GnuPG lacks a default pinentry program

  • Done
  • quality assurance status badge
Details
5 participants
  • Alexandre Hannud Abdo
  • Brice Waegeneire
  • Ludovic Courtès
  • Raghav Gururajan
  • Ricardo Wurmus
Owner
unassigned
Submitted by
Raghav Gururajan
Severity
important
Merged with
R
R
Raghav Gururajan wrote on 24 Jul 2019 12:00
Cannot generate key pair with GnuPG
(address . bug-guix@gnu.org)
20190724060027.32bd2325@disroot.org
Hello Guix!

The current gnupg package in guix has "pinentry" as a missing
dependency.

Because of this, GnuPG throws the following error upon attempting to
generate key pairs:

gpg: agent_genkey failed: No pinentry
gpg: key generation failed: No pinentry

So it appears, unless the above mentioned dependency issue is fixed,
one cannot create gpg key pairs. :(

Regards,
RG.
R
R
Raghav Gururajan wrote on 25 Jul 2019 02:58
(address . 36784@debbugs.gnu.org)
58bc24045bcb5f43a4906f4b4edfc22e3071ebd8.camel@disroot.org
Hello Guix!

After brief discussion on IRC channel, I found out that adding
"pinentry-program /home/user/.guix-profile/bin/pinentry-program" to
"gpg-agent.conf" in "/home/user/.gnupg", was able to temproarily
resolve the situation. Thanks to Ricardo (rekado).

I still suggest that there should be a default/fallback option for
this. After reviewing guix repository, I found pinentry, emacs-
pinentry, pinentry-tty, pinentry-qt, pinentry-gtk2, pinentry-gnome3,
pinentry-emacs and pinentry-efl, as available pinentry programs.

Out of all, I suggest pinentry to be set as default/fallback option for
gnupg in guix, as it is platform-independent and provides both CUI
(console) and GUI.

Thank you!

Regards,
RG.
R
R
Raghav Gururajan wrote on 25 Jul 2019 03:07
severity 36784 important
(address . control@debbugs.gnu.org)
cedd5b5a756ada41468c60dbb4cd96025c77c1bd.camel@disroot.org
severity 36784 important
R
R
Ricardo Wurmus wrote on 25 Jul 2019 15:01
Re: bug#36784: Cannot generate key pair with GnuPG
(name . Raghav Gururajan)(address . raghavgururajan@disroot.org)(address . 36784@debbugs.gnu.org)
8736iu9sjc.fsf@elephly.net
Raghav Gururajan <raghavgururajan@disroot.org> writes:

Toggle quote (9 lines)
> I still suggest that there should be a default/fallback option for
> this. After reviewing guix repository, I found pinentry, emacs-
> pinentry, pinentry-tty, pinentry-qt, pinentry-gtk2, pinentry-gnome3,
> pinentry-emacs and pinentry-efl, as available pinentry programs.
>
> Out of all, I suggest pinentry to be set as default/fallback option for
> gnupg in guix, as it is platform-independent and provides both CUI
> (console) and GUI.

I think it would be good to have a sensible default. Is there a good
reason not to include pinentry-tty or somemthing similarly small?

--
Ricardo
R
R
Raghav Gururajan wrote on 25 Jul 2019 15:08
(name . Ricardo Wurmus)(address . rekado@elephly.net)(address . 36784@debbugs.gnu.org)
d7b5c373105105ab03da3df8eba2bfa160ec6698.camel@disroot.org
Toggle quote (3 lines)
> Is there a good
> reason not to include pinentry-tty or somemthing similarly small?

It appears pinentry-tty is only console-based. If graphical
applications like MUA, Key Managers etc require pinentry-program, it
usually uses pop-up (gui) for passphrase input. Since pinentry provides
both console and gui, I suggested it as it will be well-rounded
solution. :)

Regards,
RG.
R
R
Ricardo Wurmus wrote on 25 Jul 2019 15:34
(name . Raghav Gururajan)(address . raghavgururajan@disroot.org)(address . 36784@debbugs.gnu.org)
87y30m8chc.fsf@elephly.net
Raghav Gururajan <raghavgururajan@disroot.org> writes:

Toggle quote (9 lines)
>> Is there a good
>> reason not to include pinentry-tty or somemthing similarly small?
>
> It appears pinentry-tty is only console-based. If graphical
> applications like MUA, Key Managers etc require pinentry-program, it
> usually uses pop-up (gui) for passphrase input. Since pinentry provides
> both console and gui, I suggested it as it will be well-rounded
> solution. :)

I guess the reason for not adding a graphical pinentry is that this
would increase the package closure of the gnupg package.

Perhaps we should add gnupg-minimal for use in other package
definitions.

--
Ricardo
R
R
Raghav Gururajan wrote on 25 Jul 2019 15:36
(name . Ricardo Wurmus)(address . rekado@elephly.net)(address . 36784@debbugs.gnu.org)
7811b37c6cf040de2a3aafdd52dc92a7a94230a7.camel@disroot.org
Toggle quote (3 lines)
> Perhaps we should add gnupg-minimal for use in other package
> definitions.

That would actually be wise.

Regards,
RG.
L
L
Ludovic Courtès wrote on 24 Aug 2019 22:16
control message for bug #36784
(address . control@debbugs.gnu.org)
87k1b2wc7j.fsf@gnu.org
retitle 36784 GnuPG lacks a default pinentry program
quit
B
B
Brice Waegeneire wrote on 20 Mar 2020 17:00
merge 37266 36784
(address . control@debbugs.gnu.org)
e8ff57377c8b7ad8062683ee07881da0@waegenei.re
severity 37266 important
merge 37266 36784
quit
B
B
Brice Waegeneire wrote on 20 Mar 2020 21:36
merge 37266 24076
(address . control@debbugs.gnu.org)
b767d0eb10e4a8c78b1ad74488c636be@waegenei.re
severity 24076 important
merge 37266 24076
quit
A
A
Alexandre Hannud Abdo wrote on 22 Apr 2021 23:43
(address . control@debbugs.gnu.org)
8c9825b8e41f4dcfd9ecd9f0351b3d73eebee325.camel@member.fsf.org
unarchive 24076
-----BEGIN PGP SIGNATURE-----

iF0EABECAB0WIQQ4aRTDkc5D704CYnMQUI+lk7e+bQUCYIHuHAAKCRAQUI+lk7e+
badoAJwJdK4XrqTpviE7KTetMMG2GhOWGwCdG6OE73MnZUfQu32I0Lj8OydxmYo=
=2Z9Z
-----END PGP SIGNATURE-----


?
Your comment

This issue is archived.

To comment on this conversation send an email to 36784@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 36784
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch