Ticket #61 (defect)
Opened 4 years ago
openpgp --export-key does not include self-sigs
Status: new
| Reported by: | sion | Assigned to: | sion |
|---|---|---|---|
| Priority: | normal | Milestone: | |
| Component: | library | Version: | |
| Severity: | normal | Keywords: | |
| Cc: |
openpgp --export-key appears to emit the public key material and a User ID. But it does not emit the self-signature which should bind that User ID to its key.
This can be replicated with the following series of commands:
> mkdir testring > touch testring/{pub,sec}ring.gpg > openpgp --generate-key --userid='blah blah' --homedir=testring > openpgp --export-key --userid='blah blah' --keyring=$(pwd)/testring/pubring.gpg | openpgp --list-packets --armour --file=/dev/stdin
The output should show three packets: primary key, user ID, and self-signature. instead, it shows two: primary key and user ID.
This makes the exported key unusable for import into other OpenPGP tools (notably gpg) which ignore keys without a valid User ID (which requires a valid self-sig).
--dkg
