[Gpg4win-users-en] [gpg-agent] Pageant Support Not Working as Expected on Windows 10 x64, Gpg4win 2.2.6
Sijie Bu
tombu at tombu.xyz
Sun Oct 11 03:23:45 CEST 2015
Hello,
I have encountered a problem with Pageant support not behaving as
expected. If I start gpg-agent with the flag '--enable-putty-support',
the gpg-agent will act as Pageant. However, when I try to login with
PuTTY/Plink using a key that is stored on my smart card, I will get the
following message (I am expecting to be prompted to enter my PIN or have
myself signed in directly):
>PS C:\Users\Sijie> plink -ssh -agent -l someuser somehost.tld
>Using username "someuser".
>FATAL ERROR: Disconnected: No supported authentication methods
available (server sent: publickey)
If I kill the gpg-agent and then start the OpenPGP-Card-enabled Pageant
from http://smartcard-auth.de/ssh-en.html, I will get a dialog that
prompts for my PIN. After entering the correct PIN, I will login correctly.
The key I posted for SSH login has this fingerprint:
>72:78:13:a3:ea:b6:c3:17:ea:67:80:fd:84:4e:71:a7
I do not know if there is an error in my configuration or if it is
caused by another reason. I Googled "Gpg4win pagent" but have not found
anything except
http://lists.wald.intevation.org/pipermail/gpg4win-users-en/2013-October/000856.html
which does not have a smart card involved.
The attachments are the information of my smart card with its serial
number blacked out, and the output of gpg-agent with "guru" debug level.
Sincerely,
Sijie
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0xFB52ECF5.asc
Type: application/pgp-keys
Size: 5919 bytes
Desc: not available
URL: <http://lists.wald.intevation.org/pipermail/gpg4win-users-en/attachments/20151010/191b7659/attachment.key>
-------------- next part --------------
Application ID ...: ********
Version ..........: 2.0
Manufacturer .....: Yubico
Serial number ....: ********
Name of cardholder: Sijie Bu
Language prefs ...: zh
Sex ..............: male
URL of public key : https://keybase.io/sijiebu/key.asc
Login data .......: sijiebu
Signature PIN ....: not forced
Key attributes ...: 2048R 2048R 2048R
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 3 3
Signature counter : 93
Signature key ....: 7D3C E592 1BDC 8196 5A50 AA71 E86B 4196 FB52 ECF5
created ....: 2015-09-25 20:06:41
Encryption key....: 7A37 C6FD 878B 33E3 7DF7 6D13 0F83 A50B E8B1 2ABD
created ....: 2015-09-25 19:53:14
Authentication key: E4BE 6390 A3FB EC00 2679 A379 46AB 049B 9278 04BE
created ....: 2015-09-25 19:53:14
General key info..:
pub 2048R/FB52ECF5 2015-09-25 Sijie Bu <sijiebu at keybase.io>
sec> 2048R/FB52ECF5 created: 2015-09-25 expires: never
card-no: 0006 03647399
ssb 2048R/8C6A1264 created: 2015-09-25 expires: never
-------------- next part --------------
PS C:\Users\Sijie> & 'C:\Program Files (x86)\GNU\GnuPG\gpg-agent.exe' --enable-putty-support --daemon
gpg-agent[12860]: enabled debug flags: command mpi crypto memory cache memstat hashing assuan
gpg-agent[12860]: listening on socket `C:\Users\Sijie\AppData\Roaming\gnupg\S.gpg-agent'
gpg-agent[12860]: listening on socket `C:\Users\Sijie\AppData\Roaming\gnupg\S.gpg-agent.ssh'
set GPG_AGENT_INFO=C:\Users\Sijie\AppData\Roaming\gnupg\S.gpg-agent;12860;1
gpg-agent[12860]: gpg-agent (GnuPG) 2.0.29 started
gpg-agent[12860]: DBG: returning notify handle 0000033C
gpg-agent[12860]: putty message loop thread 0x2250 started
gpg-agent[12860]: DBG: ssh map file 'PageantRequest0000352c'
gpg-agent[12860]: DBG: ssh map handle 000003A4
gpg-agent[12860]: DBG: my sid: 'S-1-5-21-2337868691-2369483368-1955581446-1000'
gpg-agent[12860]: DBG: ssh map file sid: 'S-1-5-21-2337868691-2369483368-1955581446-1000'
gpg-agent[12860]: DBG: ssh IPC buffer at 02670000
gpg-agent[12860]: ssh request handler for request_identities (11) started
gpg-agent[12860]: no running SCdaemon - starting it
gpg-agent[12860]: chan_000003B8 <- OK GNU Privacy Guard's Smartcard server ready
gpg-agent[12860]: DBG: first connection to SCdaemon established
gpg-agent[12860]: chan_000003B8 -> GETINFO socket_name
gpg-agent[12860]: chan_000003B8 <- D C:\Users\Sijie\AppData\Roaming\gnupg\S.scdaemon
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: DBG: additional connections at `C:\Users\Sijie\AppData\Roaming\gnupg\S.scdaemon'
gpg-agent[12860]: DBG: returning notify handle 0000033C
gpg-agent[12860]: chan_000003B8 -> OPTION event-signal=33c
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: chan_000003B8 -> GETATTR $AUTHKEYID
gpg-agent[12860]: SIGUSR2 received - updating card event counter
gpg-agent[12860]: chan_000003B8 <- S $AUTHKEYID OPENPGP.3
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: chan_000003B8 -> GETATTR SERIALNO
gpg-agent[12860]: chan_000003B8 <- S SERIALNO D2760001240102000006036473990000
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: chan_000003B8 -> READKEY OPENPGP.3
gpg-agent[12860]: chan_000003B8 <- [ 44 20 28 31 30 3a 70 75 62 6c 69 63 2d 6b 65 79 ...(286 byte(s) skipped) ]
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: chan_000003B8 -> GETATTR $DISPSERIALNO
gpg-agent[12860]: chan_000003B8 <- S $DISPSERIALNO 000603647399
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: ssh request handler for request_identities (11) ready
gpg-agent[12860]: chan_000003B8 -> RESTART
gpg-agent[12860]: chan_000003B8 <- OK
gpg-agent[12860]: handler 0x2e44 for fd 1020 started
gpg-agent[12860]: chan_000003FC -> OK Pleased to meet you
gpg-agent[12860]: chan_00000408 <- OK Pleased to meet you
gpg-agent[12860]: chan_00000408 -> GETINFO pid
gpg-agent[12860]: chan_000003FC <- GETINFO pid
gpg-agent[12860]: chan_000003FC -> D 12860
gpg-agent[12860]: chan_00000408 <- D 12860
gpg-agent[12860]: chan_000003FC -> OK
gpg-agent[12860]: chan_00000408 <- OK
gpg-agent[12860]: chan_00000408 -> BYE
gpg-agent[12860]: chan_000003FC <- BYE
gpg-agent[12860]: chan_000003FC -> OK closing connection
gpg-agent[12860]: handler 0x2e44 for fd 1020 terminated
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://lists.wald.intevation.org/pipermail/gpg4win-users-en/attachments/20151010/191b7659/attachment.sig>
More information about the Gpg4win-users-en
mailing list