Page MenuHome GnuPG
Create Task
Maniphest T1100

gnupg2 fails to properly generate signing subkey below cert-only key on OpenPGP card 2.0
Closed, ResolvedPublic
Actions

Description

Hi,

I am using a master key (4096R/9486A82B) that has "certify" as the sole usage.
When creating a subkey on a new card using "addcardkey", the new key is
generated with no "usage" allowed at all. Afterwards, the new key is used to
create a backsignature of the master key, which then fails to verify as the
subkey is not signing capable.

I was able to work around the problem by generating the key on the computer and
using "keytocard", but that's obviously not the right way to do it.

Details

Version
2.0.12+svn20090808

Event Timeline

geier added a project: Bug Report.Aug 10 2009, 12:55 PM
geier set Version to 2.0.12+svn20090808.
geier added a subscriber: geier.
werner added a subscriber: werner.Aug 10 2009, 7:38 PM

Given that you are using an SVN version, you should definitely take this bug
report to the mailing list. Please include a typescript so that it will be
clearer what the problem ist.

thanks.

gniibe claimed this task.May 7 2015, 5:01 AM
gniibe added a subscriber: gniibe.
werner added a comment.May 8 2015, 9:03 AM

2.0.12 is very old (close to 6 years). Please try to replicate that with a
current version (best would be 2.0.27). We also need to know your OS.

gniibe closed this task as Resolved.Sep 29 2015, 7:43 AM

I tested with 2.0.29 and it works well.