<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p><font face="Noto Serif">Hi,</font></p>
<p><font face="Noto Serif">Thanks you very much for all the answers.<br>
</font></p>
<div class="moz-cite-prefix">Le 17/02/2025 à 02:18, NIIBE Yutaka a
écrit :<br>
</div>
<blockquote type="cite" cite="mid:87ldu5tlmf.fsf@haruna.fsij.org">
<pre wrap="" class="moz-quote-pre">Frédéric SUEL <a class="moz-txt-link-rfc2396E" href="mailto:frederic.suel@free.fr"><frederic.suel@free.fr></a> wrote:
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre">I find a new board made by WeAct Studio : Blue Pill Plus :
-- <a class="moz-txt-link-freetext" href="https://weactstudio.aliexpress.com/">https://weactstudio.aliexpress.com/</a>
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">
Thank you for sharing information. It's new for me.
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre">*I test of gnuk 1.2.20 install on the board.*
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">[...]
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre"> Is key-attributes for key generate on the card or determine the
type of key you can put on the card with keytocard command ?
How to know witch keys Gnuk supports with keytocard command ?
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">
It's an issue of UI of GnuPG. UI of GnuPG is not (yet) kind enough to
inspect supported algorithm for key generation. (GnuPG tries to
generate a key, asking a user. There is no check.)
In newer OpenPGP card specifications, key attributes data object
(KEY-ATTR-INFO, in the term of gnupg/scd/app-openpgp.c) is introduced.
UI of GnuPG could use this data object, but it's not (yet) done.
We can inspect the data object, like (with Gnuk 2.2):
$ gpg-connect-agent "scd getattr KEY-ATTR-INFO" /bye
S KEY-ATTR-INFO OPENPGP.1 secp256k1
S KEY-ATTR-INFO OPENPGP.1 ed25519
S KEY-ATTR-INFO OPENPGP.1 ed448
S KEY-ATTR-INFO OPENPGP.2 secp256k1
S KEY-ATTR-INFO OPENPGP.2 cv25519
S KEY-ATTR-INFO OPENPGP.2 cv448
S KEY-ATTR-INFO OPENPGP.3 secp256k1
S KEY-ATTR-INFO OPENPGP.3 ed25519
S KEY-ATTR-INFO OPENPGP.3 ed448
OK
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre">*Led*
-----*
*
Led is slowly blinking (~ Off every two seconds for less than 1 second)
--------
Is it normal ? Can anyone explain to me the utility of this led ?
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">
It's normal. It shows status of CCID communication; Blinking means that
it's in use by scdaemon.</pre>
</blockquote>
<p>Now, it's clear for me.</p>
<blockquote type="cite" cite="mid:87ldu5tlmf.fsf@haruna.fsij.org">
<pre wrap="" class="moz-quote-pre">
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre">*I also test of gnuk 2.2 install on the board.*
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">[...]
</pre>
<blockquote type="cite">
<pre wrap="" class="moz-quote-pre">1) RSA support with key-attr is always available but doesn't work
2) I can't find with key-attr X448 or Ed448 support
As anyone explanations about this results ?
</pre>
</blockquote>
<pre wrap="" class="moz-quote-pre">
Are you sure if it's Gnuk 2.2? As the CLI interaction example above
shows, it works for me (no RSA, has X448 and Ed448 support).
