after update gpg4win, impossible to send or read encrypted emails

Hello,
I’ve eaten my keyboard a lot this evening, because after a gpg4win update, I can’t read or send an encrypted email.
I’ve install enigmail on thunderbird, and create keys with kleopatra (windows 10).
All was working good, and now, impossible to reopen my private key.
all my certificates are in kleopatra or enigmail. But when I want to do anything, crash.
on Kleopatra : “pas de clé secrète, échec de la signature” (no secret key, signature failed).
On Enigmail : Erreur – aucune clé privée n’a été trouvée pour déchiffrer le courriel
Note : Le courriel est chiffré pour les clés et ID utilisateurs suivants :
blablabla (me myadress@tsoin.fr)

I deleted and reinstall gpg4win, enigmail, but always same problem.

Important to say that I can read and send mails with my phone, with k9 mail and openkechain, where i’ve registred keys too.
It’s only on computer that doesn’t work anymore.

Some Ideas ?

I complete with tihs informations : I can’t create new keys on Kleopatra, when I want to import my first private Key, it doesn’t work, anything works !!!
I’ve already made a reinstallation, but I don’t see how to resolve this problem.

Hi Theo,
sorry to hear that you are having problems.

(Btw, sometimes https://wiki.gnupg.org/TroubleShooting has hints that help to diagnose the problems.)

If you have Thunderbird with Enigmail, can you give the precise versions?
And from which to which version of Gpg4win did you upgrade?

The usual debugging step is to try to use the command line, this is a (less comfortable) fallback solution, but often gives more diagnostic messages.

So look at your private keys with
gpg -v --list-secret-keys
then try an operation with it like signing a file
gpg -v --sign HI.TXT
and read the messages carefully. A pinentry should pop up.

Best Regards,
Bernhard

Hi Bernhard !
Thanks for your response !
Yesterday evening I had thunderbird version 78. … I haven’t seen before updating of this morning…
And this morning, 78.2.2, but same problems.
For pGpg4win, 3.1.13.

Thanks for your help, I post here responses of the two commands you said :
C:\Users\Theo>gpg -v --list-secret-keys
gpg: enabled debug flags: memstat trust extprog
gpg: utilisation du modèle de confiance pgp
C:/Users/Theo/AppData/Roaming/gnupg/pubring.kbx

sec# rsa2048 2020-08-30 [SC] [expire : 2022-08-31]
long number key AAA
uid [ ultime ] AAA AAA@AAA
ssb# rsa2048 2020-08-30 [E] [expire : 2022-08-31]

sec# rsa2048 2020-08-30 [SC] [expire : 2022-08-31]
long number key BBB
uid [ ultime ] BBB BBB@BBB
ssb# rsa2048 2020-08-30 [E] [expire : 2022-08-31]

gpg: keydb: handles=1 locks=0 parse=3 get=3
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=1 found=3 not=1 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=4 cached=2 good=2 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: rndjent stat: collector=0x00000000 calls=0 bytes=0
gpg: secmem usage: 0/32768 bytes in 0 blocks

C:\Users\Theo>gpg -v --sign HI.TXT
gpg: enabled debug flags: memstat trust extprog
gpg: utilisation du modèle de confiance pgp
gpg: impossible d’ouvrir « HI.TXT » : No error
gpg: signing failed: Erreur système sans numéro
gpg: keydb: handles=2 locks=0 parse=2 get=2
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=0 found=2 not=0 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=4 cached=4 good=4 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: rndjent stat: collector=0x00000000 calls=0 bytes=0
gpg: secmem usage: 1344/32768 bytes in 2 blocks

In the list of secret key, there is my two keys.

Hi Bernhard !
Thanks for your response !
Yesterday evening I had thunderbird version 78. … I haven’t seen before updating of this morning…
And this morning, 78.2.2, but same problems.
For pGpg4win, 3.1.13.

