Control: severity -1 important Hi Ilario,
First off, thanks for this thorough report :-) This seems to be due to gpg ignoring signatures under the cutoff certification level (2 by default) when exporting with the ‘export-clean’ option. Compare the output of the following two lines: gpg --min-cert-level=1 --export-options export-clean --export $keyID | gpg --list-packets | grep -B1 -A3 'sigclass 0x11$' gpg --min-cert-level=2 --export-options export-clean --export $keyID | gpg --list-packets | grep -B1 -A3 'sigclass 0x11$' If that behavior isn't consistent, that's a bug in gpg. (And if I got the manpage right, the cutoff certification level is only relevant when building the trustdb, hence should be irrelevant when exporting.) I'd be happy to reassign it myself, but I couldn't a find a key for which export-clean works as expected. Would you mind asking the owner of Key2 if they would like their key to be listed in a bug report and/or a unit test? In the mean time, adding ‘min-cert-level 1’ to caff's gnupghome should help. Cheers, -- Guilhem.
signature.asc
Description: Digital signature
