Page MenuHome GnuPG
Create Task
Maniphest T553

First suitable key is used for encryption even when expired
Closed, ResolvedPublic
Actions

Description

Release: 0.9.2

Environment

Windows XP Prof. x64 SP1, Outlook 2003 SP1

Description

When having two or more public keys for the same address in the keyring, the first key found is used, regardless of its state.
That means, that if you have an expired key and a valid one for the same person in the keyring, it can happen that the plugin tries to use the expired key instead of the valid key. Therefore, the encryption fails.
The plugin should check the validity of a key before using it for encryption. Ideally, one should present a dialog asking which key to use if multiple possible keys are found.

How To Repeat

Send mail to a contact with an expired key and a valid key in the keyring.
If the expired key was imported prior to the valid key, the encryption fails.

Details

Due Date
May 10 2007, 2:00 AM

Event Timeline

boehme added projects: gpgol, Bug Report.Sep 29 2005, 11:52 AM
werner added a project: Info Needed.Apr 16 2007, 3:35 PM
werner added a subscriber: werner.

Does this still happen with gpg4win 1.0.9?

werner set Due Date to May 10 2007, 2:00 AM.Apr 16 2007, 3:35 PM
werner closed this task as Resolved.Dec 10 2008, 3:56 PM
werner added a project: Too Old.