[pkg-gnupg-maint] Bug#796774: [gpgsm] Can't create new certificate

Sandro Knauß bugs at sandroknauss.de
Mon Aug 24 11:42:17 UTC 2015 

Package: gpgsm
Version: 2.0.28-1
Severity: important

When I try to generate a new ceritificate gpgsm fails with an internal error:

$ gpgsm --gen-key
gpgsm (GnuPG) 2.0.28; Copyright (C) 2015 Free Software Foundation, Inc.
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

gpgsm: enabled debug flags: x509 mpi crypto memory cache memstat hashing 
assuan
Please select what kind of key you want:
   (1) RSA
   (2) Existing key
   (3) Existing key from card
Your selection? 1
What keysize do you want? (2048) 
Requested keysize is 2048 bits
Possible actions for a RSA key:
   (1) sign, encrypt
   (2) sign
   (3) encrypt
Your selection? 1
Enter the X.509 subject name: CN=test
Enter email addresses (end with an empty line):
> sdfgsdg at test.de
> 
Enter DNS names (optional; end with an empty line):
> 
Enter URIs (optional; end with an empty line):
> 
Parameters to be used for the certificate request:
    Key-Type: RSA
    Key-Length: 2048
    Key-Usage: sign, encrypt
    Name-DN: CN=test
    Name-Email: sdfgsdg at test.de

Really create request? (y/N) y
Now creating certificate request.  This may take a while ...
gpgsm: DBG: connection to agent established
gpgsm: about to sign CSR for key: &2B76EFEE549CFE06D606C2E239542CA06F762DCD
Ohhhh jeeee: ... this is a bug (md.c:809:md_read)
Abgebrochen


also when trying the the server mode:

$ gpgsm --server
# Home: ~/.gnupg
# Config: /home/developer/.gnupg/gpgsm.conf
# AgentInfo: /home/developer/.gnupg/S.gpg-agent:5197:1
# DirmngrInfo: [not set]
OK GNU Privacy Guard's S/M server 2.0.28 ready
INPUT FD=1
OK
OUTPUT FD=2
OK
GENKEY
key-type:      RSA
key-length:    2048
name-email:    test at test.de
name-dn:       CN=asdf asdf,O=asdf,C=asdf
<Ctrl+D>
Ohhhh jeeee: ... this is a bug (md.c:809:md_read)
Aborted

--- System information. ---
Architecture: amd64
Kernel:       Linux 4.1.0-rc5-siduction-amd64

Debian Release: stretch/sid
  500 unstable        ftp.spline.de 
  500 unstable        debian 
  500 testing         debian 
  500 stable          debian 
  500 oldstable       debian 
  450 unstable        pangea-data.s3.amazonaws.com 
  400 unstable        deb-multimedia.org 
  400 stable          deb.opera.com 
  110 experimental    debian 

--- Package information. ---
Depends              (Version) | Installed
==============================-+-=============
gnupg-agent       (= 2.0.25-1) | 2.0.28-1
libassuan0          (>= 2.0.1) | 2.2.1-1
libbz2-1.0                     | 1.0.6-8
libc6                (>= 2.14) | 
libgcrypt11         (>= 1.5.1) | 
libgpg-error0        (>= 1.10) | 
libksba8            (>= 1.2.0) | 
libreadline6          (>= 6.0) | 
zlib1g            (>= 1:1.1.4) | 
scdaemon          (= 2.0.25-1) | 


Recommends      (Version) | Installed
=========================-+-===========
dirmngr                   | 1.1.1-5


Package's Suggests field is empty.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20150824/4d4edc56/attachment-0001.sig>

More information about the pkg-gnupg-maint mailing list