Le 2019/06/27 17:41, Daniel Kahn Gillmor a écrit :
On Thu 2019-06-27 10:28:43 +0200, Emmanuel Revah wrote:
In .gnupg/gpg-agent.conf I went from "pinentry-program pinentry-qt" to
"pinentry-program pinentry".
"pinentry-program pinentry" is probably the same as no line at all (it
is the default). I strongly recommend sticking with the simplest
default configuration possible, so removing that line is good.
I did have the full path (I tested both). I've removed it altogether
now.
[...]
Is pinentry-gnome3 still installed? If you don't want a grab, it
should
not be installed.
So:
* You should have only pinentry-qt installed (and no other
`pinentry-*` packages)
* You should have no `pinentry-program` line in your gpg-agent.conf.
* "readlink -f $(which pinentry)" should point to /usr/bin/pinentry-qt
* You should terminate your running gpg-agent after making all of the
above changes, with "gpgconf --kill gpg-agent"
if all of these conditions are met, then the following should give you
a
QT-based, non-grabbing confirmation prompt:
gpg-connect-agent 'GET_CONFIRMATION Hello' /bye
I've followed these steps carefully, on 2 computers, both on Debian
Buster, 64 bit. The only thing that seems logic to me is that there
might be an issue with pinentry-qt itself.
If I remove all pinentry-* except for qt and clean gpg-agent.conf file
(remove pinentry conf) I get the error "ERR 67108949 No pinentry <GPG
Agent>".
Any combination of either, only having pinentry-qt installed, or the
config file pointing to it, will result in this error.
I installed pinentry-fltk and then pinentry-gtk2, and things work as
expected. Even if I have multiple pinentry-* things installed,
gpg-agent.conf is read and will use pinentry-fltk (or gtk2) as expected.
If the config file doesn't have `pinentry`, then whatever `readlink -f
$(which pinentry)` points to is used. This seems to be the expected way
of behaving (install one or more pinentry programs, have a system
default, override-able in user config).
If this doesn't work for you, then something else is more seriously
wrong, and i'd like to understand it better.
I can use pinentry-qt to get a dialog window, it just does not work with
GPG in my case.
If this isn't a bug (PEBKAC is always an option for me) or can't be
fixed, I will just use fltk or gtk2 and I'll be fine. If you'd like me
to try out more things, let me know.
Cheers,
: ]
