Scroll to navigation

gpg-sq(1) General Commands Manual gpg-sq(1)

NAME

gpg-sq - This is a re-implementation and drop-in replacement of gpg using the Sequoia OpenPGP implementation.

gpg-sq is not feature-complete. It currently implements a commonly used subset of the signature creation and verification commands, the encryption and decryption commands, the key listing commands, and some miscellaneous commands.

Support for trust models is limited. Currently, the Web-of-Trust ("pgp") and always trust ("always") are implemented.

SYNOPSIS

gpg-sq [-s|--sign] [--clear-sign] [--clearsign] [-b|--detach-sign] [-e|--encrypt] [--encrypt-files] [-c|--symmetric] [--store] [-d|--decrypt] [--decrypt-files] [--verify] [--verify-files] [-k|--list-keys] [--list-public-keys] [--list-signatures] [--list-sigs] [--check-signatures] [--check-sigs] [--fingerprint] [-K|--list-secret-keys] [--generate-key] [--gen-key] [--quick-generate-key] [--quick-gen-key] [--quick-add-uid] [--quick-adduid] [--quick-add-key] [--quick-addkey] [--quick-revoke-uid] [--quick-revuid] [--quick-set-expire] [--quick-set-primary-uid] [--full-generate-key] [--full-gen-key] [--generate-revocation] [--gen-revoke] [--delete-keys] [--delete-secret-keys] [--quick-sign-key] [--quick-lsign-key] [--quick-revoke-sig] [--sign-key] [--lsign-key] [--edit-key] [--key-edit] [--change-passphrase] [--passwd] [--generate-designated-revocation] [--desig-revoke] [--export] [--send-keys] [--receive-keys] [--recv-keys] [--search-keys] [--refresh-keys] [--locate-keys] [--locate-external-keys] [--fetch-keys] [--show-keys] [--export-secret-keys] [--export-secret-subkeys] [--export-ssh-key] [--import] [--fast-import] [--list-config] [--list-gcrypt-config] [--gpgconf-list] [--gpgconf-test] [--list-packets] [--export-ownertrust] [--import-ownertrust] [--update-trustdb] [--check-trustdb] [--fix-trustdb] [--list-trustdb] [--dearmor] [--dearmour] [--enarmor] [--enarmour] [--print-md] [--print-mds] [--gen-prime] [--gen-random] [--server] [--tofu-policy] [--delete-secret-and-public-keys] [--rebuild-keydb-caches] [--list-key] [--list-sig] [--check-sig] [--show-key] [--Monitor] [-v|--verbose] [--no-verbose] [-q|--quiet] [--no-tty] [--no-greeting] [--debug] [--debug-level] [--debug-all] [--debug-iolbf] [--display-charset] [--charset] [--options] [--no-options] [--logger-fd] [--log-file] [--logger-file] [--debug-quick-random] [--Configuration] [--homedir] [--faked-system-time] [--default-key] [--encrypt-to] [--no-encrypt-to] [--hidden-encrypt-to] [--encrypt-to-default-key] [--default-recipient] [--default-recipient-self] [--no-default-recipient] [--group] [--ungroup] [--no-groups] [--compliance] [--gnupg] [--no-pgp2] [--no-pgp6] [--no-pgp7] [--no-pgp8] [--rfc2440] [--rfc4880] [--rfc4880bis] [--openpgp] [--pgp6] [--pgp7] [--pgp8] [--default-new-key-algo] [--min-rsa-length] [--always-trust] [--trust-model] [--photo-viewer] [--known-notation] [--agent-program] [--dirmngr-program] [--exit-on-status-write-error] [--limit-card-insert-tries] [--enable-progress-filter] [--temp-directory] [--exec-path] [--expert] [--no-expert] [--no-secmem-warning] [--require-secmem] [--no-require-secmem] [--no-permission-warning] [-n|--dry-run] [-i|--interactive] [--default-sig-expire] [--ask-sig-expire] [--no-ask-sig-expire] [--default-cert-expire] [--ask-cert-expire] [--no-ask-cert-expire] [--default-cert-level] [--min-cert-level] [--ask-cert-level] [--no-ask-cert-level] [--only-sign-text-ids] [--enable-large-rsa] [--disable-large-rsa] [--enable-dsa2] [--disable-dsa2] [--personal-cipher-preferences] [--personal-digest-preferences] [--personal-compress-preferences] [--default-preference-list] [--default-keyserver-url] [--no-expensive-trust-checks] [--allow-non-selfsigned-uid] [--no-allow-non-selfsigned-uid] [--allow-freeform-uid] [--no-allow-freeform-uid] [--preserve-permissions] [--default-cert-check-level] [--tofu-default-policy] [--lock-once] [--lock-multiple] [--lock-never] [--compress-algo] [--compression-algo] [--bzip2-decompress-lowmem] [--completes-needed] [--marginals-needed] [--max-cert-depth] [--trustdb-name] [--auto-check-trustdb] [--no-auto-check-trustdb] [--force-ownertrust] [--Input] [--multifile] [--input-size-hint] [--utf8-strings] [--no-utf8-strings] [--set-filesize] [--no-literal] [--set-notation] [--sig-notation] [--cert-notation] [--set-policy-url] [--sig-policy-url] [--cert-policy-url] [--sig-keyserver-url] [--Output] [-a|--armor] [--armour] [--no-armor] [--no-armour] [-o|--output] [--max-output] [--comment] [--default-comment] [--no-comments] [--emit-version] [--no-emit-version] [--no-version] [--not-dash-escaped] [--escape-from-lines] [--no-escape-from-lines] [--mimemode] [--textmode] [--no-textmode] [--set-filename] [--for-your-eyes-only] [--no-for-your-eyes-only] [--show-notation] [--no-show-notation] [--show-session-key] [--use-embedded-filename] [--no-use-embedded-filename] [--unwrap] [--mangle-dos-filenames] [--no-mangle-dos-filenames] [--no-symkey-cache] [--skip-verify] [--list-only] [-z ] [--compress-level] [--bzip2-compress-level] [--disable-signer-uid] [--ImportExport] [--auto-key-locate] [--no-auto-key-locate] [--auto-key-import] [--no-auto-key-import] [--auto-key-retrieve] [--no-auto-key-retrieve] [--include-key-block] [--no-include-key-block] [--disable-dirmngr] [--keyserver] [--keyserver-options] [--key-origin] [--import-options] [--import-filter] [--export-options] [--export-filter] [--merge-only] [--allow-secret-key-import] [--Keylist] [--list-options] [--show-photos] [--no-show-photos] [--show-policy-url] [--no-show-policy-url] [--with-colons] [--with-tofu-info] [--with-key-data] [--with-sig-list] [--with-sig-check] [--with-fingerprint] [--with-subkey-fingerprint] [--with-subkey-fingerprints] [--with-icao-spelling] [--with-keygrip] [--with-secret] [--with-wkd-hash] [--with-key-origin] [--fast-list-mode] [--fixed-list-mode] [--legacy-list-mode] [--print-pka-records] [--print-dane-records] [--keyid-format] [--show-keyring] [-r|--recipient] [--hidden-recipient] [--recipient-file] [--hidden-recipient-file] [--remote-user] [--throw-keyids] [--no-throw-keyids] [-u|--local-user] [--trusted-key] [--sender] [--try-secret-key] [--try-all-secrets] [--no-default-keyring] [--no-keyring] [--keyring] [--primary-keyring] [--secret-keyring] [--skip-hidden-recipients] [--no-skip-hidden-recipients] [--override-session-key] [--override-session-key-fd] [--Security] [--s2k-mode] [--s2k-digest-algo] [--s2k-cipher-algo] [--s2k-count] [--require-backsigs] [--require-cross-certification] [--no-require-backsigs] [--no-require-cross-certification] [--verify-options] [--enable-special-filenames] [--no-random-seed-file] [--no-sig-cache] [--ignore-time-conflict] [--ignore-valid-from] [--ignore-crc-error] [--ignore-mdc-error] [--disable-cipher-algo] [--disable-pubkey-algo] [--cipher-algo] [--digest-algo] [--cert-digest-algo] [--override-compliance-check] [--allow-weak-key-signatures] [--allow-weak-digest-algos] [--weak-digest] [--allow-multisig-verification] [--allow-multiple-messages] [--no-allow-multiple-messages] [--batch] [--no-batch] [--yes] [--no] [--status-fd] [--status-file] [--attribute-fd] [--attribute-file] [--command-fd] [--command-file] [--passphrase] [--passphrase-fd] [--passphrase-file] [--passphrase-repeat] [--pinentry-mode] [--force-sign-key] [--request-origin] [--display] [--ttyname] [--ttytype] [--lc-ctype] [--lc-messages] [--xauthority] [--no-autostart] [--forbid-gen-key] [--require-compliance] [--use-only-openpgp-card] [--rfc2440-text] [--no-rfc2440-text] [--personal-cipher-prefs] [--personal-digest-prefs] [--personal-compress-prefs] [--sign-with] [--user] [--use-agent] [--no-use-agent] [--gpg-agent-info] [--reader-port] [--ctapi-driver] [--pcsc-driver] [--disable-ccid] [--honor-http-proxy] [--tofu-db-format] [--strict] [--no-strict] [--load-extension] [--sk-comments] [--no-sk-comments] [--compress-keys] [--compress-sigs] [--force-v3-sigs] [--no-force-v3-sigs] [--force-v4-certs] [--no-force-v4-certs] [--no-mdc-warning] [--force-mdc] [--no-force-mdc] [--disable-mdc] [--no-disable-mdc] [--x-sequoia-parcimonie] [--x-sequoia-autostart-parcimonie] [--x-sequoia-parcimonie-daemonize] [--warranty] [--dump-option-table] [--dump-options] [-h|--help]

