Page MenuHome GnuPG
Create Task
Maniphest T5115

OpenPGP card factory-reset and Kleopatra
Closed, ResolvedPublic
Actions

Description

gpg-card and gpg --card-edit both allow to factory reset OpenPGP cards. This is on purpose a command line only feature. This does not always work if Kleopatra is also running.

Technically gpg sends a RESET to scdaemon followed by a "SERIALNO undefined". Now Kleo notices the reset and does a standard SERIALNO which conflicts with the "SERIALNO undefined" from gpg. The solution I see for this is a new LOCK command (with a timeout) to gext exclusive acccess to the card by the current client

Related Objects

Event Timeline

werner created this task.Oct 29 2020, 11:47 AM
werner added a comment.Oct 29 2020, 11:50 AM

I forgot that we have LOCK and UNLOCK commands in scdaemon. This was implemented around 2005 but there are no more users in gpg meanwhile.

werner closed this task as Resolved.Nov 23 2020, 11:56 AM
werner claimed this task.

This was fixed in 2.2.24 with commit rG7f765a98fd662