Launchpad cannot handle ECC or Ed25519 OpenPGP keys
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Fix Released
|
High
|
Colin Watson |
Bug Description
for my dkg0 account, i'm trying to upload my current OpenPGP key, which is an ed25519 key:
pub ed25519 2019-01-19 [C] [expires: 2021-01-18]
C4BC2DDB3
uid [ultimate] Daniel Kahn Gillmor <email address hidden>
uid [ultimate] Daniel Kahn Gillmor <email address hidden>
sub ed25519 2019-01-19 [S] [expires: 2020-01-19]
sub ed25519 2019-01-19 [A] [expires: 2020-01-19]
sub cv25519 2019-01-19 [E] [expires: 2020-01-19]
when i try to do that i get the following error:
------------
Launchpad could not import your OpenPGP key
Did you enter your complete fingerprint correctly? (Help with fingerprints)
Is your key in the Ubuntu keyserver yet? You may have to wait between ten minutes (if you pushed directly to the Ubuntu key server) and one hour (if you pushed your key to another server). (Help with publishing keys)
------------
however, the key is in the ubuntu keyserver: https:/
I notice that messages from launchpad related to other RSA keys include an OpenPGP Comment field that indicates that it is using GnuPG v1, which doesn't support elliptic curve keys at all. So it's possible that this is the problem. Launchpad should be using a modern version of GnuPG, though.
Related branches
- Ines Almeida: Approve
-
Diff: 266 lines (+48/-79)8 files modifiedlib/lp/registry/model/gpgkey.py (+6/-2)
lib/lp/registry/templates/person-editpgpkeys.pt (+1/-5)
lib/lp/services/gpg/handler.py (+2/-1)
lib/lp/services/gpg/interfaces.py (+31/-60)
lib/lp/services/gpg/tests/test_gpghandler.py (+3/-2)
lib/lp/services/verification/model/logintoken.py (+2/-2)
lib/lp/soyuz/browser/tests/test_personal_archive_subscription.py (+2/-2)
lib/lp/soyuz/model/archive.py (+1/-5)
- Guruprasad: Approve
- Jürgen Gmach: Approve
-
Diff: 130 lines (+68/-10)5 files modifiedlib/lp/registry/templates/person-editpgpkeys.pt (+6/-0)
lib/lp/services/gpg/interfaces.py (+24/-4)
lib/lp/services/gpg/tests/test_gpghandler.py (+6/-6)
lib/lp/testing/gpgkeys/data/foo.bar@canonical.com-nistp256.pub (+14/-0)
lib/lp/testing/gpgkeys/data/foo.bar@canonical.com-nistp256.sec (+18/-0)
- Colin Watson (community): Approve
-
Diff: 289 lines (+54/-67)8 files modifiedlib/lp/registry/templates/person-editpgpkeys.pt (+0/-7)
lib/lp/services/gpg/doc/gpg-encryption.rst (+1/-0)
lib/lp/services/gpg/doc/gpg-signatures.rst (+1/-1)
lib/lp/services/gpg/doc/gpghandler.rst (+3/-12)
lib/lp/services/gpg/handler.py (+36/-8)
lib/lp/services/gpg/interfaces.py (+4/-11)
lib/lp/soyuz/tests/fakepackager.py (+2/-1)
lib/lp/testing/gpgkeys/data/test@canonical.com.pub (+7/-27)
- Ioana Lasc (community): Approve
-
Diff: 18 lines (+7/-0)1 file modifiedlib/lp/registry/templates/person-editpgpkeys.pt (+7/-0)
Changed in launchpad: | |
status: | New → Confirmed |
Changed in launchpad: | |
assignee: | nobody → Guruprasad (lgp171188) |
status: | Triaged → In Progress |
Changed in launchpad: | |
status: | In Progress → Invalid |
Changed in launchpad: | |
status: | Invalid → In Progress |
Changed in launchpad: | |
assignee: | Guruprasad (lgp171188) → Colin Watson (cjwatson) |
over on https:/ /answers. launchpad. net/launchpad/ +question/ 680583 @cjwatson wrote:
> This is indeed because we're using GnuPG v1. I tried to upgrade to a modern version a while ago but I /bugs.debian. org/840669). I would like to have
> ran into a huge slew of test failures, mainly because of the same sorts of things that Ian Jackson has
> been complaining about for some time (e.g. https:/
> another go at some point, but it may take a while.