gnupg + TPM 2.0 support request

sergio borghese sergio.borghese at gmail.com
Tue Dec 26 01:47:12 CET 2023 

Hi Niibe, All,

Sorry for the late reply, but I was working on this in my spare time.
This is just to say that your suggestion solved my issue.
I got the latest source code from github and built gngpg 2.4 from master
branch

* master 37fa36a32 [origin/master] doc: Fix description of scdaemon for
--disable-ccid.

I also needed to build pinentry form master, as I need a version supporting
with latest libassuan protocol

* master 6fdb5e5 doc: Fix documentation

```
gpg> keytotpm
Really move the primary key? (y/N) y

sec  rsa2048/37B7F7A2498FDF57
     created: 2023-12-10  expires: 2026-12-09  usage: SC
     card-no: TPM-Protected
     trust: ultimate      validity: ultimate
[ultimate] (1). tpm-test <tpm at example.com>
```

Thanks again for the support

Ciao e grazie
Sergio





On Mon, Dec 11, 2023 at 10:15 AM sergio borghese <sergio.borghese at gmail.com>
wrote:

> Hi Niibe,
>
> Thanks a lot for the info and help
> So, if I get this right, I just need to get the latest master and rebuild
> the gnupg sw. Is this correct?
> Will try and send an update to the ML to share the results with everyone
>
> Ciao e grazie
> Sergio
>
> On Mon, Dec 11, 2023 at 1:33 AM NIIBE Yutaka <gniibe at fsij.org> wrote:
>
>> Hello,
>>
>> sergio borghese wrote:
>> > 2023-12-10 16:46:24 gpg-agent[358316] DBG: chan_11 <- ERR 268435731
>> Unknown
>> > IPC command <TPM2d>
>>
>> This is no harm.  TPM2d doesn't support GETINFO command.
>>
>> > 2023-12-10 16:46:30 gpg-agent[358316] updating regular key file
>> >
>> '/home/netresults.wintranet/borghese/gpg2.tmp/private-keys-v1.d/FDEE0860BCFCE24C29738F1ADBF42D4C7D95516B.key'
>> > by a shadow key inhibited
>>
>> I fixed this problem in the repo of GnuPG 2.4/master, I suppose.  It's
>> the commit 9909f622f for 2.4.
>>
>> The check was introduced (by the commit a1015bf2f) (in GnuPG 2.4.2),
>> which caused the problem for KEYTOTPM handling of gpg-agent.  Then fixed
>> in repo (will be in GnuPG 2.4.4).
>> --
>>
>
>
> --
> preferisco ammazzare il tempo,
> preferisco sparare cazzate,
> preferisco fare esplodere una moda,
> preferisco morire d'amore.
> (Caparezza)
>
>

-- 
preferisco ammazzare il tempo,
preferisco sparare cazzate,
preferisco fare esplodere una moda,
preferisco morire d'amore.
(Caparezza)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20231226/31ae1b49/attachment.html>

More information about the Gnupg-users mailing list