The openpgp-card-state crate now has a new "ephemeral" backend:
-
The openpgp-card-state crate now has a new "ephemeral" backend:
This combines the defensiveness of unpersisted pinentry with the convenience of caching (in the Linux kernel credential store, for a configurable duration).
New releases of https://crates.io/crates/openpgp-card-tool-git, https://crates.io/crates/openpgp-card-ssh-agent, https://crates.io/crates/rsop-oct support this new #OpenPGP card PIN storage backend.
Many thanks to @classabbyamp who implemented this new PIN handling mechanism in openpgp-card-state.
-
The openpgp-card-state crate now has a new "ephemeral" backend:
This combines the defensiveness of unpersisted pinentry with the convenience of caching (in the Linux kernel credential store, for a configurable duration).
New releases of https://crates.io/crates/openpgp-card-tool-git, https://crates.io/crates/openpgp-card-ssh-agent, https://crates.io/crates/rsop-oct support this new #OpenPGP card PIN storage backend.
Many thanks to @classabbyamp who implemented this new PIN handling mechanism in openpgp-card-state.
@hko @classabbyamp Amazing! I still use my implementation that I sent in PR https://codeberg.org/openpgp-card/state/pulls/13 ...
I'll close my PR, as the solution, using the Linux Kernel credential store is a MUCH cleaner approach than tempfiles
-
L larvitz@burningboard.net shared this topic
R relay@relay.an.exchange shared this topic
