Page MenuHome GnuPG
Create Task
Maniphest T5672

Kleopatra: Improve Kleopatras detection of keyservers
Closed, ResolvedPublic
Actions

Description

Kleopatra seems to use the "keyserver" entry from gpg.conf to enable
the automatic key lookup via fingerprint from a smartcard. Thus if
the keyserver is only defined in dirmngr.conf this auto key fetch does
not work. It is a bit surprising given that the standard keyserver
lookup works anyway.

Suggestion: Check the keyserver option from gpg.conf and from
dirmngr.conf and enable the auto key fetch if either of them exists.

Details

Version
3.1.19

Revisions and Commits

rLIBKLEO Libkleo
rLIBKLEO5a5185493187 Add helper for checking if X.509 directory servers are configured
rLIBKLEOc891fe0adde2 Add convenience helper for getting url list crypto config entry
rLIBKLEOf9cc52bb1c08 Add helper returning the configured keyserver
rKLEOPATRA Kleopatra
rKLEOPATRA9121c3fdea00 Use improved helper from libkleo to check for directory servers
rKLEOPATRA1e45d02a23fd Use keyserver() helper to check for configured LDAP keyserver

Event Timeline

werner triaged this task as High priority.Oct 27 2021, 4:18 PM
werner created this task.
werner created this object with edit policy "Contributor (Project)".
werner updated the task description. (Show Details)Oct 27 2021, 4:21 PM
werner added a project: scd.
ikloecker added a project: Restricted Project.Oct 28 2021, 10:07 AM
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a commit: rLIBKLEOc891fe0adde2: Add convenience helper for getting url list crypto config entry.Oct 28 2021, 12:24 PM
ikloecker added a commit: rLIBKLEOf9cc52bb1c08: Add helper returning the configured keyserver.
ikloecker added a commit: rLIBKLEO5a5185493187: Add helper for checking if X.509 directory servers are configured.
ikloecker added a commit: rKLEOPATRA1e45d02a23fd: Use keyserver() helper to check for configured LDAP keyserver.Oct 28 2021, 12:32 PM
ikloecker added a commit: rKLEOPATRA9121c3fdea00: Use improved helper from libkleo to check for directory servers.
ikloecker changed the task status from Open to Testing.Oct 28 2021, 2:55 PM
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a subscriber: ikloecker.

Kleopatra now checks both keyserver options. Previously, Kleopatra checked only one of them depending on the version of gpg (< 2.3.0 vs. >= 2.3.0). Note that the automatic lookup is only done if the keyserver option specifies an LDAP server, i.e. if it starts with "ldap".

thesamesam added a subscriber: thesamesam.Oct 29 2021, 7:56 PM
ikloecker renamed this task from Improve Kleopatras detection of keyservers to Kleopatra: Improve Kleopatras detection of keyservers.Dec 5 2022, 8:40 AM
ebo closed this task as Resolved.Mar 15 2023, 3:45 PM
ebo claimed this task.
ebo added a subscriber: ebo.

works. tested with VSD 3.1.26 (gpg 2.2.41) and keyserver entry in dirmngr.conf only.

ebo moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Apr 5 2023, 2:06 PM