Hey guys, this has been nagging me for a while. I think it is GPG issue, but so far i have not found a solution.
Here’s the setup: NK3A Mini with ‘on-device’ generated keys. GPG is setup (the various files in ~/.gnupg/) so that i am able to SSH into remote machines using the auth key on NK3. How do i know? By using “ssh -v …” and verifying the signature of the accepted key, as well as the fact that i have to touch NK3 for the authentication to continue. ‘pinentry-curses’ also prompts me for the PIN, ‘ssh-add -L’ tells me what the public key is. Everything looks good.
The problem is that ‘gpg -K’ produces an empty list. I’ve tried both GPG’s scdaemon standalone setup as well as configuring it to use PCSC daemon with the proper magic in ~/.gnupg/scdaemon.conf. None of these configurations made any difference to ‘gpg -K’. While i can use NK3 to SSH, i totally can’t use it to encrypt a file or sign a message, for example.
I’m on Alpine Linux Edge so all software is fairly recent. GPG version is 2.4.1, pcsc-lite version 1.9.9. My theory is that there’s some sort of miscommunication between the generic GPG part and the smart-card backed, but i can’t tell what it is. Any ideas?
thanks,
Petko
PS: i didn’t include any config file snippets in order to keep this post short, but these can be provided on request.