security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-04-17 15:44:34 +02:00
Code Activity

gpg: New option --no-auto-trust-new-key.

Browse Source 
* g10/gpg.c (oNoAutoTrustNewKey): New.
(opts): Add --no-auto-trust-new-key.
(main): Set it.
* g10/options.h (opt): Add flags.no_auto_trust_new_key.

Signed-off-by: Werner Koch <wk@gnupg.org>
This commit is contained in:
Werner Koch 2021-03-15 10:47:19 +01:00
parent 683ff00bb1
commit 1523b5f76f
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B
6 changed files with 25 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
NEWS
View File

@ -14,6 +14,8 @@ Noteworthy changes in version 2.3.0 (unreleased)
* The gpg-wks-client tool is now installed under bin; a wrapper for * The gpg-wks-client tool is now installed under bin; a wrapper for
its old location at libexec is also installed. its old location at libexec is also installed.
* tpm2d: New daemon to physically bind keys to the local machine.
* gpg: Switch to ed25519/cv25519 as default public key algorithms. * gpg: Switch to ed25519/cv25519 as default public key algorithms.
* gpg: Verification results now depend on the --sender option and * gpg: Verification results now depend on the --sender option and
@ -33,6 +35,10 @@ Noteworthy changes in version 2.3.0 (unreleased)
* gpg: New option --full-timestrings to print date and time. * gpg: New option --full-timestrings to print date and time.
* gpg: New option --force-sign-key. [#4584]
* gpg: New option --no-auto-trust-new-key.
* gpg: The legacy key discovery method PKA is no longer supported. * gpg: The legacy key discovery method PKA is no longer supported.
The command --print-pka-records and the PKA related import and The command --print-pka-records and the PKA related import and
export options have been removed. export options have been removed.
@ -58,6 +64,8 @@ Noteworthy changes in version 2.3.0 (unreleased)
* scd: New option --application-priority. * scd: New option --application-priority.
* scd: New option --pcsc-shared; see man page for important notes.
* dirmngr: Support a gpgNtds parameter in LDAP keyserver URLs. * dirmngr: Support a gpgNtds parameter in LDAP keyserver URLs.
* The symcryptrun tool, a wrapper for the now obsolete external * The symcryptrun tool, a wrapper for the now obsolete external

2
agent/command-ssh.c
View File

@ -158,7 +158,7 @@ typedef gpg_error_t (*ssh_signature_encoder_t) (ssh_key_type_spec_t *spec,
estream_t signature_blob, estream_t signature_blob,
gcry_sexp_t sig); gcry_sexp_t sig);
/* Type, which is used for boundling all the algorithm specific /* Type, which is used for bundling all the algorithm specific
information together in a single object. */ information together in a single object. */
struct ssh_key_type_spec struct ssh_key_type_spec
{ {

6
doc/gpg.texi
View File

@ -3587,6 +3587,12 @@ You need to consult the source code to learn the details. Note that
the advanced key generation commands can always be used to specify a the advanced key generation commands can always be used to specify a
key algorithm directly. key algorithm directly.
@item --no-auto-trust-new-key
@opindex no-auto-trust-new-key
When creating a new key the ownertrust of the new key is set to
ultimate. This option disables this and the user needs to manually
assign an ownertrust value.
@item --force-sign-key @item --force-sign-key
@opindex force-sign-key @opindex force-sign-key
This option modifies the behaviour of the commands This option modifies the behaviour of the commands

4
g10/gpg.c
View File

@ -285,6 +285,7 @@ enum cmd_and_opt_values
oAlwaysTrust, oAlwaysTrust,
oTrustModel, oTrustModel,
oForceOwnertrust, oForceOwnertrust,
oNoAutoTrustNewKey,
oSetFilename, oSetFilename,
oForYourEyesOnly, oForYourEyesOnly,
oNoForYourEyesOnly, oNoForYourEyesOnly,
@ -692,6 +693,7 @@ static gpgrt_opt_t opts[] = {
ARGPARSE_s_n (oAutoCheckTrustDB, "auto-check-trustdb", "@"), ARGPARSE_s_n (oAutoCheckTrustDB, "auto-check-trustdb", "@"),
ARGPARSE_s_n (oNoAutoCheckTrustDB, "no-auto-check-trustdb", "@"), ARGPARSE_s_n (oNoAutoCheckTrustDB, "no-auto-check-trustdb", "@"),
ARGPARSE_s_s (oForceOwnertrust, "force-ownertrust", "@"), ARGPARSE_s_s (oForceOwnertrust, "force-ownertrust", "@"),
ARGPARSE_s_n (oNoAutoTrustNewKey, "no-auto-trust-new-key", "@"),
#endif #endif
@ -2969,6 +2971,8 @@ main (int argc, char **argv)
} }
break; break;
case oNoAutoTrustNewKey: opt.flags.no_auto_trust_new_key = 1; break;
case oCompliance: case oCompliance:
{ {
int compliance = gnupg_parse_compliance_option int compliance = gnupg_parse_compliance_option

7
g10/keygen.c
View File

@ -5568,9 +5568,10 @@ do_generate_keypair (ctrl_t ctrl, struct para_data_s *para,
keyid_from_pk (pk, pk->main_keyid); keyid_from_pk (pk, pk->main_keyid);
register_trusted_keyid (pk->main_keyid); register_trusted_keyid (pk->main_keyid);
update_ownertrust (ctrl, pk, if (!opt.flags.no_auto_trust_new_key)
((get_ownertrust (ctrl, pk) & ~TRUST_MASK) update_ownertrust (ctrl, pk,
| TRUST_ULTIMATE )); ((get_ownertrust (ctrl, pk) & ~TRUST_MASK)
| TRUST_ULTIMATE ));
gen_standard_revoke (ctrl, pk, cache_nonce); gen_standard_revoke (ctrl, pk, cache_nonce);

2
g10/options.h
View File

@ -254,6 +254,8 @@ struct
unsigned int full_timestrings:1; unsigned int full_timestrings:1;
/* Force signing keys even if a key signature already exists. */ /* Force signing keys even if a key signature already exists. */
unsigned int force_sign_key:1; unsigned int force_sign_key:1;
/* On key generation do not set the ownertrust. */
unsigned int no_auto_trust_new_key:1;
} flags; } flags;
/* Linked list of ways to find a key if the key isn't on the local /* Linked list of ways to find a key if the key isn't on the local