OpenPGP card and signing

Daniel Hess dh at
Wed Mar 15 12:04:47 CET 2006

On Tue, Mar 14, 2006 at 11:42:52PM +0100, Michael Bienia wrote:
> > Michael Bienia wrote:
> > > does signing with the OpenPGP card only work with SHA1 as digest-algo?
> > > 
> > > With SHA1 and RIPEMD160 gpg asks for the PIN but only SHA1 generates a
> > > working signature. Trying RIPEMD160 I get:
> > > | gpg: checking created signature failed: bad signature
> > > | gpg: signing failed: bad signature
> > > | gpg: signing failed: bad signature
> A friend who uses his OpenPGP card with enigmail under windows can
> successfully create a RIPEMD160 signature.
> I could also create one if I use gpg with pcscd.
> Can someone explain me, why it works if I use gpg with pcscd and not if
> I use gpg alone?

I have the same problem as Michael.

Just while playing with gnupg i've notived, that the problem only
occur when gnupg-agent is involved.

Using gnupg without the agent creates a valid ripemd160 signiture.

Maybe this helps.

  - Daniel

More information about the Gnupg-users mailing list