#721 new
Luke Le

pinentry-mac fails to retrieve/store passphrase on macOS Mojave under some circumstances

Reported by Luke Le | January 7th, 2019 @ 02:42 PM | in 2.2.12

Under unknown circumstances pinentry-mac fails to properly retrieve or store a GPG passphrase from macOS Keychain on macOS Mojave.

The problem is that the parts of the system believe that the keychain is unlocked, when trying to access keychain data however, an error auth failed is returned - error code -25293. This particular error code translates to "The user name or passphrase you entered is not correct." (https://opensource.apple.com/source/libsecurity_keychain/libsecurit...)

UPDATE: This might be related to pinentry-mac being modified for example by installing GPG Suite again which should replace pinentry-mac but might not do it properly, as described in the link below:
https://stackoverflow.com/questions/40638218/mac-launch-daemon-unab...

Workaround: Manually lock and unlock the login keychain

Workaround in pinentry: pinentry could tell the user that it's not possible to store the keychain since the keychain appears to be locked and prompt the user to enter their password by running SecKeychainUnlock and re-trying the retrieve/store operation afterwards.

No comments found

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Shared Ticket Bins

People watching this ticket

Pages