Asheesh Laroia | 24 Jun 21:59 2016

Bug#828085: When running monkeysphere against Clint's key, monkeysphere fails to do anything useful due to a GPG bug maybe

Package: monkeysphere
Version: 0.37-2

I am trying to learn how to use monkeysphere. I figured one good first-step would be to get the SSH key corresponding to Clint Adams <clint <at> debian.org>.

So I ran:

$ monkeysphere u "Clint Adams <schizo <at> debian.org>"

in an attempt to get a "ssh-rsa..." line out, which would demonstrate to me that monkeysphere generally works.

Instead, I got this output:

paulproteus <at> slittingmill:~$ monkeysphere u "Clint Adams <schizo <at> debian.org>"
ms: Failure (2) receiving keyids (0x2100A32C46F895AF3A08783AF6D3495BB0AE9A02
ms: 0x2806F67A363A1F9C3EBFD274C3A844D76AE3B737
ms: 0x995314085A0EC967941DCE9DE66D2EEBAB963370
ms: 0x5DB29C847F07FD4F60A8728070AEBD21B13DEAF7
ms: 0xA3B4A1C6DBED847F
ms: 0xF88942139018FAD6EB7EC4735EDBAE5BB98FC0C8
ms: 0x91A285AE301B7D6B
ms: 0x1927D3053E30A739) from keyserver pool.sks-keyservers.net

However, I can seemingly download at least of those keys A-OK from the key server:

paulproteus <at> slittingmill:~$ echo | gpg --quiet --batch --with-colons --command-fd 0 --keyserver pool.sks-keyservers.net --recv-keys 0x2100A32C46F895AF3A08783AF6D3495BB0AE9A02 ; echo $?
gpg: requesting key B0AE9A02 from hkp server pool.sks-keyservers.net
0

Discussion with jrollins on #monkeysphere suggests that the fact that GPG refuses to accept some of the keys, or maybe downloads too much, or prints too many warnings, is part of the problem:

19:41 < jrollins> hrm
19:41 < jrollins> gpg: key 0xFFFFFFFFFFFFFFFF: rejected by import filter
19:41 < jrollins> gpg: Note: signatures using the MD5 algorithm are rejected

19:45 < jrollins> Clint: check out this key: 0x91A285AE301B7D6B
19:45 < jrollins> what's up with that?
19:46 < jrollins> dkg: we seem to have a gpg issue that i'm not sure how to deal with.  gpg won't import all of the 
                  key ids that monkeysphere is trying to retrieve, which causes monkeysphere to fail

19:50 < jrollins> gpg --search ="Clint Adams <schizo <at> debian.org>"
19:50 < jrollins> returns:
19:50 < jrollins> (5)IClint Adams (ElG) <schizo <at> debian.org> 2048 bit ELG key 0xA3B4A1C6DBED847F, created: 1998-05-1

Some strace output follows. Thanks for reading this bug report!

