[Bug 619295] New: gpg password entry does not work on command line without X
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c0 Summary: gpg password entry does not work on command line without X Classification: openSUSE Product: openSUSE 11.3 Version: RC 1 Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: andi-nbz@firstfloor.org QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.4) Gecko/20100622 Fedora/3.6.4-1.fc13 Firefox/3.6.4 Trying to decrypt a file on a ssh session without X: %gpg < file.gpg pinentry-qt: no LC_CTYPE known - assuming UTF-8 pinentry-qt: no LC_CTYPE known - assuming UTF-8 pinentry-qt: no LC_CTYPE known - assuming UTF-8 pinentry-qt: no LC_CTYPE known - assuming UTF-8 First the stair case looks ugly and then I cannot actually enter a password. Only Ctrl-C does something. I have not found a workaround for this problem, gpg is basically unusable. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c1 --- Comment #1 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-07-01 20:06:13 UTC --- ok looking closer it seems the fallback logic in /usr/bin/pinentry is simply broken. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c2 --- Comment #2 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-07-01 20:10:31 UTC --- Created an attachment (id=373325) --> (http://bugzilla.novell.com/attachment.cgi?id=373325) patch to fix fallback logic this fixes the fallback logic for no $DISPLAY, but unfortunately pinentry-curses still doesn't work -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c yang xiaoyu <xyyang@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |xyyang@novell.com AssignedTo|bnc-team-screening@forge.pr |puzel@novell.com |ovo.novell.com | -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c3 Marcus Meissner <meissner@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |meissner@novell.com --- Comment #3 from Marcus Meissner <meissner@novell.com> 2010-07-02 06:48:43 UTC --- ncurses mode worked for me, but I am not sure it can handle redirection -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c4 --- Comment #4 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-07-02 09:34:58 UTC --- that may be it, but redirection always worked before (at least in 11.1) -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c5 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P2 - High Status|NEW |NEEDINFO InfoProvider| |andi-nbz@firstfloor.org Severity|Normal |Major --- Comment #5 from Petr Uzel <puzel@novell.com> 2010-07-02 16:03:58 UTC --- Andi, first of all, thanks for the report.
ok looking closer it seems the fallback logic in /usr/bin/pinentry is simply broken.
Actually it is not - the reason is that all pinentry-{qt,qt4,gtk-2} fall back to built-in curses interface if DISPLAY is not set (see 'info pinentry'). OTOH, with your patch the fallback mechanism is not needed and also the script is more 'clear', so I'll push it.
this fixes the fallback logic for no $DISPLAY, but unfortunately pinentry-curses still doesn't work
Could you please try to 'export GPG_TTY=$(tty)' and eventually restart gpg-agent if it has been running before? (man gpg-agent) TIA -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c6 --- Comment #6 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-07-02 16:27:50 UTC --- With GPG_TTY set the curses entry works thanks. So could just set that in the pinentry script? gpg-agent was not running because this is from a ssh session. Also would be good to fix the staircase in the error message, although that's more cosmetical. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c7 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- InfoProvider|andi-nbz@firstfloor.org |ro@novell.com --- Comment #7 from Petr Uzel <puzel@novell.com> 2010-07-07 07:43:49 UTC --- (In reply to comment #6)
With GPG_TTY set the curses entry works thanks. So could just set that in the pinentry script?
