From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp11.migadu.com ([2001:41d0:403:4789::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms9.migadu.com with LMTPS id sK0RJ+7VI2XkFwAA9RJhRA:P1 (envelope-from ) for ; Mon, 09 Oct 2023 12:29:02 +0200 Received: from aspmx1.migadu.com ([2001:41d0:403:4789::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp11.migadu.com with LMTPS id sK0RJ+7VI2XkFwAA9RJhRA (envelope-from ) for ; Mon, 09 Oct 2023 12:29:02 +0200 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 4E4A74267F for ; Mon, 9 Oct 2023 12:29:02 +0200 (CEST) Authentication-Results: aspmx1.migadu.com; dkim=pass header.d=gmail.com header.s=20230601 header.b=ieXs8+Z9; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1696847342; h=from:from:sender:sender:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references:list-id:list-help:list-unsubscribe: list-subscribe:list-post:dkim-signature; bh=q7vBR5YjWOj93Jqur6m+DJVS5WJxYusSGyGYRZVNNtI=; b=Niq5BLUdEvglr8tUC9gMYLEimNyPafcSEcAf8H+cgPq99niQ9baF06sNosZ8bm+MMDdS5e Eov8LrJOishHr4HOPer/2Y1Ql08zJZNjCdZsKhDB8qW+q0jUVc011wID6i68+GFGfUo5jj zdUluxyOyUttVF0KNP+M7GZhiLW4XbVOLhNQyLJ91+8cE+H0cvK0QQJ5R/eaLuq0bZ8ak5 2KABe4IzuJfi6yJ5HWiurfcDSOHa+2zOYxiTKEsCCI/Xlz1+ee2fPPvhzBPVFbzhlzEe/D U6B77pnDCO3zKUN6VvysvTpuH5U1YLSQmQGWBV/e19b5cpRV7LMJ3eOgy878eQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=pass header.d=gmail.com header.s=20230601 header.b=ieXs8+Z9; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (aspmx1.migadu.com: domain of "help-guix-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="help-guix-bounces+larch=yhetil.org@gnu.org" ARC-Seal: i=1; s=key1; d=yhetil.org; t=1696847342; a=rsa-sha256; cv=none; b=FYQz6+OpsFFcjl7fx5oZreTmyQYFDOki/t34aSXppfHpbXO4o1A8S4V1izd/CAJCsKv3Pb TT3NhjXubHcP64fdZtTtnfYSv/pp/kNacw2m200UaGkhVQfwhsJr1i/wnklGyImin96vKM Qf1V0oYtDvlG/WHko2+cYFqER37XL2/E0JlbtFXTkTo9ij0GHgUkUOF5dMxkqqJOVaUywL lIi7rXqy/h2VB5UZ8le0X4oS69rS2j5+HmCHNKayJWR2XHfTScr0BYazhTPwJ1vIGZNXW1 3q9xxPi7oyU42J+Dk9vlHgc8pEujlakV1VMTqV3iJ4g9HDfz195nG/ST8S7LYA== Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1qpnUV-0003pW-Dp; Mon, 09 Oct 2023 06:27:59 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qoWqN-00087N-Un for help-guix@gnu.org; Thu, 05 Oct 2023 18:29:19 -0400 Received: from mail-lf1-x132.google.com ([2a00:1450:4864:20::132]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1qoWqL-0001tu-QQ for help-guix@gnu.org; Thu, 05 Oct 2023 18:29:19 -0400 Received: by mail-lf1-x132.google.com with SMTP id 2adb3069b0e04-504a7f9204eso1889462e87.3 for ; Thu, 05 Oct 2023 15:29:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1696544954; x=1697149754; darn=gnu.org; h=mime-version:user-agent:message-id:date:references:in-reply-to :subject:cc:to:from:from:to:cc:subject:date:message-id:reply-to; bh=q7vBR5YjWOj93Jqur6m+DJVS5WJxYusSGyGYRZVNNtI=; b=ieXs8+Z9ffmzMkrWoESRlfwFC4QXbIjTJAgYdcX7MwFb95aI1zCMD2jQCQB+xKuRfL J1PmeZW6GuCNsAWAmXdolpygpJgNMUC48tDog3EhxWcMFxvkQlZmzLNEq/UqQ03J4R9o gDG+2qEXYDDgVPjcBTKBnlyfi6TW4Hg0IDnDkscXEDcS5CaLuyDUyct+UK5iBgHT9E6p XE5EM+BFRSAUYz1Cxkhu0yo3YH9rO8vAyBTjHX04rWv0AmNpHKn+j0UK2R4NK07urd4B Gy6f1WPpZk3hlB0KVIOpk1G9SbuJTw9GO5/gWZuNQk2xZmpa4r0q0rv/bE7xWbftiZGT