dirmngr: New option --ignore-cert

* dirmngr/dirmngr.h (struct fingerprint_list_s): Add field binlen. (opt): Add field ignored_certs. * dirmngr/dirmngr.c: Add option --ignore-cert (parse_rereadable_options): Handle that option. (parse_ocsp_signer): Rename to ... (parse_fingerprint_item): this and add two args. * dirmngr/certcache.c (put_cert): Ignore all to be igored certs. Change callers to handle the new error return. -- This option is useful as a workaround in case we ill run into other chain validation errors like what we fixed in GnuPG-bug-id: 5639
2025-07-02 22:46:30 +02:00 · 2021-10-06 10:31:41 +02:00 · 2021-10-06 10:31:41 +02:00 · 4b3e9a44b5
commit 4b3e9a44b5
parent 6879937885
5 changed files with 98 additions and 7 deletions
--- a/common/convert.c
+++ b/common/convert.c
@ -43,7 +43,8 @@
   LENGTH bytes.  The function checks that the STRING will convert
   exactly to LENGTH bytes. The string is delimited by either end of
   string or a white space character.  The function returns -1 on
-   error or the length of the parsed string.  */
+   error or the length of the parsed string.  In-place conversion is
+   allowed but the Source string might be garbled on error.  */
 int
 hex2bin (const char *string, void *buffer, size_t length)
 {