1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-05 12:31:50 +01:00

gpg: Fix output of --with-secret if a pattern is given.

* g10/keylist.c (list_one): Probe for a secret key in --with-secret
mode.
--

In contrast to list_all(), list_one() did not tests for a secret key
and took MARK_TRUSTED verbatim as an indication for "secret key
available".

GnuPG-bug: 4061
Signed-off-by: Werner Koch <wk@gnupg.org>
This commit is contained in:
Werner Koch 2019-12-23 12:39:04 +01:00
parent cc531cc210
commit 59d49e4a0a
No known key found for this signature in database
GPG Key ID: E3FDFF218E45B72B

View File

@ -608,6 +608,7 @@ list_one (ctrl_t ctrl, strlist_t names, int secret, int mark_secret)
int rc = 0; int rc = 0;
KBNODE keyblock = NULL; KBNODE keyblock = NULL;
GETKEY_CTX ctx; GETKEY_CTX ctx;
int any_secret;
const char *resname; const char *resname;
const char *keyring_str = _("Keyring"); const char *keyring_str = _("Keyring");
int i; int i;
@ -636,6 +637,21 @@ list_one (ctrl_t ctrl, strlist_t names, int secret, int mark_secret)
} }
do do
{
/* getkey_bynames makes sure that only secret keys are returned
* if requested, thus we do not need to test again. With
* MARK_SECRET set (ie. option --with-secret) we have to test
* for a secret key, though. */
if (secret)
any_secret = 1;
else if (mark_secret)
any_secret = !agent_probe_any_secret_key (NULL, keyblock);
else
any_secret = 0;
if (secret && !any_secret)
;/* Secret key listing requested but getkey_bynames failed. */
else
{ {
if ((opt.list_options & LIST_SHOW_KEYRING) && !opt.with_colons) if ((opt.list_options & LIST_SHOW_KEYRING) && !opt.with_colons)
{ {
@ -645,8 +661,9 @@ list_one (ctrl_t ctrl, strlist_t names, int secret, int mark_secret)
es_putc ('-', es_stdout); es_putc ('-', es_stdout);
es_putc ('\n', es_stdout); es_putc ('\n', es_stdout);
} }
list_keyblock (ctrl, list_keyblock (ctrl, keyblock, secret, any_secret,
keyblock, secret, mark_secret, opt.fingerprint, &listctx); opt.fingerprint, &listctx);
}
release_kbnode (keyblock); release_kbnode (keyblock);
} }
while (!getkey_next (ctrl, ctx, NULL, &keyblock)); while (!getkey_next (ctrl, ctx, NULL, &keyblock));