chore: add links to patched gpg

smlx · Apr 11, 2022 · ebda2e1 · ebda2e1
1 parent 68168af
commit ebda2e1
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 3 deletions.
diff --git a/docs/content/en/docs/gpg-walkthrough.md b/docs/content/en/docs/gpg-walkthrough.md
@@ -290,7 +290,10 @@ And we can add the piv-agent signing key as a subkey of the RSA master key too.
 
 {{% alert title="Note" %}}
 This doesn't currently work without a patch in GnuPG due to [this GnuPG bug](https://dev.gnupg.org/T5555).
-The session below is with the patch from the bug report applied.
+
+Until this is fixed upstream, [here is a Docker image](https://github.com/smlx/gnupg-piv-agent) containing a patched version of `gpg` which will add ECDSA keys as signing subkeys.
+
+The example session below is with a patched version of `gpg`.
 {{% /alert %}}
 
 ```

diff --git a/docs/content/en/docs/setup.md b/docs/content/en/docs/setup.md
@@ -169,9 +169,10 @@ The following instructions allow deeper integration of the hardware with existin
 ### Add cryptographic key stored in hardware as a GPG signing subkey
 
 {{% alert title="Note" %}}
-There is a [bug](https://dev.gnupg.org/T5555) in certain versions of GnuPG which doesn't allow ECDSA keys to be added as signing subkeys.
+There is a [bug](https://dev.gnupg.org/T5555) in current versions of GnuPG which doesn't allow ECDSA keys to be added as signing subkeys.
 This is unfortunate since signing is much more useful than decryption.
-You'll need a version of GnuPG where that bug is fixed for this procedure to work.
+
+Until this is fixed upstream, [here is a Docker image](https://github.com/smlx/gnupg-piv-agent) containing a patched version of `gpg` which will add ECDSA keys as signing subkeys.
 {{% /alert %}}
 
 Adding a `piv-agent` OpenPGP key as a signing subkey of an existing OpenPGP key is a convenient way to integrate a hardware security device with your existing `gpg` workflow.