[PATCH] change decrypt to support larger keys with openpgp card (was: OpenPGP card and 4096 bit keys)

Klaus Flittner klaus at flittner.org
Sun Nov 8 15:46:52 CET 2009

Werner Koch <wk at gnupg.org> said:

> On Mon, 19 Oct 2009 19:55, klaus at flittner.org said:
> > 2. Change the protocol used for genkey and decrypt
> >    - genkey would then return the publich key like readkey as s-expression
> >    - decrypt would inquire the encrypted message instead of a setdata
> >      before the call of decrypt
> Right.  However, the change will be easier:  We send the key using
> several status lines.
> This will go into GnuPG 2.1 as time permits.

Attached you find a patch which addresses the decrypt issue.
It changes the setdata command of scdaemon to support chaining.
The first part of the data is transfered like before. If there is more
data it can be concatenated to the first using
SETDATA --more [data]

The two callers of PKDECRYPT (in g10/call-agent.c and agent/call-scd.c)
are changed to use this chaining mechanism.

 Klaus Flittner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pkdecrypt.patch
Type: text/x-patch
Size: 3804 bytes
Desc: not available
URL: </pipermail/attachments/20091108/b44a63d5/attachment.bin>

More information about the Gnupg-devel mailing list