[Pkg-gnupg-maint] Bug#767341: Bug#767341: New xsession startup breaks enable-ssh-support

Christoph Egger christoph at debian.org
Thu Oct 30 15:49:34 UTC 2014


Hi!

Daniel Kahn Gillmor <dkg at fifthhorseman.net> writes:
> On Thu 2014-10-30 07:06:47 -0400, Christoph Egger wrote:
>> setting SSH_AGENT_PID and SSH_AUTH_SOCKET to ~/.gnupg/S.gpg-agent.ssh if
>> it exists should be enough fwiw. It even then supports ed25519 keys (wrt
>> #764702)
>
> I don't want to auto-enable that for everyone, because gpg's ssh-agent
> support doesn't match the workflow for openssh's ssh-agent support and
> not everyone likes the different workflow (i personally prefer
> ssh-agent's workflow, for example).

Right that's why I suggested only adding the variable iff the socket exists.

> That said, i do want to make this work for folks who do prefer gpg-agent's
> ssh-agent workflow, so thanks for bringing this up.
>
> I'm not convinced that setting SSH_AGENT_PID actually matters in
> practice, so i think we could get away with just setting
> SSH_AUTH_SOCKET.

Right wasn't sure what ssh-agent actually checks when writing the
original report but setting SSH_AUTH_SOCKET should be enough


> Does the attached patch work for you?  If so, i'll roll up a new
> version with the patch.

make that a SSH_AUTH_SOCK instead of SOCKET and it works just fine!

  Christoph

> diff --git a/debian/gnupg-agent.xsession b/debian/gnupg-agent.xsession
> index a063df9..3c87419 100644
> --- a/debian/gnupg-agent.xsession
> +++ b/debian/gnupg-agent.xsession
> @@ -12,4 +12,8 @@ if grep -qs '^[[:space:]]*use-agent' "$GNUPGHOME/gpg.conf" "$GNUPGHOME/options"
>     fi
>     GPG_AGENT_INFO=${HOME}/.gnupg/S.gpg-agent:0:1
>     export GPG_AGENT_INFO
> +   if grep -qs '^[[:space:]]*enable-ssh-support' "$GNUPGHOME/gpg-agent.conf"; then
> +       SSH_AUTH_SOCKET=${HOME}/.gnupg/S.gpg-agent.ssh
> +       export SSH_AUTH_SOCKET
> +   fi
>  fi
>

-- 



More information about the Pkg-gnupg-maint mailing list