[pkg-gnupg-maint] Bug#840398: Bug#840398: gnupg-agent: Add primary UID as comment in ssh-add -L
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Tue Oct 11 20:54:22 UTC 2016
Control: forwarded 840398 https://bugs.gnupg.org/gnupg/issue2748
Hi Dominik--
On Tue 2016-10-11 04:36:19 -0400, Dominik George wrote:
> When using GPG keys for SSH through gpg-agent, it would be great if,
> instead of "(none)", the primary UID of the main key of the
> authentication key used could be used as comment.
I've forwarded this feature request upstream to https://bugs.gnupg.org/gnupg/issue2748
As i wrote over on the upstream ticket:
I'm aware that this request isn't implementable exactly as requested. For one
thing, some authentication-capable subkeys could be attached to multiple primary
keys, each of which has a different primary User ID. So that corner case makes
the generic solution imperfect.
It looks like these values are stored in the ~/.gnupg/private-keys-v1.d/ in the
"comment" element of the S-key, which is populated when keys arrive in the agent
via ssh-add directly. While users could explicitly add such a comment to
pre-existing private keys, it would be nice to automate this process for
authentication-capable subkeys that the agent already stores and aren't
otherwise bound to multiple primary keys.
hth,
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 930 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20161011/9cf19e41/attachment.sig>
More information about the pkg-gnupg-maint
mailing list