Page MenuHome GnuPG
Create Task
Maniphest T5968

Kleopatra: p15 widget for S/MIME cards
Testing, NormalPublic
Actions

Description

Both the RSCS and the Genua Smarcards can have S/MIME certificates on them which are usable for mail encryption and signing. Currently we only display OpenPGP key information which in the case of the Genua Smartcards is wrong.

We probably need a way to mix in the netkey widget into the p15 widget with the tools for generating an openpgp key for an S/MIME key and to show the S/MIME keys.

For the RSCS Smartcards we should be able to detect usable certificates depending on the usage of the certificate and if it is not ignored by GPGSM.

In the GnuPG VS-Desktop configuration we ignore:

ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.1
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.2
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.3
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.4
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.1
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.5
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.6
ignore-cert-with-oid 1.3.6.1.4.1.311.20.2.2

Related Objects

Event Timeline

aheinecke triaged this task as Normal priority.May 9 2022, 10:45 AM
aheinecke created this task.
ikloecker changed the task status from Open to Testing.Jun 12 2024, 1:58 PM
ikloecker claimed this task.
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a subscriber: ikloecker.

Works for me for a dark blue (R&S) smart card and a Genua smart card. See T6847: Kleopatra: Show S/MIME certs for PKCS#15 cards in smart card view.