Page MenuHome GnuPG
Create Task
Maniphest T7674

Kleopatra: Restore behavior of RSAKeySizes and PGPKeyType
Testing, NormalPublic
Actions

Description

From rt#35762:
The customer uses the RSAKeySizes and PGPKeyType config options in kleopatrarc to limit the available algorithms during PGP key creation. This regressed when updating, since those options are no longer considered.

RSAKeySizes lists the allowed key sizes. If the option is present, any size not listed is not avaiable. When a value is negative, its absolute value is used as the default value.
PGPKeyType was used to specify whether a key is DSA, Elgamal, or RSA. Any value that is not "DSA+ELG" or "DSA" (notably, this includes the option being set to an empty string) is interpreted as RSA. Since we no longer allow creating dsa/elgamal keys, this means we should select RSA whenever this option is set to anything. (we have other options for setting the default algorithm now, this is just for backwards compatibility)

We also must use the immutability of PGPKeyType to disable the algorithm combo

Details

External Link
https://invent.kde.org/pim/libkleo/-/merge_requests/192

Revisions and Commits

rLIBKLEO Libkleo
rLIBKLEOffb6d4797e3f Use RSAKeySizes and PGPKeyType again
rLIBKLEOaea3e04de950 Use RSAKeySizes and PGPKeyType again
rLIBKLEOac1f1968d940 Use RSAKeySizes and PGPKeyType again
rLIBKLEOf19e18d79ad0 Use RSAKeySizes and PGPKeyType again
rLIBKLEO4d83f3857aca Use RSAKeySizes and PGPKeyType again
rLIBKLEO2f7f7f3ca603 Use RSAKeySizes and PGPKeyType again
rLIBKLEOf4f8f552bf3a Use RSAKeySizes and PGPKeyType again
rLIBKLEO69b2800435a2 Use RSAKeySizes and PGPKeyType again
rLIBKLEO175aa5388736 Use RSAKeySizes and PGPKeyType again
rLIBKLEOe8d136a2353b Use RSAKeySizes and PGPKeyType again
rLIBKLEO8c15d5d837a8 Use RSAKeySizes and PGPKeyType again
rLIBKLEO49cfdf7e3397 Use RSAKeySizes and PGPKeyType again
rLIBKLEO1612060d4ff5 Use RSAKeySizes and PGPKeyType again
rLIBKLEO40792d62153d Use RSAKeySizes and PGPKeyType again
rLIBKLEOcd37cf42a4cd Use RSAKeySizes and PGPKeyType again
rLIBKLEOccbc1e534dda Use RSAKeySizes and PGPKeyType again
rLIBKLEO1909efac8c77 Use RSAKeySizes and PGPKeyType again
rKLEOPATRA Kleopatra
rKLEOPATRA34142fe76560 Use RSAKeySizes and PGPKeyType again
rKLEOPATRAc5ca1be52632 Use RSAKeySizes and PGPKeyType again
rKLEOPATRAd4ff1cd70fc6 Use RSAKeySizes and PGPKeyType again
rKLEOPATRA842668be3e9c Use RSAKeySizes and PGPKeyType again
rKLEOPATRAb33cf45186cb Use RSAKeySizes and PGPKeyType again

Related Objects

Event Timeline

TobiasFella triaged this task as Normal priority.Jun 3 2025, 4:09 PM
TobiasFella created this task.
TobiasFella added a commit: rLIBKLEO1909efac8c77: Use RSAKeySizes and PGPKeyType again.Jun 3 2025, 4:13 PM
TobiasFella set External Link to https://invent.kde.org/pim/libkleo/-/merge_requests/192.Jun 3 2025, 4:13 PM
TobiasFella updated the task description. (Show Details)Jun 4 2025, 10:15 AM
TobiasFella added a commit: rLIBKLEOccbc1e534dda: Use RSAKeySizes and PGPKeyType again.Jun 10 2025, 12:42 PM
TobiasFella added a commit: rLIBKLEOcd37cf42a4cd: Use RSAKeySizes and PGPKeyType again.Jun 10 2025, 3:36 PM
TobiasFella added a commit: rKLEOPATRAb33cf45186cb: Use RSAKeySizes and PGPKeyType again.Jun 10 2025, 3:48 PM
TobiasFella added a commit: rLIBKLEO40792d62153d: Use RSAKeySizes and PGPKeyType again.Jun 10 2025, 3:58 PM
TobiasFella added a commit: rLIBKLEO1612060d4ff5: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 2:19 PM
TobiasFella added a commit: rLIBKLEO49cfdf7e3397: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rLIBKLEO8c15d5d837a8: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rKLEOPATRA842668be3e9c: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 3:19 PM
TobiasFella added a commit: rKLEOPATRAd4ff1cd70fc6: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 3:25 PM
TobiasFella added a commit: rKLEOPATRAc5ca1be52632: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rLIBKLEOe8d136a2353b: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:00 PM
TobiasFella added a commit: rLIBKLEO175aa5388736: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:11 PM
TobiasFella added a commit: rLIBKLEO69b2800435a2: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rLIBKLEOf4f8f552bf3a: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rLIBKLEO2f7f7f3ca603: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:15 PM
TobiasFella added a commit: rLIBKLEO4d83f3857aca: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a commit: rLIBKLEOf19e18d79ad0: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:18 PM
TobiasFella added a commit: rLIBKLEOac1f1968d940: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:48 PM
TobiasFella added a commit: rLIBKLEOaea3e04de950: Use RSAKeySizes and PGPKeyType again.Jun 11 2025, 4:52 PM
TobiasFella added a commit: rKLEOPATRA34142fe76560: Use RSAKeySizes and PGPKeyType again.Jun 12 2025, 2:37 PM
TobiasFella added a commit: rLIBKLEOffb6d4797e3f: Use RSAKeySizes and PGPKeyType again.
TobiasFella added a subscriber: werner.Jun 12 2025, 2:53 PM

The relevant changes have been merged to the gpg4win branches of kleopatra and libkleo. We can start creating a test build

ikloecker added a subscriber: ikloecker.Jun 12 2025, 5:36 PM

I have added the changes/patches to the vsd-3.3-branch of gpg4win

ikloecker changed the task status from Open to Testing.Jun 16 2025, 11:09 AM

Can be tested with next VSD 3.3.x build.

ikloecker moved this task from Backlog to WiP on the vsd33 board.Jun 16 2025, 11:10 AM
ebo mentioned this in T7692: Kleopatra: Add new option for allowed PGPKeyTypes.Jun 16 2025, 12:43 PM