On Wed 2015-06-03 13:30:21 -0400, Moritz Mühlenhoff wrote:
> On Wed, Jun 03, 2015 at 10:03:42AM +0200, Werner Koch wrote:
>> On Wed,  3 Jun 2015 08:05, [email protected] said:
>> 
>> > Thank you.  I think it makes sense.
>> 
>> I don't think so.  GnuPG uses a locking mechanism to avoid that several
>> instances of gpg and friends start gpg-agent.  Thus watching the socket
>> file and starting gpg-agent on a connect attempt won't work too well.
>
> I wasn't aware of the new agent standard socket and the on-demand loading
> you mentioned. I agree that's the better approach than using a systemd
> unit.

Should we mark this bug as wontfix, then, or close it?

>> >> Description=GNU privacy guard password agent
>> >                                 ^^^^^^^^
>> >
>> > This is not accurate description, today.  In modern GnuPG, gpg-agent
>> > basically handles operations for secret keys.
>> 
>> Actually since 1.9 (in 2003) where this has always been required by
>> GnuPG's CMS/X.509 (aka S/MIME) part.
>
> You're right. I took that from the gnupg-agent Debian package description,
> though. We should fix that one as well, then.

Thanks for the nudge here.  2.1.4-2 (just uploaded to experimental) now
contains the following change of description:

>From 5f290cf5daf6801ea6eeece6ffd3346a27a0dddc Mon Sep 17 00:00:00 2001
From: Daniel Kahn Gillmor <[email protected]>
Date: Wed, 3 Jun 2015 14:16:37 -0400
Subject: [PATCH] updated gpg-agent description

---
 debian/control | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/debian/control b/debian/control
index 4dd6864..4b59123 100644
--- a/debian/control
+++ b/debian/control
@@ -42,14 +42,16 @@ Recommends: gnupg2 | gpgsm | gnupg
 Conflicts: newpg
 Replaces: gnupg2 (<< 2.0.18-2), gpgsm (<< 2.0.18-2), newpg
 Breaks: gnupg2 (<< 2.0.18-2), gpgsm (<< 2.0.18-2)
-Description: GNU privacy guard - password agent
+Description: GNU privacy guard - cryptographic agent
  GnuPG is GNU's tool for secure communication and data storage.
  It can be used to encrypt data and to create digital signatures.
  It includes an advanced key management facility and is compliant
  with the proposed OpenPGP Internet standard as described in RFC2440.
  .
- This package contains the agent program gpg-agent which keeps a
- temporary secure storage of your passphrases.
+ This package contains the agent program gpg-agent which handles all
+ secret key material for OpenPGP and S/MIME use.  The agent also
+ provides a passphrase cache, which is used by pre-2.1 versions of
+ GnuPG for OpenPGP operations.
 
 Package: scdaemon
 Architecture: any
-- 
2.1.4

Feel free to suggest any other changes that you think might be worth
including in future versions.

Regards,

        --dkg

Reply via email to