OpenPGP SmartCard v2.0 w/OmniKey 6121

John Ruff jcruff at
Tue Jan 26 16:38:55 CET 2010


I've been researching the archives for the past week after receiving
my OpenPGP v2.0 smartcard from Kernelconcepts.  Problem seems to
revolve around signing, but between by two systems OpenSUSE 11.2
(gnupg 2.0.13) and Mac OS X 10.5.8 (MacGPG/gnupg 2.0.14) I have
slightly different results.

First I was only able to create the 3 2048-bit keys on the linux
laptop but would fail to create a 3072/2048/2048 set on the same
system.  On the Mac I couldn't create anything (tried all 1024 and
2048 keys).

With the card now having 2048 keys I could successfully change all my
card options (did this before key generation).  On the linux system I
could encrypt/decrypt but can not perform any signing/verify
operation.  On the Mac I can encrypt, but neither decrypt/sign/verify.
 Errors vary from "general signing error" to secret key not found
(when trying to decrypt. I was unclear how to actually setup my new
keys on the Mac so I performed an export and export/export-secret-keys
over to the Mac from the linux system.

Please let me know what types of debugs I can provide back for review
or any other test information one would like performed or provided.
Output of '--card-status' below.  Thanks in advance.

$ gpg --card-status
Application ID ...: D2760001240102000005000003740000
Version ..........: 2.0
Manufacturer .....: ZeitControl
Serial number ....: 00000374
Name of cardholder: John Ruff
Language prefs ...: en
Sex ..............: male
URL of public key : [not set]
Login data .......: techniq
Signature PIN ....: forced
Key attributes ...: 2048R 2048R 2048R
Max. PIN lengths .: 32 32 32
PIN retry counter : 3 0 3
Signature counter : 18
Signature key ....: 6530 8DA8 805C 707F 3611  9851 D057 FC41 052A 4FAD
      created ....: 2010-01-24 02:10:16
Encryption key....: 0A2B BBEE 4B0D C392 A4E6  3673 ECCF B9FB 1488 8977
      created ....: 2010-01-24 02:10:16
Authentication key: 735C 977A DFBA 72B2 CDF0  D5D9 F9E8 742E FC34 E962
      created ....: 2010-01-24 02:10:16
General key info..: pub  2048R/052A4FAD 2010-01-24 John C. Ruff
(Techniq) <jcruff[at]>
sec>  2048R/052A4FAD  created: 2010-01-24  expires: never
                      card-no: 0005 00000374
ssb>  2048R/FC34E962  created: 2010-01-24  expires: never
                      card-no: 0005 00000374
ssb>  2048R/14888977  created: 2010-01-24  expires: never
                      card-no: 0005 00000374

Chris Ruff

"No one can see past a choice they don't understand." --Oracle

More information about the Gnupg-users mailing list