paulproteus <at> slittingmill:~$ MONKEYSPHERE_LOG_LEVEL=DEBUG strace -ff -e execve monkeysphere u "Clint Adams <schizo <at> debian.org>"
execve("/usr/bin/monkeysphere", ["monkeysphere", "u", "Clint Adams <schizo <at> debian.org>"], [/* 38 vars */]) = 0
execve("/home/paulproteus/dnlds/google-cloud-sdk/bin/bash", ["bash", "/usr/bin/monkeysphere", "u", "Clint Adams <schizo <at> debian.org>"], [/* 38 vars */]) = -1 ENOENT (No such file or directory)
execve("/usr/local/bin/bash", ["bash", "/usr/bin/monkeysphere", "u", "Clint Adams <schizo <at> debian.org>"], [/* 38 vars */]) = -1 ENOENT (No such file or directory)
execve("/usr/bin/bash", ["bash", "/usr/bin/monkeysphere", "u", "Clint Adams <schizo <at> debian.org>"], [/* 38 vars */]) = -1 ENOENT (No such file or directory)
execve("/bin/bash", ["bash", "/usr/bin/monkeysphere", "u", "Clint Adams <schizo <at> debian.org>"], [/* 38 vars */]) = 0
Process 13333 attached
[pid 13333] execve("/usr/bin/basename", ["basename", "/usr/bin/monkeysphere"], [/* 38 vars */]) = 0
[pid 13333] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13333, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13334 attached
[pid 13334] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13334, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13335 attached
[pid 13335] execve("/bin/date", ["date", "-u", "+%FT%T"], [/* 41 vars */]) = 0
[pid 13335] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13335, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13336 attached
[pid 13336] execve("/bin/mkdir", ["mkdir", "-p", "-m", "0700", "/home/paulproteus/.monkeysphere"], [/* 41 vars */]) = 0
[pid 13336] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13336, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13337 attached
[pid 13337] execve("/bin/mkdir", ["mkdir", "-p", "-m", "0700", "/home/paulproteus/.gnupg"], [/* 42 vars */]) = 0
[pid 13337] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13337, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13338 attached
Process 13339 attached
[pid 13338] +++ exited with 0 +++
[pid 13339] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms: processing: Clint Adams <schizo <at> debian.org>
[pid 13339] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13338, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13340 attached
Process 13341 attached
[pid 13340] +++ exited with 0 +++
[pid 13341] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms: key file: -
[pid 13341] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13340, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13342 attached
Process 13343 attached
Process 13344 attached
[pid 13343] +++ exited with 0 +++
[pid 13344] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:  checking keyserver pool.sks-keyservers.net... 
[pid 13344] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13343, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13345 attached
Process 13346 attached
Process 13347 attached
[pid 13346] +++ exited with 0 +++
[pid 13347] execve("/usr/bin/gpg", ["gpg", "--quiet", "--batch", "--with-colons", "--command-fd", "0", "--keyserver", "pool.sks-keyservers.net", "--search", "=Clint Adams <schizo <at> debian.org>"], [/* 45 vars */]) = 0
Process 13348 attached
[pid 13348] execve("/usr/lib/gnupg/gpgkeys_hkp", ["/usr/lib/gnupg/gpgkeys_hkp"], [/* 45 vars */]) = 0
[pid 13348] +++ exited with 0 +++
[pid 13347] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13348, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13347] +++ exited with 0 +++
[pid 13345] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13346, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13345] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13345, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13349 attached
Process 13350 attached
[pid 13350] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
[pid 13349] +++ exited with 0 +++
ms:  keyserver raw output:
ms: -----
ms: info:1:8
ms: pub:2100A32C46F895AF3A08783AF6D3495BB0AE9A02:1:4096:1241802238::
ms: uid:Clint Adams <clint <at> gnu.org>:1360891264::
ms: uid:Clint Adams <clint <at> mit.edu>:1360891249::
ms: uid:Clint Adams <clint <at> zsh.org>:1289500851::
ms: uid:Clint Adams <clint <at> gcfm.net>:1360891217::
ms: uid:Clint Adams <clint <at> scru.org>:1360891201::
ms: uid:Clint Adams <clint <at> debian.org>:1297027550::
ms: uid:Clint Adams <clint <at> scowler.net>:1360891178::
ms: uid:Clint Adams <clint <at> spi-inc.org>:1312388880::
ms: uid:Clint Adams (GNU) <clint <at> gnu.org>:1289500925::
ms: uid:Clint Adams (Debian) <schizo <at> debian.org>:1241810024::
ms: pub:2806F67A363A1F9C3EBFD274C3A844D76AE3B737:1:2048:1241732662::r
ms: uid:Clint Adams (Debian) <schizo <at> debian.org>:1241733331::
ms: pub:995314085A0EC967941DCE9DE66D2EEBAB963370:17:1024:937440831::
ms: uid:Clint Adams (Debian) <schizo <at> debian.org>:937440831::
ms: pub:5DB29C847F07FD4F60A8728070AEBD21B13DEAF7:17:1024:895511286::
ms: uid:Clint Adams (DSA) <schizo <at> debian.org>:895511286::
ms: pub:A3B4A1C6DBED847F:20:2048:895510996::
ms: uid:Clint Adams (ElG) <schizo <at> debian.org>:::
ms: pub:F88942139018FAD6EB7EC4735EDBAE5BB98FC0C8:17:1024:890930907::
ms: uid:Clint Adams <clint <at> idt.net>:890931046::
ms: uid:Clint Adams <schizo <at> debian.org>:890931004::
ms: uid:Clint Adams <clint <at> scowler.ml.org>:890930907::
ms: pub:91A285AE301B7D6B:3:1024:855666248::
ms: uid:Scott Killen Software:870323146::
ms: uid:Marco d'Itri <md <at> linux.it>:::
ms: uid:Craig Small <csmall <at> debian.org>:::
