NO_SECKEY error message - Help

Neil Williams linux at codehelp.co.uk
Tue Nov 4 22:04:30 CET 2003 

On Tuesday 04 Nov 2003 7:11 pm, Cassie, Matt wrote:
> Hello,
>
> We're invoking GNUPG via a third party tool (Mercator) to decrypt/encrypt
> data.  When invoking PGP, the data is decrypted properly, however, the log
> of the PGP operation reports errors.  I've listed them below.  Can anyone
> tell me what the problem might be?  You may think that if the data is

NO_SECKEY would mean that GnuPG can't find the secret key to go with the 
61650832 public key. The GnuPG errors list this as an ElGamal encryption key 
which would be impossible to decrypt without the secret key - I can't verify 
as the key isn't on a keyserver.

<11833-005>: | | | [GNUPG:] ENC_TO 0C37FF8561650832 16 0
<11833-005>: | | | [GNUPG:] ENC_TO 235A043D1B0051EE 16 0

Do you mean to encrypt to two keys? This could be the problem.

> decrypted, then there is no problem.  Well, yes, that is true, but we want
> to decrypt via Mercator but in a different way, and because of the errors

Can you be sure that what you are seeing as decrypted output isn't the 
unencrypted data from earlier in the process? Can the process be split into 
two stages, so that the encrypted block is written to a file and then read in 
a second instance?

Alternatively, what you may be seeing is the successfully decrypted output 
from the other key 1B0051EE and the errors from failing to decrypt 61650832.

> reported, the adapter does not return the decrypted data.  When run from

That's what leads me to consider that the adapter is correct and what you are 
seeing as decrypted output is simply the output from the original variable 
that has not been reset/unset once encryption began.

> the GPG command line on Solaris, no issues whatsoever, except for the stock
> insecure memory warning.  Any help or advice is appreciated.

> <11833-005>: | | | [GNUPG:] USERID_HINT 235A043D1B0051EE CP Ships eHub
> Server (eHub Server) < ehub at cpships.com <mailto:ehub at cpships.com> >
> <11833-005>: | | | [GNUPG:] NEED_PASSPHRASE 235A043D1B0051EE
> 79E7997C39623CCF 16 0
> <11833-005>: | | | [GNUPG:] GET_HIDDEN passphrase.enter
> <11833-005>: | | | [GNUPG:] GOT_IT
> <11833-005>: | | | [GNUPG:] GOOD_PASSPHRASE

Note that there is no log of getting the passphrase of 61650832, only for 
1B0051EE.

> <11833-005>: | | | gpg: encrypted with 2048-bit ELG-E key, ID 61650832,
> created 2002-02-02
> <11833-005>: | | |       "Wachovia < cis.solutions at wachovia.com
> <mailto:cis.solutions at wachovia.com> >"
> <11833-005>: | | | [GNUPG:] NO_SECKEY 0C37FF8561650832

You've given GnuPG the secret key and passphrase for 1B0051EE but it needs the 
secret key and passphrase for 61650832, hence the failure.

> <11833-005>: | GnuPG error encountered: [GNUPG:] NO_SECKEY



-- 

Neil Williams
=============
http://www.codehelp.co.uk/
http://www.dclug.org.uk/
http://www.isbn.org.uk/
http://sourceforge.net/projects/isbnsearch/

http://www.biglumber.com/x/web?qs=0x8801094A28BCB3E3
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: signature
Url : /pipermail/attachments/20031104/516b8a64/attachment-0001.bin

More information about the Gnupg-users mailing list