Page MenuHome GnuPG

gpg fails to import second secret key in .pfx (PKCS12) file
Open, NormalPublic


the PKCS#12 objects for Alice and Bob in draft-dkg-lamps-samples-05 each contain two secret keys -- one for signing, and one for decryption.

However, when importing that file with gpgsm, i see the following output:

gpgsm: already got an key object, skipping this one

here's another copy of the bundle for Bob. It is locked with the simple three-letter passphrase`bob`:



Event Timeline

Apparently only one of the secret keys is actually imported: the decryption key, but not the signing key.

I can break apart the .pfx file into its constituent pieces with other software, and re-import them separately into gpgsm, but that seems like the wrong approach.

werner triaged this task as Normal priority.Apr 21 2021, 9:09 PM
werner edited projects, added Feature Request, gnupg (gpg23); removed gnupg (gpg22), Bug Report.