ms: uid:Keith Winstein <keithw <at> imsa.edu>:::
ms: uid:Brian Holgate <brian <at> ashlu.bc.ca>:::
ms: uid:Andy Gaeta (so) <agaeta <at> erols.com>:::
ms: uid:Jochen Friedrich <jochen <at> scram.de>:::
ms: uid:Urko Lusa <ulusa <at> lacueva.ddns.org>:::
ms: uid:Werner Koch <wk <at> isil.d.shuttle.de>:::
ms: uid:Andrea Gelmini <bungle <at> intercam.it>:::
ms: uid:Scott K. Ellis <ellis <at> valueweb.net>:::
ms: uid:Clint Adams (ElG) <schizo <at> debian.org>:::
ms: uid:James Troup <jjtroup <at> comp.brad.ac.uk>:::
ms: uid:Jon Parry-McCulloch <jm <at> antipope.org>:::
ms: uid:Frank Heckenbach <frank <at> pascal.gnu.de>:::
ms: uid:Michael Deindl <olmur <at> dwarf.bb.bawue.de>:::
ms: uid:Stephen Gregory <sgregory <at> chebucto.ns.ca>:::
ms: uid:Alexander Williams <thantos <at> mindspring.com>:::
ms: uid:Bruno Boettcher (bboett) <bboett <at> earthling.net>:::
ms: uid:James Troup <jjtroup <at> comp.brad.ac.uk> (INSECURE!):::
ms: uid:Rick Franchuk (TranSpecT Consulting) <rickf <at> transpect.net>:::
ms: uid:Wim Vandeputte (mig linux 2.0.29) <wvdputte <at> reptile.rug.ac.be>:::
ms: pub:1927D3053E30A739:1:1024:770754783::r
ms: uid:Clint Adams <clint <at> idt.net>:894062501::
ms: uid:Clint Adams <clint <at> dman.com>:898237174::
ms: uid:Clint Adams <schizo <at> debian.org>:858062269::
ms: uid:Clint Adams <schizo <at> simons-rock.edu>:856147824::
ms: uid:Clint Adams <schizo <at> plato.simons-rock.edu>:::
ms: 
ms: 
ms: Q
ms: -----
[pid 13350] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13349, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13351 attached
Process 13352 attached
Process 13353 attached
Process 13354 attached
[pid 13352] +++ exited with 0 +++
[pid 13353] execve("/bin/grep", ["grep", "^pub:"], [/* 45 vars */]Process 13355 attached
 <unfinished ...>
[pid 13354] execve("/usr/bin/cut", ["cut", "-f2", "-d:"], [/* 45 vars */]) = 0
[pid 13353] <... execve resumed> )      = 0
[pid 13355] execve("/bin/sed", ["sed", "s/^/0x/"], [/* 45 vars */]) = 0
[pid 13353] +++ exited with 0 +++
[pid 13354] +++ exited with 0 +++
[pid 13355] +++ exited with 0 +++
[pid 13351] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13352, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13351] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13351, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13356 attached
Process 13357 attached
Process 13358 attached
[pid 13357] +++ exited with 0 +++
[pid 13358] execve("/usr/bin/tr", ["tr", "\\n", " "], [/* 45 vars */]) = 0
[pid 13358] +++ exited with 0 +++
[pid 13356] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13357, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13356] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13356, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13359 attached
Process 13360 attached
[pid 13359] +++ exited with 0 +++
[pid 13360] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:  Found keyids on keyserver: 0x2100A32C46F895AF3A08783AF6D3495BB0AE9A02 0x2806F67A363A1F9C3EBFD274C3A844D76AE3B737 0x995314085A0EC967941DCE9DE66D2EEBAB963370 0x5DB29C847F07FD4F60A8728070AEBD21B13DEAF7 0xA3B4A1C6DBED847F 0xF88942139018FAD6EB7EC4735EDBAE5BB98FC0C8 0x91A285AE301B7D6B 0x1927D3053E30A739
[pid 13360] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13359, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13361 attached
Process 13362 attached
[pid 13361] +++ exited with 0 +++
[pid 13362] execve("/usr/bin/gpg", ["gpg", "--quiet", "--batch", "--with-colons", "--command-fd", "0", "--keyserver", "pool.sks-keyservers.net", "--recv-keys", "0x2100A32C46F895AF3A08783AF6D349"..., "0x2806F67A363A1F9C3EBFD274C3A844"..., "0x995314085A0EC967941DCE9DE66D2E"..., "0x5DB29C847F07FD4F60A8728070AEBD"..., "0xA3B4A1C6DBED847F", "0xF88942139018FAD6EB7EC4735EDBAE"..., "0x91A285AE301B7D6B", ...], [/* 45 vars */]) = 0
Process 13363 attached
[pid 13363] execve("/usr/lib/gnupg/gpgkeys_hkp", ["/usr/lib/gnupg/gpgkeys_hkp"], [/* 45 vars */]) = 0
[pid 13363] +++ exited with 0 +++
[pid 13362] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13363, si_uid=1000, si_status=0, si_utime=2, si_stime=3} ---
[pid 13362] +++ exited with 2 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13361, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13365 attached
Process 13366 attached
[pid 13365] +++ exited with 0 +++
[pid 13366] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms: Failure (2) receiving keyids (0x2100A32C46F895AF3A08783AF6D3495BB0AE9A02
ms: 0x2806F67A363A1F9C3EBFD274C3A844D76AE3B737
ms: 0x995314085A0EC967941DCE9DE66D2EEBAB963370
ms: 0x5DB29C847F07FD4F60A8728070AEBD21B13DEAF7
ms: 0xA3B4A1C6DBED847F
ms: 0xF88942139018FAD6EB7EC4735EDBAE5BB98FC0C8
ms: 0x91A285AE301B7D6B
ms: 0x1927D3053E30A739) from keyserver pool.sks-keyservers.net
[pid 13366] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13365, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13367 attached
Process 13368 attached
[pid 13368] execve("/usr/bin/gpg", ["gpg", "--list-key", "--fixed-list-mode", "--with-colons", "--with-fingerprint", "--with-fingerprint", "=Clint Adams <schizo <at> debian.org>"], [/* 45 vars */]) = 0
[pid 13368] +++ exited with 0 +++
[pid 13367] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13368, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13367] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13367, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13369 attached
Process 13370 attached
Process 13371 attached
[pid 13369] +++ exited with 0 +++
Process 13372 attached
