Page MenuHome GnuPG

ssh keys not deduplicated, cannot configure card auth keys using sshcontrol
Closed, WontfixPublic

Description

Reported on the mailing list. OP tried to set the 'confirm' flag for an
authentication key on an OpenPGP card in the sshcontrol file.

Digging into the code revealed that the key on the card is always prepended to
the keys listed in sshcontrol, and no deduplication/merging is done due to the
streaming programming model.

Event Timeline

justus set External Link to https://lists.gnupg.org/pipermail/gnupg-devel/2016-October/031777.html.Oct 10 2016, 12:42 PM
justus set Version to master.
justus added a subscriber: justus.
werner claimed this task.
werner added a subscriber: werner.

The long term goal is to replace sshcontrol by aflag in the extended private key format. This would instantly solve the bug. Thus closing.

werner changed the task status from Resolved to Wontfix.Oct 20 2017, 1:53 PM