For --sig-policy-url and --cert-policy-url, clarify what is a sig and what

is a cert. A sig has sigclass 0x00, 0x01, 0x02, or 0x40, and everything else is a cert. Add a "nrlsign" for nonrevocable and local key signatures. Add a --no-force-mdc to undo --force-mdc. Add a knob to force --disable-mdc/--no-disable-mdc. Off by default, of course, but is used in --pgp2 and --pgp6 modes. Allow specifying multiple users in the "Enter the user ID" loop. Enter a blank line to stop. Show each key+id as it is added. It is not illegal (though possibly silly) to have multiple policy URLs in a given signature, so print all that are present. More efficient implementation of URL-ifying code for --search on an HKP keyserver.
2025-07-03 22:56:33 +02:00 · 2002-02-10 00:18:54 +00:00 · 2002-02-10 00:18:54 +00:00 · 22f32c9472
commit 22f32c9472
parent 9057172a92
12 changed files with 119 additions and 40 deletions
--- a/g10/misc.c
+++ b/g10/misc.c
@ -442,7 +442,8 @@ idea_cipher_warn(int show)
 /* The largest string we have an expando for, times two. */
 #define LARGEST_EXPANDO ((MAX_FINGERPRINT_LEN*2)*2)

-/* Expand %-strings */
+/* Expand %-strings.  Returns a string which must be m_freed.  Returns
+   NULL if the string cannot be expanded (too large). */
 char *
 pct_expando(const char *string,PKT_public_key *pk)
 {
@ -517,7 +518,10 @@ pct_expando(const char *string,PKT_public_key *pk)
 	      break;

 	      /* Any unknown %-keys (like %i, %o, %I, and %O) are
-		 passed through for later expansion. */
+		 passed through for later expansion.  Note this also
+		 handles the case where the last character in the
+		 string is a '%' - the terminating \0 will end up here
+		 and properly terminate the string. */
 	    default:
 	      if(idx+2>maxlen)
 		goto fail;