Autocrypt exporting expired and disabled GPG keys
Evolution 3.50.4-1.fc39
It appears the feature exporting public GPG keys via Autocrypt header in emails, attaches all keys available for the email ID, including any expired or disabled keys.
This can be verified by base64-decoding the Autocrypt: header value of a sent email, and gpg2 --homedir /tmp/newdir --import < data
and seeing the result contains keys that are expired, and also keys that were marked as disabled in gpg.
The drop-subkey= filter I see in the sources does drop expired subkeys, but any expired parent pubkey and its expired uids is still exported.
The expected behavior is that expired or disabled keys would not be included in the Autocrypt: header.
Edited by pv