[pkg-gnupg-maint] Bug#809278: gnupg2: Asks gpg-agent for secret key to every key in the database instead of trying default

Julian Andres Klode jak at debian.org
Mon Dec 28 22:06:39 UTC 2015


Package: gnupg2
Version: 2.1.10-3
Severity: important

I first noticed this today. I have the default-key set to the key on my smart
card, which is the only non-revoked private key in the keyring; but instead
of trying to use it, gpg2 first asks the agent for every other key in the
keyring if a private key exists, causing a __15__ second delay before the pin
is requested from me.

During DebConf I basically had the same issue, and setting the default-key
as Werner Koch suggested fixed the issue back then, but now it is back.

The logs are the usual tons of:
gpg-agent[4355]: DBG: chan_4 <- HAVEKEY 5DF8BCA35EA1D66D5F52648DFC630FFFC065B087 781EB41B7C0D0EF13B9B395192625F446DB934F3
gpg-agent[4355]: DBG: chan_4 -> ERR 67108881 No secret key <GPG Agent>


-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (900, 'unstable'), (100, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.4.0-rc5-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_IE.UTF-8, LC_CTYPE=en_IE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages gnupg2 depends on:
ii  dpkg           1.18.4
ii  gnupg-agent    2.1.10-3
ii  libassuan0     2.4.2-1
ii  libbz2-1.0     1.0.6-8
ii  libc6          2.21-6
ii  libgcrypt20    1.6.4-4
ii  libgpg-error0  1.21-1
ii  libksba8       1.3.3-1
ii  libreadline6   6.3-8+b4
ii  libsqlite3-0   3.9.2-1
ii  zlib1g         1:1.2.8.dfsg-2+b1

Versions of packages gnupg2 recommends:
ii  dirmngr  2.1.10-3

Versions of packages gnupg2 suggests:
pn  gnupg-doc   <none>
pn  parcimonie  <none>
ii  xloadimage  4.1-23+b1

-- no debconf information

-- 
Julian Andres Klode  - Debian Developer, Ubuntu Member

See http://wiki.debian.org/JulianAndresKlode and http://jak-linux.org/.

When replying, only quote what is necessary, and write each reply
directly below the part(s) it pertains to (`inline'). Thank you.



More information about the pkg-gnupg-maint mailing list