Your message dated Mon, 05 Sep 2016 23:18:17 +0200
with message-id <3843435.BOkrIPNnPa@tuxin>
and subject line Re: [pkg-gnupg-maint] Bug#806531: gnupg2: old DSA 1024 key is
not useable
has caused the Debian Bug report #806531,
regarding gnupg2: old DSA 1024 key is not useable
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
806531: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=806531
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: gnupg2
Version: 2.1.9-1
Severity: important
Hey,
I have an old DSA 2014 key and used that key a lot, so I have a lot of mails
encrypted with that key, at least I want to read my old mails. Btw. the key is
also available at sks-keyservers.net.
I attached some output of gpg(2) --list-(secret-)keys. The failing part is gpg2
--list-secret-keys.
Also decrypt/encrypt a file on the cmdline with that key without any positive
outcome. I can use other keys that are RSA 4096.
The migration from 1->2 was made:
* I stopped gpg-agent
* copied the keys from an old location
* start gpg-agent again.
I tried also to manually reimport the secrect key again but that didn't fixed
it.
Reagrds,
sandro
--
% hkt export-pubkeys '3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4' |
hokey lint
[...]
Key has potential validity: good
Key has fingerprint: 3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4
Checking to see if key is OpenPGPv4: V4
Checking to see if key is RSA or DSA (>= 2048-bit): DSA 1024
Checking user-ID- and user-attribute-related items:
Sandro Knauß <[email protected]>:
Self-sig hash algorithms: [SHA512]
Preferred hash algorithms:
[SHA1,SHA256,RIPEMD160]
Key expiration times:
[10y5m26d85509s = Wed Nov 16 22:30:58 UTC 2016]
Key usage flags:
[ sign-data key
, certify-keys key ]
Sandro Knauß <[email protected]>:
Self-sig hash algorithms: [SHA512]
Preferred hash algorithms:
[SHA1,SHA256,RIPEMD160]
Key expiration times:
[10y5m26d85509s = Wed Nov 16 22:30:58 UTC 2016]
Key usage flags:
[ sign-data key
, certify-keys key ]
Sandro Knauss (university) <[email protected]>:
Self-sig hash algorithms: [SHA512]
Preferred hash algorithms:
[SHA1,RIPEMD160]
Key expiration times:
[10y5m26d85509s = Wed Nov 16 22:30:58 UTC 2016]
Key usage flags:
[ sign-data key
, certify-keys key ]
Sandro Knauß <[email protected]>:
Self-sig hash algorithms: [SHA512]
Preferred hash algorithms:
[SHA512,SHA384,SHA256,SHA224]
Key expiration times:
[10y5m26d85509s = Wed Nov 16 22:30:58 UTC 2016]
Key usage flags:
[ sign-data key
, certify-keys key ]
<uat:[jpeg:6984:c88f956eff4a]>:
Self-sig hash algorithms: [SHA512]
Preferred hash algorithms:
[SHA1,SHA256,RIPEMD160]
Key expiration times:
[10y5m26d85509s = Wed Nov 16 22:30:58 UTC 2016]
Key usage flags:
[ sign-data key
, certify-keys key ]
gnupg1:
% LANG=C gpg --list-keys --fingerprint 0x7703b4e4
pub 1024D/7703B4E4 2006-05-22 [expires: 2016-11-16]
Key fingerprint = 3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4
uid Sandro Knauß <[email protected]>
uid Sandro Knauß <[email protected]>
uid [jpeg image of size 6984]
uid Sandro Knau\xdf\x20<[email protected]>
uid Sandro Knauß <[email protected]>
uid Sandro Knau\xdf\x20<[email protected]>
uid Sandro Knauss (university) <[email protected]>
sub 4096g/8177A399 2014-11-17 [expires: 2016-11-16]
% LANG=C gpg --list-secret-keys --fingerprint 0x7703b4e4
sec 1024D/7703B4E4 2006-05-22 [expires: 2016-11-16]
Key fingerprint = 3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4
uid Sandro Knauß <[email protected]>
uid Sandro Knauß <[email protected]>
uid [jpeg image of size 6984]
