Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/crypto/openpgp: unsupported feature: nested signatures #33613

seu-cmu-redRosa opened this issue Aug 13, 2019 · 3 comments

x/crypto/openpgp: unsupported feature: nested signatures #33613

seu-cmu-redRosa opened this issue Aug 13, 2019 · 3 comments


Copy link

@seu-cmu-redRosa seu-cmu-redRosa commented Aug 13, 2019

What version of Go are you using (go version)?

$ go version

Does this issue reproduce with the latest release?


What operating system and processor architecture are you using (go env)?

go env mac OS
$ go env

What did you do?


I'm trying decrypting a encrypted file in Go using openpgp. This file can be decrypted by

gpg --decrypt -o

However, when I try to decrypt it in Go, it says that

unsupported feature: nested signatures

This file is not generated in my computer.

I'm using newest openpgp package. The public key and private key file are correct for sure because I have tested encrypting and decrypting.

The error happenes at:
md, err := openpgp.ReadMessage(bytes.NewBuffer(dec), entityList, nil, nil)

What did you expect to see?

Decrypted file

What did you see instead?

unsupported feature: nested signatures

@gopherbot gopherbot added this to the Unreleased milestone Aug 13, 2019
Copy link

@agnivade agnivade commented Aug 13, 2019

Copy link

@seu-cmu-redRosa seu-cmu-redRosa commented Aug 14, 2019

Anyone knows it?

Copy link

@FiloSottile FiloSottile commented Mar 29, 2021

Per the accepted #44226 proposal and due to lack of maintenance, the package is now frozen and deprecated. No new changes will be accepted except for security fixes. The package will not be removed.

If this is a security issue, please email and we will assess it and provide a fix.

If you're looking for alternatives, consider the crypto/ed25519 package for simple signatures, for inline signatures, or for encryption. You can read a summary of OpenPGP issues and alternatives here.

If you are required to interoperate with OpenPGP systems and need a maintained package, we suggest considering one of multiple community forks of We don't endorse any specific one.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
5 participants