[pkg-gnupg-maint] Bug#835394: gnupg-agent: gpg agent refusing ssh agent work

Raphaël raphael.droz at gmail.com
Tue Jun 20 05:09:00 UTC 2017

Just upgraded from Jessie to Stretch, same issue.

This used to just work
$ eval $(gpg-agent --enable-ssh-support)

But ssh connections now fail miserably.

I'm offered the ssh key pinentry popup, and then:
> sign_and_send_pubkey: signing failed: agent refused operation
I also tried to kill all that dbus-* things before retrying.
I was provided with the curl-based pinentry popup but failed the same way.

ssh-agent and/or hardcoding IdentityFile still works (hopefully)

I also noticed that running gpg 2.1 $(gpg-agent --enable-ssh-support)
automatically provides two of my keys. ssh-add -D does not seem to
remove them from the (gpg)-agent.
I guess those are the only two which were inside my agent at the time
gpg 2.1 migrated them inside ~/.gnupg/private-keys-v1.d/

This may or may not be related to the issue.

NB: I don't use systemd

More information about the pkg-gnupg-maint mailing list