[pid 13370] execve("/usr/bin/cut", ["cut", "-d:", "-f1,2,5,10,12"], [/* 45 vars */]) = 0
[pid 13372] execve("/usr/bin/sort", ["sort", "-t:", "-k1", "-n", "-r"], [/* 45 vars */]) = 0
[pid 13370] +++ exited with 0 +++
Process 13373 attached
Process 13374 attached
[pid 13373] +++ exited with 0 +++
[pid 13374] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:  primary key found: 5EDBAE5BB98FC0C8
[pid 13374] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13373, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13375 attached
Process 13376 attached
[pid 13375] +++ exited with 0 +++
[pid 13376] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:   - unacceptable primary key validity (-).
[pid 13376] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13375, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13377 attached
Process 13378 attached
Process 13379 attached
[pid 13378] execve("/usr/bin/gpg", ["gpg", "--export", "--no-armor", "F88942139018FAD6EB7EC4735EDBAE5B"...], [/* 45 vars */]) = 0
[pid 13379] execve("/usr/bin/openpgp2ssh", ["openpgp2ssh", "F88942139018FAD6EB7EC4735EDBAE5B"...], [/* 45 vars */]) = 0
[pid 13378] +++ exited with 0 +++
[pid 13379] +++ exited with 255 +++
[pid 13377] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13378, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13377] +++ exited with 255 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13377, si_uid=1000, si_status=255, si_utime=0, si_stime=0} ---
Process 13380 attached
Process 13381 attached
Process 13382 attached
[pid 13381] +++ exited with 0 +++
Process 13383 attached
[pid 13383] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13383] +++ exited with 0 +++
[pid 13382] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13383, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13382] +++ exited with 0 +++
[pid 13380] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13381, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13380] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13380, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13384 attached
Process 13385 attached
Process 13386 attached
[pid 13385] +++ exited with 0 +++
Process 13387 attached
[pid 13387] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13387] +++ exited with 0 +++
[pid 13386] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13387, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13386] +++ exited with 0 +++
[pid 13384] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13385, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13384] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13384, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13388 attached
Process 13389 attached
[pid 13388] +++ exited with 0 +++
[pid 13389] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:   - unacceptable user ID validity (-).
[pid 13389] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13388, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13390 attached
Process 13391 attached
[pid 13390] +++ exited with 0 +++
[pid 13391] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:   - unacceptable primary key.
[pid 13391] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13390, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13392 attached
Process 13393 attached
[pid 13392] +++ exited with 0 +++
[pid 13393] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:     ! primary key could not be translated (not RSA?).
[pid 13393] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13392, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13394 attached
Process 13395 attached
Process 13396 attached
[pid 13395] +++ exited with 0 +++
Process 13397 attached
[pid 13397] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13397] +++ exited with 0 +++
[pid 13396] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13397, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13396] +++ exited with 0 +++
[pid 13394] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13395, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13394] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13394, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13398 attached
Process 13399 attached
Process 13400 attached
[pid 13399] execve("/usr/bin/gpg", ["gpg", "--export", "--no-armor", "3B6E1A91670E231C5D360139EDC0CC91"...], [/* 45 vars */]) = 0
[pid 13400] execve("/usr/bin/openpgp2ssh", ["openpgp2ssh", "3B6E1A91670E231C5D360139EDC0CC91"...], [/* 45 vars */]) = 0
[pid 13399] +++ exited with 0 +++
[pid 13400] +++ exited with 255 +++
[pid 13398] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13399, si_uid=1000, si_status=0, si_utime=1, si_stime=0} ---
[pid 13398] +++ exited with 255 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13398, si_uid=1000, si_status=255, si_utime=0, si_stime=0} ---
Process 13401 attached
Process 13402 attached
[pid 13401] +++ exited with 0 +++
[pid 13402] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:   - unacceptable sub key.
[pid 13402] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13401, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13403 attached
Process 13404 attached
[pid 13403] +++ exited with 0 +++
[pid 13404] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:     ! sub key could not be translated (not RSA?).
[pid 13404] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13403, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13405 attached
Process 13406 attached
[pid 13405] +++ exited with 0 +++
