Page MenuHome GnuPG

Kleopatra: p15 widget for S/MIME cards
Closed, ResolvedPublic

Description

Both the RSCS and the Genua Smarcards can have S/MIME certificates on them which are usable for mail encryption and signing. Currently we only display OpenPGP key information which in the case of the Genua Smartcards is wrong.

We probably need a way to mix in the netkey widget into the p15 widget with the tools for generating an openpgp key for an S/MIME key and to show the S/MIME keys.

For the RSCS Smartcards we should be able to detect usable certificates depending on the usage of the certificate and if it is not ignored by GPGSM.

In the GnuPG VS-Desktop configuration we ignore:

ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.1
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.2
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.3
ignore-cert-with-oid 1.3.6.1.4.1.11591.2.6.4
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.1
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.5
ignore-cert-with-oid 1.3.6.1.4.1.30205.13.1.6
ignore-cert-with-oid 1.3.6.1.4.1.311.20.2.2

Event Timeline

aheinecke created this task.
ikloecker changed the task status from Open to Testing.Jun 12 2024, 1:58 PM
ikloecker claimed this task.
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a subscriber: ikloecker.

Works for me for a dark blue (R&S) smart card and a Genua smart card. See T6847: Kleopatra: Show S/MIME certs for PKCS#15 cards in smart card view.

ebo moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ebo added a subscriber: ebo.

Gpg4win-Beta-75++

The certificates are shown