Dear Kevin,

Am 02.07.2026 schrieb Kevin J. McCarthy:
> In the Mutt GPGME code, in get_candidates(), the APPLICATION_PGP section has
> code to check for revoked/expired/disabled flags:
[...]
> However, the APPLICATION_SMIME code in the same function is missing those
> checks.

Thank you for finding that code. For testing purposes, I have added just
the lines

          if (key->expired)
            flags |= KEYFLAG_EXPIRED;

to the corresponding S/MIME loop and it works as expected (although the
option pgp_show_unusable seems to be ignored but I have to further check
that).

While diving through crypt-gpgme.c I found the functions
crypt_select_key and crypt_entry_fmt. That led me to the option
pgp_entry_format and its sequence for the time:

%[<s>]  date of the key where <s> is an strftime(3) expression

I wonder why it shows the creation date and not the expiration date of
the key?

Changing the corresponding line from 
  tt = key->kobj->subkeys->timestamp;
to
  tt = key->kobj->subkeys->expires;
shows the expiration date which I find much more useful. 

For me this small change is a decent solution to my problem. (Another
alternative would be to implement a sequence such that the user can
choose which date to show ... but that's more complicated.)

Best,
Robert

Attachment: signature.asc
Description: PGP signature

Reply via email to