Re: T350-crypto T357-index-decryption: possible race condition?

Subject: Re: T350-crypto T357-index-decryption: possible race condition?

Date: Thu, 25 May 2023 15:31:21 +0200

David Bremner venit, vidit, dixit 2023-05-12 21:17:45:
> Michael J Gruber <michaeljgruber+grubix+git@gmail.com> writes:
> 
> > oh well, attachments ...
> >
> 
> Can you encrypt to the key 6D92612D94E46381 interactively using an
> approriately simplified version of that command?

Took me a while, sorry. In that chroot:

```
<mock-chroot> sh-5.2# gpg --no-tty --import ./test/gnupg-secret-key.asc
gpg: directory '/builddir/.gnupg' created
gpg: /builddir/.gnupg/trustdb.gpg: trustdb created
gpg: key 6D92612D94E46381: public key "Notmuch Test Suite <test_suite@notmuchmail.org> (INSECURE!)" imported
gpg: key 6D92612D94E46381: secret key imported
gpg: Total number processed: 1
gpg:               imported: 1
gpg:       secret keys read: 1
gpg:   secret keys imported: 1

<mock-chroot> sh-5.2# echo supersecret | gpg -ear 6D92612D94E46381
gpg: C44D36DEAD54AB16: There is no assurance this key belongs to the named user

sub  rsa1024/C44D36DEAD54AB16 2011-02-05 Notmuch Test Suite <test_suite@notmuchmail.org> (INSECURE!)
 Primary key fingerprint: 5AEA B11F 5E33 DCE8 75DD  B75B 6D92 612D 94E4 6381
      Subkey fingerprint: 8987 5467 478A A81C EBD5  2E7E C44D 36DE AD54 AB16

It is NOT certain that the key belongs to the person named
in the user ID.  If you *really* know what you are doing,
you may answer the next question with yes.

Use this key anyway? (y/N)
```

Confirming that works, of course. Also, `gpg --always-trust -ear 6D92612D94E46381` works.

```
<mock-chroot> sh-5.2# printf '%s:6:\n' "$FINGERPRINT" | gpg --quiet --batch --no-tty --import-ownertrust
gpg: inserting ownertrust of 6
```
(like test-lib.sh does) and then encryption works - no questions asked.
So, all that works.

Are all gpg related tests emacs based? Either gpg or emacs is the red
herring here, or both ...

Unfortunately I have no clue about emacs/lisp and cannot dig further
there. I just know it's 100% reproducible (for f39 mock on f38, all fedoras
in copr, but not f38 mock on f38). Stomped.

Cheers
Michael
_______________________________________________
notmuch mailing list -- notmuch@notmuchmail.org
To unsubscribe send an email to notmuch-leave@notmuchmail.org

Previous message (by thread): Re: T350-crypto T357-index-decryption: possible race condition?

Thread:

Michael J Gruber—T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
- David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
  - Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
    - Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [attachment, inbox, unread]
      - David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        Michael J Gruber—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]
        David Bremner—Re: T350-crypto T357-index-decryption: possible race condition? [inbox, unread]