Cannot export SSH public key
Ingo Klöcker
kloecker at kde.org
Thu Dec 28 20:40:48 CET 2023
On Mittwoch, 27. Dezember 2023 13:40:40 CET Felix E. Klee wrote:
> Thanks for pointing out that the signature key and the authentication
> keys are identical:
>
> $ gpg --card-status
[...]
> Authentication key: 7A0F E73D DB74 4F0F 9734 1DA7 1BE3 49D1 1B6E
> D589
> created ....: 2023-06-29 03:50:43
-> Apparently created on the same day as the other keys on the card.
[...]
> ssb# rsa4096/32B106F6877CC64B created: 2023-11-22 expires: never
-> Apparently created about 5 months later. Also note that "ssb#" indicates
that this is a stub key, i.e. the secret key doesn't exist on disk (or on
card).
> At the same time, here the key IDs are different:
>
> $ gpg --list-keys --keyid-format LONG yubikey at f76.eu
> pub rsa4096/1BE349D11B6ED589 2023-06-29 [SC]
> 7A0FE73DDB744F0F97341DA71BE349D11B6ED589
> uid [ultimate] Felix E. Klee (YubiKey) <yubikey at f76.eu>
> sub rsa4096/7CC02D68D2E31736 2023-06-29 [E]
> sub rsa4096/32B106F6877CC64B 2023-11-22 [A]
>
> How does that go together?
It doesn't. The authentication key on the card is different from the key on
disk (or rather "not on disk" because you lack the secret key of the
authentication key registered in your keyring).
Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20231228/171239f8/attachment.sig>
More information about the Gnupg-users
mailing list