Bug#623539: Takes over GPG and SSH agents from gnupg-agent and ssh-agent

Wed Aug 9 18:30:40 UTC 2017

Dear all,

I came across this issue after an update of the 8 series (jessie) with
backports. Seems to be introduced there (or maybe it was already present
and popped back up, I vaguely remember something in the past).

Most annoying is that none of the proposed solutions work. I'm usign the
MATE desktop, and somehow, although I completely removed the
/etc/xdg/autostart/gnome-keyring-gpg.desktop and -ssh equivalent, also
in the ~/.config folder, even while adding the --disable-gpg-agent to
the remaining gnome-keyring files, gnome-keyring keeps interfering. And
stubbornly loads the gpg and ssh parts.

remaining entries have the end of the file now as follows:
-----
Exec=/usr/bin/gnome-keyring-daemon --start --components=secrets
--disable-gpg-agent
OnlyShowIn=GNOME;Unity;MATE;
X-GNOME-Autostart-Phase=Initialization
X-GNOME-AutoRestart=false
X-GNOME-Autostart-Notify=true
X-GNOME-Bugzilla-Bugzilla=GNOME
X-GNOME-Bugzilla-Product=gnome-keyring
X-GNOME-Bugzilla-Component=general
X-GNOME-Bugzilla-Version=3.14.0
-----

GnuPG v 2.0.26-6+deb8u
gnome-keyring 3.14.0-1+b1
pinentry-gtk2 0.9.7-5~bpo8+1

Although the help option of gnome-keyring-daemon shows that the gpg and
ssh parts are optional, they simply load during session start (gdm3 as
display manager). I could not find any other places where the
gnome-keyring-daemon is configured, any hints are welcome.

-----
Solution (not very handy though):
$ killall gnome-keyring-daemon

after the gnome-keyring has been killed pinentry takes over in
thunderbird + gnupg.

Best regards,

Tjeerd

On Fri, 11 Mar 2016 23:19:48 +0100 Luca Capello <luca at pca.it> wrote:
> block 623539 by 773304
> block 623539 by 760102
> affects 623539 + gnupg-agent
> affects 623539 + libpam-ssh
> user luca.capello at infomaniak.com
> usertag 623539 + infomaniak.com-authentication
> thanks
> 
> Hi there!
> 
> On Fri, 22 Apr 2011 17:02:45 -0700, Josh Triplett wrote:
> > retitle 623539 Takes over GPG and SSH agents from gnupg-agent and ssh-agent
> 
> At least the GnuPG part of this bug has been fixed:
> 
> - upstream[1][2][3] since gnome-keyring_3.17.4 together with
>   pinentry_0.9.5 and gnupg_2.1.6
> 
> - in Debian[4] since gnome-keyring_3.16.0-3
> 
> [1] <https://bugs.debian.org/773304>
> [2] <https://bugzilla.gnome.org/show_bug.cgi?id=644415#c10>
> [3] <https://mail.gnome.org/archives/distributor-list/2015-August/msg00000.html>
> [4] <https://bugs.debian.org/760102>
> 
> This means that the bug should already been fixed in stretch
> (gnome-keyring_3.18.3-1, pinentry_0.9.7-5 and gnupg_2.1.11-6).
> 
> For jessie, you still need to avoid gnome-keyring-gpg and -ssh startup
> as explained in the README.Debian, either with 'Hidden=true' as
> explained on Simon Josefsson's blog[5] or, better, with (works on Ubuntu
> 14.04 as well, gnome-keyring_3.10.1-1ubuntu4):
> =====
> $ mkdir -p ~/.config/autostart
> $ echo 'X-GNOME-Autostart-enabled=false' \
>   | cat /etc/xdg/autostart/gnome-keyring-gpg.desktop - \
>   >>~/.config/autostart/gnome-keyring-gpg.desktop
> $ echo 'X-GNOME-Autostart-enabled=false' \
>   | cat /etc/xdg/autostart/gnome-keyring-ssh.desktop - \
>   >>~/.config/autostart/gnome-keyring-ssh.desktop
> =====
> 
> [5] <https://blog.josefsson.org/2015/01/02/openpgp-smartcards-and-gnome/>
> 
> Thx, bye,
> Gismo / Luca

-- 
graag antwoord via: t.j.pinkert at alumnus.utwente.nl

T.J.Pinkert
---------------
Wij zijn per 1 april 2017 naar Duitsland verhuisd.
Omdat we eerst tijdelijk wonen de post graag naar:

Tjeerd Pinkert
Stegerensallee 43
7701 PK Dedemsvaart
The Netherlands

Ons nieuwe tijdelijke adres is (achternaam vermelden!):
Tjeerd Pinkert
Rheinring 4b
38120 Braunschweig
Germany

telefoonnummers:
vast: +49 531 50835195 (voorkeur)
mob: +49 1 5901154868 (voorkeur)
mob: +31 6 41924439

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 246 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnome-maintainers/attachments/20170809/7130cb46/attachment.sig>