1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-18 14:17:03 +01:00

doc: Add an example for --default-new-key-algo

--
This commit is contained in:
Werner Koch 2018-04-09 10:44:44 +02:00
parent a4e26f2ee8
commit 519e4560e8
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B
2 changed files with 14 additions and 5 deletions

View File

@ -1,12 +1,16 @@
# vsnfd.prf - Configure options for the VS-NfD mode -*- conf -*- # vsnfd.prf - Configure options for the VS-NfD mode -*- conf -*-
#
# The options for each tool are configured in a section ("[TOOL]");
# see the respective man page for a description of these options and
# the gpgconf manpage for a description of this file's syntax.
[gpg] [gpg]
compliance de-vs compliance de-vs
default-new-key-algo rsa3072/cert,sign+rsa3072/encr default-new-key-algo rsa3072/cert,sign+rsa3072/encr
[gpgsm] [gpgsm]
enable-crl-checks
compliance de-vs compliance de-vs
enable-crl-checks
[gpg-agent] [gpg-agent]
enable-extended-key-format enable-extended-key-format

View File

@ -1014,7 +1014,7 @@ signing.
Encrypt) are set during key creation. Sometimes it is useful to Encrypt) are set during key creation. Sometimes it is useful to
have the opportunity to change them (for example to add have the opportunity to change them (for example to add
Authenticate) after they have been created. Please take care when Authenticate) after they have been created. Please take care when
doing this, the possible usage flags depend on the key algorithm. doing this; the allowed usage flags depend on the key algorithm.
@item cross-certify @item cross-certify
@opindex keyedit:cross-certify @opindex keyedit:cross-certify
@ -3338,9 +3338,14 @@ absolute date in the form YYYY-MM-DD. Defaults to "0".
@item --default-new-key-algo @var{string} @item --default-new-key-algo @var{string}
@opindex default-new-key-algo @var{string} @opindex default-new-key-algo @var{string}
This option can be used to change the default algorithms for key This option can be used to change the default algorithms for key
generation. Note that the advanced key generation commands can always generation. The @var{string} is similar to the arguments required for
be used to specify a key algorithm directly. Please consult the the command @option{--quick-add-key} but slighly different. For
source code to learn the syntax of @var{string}. example the current default of @code{"rsa2048/cert,sign+rsa2048/encr"}
(or @code{"rsa3072"}) can be changed to the value of what we currently
call future default, which is @code{"ed25519/cert,sign+cv25519/encr"}.
You need to consult the source code to learn the details. Note that
the advanced key generation commands can always be used to specify a
key algorithm directly.
@item --allow-secret-key-import @item --allow-secret-key-import
@opindex allow-secret-key-import @opindex allow-secret-key-import