agent: Default to extended key format.

* agent/gpg-agent.c (oDisableExtendedKeyFormat, oNoop): New. (opts): Make --enable-extended-key-format a dummy option. Add disable-extended-key-format. (parse_rereadable_options): Implement oDisableExtendedKeyFormat. * agent/protect.c (agent_protect): Be safe and set use_ocb either to to 1 or 0. -- Extended key format is supported since version 2.1.12 which should have long been replaced by a newer version in all installations. Thus for 2.2.22 we will make use of the extended-key-format by default. This is a backport of the commits: 05eff1f662 91ae3e7fb6 Signed-off-by: Werner Koch <wk@gnupg.org>
2025-07-03 22:56:33 +02:00 · 2020-08-22 15:04:34 +02:00 · 2020-08-22 15:04:34 +02:00 · 5b927b7b27
commit 5b927b7b27
parent 843890663b
4 changed files with 34 additions and 15 deletions
--- a/agent/gpg-agent.c
+++ b/agent/gpg-agent.c
@ -113,6 +113,7 @@ enum cmd_and_opt_values
  oCheckPassphrasePattern,
  oMaxPassphraseDays,
  oEnablePassphraseHistory,
+  oDisableExtendedKeyFormat,
  oEnableExtendedKeyFormat,
  oUseStandardSocket,
  oNoUseStandardSocket,
@ -140,7 +141,9 @@ enum cmd_and_opt_values
  oAutoExpandSecmem,
  oListenBacklog,

-  oWriteEnvFile
+  oWriteEnvFile,
+
+  oNoop
 };


@ -252,6 +255,7 @@ static ARGPARSE_OPTS opts[] = {
                /* */           "@"
 #endif
                ),
+  ARGPARSE_s_n (oDisableExtendedKeyFormat, "disable-extended-key-format", "@"),
  ARGPARSE_s_n (oEnableExtendedKeyFormat, "enable-extended-key-format", "@"),

  ARGPARSE_s_u (oS2KCount, "s2k-count", "@"),
@ -266,6 +270,9 @@ static ARGPARSE_OPTS opts[] = {
  ARGPARSE_s_n (oUseStandardSocket, "use-standard-socket", "@"),
  ARGPARSE_s_n (oNoUseStandardSocket, "no-use-standard-socket", "@"),

+  /* Dummy options.  */
+
+
  ARGPARSE_end () /* End of list */
 };

@ -826,7 +833,7 @@ parse_rereadable_options (ARGPARSE_ARGS *pargs, int reread)
      opt.check_passphrase_pattern = NULL;
      opt.max_passphrase_days = MAX_PASSPHRASE_DAYS;
      opt.enable_passphrase_history = 0;
-      opt.enable_extended_key_format = 0;
+      opt.enable_extended_key_format = 1;
      opt.ignore_cache_for_signing = 0;
      opt.allow_mark_trusted = 1;
      opt.allow_external_cache = 1;
@ -902,7 +909,11 @@ parse_rereadable_options (ARGPARSE_ARGS *pargs, int reread)
      break;

    case oEnableExtendedKeyFormat:
-      opt.enable_extended_key_format = 1;
+      opt.enable_extended_key_format = 2;
+      break;
+    case oDisableExtendedKeyFormat:
+      if (opt.enable_extended_key_format != 2)
+        opt.enable_extended_key_format = 0;
      break;

    case oIgnoreCacheForSigning: opt.ignore_cache_for_signing = 1; break;
@ -937,6 +948,8 @@ parse_rereadable_options (ARGPARSE_ARGS *pargs, int reread)
      set_s2k_calibration_time (pargs->r.ret_ulong);
      break;

+    case oNoop: break;
+
    default:
      return 0; /* not handled */
    }
@ -1452,8 +1465,6 @@ main (int argc, char **argv )
                 GC_OPT_FLAG_NONE|GC_OPT_FLAG_RUNTIME);
      es_printf ("pinentry-timeout:%lu:0:\n",
                 GC_OPT_FLAG_DEFAULT|GC_OPT_FLAG_RUNTIME);
-      es_printf ("enable-extended-key-format:%lu:\n",
-                 GC_OPT_FLAG_NONE|GC_OPT_FLAG_RUNTIME);
      es_printf ("grab:%lu:\n",
                 GC_OPT_FLAG_NONE|GC_OPT_FLAG_RUNTIME);