Setting it in the pinentry script won't work - the script is executed without terminal connected to the stdin. IMHO the solution is to put the 'export GPG_TTY=$(tty)' into some of the /etc/*{bash,profile}* - Rudi, AFAIK you are the master of these bash initialization files - could you please put the line to where it belongs (my guess is /etc/bash.bashrc) ? -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c8 --- Comment #8 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-07-07 09:31:12 UTC --- Hmm I guess /dev/tty could work instead, that should be independent of stdin and would not need profile changes. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c9 --- Comment #9 from Petr Uzel <puzel@novell.com> 2010-07-07 10:23:24 UTC --- (In reply to comment #8)
Hmm I guess /dev/tty could work instead
Unfortunately not. Explanation by gnupg developer: http://lists.gnupg.org/pipermail/gpa-dev/2003-October/001483.html -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c11 Donavan Pantke <dpantke@appriss.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |dpantke@appriss.com --- Comment #11 from Donavan Pantke <dpantke@appriss.com> 2010-09-14 00:15:37 UTC --- Can we at least get the pinentry script fixed? Running pinentry on 11.2 for me without a valid X session gives errors, and only sane workaround is to remove pinentry-qt4. Although full unattended operation won't work 100%, at least my manual entry will work good. :) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c12 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- InfoProvider|ro@novell.com |maintenance@opensuse.org --- Comment #12 from Petr Uzel <puzel@novell.com> 2010-09-23 13:29:24 UTC --- Mr. Maintenance: can we apply the fix from comment #2 to 11.2? That way we could work around the broken fallback-to-curses mechanism in pinentry-qt4 (in 11.3 it works fine). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c13 --- Comment #13 from Marcus Meissner <meissner@novell.com> 2010-09-23 16:06:22 UTC --- fix in #c2 looks sane to me. so, good +1 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c14 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard| |maint:running:36140:low --- Comment #14 from Swamp Workflow Management <swamp@suse.com> 2010-09-28 18:13:05 UTC --- The SWAMPID for this issue is 36140. This issue was rated as low. Please submit fixed packages until 2010-10-26. Also create a patchinfo file using this link: https://swamp.suse.de/webswamp/wf/36140 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c15 Christian Dengler <cdengler@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |NEW CC| |cdengler@novell.com InfoProvider|maintenance@opensuse.org | --- Comment #15 from Christian Dengler <cdengler@novell.com> 2010-09-28 18:13:52 UTC --- also +1 update process started -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c16 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |ASSIGNED --- Comment #16 from Petr Uzel <puzel@novell.com> 2010-09-29 14:05:40 UTC --- Fixed package and patchinfo submitted. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c17 Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36140:low |maint:running:36140:low | |maint:released:11.2:36147 --- Comment #17 from Swamp Workflow Management <swamp@suse.com> 2010-10-13 12:52:36 UTC --- Update released for: pinentry, pinentry-debuginfo, pinentry-debugsource, pinentry-gtk2, pinentry-gtk2-debuginfo, pinentry-qt, pinentry-qt-debuginfo, pinentry-qt4, pinentry-qt4-debuginfo Products: openSUSE 11.2 (debug, i586, x86_64) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c Swamp Workflow Management <swamp@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status Whiteboard|maint:running:36140:low |maint:released:11.2:36147 |maint:released:11.2:36147 | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c18 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |jengelh@medozas.de --- Comment #18 from Jan Engelhardt <jengelh@medozas.de> 2010-10-30 18:46:58 UTC --- This seems to affect 11.3 as well (and is currently unfixed). Affects pinentry-curses; $DISPLAY can be set or not, it's pretty much independent of X. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c19 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO InfoProvider| |jengelh@medozas.de --- Comment #19 from Petr Uzel <puzel@novell.com> 2010-11-15 14:10:22 UTC --- (In reply to comment #18) This entry is actually a mix of two bugs: 1/ the redirection does not work without GPG_TTY (comments 1-9). This is still not fixed 2/ pinentry-qt4 fallback to curses does not work in 11.2 - this should be fixed already. [My bad that I did not create separate bugzilla for the second one]
This seems to affect 11.3 as well (and is currently unfixed).
So, could you please be more specific wrt to what's unfixed?
Affects pinentry-curses; $DISPLAY can be set or not, it's pretty much independent of X.
