Page MenuHome GnuPG

In -de-vs mode it is not possible so verify sigs with Ed25519 release keys.
Open, HighPublic

Description

This is a practical problem for customers of GnuPG VS-Desktop, where the compliance mode is globally configured.

gpg should not bail out here but verify the signature and print a notice. For script compatibility an extra option might be useful.

Event Timeline

werner triaged this task as High priority.Wed, Oct 13, 3:01 PM
werner created this task.
werner created this object with edit policy "Contributor (Project)".

Wouldn't it be safer to use gpgv for verifying the signature than to add a code path to gpg to circumvent the hard de-vs compliance check?