Daniel Kahn Gillmor <d...@debian.org> writes: > On Mon 2025-01-13 10:53:30 +0100, Simon Josefsson wrote: >> I actually meant missing features. From my recollection it was features >> related to support for some subset of combinations of 25519, gpgsm, >> smartcards and the gpg/ssh agent. Things didn't work in GnuPG 2.2 but >> was fixed years ago in 2.4. > > If you could identify the specific missing feature, i'd love to try to > figure out what's going on there (with either 2.2 or 2.4). A bug report > would be particularly useful. Thanks!
I found one of them: https://dev.gnupg.org/T5931 I didn't test if more recent GnuPG 2.2.x contain a fix for this. From the bug log it doesn't look that way. This happens for all my SSH connections to modern systems, when I work from Debian-based machines and have forgotten to update GnuPG to 2.4.x or apply the workaround that weakens my security. I don't think gpgsm supports creating Ed25519 certificates using hardware tokens in GnuPG 2.2.x? That works in 2.4.x. I must admit again I did not re-check the most recent 2.2.x series. /Simon
signature.asc
Description: PGP signature
