[PATCH GnuPG 0/9] Fix TPM support tests
James Bottomley
James.Bottomley at HansenPartnership.com
Tue Jun 20 15:10:22 CEST 2023
On Tue, 2023-06-20 at 08:13 +0200, Werner Koch via Gnupg-devel wrote:
> On Mon, 19 Jun 2023 22:32, James Bottomley said:
> > on opensuse). I think the hack is actually the best way because
> > the corresponding KEYTOCARD would delete the key as well before
> > rescanning the card.
>
> I agree for the TPM. For keytocard with smartcards it is common not
> to do a "save" and thus keep the original on-disk key. This allows
> to copy a key to several cards as a backup.
OK, I'll try to package this up as a patch. I'm still a bit worried
about the error handling: if agent_shadow_key_type() fails and the user
does a quit with save, we'll have deleted the private key. Is there
some way to force an abort without saving?
James
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20230620/774d58f5/attachment.sig>
More information about the Gnupg-devel
mailing list