[pid 13406] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:  primary key found: 1927D3053E30A739
[pid 13406] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13405, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13408 attached
[pid 13408] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]Process 13407 attached
) = 0
[pid 13407] +++ exited with 0 +++
ms:   - unacceptable primary key validity (r).
[pid 13408] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13407, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13409 attached
Process 13410 attached
Process 13411 attached
[pid 13410] execve("/usr/bin/gpg", ["gpg", "--export", "--no-armor", "754D5F7CF396B4185FB7ED508030359A"], [/* 45 vars */]) = 0
[pid 13411] execve("/usr/bin/openpgp2ssh", ["openpgp2ssh", "754D5F7CF396B4185FB7ED508030359A"], [/* 45 vars */]) = 0
[pid 13410] +++ exited with 0 +++
[pid 13411] +++ exited with 255 +++
[pid 13409] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13410, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13409] +++ exited with 255 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13409, si_uid=1000, si_status=255, si_utime=0, si_stime=0} ---
Process 13412 attached
Process 13413 attached
Process 13414 attached
[pid 13413] +++ exited with 0 +++
Process 13415 attached
[pid 13415] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13415] +++ exited with 0 +++
[pid 13414] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13415, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13414] +++ exited with 0 +++
[pid 13412] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13413, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13412] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13412, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13416 attached
Process 13417 attached
[pid 13417] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
[pid 13416] +++ exited with 0 +++
ms:   - unacceptable user ID validity (r).
[pid 13417] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13416, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13418 attached
Process 13419 attached
[pid 13418] +++ exited with 0 +++
[pid 13419] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:   - unacceptable primary key.
[pid 13419] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13418, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13420 attached
Process 13421 attached
[pid 13420] +++ exited with 0 +++
[pid 13421] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms:     ! primary key could not be translated (not RSA?).
[pid 13421] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13420, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13422 attached
Process 13423 attached
Process 13424 attached
[pid 13423] +++ exited with 0 +++
Process 13425 attached
[pid 13425] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13425] +++ exited with 0 +++
[pid 13424] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13425, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13424] +++ exited with 0 +++
[pid 13422] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13423, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13422] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13422, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13426 attached
Process 13427 attached
Process 13428 attached
[pid 13427] +++ exited with 0 +++
Process 13429 attached
[pid 13429] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13429] +++ exited with 0 +++
[pid 13428] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13429, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13428] +++ exited with 0 +++
[pid 13426] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13427, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13426] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13426, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13430 attached
Process 13431 attached
Process 13432 attached
[pid 13431] +++ exited with 0 +++
Process 13433 attached
[pid 13433] execve("/bin/sed", ["sed", "s/\\\\x3a/:/g"], [/* 45 vars */]) = 0
[pid 13433] +++ exited with 0 +++
[pid 13432] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13433, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13432] +++ exited with 0 +++
[pid 13430] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13431, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13430] +++ exited with 0 +++
[pid 13371] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13430, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13371] +++ exited with 0 +++
[pid 13372] +++ exited with 0 +++
[pid 13342] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13369, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
[pid 13342] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13342, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13434 attached
Process 13435 attached
[pid 13434] +++ exited with 0 +++
[pid 13435] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms: KEYS_PROCESSED=
[pid 13435] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13434, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
Process 13436 attached
Process 13437 attached
[pid 13436] +++ exited with 0 +++
[pid 13437] execve("/bin/sed", ["sed", "s/^/ms: /"], [/* 45 vars */]) = 0
ms: KEYS_VALID=
[pid 13437] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=13436, si_uid=1000, si_status=0, si_utime=0, si_stime=0} ---
+++ exited with 0 +++
paulproteus <at> slittingmill:~$ 



