[Bug 295043] New: openpgp signature of expired key is shown as invalid

[Hauke Laging]

https://bugs.kde.org/show_bug.cgi?id=295043

           Summary: openpgp signature of expired key is shown as invalid
           Product: kmail2
           Version: unspecified
          Platform: openSUSE RPMs
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: minor
          Priority: NOR
         Component: crypto
        AssignedTo: kdepim-bugs at kde.org
        ReportedBy: hauke at laging.de


Version:           unspecified (using KDE 4.6.0) 
OS:                Linux

After the expiration of the signing key the signature is shown as invalid. Not
even the details give any hint to the real problem. Even worse: It is as far as
I can see exactly the same behaviour like with a bad signature.

GnuPG knows these statuses for signatures (see
/usr/share/doc/packages/gpg2/DETAILS):
GOODSIG
EXPSIG
EXPKEYSIG
REVKEYSIG
BADSIG
ERRSIG
VALIDSIG

It seems to me that kmail tells apart only GOODSIG on the one hand and the rest
on the other. And for the first case the different TRUST_* levels.

I think this can be considered a bug.

Reproducible: Always

Steps to Reproduce:
Click on the mail.


Expected Results:  
EXPSIG and EXPKEYSIG should be treated like the combination
GOODSIG/TRUST_UNDEFINED i.e. show the mail border in yellow and tell the user
about the problem in the details section.

-- 
Configure bugmail: https://bugs.kde.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.