[pkg-gnupg-maint] Beware of leftover gpg-agent processes

Daniel Kahn Gillmor dkg at fifthhorseman.net
Sat Aug 6 16:54:49 UTC 2016


On Sat 2016-08-06 04:30:28 -0400, Werner Koch wrote:
> By making use-standard-socket the default in 2.1 I had hoped that we
> could get away from starting gpg-agent in advance (on semi-in-advanced
> by systemd watching the socket).  We have been doing this on Windows for
> many years and it reduced questions and bug reports compared to starting
> it as a system service.  So time to do this on Unix as well.

i'd also love to have gpg-agent and dirmngr only be launched when
they're actually needed.  The current arrangement with systemd doesn't
do that, because the agent itself wants to open the socket, rather than
letting systemd treat it as a socket-activated setup.

And the arrangements i've tried without systemd don't provide automatic
daemon shutdown (hence the "beware" in the subject line).

We could have the best of both worlds with socket activation, though,
and i don't think it'd be that hard.  If you'd be willing to accept
patches along these lines, it should be pretty straightforward to make
it happen.

I'll try it out and send patches to gnupg-devel for further discussion.

Happy hacking,

      --dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 948 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20160806/bb6012b8/attachment.sig>


More information about the pkg-gnupg-maint mailing list