Klaus Ethgen | 19 Jun 12:28 2016
Picon

Bug#827660: Today update failed with blocking other system upgrades too (/usr/share/monkeysphere/transitions/0.23)


Package: monkeysphere
Version: 0.38-1
Severity: critical

As told, this breaks system upgrade, so setting to critical.

Today I found the following error in upgrade:
   monkeysphere (0.38-1) wird eingerichtet ...
   Failed running transition script /usr/share/monkeysphere/transitions/0.23
   dpkg: Fehler beim Bearbeiten des Paketes monkeysphere (--configure):
    Unterprozess installiertes post-installation-Skript gab den Fehlerwert 1 zurück
   Fehler traten auf beim Bearbeiten von:
    monkeysphere

And no further upgrade is possible anymore.

I found the source for that. In monkeysphere-authentication setup it
tries to su to monkeysphere user. But looking into
/usr/share/monkeysphere/common, there is no "-s ..." specified in su. As
the user has no usable shell for security measurement, the upgrade
fails.

Simply adding "-s /bin/sh" here fixes the problem.

Note that this bug is maybe related to #778833 and #635711.

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.5.7 (SMP w/8 CPU cores)
Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages monkeysphere depends on:
ii  adduser                           3.114
ii  gnupg                             1.4.20-6
ii  libcrypt-openssl-rsa-perl         0.28-2+b3
ii  libperl5.22 [libdigest-sha-perl]  5.22.2-1
ii  lockfile-progs                    0.1.17

Versions of packages monkeysphere recommends:
pn  agent-transfer               <none>
ii  cron                         3.0pl1-128
ii  netcat-openbsd [netcat]      1.105-7
ii  netcat-traditional [netcat]  1.10-41
ii  openssh-client               1:7.2p2-5.1~securityfix
ii  socat                        1.7.3.1-1
ii  ssh-askpass                  1:1.2.4.1-9

Versions of packages monkeysphere suggests:
pn  monkeysphere-validation-agent  <none>

-- no debconf information

--

-- 
Klaus Ethgen                              http://www.ethgen.ch/
pub  4096R/4E20AF1C 2011-05-16   Klaus Ethgen <Klaus <at> Ethgen.ch>
Fingerprint: 85D4 CA42 952C 949B 1753  62B3 79D0 B06F 4E20 AF1C
Debian buildds | 19 Jun 00:18 2016
Picon

failed kfreebsd-amd64 build of monkeysphere 0.38-1

 * Source package: monkeysphere
 * Version: 0.38-1
 * Architecture: kfreebsd-amd64
 * State: failed
 * Suite: sid
 * Builder: fayrfax.debian.org
 * Build log: https://buildd.debian.org/status/fetch.php?pkg=monkeysphere&arch=kfreebsd-amd64&ver=0.38-1&stamp=1466288338&file=log

Please note that these notifications do not necessarily mean bug reports
in your package but could also be caused by other packages, temporary
uninstallabilities and arch-specific breakages.  A look at the build log
despite this disclaimer would be appreciated however.

