[PATCH GnuPG 0/9] Fix TPM support tests

James Bottomley James.Bottomley at HansenPartnership.com
Tue Jun 20 15:10:22 CEST 2023

On Tue, 2023-06-20 at 08:13 +0200, Werner Koch via Gnupg-devel wrote:
> On Mon, 19 Jun 2023 22:32, James Bottomley said:
> > on opensuse).  I think the hack is actually the best way because
> > the corresponding KEYTOCARD would delete the key as well before
> > rescanning the card.
> I agree for the TPM.  For keytocard with smartcards it is common not
> to do a "save" and thus keep the original on-disk key.  This allows
> to copy a key to several cards as a backup.

OK, I'll try to package this up as a patch.  I'm still a bit worried
about the error handling: if agent_shadow_key_type() fails and the user
does a quit with save, we'll have deleted the private key.  Is there
some way to force an abort without saving?


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20230620/774d58f5/attachment.sig>

More information about the Gnupg-devel mailing list