Hi all! I'm having trouble decrypting a file sent by a vendor. I get the following error:
/opt/pgp/bin/pgp --decrypt FILE2012.TXT.pgp --passphrase "pass" --input-cleanup remove
Warning: PGPsdk running in local mode.
FILE2012.TXT:decrypt (1082:detached signature target file)
FILE2012.TXT.pgp:decrypt (3090:operation failed, file not found)
So it looks like it's looking for the existence of a detached signature target file that has the same name as the original encrypted content. I have a sneaking suspicion the vendor is screwing something up, but I can't figure out exactly what. If I "touch" the file it's looking for, it's partially successful:
/opt/pgp/bin/pgp --decrypt FILE2012.TXT.pgp --passphrase "pass" --input-cleanup remove
Warning: PGPsdk running in local mode.
FILE2012.TXT:decrypt (1082:detached signature target file)
FILE2012.TXT.pgp:decrypt (3037:cannot verify signature)
FILE2012.TXT.pgp:decrypt (3039:signing key 0xAA123456)
FILE2012.TXT.pgp:decrypt (3083:could not create output file FILE2012.TXT)
It won't overwrite the FILE2012.TXT file because it's already there, but it at least sees the detached signature target file it's looking for, even if it's just empty. I've obviously changed the keyID (along with the filenames and passphrase) but it's worth noting that the actual keyID is NOT one I have in my keyring.
If I redirect the output, I get what appears to be success:
/opt/pgp/bin/pgp --decrypt FILE2012.TXT.pgp --passphrase "pass" --input-cleanup remove --output FILE.txt
Warning: PGPsdk running in local mode.
FILE2012.TXT:decrypt (1082:detached signature target file)
FILE2012.TXT.pgp:decrypt (3037:cannot verify signature)
FILE2012.TXT.pgp:decrypt (3039:signing key 0xAA123456)
FILE2012.TXT.pgp:decrypt (0:output file FILE.txt)
host12:/export/home/user1 $ ls -l FILE.txt
-rw------- 1 root root 0 Feb 13 09:30 FILE.txt
I get no errors, but I'm not entirely sure that the file is supposed to be empty, and I'm wondering if it is only because I'm using the empty detached signature target file.
The PGP documentation is awfully sparse on what a "detached signature target file" even is. I'm also wondering if I get the public half of that AA123456 key from the vendor, if that might fix the problem; my thinking is it's only fiddling with the detached signature file because it can't find a matching key in my keyring. Thoughts?
Thanks!