prep / Gpg
Licence: bsd-3-clause
A client to gpg-agent for Go
Stars: ✭ 30
Labels
Projects that are alternatives of or similar to Gpg
interesting-keys
Interesting collected (leaked) encryption/decryption keys
Stars: ✭ 33 (+10%)
Mutual labels: gpg
Gopass
The slightly more awesome standard unix password manager for teams
Stars: ✭ 4,373 (+14476.67%)
Mutual labels: gpg
piv-agent
An SSH and GPG agent which you can use with your PIV hardware security device (e.g. a Yubikey).
Stars: ✭ 31 (+3.33%)
Mutual labels: gpg
Probot Gpg
A GitHub App that enforces GPG signatures on pull requests (no longer maintained)
Stars: ✭ 13 (-56.67%)
Mutual labels: gpg
Kubesec
Secure Secret management for Kubernetes (with gpg, Google Cloud KMS and AWS KMS backends)
Stars: ✭ 547 (+1723.33%)
Mutual labels: gpg
Gpgsync
🔒 GPG Sync is designed to let users always have up-to-date public keys for other members of their organization
Stars: ✭ 301 (+903.33%)
Mutual labels: gpg
Astroid
A graphical threads-with-tags style, lightweight and fast, e-mail client for Notmuch
Stars: ✭ 476 (+1486.67%)
Mutual labels: gpg
iceshelf
A simple tool to allow storage of signed, encrypted, incremental backups using Amazon's Glacier storage
Stars: ✭ 28 (-6.67%)
Mutual labels: gpg
KeyManager
Android application to manage SSH and GPG keys on GitHub written in Kotlin.
Stars: ✭ 15 (-50%)
Mutual labels: gpg
Privatekeyvault
Make Instructions: Airgapped raspberry pi computer for working with blockchains featuring LUKS full disk encryption and using qr-codes to pass encrypted files and offline transaction instructions across the airgap.
Stars: ✭ 29 (-3.33%)
Mutual labels: gpg
Qtpass
QtPass is a multi-platform GUI for pass, the standard unix password manager.
Stars: ✭ 763 (+2443.33%)
Mutual labels: gpg
Limnoria
A robust, full-featured, and user/programmer-friendly Python IRC bot, with many existing plugins. Successor of the well-known Supybot.
Stars: ✭ 515 (+1616.67%)
Mutual labels: gpg
gpg-agent
This is an experimental repository of a client to the GPG agent. It was built out of a desire to have a somewhat friendly interface to GPG keys stored on a smart card by way of GPG.
At this point, the interface might be subject to change.
Things to know
There are a couple things off about this Go package, namely:
- You can use PKCS1v15 and PSS for signing when your private keys are stored on disk, but when it's stored on a smart card you can only use PKCS1v15. The reason for this is that we can leverage the
PKDECRYPTfunctionality for both decryption and signing when the keys are stored on disk, but most smart cards won't allow a decrypt operation on a signing key. Therefore, this package needs to leverage thePKSIGNgpg-agent command, which only returns a signature in the PKCS1v15 format. - There is no way to know what type of key the GPG agent returns (signing, encryption or authentication), so in the case of subkeys the user has to make this distinction manually.
- It borrows code from
crypto/rsa, because the interface of thersapackage expects a private key to be provided, which is not possible when the private key is stored on a smart card. Therefore, the relevant code fromcrypto/rsawas copied to an internal package in this repository where thePrivateKey{}was changed to add aDecryptFuncfield that gets called instead of the unexporteddecrypt()function in the rsa package itself.
TODO
- There are possibly some unnecessary type conversions happening because
bufio.ReadString()is used as opposed tobufio.ReadBytes().
License
This software is distributed under the BSD-style license found in the LICENSE file.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].