Re: private subkey not found

[zep]

Hello Werner,

Thanks for your reply

> That does not look like the standard output of gpg 2.1.15 - Please
> remove the keyid-format option from your gpg.conf.

Here is the output you requested:

sec#  rsa4096 2016-11-19 [C] [expires: 2021-11-18]
  some_hex_value
uid   [ultimate] zep 
ssb>  rsa4096 2016-11-19 [S] [expires: 2021-11-18]
ssb>  rsa4096 2016-11-19 [E] [expires: 2021-11-18]
ssb>  rsa4096 2016-11-19 [A] [expires: 2021-11-18]

sec   rsa4096 2015-04-07 [SCA] [expires: 2020-04-05]
  some_other_hex_value
uid   [ultimate] zep 
ssb   rsa4096 2015-04-07 [E] [expires: 2020-04-05]


I have two different keysets:

One offline master key and three subkeys for zep
 which are stored on a nitrokey.

Then I have one master key and one subkey for zep ,
which are not stored on a smartcard.

> Are all keyfiles in ~/.gnupg/private-keys-v1.d/ readable ?  Check the
> permissions.

Indeed, my master private key for other_m...@provider.tlp in
~/.gnupg/private-keys-v1.d/ is only a symlink to the real key, which is
on an LUKS encrypted USB drive.

I moved the symlink out of the way, and checked again using
gpg-connect-agent, keyinfo --list:

> keyinfo --list
S KEYINFO some_hex T some_hex OPENPGP.2 - - - - -

S KEYINFO some_hex D - - - P - - -

S KEYINFO some_hex T some_hex OPENPGP.2 - - - - -

S KEYINFO some_hex T some_hex OPENPGP.1 - - - - -

S KEYINFO some_hex T some_hex OPENPGP.1 - - - - -

S KEYINFO some_hex D - - - P - - -

S KEYINFO some_hex T some_hex OPENPGP.3 - - - - -

ERR 67108952 Invalid name 

Signing, Encrypting and Decryption using the first keyset (on the
nitrokey) does work. But decryption using the subkey of the second
keyset does not work.

Is it possible to have two keysets each having the same name, but a
different email address ?

E.g.

zep 
zep 

Thanks,

Cheers, zep

On 11/30/2016 10:44 AM, Werner Koch wrote:
> On Tue, 29 Nov 2016 21:19, zepmas...@gmx.net said:
> 
>> sec   rsa4096/0xABCDEFGH 2015-04-07 [SCA] [expires: 2020-04-05]
>>   Key fingerprint = ABCD ABCD ABCD 
> 
> That does not look like the standard output of gpg 2.1.15 - Please
> remove the keyid-format option from your gpg.conf.
> 
>> gpg-connect-agent
>>> keyinfo --list
>> S KEYINFO "some hex string" D - - - P - - -
>> ERR 67108891 Not found 
> 
> Are all keyfiles in ~/.gnupg/private-keys-v1.d/ readable ?  Check the
> permissions.
> 
> 
> Shalom-Salam,
> 
>Werner
> 

___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Re: private subkey not found

[Werner Koch]

On Tue, 29 Nov 2016 21:19, zepmas...@gmx.net said:

> sec   rsa4096/0xABCDEFGH 2015-04-07 [SCA] [expires: 2020-04-05]
>   Key fingerprint = ABCD ABCD ABCD 

That does not look like the standard output of gpg 2.1.15 - Please
remove the keyid-format option from your gpg.conf.

> gpg-connect-agent
>> keyinfo --list
> S KEYINFO "some hex string" D - - - P - - -
> ERR 67108891 Not found 

Are all keyfiles in ~/.gnupg/private-keys-v1.d/ readable ?  Check the
permissions.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.


pgp9Wsh2QP4F_.pgp
Description: PGP signature
___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

private subkey not found

[zep]

Hello,

I have some trouble using an imported subkey:

gpg --list-secret-keys

sec   rsa4096/0xABCDEFGH 2015-04-07 [SCA] [expires: 2020-04-05]
  Key fingerprint = ABCD ABCD ABCD 
uid   [ultimate] zep 
ssb   rsa4096/0xDEADBEEF 2015-04-07 [E] [expires: 2020-04-05]

So it seems, the private master key (0xABCDEFGH) and the private subkey
(0xDEADBEEF) are both available.

But the decryption of a message encrypted with the subkey fails:

gpg -e -r zepmas...@gmx.net test.txt
gpg -d test.txt.gpg
gpg: encrypted with 4096-bit RSA key, ID 0xDEADBEEF , created 2015-04-07
  "zep "
gpg: public key decryption failed: Invalid name
gpg: decryption failed: No secret key

Also, gpg-connect-agent, then keyinfo --list gives this:

gpg-connect-agent
> keyinfo --list
S KEYINFO "some hex string" D - - - P - - -
ERR 67108891 Not found 

Has anyone an idea, why decryption with this subkey does not work as
obviously, the private subkey seems to be available.

gpg (GnuPG) 2.1.15
libgcrypt 1.7.3

Thank you very much,

Cheers, zep



___
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users