gpg usage problem

Matt Wronkiewicz wronkiew@foozone.org
Fri Dec 20 19:51:02 2002 

--ADZbWkCsHQ7r3kzd
Content-Type: multipart/mixed; boundary="Kj7319i9nmIyA2yE"
Content-Disposition: inline


--Kj7319i9nmIyA2yE
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

> > gpg  --list-secret-keys
> gpg: WARNING: using insecure memory!
> gpg: please see http://www.gnupg.org/faq.html for more
> information
> gpg: mpi too large (4294967200 bits)
> gpg: mpi too large (4294967207 bits)
> gpg: mpi too large (4294967219 bits)
> gpg: keydb_search_first failed: invalid packet

See the attached message for a possible workaround. Also find
more information at:
http://www.angelfire.com/pr/pgpf/pgpoddities.html

You can disable the memory warning by passing
--no-secmem-warning to gpg.

--=20
Matt Wronkiewicz <wronkiew@foozone.org>

--Kj7319i9nmIyA2yE
Content-Type: message/rfc822
Content-Disposition: inline

From: Weimer@CERT.Uni-Stuttgart.DE (Florian Weimer)
Date: Fri Jun  7 21:23:02 2002
Subject: Keys which leave GnuPG unusable
In-Reply-To: <Pine.LNX.4.44L0.0206062146370.9572-200000@soli.inav.net> ("Robert
 J. Hansen"'s message of "Thu, 6 Jun 2002 21:49:56 -0500 (CDT)")
References: <Pine.LNX.4.44L0.0206062146370.9572-200000@soli.inav.net>
Message-ID: <87wutbr0rj.fsf@CERT.Uni-Stuttgart.DE>

"Robert J. Hansen" <rjhansen@inav.net> writes:

> With GnuPG 1.0.6, it'll throw a fit about an MPI being too large and will 
> segfault.  You can import it just fine, but once you import it, all 
> further operations crash and burn.

It's probably an encrypted MPI started with a zero octet.  This
problem is already known, I think.

Workaround: Create a new directory, copy the secret key (in
non-armored from) to "secring.gpg", use "gpg --home . --edit-key" to
change the passphrase.  It's likely that the result is readable by
GnuPG (the bug is triggered with a probability of 1:85 or so).

-- 
Florian Weimer 	                  Weimer@CERT.Uni-Stuttgart.DE
University of Stuttgart           http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT                          +49-711-685-5973/fax +49-711-685-5898


--Kj7319i9nmIyA2yE--

--ADZbWkCsHQ7r3kzd
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (SunOS)

iD8DBQE+A2c0uhibXWhFLW4RAm4CAJwM4rNcqmNnY/ztxCYxJLxhV19ktgCgqd77
Hz/v9dGpGl8YcIo7vYz8clY=
=5Pfi
-----END PGP SIGNATURE-----

--ADZbWkCsHQ7r3kzd--