From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp11.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms5.migadu.com with LMTPS id 6AABNAeU02Jz1AAAbAwnHQ (envelope-from ) for ; Sun, 17 Jul 2022 06:45:59 +0200 Received: from aspmx1.migadu.com ([2001:41d0:2:4a6f::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp11.migadu.com with LMTPS id AC7kMweU02LGEQAA9RJhRA (envelope-from ) for ; Sun, 17 Jul 2022 06:45:59 +0200 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 67EA33AD9 for ; Sun, 17 Jul 2022 06:45:59 +0200 (CEST) Received: from localhost ([::1]:35536 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1oCwAI-0006HZ-BS for larch@yhetil.org; Sun, 17 Jul 2022 00:45:58 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:47328) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1oCw9P-0006GS-RT for bug-guix@gnu.org; Sun, 17 Jul 2022 00:45:09 -0400 Received: from debbugs.gnu.org ([209.51.188.43]:48714) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1oCw9O-0003vz-Kg for bug-guix@gnu.org; Sun, 17 Jul 2022 00:45:03 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1oCw9O-0001qK-EM for bug-guix@gnu.org; Sun, 17 Jul 2022 00:45:02 -0400 X-Loop: help-debbugs@gnu.org Subject: bug#54014: guix home pinentry weirdness Resent-From: Zacchaeus Scheffer Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Sun, 17 Jul 2022 04:45:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 54014 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: Andrew Tropin , 54014@debbugs.gnu.org Received: via spool by 54014-submit@debbugs.gnu.org id=B54014.16580330837046 (code B ref 54014); Sun, 17 Jul 2022 04:45:02 +0000 Received: (at 54014) by debbugs.gnu.org; 17 Jul 2022 04:44:43 +0000 Received: from localhost ([127.0.0.1]:46473 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1oCw94-0001pZ-GZ for submit@debbugs.gnu.org; Sun, 17 Jul 2022 00:44:42 -0400 Received: from mail-qv1-f53.google.com ([209.85.219.53]:39465) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1oCw92-0001pN-Cq for 54014@debbugs.gnu.org; Sun, 17 Jul 2022 00:44:41 -0400 Received: by mail-qv1-f53.google.com with SMTP id nd6so6601417qvb.6 for <54014@debbugs.gnu.org>; Sat, 16 Jul 2022 21:44:40 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=Pw92OBVqCd2sMvSPuZRU0if9EbCiGIqjsa8HPut06IM=; b=exk/G00PGvoUdnsvNwsp8T3Zs/M6CNIO3cUDPLWeUqA9yxI33oeGgalAG/xdAeQOpj 8KIQ1BopBOUiqhvNvCzslVExIFteDDRDxBENfzLSFDCNPjPmLhiDXS5nTZUKca3LOIf4 L//DdZaAE49htbnrmYVCAm2jlKc20KODYtTMlqdGLnMctkVG6ogh89CEP1Xq4VtjoEnd 979nT91doCoLgvKITtj+QVAvHFUsQ+m14/druUmQvkmoznJQMiHLAXzRUNpkRx+3Igab A9ymJXHGqQQN6dUE8h6j80KAy07ypZp27rIBQ2mJdbFeFB1avel88rh9/6Yv3d51QU4t HhTw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=Pw92OBVqCd2sMvSPuZRU0if9EbCiGIqjsa8HPut06IM=; b=wGREnAQvqfrzmEl5J6WcPGuMSO3IhluNV9d4681751ybyYs5BIhNhIcCh7mPmqPUB+ GdyxN4NG06rtdS2zsreiRqe8D7vwCI6WywCrSBeOQpymCGSDg6mcfUsObiu4zspGAakB WWqmu9KgdeOnyDbCF0k+yqWdTdD2Qe508WO65liq2dyhCkubGoIxmWf3upV02Y+DXJMY 0U3xkpchw7JM7hAWwHjFIgFHkWiI0SOI2D2GLmP3gCujtW24OHkQDc8/5y7+6IKVd+pF Pk2IwpYNlC1BQU/4o8S5tmGE36DEMHsHIhlsY8JfLOP/xT1cbX9U/ZAgc0mR/uFsc1Dh IZzA== X-Gm-Message-State: AJIora9btoe8s1/B02KdHGNTnvsZdyH+gXUJ6Ei3QZVXOetykcr3StGR nAvhZsZbnVoPerrxuKvegzlS9V7m8g1cooc41jH400aNQzgHnw== X-Google-Smtp-Source: