mirror of
git://git.gnupg.org/gnupg.git
synced 2025-07-03 22:56:33 +02:00
--openpgp implies --allow-non-selfsigned-uid
If none of the uids are primary (because none are valid) then pick the first to be primary (but still invalid). This is for cosmetics in case some display needs to print a user ID from a non-selfsigned key. Also use --allow-non-selfsigned-uid to make such a key valid and not --always-trust. The key is *not* automatically trusted via --allow-non-selfsigned-uid. Make sure non-selfsigned uids print [uncertain] on verification even though one is primary now. If the main key is not valid, then neither are the subkeys. Allow --allow-non-selfsigned-uid to work on completely unsigned keys. Print the uids in UTF8. Remove mark_non_selfsigned_uids_valid() Show revocation key as UTF8. Allow --not-dash-escaped to work with v3 keys.
This commit is contained in:
David Shaw
parent
8cb9dd7a39
commit
b8858a3ef1
7 changed files with 75 additions and 39 deletions
32
g10/getkey.c
32
g10/getkey.c
|
|
@ -1354,12 +1354,13 @@ merge_selfsigs_main( KBNODE keyblock, int *r_revoked )
|
|||
pk->is_valid = 1;
|
||||
}
|
||||
|
||||
/* If the key isn't valid yet, and we have --always-trust set,
|
||||
then force it valid. */
|
||||
if(opt.always_trust && !pk->is_valid)
|
||||
/* If the key isn't valid yet, and we have
|
||||
--allow-non-selfsigned-uid set, then force it valid. */
|
||||
if(!pk->is_valid && opt.allow_non_selfsigned_uid)
|
||||
{
|
||||
if(opt.verbose)
|
||||
log_info(_("Invalid key %08lX made valid by --always-trust\n"),
|
||||
log_info(_("Invalid key %08lX made valid by "
|
||||
"--allow-non-selfsigned-uid\n"),
|
||||
(ulong)keyid_from_pk(pk,NULL));
|
||||
|
||||
pk->is_valid = 1;
|
||||
|
|
@ -1454,7 +1455,22 @@ merge_selfsigs_main( KBNODE keyblock, int *r_revoked )
|
|||
/* none is flagged primary - use the latest user ID we have */
|
||||
uidnode2->pkt->pkt.user_id->is_primary = 1;
|
||||
}
|
||||
else
|
||||
{
|
||||
/* None of our uids were self-signed, so pick the first one to
|
||||
be the primary. This is the best we can do here since
|
||||
there are no self sigs to date the uids. */
|
||||
|
||||
for(k=keyblock; k && k->pkt->pkttype != PKT_PUBLIC_SUBKEY;
|
||||
k = k->next )
|
||||
{
|
||||
if(k->pkt->pkttype==PKT_USER_ID)
|
||||
{
|
||||
k->pkt->pkt.user_id->is_primary=1;
|
||||
break;
|
||||
}
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
|
|
@ -1611,6 +1627,13 @@ merge_selfsigs( KBNODE keyblock )
|
|||
}
|
||||
}
|
||||
|
||||
/* If the main key is not valid, then the subkeys aren't either,
|
||||
even if they have binding sigs. */
|
||||
if(!main_pk->is_valid)
|
||||
for(k=keyblock; k; k=k->next)
|
||||
if(k->pkt->pkttype==PKT_PUBLIC_SUBKEY)
|
||||
k->pkt->pkt.public_key->is_valid=0;
|
||||
|
||||
/* set the preference list of all keys to those of the primary
|
||||
* user ID. Note: we use these preferences when we don't know by
|
||||
* which user ID the key has been selected.
|
||||
|
|
@ -1640,7 +1663,6 @@ merge_selfsigs( KBNODE keyblock )
|
|||
pk->mdc_feature = mdc_feature;
|
||||
}
|
||||
}
|
||||
|
||||
}
|
||||
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue