g10: Don't ask keysize for for non-RSA card.

* g10/card-util.c (card_status): Bug fix for keyno. (ask_card_rsa_keysize, do_change_rsa_keysize): Rename. (generate_card_keys): Only ask keysize when RSA. (card_generate_subkey): Likewise. -- Co-authored-by: Arnaud Fontaine <arnaud.fontaine@ssi.gouv.fr> Signed-off-by: NIIBE Yutaka <gniibe@fsij.org>
2024-05-31 22:18:03 +02:00 · 2016-10-21 14:15:05 +09:00 · 2016-10-21 14:15:05 +09:00 · dafce6f698
commit dafce6f698
parent 161cb22f13
1 changed files with 28 additions and 22 deletions
--- a/g10/card-util.c
+++ b/g10/card-util.c
@ -476,7 +476,7 @@ card_status (estream_t fp, char *serialno, size_t serialnobuflen)

      es_fprintf (fp, "forcepin:%d:::\n", !info.chv1_cached);
      for (i=0; i < DIM (info.key_attr); i++)
-        if (info.key_attr[0].algo == PUBKEY_ALGO_RSA)
+        if (info.key_attr[i].algo == PUBKEY_ALGO_RSA)
          es_fprintf (fp, "keyattr:%d:%d:%u:\n", i+1,
                      info.key_attr[i].algo, info.key_attr[i].nbits);
        else if (info.key_attr[i].algo == PUBKEY_ALGO_ECDH
@ -1277,7 +1277,7 @@ show_keysize_warning (void)
   select the prompt.  Returns 0 to use the default size (i.e. NBITS)
   or the selected size.  */
 static unsigned int
-ask_card_keysize (int keyno, unsigned int nbits)
+ask_card_rsa_keysize (int keyno, unsigned int nbits)
 {
  unsigned int min_nbits = 1024;
  unsigned int max_nbits = 4096;
@ -1327,7 +1327,7 @@ ask_card_keysize (int keyno, unsigned int nbits)
 /* Change the size of key KEYNO (0..2) to NBITS and show an error
   message if that fails.  */
 static gpg_error_t
-do_change_keysize (int keyno, unsigned int nbits)
+do_change_rsa_keysize (int keyno, unsigned int nbits)
 {
  gpg_error_t err;
  char args[100];
@ -1406,8 +1406,10 @@ generate_card_keys (ctrl_t ctrl)

      for (keyno = 0; keyno < DIM (info.key_attr); keyno++)
        {
-          nbits = ask_card_keysize (keyno, info.key_attr[keyno].nbits);
-          if (nbits && do_change_keysize (keyno, nbits))
+          if (info.key_attr[keyno].algo == PUBKEY_ALGO_RSA)
+            {
+              nbits = ask_card_rsa_keysize (keyno, info.key_attr[keyno].nbits);
+              if (nbits && do_change_rsa_keysize (keyno, nbits))
                {
                  /* Error: Better read the default key size again.  */
                  agent_release_card_info (&info);
@ -1417,6 +1419,7 @@ generate_card_keys (ctrl_t ctrl)
                  keyno--;
                }
            }
+        }
      /* Note that INFO has not be synced.  However we will only use
         the serialnumber and thus it won't harm.  */
    }
@ -1482,12 +1485,14 @@ card_generate_subkey (KBNODE pub_keyblock)
  /* If the cards features changeable key attributes, we ask for the
     key size.  */
  if (info.is_v2 && info.extcap.aac)
+    {
+      if (info.key_attr[keyno-1].algo == PUBKEY_ALGO_RSA)
        {
          unsigned int nbits;

        ask_again:
-      nbits = ask_card_keysize (keyno-1, info.key_attr[keyno-1].nbits);
-      if (nbits && do_change_keysize (keyno-1, nbits))
+          nbits = ask_card_rsa_keysize (keyno-1, info.key_attr[keyno-1].nbits);
+          if (nbits && do_change_rsa_keysize (keyno-1, nbits))
            {
              /* Error: Better read the default key size again.  */
              agent_release_card_info (&info);
@ -1496,6 +1501,7 @@ card_generate_subkey (KBNODE pub_keyblock)
                goto leave;
              goto ask_again;
            }
+        }
      /* Note that INFO has not be synced.  However we will only use
         the serialnumber and thus it won't harm.  */
    }