Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-76922

GPG using hardware token does not cache password

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Cannot Reproduce
    • Icon: Minor Minor
    • rhel-10.1
    • rhel-10.0.beta
    • gnupg2
    • None
    • No
    • Low
    • rhel-security-crypto
    • ssg_security
    • 12
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • No
    • None
    • None
    • None
    • Unspecified Release Note Type - Unknown
    • x86_64
    • None

      When using GnuPG (gpg) with Yubikey it asks for password for each single operation.  Prior RHEL releases could cache the password for a certain time (configurable via ~/.gnupg/gpg-agent.conf).

      This is no longer possible to control, making this a huge hurdle in daily life when doing a lot of PGP related operations.

      Some research claims this is related to OpenSC and the pcscd service used by GnuPG.

              jjelen@redhat.com Jakub Jelen
              dsommers David Sommerseth
              Jakub Jelen Jakub Jelen
              Stanislav Zidek Stanislav Zidek
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: