* keygen.c (make_backsig): If DO_BACKSIGS is not defined, do not create

backsigs. * getkey.c (merge_selfsigs_subkey): Find 0x19 backsigs on subkey selfsigs and verify they are valid. If DO_BACKSIGS is not defined, fake this as always valid. * packet.h, parse-packet.c (parse_signature): Make parse_signature non-static so we can parse 0x19s in self-sigs. * main.h, sig-check.c (check_backsig): Check a 0x19 signature. (signature_check2): Give a backsig warning if there is no or a bad 0x19 with signatures from a subkey.
2025-07-03 22:56:33 +02:00 · 2004-04-23 03:01:53 +00:00 · 2004-04-23 03:01:53 +00:00 · 4a07655935
commit 4a07655935
parent 8030362eae
7 changed files with 123 additions and 7 deletions
--- a/g10/keygen.c
+++ b/g10/keygen.c
@ -531,10 +531,12 @@ make_backsig(PKT_signature *sig, PKT_public_key *pk,
  PKT_signature *backsig;
  int rc;

+#ifndef DO_BACKSIGS
  /* This is not enabled yet, as I want to get a bit closer to RFC day
     before enabling this.  I've been burned before :) */

  return 0;
+#endif

  cache_public_key (sub_pk);