public
/
keyfork
5
0
Fork 0
Code Issues 25 Pull Requests 2 Packages Projects Releases Wiki Activity

OpenPGP key generation for keyfork wizard generate-shard-secret #64

New Issue
Closed
opened 2025-01-30 05:38:09 +00:00 by anton · 2 comments
anton commented 2025-01-30 05:38:09 +00:00
Owner
Copy Link

For generating for new key

keyfork wizard generate-shard-secret --threshold --max --keys-per-shard=<number_of_smartcards_per_operator> --output shardfile.asc --cert-output keyring.asc --derive-openpgp-cert encryption_cert.asc,userid="Whatever"

For generating based on an existing Shardfile

keyfork wizard generate-shard-secret --shard-to shardfile.asc --output shardfile.new.asc --cert-output keyring.new.asc --derive-openpgp-cert encryption_cert.new.asc,userid="Whatever"

Description

We need a way to generate a cert when using the keyfork wizard generate-shard-secret

This requires implementing code to support the following additional flag in the command:

  • `--derive-openpgp-cert "<cert_name>",userid="<user_id>"
## For generating for new key keyfork wizard generate-shard-secret --threshold <M> --max <N> --keys-per-shard=<number_of_smartcards_per_operator> --output shardfile.asc --cert-output keyring.asc --derive-openpgp-cert encryption_cert.asc,userid="Whatever" ## For generating based on an existing Shardfile keyfork wizard generate-shard-secret --shard-to shardfile.asc --output shardfile.new.asc --cert-output keyring.new.asc --derive-openpgp-cert encryption_cert.new.asc,userid="Whatever" ## Description We need a way to generate a cert when using the `keyfork wizard generate-shard-secret` This requires implementing code to support the following additional flag in the command: * `--derive-openpgp-cert "<cert_name>",userid="<user_id>"
anton added this to the Custody Framework project 2025-01-30 05:38:09 +00:00
anton changed title from OpenPGP key generation for `keyfork wizard generate-shard-secret` to OpenPGP key generation for `keyfork wizard generate-shard-secret --threshold...` 2025-01-30 05:39:21 +00:00
anton changed title from OpenPGP key generation for `keyfork wizard generate-shard-secret --threshold...` to OpenPGP key generation for `keyfork wizard generate-shard-secret` 2025-01-30 05:41:04 +00:00
ryan commented 2025-02-24 22:07:23 +00:00
Owner
Copy Link

--derive='openpgp --public "<userid>"'. auto-outputs to a file based on the certfp, as preferred by qvs docs

`--derive='openpgp --public "<userid>"'`. auto-outputs to a file based on the certfp, as preferred by qvs docs
ryan closed this issue 2025-02-24 22:07:23 +00:00
ryan commented 2025-02-24 22:07:44 +00:00
Owner
Copy Link

This is done in keyfork mnemonic generate, which will replace the wizard.

This is done in `keyfork mnemonic generate`, which will replace the wizard.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
anton/add-deps-to-readme
ryansquared/staging-since-latest
ryansquared/quick-and-dirty-prompt
ryan/use-instant-time-qrcode
ryan/old-static-retain-for-stagex
ryan/recover-shardholder-hardware
ryan/keyfork-shard/reuse-prompt-handler
ryan/keyfork-shard-reuse-prompt-handler
ryan/optimize-hunk
ryan/cargo-update
keyfork-shard-v0.3.3
keyfork-v0.3.1
keyfork-zbar-v0.1.2
keyfork-shard-v0.3.2
keyfork-qrcode-v0.1.3
keyfork-prompt-v0.2.2
keyfork-bug-v0.1.1
keyfork-v0.3.0
keyfork-shard-v0.3.1
keyforkd-v0.1.4
keyfork-tests-v0.1.0
keyfork-prompt-v0.2.1
keyfork-derive-openpgp-v0.1.5
keyfork-v0.2.6
keyforkd-client-v0.2.2
keyforkd-v0.1.3
keyfork-zbar-v0.1.1
keyfork-shard-v0.3.0
keyfork-qrcode-v0.1.2
keyfork-prompt-v0.2.0
keyfork-mnemonic-v0.4.1
keyfork-entropy-v0.1.2
keyfork-derive-util-v0.2.2
keyfork-derive-path-data-v0.1.3
keyfork-derive-openpgp-v0.1.4
keyfork-derive-key-v0.1.2
keyfork-crossterm-v0.27.2
keyfork-v0.2.5
keyforkd-client-v0.2.1
keyforkd-v0.1.2
keyfork-shard-v0.2.3
keyfork-prompt-v0.1.2
keyfork-mnemonic-v0.4.0
keyfork-derive-util-v0.2.1
keyfork-derive-path-data-v0.1.2
keyfork-derive-openpgp-v0.1.3
keyfork-v0.2.4
keyfork-shard-v0.2.2
keyfork-v0.2.3
keyfork-derive-openpgp-v0.1.2
keyfork-v0.2.2
keyforkd-models-v0.2.0
keyforkd-client-v0.2.0
keyforkd-v0.1.1
keyfork-shard-v0.2.0
keyfork-qrcode-v0.1.1
keyfork-prompt-v0.1.1
keyfork-mnemonic-util-v0.3.0
keyfork-entropy-v0.1.1
keyfork-derive-util-v0.2.0
keyfork-derive-path-data-v0.1.1
keyfork-derive-openpgp-v0.1.1
keyfork-derive-key-v0.1.1
keyfork-v0.2.0
keyfork-v0.1.0
smex-v0.1.0
keyfork-bug-v0.1.0
keyfork-bin-v0.1.0
keyfork-slip10-test-data-v0.1.0
keyfork-derive-util-v0.1.0
keyfork-frame-v0.1.0
keyforkd-models-v0.1.0
keyforkd-client-v0.1.0
keyfork-derive-openpgp-v0.1.0
keyfork-entropy-v0.1.0
keyfork-crossterm-v0.27.1
keyfork-prompt-v0.1.0
keyfork-zbar-sys-v0.1.0
keyfork-zbar-v0.1.0
keyfork-qrcode-v0.1.0
keyfork-shard-v0.1.0
keyfork-derive-path-data-v0.1.0
keyforkd-v0.1.0
keyfork-derive-key-v0.1.0
keyfork-mnemonic-util-v0.2.0
keyfork-mnemonic-util-v0.1.0
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Custody Framework
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: public/keyfork#64
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?