Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

pass: docker login does not work after rotating gpg key #299

Open
nicks opened this issue Oct 16, 2023 · 2 comments
Open

pass: docker login does not work after rotating gpg key #299

nicks opened this issue Oct 16, 2023 · 2 comments

Comments

@nicks
Copy link
Contributor

nicks commented Oct 16, 2023
edited

Repro steps:

  • Store a login cred:
aws ecr get-login-password --region us-east-1 | docker login --username AWS --password-stdin 123456789.dkr.ecr.us-east-1.amazonaws.com
  • Rotate your gpg key
  • Re-store the login cred with the same command as step 1

Expected result:
The creds are stored successfully

Actual result:
The old credentials can't be decrypted, so the credential helper fails with gpg: decryption failed: No secret key
@nicks
Copy link
Contributor Author

nicks commented Oct 16, 2023

Note that there are other issues with this error message - e.g., #118

but it wasn't clear to me if they're the same issue

@nicks
Copy link
Contributor Author

nicks commented Oct 16, 2023
edited

i actually think this is kind of an interop issue between docker-credential-helpers and DD, where DD is assuming that if the credential has a decryption error, it means the credential store is corrupted somehow, and so prevents the Store()

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@nicks