Hello,
I made the tests with new LinuxMint 22.1 installation and i confirme it
works fine (see /infra/)
---
gpg/carte> list
Reader ...........: 1209:2440:FSIJ-2.2-43112959:0
Application ID ...: D276000124010200FFFE431129590000
Application type .: OpenPGP
Version ..........: 2.0
Manufacturer .....: unmanaged S/N range
Serial number ....: 43112959
Name of cardholder: [non positionné]
Language prefs ...: [non positionné]
Salutation .......:
URL of public key : [non positionné]
Login data .......: [non positionné]
Signature PIN ....: forcé
Key attributes ...: secp256k1 secp256k1 secp256k1
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 3 3
Signature counter : 4
KDF setting ......: on
UIF setting ......: Sign=off Decrypt=off Auth=off
Signature key ....: 769F 09AB 8B40 BA12 C73E 1284 7F59 F36C F2C7 C507
created ....: 2025-03-14 19:19:01
Encryption key....: 53A1 A60F E6B7 39E7 CEA7 68BD 1C84 504F 5B74 140D
created ....: 2025-03-14 19:19:01
Authentication key: E0F8 D976 EBE7 54B1 D146 9D2D 39CB 6D6D B249 9987
created ....: 2025-03-14 19:19:01
General key info..:
pub secp256k1/7F59F36CF2C7C507 2025-03-14 tmp
sec> secp256k1/7F59F36CF2C7C507 créé : 2025-03-14 expire : 2035-03-12
nº de carte : FFFE 43112959
ssb> secp256k1/39CB6D6DB2499987 créé : 2025-03-14 expire : 2035-03-12
nº de carte : FFFE 43112959
ssb> secp256k1/1C84504F5B74140D créé : 2025-03-14 expire : 2035-03-12
nº de carte : FFFE 43112959
gpg/carte> quit
pub secp256k1 2025-03-14 [SC] [expire : 2035-03-12]
769F09AB8B40BA12C73E12847F59F36CF2C7C507
uid tmp
sub secp256k1 2025-03-14 [A] [expire : 2035-03-12]
sub secp256k1 2025-03-14 [E] [expire : 2035-03-12]
tyty@tyty-HP-ProBook-4545s:~$
---
But i sould have a problem of configuration with my old PC under
LinuxMint 22.1 (same OS) because i always get the same error : signature
failed : used conditions not satisfied.
So i will make all my new tests under my fresh installation before post.
Thank you for your tests and help.
Best regards.
Le 14/03/2025 à 06:47, NIIBE Yutaka a écrit :
Hello,
Frédéric SUEL<[email protected]> wrote:
KDF-DO is on and i get the same error
I re-read the log of your experiment.
---------------------------------------------------------------
LinuxMint gnupg 2.4.4
gpg --card-edit
can't connect to 'socket:///home/yokosano/.gnupg/log-socket': Aucun
fichier ou dossier de ce nom
Reader ...........: 1209:2440:FSIJ-2.2-43112959:0
Application ID ...: D276000124010200FFFE431129590000
Application type .: OpenPGP
Version ..........: 2.0
Manufacturer .....: unmanaged S/N range
Serial number ....: 43112959
Name of cardholder: [non positionné]
Language prefs ...: [non positionné]
Salutation .......:
URL of public key : [non positionné]
Login data .......: [non positionné]
Signature PIN ....: forcé
Key attributes ...: secp256k1 secp256k1 secp256k1
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 3 3
Signature counter : 0
KDF setting ......: on
UIF setting ......: Sign=off Decrypt=off Auth=off
Signature key ....: 24B4 8DE1 A850 0937 AB11 600E 8A17 68BE 0C7A 9021
created ....: 2025-02-18 11:17:54
Encryption key....: [none]
Authentication key: [none]
General key info..: [none]
Here, you already have a signing key on your Gnuk Token, but don't have
other keys.
I think that this is the part of reasons why you encountered the failure
when invoking "generate" after seeing this status message.
IIUC, the initial failure had been already occurred at your preceeding
experiment (which generated the signing key). And something went wrong.
After the initial failure, next invokation of "generate" failed.
Could you please try generating secp256k1 with factory-reset status of
Gnuk Token? For me, it works (and it is covered by gnuk/tests).
_______________________________________________
Gnuk-users mailing list
[email protected]
https://lists.gnupg.org/mailman/listinfo/gnuk-users