</pre>
</blockquote>
<p>Yes, i made the test twice (compiling and executing).</p>
<p>Environment : LinuxMint 21.3 / gnupg 2.4.4 (Ubuntu base) or
ParrotOS (Debian base) / gnupg 2.2.40<br>
</p>
<p>-----</p>
<p>LinuxMint 21.3 (Ubuntu base) / gnupg 2.4.4 <br>
</p>
<p>$ gpg --card-edit <br>
can't connect to 'socket:///home/yokosano/.gnupg/log-socket':
Aucun fichier ou dossier de ce nom<br>
<br>
Reader ...........: 1209:2440:FSIJ-2.2-43112959:0<br>
Application ID ...: D276000124010200FFFE431129590000<br>
Application type .: OpenPGP<br>
Version ..........: 2.0<br>
Manufacturer .....: unmanaged S/N range<br>
Serial number ....: 43112959<br>
Name of cardholder: [non positionné]<br>
Language prefs ...: [non positionné]<br>
Salutation .......: <br>
URL of public key : [non positionné]<br>
Login data .......: [non positionné]<br>
Signature PIN ....: forcé<br>
Key attributes ...: ed25519 cv25519 ed25519<br>
Max. PIN lengths .: 127 127 127<br>
PIN retry counter : 3 3 3<br>
Signature counter : 1<br>
KDF setting ......: on<br>
UIF setting ......: Sign=off Decrypt=off Auth=off<br>
Signature key ....: ADBB C781 90C0 36F8 6551 2D1D 6648 3F9B 33BA
0DE6<br>
created ....: 2025-02-15 19:32:10<br>
Encryption key....: 9773 5974 62DE CA37 C49B 9722 2EDA 1B2F 4AD9
C893<br>
created ....: 2025-02-15 19:32:10<br>
Authentication key: 8151 CC46 5948 B893 1538 3706 61F1 EDBE 7587
F428<br>
created ....: 2025-02-15 19:33:24<br>
General key info..: [none]<br>
<br>
gpg/carte> admin<br>
Les commandes d'administration sont permises<br>
<br>
gpg/carte> key-attr<br>
Changing card key attribute for: Signature key<br>
Sélectionnez le type de clef désiré :<br>
(1) RSA<br>
(2) ECC<br>
Quel est votre choix ? 2<br>
Sélectionnez le type de courbe elliptique désiré :<br>
(1) Curve 25519 *default*<br>
(4) NIST P-384<br>
(6) Brainpool P-256<br>
Quel est votre choix ? <br>
-----</p>
<p>ParrotOS (Debian base) / gnupg 2.2.40</p>
<p>$gpg --card-edit<br>
<br>
Reader ...........: 1209:2440:FSIJ-2.2-43112959:0<br>
Application ID ...: D276000124010200FFFE431129590000<br>
Application type .: OpenPGP<br>
Version ..........: 2.0<br>
Manufacturer .....: unmanaged S/N range<br>
Serial number ....: 43112959<br>
Name of cardholder: [non positionné]<br>
Language prefs ...: [non positionné]<br>
Salutation .......: <br>
URL of public key : [non positionné]<br>
Login data .......: [non positionné]<br>
Signature PIN ....: forcé<br>
Key attributes ...: ed25519 cv25519 ed25519<br>
Max. PIN lengths .: 127 127 127<br>
PIN retry counter : 3 3 3<br>
Signature counter : 1<br>
KDF setting ......: on<br>
Signature key ....: ADBB C781 90C0 36F8 6551 2D1D 6648 3F9B 33BA
0DE6<br>
created ....: 2025-02-15 19:32:10<br>
Encryption key....: 9773 5974 62DE CA37 C49B 9722 2EDA 1B2F 4AD9
C893<br>
created ....: 2025-02-15 19:32:10<br>
Authentication key: 8151 CC46 5948 B893 1538 3706 61F1 EDBE 7587
F428<br>
created ....: 2025-02-15 19:33:24<br>
General key info..: <br>
pub ed25519/0x66483F9B33BA0DE6 2025-02-15 tmtmt<br>
sec> ed25519/0x66483F9B33BA0DE6 créé : 2025-02-15 expire :
2065-02-05<br>
nº de carte : FFFE 43112959<br>
ssb> cv25519/0x2EDA1B2F4AD9C893 créé : 2025-02-15 expire :
2065-02-05<br>
nº de carte : FFFE 43112959<br>
ssb> ed25519/0x61F1EDBE7587F428 créé : 2025-02-15 expire :
2065-02-05<br>
nº de carte : FFFE 43112959<br>
<br>
gpg/carte> admin<br>
Les commandes d'administration sont permises<br>
<br>
gpg/carte> key-attr<br>
Changing card key attribute for: Signature key<br>
Sélectionnez le type de clef désiré :<br>
(1) RSA<br>
(2) ECC<br>
Quel est votre choix ? 2<br>
Sélectionnez le type de courbe elliptique désiré :<br>
(1) Curve 25519<br>
(4) NIST P-384<br>
Quel est votre choix ? <br>
</p>
<p>-----</p>
<p>Best regards<br>
</p>
<div id="grammalecte_menu_main_button_shadow_host"
style="width: 0px; height: 0px;"></div>
</body>
</html>