bluca (Luca)
User

Projects

User does not belong to any projects.

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Sunday

  • Clear sailing ahead.

User Details

User Since
Aug 7 2017, 6:53 PM (88 w, 3 d)
Availability
Available

Recent Activity

Oct 6 2017

bluca added a comment to T3416: gpg should select available signing key on card (even with -u option).

Because of policy requirements I have.

Oct 6 2017, 6:43 PM · Feature Request, gnupg

Sep 21 2017

bluca added a comment to T3416: gpg should select available signing key on card (even with -u option).

It is on the same machine, as I mentioned manually deleting ~/.gnupg/private-keys-v1.d/* is a workaround I have to use, but it is not very user friendly.

Sep 21 2017, 1:59 PM · Feature Request, gnupg
bluca added a comment to T3416: gpg should select available signing key on card (even with -u option).

The use case is having 2 different hardware tokens - I have an opengpg card which supports 4096 rsa subkeys, and a yubikey which supports 2048 rsa subkeys. At work I need one, at home the other.

Sep 21 2017, 1:45 PM · Feature Request, gnupg
bluca added a comment to T3416: gpg should select available signing key on card (even with -u option).

Hi, currently to be able to use 2 different cards with 2 different sets of subkeys from the same primary key (home and work) I need to manually delete ~/.gnupg/private-keys-v1.d/* everytime I want to switch from the first card to the second.

Sep 21 2017, 12:14 PM · Feature Request, gnupg
bluca added a comment to T1967: GnuPG should select a key for signing without trying to use missing subkeys.

@gniibe yes, I can reproduce the problem using -u.
But why does picking a UID force the usage of the first known subkey? Is that expected behaviour? Is there a relationship between UIDs and subkeys?

Sep 21 2017, 12:04 AM · gnupg (gpg22), Feature Request

Aug 7 2017

bluca added a comment to T1967: GnuPG should select a key for signing without trying to use missing subkeys.

@gniibe: I've tested 2.1.22 (from Debian experimental) and, while gpg --sign works, other programs (eg: git tag -s) still prompt to insert the card of the first signing subkey, despite the card with the second signing subkey being present.
Is that expected?

Aug 7 2017, 6:58 PM · gnupg (gpg22), Feature Request