Bug 1464805

Summary: Adding PGP sub-keys times out
Product: [Community] Bugzilla Reporter: Jeff Fearn 🐞 <jfearn>
Component: ExtensionsAssignee: Jeff Fearn 🐞 <jfearn>
Extensions sub component: SecureMail QA Contact: tools-bugs <tools-bugs>
Status: CLOSED NEXTRELEASE Docs Contact:
Severity: unspecified    
Priority: unspecified CC: vdanen
Version: 5.0   
Target Milestone: 5.0   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: 5.0.3-rh31 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-07-14 03:08:07 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jeff Fearn 🐞 2017-06-25 22:54:08 UTC
Description of problem:
It's been reported that adding 4K PGP keys to the beta can time out the UI. The key appears to be added but the test email might not be sent. User can;t cofrim as email out is disabled on beta.

Comment 1 Jeff Fearn 🐞 2017-07-02 00:54:47 UTC
This appears to be related to sub-keys not key size.

When sub-keys are being used incorrect keys are being chosen. It appears the first sub-key is always selected, it should select the sub-key that:

1: matches the email address
2: is marked for encryption
3: has the longest expiry time*

In version 4 keys some of that data is kept in the signatures following the certificate.

* review this, IIRC there is a way in the key to set preferred certs, if set then the preferred encryption cert should be selected.

Comment 2 Jeff Fearn 🐞 2017-07-13 01:56:49 UTC
gpg dir creation can fail unless gpg_home_dir is a full path