Debian buildds | 18 Jun 20:31 2016
Picon

failed kfreebsd-i386 build of monkeysphere 0.38-1

 * Source package: monkeysphere
 * Version: 0.38-1
 * Architecture: kfreebsd-i386
 * State: failed
 * Suite: sid
 * Builder: finzi.debian.org
 * Build log: https://buildd.debian.org/status/fetch.php?pkg=monkeysphere&arch=kfreebsd-i386&ver=0.38-1&stamp=1466274688&file=log

Please note that these notifications do not necessarily mean bug reports
in your package but could also be caused by other packages, temporary
uninstallabilities and arch-specific breakages.  A look at the build log
despite this disclaimer would be appreciated however.

Daniel Kahn Gillmor | 18 Jun 20:00 2016
Picon

Accepted monkeysphere 0.38-1 (source amd64) into unstable, unstable


Format: 1.8
Date: Fri, 17 Jun 2016 02:13:53 -0400
Source: monkeysphere
Binary: monkeysphere agent-transfer
Architecture: source amd64
Version: 0.38-1
Distribution: unstable
Urgency: medium
Maintainer: Jameson Rollins <jrollins <at> finestructure.net>
Changed-By: Daniel Kahn Gillmor <dkg <at> fifthhorseman.net>
Description:
 agent-transfer - copy a secret key from GnuPG's gpg-agent to OpenSSH's ssh-agent
 monkeysphere - leverage the OpenPGP web of trust for SSH and TLS authentication
Changes:
 monkeysphere (0.38-1) unstable; urgency=medium
 .
   * new upstream release
    - includes new binary package "agent-transfer"
Checksums-Sha1:
 f5150bd8ff427fce157b70c0affe1f602e52c604 2348 monkeysphere_0.38-1.dsc
 17c9fad8062fda74529c6bb93414bfe5be4669f1 107546 monkeysphere_0.38.orig.tar.gz
 3ff024f2e56f9c693c81c3900ad6fb467868349d 5364 monkeysphere_0.38-1.debian.tar.xz
 56370cad26fa6f3c5183ba25f30559d52d33a20d 21912 agent-transfer-dbgsym_0.38-1_amd64.deb
 ff778fd6245fffb5873a6b730c7d06cecbe38685 19994 agent-transfer_0.38-1_amd64.deb
Checksums-Sha256:
 46b76ad6ca13394b7c7be6c0d81bcc84bca6ed32f36e2523077b506faa4707e0 2348 monkeysphere_0.38-1.dsc
 6951821d11ad646e6e7651d677bfab8f800fbc52703a0ab9942d03cd13959073 107546 monkeysphere_0.38.orig.tar.gz
 f71906c386b38b76fc62b3384d20ee3d1e8e6cb883499f56568bfb9400379e4a 5364 monkeysphere_0.38-1.debian.tar.xz
 6e09424bb4962cba32d4fc72fa8a418eed981fc3c645f676a2a722c905da9ec1 21912 agent-transfer-dbgsym_0.38-1_amd64.deb
 45a2bdd286f9441470192cb8029a950739e2ca298bd4812a98176b67eee55b51 19994 agent-transfer_0.38-1_amd64.deb
Files:
 7468a216fb6cdf33bb9faf3546720323 2348 net extra monkeysphere_0.38-1.dsc
 d00d0c27ecb2a401c95495e5d2a395ca 107546 net extra monkeysphere_0.38.orig.tar.gz
 f5554e20d14ae6952ac192ff85627b89 5364 net extra monkeysphere_0.38-1.debian.tar.xz
 6617b696df17738021fedf6a4066f08f 21912 debug extra agent-transfer-dbgsym_0.38-1_amd64.deb
 16c34bf5453067697f53286c83e6d85c 19994 net extra agent-transfer_0.38-1_amd64.deb

Daniel Kahn Gillmor | 18 Jun 01:55 2016
Picon

0.38 is out

hey all--

it's been a while!

i've just uploaded monkeysphere 0.38 to debian and to the monkeysphere
apt archive.  I've also updated the expiration date on the monkeysphere
apt archive signing key, and pushed signed git tags.

the new version should now work with gpg 2.1.13 and higher, as well as
the gpg 1.4.x series (after 1.4.10).

The biggest change is that it introduces a C executable,
"agent-transfer", which knows how to extract keys from a running 2.1.x
gpg-agent and pass them off to an ssh-agent (this is used in
"monkeysphere subkey-to-ssh-agent").

Feedback is welcome!

