LinuxCommandLibrary

gpgconf

Configure GnuPG components

TLDR

List all components

$ gpgconf --list-components
copy

List the directories used by gpgconf
$ gpgconf [[-L|--list-dirs]]
copy

List all options of a component
$ gpgconf --list-options [component]
copy

List programs and test whether they are runnable
$ gpgconf --check-programs
copy

Reload a component
$ gpgconf --reload [component]
copy

SYNOPSIS

gpgconf [options] command [arguments]

PARAMETERS

--dry-run
[-n]
    Do not make changes; simulate only

--help
[-h]
    Show help summary and exit

--list-configs
[patterns]
    List configuration files used by GnuPG

--list-dirs
[names]
    List special GnuPG directories

--list-options
component
[names]
    List options for given component

--no-verbose
    Reset verbosity to default (0)

--quiet
[-q]
    Suppress non-essential output

--reload
component
    Reload configuration of daemon

--runtime
    For change-options: runtime changes only

--verbose
[-v]
    Increase verbosity (repeat for more)

--version
    Print version information and exit

DESCRIPTION

gpgconf is the centralized utility for inspecting, validating, and controlling the configuration of GnuPG (GNU Privacy Guard) and its components.

It unifies access to settings from multiple files like gpg.conf, scdaemon.conf, dirmngr.conf, and system-wide overrides in /etc/gnupg.

Key capabilities include listing directories (list-dirs), configs (list-configs), components (list-components), and options (list-options); checking configs (check-configs) and options (check-options); modifying options (change-options) with dry-run or runtime-only modes; and daemon control via reload, kill, or launch.

This tool is essential for scripting, automation, troubleshooting, and ensuring consistent setups across user and system configurations.

Components typically include gpg (core), gpg-agent (SSH/PGP agent), scdaemon (smartcard), dirmngr (keyserver), and pinentry (PIN input).

gpgconf promotes best practices by validating options against defaults and schemas before application.

CAVEATS

Avoid root usage; prefer user configs. Runtime changes lost on restart. Not all options support runtime mode.

COMMON COMMANDS

gpgconf --list-dirs lists paths.
gpgconf --reload gpg-agent reloads agent.
gpgconf --change-options gpg-agent log-file socket sets options.

COMPONENTS

gpg, gpg-agent, scdaemon, dirmngr, pinentry, gpgsm (S/MIME)

HISTORY

Introduced experimentally in GnuPG 1.9 (2005); stabilized in GnuPG 2.0 (2006). Evolved with GnuPG 2.x for better daemon control and schema validation.

SEE ALSO

gpg(1), gpg-agent(1), scdaemon(1), dirmngr(1), pinentry(1)

Copied to clipboard