security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-07-03 22:56:33 +02:00
Code Activity

Obsolete option --no-sig-create-check.

Browse source 
* cipher/rsa.c (rsa_sign): Verify after sign.
* g10/gpg.c (opts): Make --no-sig-create-check a NOP.
* g10/options.h (opt): Remove field "no_sig_create_check".
* g10/sign.c (do_sign): Do check only for DSA.

Signed-off-by: Werner Koch <wk@gnupg.org>
This commit is contained in:
Werner Koch 2015-08-31 23:55:16 +02:00
parent ae38cbbca4
commit ae61f01523
No known key found for this signature in database
GPG key ID: E3FDFF218E45B72B
5 changed files with 19 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

7
doc/gpg.texi
View file

@ -1625,12 +1625,7 @@ can be done if someone else has write access to your public keyring.
@item --no-sig-create-check
@opindex no-sig-create-check
GnuPG normally verifies each signature right after creation to protect
against bugs and hardware malfunctions which could leak out bits from
the secret key. This extra verification needs some time (about 115%
for DSA keys), and so this option can be used to disable it.
However, due to the fact that the signature creation needs manual
interaction, this performance penalty does not matter in most settings.
This options is obsolete. It has no function.
@item --auto-check-trustdb
@itemx --no-auto-check-trustdb