Re: gnome-keyring gpg

From: Stef Walter <stefw gnome org>
To: "Neal H. Walfield" <neal walfield org>, gnome-keyring-list gnome org
Subject: Re: gnome-keyring gpg
Date: Thu, 07 May 2015 14:58:54 +0200

On 06.05.2015 21:40, Neal H. Walfield wrote:

Hi,

I'm implementing the password caching feature in gpg's pinentry so
that we can remove the gpg-agent proxy from gnome keyring.

I've spent some time looking at Gnome Keyring and I'm a bit confused
about why Gnome Keyring is using gck to cache the password and not
libsecret.  Any insight here would be appreciated.

Also, if we want to continue to use the cached passwords, we need a
migration strategy.  When GPG Agent invokes the pinentry, it now
provides a unique, stable ID.  However, this ID is not the key id.
Thoughts?


For anyone following along...

After talking about this on IRC, Neal and I agreed that there doesn't
seem to be a way to continue to use old cached passwords, at least not
easily.

The keyid provided to the old gpg-agent != the keygrip provided to the
pinentry.

Cheers,

Stef

Follow-Ups:
- Re: gnome-keyring gpg: protocol
  - From: Neal H. Walfield

References:
- gnome-keyring gpg
  - From: Neal H. Walfield

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]