[pkg-gnupg-maint] Bug#807622: also in buster, also with nitrokey
Hans-Christoph Steiner
hans at eds.org
Thu Jun 27 09:08:59 BST 2019
Control: found 807622 2.2.12-1
I'm running buster with a NitroKey, and I'm also affected by this:
$ ssh foo
sign_and_send_pubkey: signing failed: agent refused operation
foo: Permission denied (publickey).
$ gpg-connect-agent 'scd getinfo version /bye
> ^C
$ gpg-connect-agent 'scd getinfo version' /bye
D 2.2.12
OK
$ gpg-connect-agent 'scd getinfo reader_list' /bye
D 20A0:4108:00003BC00000000000000000:0%0A
OK
$ gpg-connect-agent 'scd getinfo app_list' /bye
D openpgp:%0Anks:%0Ap15:%0Ageldkarte:%0Adinsig:%0Asc-hsm:%0A
OK
$ ps -eFH | grep 's[c]daemon'
me 14083 3348 0 58365 4316 4 Jun26 ? 00:00:01
scdaemon --multi-server
$ gpgconf --kill scdaemon
~ $ ps -eFH | grep 's[c]daemon'
me 14083 3348 0 0 0 5 Jun26 ? 00:00:01
[scdaemon] <defunct>
$ ssh foo
[now it works!]
$ ps -eFH | grep 's[c]daemon'
me 1175 3348 0 41968 6056 1 10:00 ? 00:00:00
scdaemon --multi-server
I'm going to try to add a systemd hook to kill scdaemon before
suspending. Basically sticking this script into
/usr/lib/systemd/system-sleep:
#!/bin/sh
if [ "${1}" == "pre" ]; then
# Do the thing you want before suspend here, e.g.:
gpgconf --kill scdaemon
elif [ "${1}" == "post" ]; then
# Do the thing you want after resume here, e.g.:
fi
More information about the pkg-gnupg-maint
mailing list