[Bug 1257706] Re: gpg-agent environment variables not correctly exported
*** This bug is a duplicate of bug 1407513 *** https://bugs.launchpad.net/bugs/1407513 ** This bug has been marked a duplicate of bug 1407513 gpg-agent upstart script doesn't set SSH environment variables -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I think the merge request looks good. Once the dev release opens, it can be uploaded. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
Please let me know if I didn't do this merge proposal correctly, this is my first one. https://code.launchpad.net/~kramsmada/ubuntu/vivid/gnupg2/1407513-gpg- agent-set-ssh-env-vars/+merge/245538 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I've had a merge proposal in with a patch to fix this since January. If someone could review and merge, I'd appreciate it: https://code.launchpad.net/~kramsmada/ubuntu/vivid/gnupg2/1407513-gpg- agent-set-ssh-env-vars/+merge/245538 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
** Tags added: saucy -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
gnupg2 is not in main, ubuntu uses gnupg1 by default. in vivid, and being fixed in sru's for trusty and utopic, upstart is managing user session and launching gnupg-agent (either gnupg1 or gnome-keyring), ditto ssh-agent (either gnupg1 or gnome-keyring). To integrate this correctly, support should be added to ssh-agent/gnome- keyring-ssh gpg-agent/gnome-keyring-gpg to support third alternative, that is gnupg2's gpg-agent and gnupg2's ssh-agent. Patches against that are welcome. With respect to gpg smartcard, on my machine i've copied gnupg- agent.conf job into ~/.config/upstart/ an tweaked it to export ssh-agent vairable, and also did echo manual ~/.config/upstart/ssh- agent.override and thus i'm using gnupg gpg-agent for both ssh gpg authentication. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I have recently updated my blog post/rant about this whole class of issues. For users/developers that want a recap and a working approach: http://neagix.blogspot.co.uk/2014/09/setup-gpg-smartcard-reader-in-ubuntu-14.html Feel free to merge the proposed xsession script, if you evaluate it to be of enough quality. ** Attachment added: 91-custom-gpg-agent https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+attachment/4305003/+files/91-custom-gpg-agent -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I see, it's in extra. Correction: the proposed xsession script is unnecessary, as the stock 90gpg-agent works fine when ~/.gnupg/gpg-agent.conf is correctly populated, sorry for the blunder. @xnox so you managed to do it via upstart instead of Xsession? Interesting. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I am another user of OpenPGP-Card ssh authentication. I have my init/gpg-agent.conf attached. It checks ~/.gnupg/gpg- agend.conf for the enable-ssh-support option and exports the SSH_ variables conditionally. I agree with Alex Maurer that the various *-agents start-scritps are quite messy. But then they stem from various projects, so where is the right place to start this discussion? ** Attachment added: gpg-agent.conf https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+attachment/4130561/+files/gpg-agent.conf -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
Would also be nice, if the agent information could be used by nautilus. I guess this is currently not working because the environment variables cannot be used inside the GUI? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
It would also be best if the gpg-agent was started before dbus, so that gvfsd (which is started by dbus) can use the gpg agent information. (e.g. using the agent to access ssh URLs) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
I really like this, but I think it could be improved: You don’t really need to pass --enable-ssh-support. Instead, you can place the option in the gpg-agent.conf file (~/.gnupg /gpg-agent.conf) This way there is no need to worry about competing with ssh-agent. So the only thing to really worry about then, is exporting the appropriate environment variables, and it should be palatable to ssh- agent users. I think this change could be included in the official package too, with no problem. There is some inconsistency among the various *-agents though: To disable the ssh-agent you edit /etc/X11/Xsession.options; to enable the gpg-agent you edit ~/.gnupg/gpg.conf; to enable ssh support in gpg you edit ~/.gnupg/gpg-agent.conf; and to disable ssh support in gnome- keyring (the default) you have to hack around in /etc/xdg/autostart /gnome-keyring-*.desktop. It’s a real mess. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: gnupg2 (Ubuntu) Status: New = Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1257706] Re: gpg-agent environment variables not correctly exported
It depends on what you intend to use gpg-agent for. For caching of your passphrase of your gpg private key, I assume you don't need the SSH variables exported. But if you want gpg-agent to use as a ssh-agent too, you need to pass --enable-ssh-support to gpg-agent and export SSH_AUTH_SOCK (the man page only mentions SSH_AUTH_SOCK in the examples). I use gpg-agent as a ssh-agent too, so I can use my OpenPGP card for SSH authentication. I've attached my ~/.init/gpg-agent.conf (used by upstart user sessions) which starts gpg-agent with --enable-ssh-support and exports SSH_AUTH_SOCK. Put it in your ~/.init/ and upstart will use it instead the one from the package. I doubt this can be included in the package itself (perhaps as an example for those users who need it) as gpg-agent will then compete with ssh-agent (from the openssh-client package) who sets the SSH_AUTH_SOCK variable and might upset users of ssh-agent. gnome-keyring can also act as a ssh-agent so there are at least three competioners for that variable. ** Attachment added: ~/.init/gpg-agent.conf https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+attachment/3925322/+files/gpg-agent.conf -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1257706 Title: gpg-agent environment variables not correctly exported To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnupg2/+bug/1257706/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs