Your message dated Fri, 10 Feb 2017 22:03:31 +0000 with message-id <[email protected]> and subject line Bug#853935: fixed in rephrase 0.2-2 has caused the Debian Bug report #853935, regarding rephrase: No more works with gpg2 and causes one pinentry popup per guess to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 853935: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853935 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: rephrase Version: 0.2-1 Severity: grave Tags: patch It seems that rephrase is incompatible or at least not yet ported to GnuPG 2.x. Trying to use it on Sid or Stretch causes one pinentry window popup per guessed try (i.e. potentially thousands). And since pinentry usually grabs the keyboard, I can't press Ctrl-C or similar on rephrase itself. Pressing Cancel or the Escape key in the pinentry window does not end the rephrase session either but just makes the next pinentry window pop up. This makes the X session unusable until either: * No more tries are left * gpg is killed from outside the X session (e.g. text console or via SSH) I then tried to see if it at least works in general and tried it with only very few variants (2 variants, hence 4 tries), but even if the correct passphrase was under those very few tries (tried with 2 and 4 tries), rephrase fails to recognize the correct passphrase and always ends with the following message: Passphrase doesn't match pattern (or no such key/file/device) I think to solve this issue for Debian Stretch in the short term, rephrase needs to 1) depend on "gnupg1" instead of "gnupg", and 2) replace all calls to "gpg" with "gpg1". The following patch fixes the issue for me and also reports the correct passphrase if it was under the given variants. diff --git a/debian/control b/debian/control index 61b6be0..48981c5 100644 --- a/debian/control +++ b/debian/control @@ -11,7 +11,7 @@ Vcs-Git: git://anonscm.debian.org/forensics/rephrase.git Package: rephrase Architecture: any -Depends: ${misc:Depends}, ${shlibs:Depends}, gnupg +Depends: ${misc:Depends}, ${shlibs:Depends}, gnupg1 Description: Specialized passphrase recovery tool for GnuPG If you can nearly remember your GnuPG passphrase - but not quite - then Rephrase may be able to help. Tell Rephrase the parts of the passphrase you diff --git a/debian/rules b/debian/rules index 6da28e8..fd8216b 100755 --- a/debian/rules +++ b/debian/rules @@ -7,4 +7,4 @@ export DEB_BUILD_MAINT_OPTIONS = hardening=+all dh $@ override_dh_auto_build: - dh_auto_build -- GPG=/usr/bin/gpg + dh_auto_build -- GPG=/usr/bin/gpg1 In the long term, upstream should try to make it working with gnupg2, too. -- System Information: Debian Release: 9.0 APT prefers unstable APT policy: (990, 'unstable'), (980, 'unstable-debug'), (600, 'testing'), (111, 'buildd-unstable'), (111, 'buildd-experimental'), (110, 'experimental'), (105, 'experimental-debug') Architecture: amd64 (x86_64) Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores) Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages rephrase depends on: ii gnupg 2.1.18-3 ii libc6 2.24-9 rephrase recommends no packages. rephrase suggests no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: rephrase Source-Version: 0.2-2 We believe that the bug you reported is fixed in the latest version of rephrase, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Joao Eriberto Mota Filho <[email protected]> (supplier of updated rephrase package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 05 Feb 2017 18:53:54 -0200 Source: rephrase Binary: rephrase Architecture: source Version: 0.2-2 Distribution: unstable Urgency: medium Maintainer: Debian Forensics <[email protected]> Changed-By: Joao Eriberto Mota Filho <[email protected]> Description: rephrase - Specialized passphrase recovery tool for GnuPG Closes: 853935 Changes: rephrase (0.2-2) unstable; urgency=medium . * Team upload. * debian/control: - Bumped Standards-Version to 3.9.8. - Updated the Vcs-Git field to use https instead of git. * debian/patches/02_minimal_gpg2_support.patch: added to unconditionally call gpg with "--pinentry-mode loopback", allowing rephrase work with GPG2. Thanks to Axel Beckert <[email protected]>. (Closes: #853935) Checksums-Sha1: fdd1e05660b0ef02e3071ae527b3db35f0b45955 1896 rephrase_0.2-2.dsc 6c97a256006e3df34329ed25458941fe108fcd68 5724 rephrase_0.2-2.debian.tar.xz 3e49d72a3e216f0c70f62fe0987de120dca55d2f 4394 rephrase_0.2-2_source.buildinfo Checksums-Sha256: a5d318005ae740e358f7ca8e5c6455952769d849a10ecef6dc69ecd5db13dd5b 1896 rephrase_0.2-2.dsc c37bb8ec87e0888f6b557182b0a8f93d7719e7cf8d707d4cc8f2dacbfffd3d60 5724 rephrase_0.2-2.debian.tar.xz 7025303bf0dc12581afdee84ebf063cee129addb140615842dbc6418272acb20 4394 rephrase_0.2-2_source.buildinfo Files: a5bce779b4719bce4b1ec2202ba63e93 1896 utils extra rephrase_0.2-2.dsc aa11f55eb6ec3268b3314d5fc8088848 5724 utils extra rephrase_0.2-2.debian.tar.xz bcaa70797d3aa0a2f38d4e64e433d16d 4394 utils extra rephrase_0.2-2_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEENX3LDuyVoBrrofDS3mO5xwTr6e8FAliXle8ACgkQ3mO5xwTr 6e9vkg//TVvnthE8wDzP8Y+5PA8KUmNZgUxXCrtcVmHyVInYLCqMeglwcZe3VIJl C3FKq5rS75ueyUD0HxK4aJjt0vtGeLTcmD76n3qZofjJaiPHqUnVC58iy5q+NEdn oY1m8uNJMatOkkly888oLSQ1yVwFtpszBUMZEh7i9R1FYsywU5coVuzjp1Y+ACAv yLoCHuWodt3BBZzgWmgaQonr1rDryaTOdCXCwgiI6G46xu+t+K9IzFnYU2dVS+E0 QOHZvqsnxcjuAJxkXl9lWC8A5ElML0FALnYJmYVEe31b2Fd/pG+VVtAgAN072BhH d9qpdfK6xQv4xdXjJmZ9k+TnatU4Kd4wPOR7H0fY3HFBgWAe+n/nU5y1SB5IbIi+ sK113eFaicLQyeZPyeBIZw/F6T/ec55pDYGlgRXczrfAB4H2f7mA26q7gV96qhrz 3+S3jhQ198VH7WEipNbyDXLk48xQT7u6I1Q6aa7FDfx/RbSUJFf3UcBHyKMdL0sO uke2/oIwf16Z8MoJ+RYLwNVWRNYdaz6RVm2VJ8d8IvvLjpM1SGF5zzk9hQx1wB4J KXz7KoUIkU34OIAufq8Mqad0wS0Tf7dL/z1JmCnfZ0OexuB5UODP6SWAh+aRg4aU x8abQaHD0aEIGW1cKnJMMML5dGXRjUuW390nqvQovftbSRJ00oo= =czcr -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ forensics-devel mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/forensics-devel
