Problem signing git commits with smartcard key

[kookie at spacekookie.de]

> On 31 May 2018 at 21:12 Werner Koch <wk at gnupg.org> wrote:
>
> You are signing with the second key of the token.  This is an encryption
> key and thus not able to sign.  If you do a "gpg -card-status" can you
> see an Signature key (In the log "OpenPGP.1")?

Hmmm...this is the output of gpg2 --card-status

````````````````````````````````````````````````````````````````````````
Reader ...........: 1050:0407:X:0
--- snip ---
Signature key ....: 555F 2E4B 6F87 F91A 4110  669E 9073 4A9E 619C 8A6C
      created ....: 2018-05-30 14:51:48
Encryption key....: 61C3 62BB 16DD E6D4 12CF  D886 02B4 A3CD CBFF 6776
      created ....: 2018-05-30 15:06:41
Authentication key: 0451 14E6 0E98 AF5A 977B  3550 EA31 A1BF 4D0C 4706
      created ....: 2018-05-30 15:07:10
General key info..: pub  rsa4096/90734A9E619C8A6C 2018-05-30 Katharina Fey <kookie at spacekookie.de>
sec>  rsa4096/90734A9E619C8A6C  created: 2018-05-30  expires: never     
                                card-no: 0006 07319482
ssb>  rsa4096/02B4A3CDCBFF6776  created: 2018-05-30  expires: never     
                                card-no: 0006 07319482
ssb>  rsa4096/EA31A1BF4D0C4706  created: 2018-05-30  expires: never     
                                card-no: 0006 07319482
````````````````````````````````````````````````````````````````````````

Cross-referencing that with the output of gpg2 --list-secret-keys

````````````````````````````````````````````````````````````````````````
sec>  rsa4096 2018-05-30 [SC]
      555F2E4B6F87F91A4110669E90734A9E619C8A6C
--- snip ---
uid           [ultimate] Katharina Fey <kookie at spacekookie.de>
ssb>  rsa4096 2018-05-30 [SEA]
ssb>  rsa4096 2018-05-30 [A]
````````````````````````````````````````````````````````````````````````

So the first sub-key should be able to do signature, encryption and auth. But then again I'm also new to the whole yubikey thing so I don't know how exactly this is supposed to work ;)

~ Katharina