Thanks for your help, I post here responses of the two commands you said :
C:\Users\Theo>gpg -v --list-secret-keys
gpg: enabled debug flags: memstat trust extprog
gpg: utilisation du modèle de confiance pgp
C:/Users/Theo/AppData/Roaming/gnupg/pubring.kbx

sec# rsa2048 2020-08-30 [SC] [expire : 2022-08-31]
long number key AAA
uid [ ultime ] AAA AAA@AAA
ssb# rsa2048 2020-08-30 [E] [expire : 2022-08-31]

sec# rsa2048 2020-08-30 [SC] [expire : 2022-08-31]
long number key BBB
uid [ ultime ] BBB BBB@BBB
ssb# rsa2048 2020-08-30 [E] [expire : 2022-08-31]

gpg: keydb: handles=1 locks=0 parse=3 get=3
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=1 found=3 not=1 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=4 cached=2 good=2 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: rndjent stat: collector=0x00000000 calls=0 bytes=0
gpg: secmem usage: 0/32768 bytes in 0 blocks

C:\Users\Theo>gpg -v --sign HI.TXT
gpg: enabled debug flags: memstat trust extprog
gpg: utilisation du modèle de confiance pgp
gpg: impossible d’ouvrir « HI.TXT » : No error
gpg: signing failed: Erreur système sans numéro
gpg: keydb: handles=2 locks=0 parse=2 get=2
gpg: build=0 update=0 insert=0 delete=0
gpg: reset=0 found=2 not=0 cache=0 not=0
gpg: kid_not_found_cache: count=0 peak=0 flushes=0
gpg: sig_cache: total=4 cached=4 good=4 bad=0
gpg: random usage: poolsize=600 mixed=0 polls=0/0 added=0/0
outmix=0 getlvl1=0/0 getlvl2=0/0
gpg: rndjent stat: collector=0x00000000 calls=0 bytes=0
gpg: secmem usage: 1344/32768 bytes in 2 blocks

In the list of secret key, there is my two keys.

When I try to suppress keys, and to import keys I have on my phone with openkeychain, I have always the same message with Kleoptatra :
Résultats détaillés de l’importation du certificat :
Totaux
Nombre total traité : 2
Importé : 0
Inchangées : 2
Certificats secrets traités : 1
Certificats secrets inchangés : 1

Why does it not import ? I cant delete definitively all keys on my PC to reimport cleanly the good ones ?

Hi Theo,
it seems that you have two secret keys in GnuPG (the crypto engine of Gpg4win).
And the import does not changes anything, because the kesy are already there.

Now the signing failed, but did you create the file “HI.TXT” before hand?
(You can use any other small file, this was just an example.)

If the file is there, and it stell fails, please try signing again with one more verbosity
gpg -vv --sign YOURFILE.TXT
And did a pinentry appear in the last ten minutes or so?

Best Regards,
Bernhard

Another idea: You do know that Thunderbird comes with
a new OpenPGP support? So Enigmail does not work anymore.

They have changed a default between 78 and 78.2.1,
see https://www.thunderbird.net/en-US/thunderbird/78.2.1/releasenotes/
Maybe that is the cause of the problems.

Best,
Bernhard

I as well have the impressioin, that You fell into the Thunderbird update trap.
The last working Version is 68.12.0. So download this Version and reinstall. The problem will be that after the downgrade the old profile is not working anymore, because it was adapted by the update to the new TB-version and there is no official way back. The only possibility is, to create a new profile.
After that you should prevent any updates, otherwise you might get the same problem again. The best way to block any updates is to change the registry key → attachment.
I hope it is that.

TB_Update_Dis.reg (276 Bytes)

Hi, and thanks for your answers !

I’ve tested to install on another computer the last version of thunderbird (78.2.2), without enigmail, and try to import my keys : It works.

The problme is only local then. To resolve it, I would like to delete all key’s repertories, to do things to the beginning. Do you know how I can delete keys ?
When I delete Gpg4win, enigmail, Thunderbird always find keys somewhere else…

Maybe reinstall thunderbird too. I’m going to test that.

Hi Theo,

the new Thunderbird has its own crypto engine. So it will have its own key storage.
Enigmail (as far as I know) uses GnuPG as crypto engine.

When deleting keys, take into account that there is a public key and a private key.
You must delete both (or just delete all the config files). Public keys for some recipients maybe found automatically, e.g. when entering an email address.

Best Regards,
Bernhard

Hi Bernhard,
You’re right, on my other computer, I’ve only thunderbird, and nothing else, and it works good.
So I’ve all deleted (all keys in Kleopatra, GPG4win, enigmail), and tested to import my private key directly in the new thunderbird interface.
It blocks on this page (photo), without success.

I don’t understand why, but I think I’m not on the right forum to ask about thunderbird’s version.

Thanks a lot for your attention !

thbloc.png