Generating compliant certificates only
Closed, ResolvedPublic

justus created this task.Jun 28 2017, 4:06 PM

Is this about the gui not offering e.g. the wrong algorithm or key sizes in the first place? If so, then we have to either hard-code it in kleopatra, or communicate it from gnupg. I guess at this point, we'll have to hard-code it :/

Fwiw, gnupg kind of refuses to create non-conforming keys, but this is rather by accident. It creates the key, and then fails to create the self-signature because the key is not compliant. Only interactive keygeneration actually take the compliance mode into consideration.

I patched Kleopatra only to offer compliant options in the generation dialog. Patch is pending.

justus reassigned this task from justus to aheinecke.Jul 6 2017, 11:57 AM

Actually, Andre has some uncommitted changes that do implement the wanted behavior. AIUI those mainly needs a little fix to so that it wont break with old GPGME versions. Once merged, I will amend it further if necessary.

justus closed this task as Resolved.Jul 11 2017, 12:46 PM

Andre merged this already.