Enigmail Forum

[jgribbin]

I'm having problems signing keys or setting trust levels using Enigmail on Thunderbird w/ W2K. The only way I seem to be able to preform these tasks is at the command line with GnuPG.

As far as I know, I'm using the latest versions. 1.0.7 and 0.93.0 and 1.2.3-nr1.

When I try it, I get the error: "Key signing failed", "An undefined error occurred.".

I've also noticed I can neither send or receive keys from some keyservers. https://keyserver.pgp.com/ in particular. I can at other sites though.

A friend of mine seems to having very similar problems using it with FC3.

Jim Gribbin[/quote][/url]

[barry]

GnuPG v1.2.3 is very old now. You should upgrade to v.1.4.1 as a minimum version. It would be best to go to version 1.4.2 which you can download from this page. If you want to download the Windows binary, you can do that directly from this link

There have been a lot of bug fixes since v1.2.3 that make it an essential upgrade. This should also fix your problem with managing keys.

[jgribbin]

Well, this is fun - NOT.

I installed the new GnuPG, changed the appropriate paths and now I get an error about LoadLibrary failed. invalid module Lib/idea.

I found the idea.dll, put it in the home directory specified in the docs ... gnupg couldn't find it, same LoadLibrary error.

I tried using the --homedir option to set it to the homedir (C:\Documents and Settings\jimg\Application Data\GnuPG) and got the following errors.

gpg: keyblock resource `C:/Documents\secring.gpg': file open error
gpg: keyblock resource `C:/Documents\pubring.gpg': file open error
usage: gpg [options] [filename]

Can anybody give me a clue where I went wrong?

Doesn't seem to be something for a newbie to attempt setting up.

Jim Gribbin

[Sparx]

Jim: it isn't the slashes, is it? / \

Also try putting the full path in quotes " " or try putting it in 8.3 format:

Code: Select all

C:\Docu~1\jimg\Appl~1\GnuPG\

[barry]

You probably still have some registry entries left over from your previous installation.

Open Registry Editor, and navigate to the following locations and delete them.

Code: Select all

[HKEY_LOCAL_MACHINE\Software\GNU\GNUPG]

Code: Select all

[HKEY_CURRENT_USER\Software\GNU\GNUPG]

This will give you a clean registry. Reboot, and then try again.

[jgribbin]

Deleting the registry keys seems to have helped, but it's not there yet.

I now seem to be able to run gpg from the command line, but not without problems.

Iporting my old keys I had previously exported goes OK, but when I do "gpg --list-keys" the keys are listed but I get the following errors at the end of the list:

gpg: buffer shorter than subpacket
gpg: buffer shorter than subpacket
gpg: signature packet without keyid
gpg: buffer shorter than subpacket
gpg: signature packet without timestamp
pub 2048R/CA57AD7C 2004-12-06
uid PGP Global Directory Verification Key
uid [jpeg image of size 3400]

And when running "Key Managment" from Thunderbird's Enigmail menu I get:

Error - encryption command failed

C:\\Program Files\\GnuPG\\gpg.exe --charset utf8 --batch --no-tty --status-fd-2 --with-fingerprint --fixed-list-mode --with-colons --list-keys

gpg: buffer shorter than subpacket
gpg: buffer shorter than subpacket
gpg: signature packet without keyid
gpg: buffer shorter than subpacket
gpg: signature packet without timestamp

After acknowleging the error by clicking OK I get the OpenPGP Managment window, but it's blank and won't do or display anything.

Jim Gribbin

BTW - those slashes Sparx questioned. I didn't notice until he mentioned them, but that was cut and paste straight from the terminal window. I don't remember seeing alternating slashes like that before, but thats the way gpg put it out. Same with the double back-slashes in that second error listing.

Jim Gribbin

[jgribbin]

Just out of curiosity, I tried un-installing all my gpg stuff and just installing gnupg 1.4.2

Didn't make any difference. I get all the exact same errors in all the same plces.

Jim Gribbin

[barry]

It sounds like you have a corrupted keyring to me, but I'm not 100% sure. It's certainly a GPG issue thats throwing these errors.

It's probably best to ask for some help on these lists:

Gnupg-users mailing list:
mailto://Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

PGP-Basics mailing list:
mailto://PGP-Basics@yahoogroups.com
http://groups.yahoo.com/group/PGP-Basics/

Once you've got GPG working properly without the errors we can then try and help resolve any other issues you are experiencing with Enigmail.

[jgribbin]

OK. I seem to have it working now. I do appreciate the help.

I had already exported my keys for safekeeping, so I removed every vestige of GnuPG I could find. First by uninstalling, then using a registry scrubber to remove any leftover registry keys, then Enigmail itself. I also used Window's search too to find an remove any related files and directories I could find. gnupg, gpg, pgp, whatever.

I did this to try installing in as clean an environment as I could.

I then re-installed everything. It all seems to be working now.

I did notice 1 thing though. More of an annoyance I think. If you attempt to sign a key thats already signed, Enigmail just tells you it failed, period. Nothing about trying to sign an already signed key.

Thanks again,
Jim Gribbin

[andy-d]

And when running "Key Managment" from Thunderbird's Enigmail menu I get:

Error - encryption command failed

C:\\Program Files\\GnuPG\\gpg.exe --charset utf8 --batch --no-tty --status-fd-2 --with-fingerprint --fixed-list-mode --with-colons --list-keys

gpg: buffer shorter than subpacket
gpg: buffer shorter than subpacket
gpg: signature packet without keyid
gpg: buffer shorter than subpacket
gpg: signature packet without timestamp

hi there,

i got the same problem after the upgrade to enigmail 0.94.0

i solved it with delete gnupg folder where the keys are saved and reinstall gnupg

under win 2k/xp the folder located at
c:\documents and settings\<user>\application data\gnupg
( c:\dokumente und einstellungen\<benutzer>\anwendungsdaten\gnupg )

[andy-d]

anyone knows howto change the location of the gnupg key folder ?
(from C:\..... to E:\.... )
didnt found any conffile for the gnupg binary

[Adam]

anyone knows howto change the location of the gnupg key folder ?

I've had a look on the web for you - the following was taken from here - A post by John P. Clizbe (he's a bit of an expert!)

If you have a look in your registry, you should be able to alter the defaults:

[HKEY_CURRENT_USER\Software\GNU\GNUPG]
"HomeDir"="C:\\Documents and Settings\\user\\Application Data\\GnuPG"
"gpgProgram"="C:\\Program Files\\Gnu\\GnuPG\\gpg.exe"
"OptFile"="C:\\Documents and Settings\\user\\Application
Data\\GnuPG\\gpg.conf"

If you've never edited your registry before, first create a system restore point. If you're using WinXP, you need to go to START > PROGRAMS > ACCESSORIES > SYSTEM TOOLS > SYSTEM RESTORE then select "Create a restore point".

Next, hit START > RUN > REGEDIT

Navigate to the following registry entry:
HKEY_CURRENT_USER\Software\GNU\GNUPG

You can then change the appropriate values, for example:
"HomeDir"="C:\\Documents and Settings\\user\\Application Data\\GnuPG" becomes "HomeDir"="E:\\your_directory"

You'll then change
"OptFile"="C:\\Documents and Settings\\user\\Application
Data\\GnuPG\\gpg.conf" to "OptFile"="E:\\your_directory"

(the double-slashes are important)

There is probably an easier method using the gpg command line, but I've not yet been able to find it. Just don't forget to back up your keyrings and copy them to your new directory.

Hope this helps!

[andy-d]

looks like 1.4.2 binary doesnt set homedir var but add it manual works

thanks for the tip