Happy hacking,

    --dkg
Tobias Mueller | 16 Jun 23:26 2016
Picon

[PATCH] gpg: Parse gpg 2.1 output

Apparently, the data that is returned changed a little bit.
The first field, trust, is set with gpg 2.1 which seems to be empty with
earlier versions.  So far, the code used "sec::" to determine whether
a line in the output contains a secret key.  That prefix, however,
cannot be used with gpg 2.1 as it prints the trust, as in "sec:u:".
This yields ugly stacktraces complaining about the expiry not being
an int.

In a first step, that string has been refactored into a variable
(needle). Then, we've changed that string to "sec:" which seems to be
the appropriate prefix.

It works well with gpg 1.4.20 and gpg 2.1.
---
 monkeysign/gpg.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/monkeysign/gpg.py b/monkeysign/gpg.py
index 56d21a1..6377d69 100644
--- a/monkeysign/gpg.py
+++ b/monkeysign/gpg.py
 <at>  <at>  -380,9 +380,10  <at>  <at>  class Keyring():
             if pattern: command += [pattern]
             self.context.call_command(command)
             if self.context.returncode == 0:
-                for keydata in self.context.stdout.split("sec::"):
+                needle = 'sec:'
+                for keydata in self.context.stdout.split(needle):
                     if not keydata: continue
-                    keydata = "sec::" + keydata
+                    keydata = needle + keydata
                     key = OpenPGPkey(keydata)
                     # check if we already have that key, in which case we
                     # add to it instead of adding a new key
--

-- 
2.7.4

fr33domlover | 30 Apr 00:21 2014
Picon

Usage with mail server

Hello,

This is my first post here. I run an SSH server and a web server and I'm
very interested in using a peer-to-peer decentralized natural way to
handle trust.

Moneysphere already works with HTTPS and SSH as described in your
website, but I didn't find any information about:

- XMPP server (as far as I know, none exists yet but it's WIP)
- mail server

I'm going to run a mail server (first just IMAP, later I'll add SMTP)
and I'd like to not use an SSL certificate from a centralized source
which requires a lot of my private information for spying me and
verifying my identity etc.

Does moneysphere support mail serving?

I can imagine it may work for sending mail to the user, but what happens
if an SMTP server wants to send email to my IMAP server? How does the
SMTP server send me encrypted data if it cannot recognize my OpenPGP
based "certificate"?

If there's any approach waiting to be implemented or used, I don't mind
pioneering. Just tell me please how it works. Also, maybe I can help add
monkeysphere support to dovecot if it's not too difficult.

Thanks in advance!
Sincerely,
fr33
micah | 21 Apr 01:41 2014
Picon

Re: Archlinux Package

Profpatsch <mail <at> profpatsch.de> writes:

> On 14-04-10 06:21pm, Profpatsch wrote:
>> Since you are linking to a git package which is broken atm:
>> 
>> There is a package using the official releases at
>> https://aur.archlinux.org/packages/monkeysign/
>
> And I just became maintainer, so it’s up-to-date now, too.

If you would like to update the link on the page, the site is running
ikiwiki, a patch or a git remote would make the update real easy!

Gabriel Pérez-Cerezo | 30 Mar 13:23 2014
Picon

Monkeysphere integration in Links2

Hello,

I have changed my plans. I have stopped working on w3m and now I'm working on Links2,
as it has much more features and is more widely used. I will write you when it is
ready.

Best wishes,
Gabriel

--

-- 
Gabriel Pérez-Cerezo Flohr
Website: http://gpcf.eu  E-mail: gabriel <at> gpcf.eu
GPG Key: D353EC69 (get it from http://gpcf.eu/key.asc)

Gabriel Pérez-Cerezo | 23 Mar 17:47 2014
Picon

libmsv licensing

Hello,

as you may know, I'm working on a fork of the w3m browser which includes monkeysphere support. I have now got a
problem with the licensing. Libmsv is licensed under the GPLv3 and w3m under the MIT license, but as it is
linked to OpenSSL, it would need a linking exception, so I have to either link the GPL code from GPL+Linking
exception code or rewrite the entire SSL code using GNUtls.

Do you think that it is better to ask someone for a linking exception or rewrite the SSL code using GNUtls?

--

-- 
Gabriel Pérez-Cerezo Flohr
Website: http://gpcf.eu  E-mail: gabriel <at> gpcf.eu
GPG Key: D353EC69 (get it from http://gpcf.eu/key.asc)


Gmane