Package: gnupg Version: 1.4.12-7 Severity: normal The manpage describes for both --hidden-encrypt-to and --encrypt-to 'No trust checking is performed for these user ids and even disabled keys can be used.' I tried to use this functionality with both an expired and a revoked key and with both this doesn't seem to be possible, using the --expert option for doing 'certain nonsensical or "silly" things' doesn't make any difference, get the following output:
gpg: keyid: skipped: unusable public key gpg: foo.txt: encryption failed: unusable public key I see a couple of possibilities here: I'm misunderstanding what trust checking entails, the manpage isn't explicit enough that the only thing it won't check is the trustdb, or the tool is following the relevant RFCs more strict as the manpage. I think -but am unsure- that the manpage should be more explicit and add a phrase like: Expired and revoked keys can't be used. Another possibility would be aligning the software to the manpage, something which I'd prefer but can't help with. -- System Information: Debian Release: 7.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages gnupg depends on: ii dpkg 1.16.9 ii gpgv 1.4.12-7 ii install-info 4.13a.dfsg.1-10 ii libbz2-1.0 1.0.6-4 ii libc6 2.13-37 ii libreadline6 6.2-8 ii libusb-0.1-4 2:0.1.12-20+nmu1 ii zlib1g 1:1.2.7.dfsg-13 Versions of packages gnupg recommends: ii gnupg-curl 1.4.12-7 ii libldap-2.4-2 2.4.31-1 Versions of packages gnupg suggests: ii eog 3.4.2-1+build1 pn gnupg-doc <none> ii imagemagick 8:6.7.7.10-5 ii libpcsclite1 1.8.4-1 -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
