[MlMt] GPG passphrase issues

[Benny Kjær Nielsen]

On 8 Sep 2013, at 11:29, Felix Kling wrote:

> On 7 Sep 2013, at 23:29, list at felix-kling.de wrote:
>> So, the problem seems to be the option `--digest-algo SHA1` (sha1 
>> generates a 160 bit hash). If I remove it, I can sign a file 
>> successfully. This might be because my key is 2048 bit, I don't 
>> really know though.
>
> I created a new 4096-bit RSA key and I could sign without any 
> problems. So either the problem was that I used a DSA key for signing, 
> or a 2048-bit DSA key. At least we know what the problem is, I might 
> not be the only one with that issue (now or in the future).

I think DSA is a at least a hint to what the problem is. From RFC 4880: 
“DSA signatures MUST use hashes that are equal in size to the number 
of bits of q, the group generated by the DSA key's generator value.”

> Also, this time the GPGTools passphrase dialog popped up, so the 
> problem with my homebrew setup probably is that the corresponding 
> `pinentry` application only works in the console.

Of course, I should have thought of that. Sorry.

-- 
Benny
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freron.com/pipermail/mailmate/attachments/20130908/fbb36900/attachment.html>