Decrypt a message with hidden recipients only prompts for the passphrase of the first secret key, uses the same passphrase for all following keys that are tested.
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	lukele
	Jul 4 2013, 1:29 AM

Description

When decrypting a message with hidden recipients with the following command:

gpg --decrypt
<paste the encrypted message>

pinentry will ask for the passphrase of the first secret key.
If the passphrase is not correct or the the message wasn't encrypted for that
secret key, the same passphrase is used for all following keys that are tested.

The correct behavior however can be seen in the following scenarios:

The passphrase request for each key that is not the correct one is cancelled.
- pinentry will then ask for each key's passphrase.
--status-fd 1 is appended to the command

This was tested using our MacGPG 2.0.20 since we expected it to be a bug
in our patches, but using the stock gnupg 2.0.20, this issue can be reliably
reproduced as well.

Details

Version: 2.0.20

Event Timeline

lukele set Version to 2.0.20.Jul 4 2013, 1:29 AM

lukele added projects: gnupg, Bug Report.

lukele added a subscriber: lukele.

Actually this is a feature. Ever tried to work with a bunch of messages all
encrypted to many hidden recipients?

Hmm... wondering then however, why implement different behavior for --status-fd
set?

• werner closed this task as Resolved.Jun 23 2014, 10:30 AM

• werner claimed this task.

• werner added a project: Not A Bug.

Decrypt a message with hidden recipients only prompts for the passphrase of the first secret key, uses the same passphrase for all following keys that are tested.Closed, ResolvedPublicActions

Description

Details

Event Timeline

Decrypt a message with hidden recipients only prompts for the passphrase of the first secret key, uses the same passphrase for all following keys that are tested.
Closed, ResolvedPublic
Actions