AGRyM1viA8t1El1YY24u0Ysb69cqYZVj/K4neTtaE7813SZDPLQkjYtWC+MycxUko/mncAauyMWHGgYrh0hA9gGrb+U= X-Received: by 2002:ad4:5dcc:0:b0:473:9d1d:a1e with SMTP id m12-20020ad45dcc000000b004739d1d0a1emr14375066qvh.54.1658033074712; Sat, 16 Jul 2022 21:44:34 -0700 (PDT) MIME-Version: 1.0 References: <877d4t5sue.fsf@trop.in> In-Reply-To: <877d4t5sue.fsf@trop.in> From: Zacchaeus Scheffer Date: Sun, 17 Jul 2022 00:44:23 -0400 Message-ID: Content-Type: multipart/alternative; boundary="00000000000071b22605e3f8e862" X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-guix@gnu.org List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+larch=yhetil.org@gnu.org Sender: "bug-Guix" X-Migadu-Flow: FLOW_IN X-Migadu-To: larch@yhetil.org X-Migadu-Country: US ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1658033159; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:resent-cc:resent-from:resent-sender: resent-message-id:in-reply-to:in-reply-to:references:references: list-id:list-help:list-unsubscribe:list-subscribe:list-post: dkim-signature; bh=Pw92OBVqCd2sMvSPuZRU0if9EbCiGIqjsa8HPut06IM=; b=Tvf5nKr42hiKJjX3hecq9IzQhD5MHO2MUaXioU2VgsfwwIlD+3UB5fg1KfGwBMJz87zJfl b3Jn03RVj+cn/5iTtFdvBsPD9sB3DLsIa8iy5OO2A2SAf7NBaXs4xYq5/4cBKW8pdVHkx1 KwfHVY2FHqCdpTc7c5J34Sqj9sTTI4YtdGJNRbo1R5NZtBFKFBiVF+n7kkwKsS2KE3Mnx5 LFjd6dwqYj7ENtcijgP5/vk8dE5KyiWZisonmMMqATt0om4OFpx73vruyfV5VmuqJgv9rN bmXXYtdpB4LIP5eDhgjrPlfMAAY5f5ItOVpAYDP+NctPOEIqAedBqpB48/0Dcg== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1658033159; a=rsa-sha256; cv=none; b=UQteLFOuqtQ8pSWTxCHY8BAPF9l8r2njoGTLcmRG1bGAXLFv8T597W9CMlbNm31E7cHVbS 5npuy1wlAV+tHQN5l9iTJleqgC7vfwIMn66+X/EXVUVAzjgCWu8rzaVfxSZmYNDmKShfr7 3rtL/uDlCpkceJ/PeR1y9NsVqlycRuL0ECS+96dm76JPN1++EH3xV4SOzqb+AT6VISxIhj SzNrvE1wJXLIUNZEI9HAy5P1TECvP+lc+0Fu4kbtg9I9lKc2lI00yRQnKw5IP6xgzhf0gG TpvMqvBv+zITBw4qyKmHrxMzcKntY+Le+BfAquiC6ItNBdsAL8m4bsQJCIRgmQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20210112 header.b="exk/G00P"; dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none); spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org" X-Migadu-Spam-Score: 5.27 Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=gmail.com header.s=20210112 header.b="exk/G00P"; dmarc=fail reason="SPF not aligned (relaxed)" header.from=gmail.com (policy=none); spf=pass (aspmx1.migadu.com: domain of "bug-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="bug-guix-bounces+larch=yhetil.org@gnu.org" X-Migadu-Queue-Id: 67EA33AD9 X-Spam-Score: 5.27 X-Migadu-Scanner: scn0.migadu.com X-TUID: jMu3zIZQznsU --00000000000071b22605e3f8e862 Content-Type: text/plain; charset="UTF-8" On Mon, Jul 4, 2022 at 1:50 AM Andrew Tropin wrote: > On 2022-02-15 13:46, Zacchaeus Scheffer wrote: > > There seems to be some problem installing password-store + pinentry > > entirely via guix home. When I have both installed as such, I get the > > following outputs: > > > > $ pinentry > > OK Pleased to meet you > > > > $ gpg --import ... > > [prompts normally with pinentry, allows me to import] > > $ pass > > [my password entries] > > $ pass [entry name] > > gpg: decryption failed: No secret key > > $ guix package -i pinentry > > $ pass [entry name] > > [prompts with pinentry and works normally] > > > > So pinentry and pass seem to both be available, but don't work together > > unless I install pinentry via guix package. > > I