Hello,
I received a new YubiKey 4 and try to set it up... but it fails
For now I want to use it to sign my git commits. I still have my pub/private keys so I imported them on my YubiKey (last part of https://www.yubico.com/support/knowledg ... eratelocal)
When I call
Code:
gpg --card-status
I get this output:Code:
Application ID ...: D2760001240102010006050022860000
Version ..........: 2.1
Manufacturer .....: Yubico
Serial number ....: 05002286
Name of cardholder: [not set]
Language prefs ...: [not set]
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: not forced
Key attributes ...: 4096R 4096R 2048R
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 0 3
Signature counter : 1
Signature key ....: CEE3 7AE9 07BE 98DF CD5A E69C F131 4A8E 421F 9B78
created ....: 2013-09-06 07:08:49
Encryption key....: 71B5 26B3 C235 5CF2 41C5 4F35 D556 2397 D30A 19FE
created ....: 2013-09-06 07:32:42
Authentication key: [none]
General key info..: pub 4096R/421F9B78 2013-09-06 Ralph Bergmann <ralph@dasralph.de>
sec> 4096R/421F9B78 created: 2013-09-06 expires: 2021-09-06
card-no: 0006 05002286
ssb# 4096R/039F3C55 created: 2013-09-06 expires: 2021-09-06
ssb> 4096R/D30A19FE created: 2013-09-06 expires: 2021-09-06
card-no: 0006 05002286
ssb# 4096R/B179B044 created: 2013-09-06 expires: 2021-09-06
Version ..........: 2.1
Manufacturer .....: Yubico
Serial number ....: 05002286
Name of cardholder: [not set]
Language prefs ...: [not set]
Sex ..............: unspecified
URL of public key : [not set]
Login data .......: [not set]
Signature PIN ....: not forced
Key attributes ...: 4096R 4096R 2048R
Max. PIN lengths .: 127 127 127
PIN retry counter : 3 0 3
Signature counter : 1
Signature key ....: CEE3 7AE9 07BE 98DF CD5A E69C F131 4A8E 421F 9B78
created ....: 2013-09-06 07:08:49
Encryption key....: 71B5 26B3 C235 5CF2 41C5 4F35 D556 2397 D30A 19FE
created ....: 2013-09-06 07:32:42
Authentication key: [none]
General key info..: pub 4096R/421F9B78 2013-09-06 Ralph Bergmann <ralph@dasralph.de>
sec> 4096R/421F9B78 created: 2013-09-06 expires: 2021-09-06
card-no: 0006 05002286
ssb# 4096R/039F3C55 created: 2013-09-06 expires: 2021-09-06
ssb> 4096R/D30A19FE created: 2013-09-06 expires: 2021-09-06
card-no: 0006 05002286
ssb# 4096R/B179B044 created: 2013-09-06 expires: 2021-09-06
But when I try to commit something with
Code:
git commit -a -S -m "signed commit"
I get this error messageCode:
gpg: secret key parts are not available
gpg: skipped "421F9B78": Unusable secret key
gpg: signing failed: Unusable secret key
error: gpg failed to sign the data
fatal: failed to write commit object
gpg: skipped "421F9B78": Unusable secret key
gpg: signing failed: Unusable secret key
error: gpg failed to sign the data
fatal: failed to write commit object
What do I have to do to get it working?
I found this https://gpgtools.tenderapp.com/kb/gpg-k ... smart-card
Do I need to call fetch and set up a url?
Do I need to install this Java Card OpenPGP Card (https://developers.yubico.com/ykneo-openpgp/)?
EDIT
I created new signatures directly on the key and now it works