Bug#863404: marked as done (pass: returns with 0 if a key it is meant to encrypt to is expired)

Fri, 26 May 2017 05:51:53 -0700 

Your message dated Fri, 26 May 2017 12:48:45 +0000
with message-id <[email protected]>
and subject line Bug#863404: fixed in password-store 1.6.5-7
has caused the Debian Bug report #863404,
regarding pass: returns with 0 if a key it is meant to encrypt to is expired
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
863404: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863404
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: pass
Version: 1.6.5-6
Severity: important

Dear Maintainer,

I have a pass key repository shared with co-workers. A co-worker's key
expired today, and this happened:

$ tar -C gpg -cf - . | base64 | pass insert -m infra/ci-gnupg.tar.base64
tar: ./S.gpg-agent.extra: socket ignored
tar: ./S.gpg-agent: socket ignored
tar: ./S.gpg-agent.ssh: socket ignored
tar: ./S.gpg-agent.browser: socket ignored
Enter contents of infra/ci-gnupg.tar.base64 and press Ctrl+D when finished:

gpg: removing stale lockfile (created by 12012)
gpg: E8C1BC59AB5040EC08413CC161726E19C6D5BA72: skipped: Unusable public key
gpg: [stdin]: encryption failed: Unusable public key

The pass exit code was 0. However, because gpg refused to encrypt to
the expired key, the inserted secret wasn't actually inserted. A
non-zero exit code would make this situation be much easier to notice.
A zero exit code makes pass fail its primary job for me.

Suggestion for fix: If gpg fails, pass should exit with a non-zero
exit code.

-- System Information:
Debian Release: 9.0
  APT prefers testing
  APT policy: (500, 'testing'), (1, 'experimental')
Architecture: amd64
 (x86_64)

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages pass depends on:
ii  gnupg   2.1.18-6
ii  gnupg2  2.1.18-6
ii  pwgen   2.07-1.1+b1
ii  tree    1.7.0-5

Versions of packages pass recommends:
ii  git     1:2.11.0-3
ii  gnupg2  2.1.18-6
ii  xclip   0.12+svn84-4+b1

Versions of packages pass suggests:
ii  libxml-simple-perl  2.22-1
ii  perl                5.24.1-2
ii  ruby                1:2.3.3

-- no debconf information

--- End Message ---
--- Begin Message --- 
Source: password-store
Source-Version: 1.6.5-7

We believe that the bug you reported is fixed in the latest version of
password-store, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Colin Watson <[email protected]> (supplier of updated password-store package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 26 May 2017 13:29:21 +0100
Source: password-store
Binary: pass
Architecture: source
Version: 1.6.5-7
Distribution: unstable
Urgency: medium
Maintainer: Colin Watson <[email protected]>
Changed-By: Colin Watson <[email protected]>
Description:
 pass       - lightweight directory-based password manager
Closes: 863404
Changes:
 password-store (1.6.5-7) unstable; urgency=medium
 .
   * Cherry-pick from upstream:
     - Make gpg errors fatal (closes: #863404).
Checksums-Sha1:
 5f4d7f401a1327f7df7d09a5fdc981ac94b17194 1961 password-store_1.6.5-7.dsc
 eafba1d95ba918b10ee70d474ec1f456d5969b69 7016 
password-store_1.6.5-7.debian.tar.xz
 2414ab9bc1e43e03fa34d2f892486ea56b25d231 10914 
password-store_1.6.5-7_source.buildinfo
Checksums-Sha256:
 dd4338151f3730051e3c7de7cfd6b2225cc2ac26bc0512b2de89927165082424 1961 
password-store_1.6.5-7.dsc
 22c1b4ff633a5da763b9ddc57a665819704cecf71325a0b14487146a0559c602 7016 
password-store_1.6.5-7.debian.tar.xz
 84047bf18e1502c5f867d8018af4287aeb567a506fcb780f329be0a5cd93ac40 10914 
password-store_1.6.5-7_source.buildinfo
Files:
 b3cd4bec4b21d94add7c9e7498b77091 1961 admin optional password-store_1.6.5-7.dsc
 eab943adf3d5613268221e8a0d60f10e 7016 admin optional 
password-store_1.6.5-7.debian.tar.xz
 d7134e83e7ac6bf1577e8ce7eebc3861 10914 admin optional 
password-store_1.6.5-7_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=DWk2
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to