suspect that the problem is that someone at some moment of time > doesn't have ~/.guix-home/profile/bin in its $PATH and thus it can't > find a pinentry. Can you show `which gpg`, `which pass`, `which > pinentry`? > Before running "guix package -i pinentry" $ which -a pinentry /home/zacchae/.guix-home/profile/bin/pinentry $ which -a gpg /home/zacchae/.guix-home/profile/bin/gpg $ which -a pass /home/zacchae/.guix-home/profile/bin/pass After runing "guix package -i pinentry" $ which -a pinentry /home/zacchae/.guix-home/profile/bin/pinentry /home/zacchae/.guix-profile/bin/pinentry $ which -a gpg /home/zacchae/.guix-home/profile/bin/gpg $ which -a pass /home/zacchae/.guix-home/profile/bin/pass I can easily reproduce the behavior by removing or installing pinentry with guix package. Paths behave as expected. The gnupg home service from rde project goes a slightly other way and > just sets pinentry-program to absolute path in the store. Such approach > works with pass well, you can take a look at it for inspiration: > > https://git.sr.ht/~abcdw/rde/tree/master/item/gnu/home-services/gnupg.scm#L127 > I don't totally follow what's going on here, but maybe it will make more sense later. --00000000000071b22605e3f8e862 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
On Mon, Jul 4, 2022 at 1:50 AM Andrew Tro= pin <andrew@trop.in> wrote:
=
On 2022-02-15 13:46, Zacchaeus Scheffer wrote:
> There seems = to be some problem installing password-store + pinentry
> entirely via guix home.=C2=A0 When I have both installed as such, I ge= t the
> following outputs:
>
> $ pinentry
> OK Pleased to meet you
> <C-c>
> $ gpg --import ...
> [prompts normally with pinentry, allows me to import]
> $ pass
> [my password entries]
> $ pass [entry name]
> gpg: decryption failed: No secret key
> $ guix package -i pinentry
> $ pass [entry name]
> [prompts with pinentry and works normally]
>
> So pinentry and pass seem to both be available, but don't work tog= ether
> unless I install pinentry via guix package.

I suspect that the problem is that someone at some moment of time
doesn't have ~/.guix-home/profile/bin in its $PATH and thus it can'= t
find a pinentry.=C2=A0 Can you show `which gpg`, `which pass`, `which
pinentry`?
Before running "guix package -i pinent= ry"
$ which -a pinentry
/home/zacchae/.guix-home/profile/bin/p= inentry
$ which -a gpg
/home/zacchae/.guix-home/profile/bin/gpg
$ = which -a pass
/home/zacchae/.guix-home/profile/bin/pass
After ru= ning=C2=A0"guix package -i pinentry"
$ which -a pinentry
= /home/zacchae/.guix-home/profile/bin/pinentry
/home/zacchae/.guix-profil= e/bin/pinentry
$ which -a gpg
/home/zacchae/.guix-home/profile/bin/gp= g
$ which -a pass
/home/zacchae/.guix-home/profile/bin/pass
= =C2=A0
I can easily reproduce the behavior by removing or install= ing pinentry with guix package.=C2=A0 Paths behave as expected.
<= br>
The gnupg home service from rde project goes a slightly other way and
just sets pinentry-program to absolute path in the store.=C2=A0 Such approa= ch
works with pass well, you can take a look at it for inspiration:
https://git.sr.ht/~abc= dw/rde/tree/master/item/gnu/home-services/gnupg.scm#L127
=C2=A0I don't totally follow what's going on here, but maybe= it will make more sense later.
--00000000000071b22605e3f8e862--