Page MenuHome GnuPG
Create Task
Maniphest T2186

--encrypt-to ambiguous with a expired and revoked key
Open, LowPublic
Actions

Description

Since gnupg 2.1.10 the option --encrypt-to checks for for ambigious keys. But
this also fails, when there are two keys, where one key is valid and the other
one is expired and revoked.

This is a common case. When someone creates a new key, it is a good practise to
keep the old one to decrypt old data.

$ LC_ALL=C gpg --encrypt --encrypt-to mail@oshahn.de -r 0x5334752442830117 --armour
gpg: key specification 'mail@oshahn.de' is ambiguous
gpg: (check argument of option '--encrypt-to')
gpg: 'mail@oshahn.de' matches at least:
gpg: B953A7355F1149ABCA8F2B2AE4835646BDE8EA81
gpg: 6D3A9AB887A6229308D9C007E72581B1FE9F104C

See also:
https://admin.hostpoint.ch/pipermail/enigmail-users_enigmail.net/2015-December/003563.html

Details

Version
2.1.10

Related Objects

Event Timeline

ostcar added projects: gnupg, Bug Report.Dec 12 2015, 1:16 PM
ostcar set Version to 2.1.10.
ostcar added a subscriber: ostcar.
neal added a subscriber: neal.Dec 15 2015, 9:00 AM

This is a good suggestion. Thanks.

neal added a project: Restricted Project.Dec 16 2015, 2:45 PM

I've implemented this in fc010b6. If you get a chance to test it, I'd
appreciate any feedback! Thanks!

werner added a subscriber: werner.May 6 2016, 8:31 PM

iirc, we removed the patch from 2.1 due to some problems. We plan to work on it
in 2.3.

werner added a project: Stalled.May 6 2016, 8:31 PM
werner removed a project: Restricted Project.
marcus added a subscriber: marcus.Jul 13 2017, 4:15 PM

The revert was done in 7195b94345b0bb937477dc47fc5ec27fb108a099.

marcus edited projects, added gnupg (gpg23); removed gnupg.Jul 13 2017, 4:17 PM
werner lowered the priority of this task from Normal to Low.Feb 10 2021, 11:01 AM
werner edited projects, added Feature Request; removed Stalled, Bug Report.
werner added a project: gnupg24.Dec 13 2022, 11:21 AM
werner updated the task description. (Show Details)Jan 19 2023, 4:48 PM
werner removed a project: gnupg (gpg23).