[Pkg-mozext-maintainers] Bug#863273: marked as done (enigmail cannot certify keys with already-expired certifications)

[Debian Bug Tracking System]

Your message dated Wed, 24 May 2017 17:19:10 +0000
with message-id <e1ddzwe-0003gn...@fasolo.debian.org>
and subject line Bug#863273: fixed in enigmail 2:1.9.7-2
has caused the Debian Bug report #863273,
regarding enigmail cannot certify keys with already-expired certifications
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
863273: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863273
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: enigmail
Version: 2:1.9.7-2
Severity: normal
Tags: upstream patch
Control: forwarded -1 
https://admin.hostpoint.ch/pipermail/enigmail-users_enigmail.net/2017-May/004445.html

Some people have made expiring certifications on other keys.  After
such a certification expires, they might want to re-certify with the
same key (e.g. if they've checked with the other person that they're
still using the key).

If the user tries to re-certify with enigmail, enigmail fails
obscurely ("signing failed").

The attached patch fixes the issue, and has already been adopted by
enigmail upsteam on its master branch.

    --dkg

-- System Information:
Debian Release: 9.0
  APT prefers testing-debug
  APT policy: (500, 'testing-debug'), (500, 'testing'), (200, 
'unstable-debug'), (200, 'unstable'), (1, 'experimental-debug'), (1, 
'experimental')
Architecture: amd64
 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages enigmail depends on:
ii  gnupg                  2.1.21-2
ii  gnupg-agent            2.1.21-2
ii  gnupg2                 2.1.21-2
ii  icedove                1:45.8.0-3
ii  thunderbird [icedove]  1:45.8.0-3

Versions of packages enigmail recommends:
ii  pinentry-gnome3 [pinentry-x11]  1.0.0-2
ii  pinentry-gtk2 [pinentry-x11]    1.0.0-2
ii  pinentry-qt [pinentry-x11]      1.0.0-2

enigmail suggests no packages.

-- no debconf information

From: Daniel Kahn Gillmor <d...@fifthhorseman.net>
Date: Mon, 15 May 2017 14:46:15 -0400
Subject: Allow re-certifying keys that have expired certifications.

Some people have made expiring certifications on other keys.  After
such a certification expires, they might want to re-certify with the
same key (e.g. if they've checked with the other person that they're
still using the key).

If this happens, enigmail fails obscurely ("signing failed").

In the log is:

2017-05-15 14:41:15.494 [DEBUG] keyManagmenent.jsm: 
GpgEditorInterface.processLine: '[GNUPG:] GET_BOOL 
sign_uid.replace_expired_okay'
2017-05-15 14:41:15.494 [ERROR] Unknown command prompt: [GNUPG:] GET_BOOL 
sign_uid.replace_expired_okay

I believe this patch should resolve the problem.
---
 package/keyEditor.jsm | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/package/keyEditor.jsm b/package/keyEditor.jsm
index f1750ac..615fea4 100644
--- a/package/keyEditor.jsm
+++ b/package/keyEditor.jsm
@@ -616,6 +616,10 @@ function signKeyCallback(inputData, keyEdit, ret) {
   else if (keyEdit.doCheck(GET_BOOL, "sign_uid.local_promote_okay")) {
     ret.exitCode = 0;
     ret.writeTxt = "Y";
+  } 
+  else if (keyEdit.doCheck(GET_BOOL, "sign_uid.replace_expired_okay")) {
+    ret.exitCode = 0;
+    ret.writeTxt = "Y";
   }
   else if (keyEdit.doCheck(GET_LINE, "sign_uid.class")) {
     ret.exitCode = 0;

--- End Message ---

--- Begin Message ---

Source: enigmail
Source-Version: 2:1.9.7-2

We believe that the bug you reported is fixed in the latest version of
enigmail, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 863...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Daniel Kahn Gillmor <d...@fifthhorseman.net> (supplier of updated enigmail 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 15 May 2017 14:52:57 -0400
Source: enigmail
Binary: enigmail
Architecture: source
Version: 2:1.9.7-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Mozilla Extension Maintainers 
<pkg-mozext-maintainers@lists.alioth.debian.org>
Changed-By: Daniel Kahn Gillmor <d...@fifthhorseman.net>
Description:
 enigmail   - GPG support for Thunderbird and Debian Icedove
Closes: 863273
Changes:
 enigmail (2:1.9.7-2) unstable; urgency=medium
 .
   * enable re-certifying keys with expired certs (Closes: #863273)
Checksums-Sha1:
 af978b898063450c6f738a59dde04b7b16f52d20 2066 enigmail_1.9.7-2.dsc
 5598e584a9830f0800f392d8d693a014eab5bc6e 28636 enigmail_1.9.7-2.debian.tar.xz
 e163e387cd3d056447f0c1fe1f0b46eefa03b9a3 6932 enigmail_1.9.7-2_amd64.buildinfo
Checksums-Sha256:
 e5c114d4cfe8eacd69d9823e831f63034a014c826e68414b782d1d16497354f0 2066 
enigmail_1.9.7-2.dsc
 8aa05de50b3c933311a5c4bb933b51e36d7a0be4fc19fc282b7faa313a7cae3a 28636 
enigmail_1.9.7-2.debian.tar.xz
 2fd7e465ce5f7aa70aa2a243adec435d22a118165bde77e62f370713c3dc18a9 6932 
enigmail_1.9.7-2_amd64.buildinfo
Files:
 ec8018e3de19b0c7c3fe0d8cdf90bf96 2066 mail optional enigmail_1.9.7-2.dsc
 522c1b253363c36c870e3b2a8e4c507e 28636 mail optional 
enigmail_1.9.7-2.debian.tar.xz
 e60c6cbb729b4977504ed51c87aa73fa 6932 mail optional 
enigmail_1.9.7-2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=pWXu
-----END PGP SIGNATURE-----

--- End Message ---

_______________________________________________
Pkg-mozext-maintainers mailing list
Pkg-mozext-maintainers@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-mozext-maintainers