jrTg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1696544954; x=1697149754; h=mime-version:user-agent:message-id:date:references:in-reply-to :subject:cc:to:from:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=q7vBR5YjWOj93Jqur6m+DJVS5WJxYusSGyGYRZVNNtI=; b=O9jH2V2t7iAunbUgV2Pssfuu0BhA7qj2vgvouSnZ95roRinP0EPb7kH1lqL6mtisQf 4Y1u8WKf12A6oWh/hgds92VYt9vH8+EBjmYY8TUYzK5F3P9qKRdIbFzTlXbfvTd/3I/m BIIXpS0bnx9qTH627VwO41qPPY/4QSOOqAFmUHYlt9ifTbxjU3zgvkQ4/x0JJecRUmOP tJNGEMWOr/X/Rv4WkjnlLrVqrQoPKRp8ibsgtcXkB7av6rGC7RIeu45MUflcjHdzrhsO FesZfQwnoDn50pW67i2C7GPnr0YQjOfgI+sME3Jux8CwwttcJGZRYnOhlOYgrPIICPNh FARw== X-Gm-Message-State: AOJu0YztBC4Pfl0gWsuJ0BhqJQv7UnnV1teh237/+Kj2t/PTgcNZdmw2 TeDlOkOXWr7zYW9iGyyzNfy5niA16Ro= X-Google-Smtp-Source: AGHT+IGlsrwbzzg1i+bt/sLRRWSSsUbFluH8+Q8W/XSiOXqdMkHirof+gkaYCBTjxolQIp8rlqUNfw== X-Received: by 2002:ac2:5f0a:0:b0:503:905:c5a3 with SMTP id 10-20020ac25f0a000000b005030905c5a3mr4929501lfq.35.1696544954264; Thu, 05 Oct 2023 15:29:14 -0700 (PDT) Received: from magi ([176.59.18.247]) by smtp.gmail.com with ESMTPSA id w4-20020ac254a4000000b005057fe45833sm27607lfk.227.2023.10.05.15.29.13 (version=TLS1_2 cipher=ECDHE-ECDSA-CHACHA20-POLY1305 bits=256/256); Thu, 05 Oct 2023 15:29:13 -0700 (PDT) From: Aleksandr Vityazev To: Caleb Herbert Cc: Subject: Re: Guix Home: SSH won't ask for GPG password In-Reply-To: <1696522726.1167@bluehome.net> (Caleb Herbert's message of "Thu, 05 Oct 2023 09:18:49 -0700 (PDT)") References: <1696522726.1167@bluehome.net> Date: Fri, 06 Oct 2023 01:29:12 +0300 Message-ID: <87ttr4og93.fsf@gmail.com> User-Agent: Gnus/5.13 (Gnus v5.13) MIME-Version: 1.0 Content-Type: text/plain Received-SPF: pass client-ip=2a00:1450:4864:20::132; envelope-from=avityazew@gmail.com; helo=mail-lf1-x132.google.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Mailman-Approved-At: Mon, 09 Oct 2023 06:27:52 -0400 X-BeenThere: help-guix@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-guix-bounces+larch=yhetil.org@gnu.org Sender: help-guix-bounces+larch=yhetil.org@gnu.org X-Migadu-Country: US X-Migadu-Flow: FLOW_IN X-Migadu-Queue-Id: 4E4A74267F X-Spam-Score: -8.54 X-Migadu-Spam-Score: -8.54 X-Migadu-Scanner: mx1.migadu.com X-TUID: LbgMfDb9lqll Hi, What does the output of the command: ssh-add -L show? Are the keys represented by the agent? On 2023-10-05, 09:18 -0700, Caleb Herbert wrote: > Guix System. > > In home-configuration.scm: > (service home-gpg-agent-service-type > (home-gpg-agent-configuration > (pinentry-program > (file-append pinentry-gnome3 "/bin/pinentry")) > (ssh-support? #t))) > > caleb@bender ~$ ssh csh@tty.sdf.org > csh@tty.sdf.org's password: > > This shouldn't happen. Pinentry should come up and ask me for my GPG password. > > gpg-agent.conf looks normal. > > caleb@bender ~$ cat /home/caleb/.gnupg/gpg-agent.conf > pinentry-program /gnu/store/6rlqjdc9ginn4gnkwg8mhqwm015phhrm-pinentry-gnome3-1.2.1/bin/pinentry > default-cache-ttl 600 > max-cache-ttl 7200 > default-cache-ttl-ssh 1800 > max-cache-ttl-ssh 7200 > caleb@bender ~$ gpg-agent.conf LGTM, except for the lack of enable-ssh-support. But sheperd runs gpg with the --enable-ssh-support option. -- Best regards, Aleksandr Vityazev