uid Sandro Knau\xdf\x20<[email protected]>
uid Sandro Knauß <[email protected]>
uid Sandro Knau\xdf\x20<[email protected]>
uid Sandro Knauss (university) <[email protected]>
ssb 2048g/32E11209 2006-05-22 [expires: 2010-12-30]
ssb 4096g/FA67CC17 2010-12-26 [expires: 2011-12-26]
ssb 4096g/5D1C1EDA 2011-11-30 [expires: 2012-11-29]
ssb 4096g/6F650D51 2012-11-21 [expires: 2013-11-21]
ssb 4096g/74E1B06B 2013-11-19 [expires: 2014-11-19]
ssb 4096g/8177A399 2014-11-17 [expires: 2016-11-16]
and gnupg2:
% LANG=C gpg2 --list-keys --fingerprint 0x7703b4e4
gpg: keyserver option 'no-try-dns-srv' is unknown
pub dsa1024/7703B4E4 2006-05-22 [expires: 2016-11-16]
Key fingerprint = 3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4
uid [ultimate] Sandro Knauß <[email protected]>
uid [ultimate] Sandro Knauß <[email protected]>
uid [ultimate] [jpeg image of size 6984]
uid [ultimate] Sandro Knau\xdf\x20<[email protected]>
uid [ultimate] Sandro Knauß <[email protected]>
uid [ultimate] Sandro Knau\xdf\x20<[email protected]>
uid [ultimate] Sandro Knauss (university) <[email protected]>
sub elg4096/8177A399 2014-11-17 [expires: 2016-11-16]
% LANG=C gpg2 --list-secret-keys --fingerprint 0x7703b4e4
gpg: keyserver option 'no-try-dns-srv' is unknown
gpg: error reading key: No secret key
-- System Information:
Debian Release: stretch/sid
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 4.2.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages gnupg2 depends on:
ii dpkg 1.18.3
ii gnupg-agent 2.1.9-1
ii install-info 6.0.0.dfsg.1-3
ii libassuan0 2.4.0-1
ii libbz2-1.0 1.0.6-8
ii libc6 2.19-22
ii libgcrypt20 1.6.4-3
ii libgpg-error0 1.20-1
ii libksba8 1.3.3-1
ii libreadline6 6.3-8+b3
ii zlib1g 1:1.2.8.dfsg-2+b1
Versions of packages gnupg2 recommends:
ii dirmngr 2.1.9-1
Versions of packages gnupg2 suggests:
pn gnupg-doc <none>
ii parcimonie 0.9-3
pn xloadimage <none>
-- no debconf information
--- End Message ---
--- Begin Message ---
Control: tags 806531 -moreinfo
Hey dkg,
Well my laptop was broken meanwhile, so I had to reimport all keys and this
time, the import worked for these key:
$ ls -ld ~/.gnupg/.gpg-v21-migrated ~/.gnupg/private-keys-v1.d ~/.gnupg/
private-keys-v1.d/E364995F26201E023BD28401CF0CA1BE58F978A8.key
-rw-r--r-- 1 hefee hefee 0 Mai 14 23:46 /home/hefee/.gnupg/.gpg-v21-
migrated
drwx------ 2 hefee hefee 4096 Aug 25 12:47 /home/hefee/.gnupg/private-keys-
v1.d
-rw------- 1 hefee hefee 682 Mai 15 00:35 /home/hefee/.gnupg/private-keys-
v1.d/E364995F26201E023BD28401CF0CA1BE58F978A8.key
$ gpg --fingerprint --fingerprint --list-options show-unusable-subkeys --with-
keygrip --with-keygrip --list-keys 3D4DB440897F43A0F9117884858C390F7703B4E4
gpg: keyserver option 'no-try-dns-srv' is unknown
pub dsa1024/0x858C390F7703B4E4 2006-05-22 [SC] [widerrufen: 2016-01-17]
Schl.-Fingerabdruck = 3D4D B440 897F 43A0 F911 7884 858C 390F 7703 B4E4
Keygrip = E364995F26201E023BD28401CF0CA1BE58F978A8
uid [ widerrufen] Sandro Knauß <[email protected]>
uid [ widerrufen] [jpeg image of size 6984]
uid [ widerrufen] Sandro Knau\xdf\x20<[email protected]>
uid [ widerrufen] Sandro Knauß <sandro.knauss@uni-
goettingen.de>
uid [ widerrufen] Sandro Knau\xdf\x20<[email protected]
goettingen.de>
uid [ widerrufen] Sandro Knauss (university)
<[email protected]>
[...]
sub elg2048/0xB6AFAAF532E11209 2006-05-22 [E] [widerrufen: 2016-01-17]
Schl.-Fingerabdruck = 099A 6BD9 945A 4747 C9EF F550 B6AF AAF5 32E1 1209
Keygrip = 1322CC964941146648304526542D815547CC7B3D
Regards,
sandro
signature.asc
Description: This is a digitally signed message part.
--- End Message ---
