keyboxd: Add basic support for X.509.

* kbx/keybox-blob.c (x509_email_kludge): Rename to ... (_keybox_x509_email_kludge): this and make global. * kbx/backend.h: Include ksba.h. * kbx/backend-support.c (be_get_x509_serial): New. (be_get_x509_keygrip): New. * kbx/backend-sqlite.c (table_definitions): New table 'issuers'. (run_select_statement): Implements modes ISSUER, ISSUER_SN, SUBJECT. (store_into_userid): Add arg override_mbox. (store_into_issuer): New. (be_sqlite_store): Implement x509 part. Signed-off-by: Werner Koch <wk@gnupg.org>
2025-07-02 22:46:30 +02:00 · 2020-09-10 12:50:45 +02:00 · 2020-09-10 12:50:45 +02:00 · c9677d416e
commit c9677d416e
parent 6fcc263c18
5 changed files with 314 additions and 70 deletions
--- a/kbx/backend.h
+++ b/kbx/backend.h
@ -20,6 +20,7 @@
 #ifndef KBX_BACKEND_H
 #define KBX_BACKEND_H

+#include <ksba.h>
 #include "keybox-search-desc.h"

 /* Forward declaration of the keybox handle type.  */
@ -118,6 +119,8 @@ gpg_error_t be_return_pubkey (ctrl_t ctrl, const void *buffer, size_t buflen,
 int be_is_x509_blob (const unsigned char *blob, size_t bloblen);
 gpg_error_t be_ubid_from_blob (const void *blob, size_t bloblen,
                               enum pubkey_types *r_pktype, char *r_ubid);
+char *be_get_x509_serial (ksba_cert_t cert);
+gpg_error_t be_get_x509_keygrip (ksba_cert_t cert, unsigned char *keygrip);


 /*-- backend-cache.c --*/