Your message dated Sat, 08 Feb 2025 07:34:19 +0000
with message-id <[email protected]>
and subject line Bug#1095451: fixed in gnupg2 2.4.7-4
has caused the Debian Bug report #1095451,
regarding gpg: for new users, gpg fails to do anything without keyboxd installed
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
1095451: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1095451
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: gpg
Version: 2.4.7-3
Severity: normal

The 2.4 series of GnuPG introduces keyboxd, but doesn't force migration
to it for existing users.

For new users, however, running without an explicitly set $GNUPGHOME,
/usr/bin/gpg creates ~/.gnupg and populates it with a single file,
common.conf, which contains a single line:

    use-keyboxd

This means that while an existing user of gpg can upgrade to gpg 2.4.x
and see things mostly work, a new user who has avoided installing the
keyboxd package (e.g, by installing "gpg" but not "gnupg") will see the
following kind of misbehavior:


```
0 dkg@bob:~$ gpg --import < /usr/share/keyrings/debian-archive-keyring.gpg 
gpg: directory '/home/dkg/.gnupg' created
gpg: error running '/usr/lib/gnupg/keyboxd': probably not installed
gpg: failed to start keyboxd '/usr/lib/gnupg/keyboxd': Configuration error
gpg: can't connect to the keyboxd: Configuration error
gpg: error opening key DB: No Keybox daemon running
gpg: error running '/usr/lib/gnupg/keyboxd': probably not installed
gpg: failed to start keyboxd '/usr/lib/gnupg/keyboxd': Configuration error
gpg: can't connect to the keyboxd: Configuration error
gpg: error opening key DB: No Keybox daemon running
gpg: key DCC9EFBF77E11517: 2 signatures not checked due to missing keys
gpg: error running '/usr/lib/gnupg/keyboxd': probably not installed
gpg: failed to start keyboxd '/usr/lib/gnupg/keyboxd': Configuration error
gpg: can't connect to the keyboxd: Configuration error
gpg: error opening key DB: No Keybox daemon running
gpg: key DCC9EFBF77E11517: public key not found: Input/output error
gpg: error reading '[stdin]': Input/output error
gpg: import from '[stdin]' failed: Input/output error
gpg: Total number processed: 0
2 dkg@bob:~$
```

I'm not sure what the right solution is here; perhaps the simplest thing
would be to just ship the keyboxd binary (and socket activation, etc)
directly in the gpg package, and have that package Provides: keyboxd.

         --dkg


-- System Information:
Debian Release: trixie/sid
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 
'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1, 
'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 6.12.6-amd64 (SMP w/20 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages gpg depends on:
ii  gpgconf          2.4.7-3
ii  libassuan9       3.0.1-2
ii  libbz2-1.0       1.0.8-6
ii  libc6            2.40-6
ii  libgcrypt20      1.11.0-7
ii  libgpg-error0    1.51-3
ii  libnpth0t64      1.8-2
ii  libreadline8t64  8.2-6
ii  libsqlite3-0     3.46.1-1
ii  zlib1g           1:1.3.dfsg+really1.3.1-1+b1

Versions of packages gpg recommends:
ii  gnupg  2.4.7-3

gpg suggests no packages.

-- no debconf information

Attachment: signature.asc
Description: PGP signature


--- End Message ---
--- Begin Message ---
Source: gnupg2
Source-Version: 2.4.7-4
Done: Daniel Kahn Gillmor <[email protected]>

We believe that the bug you reported is fixed in the latest version of
gnupg2, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Daniel Kahn Gillmor <[email protected]> (supplier of updated gnupg2 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 08 Feb 2025 01:26:40 -0500
Source: gnupg2
Architecture: source
Version: 2.4.7-4
Distribution: experimental
Urgency: medium
Maintainer: Debian GnuPG Maintainers <[email protected]>
Changed-By: Daniel Kahn Gillmor <[email protected]>
Closes: 1095451
Changes:
 gnupg2 (2.4.7-4) experimental; urgency=medium
 .
   [ Daniel Kahn Gillmor ]
   * Note relationship between tpm2daemon and gpg-agent
   * patch 21: use git format-patch style attribution
   * keyboxd.socket: drop FileDescriptorName, not needed
   * override lintian tag spare-manual-page on keyboxd.1
   * drop GSM_SKIP_SSH_AGENT_WORKAROND hack
 .
   [ Andreas Metzler ]
   * block-ptrace-on-secret-daemons accepted into FreePG, rename.
   * Tag patch as forwarded
 .
   [ Daniel Kahn Gillmor ]
   * move keyboxd into the gpg package (Closes: #1095451)
   * Emit only OpenPGP artifacts by default
   * Modernize reasoning for KOO as default keyserver
   * consolidate ssh-agent emulation socket changes in snyc with FreePG proposal
   * Disallow compressed signatures and certificates: point to FreePG proposal
Checksums-Sha1:
 1956b1c0237ee2cdcd4caa5ddb9ba80be8c4dd0b 3377 gnupg2_2.4.7-4.dsc
 e7fe50c4a99883d597004836f6098fcb11753c8e 89824 gnupg2_2.4.7-4.debian.tar.xz
 176c4ba0fb274236ea533b7876791a3906850c62 21419 gnupg2_2.4.7-4_amd64.buildinfo
Checksums-Sha256:
 bce221d9cdc01854cc7d13ec6ba1a712f20c3d44c4d2aebbac6e42a42ebadbec 3377 
gnupg2_2.4.7-4.dsc
 6c30c48634bd984b6487322bcdc10446618d1bacb36a7016b96ba874d4734fbf 89824 
gnupg2_2.4.7-4.debian.tar.xz
 c96cc27234ef60c99df0a54fc25cf318636b7afa726880d3c07b01e983c6dd06 21419 
gnupg2_2.4.7-4_amd64.buildinfo
Files:
 38bc1c8abbed9d63404dc91ca48489de 3377 utils optional gnupg2_2.4.7-4.dsc
 c222b6fd97a6772d01dfedd9e581f7c2 89824 utils optional 
gnupg2_2.4.7-4.debian.tar.xz
 89a9cdade52c98fd034905d9dbadf862 21419 utils optional 
gnupg2_2.4.7-4_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQRjrBGOWy5dZsiKhad4C4VO2cK0lgUCZ6cHjgAKCRB4C4VO2cK0
lrkEAQCz8Yp8pU50ClEFafnQpEQfT8lM2zv8T8tDvxMQV4LOjgEAjwWMTvFeiUBm
5YPX4seQOh4K5VtFB2VkdiQNliH1RwI=
=2lrM
-----END PGP SIGNATURE-----

Attachment: pgpTxpI4idfUd.pgp
Description: PGP signature


--- End Message ---

Reply via email to