in 11403a46358f9b6e98776974f3c70f211d9adf85, the python gpg bindings appear to have radically changed the semantics of the verify= argument to the gpg.Context.decrypt() function.
+ if verify is not None: + if isinstance(verify, bool) is True: + if verify is False: + verify = True + sink_result = True + else: + pass
This appears to change verify from False to True, which means that if there is no signature, an error will be raised anyway.
See https://bugs.debian.org/911568 as one example of a problem introduced by this change:
File "/usr/lib/python3/dist-packages/impass/db.py", line 112, in _decryptDB data, _, _ = self._gpg.decrypt(try2, verify=False) File "/usr/lib/python3/dist-packages/gpg/core.py", line 431, in decrypt for s in verify_result.signatures): AttributeError: 'NoneType' object has no attribute 'signatures'