gpg: New export option "mode1003".

* agent/command.c (cmd_export_key): Add option --mode1003. (command_has_option): Ditto. * g10/build-packet.c (do_key): Implement mode 1003. * g10/parse-packet.c (parse_key): Ditto. * g10/options.h (EXPORT_MODE1003): New.o * g10/call-agent.c (agent_export_key): Add arg mode1003. * g10/export.c (parse_export_options): Add "mode1003" (secret_key_to_mode1003): New. (receive_seckey_from_agent): Add arg mode1003. (do_export_one_keyblock): Pass option down. -- This option allows to export a secret key in GnuPG's native format. Thus no re-encryption is required and further the public key parameters are also authenticated if a protection passphrase has been used. Note that --import is not yet able to handle this new mode. Although old version of GnuPG will bail out with "invalid packet" if a mode1003 exported secret key is seen.
2025-07-02 22:46:30 +02:00 · 2022-12-02 10:03:36 +01:00 · 2022-12-02 10:03:36 +01:00 · 1a85ee9a43
commit 1a85ee9a43
parent 1d88e14de7
11 changed files with 320 additions and 35 deletions
--- a/g10/main.h
+++ b/g10/main.h
@ -431,7 +431,7 @@ gpg_error_t export_pubkey_buffer (ctrl_t ctrl, const char *keyspec,
                                  void **r_data, size_t *r_datalen);

 gpg_error_t receive_seckey_from_agent (ctrl_t ctrl, gcry_cipher_hd_t cipherhd,
-                                       int cleartext,
+                                       int cleartext, int mode1003,
                                       char **cache_nonce_addr,
                                       const char *hexgrip,
                                       PKT_public_key *pk, gcry_sexp_t *r_key);