-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
macOS support for GPG #132
Milestone
Comments
Open
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Change default sockets file paths
There is a problem where the
gpg-agent
is not able to create the socket files within the~/.gnupg
folder that is symlinked to the gocryptfs container to securely (encrypted) store the GPG keys:This might be caused by either the macOS filesystem (APFS) that doesn't support the creation of sockets (it works fine on other Arch Linux hosts like
igloo
) or by restrictions due to read/write permissions that are not passed through.One solution/workaround it to change the default absolute file paths of the socket files:
S.gpg-agent
andS.gpg-agent.ssh
file manually in the$GNUPGPHOME
folder (defaults to~/.gnupg
).extra-socket
andbrowser-socket
options in thegpg-agent.conf
file with the desired paths.NOTE: The created
S.gpg-agent
andS.gpg-agent.ssh
files allow to use values of environment variables via string interpolation, e.g.${HOME}
.S.gpg-agent
S.gpg-agent.ssh
gpg-agent.conf
NOTE: It is important to make sure that the target folder exists and the permissions are set to
700
!chmod 700 ~/path/to/target/folder
See the references for more details.
Set pinentry tool
Set the
pinentry-programm
option in thegpg-agent.conf
file to use pinentry-mac. Note that this requires the Homebrew formula pinentry-mac to be installed!References
The text was updated successfully, but these errors were encountered: