Next: addgnupghome, Previous: watchgnupg, Up: Helper Tools
gpgv2
is an OpenPGP signature verification tool.
This program is actually a stripped down version of gpg
which is
only able to check signatures. It is somewhat smaller than the fully blown
gpg
and uses a different (and simpler) way to check that
the public keys used to make the signature are valid. There are
no configuration files and only a few options are implemented.
gpgv2
assumes that all keys in the keyring are trustworthy.
By default it uses a keyring named trustedkeys.gpg which is
assumed to be in the home directory as defined by GnuPG or set by an
option or an environment variable. An option may be used to specify
another keyring or even multiple keyrings.
gpgv2
recognizes these options:
--verbose
-v
--quiet
-q
--keyring
file--status-fd
n--logger-fd n
n
and not to stderr.
--ignore-time-conflict
--homedir
dirThe program returns 0 if everything was fine, 1 if at least one signature was bad, and other error codes for fatal errors.
pgpfile
sigfile
sigfile
is the detached
signature (either ASCII armored or binary) and are the signed
data; if this is not given the name of the file holding the signed data is
constructed by cutting off the extension (".asc", ".sig" or ".sign") from
sigfile
.
gpg2(1)