[Enigmail] Problems signing message (gpg-agent related?)

Patrick Brunschwig patrick at mozilla-enigmail.org
Wed Jul 25 05:07:57 PDT 2007 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Pierre Bernhardt wrote:
> James Davis schrieb:
>> Sorry for the verboseness of this post...
>>
>> I'm using Icedove 1.5.0.12, Enigmail 0.94.3 and gnupg 1.4.6 on Debian
>> 4.0, I also have gnupg 2 available. I'm using a smartcard with an SCR335
>> reader through the internal CCID driver. I think my problem relates to
>> gpg-agent as I'd recently been tweaking the configuration but I can't
>> figure out how this is resulting in what I see.
>>
>> When I try to sign a message with enigmail I get the following error
>> (from log directory)
>>
>> [GNUPG:] BEGIN_SIGNING
>> winscard_clnt.c:3232:SCardCheckDaemonAvailability() PCSC Not Running
>> gpg: pcsc_establish_context failed: no service (0x8010001d)
>> [GNUPG:] CARDCTRL 5
>> gpg: card reader not available
>> gpg: signing failed: general error
>> gpg: [stdin]: clearsign failed: general error
>>
>> The gpg command enigmail ran was
>>
>> /usr/bin/gpg --charset utf8  --batch --no-tty --status-fd 2 --comment
>> 'Using GnuPG with Mozilla - http://enigmail.mozdev.org' --digest-algo
>> sha1 -t --clearsign -u 0x890F159E --passphrase-fd 0 --no-use-agent
>>
>> The following command fails
>>
>> $ echo "Hello world" | gpg --charset utf8  --batch --no-tty --status-fd
>> 2 --comment 'Using GnuPG with Mozilla - http://enigmail.mozdev.org'
>> --digest-algo sha1 -t --clearsign -u 0x890F159E --passphrase-fd 0
>> --no-use-agent
>> [GNUPG:] BEGIN_SIGNING
>>
>> winscard_clnt.c:3232:SCardCheckDaemonAvailability() PCSC Not Running
>> gpg: pcsc_establish_context failed: no service (0x8010001d)
>> [GNUPG:] CARDCTRL 5
>> gpg: card reader not available
>> gpg: signing failed: general error
>> gpg: [stdin]: clearsign failed: general error
>>
>> but the command succeeds when I remove "--passphrase-fd 0
>> --no-use-agent" from the command.
>>
>> james at cressida:~/enigmail$ echo "Hello world" | gpg --charset utf8
>> --batch --no-tty --status-fd 2 --comment 'Using GnuPG with Mozilla -
>> http://enigmail.mozdev.org' --digest-algo sha1 -t --clearsign -u 0x890F159E
>> [GNUPG:] BEGIN_SIGNING
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> Hello world
>> [GNUPG:] CARDCTRL 3
>> [GNUPG:] SIG_CREATED C 1 2 01 1184670059
>> 33FD5839ED6475E4E5D02273B6BDDBA7890F159E
> 
> Any ideas?
> Yes, TB 2 with Enigmail ist corrupt.
> I have exactly the same problem with my two different card readers under WindowsXP.
> If you using signing + mime it will not work. Signing without mime could help.
> If I encrypt + sign + mime it works, too.
> Could you please check? Here a copy of my mail which I've sent 06.07.2007:
> 
> Hello,
> 
> I have a problem with Enigmail 0.95.2 - gpg 1.4.7 thunderbird
> 2.0.0.4 on Windows XP (all patches).
> 
> Here a list which function is working an which is not working:
> 
> Sign	Encr	Mime	Working?
> --------------------------------
> Yes	No	No	Yes
> No	Yes	No	Yes
> Yes	Yes	No	Yes
> Yes	No	Yes	No
> No	Yes	No	Yes
> Yes	Yes	Yes	Yes
> 
> This mean if I send a sign mime mail and and I want to use
> a key from a gpg-Card, the signing will fail with an error
> message.
> 
> Here the message from the error window after a sign with mime:
> 
> ...
> enigmail> C:\Programme\GnuPG-Pack\gpg.exe --charset utf8 --reader-port 'SCM Micr
> osystems Inc. SPRx32 USB Smart Card Reader 0' --batch --no-tty --status-fd 2 --c
> omment 'Using GnuPG with Mozilla - http://enigmail.mozdev.org' -t --clearsign -u
>  0xD0DCBB1D --passphrase-fd 0 --no-use-agent
> gpg: detected reader `SCM Microsystems Inc. SPRx32 USB Smart Card Reader 0'
> gpg: signatures created so far: 115
> 
> enigmail> C:\Programme\GnuPG-Pack\gpg.exe --charset utf8 --reader-port 'SCM Micr
> osystems Inc. SPRx32 USB Smart Card Reader 0' --batch --no-tty --status-fd 2 --c
> omment 'Using GnuPG with Mozilla - http://enigmail.mozdev.org' --digest-algo sha
> 1 -s -b -a -t -u 0xD0DCBB1D --passphrase-fd 0 --no-use-agent
> Ihr SmartCard-Lesegerät wurde nicht gefunden.
> Bitte installieren Sie das Lesegerät, legen die Karte ein und wiederholen den Vo
> rgang.
> enigmail.js: Enigmail.encryptMessageEnd: Error in command execution
> 
> As described in table the problem doesn't exists if I' encrypt & sign
> with mime a mail.
> 
> The signing itself looks like working (1st command) so only the second command
> looks like fails.
> 
> 
> MfG...
> Pierre Bernhardt
> 
> PS: And the biggest problem is I haven no idea where I can find a
> developer/person who can debug this problem.

Could you please create debug logs as described on
http://enigmail.mozdev.org/bugs.html and send them to me (in private)?

I can then hopefully analyze what goes wrong (or at least what goes on).
I assume that gpg expects a gpg-agent for some card operations, however
the use of gpg-agent in Enigmail is not yet tested (and therefore not
really supported) on Windows.

- -Patrick
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iQEVAwUBRqc9HHcOpHodsOiwAQIhuwgAvkzQtTdwO2GE0WlyWrADYK08+tRaU9HG
rvTgYXZeLcxeWXc7CgOFqxdPCqGnYiEUU1PfSI5+//y5QR9LwB4ZkVn2ECrfH+4o
iafql37MOB1sxPV5TYrFbW+EuKi81SM/WSbeehKrfQMfeM7CxXO6IDZuHvw7twCy
Z7xw64Bog7HdzO3aD4GUpJOZfYLSMdsf/xJQy/tSd7/DkUAgJJPMe2vM24KGHGK5
/pcFWtCksplVh/Q+4CfDh1n72o01sdOdZIk0ps9ltNnBBr6wjC1auHr0h+LhUFMH
4KtlurxUzelTh5LUwItSLrSMKFeVciiTY+YwcFkJTSqJqy+otMgbLA==
=9x7+
-----END PGP SIGNATURE-----

More information about the Enigmail mailing list