250709 – KMail: please use KWallet for GPG encryption/signing

Bug 250709 - KMail: please use KWallet for GPG encryption/signing

Summary: KMail: please use KWallet for GPG encryption/signing

Status:	RESOLVED WAITINGFORINFO

Alias:	None

Product:	kmail
Classification:	Applications
Component:	encryption (show other bugs)
Version:	1.13.5
Platform:	Debian unstable Linux

Importance:	NOR wishlist
Target Milestone:	---
Assignee:	kdepim bugs

URL:
Keywords:

Depends on:
Blocks:

Reported:	2010-09-09 22:42 UTC by Jeffrey
Modified:	2012-08-20 11:29 UTC (History)
CC List:	4 users (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Jeffrey 2010-09-09 22:42:36 UTC

Version:           1.13.5 (using KDE 4.4.5) 
OS:                Linux

This is a re-submittal of this bug, which was for KDE 3.x series
https://bugs.kde.org/show_bug.cgi?id=106185

Basically, please don't use Qt pinentry for signing or encrypting emails, but instead please use KWallet which is much more configurable for how long it holds your passphrase, when it is available and is not, etc.

Reproducible: Always

Steps to Reproduce:
Set up a GPG key within KMail
Compose an email and opt to sign it
Send the email and pinentry opens when KWallet could be doing this

Actual Results:  
pinentry opens

Expected Results:  
KWallet provides the passphrase or the user is prompted to open KWallet

This may be fixed when KMail2 comes out in Q4 2010 but if not then this will still be valid.

Thanks for KDE and the KDE-PIM suite of softwares!

Comment 1 Milko Krachounov 2010-12-04 05:12:35 UTC

There's https://bugs.kde.org/show_bug.cgi?id=136205

Comment 2 Thomas Fischer 2011-05-09 10:40:27 UTC

> Expected Results:  
> KWallet provides the passphrase or the user is prompted to open KWallet

I would like to suggest an alternative path here. Instead of making KMail take care of all the password handling and GnuPG communication without pinentry, write a new pinentry application called pinentry-kwallet, which works just like pinentry-qt or pinentry-gtk, but instead of asking the user for a password, it would look into the wallet first.

This approach would have two advantages: First, it does not require any changes in KMail. Second, it would work for all application using gpg+pinentry, such as Thunderbird.

Programming the pinentry-kwallet application should not be too difficult if one starts from pinentry-qt, as Qt already supports dbus which can be used to query the password from KWallet's storage.

Volunteers? ;-)
Maybe make it a junior job ...

Comment 3 Myriam Schweingruber 2012-08-18 08:50:15 UTC

Thank you for your feature request. Kmail1 is currently unmaintained so we are closing all wishes. Please feel free to reopen a feature request for Kmail2 if it has not already been implemented.
Thank you for your understanding.

Comment 4 Luigi Toscano 2012-08-18 23:51:01 UTC

Instead of creating a new feature request, please confirm here if the wishlist is still valid for kmail2

Comment 5 Jeffrey 2012-08-20 11:29:04 UTC

> Instead of creating a new feature request, please confirm here if the wishlist is still valid for kmail2

Sorry, I am unsure; Debian Sid doesn't yet have KMail2.  Can anyone else test this?