From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 79073139694 for ; Thu, 20 Jul 2017 11:23:26 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 9336F1FC046; Thu, 20 Jul 2017 11:23:21 +0000 (UTC) Received: from smtp.gentoo.org (dev.gentoo.org [IPv6:2001:470:ea4a:1:5054:ff:fec7:86e4]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 48B441FC007 for ; Thu, 20 Jul 2017 11:23:21 +0000 (UTC) Received: from [10.100.0.22] (host-37-191-226-104.lynet.no [37.191.226.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: k_f) by smtp.gentoo.org (Postfix) with ESMTPSA id ECD7E340806 for ; Thu, 20 Jul 2017 11:23:19 +0000 (UTC) Subject: Re: [gentoo-dev] can't gpg sign with repoman, but can with git From: Kristian Fiskerstrand To: gentoo-dev@lists.gentoo.org References: <20170719224357.65daa079368e57f637380fe3@gentoo.org> <1067a22c-5df0-8536-ff99-c55ef3b4bfc3@gentoo.org> <1500500652.32362.9.camel@gentoo.org> <20170720084941.52a0a9f4da604dd2de65fe74@gentoo.org> <91c6cc7d-2e03-4dc9-0c58-c63d049d13d0@gentoo.org> Message-ID: <089c653e-a7a5-b632-ec80-c587a62c0cdc@gentoo.org> Date: Thu, 20 Jul 2017 13:23:14 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@lists.gentoo.org Reply-to: gentoo-dev@lists.gentoo.org MIME-Version: 1.0 In-Reply-To: <91c6cc7d-2e03-4dc9-0c58-c63d049d13d0@gentoo.org> Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="IgDNisEcmvTBSEjX1PocI3DqfepbBTXhe" X-Archives-Salt: 43950fbd-43f6-4dfb-ae2a-de7819e3cc23 X-Archives-Hash: 50c393b6c1a0fe82743a8e49a16c9d5a This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --IgDNisEcmvTBSEjX1PocI3DqfepbBTXhe Content-Type: multipart/mixed; boundary="57gpDqTAR580AJ5x6NLJcTd5TjQInq46S"; protected-headers="v1" From: Kristian Fiskerstrand Reply-To: gentoo-dev@lists.gentoo.org To: gentoo-dev@lists.gentoo.org Message-ID: <089c653e-a7a5-b632-ec80-c587a62c0cdc@gentoo.org> Subject: Re: [gentoo-dev] can't gpg sign with repoman, but can with git References: <20170719224357.65daa079368e57f637380fe3@gentoo.org> <1067a22c-5df0-8536-ff99-c55ef3b4bfc3@gentoo.org> <1500500652.32362.9.camel@gentoo.org> <20170720084941.52a0a9f4da604dd2de65fe74@gentoo.org> <91c6cc7d-2e03-4dc9-0c58-c63d049d13d0@gentoo.org> In-Reply-To: <91c6cc7d-2e03-4dc9-0c58-c63d049d13d0@gentoo.org> --57gpDqTAR580AJ5x6NLJcTd5TjQInq46S Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: quoted-printable On 07/20/2017 10:16 AM, Kristian Fiskerstrand wrote: > What I have noticed with regards to git though, but not had time to > debug is that it seems to do something odd with regards to communicatin= g > with the agent to begin with, and possibly spawns an own agent, at leas= t > sufficiently confusing that for smartcard use it fail to access the car= d > due to locking and needing to re-insert the card.. with similar > mechanism to use it outside of git context again afterwards. And looking into this, the issue is actually a lack of sanitation of the --homedir parameter for gpg-agent, so "$HOME/.gnupg" and "$HOME/.gnupg/" is treated as separate directories and as such two separate agents are started... reported upstream... will be nice to get rid of _that_ annoyan= ce. --=20 Kristian Fiskerstrand OpenPGP keyblock reachable at hkp://pool.sks-keyservers.net fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 --57gpDqTAR580AJ5x6NLJcTd5TjQInq46S-- --IgDNisEcmvTBSEjX1PocI3DqfepbBTXhe Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEEtOrRIMf4mkrqRycHJQt6/tY3nYUFAllwkqMACgkQJQt6/tY3 nYWOOwf+OMaMYxPa9Cod0M7R9T0MrcpgAbNHPTxbjFrzdAFuIRivc1bmst0Jau4M B0VZoyUSViSSLcDDpijXSS9IkbAL/c5zb+oI0piGThlPsL0DHskPrVEY9U/XTsAP eQSWCD1tqwVIkPnB0NyauZlB9wNzyhnl+GOihd7j7ZE9wtISaBdLEzWkW/jaHClO yMZgbLkv369JFuHoiMyDXi49DN4HqWR7+NCJIJjS2FIAe8s/440Yx98QafCrhmcK QzWp8YGIIka30pHSREaHIQ67oe7lZtwXfBhYPVX3dexEmRk5NAfdjYbCqynJOa4S wx7sRHRer75yRlYfUNqfC2pk3JnOsQ== =DFnX -----END PGP SIGNATURE----- --IgDNisEcmvTBSEjX1PocI3DqfepbBTXhe--