gpgme verify

Florian Schwind f.schwind at
Mon Oct 6 10:14:36 CEST 2008

Werner Koch wrote:
> On Mon,  6 Oct 2008 09:32, f.schwind at said:
>> Like I wrote above, the same code is working for me on linux, but I get
>> the GPGME_VALIDITY_UNKNOWN on windows with literally the same keyring!
> Using the same trustdb.gpg.  If not, do an --export-ownertrust on Unix
> and an --import-ownertrust on Windows.

Yes, I'm even using the same gpg-homedir! The secret.gpg, the
pubring.gpg and the trustdb.gpg are the same. (All in one directory
mounted on Linux and Windows via NFS).

>> (And I'm also wondering why I get the validity FULL on linux with gpgme,
>> even when gpg says the trust and the validity are ULTIMATE?)
> Ultimate is only used with certification but not for data signatures.
> Either you have full trust or you don't have.  "Ultimate" expresses that
> the validity of the key derives directly from owning the secret key.

Meaning FULL is the best I get with signatures? And I shouldn't trust
everything below...

> Shalom-Salam,
>    Werner

Best Regards

More information about the Gnupg-devel mailing list