[guardian-dev] Format of exported subkeys from gnupg

Abel Luck abel at guardianproject.info
Fri Aug 3 19:28:16 CEST 2012


Daniel Kahn Gillmor:
> On 08/03/2012 12:19 PM, Abel Luck wrote:
>> 1. Implement all possible ciphers in my library, ask the user for their
>> key and decrypt
> 
> please don't re-implement the ciphers.  there are plenty of libraries
> that do that for you :)  If you're using C, libgcrypt and libnettle are
> both good options.

Of course I didn't mean re-implement the ciphers themselves, sorry I was
unclear. I meant "implement them" by pulling in other libraries as you
suggested.  :D

>> 2. Only support plaintext exported keys, decryption is handled by GnuPG
>> during export.
> 
> this is simpler, true. :)
> 
>> Thus the question is: how can I --export-secret-subkeys with
>> unprotected/plaintext secret key values?
> 
> i think you want something like:
> 
>  --export-options export-reset-subkey-passwd,export-minimal

Perfect :) Thanks for this dkg. I'm 95% of the way there now.


~abel

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 630 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20120803/e56b2ccc/attachment.pgp>


More information about the Gnupg-devel mailing list