https://bugzilla.redhat.com/show_bug.cgi?id=2291065
Bug ID: 2291065 Summary: [RFE] Please include Rust openpgp-card utilities as packages Product: Fedora Version: rawhide OS: Linux Status: NEW Component: Package Review Keywords: RFE Severity: medium Assignee: nobody@fedoraproject.org Reporter: christian@hofstede.de QA Contact: extras-qa@fedoraproject.org CC: package-review@lists.fedoraproject.org Target Milestone: --- Classification: Fedora
Hello,
There are modern implementations of openpgp-card (https://en.wikipedia.org/wiki/OpenPGP_card) supporting tools, written in Rust. They are easy to use, have less moving parts and are licensed as free software (MIT / Apache).
- openpgp-card-tools (https://codeberg.org/openpgp-card) - CLI utility to manage openpgp-cards --> crates.io: https://crates.io/crates/openpgp-card-tools/0.9.4 - openpgp-card-ssh-agent (https://codeberg.org/openpgp-card/ssh-agent) - Lightweight implementation of an ssh-agent to use with openpgp-cards --> crates.io: https://crates.io/crates/openpgp-card-tools - oct-git (https://codeberg.org/openpgp-card/oct-git) - Lightweht tool to sign git commits using an openpgp-card --> crates.io: https://crates.io/crates/openpgp-card-tool-git
Using those tools, it is much easier to use a openpgp-card (or Yubikey/Nitrokey etc) to securely work with them and there are was less moving parts in comparisson to the full gpg suite.
They are already packaged for other modern Linux distributions, but not in the Fedora ecosystem so far. I tried packaging them with rust2rpm for myself and invested two days into that but my technical expertise wasn't enough, to deal with all the rust dependencies that would be necessary.
I'd suggest to have those utilities packaged as Fedora packages to have them included in future releases and give users the option to utilize openpgp crypto cards for secure operations, git signage and ssh-authentication to remote systems.
Regards,
Larvitz
Reproducible: Always