id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc
28	samhainadmin.pl fails at line 453	anonymous	rainer	"I am using gpg 1.4.2.2 and it returns error code 2 when successfully signing files if the ssh-agent does not run. This is a problem for scripts relying on gpg return error code. I found out that the simple addition of --no-use-agent addition fixes the issue for samhainadmin.pl... See patch below.

{{{
$ sudo samhainadmin.pl -m F
--------------------------------------------------

 Please remember that yule will drop root after startup. Signature
 verification on SIGHUP will fail if you do not import the public key
 into the keyring of the non-root yule user.

--------------------------------------------------
gpg: WARNING: unsafe ownership on homedir `/home/emoret/.gnupg'

You need a passphrase to unlock the secret key for
user: ""Eric Moret <XXXXXXXXXXXXXXX>""
4096-bit RSA key, ID DBC967BC, created 2005-05-11

gpg: gpg-agent is not available in this session
system /usr/bin/gpg --homedir /home/emoret/.gnupg                  -a --clearsign -o /etc/samhainrc.asc --not-dash-escaped /etc/samhainrc failed: 512 at /usr/local/sbin/samhainadmin.pl line 453.
}}}

{{{
diff -ruN samhain-2.2.2/scripts/samhainadmin.pl.in samhain-2.2.2.new/scripts/samhainadmin.pl.in
--- samhain-2.2.2/scripts/samhainadmin.pl.in    2006-04-27 13:58:46.000000000 -0700
+++ samhain-2.2.2.new/scripts/samhainadmin.pl.in        2006-07-23 17:23:05.000000000 -0700
@@ -444,12 +444,12 @@
 
     if (defined($passphrase)) {
        local $SIG{PIPE} = 'IGNORE';
-       my $command = ""$gpg --homedir $ENV{'HOME'}/.gnupg --passphrase-fd 0 -a --clearsign -o $fileout --not-dash-escaped $file1"";
+       my $command = ""$gpg --homedir $ENV{'HOME'}/.gnupg --no-use-agent --passphrase-fd 0 -a --clearsign -o $fileout --not-dash-escaped $file1"";
        open (FH, ""|$command"")  or die ""can't fork: $!"";
        print FH ""$passphrase""  or die ""can't write: $!"";
        close FH                or die ""can't close: status=$?"";
     } else {
-       my $command = ""$gpg --homedir $ENV{'HOME'}/.gnupg                   -a --clearsign -o $fileout --not-dash-escaped $file1"";
+       my $command = ""$gpg --homedir $ENV{'HOME'}/.gnupg --no-use-agent                  -a --clearsign -o $fileout --not-dash-escaped $file1"";
        system(""$command"") == 0 
            or die ""system $command failed: $?"";
     }
}}}"	defect	closed	major	2.2.3	main	2.2.2	fixed