Page MenuHome GnuPG
Create Task
Maniphest T3622

--export-options export-minimal,export-clean includes unusable subkeys
Closed, ResolvedPublic
Actions

Description

Given that --export --export-options export-minimal,export-clean does not include unusuable User IDs, it seems odd that it includes unusable subkeys (i.e. subkeys that are revoked or expired).

0 dkg@alice:~$ gpg --list-keys $PGPID
gpg: please do a --check-trustdb
pub   rsa4096 2007-06-02 [SC] [expires: 2018-12-31]
      0EE5BE979282D80B9F7540F1CCD2ED94D21739E9
uid           [ultimate] Daniel Kahn Gillmor <dkg@fifthhorseman.net>
uid           [ultimate] Daniel Kahn Gillmor <dkg@openflows.com>
uid           [ultimate] [jpeg image of size 3515]
uid           [ultimate] Daniel Kahn Gillmor <dkg@debian.org>
uid           [ultimate] Daniel Kahn Gillmor <dkg@aclu.org>
sub   rsa4096 2017-12-04 [E] [expires: 2018-12-31]
sub   rsa4096 2017-12-04 [S] [expires: 2018-12-31]
sub   rsa3072 2017-12-04 [A] [expires: 2018-12-31]

0 dkg@alice:~$ gpg --export-options export-minimal,export-clean --export $PGPID | gpg --list-packets | grep -c 'sub key'
13
0 dkg@alice:~$

I think that either (or both) of export-minimal or export-clean should also mean dropping unusable subkeys.

At a minimum, there should be an option to explicitly exclude them from export.

(yes, i have several unusable subkeys, because i practice regular subkey rotation)

Revisions and Commits

rG GnuPG
rG8055f186a32e gpg: Let export-clean remove expired subkeys.
rGc2fd65ec8498 gpg: Let export-clean remove expired subkeys.

Related Objects

Event Timeline

dkg created this task.Dec 21 2017, 7:52 PM
werner added a subscriber: werner.Dec 29 2017, 12:21 PM

I can see the case for encryption subkeys. Signing subkeys are still useful after their expiration.

dkg added a comment.Jan 3 2018, 1:08 AM

Agreed, Signing subkeys can be useful for checking historical signatures. And even encryption subkeys *can* be useful after their expiration, e.g. when doing historical auditing.

But the question posed here is what should happen on export-minimal.

Perhaps export-clean should drop expired encryption- and authentication-capable subkeys, but not drop expired signing-capable subkeys. while export-minimal could drop all expired subkeys?

werner triaged this task as Normal priority.Feb 22 2018, 10:37 AM
werner edited projects, added Feature Request; removed Bug Report.
dkg mentioned this in T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary.Feb 23 2018, 12:28 AM
werner raised the priority of this task from Normal to High.May 28 2018, 7:11 PM
werner added a commit: rGc2fd65ec8498: gpg: Let export-clean remove expired subkeys..Jul 9 2018, 10:10 AM
werner added a commit: rG8055f186a32e: gpg: Let export-clean remove expired subkeys..Jul 9 2018, 10:45 AM
werner closed this task as Resolved.Jul 9 2018, 10:46 AM
werner claimed this task.

To be released with 2.2.9