sudo breaks keyring access for normal user
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| gnupg (Ubuntu) |
Expired
|
Undecided
|
Unassigned | ||
Bug Description
Version: gpg (GnuPG) 1.4.12 on up-to-date raring
If you delete a public key using sudo (by mistake), you get a security warning about pubring file owner. If you go ahead, the pubring file in you home is then owned by root:root and you have no access to it anymore unless you change owner by hand.
How to reproduce:
gpg --recv <somekey>
sudo gpg --delete-key <somekey>
gpg --recv <somekey>
you get
gpg: impossibile aprire "/home/
gpg: keydb_get_keyblock failed: eof
gpg: non è stato trovato un portachiavi scrivibile: eof
gpg: errore nel leggere "[stream]": errore generale
that is something like
gpg: unable to open "/home/
gpg: keydb_get_keyblock failed: eof
gpg: no writable keyring found: eof
gpg: error reading "[stream]": generic error
That's clearly fixed by a simple chown, anyway. This is probably because the pubring is entirely rewritten with root privileges, but I'm not sure it's the correct behavior.
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in gnupg (Ubuntu): | |
| status: | New → Confirmed |
| Daniel Leidert (dleidert-deactivatedaccount) wrote | #2 |
| Changed in gnupg (Ubuntu): | |
| status: | Confirmed → Incomplete |
| Launchpad Janitor (janitor) wrote | #3 |
| Changed in gnupg (Ubuntu): | |
| status: | Incomplete → Expired |
Status changed to 'Confirmed' because the bug affects multiple users.