Page MenuHome GnuPG
Create Task
Maniphest T3926

Adding subkey from the existing key
Closed, InvalidPublic
Actions

Description

I tried to transfer my old keys as subkeys into new one using --expert option and found few problems:

  1. Always got "Key generation failed" adding existing ElGamal keys ( tryed with and without --rfc2440 )
  2. I didn't find a way to toggle the sign capability for a transfered NIST P-256 key (even when it was a ECC sign only key in the pair I transfered from). All NIST keys are transferred as encryption keys only.

Details

Version
v.2.2.6, official windows build

Event Timeline

ajaja created this task.Apr 20 2018, 4:41 PM
werner closed this task as Invalid.May 18 2018, 11:34 AM
werner edited projects, added gnupg (gpg22); removed Bug Report.
werner added a subscriber: werner.

What you try to do is very special and not directl supported. You need to find the keygrip of the subkey (I guess you know that) and enter it as "use existing key" in the add-key sub-command. To change capabilities use the change-usage sub-command which is described in the gpg man page and the online manual.

If you have further questions, please ask on the gnupg-users mailing list or on IRC.

ajaja added a comment.May 18 2018, 11:43 AM

The bugreport was about "use existing key" selecting keygrips and I did try to use "change-usage" (for NIST P-256).