Bug #647655 maybe? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c20 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |wolfgang@rosenauer.org --- Comment #20 from Petr Uzel <puzel@novell.com> 2010-12-01 13:22:07 UTC --- *** Bug 647655 has been marked as a duplicate of this bug. *** http://bugzilla.novell.com/show_bug.cgi?id=647655 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c21 --- Comment #21 from Jan Engelhardt <jengelh@medozas.de> 2010-12-01 22:54:45 UTC --- Created an attachment (id=403027) --> (http://bugzilla.novell.com/attachment.cgi?id=403027) Screenshot Petr, here is the image from my case. (The system has a working pinentry-gtk2 interface which I bent in and for the screenshot.) I am not sure why gpg-server continues to use pinentry-gtk2 when it was just changed to curses. The thing is, this only happens with git. `gpg -ab` for signing files is fine, it displays the curses interface. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c22 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED Version|RC 1 |Final InfoProvider|jengelh@medozas.de | --- Comment #22 from Petr Uzel <puzel@novell.com> 2010-12-02 09:28:28 UTC --- Jan, thanks for the info. I'll try to debug this asap. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c23 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO InfoProvider| |jengelh@medozas.de --- Comment #23 from Petr Uzel <puzel@novell.com> 2010-12-07 11:49:11 UTC --- (In reply to comment #21)
The thing is, this only happens with git. `gpg -ab` for signing files is fine, it displays the curses interface.
Please try: export GPG_TTY=$(tty) git tag -m 'foo' foo -s It should now correctly display curses interface, which is embedded into pinentry-gtk2 (by this reason, /usr/bin/pinentry selects pinentry-gtk/qt? even if DISPLAY is not set). The problem is that curses interface can not work without stdin being connected to terminal==>gpg -ab works while git tag does not. See man gpg-agent for details about GPG_TTY. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c24 --- Comment #24 from Petr Uzel <puzel@novell.com> 2010-12-07 13:05:42 UTC --- (In reply to comment #7)
IMHO the solution is to put the 'export GPG_TTY=$(tty)' into some of the /etc/*{bash,profile}*
Submitted to Factory sr#55011 (into /etc/bash.bashrc) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c25 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED InfoProvider|jengelh@medozas.de | --- Comment #25 from Jan Engelhardt <jengelh@medozas.de> 2010-12-07 13:40:55 UTC ---
See man gpg-agent for details about GPG_TTY.
What details? It does not say anything useful about it: "You should always add the following lines to your .bashrc or whatever initialization file is used for all shell invocations: GPG_TTY=$(tty) export GPG_TTY It is important that this environment variable always reflects the output of the tty command." That breaks if you run xterm or screen without invoking a login shell. Why the heck does this need to be a hard-to-control environment variable at all? Why can't gpg — which is inevidently invoked — call tty at program start itself (and thus always get the right value, even if an xterm-started-from-an-xterm is used)? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c26 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |NEEDINFO InfoProvider| |jengelh@medozas.de --- Comment #26 from Petr Uzel <puzel@novell.com> 2010-12-07 14:24:23 UTC --- (In reply to comment #25)
That breaks if you run xterm or screen without invoking a login shell.
Does it? If you 'export GPG_TTY=$(tty)' in ~/.bashrc, it is sourced every time the interactive shell is run. What do I miss?
Why the heck does this need to be a hard-to-control environment variable at all? Why can't gpg — which is inevidently invoked — call tty at program start itself (and thus always get the right value, even if an xterm-started-from-an-xterm is used)?
I think gpg does exactly this, if its stdin is connected to terminal. But if it isn't (like with the git tag case), how would you find out the tty? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c27 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |ASSIGNED InfoProvider|jengelh@medozas.de | --- Comment #27 from Jan Engelhardt <jengelh@medozas.de> 2010-12-07 15:25:45 UTC --- bashrc yes (bash_profile, no) - but then again, that only addresses bash, not the other shells. This is another point why the gpg program should run tty. If upstream does not want to do that change, make /usr/bin/gpg a script similar to what is done with /usr/bin/pinentry and run in it: #!/bin/sh GPG_TTY=$(tty) exec /usr/bin/gpg-real "$@"; That should take care of non-bash and login-not-login — and even bash --norc — situations. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c28 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|ASSIGNED |RESOLVED Resolution| |FIXED --- Comment #28 from Petr Uzel <puzel@novell.com> 2010-12-08 11:07:30 UTC --- (In reply to comment #27)
bashrc yes (bash_profile, no)
It is now in /etc/bash.bashrc ... - but then again, that only addresses bash, not
the other shells.
