[Bug 160885] New: Verification of PGP signatures broken

Onno Molenkamp onno at flox.org
Tue Apr 15 23:11:44 BST 2008

------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
           Summary: Verification of PGP signatures broken
           Product: kmail
           Version: unspecified
          Platform: Compiled Sources
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: normal
          Priority: NOR
         Component: encryption
        AssignedTo: kdepim-bugs kde org
        ReportedBy: onno flox org

Version:            (using Devel)
Installed from:    Compiled sources
Compiler:          gcc version 4.2.1 (SUSE Linux) 
OS:                Linux

On every PGP-signed message, I'm getting an "Not enough information to check signature validity." message which expands to:

Message was signed with unknown key.
The validity of the signature cannot be verified.
Status: Error: Signature not verified

This is caused by gpg returning an error (verify signatures failed: Unknown system error) which is caused by kmail not passing any signature to it. It looks like this is caused by a change in kdepim/kmail/objecttreeparser.cpp in SVN revision 463791 (in 2005, shortly after 3.5 was branched!) that accidentally removed the line from ObjectTreeParser::writeOpaqueOrMultipartSignedData that set the variable signaturetext that is used later on in this method as a parameter to the actual verification method.

More information about the Kdepim-bugs mailing list