No longer able to decrypt GPG IMs

I think that this bug will likely get set to "low" urgency because that is the default for the kopete package -- however, that seems inappropriate for a bug that means that one can no longer receive encrypted IMs, since it means that users must either use unencrypted IMs or resort to using some other method to communicate securely.

I only have this problem with Kopete 3.5.6 in Edgy. After downgrading to standard Kopete 3.5.5 the problem disappears again. The password isn't asked for gpg-agent with 3.5.6.
The weird thing is that even the sent log messages are encrypted in 3.5.6 so they are unreadable.

It only happens in Edgy after upgrading from standard 3.5.5 to 3.5.6. I doesn't happen in Feisty, at least in Herd 2.

Sorry, I have tested it with Herd 2 Live CD which uses Kopete 3.5.5 so it probably happens in Feisty with Kopete 3.5.6 too.

I tested it with Feisty:

* I'm able to send encrypted messages
* I only see thes sent messages as ciphertext
* crypted incoming message are NOT (!) decrypted
* I can decrypt them by piping them into "gpg --decrypt" which dutifully uses gpg-agent to ask for my passphrase

This is "kopete 3.5.6-0ubuntu2" from feisty on i386.

Whee....

Seems that we've dropped a couple of deps. (and corresponding build-deps)

Namely: libssl0.9.8 (>= 0.9.8b-1), libjasper-runtime

I would expect this is the problem.

Not really. The cryptography plugin uses GPG. And GPG is installed, but never called.

But I may be wrong, so by all means, let's try and fix the dependencies anyway :)

Perhaps not. but I'm not sure why those were dropped anyway. I remember that I added them for a reason.

Can the original poster please paste their /etc/apt/sources.list? There was no kde 3.5.6 upgrade for dapper, so that shouldnt have been the problem.

On 29/01/07, Sarah Hobbs <email address hidden> wrote:

> Can the original poster please paste their /etc/apt/sources.list? There
> was no kde 3.5.6 upgrade for dapper, so that shouldnt have been the
> problem.

I think I was the original poster.

One thing seems to have got lost in the chorus of "me too" e-mails:
this problem actually showed up in an upgrade I received even though
was (and am) running kde 3.5.5.

I am grateful for the "me too" e-mails though, because this had
languished for a while and I was wondering if anyone else was ever
going to notice the problem (I imagine that there aren't a huge number
of users of the kopete GPG plug-in). Release of 3.5.6 seems to have
made people aware of it, though.

Here is my complete sources.list file:

-----

deb http://us.archive.ubuntu.com/ubuntu/ dapper main restricted
deb-src http://us.archive.ubuntu.com/ubuntu/ dapper main restricted

## Major bug fix updates produced after the final release of the
## distribution.
deb http://us.archive.ubuntu.com/ubuntu/ dapper-updates main restricted
deb-src http://us.archive.ubuntu.com/ubuntu/ dapper-updates main restricted

## Uncomment the following two lines to add software from the 'universe'
## repository.
## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu
## team, and may not be under a free licence. Please satisfy yourself as to
## your rights to use the software. Also, please note that software in
## universe WILL NOT receive any review or updates from the Ubuntu security
## team.
deb http://us.archive.ubuntu.com/ubuntu/ dapper universe
deb-src http://us.archive.ubuntu.com/ubuntu/ dapper universe

## Uncomment the following two lines to add software from the 'backports'
## repository.
## N.B. software from this repository may not have been tested as
## extensively as that contained in the main release, although it includes
## newer versions of some applications which may provide useful features.
## Also, please note that software in backports WILL NOT receive any review
## or updates from the Ubuntu security team.
deb http://us.archive.ubuntu.com/ubuntu/ dapper-backports main
restricted universe multiverse
deb-src http://us.archive.ubuntu.com/ubuntu/ dapper-backports main
restricted universe multiverse

deb http://security.ubuntu.com/ubuntu dapper-security main restricted
deb-src http://security.ubuntu.com/ubuntu dapper-security main restricted
# deb http://security.ubuntu.com/ubuntu dapper-security universe
# deb-src http://security.ubuntu.com/ubuntu dapper-security universe

# DRE

# KDE 3.5.4
deb http://kubuntu.org/packages/kde-354 dapper main
#deb ftp://bolugftp.uni-bonn.de/pub/kde/stable/3.5.4/kubuntu dapper main
#deb http://www.mirrorservice.org/sites/ftp.kde.org/pub/kde/stable/3.5.4/kubuntu
dapper main
#deb http://mirror.cc.columbia.edu/pub/software/kde/stable/3.5.4/kubuntu
dapper main

# KDE 3.5.5
deb http://kubuntu.org/packages/kde-355 dapper main

# Automatix
deb http://www.getautomatix.com/apt dapper main

# MP3 codecs
deb http://nl.archive.ubuntu.com/ubuntu/ dapper multiverse

# amaroK 1.4.x
#deb http://kubuntu.org/packages/amarok-14 dapper main
#deb http://kubuntu.org/packages/amarok-141 dapper main

# KOffi...

I havent a hope of being able to figure out what's broken on that dapper system - none of the official updates would have caused it, as they were for totally different things

https://lists.ubuntu.com/archives/dapper-changes/

Can you please attach /var/log/dpkg.log?

I've got a suspicion that something's changed between 3.5.5, and 3.5.6.

As for N7DR, i've got no real hope of being able to troubleshoot that, based on there being so many sources with conflicting packages.

Dapper aside, this is still an issue with feisty as of 3.5.6-0ubuntu6, I'm going to try to play around with it and see if I can narrow down the problem better.

You could just grab the plugin libs src and toss it in the current src tree for crypt. I took the old /usr/lib/kde3/kopete_cryptography.so from 3.5.5+kopete0.12.3-0ubuntu2.2, and it's working fine with current feisty kopete.

Changed upstream bug number, because "our" report was marked as duplicate

Problem still exists.

Maybe this patch here helps:
http://bugs.kde.org/show_bug.cgi?id=134907

Would be perfect, if there would be a new package soon.

An alternative ist an old version of Kopete from Dapper or OTR with this Plugin:
http://www.kde-apps.org/content/show.php/Kopete+OTR+Plugin?content=55002&PHPSESSID=59dd0f4a52fc3a4f60e4ca80f6fa196c

Just testet the patch provided at http://bugs.kde.org/show_bug.cgi?id=134907 from Olivier Goffart 2007-05-06 12:06 on gentoo with kopete 0.12.4.
Tested with kopete<->kopete kopete<->psi and works fine so far.

Would be nice if the patch could be included to the knetwork/kopete deb

Yeah, since it really is a security issue it should be able to be included in a security update.

Debdiff for kdenetwork to solve the bug

fixed in gutsy, and the feisty 3.5.7 packages.