Gnuk on a new PC

Thu Mar 13 15:55:23 CET 2025

Hello,

I try to install my old Gnuk key on fresh LinuxMint 22.1 install (based 
on Ubuntu 24.04) with gnupg 2.4.4/libcrypt 1.10.3  and in encountered 
some problems

I read topics from January 2018 to now and don't find anything about that.

---------------------------------------------------------------

My configuration with SSH support

I follow Niibe guide : https://www.fsij.org/doc-gnuk/

- add scdaemon & gpa

- create /etc/udev/rules.d/60-gnuk.rules (not packaged on ubuntu with 
scdaemon)

- create gpg-agent.conf with enable-ssh-agent

- stop ssh-agent and comment use-ssh-agent in /etc/X11/Xsession.options

- add to my .bashrc

     export GPG_TTY=$(tty)

     gpg-connect-agent updatestartuptty /bye >/dev/null

     unset SSH_AGENT_PID

     if [ "${gnupg_SSH_AUTH_SOCK_by:-0}" -ne $$ ]; then

     export SSH_AUTH_SOCK="$(gpgconf --list-dirs agent-ssh-socket)"

     fi

- import my public key with gpg --import publickey.asc

- run gpg --card-status for recreate stubs.

- with gpa change trust to ultimate

NB : gnome-keyring is not install

---------------------------------------------------------------

- I can see my gnuk key with lsusb

- I can't see my subskeys with gpg --list-keys

     gpg --list-keys
     /home/tyty/.gnupg/pubring.kbx
     -----------------------------
     pub   rsa4096 2019-07-02 [C] [expirée : 2022-07-01]

           3AC88726F43C20286B77751A1FBE94346FAC9A31

     uid          [ expirée ] yoko.san at free.fr

- I can't see my subkeys with GPA

- My subkeys are create in ~/.gnupg/private-keys-v1.d/

- When i run gpg --card-status or gpg-card i can see my privates keys as 
stubs

     gpg --card-status

     Reader ...........: 234B:0000:FSIJ-1.2.10-87195054:0

         Application ID ...: D276000124010200FFFE871950540000

     Application type .: OpenPGP : 2.0

     Manufacturer .....: unmanaged S/N range

     Serial number ....: 87195054

      of cardholder: Clef SSH

     Language prefs ...: fr

     Salutation .......:

     URL of public key : [non positionné]

     Login data .......: [non positionné]

     Signature PIN ....: forcé

     Key attributes ...: ed25519 cv25519 ed25519

     Max. PIN lengths .: 127 127 127

     PIN retry counter : 3 3 3

         Signature counter : 11

KDF setting ......: off

      key ....: D731 714E 624F D926 08F9  6160 4CB3 0018 D47A 6367

           created ....: 2019-07-02 14:46:07

     Encryption key....: 2952 3ACD B92C 78A7 982D  ABE1 71F6 F98C A312 34FD

           created ....: 2019-07-02 14:47:50

     Authentication key: B590 F576 B10A 6255 1795  783A ABBB F6B4 F88A 354D

           created ....: 2019-07-02 14:47:14

     General key info..: sub  ed25519/4CB30018D47A6367 2019-07-02 
yoko.san at free.fr

     sec#  rsa4096/1FBE94346FAC9A31  créé : 2019-07-02  expire : 2022-07-01

     ssb>  ed25519/4CB30018D47A6367  créé : 2019-07-02 expire : 2022-07-01

                                     nº de carte : FFFE 87195054

     ssb>  ed25519/ABBBF6B4F88A354D  créé : 2019-07-02 expire : 2022-07-01

                                     nº de carte : FFFE 87195054

     ssb>  cv25519/71F6F98CA31234FD  créé : 2019-07-02 expire : 2022-07-01

                                     nº de carte : FFFE 87195054

---------------------------------------------------------------

Did i miss something ?

Thank you for you help.

Best regards

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnuk-users/attachments/20250313/b851aa0e/attachment.html>