summaryrefslogtreecommitdiffstats
path: root/sq/man-sq-autocrypt/sq.1
diff options
context:
space:
mode:
Diffstat (limited to 'sq/man-sq-autocrypt/sq.1')
-rw-r--r--sq/man-sq-autocrypt/sq.125
1 files changed, 23 insertions, 2 deletions
diff --git a/sq/man-sq-autocrypt/sq.1 b/sq/man-sq-autocrypt/sq.1
index 891006f4..540853fc 100644
--- a/sq/man-sq-autocrypt/sq.1
+++ b/sq/man-sq-autocrypt/sq.1
@@ -1,4 +1,4 @@
-.TH SQ "1" "JANUARY 2021" "0.24.0 (SEQUOIA-OPENPGP 1.0.0)" "USER COMMANDS" 5
+.TH SQ "1" "MARCH 2021" "0.24.0 (SEQUOIA-OPENPGP 1.0.0)" "USER COMMANDS" 5
.SH NAME
sq \- A command\-line frontend for Sequoia, an implementation of OpenPGP
@@ -42,7 +42,20 @@ Prints this message or the help of the given subcommand(s)
Decrypts a message
Decrypts a message using either supplied keys, or by prompting for a
-password. Any signatures are checked using the supplied certificates.
+password. If message tampering is detected, an error is returned.
+See below for details.
+
+If certificates are supplied using the "\-\-signer\-cert" option, any
+signatures that are found are checked using these certificates.
+Verification is only successful if there is no bad signature, and the
+number of successfully verified signatures reaches the threshold
+configured with the "\-\-signatures" parameter.
+
+If the signature verification fails, or if message tampering is
+detected, the program terminates with an exit status indicating
+failure. In addition to that, the last 25 MiB of the message are
+withheld, i.e. if the message is smaller than 25 MiB, no output is
+produced, and if it is larger, then the output will be truncated.
The converse operation is "sq encrypt".
@@ -74,6 +87,14 @@ the file given to \-\-output.
When a detached message is verified, no output is produced. Detached
signatures are often used to sign software packages.
+Verification is only successful if there is no bad signature, and the
+number of successfully verified signatures reaches the threshold
+configured with the "\-\-signatures" parameter. If the verification
+fails, the program terminates with an exit status indicating failure.
+In addition to that, the last 25 MiB of the message are withheld,
+i.e. if the message is smaller than 25 MiB, no output is produced, and
+if it is larger, then the output will be truncated.
+
The converse operation is "sq sign".
.TP
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-27 20:56:31 +0000