[pkg-gnupg-maint] Bug#836554: Bug#836554: gnupg - file verification leaves agent running
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Thu Sep 15 14:26:35 UTC 2016
Hi Bastian--
On Wed 2016-09-07 11:57:19 -0400, Daniel Kahn Gillmor wrote:
> On Sun 2016-09-04 16:51:13 +0200, Bastian Blank wrote:
>> The only way to verify an inline-signed message and also get the
>> unescaped message is to use gpg --decrypt. --verify does not even
>> accept --output.
>
> so if gpgv supported --output would that suit your needs?
fwiw, as of gpgv 2.1.15-3, gpgv now supports --output. It'll be in
upstream 2.1.16 when that is released, but i've cherry-picked the fix
and will maintain it in debian until 2.1.16 is released.
To be clear: the data sent to --output is the data that is (ostensibly)
signed. The signature itself may or may not be correct, so the return
code and --status-fd are still necessary for signature verification.
Please let me know if you have any trouble using this.
Regards,
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 930 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-gnupg-maint/attachments/20160915/bc56e47f/attachment.sig>
More information about the pkg-gnupg-maint
mailing list