Are there cases where gpg --verify will exit 0, even if verification failed?

Werner Koch wk at gnupg.org
Wed Jan 14 21:15:54 CET 2015


On Wed, 14 Jan 2015 17:40, patrick-mailinglists at whonix.org said:

> Do you mean, for example, the signature could be valid, but the key that
> signed it could be revoked and gpg would still exit 0?

Sure.  It is just to complex to put it into one number.  Consider the
case for multiple signatures - who is going to decide whether the
signature is valid.  This has all been discussed about 15 years ago
with the result of writing the gpgv binary which is suitable for most
automated signature verification use cases.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.




More information about the Gnupg-users mailing list