[MERGE] proper gpg-agent support
John Arbash Meinel
john at arbash-meinel.com
Tue Aug 15 02:21:24 BST 2006
Robert Collins wrote:
> On Sun, 2006-08-13 at 10:05 -0500, John Arbash Meinel wrote:
>
> +1 on the merge
>
>> There is also this bug:
>> https://launchpad.net/products/bzr/+bug/44755
>> (gpg agent is not available, so gpg returns an exit code of '2' but
>> technically the request was properly signed because the user supplied
>> their passphrase).
>>
>> Though I think that bug would have to wait until we get gpgme
>> integration. And we may not be able to fix it even then, since we want
>> a
>> configurable gpg command (so that people can use custom agents). And I
>> don't know that gpgme works with generic gpg agent wrappers.
>
> we do two things with gpg:
> - sign
> - verify
>
> I'm pro using james henstridges bindings for gpgme for verification, as
> it gives us the details we need.
Well, last I tried, I couldn't get it to run without segfaulting on
anything but Ubuntu. (It segfaulted on Fedora Core, and Mac OSX, I don't
remember exactly what happened on Windows).
>
> I dont think it makes sense to use gpgme for signing - the library does
> not add value there, and having different signing programs is
> exceedingly useful.
>
> Also note that gpgme forks and execs gpg, so its no more capable of
> dealing with this than we are.
>
> Rob
>
Well, if it could tell the difference between 'agent not available, but
signed anyway' and 'could not sign' that would be a benefit.
But otherwise I agree with you.
John
=:->
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 254 bytes
Desc: OpenPGP digital signature
Url : https://lists.ubuntu.com/archives/bazaar/attachments/20060814/53fd9731/attachment.pgp
More information about the bazaar
mailing list