From 644785859ac960c0da64016065a800bf660ffbcf Mon Sep 17 00:00:00 2001
From: sommerfeld <sommerfeld@sommerfeld.dev>
Date: Fri, 17 Apr 2026 14:47:34 +0100
Subject: refactor: revert GNUPGHOME to default ~/.gnupg

Drop custom GNUPGHOME=~/.local/share/gnupg which required 6 systemd
socket/service overrides with hardcoded directory hashes. GnuPG
periodically changes its hash algorithm on updates, silently breaking
systemd socket activation and pam-gnupg passphrase presetting.

With default GNUPGHOME, stock systemd units work out of the box.

- Move gpg.conf, gpg-agent.conf, sshcontrol to home/.gnupg/
- Delete all gpg-agent socket/service/dirmngr override dirs
- Remove GNUPGHOME from .zprofile, .pam_environment, pam-gnupg
- Remove GNUPGHOME from vdirsyncer and bridge service overrides
---
 home/.gnupg/gpg.conf | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 home/.gnupg/gpg.conf

(limited to 'home/.gnupg/gpg.conf')

diff --git a/home/.gnupg/gpg.conf b/home/.gnupg/gpg.conf
new file mode 100644
index 0000000..e6672bf
--- /dev/null
+++ b/home/.gnupg/gpg.conf
@@ -0,0 +1,11 @@
+personal-digest-preferences SHA512
+cert-digest-algo SHA512
+default-preference-list SHA512 SHA384 SHA256 SHA224 AES256 AES192 AES CAST5 ZLIB BZIP2 ZIP Uncompressed
+personal-cipher-preferences TWOFISH CAMELLIA256 AES 3DES
+
+keyserver-options auto-key-retrieve
+
+keyid-format 0xlong
+with-fingerprint
+
+default-key B79D F5F3 7D7F 9B0F 3902  38D5 3298 945F 717C 85F8
-- 
cgit v1.2.3-70-g09d2