GnuPG can't handle some V3 secret keys

Werner Koch wk at
Wed May 2 20:21:01 CEST 2001

On Wed, 2 May 2001, Florian Weimer wrote:

> possible way, i.e. that leading zeroes are stripped.  However, there
> are exceptions, namely encrypted MPIs inside V3 secret key packets.
> These can contain leading zeroes, and in fact do so sometimes. For

Right, there might be a problem.  The stuff with the get_nbit_info()
used in certain cases might not work anymore.  The code is an ugly

IMO the correct solution is to handle encrypted v3 secret keys the
same way as v4 keys, by not interpreting them in any way in tbe
parser and just storing all the parameters together in one block and
parse them right after decryption.

> (There's an additional bug lurking in the secret key parser routine,
> but I haven't nailed down that one yet.)

Expiration times?


Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus

More information about the Gnupg-devel mailing list