gpg: Tweak compliance checking for verification
6502bb0d2af5
Actions

Description

gpg: Tweak compliance checking for verification

* common/compliance.c (gnupg_pk_is_allowed): Rework to always allow
verification.
* g10/mainproc.c (check_sig_and_print): Print a con-compliant warning.
* g10/sig-check.c (check_signature2): Use log_error instead of
log_info.

We should be able to verify all signatures. So we only print a
warning. That is the same beheavour as for untrusted keys etc.

GnuPG-bug-id: T3311
Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

• werner

Authored on Jul 27 2017, 4:22 PM

Parents

rG1bd22a85b4f0: gpg,sm: Allow encryption (with warning) to any key in de-vs mode.

Branches

Unknown

Tags

Unknown

Tasks

T3311: Compliance: Verification of DSA signatures fails with invalid public key algorithm

Event Timeline

• werner added a task: T3311: Compliance: Verification of DSA signatures fails with invalid public key algorithm.Jul 27 2017, 4:27 PM

• werner committed rG6502bb0d2af5: gpg: Tweak compliance checking for verification (authored by • werner).Jul 27 2017, 4:22 PM

dkg mentioned this in T2849: dirmngr fails to terminate on SIGTERM if an existing connection is open.Jul 28 2017, 12:30 AM

Changes (3)

Path

Size

common/

compliance.c

g10/

mainproc.c

sig-check.c

rG6502bb0d2af5

View Options

common/compliance.c

View Options

g10/mainproc.c

View Options

gpg: Tweak compliance checking for verification6502bb0d2af5Actions

Description

Details

Event Timeline

Changes (3)

rG6502bb0d2af5

common/compliance.c

g10/mainproc.c

g10/sig-check.c

gpg: Tweak compliance checking for verification
6502bb0d2af5
Actions