Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Bug#330686: gnupg: Errors running --check-trustdb in 1.4.2-1

100 views
Skip to first unread message

Romain Francoise

unread,
Sep 29, 2005, 5:50:13 AM9/29/05
to
Package: gnupg
Version: 1.4.2-1
Severity: normal

(I sent this report a few days ago but didn't get an ack from submit@.)

The new version of GnuPG doesn't like my keyring:

pacem:/tmp$ gpg --check-trustdb
gpg: mpi larger than indicated length (2 bytes)
gpg: keyring_get_keyblock: read error: invalid packet
gpg: keyring_get_keyblock failed: invalid keyring
gpg: failed to rebuild keyring cache: invalid keyring
gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model
gpg: mpi larger than indicated length (2 bytes)
gpg: keyring_get_keyblock: read error: invalid packet
gpg: keydb_get_keyblock failed: invalid keyring
gpg: validate_key_list failed
zsh: exit 2 gpg --check-trustdb
pacem:/tmp$

If I go back to version 1.4.1-1, --check-trustdb works as intended:

pacem:/tmp$ gpg --check-trustdb
gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model
gpg: depth: 0 valid: 1 signed: 8 trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1 valid: 8 signed: 58 trust: 8-, 0q, 0n, 0m, 0f, 0u
gpg: next trustdb check due at 2005-11-13
pacem:/tmp$

How do I know which key in my keyring causes the problem? I tried
running the command with --debug-all but I doesn't show the key IDs.

Thanks,

-- System Information:
Debian Release: testing/unstable
APT prefers unstable
APT policy: (700, 'unstable'), (650, 'experimental')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.13.1
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)

Versions of packages gnupg depends on:
ii libbz2-1.0 1.0.2-9 high-quality block-sorting file co
ii libc6 2.3.5-6 GNU C Library: Shared libraries an
ii libldap2 2.1.30-12 OpenLDAP libraries
ii libreadline5 5.0-11 GNU readline and history libraries
ii libusb-0.1-4 2:0.1.10a-21 userspace USB programming library
ii makedev 2.3.1-78 creates device files in /dev
ii zlib1g 1:1.2.3-4 compression library - runtime

gnupg recommends no packages.

-- no debconf information

--
,''`.
: :' : Romain Francoise <rfran...@debian.org>
`. `' http://people.debian.org/~rfrancoise/
`-


--
To UNSUBSCRIBE, email to debian-bugs-...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listm...@lists.debian.org

Jochen Voss

unread,
Sep 29, 2005, 5:20:24 PM9/29/05
to
Hi,

just for the records, I see this problem, too:

voss@quiche [~] gpg --update-trustdb


gpg: mpi larger than indicated length (2 bytes)
gpg: keyring_get_keyblock: read error: invalid packet
gpg: keyring_get_keyblock failed: invalid keyring
gpg: failed to rebuild keyring cache: invalid keyring
gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model
gpg: mpi larger than indicated length (2 bytes)
gpg: keyring_get_keyblock: read error: invalid packet
gpg: keydb_get_keyblock failed: invalid keyring
gpg: validate_key_list failed

voss@quiche [~] uname -a
Linux quiche 2.6.13.2 #1 Sat Sep 24 22:34:05 BST 2005 ppc GNU/Linux
voss@quiche [~] gpg --version
gpg (GnuPG) 1.4.2
Copyright (C) 2005 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.

Home: ~/.gnupg
Supported algorithms:
Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512
Compression: Uncompressed, ZIP, ZLIB, BZIP2

I hope this helps,
Jochen
--
http://seehuhn.de/

signature.asc

David Shaw

unread,
Sep 29, 2005, 11:20:11 PM9/29/05
to
On Thu, Sep 29, 2005 at 11:39:41AM +0200, Romain Francoise wrote:
> Package: gnupg
> Version: 1.4.2-1
> Severity: normal
>
> (I sent this report a few days ago but didn't get an ack from submit@.)
>
> The new version of GnuPG doesn't like my keyring:
>
> pacem:/tmp$ gpg --check-trustdb
> gpg: mpi larger than indicated length (2 bytes)
> gpg: keyring_get_keyblock: read error: invalid packet
> gpg: keyring_get_keyblock failed: invalid keyring
> gpg: failed to rebuild keyring cache: invalid keyring
> gpg: 3 marginal(s) needed, 1 complete(s) needed, classic trust model
> gpg: mpi larger than indicated length (2 bytes)
> gpg: keyring_get_keyblock: read error: invalid packet
> gpg: keydb_get_keyblock failed: invalid keyring
> gpg: validate_key_list failed
> zsh: exit 2 gpg --check-trustdb
> pacem:/tmp$

Please try the attached patch to 1.4.2.

David

mpi.patch

Romain Francoise

unread,
Sep 30, 2005, 2:10:04 AM9/30/05
to
David Shaw <ds...@jabberwocky.com> writes:

> Please try the attached patch to 1.4.2.

This patch fixes the problem. Thanks.

David Shaw

unread,
Sep 30, 2005, 9:10:12 AM9/30/05
to
On Fri, Sep 30, 2005 at 07:53:20AM +0200, Romain Francoise wrote:
> David Shaw <ds...@jabberwocky.com> writes:
>
> > Please try the attached patch to 1.4.2.
>
> This patch fixes the problem. Thanks.

Good. That patch is part of 1.4.3.

David

James Troup

unread,
Sep 30, 2005, 1:40:11 PM9/30/05
to
David Shaw <ds...@jabberwocky.com> writes:

> On Fri, Sep 30, 2005 at 07:53:20AM +0200, Romain Francoise wrote:
>> David Shaw <ds...@jabberwocky.com> writes:
>>
>> > Please try the attached patch to 1.4.2.
>>
>> This patch fixes the problem. Thanks.
>
> Good. That patch is part of 1.4.3.

FWIW, I already have a 1.4.2-2 prepared as this bug broke handling of
the debian keyring too; I've just been waiting on a fixed bzip2
(#330637) to propagate.

--
James

0 new messages