Open nemscep opened 2 years ago
Hi @nemscep I get the feeling that maybe pinentry-touchid
is not falling back to pinentry-mac. Can you check the output of:
$ /usr/local/bin/pinentry-touchid -check
and also include the log content of $TMPDIR/pinentry-touchid.log
?
I'm seeing this behavior too.
➜ ~ echo "1234" | gpg -as -
gpg: signing failed: No passphrase given
-----BEGIN PGP MESSAGE-----
gpg: signing failed: No passphrase given
➜ ~ pinentry-touchid -check
✅ /opt/homebrew/Cellar/pinentry-mac/1.1.1.1/bin/pinentry-mac will be used as a fallback PIN program
Also fails if I select "use password". Log just shows:
➜ ~ cat $TMPDIR/pinentry-touchid.log
2023/02/07 23:26:18 main.go:118: Ready!
Same config and results as ☝️
I'm also seeing this on MacOS Ventura on an M2. It's not a new key, and the only log messages I ever get are "main.go:118: Ready!" (aside from one "main.go:348: Failed to authenticate" when I clicked the "use password" button once).
Is there some way to enable more debugging? It's not even clear the problem is in pinentry-touchid
to me.
Some other random observations:
pinentry-touchid
and pinentry-mac
as applications allowed to access itpinentry-
applications listed)OK...while looking at my gpg-agent.conf
I noticed I had put two lines in there while futzing around with easypg:
allow-emacs-pinentry
allow-loopback-pinentry
after commenting out both then running gpgconf --kill gpg-agent
, then attempting to echo 1234 | gpg -as -
things actually work - pinentry-touchid
pops up a thing, I touch the sensor, signature works without error. No idea if this is some bizarre quirk of my system or a bug in something but maybe it helps y'all.
Description
I managed to configure
pinentry-mac
to work nicely, but when I try to switch topinentry-touchid
I am unable to find a proper way of solving this problem. After I follow the steps provided after installation, I keep getting the following error message:Simplest test to reproduce:
echo "test" | gpg -vvv --clearsign
I have generated keys which have passphrases of course, but now I am unsure how to provide these passphrases to the pinentry.
System information
macOS
GPG
gpg (GnuPG) 2.3.6
Configuration
Logs