Dear GnuPG,
I'm trying to sign a secondary key with my yubikey, however it fails
saying the private key is not found. I'm able to sign files with `--sign`, but
am not able to use `--sign-key`. This issue was posted about by someone else at
https://dev.gnupg.org/T6411
```
gpg --version
On 2024-03-19 00:01, Bee via Gnupg-users wrote:
However if you known the passphrase, you can pass it to gpg directly using
--passphrase-file and --pinentry-mode=loopback.
I figured, but am trying to avoid having the passphrase land on disk at all.
Due to the way a pipe works there is not
Hi!
> gpg -K --with-colon 20E0635864445A177F8F7C0C6141FD27892AE9B4
> sec:u:255:22:6141FD27892AE9B4:1700197485:::u:::cESCA:::#::ed25519:::0:
This is your primary key and it has been taken offline ..^.. marked by
the pound sign. Only the primary key can be used to sign other keys.
>
On Donnerstag, 21. März 2024 08:22:48 CET Alexis via Gnupg-users wrote:
> I'm trying to sign a secondary key with my yubikey, however it fails
> saying the private key is not found. I'm able to sign files with `--sign`,
> but am not able to use `--sign-key`.
Your Yubikey holds three keys:
*
At https://dev.gnupg.org/T4154 , 'allow setting passphrase from an
environment variable', there is a comment of "I don't see why we
should add yet more clumsy passphrase workarounds to gpg. We already
have PINENTRY_USER_DATA which can fulfill the same task."
Can anyone give an example of doing