Skip to content

Instantly share code, notes, and snippets.

@woods

woods/gen-key-script

Last active March 12, 2024 12:00
Show Gist options
  • Star 62 You must be signed in to star a gist
  • Fork 7 You must be signed in to fork a gist
  • Save woods/8970150 to your computer and use it in GitHub Desktop.
Save woods/8970150 to your computer and use it in GitHub Desktop.
Download ZIP
Creating gpg keys non-interactively
Raw
gen-key-script
Key-Type: 1
Key-Length: 2048
Subkey-Type: 1
Subkey-Length: 2048
Name-Real: Root Superuser
Name-Email: root@handbook.westarete.com
Expire-Date: 0
Raw
install.bash
# Generate the key
gpg --batch --gen-key gen-key-script
@terceranexus6
Copy link

This is awesome, thank you.

@bob5ec
Copy link

bob5ec commented Jan 23, 2019

I configured libvirt tu use /dev/urandom of the host: https://libvirt.org/formatdomain.html#elementsRng
That way keys generated within the VM should be ok.

@aristofanischionis
Copy link

aristofanischionis commented Apr 9, 2019
edited

Thanks that was really helpful
I got what I needed from : https://www.gnupg.org/documentation/manuals/gnupg-devel/Unattended-GPG-key-generation.html

@forty
Copy link

forty commented Oct 22, 2020

without creating an actual file:

gpg --batch --gen-key <<EOF
Key-Type: 1
Key-Length: 2048
Subkey-Type: 1
Subkey-Length: 2048
Name-Real: Root Superuser
Name-Email: root@handbook.westarete.com
Expire-Date: 0
EOF

@guillaume130679
Copy link

I am getting the following error when running the script:
gpg: agent_genkey failed: No pinentry
gpg: key generation failed: No pinentry

@woods
Copy link
Author

woods commented Nov 11, 2020 via email

@guillaume130679
Copy link

@guillaume130679 https://www.google.com/search?q=gpg%3A+agent_genkey+failed%3A+No+pinentry

On Wed, Nov 11, 2020 at 7:07 AM Bluzz44 @.> wrote: @.* commented on this gist. ------------------------------ I am getting the following error when running the script: gpg: agent_genkey failed: No pinentry gpg: key generation failed: No pinentry — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://gist.github.com/8970150#gistcomment-3523891, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAAAYDQ6S76KYB4LG66SCMLSPJ46NANCNFSM4S3ZFNJA .

This was more of an FYI note, I found how to resolve the issue https://www.gnupg.org/documentation/manuals/gnupg/Unattended-GPG-key-generation.html

Not sure what is different, but the code given on that page worked :)

@eexit
Copy link

eexit commented Jan 27, 2022

Add %no-protection if you need to generate passwordless keys. This also prevents the pinentry to pop up.

@muink
Copy link

muink commented Feb 27, 2023

Using Process Substitution can be support indentation

gpg --full-gen-key --batch <(echo "Key-Type: 1"; \
                             echo "Key-Length: 4096"; \
                             echo "Subkey-Type: 1"; \
                             echo "Subkey-Length: 4096"; \
                             echo "Expire-Date: 0"; \
                             echo "Name-Real: Root Superuser"; \
                             echo "Name-Email: root@handbook.westarete.com"; \
                             echo "%no-protection"; )

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment