gpg 1.0.5: unusable secret key

Werner Koch
Thu Jun 14 13:37:02 2001

 || On Wed, 13 Jun 2001 15:33:52 -0500
 || David Champion <> wrote: 

 dc> GnuPG 1.0.3 says that it *never* expires, and happily signs.

This was fixed in 1.0.5.  From NEWS:

    * Rewritten key selection code so that GnuPG can better cope with
      multiple subkeys, expire dates and so.  The drawback is that it
      is slower.

Well not very prominent, but 1.0.6 says:

    * Fixed expire time calculation and keyserver access.

1.0.5 calculated the key expire time based on the creation date of the
    signature packtet and not of the key packet.

 dc> Also, for future versions, it would be nice for gpg to say that the
 dc> signing key is expired rather than to say only that no usable key was

Not so easy, because it is done during key selection and this just
returns a good/bad condition - the selection code does not know
whether the key will be eventually be used.


Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus