On 02/13/2013 09:07 PM, Agostino Sarubbo wrote: > As most of us do, I do the commit from another machine, not mine. So, for ssh > I'm using ssh -A to forward the key and I'm interested to find a way to do it > for the gpg key. > > I found an how-to that uses socat ( http://superuser.com/questions/161973/how- > can-i-forward-a-gpg-key-via-ssh-agent ) but does not work as expected.
GPG agents do not transport keys, just passphrases. I once used a patch against openssh to enable forwarding of domain sockets, it applies to current 6.1_p1. http://www.25thandclement.com/~william/projects/streamlocal.html Maybe we should add this to our openssh version, I'd appreciate it. > This is an example: http://sources.gentoo.org/cgi-bin/viewvc.cgi/gentoo- > x86/app-portage/splat/Manifest?revision=1.45&view=markup > > The manifest apparently is signed, but there is no really gpg sign. look closely to the output of repoman commit, there is a small "gpg failed" or somethink like that. -- Michael Weber Gentoo Developer web: https://xmw.de/ mailto: Michael Weber <x...@gentoo.org>
