Security-Token: "No secret key" unless "gpg --card-status" first

Patrick Ben Koetter p at sys4.de
Tue Dec 8 10:03:50 CET 2020 

Greetings,

my PGP secret key is stored on a Yubikey security token and until recently I
would simply plug it into my computer and use it to encrypt/decrypt data. This
stopped working and now all I get is this unless I command gpg first to list
the card status using "gpg --card-status":

$ gpg: Entschlüsselung fehlgeschlagen: Kein geheimer Schlüssel


I'm not familiar with all the components that need to play together for this
to work "plug & play", so I figured I'd start here first and find out if gpg
requires some change in config to let it use the security token immediately.

I'm on ARCH Linux and the software installed and hardware used is:

$ gpg --version
gpg (GnuPG) 2.2.24
libgcrypt 1.8.7

$ ykinfo -v
version: 5.1.2

$ ykman --version
YubiKey Manager (ykman) version: 3.1.1
Libraries:
    libykpers 1.20.0
    libusb 1.0.23

$ gpg --card-status
Reader ...........: 1050:0407:X:0
Application ID ...: D2760001240102010006095075160000
Application type .: OpenPGP
Version ..........: 2.1
Manufacturer .....: Yubico
Serial number ....: 09507516
Name of cardholder: Patrick Ben Koetter
Language prefs ...: [nicht gesetzt]
Salutation .......: Hr.
URL of public key : [nicht gesetzt]
Login data .......: p at sys4.de
Signature PIN ....: nicht zwingend
Key attributes ...: rsa2048 rsa4096 rsa2048
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 0 3
Signature counter : 0
Signature key ....: [none]
Encryption key....: 74B5 --redacted--
      created ....: 2014-03-28 16:28:13
Authentication key: [none]
General key info..: sub  rsa4096/3AB431AF62D277F5 2014-03-28 Patrick Ben Koetter <p at sys4.de>
sec   rsa4096/5677226BCD1FD704  erzeugt: 2014-03-28  verfällt: niemals
ssb>  rsa4096/3AB431AF62D277F5  erzeugt: 2014-03-28  verfällt: niemals
                                Kartennummer:0006 09507516


TIA,

p at rick


-- 
[*] sys4 AG

https://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG,80333 München

Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief
Aufsichtsratsvorsitzender: Florian Kirstein

More information about the Gnupg-users mailing list