diff options
| author | Werner Koch <wk@gnupg.org> | 2022-03-08 10:13:44 +0100 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2022-03-08 19:26:01 +0100 |
| commit | ee013c5350ce6a5b3d4089753cb99a44802fdfa8 (patch) | |
| tree | d81bc0fc1d8a47e2230f35df87e6f4ca84cdb116 /doc | |
| parent | gpg: fix --enarmor with zero length source file (diff) | |
| download | gnupg2-ee013c5350ce6a5b3d4089753cb99a44802fdfa8.tar.xz gnupg2-ee013c5350ce6a5b3d4089753cb99a44802fdfa8.zip | |
gpg: New option --require-compliance.
* g10/options.h (opt): Add field flags.require_compliance.
* g10/gpg.c (oRequireCompliance): New.
(opts): Add --require-compliance.
(main): Set option.
* g10/mainproc.c (proc_encrypted): Emit error if non de-vs compliant.
(check_sig_and_print): Ditto.
* g10/encrypt.c (encrypt_crypt): Ditto.
--
Note that in the --encrypt and --verify cased other checks may kick in
earlier than this new --require-compliance controlled one.
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/gpg.texi | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/doc/gpg.texi b/doc/gpg.texi index ff66301d1..f6c445658 100644 --- a/doc/gpg.texi +++ b/doc/gpg.texi @@ -2957,6 +2957,17 @@ This option adjusts the compliance mode "de-vs" for stricter key size requirements. For example, a value of 3000 turns rsa2048 and dsa2048 keys into non-VS-NfD compliant keys. +@item --require-compliance +@opindex require-compliance +To check that data has been encrypted according to the rules of the +current compliance mode, a gpg user needs to evaluate the status +lines. This is allows frontends to handle compliance check in a more +flexible way. However, for scripted use the required evaluation of +the status-line requires quite some effort; this option can be used +instead to make sure that the gpg process exits with a failure if the +compliance rules are not fulfilled. Note that this option has +currently an effect only in "de-vs" mode. + @end table |