GnuPG 2 does not import older keys with RSA-E and RSA-S anymore

Bernhard Reiter bernhard at
Wed Sep 16 11:50:58 CEST 2009

It seems that some GnuPG2 2.0.12 packages do not import old keys
with the deprecated 
following algorithms anymore:     
      2          - RSA Encrypt-Only [HAC]
      3          - RSA Sign-Only [HAC]
rfc4880 notes:
   Encrypt-Only (2) and RSA Sign-Only are deprecated and SHOULD NOT be
   generated, but may be interpreted.

For a test case see:

Gpg1 still does it.

Certainly a defect is that the algorithm is reported as unknown.
I wonder though, why this was changes as rf4880 allows for interpretation
of such keys. 


Managing Director - Owner:       (Free Software Company)
Germany Coordinator: Coordinator:
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20090916/d568ddc7/attachment.pgp>

More information about the Gnupg-devel mailing list