DESCRIPTION

This is a re-implementation and drop-in replacement of gpg using the Sequoia OpenPGP implementation.

gpg-sq is not feature-complete. It currently implements a commonly used subset of the signature creation and verification commands, the encryption and decryption commands, the key listing commands, and some miscellaneous commands.

Support for trust models is limited. Currently, the Web-of-Trust ("pgp") and always trust ("always") are implemented.

OPTIONS

make a signature
make a clear text signature
@
make a detached signature
encrypt data
@
encryption only with symmetric cipher
@
decrypt data (default)
@
verify a signature
@
list keys
@
list keys and signatures
@
list and check key signatures
@
list keys and fingerprints
list secret keys
generate a new key pair
@
quickly generate a new key pair
@
quickly add a new user-id
@
@
@
quickly revoke a user-id
@
quickly set a new expiration date
@
full featured key pair generation
@
generate a revocation certificate
@
remove keys from the public keyring
remove keys from the secret keyring
quickly sign a key
quickly sign a key locally
quickly revoke a key signature
sign a key
sign a key locally
sign or edit a key
@
change a passphrase
@
@
@
export keys
export keys to a keyserver
import keys from a keyserver
@
search for keys on a keyserver
update all keys from a keyserver
@
@
@
@
@
@
@
import/merge keys
@
@
@
@
@
@
@
@
update the trust database
@
@
@
@
@
@
@
print message digests
@
@
@
run in server mode
set the TOFU policy for a key
@
@
@
@
@
@
Options controlling the diagnostic output
verbose
@
be somewhat more quiet
@
@
@
@
@
@
@
@
read options from FILE
@
@
write server mode logs to FILE
@
@
Options controlling the configuration
@
@
use NAME as default secret key
encrypt to user ID NAME as well
@
@
@
@
@
@
set up email aliases
@
@
@
@
@
@
@
@
@
@
@
use strict OpenPGP behavior
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
do not make any changes
prompt before overwriting
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
Options controlling the input
@
@
@
@
@
@
@
@
@
@
@
@
@
Options controlling the output
create ascii armored output
@
@
@
write output to FILE
@
@
@
@
@
@
@
@
@
@
@
use canonical text mode
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
set compress level to N (0 disables)
@
@
@
Options controlling key import and export
use MECHANISMS to locate keys by mail address
@
import missing key from a signature
@
@
@
include the public key in signatures
@
disable all access to the dirmngr
@
@
@
@
@
@
@
@
@
Options controlling key listings
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
encrypt for USERID
@
@
@
@
@
@
use USERID to sign or decrypt
@
@
@
@
@
@
@
@
@
@
@
@
@
Options controlling the security
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
@
continuously update certificates
automatically start daemon to update certs
@
@
@
@
Print help

VERSION

v0.5.1

gpg-sq 0.5.1