On Wed 2025-02-26 21:44:21 -0500, Daniel Kahn Gillmor wrote: > GnuPG recently fixed a denial of service for signature verification in > the keyring on its master branch: https://dev.gnupg.org/T7527 > > However, when i backport the fix for this DoS to debian (2.2.46-2), i > get this failure in the notmuch test suite, in T350-crypto.sh:
So this is definitely a change in GnuPG behavior, as reported upstream at https://dev.gnupg.org/T7547 Not sure the best way to handle this with notmuch, but perhaps we can make a workaround in the notmuch test suite (e.g. accepting either "key-revoked" or "key-missing") until we see whether upstream offers a resolution. Regards, --dkg
signature.asc
Description: PGP signature
