Problem signing git commits with smartcard key
kookie at spacekookie.de
kookie at spacekookie.de
Fri Jun 1 00:04:25 CEST 2018
> On 31 May 2018 at 21:12 Werner Koch <wk at gnupg.org> wrote:
>
> You are signing with the second key of the token. This is an encryption
> key and thus not able to sign. If you do a "gpg -card-status" can you
> see an Signature key (In the log "OpenPGP.1")?
Hmmm...this is the output of gpg2 --card-status
````````````````````````````````````````````````````````````````````````
Reader ...........: 1050:0407:X:0
--- snip ---
Signature key ....: 555F 2E4B 6F87 F91A 4110 669E 9073 4A9E 619C 8A6C
created ....: 2018-05-30 14:51:48
Encryption key....: 61C3 62BB 16DD E6D4 12CF D886 02B4 A3CD CBFF 6776
created ....: 2018-05-30 15:06:41
Authentication key: 0451 14E6 0E98 AF5A 977B 3550 EA31 A1BF 4D0C 4706
created ....: 2018-05-30 15:07:10
General key info..: pub rsa4096/90734A9E619C8A6C 2018-05-30 Katharina Fey <kookie at spacekookie.de>
sec> rsa4096/90734A9E619C8A6C created: 2018-05-30 expires: never
card-no: 0006 07319482
ssb> rsa4096/02B4A3CDCBFF6776 created: 2018-05-30 expires: never
card-no: 0006 07319482
ssb> rsa4096/EA31A1BF4D0C4706 created: 2018-05-30 expires: never
card-no: 0006 07319482
````````````````````````````````````````````````````````````````````````
Cross-referencing that with the output of gpg2 --list-secret-keys
````````````````````````````````````````````````````````````````````````
sec> rsa4096 2018-05-30 [SC]
555F2E4B6F87F91A4110669E90734A9E619C8A6C
--- snip ---
uid [ultimate] Katharina Fey <kookie at spacekookie.de>
ssb> rsa4096 2018-05-30 [SEA]
ssb> rsa4096 2018-05-30 [A]
````````````````````````````````````````````````````````````````````````
So the first sub-key should be able to do signature, encryption and auth. But then again I'm also new to the whole yubikey thing so I don't know how exactly this is supposed to work ;)
~ Katharina
More information about the Gnupg-users
mailing list