.. as well as in /etc/csh.cshrc
This is another point why the gpg program should run tty. If upstream does not want to do that change, make /usr/bin/gpg a script similar to what is done with /usr/bin/pinentry and run in it:
#!/bin/sh
GPG_TTY=$(tty) exec /usr/bin/gpg-real "$@";
That should take care of non-bash and login-not-login — and even bash --norc — situations.
But it still won't help if the "gpg script" is run with stdin redirected (without the redirection, GPG_TTY is not needed). So this is no better. I understand you don't like it, but I really don't see any better solution. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c29 --- Comment #29 from Jan Engelhardt <jengelh@medozas.de> 2010-12-08 11:15:27 UTC ---
with stdin redirected
In that case, it should simply be GPG_TTY=/dev/tty. This is what ssh and so on do anyway, whether their stdin is redirected or not. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c30 --- Comment #30 from Andi N Kleen <andi-nbz@firstfloor.org> 2010-12-08 11:21:52 UTC --- I think it would be far better to patch gpg to default to this, instead of requiring this weird environment variable. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c31 Jan Engelhardt <jengelh@medozas.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | --- Comment #31 from Jan Engelhardt <jengelh@medozas.de> 2010-12-08 18:25:00 UTC --- #c30 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c32 Petr Uzel <puzel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |RESOLVED Resolution| |FIXED --- Comment #32 from Petr Uzel <puzel@novell.com> 2010-12-09 12:45:43 UTC --- (In reply to comment #29)
In that case, it should simply be GPG_TTY=/dev/tty. This is what ssh and so on do anyway, whether their stdin is redirected or not.
I don't know how is it with ssh, but this will not work with gpg & standalone gpg-agent. In short: Gpg would instruct gpg-agent to use /dev/tty, gpg-agent passes this along to pinentry. /dev/tty is synonym for controlling terminal of the process. gpg-agent does not have controlling terminal -> pinentry does not have controlling terminal. /dev/tty does not work. Long version: http://lists.gnupg.org/pipermail/gnupg-users/2003-July/019166.html http://lists.gnupg.org/pipermail/gpa-dev/2003-October/001483.html http://www.gnupg.org/documentation/manuals/gnupg/Common-Problems.html -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c33 --- Comment #33 from Jan Engelhardt <jengelh@medozas.de> 2010-12-09 13:27:04 UTC --- So how do we find the ctty of a process without resorting to ugly hacks like parsing `ps` output? I could think of gpg opening /dev/tty and sending the fd over the unix socket to gpg-agent (SCM_RIGHTS). -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=619295 https://bugzilla.novell.com/show_bug.cgi?id=619295#c34 --- Comment #34 from Petr Uzel <puzel@novell.com> 2010-12-15 10:33:10 UTC --- (In reply to comment #33)
So how do we find the ctty of a process without resorting to ugly hacks like parsing `ps` output? I could think of gpg opening /dev/tty and sending the fd over the unix socket to gpg-agent (SCM_RIGHTS).
This is interesting idea. However, since gpg, gpg-agent and pinentry (and seahorse) communicate via the assuan protocol (implemented in libassuan), this would require significant changes in the assuan protocol/library. Therefore, if you want to push this idea forward, I suggest to do so on gnupg-devel mailing list. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=619295 http://bugzilla.novell.com/show_bug.cgi?id=619295#c35 --- Comment #35 from Bernhard Wiedemann <bwiedemann@suse.com> --- This is an autogenerated message for OBS integration: This bug (619295) was mentioned in https://build.opensuse.org/request/show/49514 11.2:Test / pinentry https://build.opensuse.org/request/show/55059 Factory / aaa_base -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com