Gnupg 2.1.7 can't decrypt using smartcard key.

perillamint perillamint at gentoo.moe
Sat Sep 12 14:03:02 CEST 2015


Here is my output of gpg --card-status.

==========
Application ID ...: D276000124010200F51776EB5FFA0000
Version ..........: 2.0
Manufacturer .....: FSIJ
Serial number ....: 76EB5FFA
Name of cardholder: perillamint
Language prefs ...: en
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: forced
Key attributes ...: rsa4096 rsa4096 rsa4096
Max. PIN lengths .: 127 127 127
PIN retry counter : 5 5 5
Signature counter : 0
Signature key ....: 09CD 5C9E 15E4 F7CA 123A  8A25 5840 050B 37AA 8068
      created ....: 2015-09-10 18:40:00
Encryption key....: 09CD 5C9E 15E4 F7CA 123A  8A25 5840 050B 37AA 8068
      created ....: 2015-09-10 18:40:00
Authentication key: 09CD 5C9E 15E4 F7CA 123A  8A25 5840 050B 37AA 8068
      created ....: 2015-09-10 18:40:00
General key info..: pub  rsa4096/37AA8068 2015-09-10 perillamint
<perillamint at gentoo.moe>
sec>  rsa4096/37AA8068  created: 2015-09-10  expires: 2017-09-09
                        card-no: F517 76EB5FFA
==========

On 11/09/15 18:50, NIIBE Yutaka wrote:
> On 09/11/2015 10:41 AM, perillamint wrote:
>> gpg: public key decryption failed: Invalid ID
>> gpg: decryption failed: No secret key
> 
> Could you please try 'gpg --card-status' and see 'General key info'?
> 
> In my case, it's like:
> 
> ==================
> General key info..: pub  rsa2048/4CA7BABE 2010-10-15 NIIBE Yutaka <gniibe at fsij.org>
> sec>  rsa2048/4CA7BABE  created: 2010-10-15  expires: never
>                         card-no: F517 00000001
> ssb>  rsa2048/084239CF  created: 2010-10-15  expires: never
>                         card-no: F517 00000001
> ssb>  rsa2048/5BB065DC  created: 2010-10-22  expires: never
>                         card-no: F517 00000001
> ==================
> 
> It shows the connection between stub on host PC and key on the card.
> 
> I guess that there is some problem in your situation, and
> you can see what's going on by the --card-status.
> 



More information about the Gnupg-users mailing list