-1.dsc b39aa742fc24766c92753953fd2295fe40b3e144 220552 signing-party_1.1.6.orig.tar.gz 1dfb94b9992dddb32241709961c2f2d77c29f5f5 14904 signing-party_1.1.6-1.debian.tar.xz 1af5f74f415c1a0b76044abad1153408db462c40 147962 signing-party_1.1.6-1_amd64.deb Checksums-Sha256: a828299163061e205b69d65321c85f094d55ccba0a5d1d6ebdd481953782ad71 1695 signing-party_1.1.6-1.dsc fbc28b28103d67c60a773c93cc683abbd0a6e429118686773f752b9acb32ae7c 220552 signing-party_1.1.6.orig.tar.gz 9522911f78b7f826b97910df58db8191815ff7ad28e61aa6ad044efae89f6615 14904 signing-party_1.1.6-1.debian.tar.xz be2424dd90e89f278e80979e3ef952c5b1a81eb06a66d04858d46b1d6b030203 147962 signing-party_1.1.6-1_amd64.deb Files: 6b5660d6a105c6ff66d5e311541e55b2 1695 misc extra signing-party_1.1.6-1.dsc 2c5bc72118ea832144ec3de805702fea 220552 misc extra signing-party_1.1.6.orig.tar.gz 7654380b40273f90384cc90a17f78a9b 14904 misc extra signing-party_1.1.6-1.debian.tar.xz 78cee463b9ace46bf96661f8b723fd95 147962 misc extra signing-party_1.1.6-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJTPQswAAoJEFb2GnlAHawEg5UH/250K/yx2S0dNqrb1PlyVzir o/RY68IN131Q2MCpilEQl3AJ50QFsCI/xkzC8K6zfn6plQox9RWonARnNvh3dmpo zXLB8fDF3040rKHvTBQa/y4mGa8IZY5WapiQqrqivXka9w7VuV56G5bic86whIK0 6BbLVQaih/XuzrCK6QYFFAGxU4u/5LRiTKDi27lOGLyT+vwp8P1gwIdw1UbpkM2o CJirom7g22kVLM8oql0ldQ+eP+qkhNhnrESA9TJSn6WsavkfGCcGgt8PDtMBzrUY eIGSRvF3yJzTIZd2BYY579ejd0121v2+/O8cD7t3u/K8iRNw15543eHv/3HSlfM= =kaoS -----END PGP SIGNATURE-----
--- End Message ---
