Hi,

I’ve seen some tutorial to create EdDSA key with Gnupg

gpg --full-gen-key

and it’s supposed to allow me to create ECC key, but I see only

Please select what kind of key you want:
(1) RSA and RSA (default)
(2) DSA and Elgamal
(3) DSA (sign only)
(4) RSA (sign only)
(14) Existing key from card
Your selection?\

gpg --version show:


gpg (GnuPG) 2.2.27
Supported algorithms:
Pubkey: RSA, ELG, DSA, ECDH, ECDSA, EDDSA

Any idea what’s wrong ?

  • Anafabula@discuss.tchncs.de
    link
    fedilink
    arrow-up
    11
    ·
    3 months ago

    I remember on some distros I had to add --expert, never checked why. Maybe was an old version.

    gpg --expert --full-gen-key

    • Gordon_F@lemmy.mlOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      3 months ago

      Thank you @Anafabula@discuss.tchncs.de ! it works !

      Please select what kind of key you want:
      (1) RSA and RSA (default)
      (2) DSA and Elgamal
      (3) DSA (sign only)
      (4) RSA (sign only)
      (7) DSA (set your own capabilities)
      (8) RSA (set your own capabilities)
      (9) ECC and ECC
      (10) ECC (sign only)
      (11) ECC (set your own capabilities)
      (13) Existing key
      (14) Existing key from card\

      I’m wondering whats is the option: (9) ECC and ECC ?? I found nothing in their documentation :/

  • Rogue@feddit.uk
    link
    fedilink
    arrow-up
    1
    ·
    3 months ago

    I had the same issue so wrote this down when I figured it out

    Generate ultimate key

    gpg2 --quick-generate-key hello@example.com ed25519 default 0 
    

    Add sub key

    gpg2 --quick-add-key <FINGERPRINT> ed25519
    

    List keys in long format

    gpg2 --list-keys --with-subkey-fingerprint --keyid-format long 
    
  • conorab@lemmy.conorab.com
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    3 months ago

    What distro and version of that distro are you using? Did you install gpg from the repository or elsewhere? What version of gpg are you running?

  • delirious_owl
    link
    fedilink
    arrow-up
    2
    arrow-down
    5
    ·
    3 months ago

    Unless you’re working with embedded chips with very small storage space, I’d recommend 4098-bit RSA