mirror of
git://git.gnupg.org/gnupg.git
synced 2025-07-02 22:46:30 +02:00
gpg: New option --default-new-key-adsk.
* g10/options.h (opt): Add field def_new_key_adsks. * g10/gpg.c (oDefaultNewKeyADSK): New. (opts): Add --default-new-key-adsk. (main): Parse option. * g10/keyedit.c (menu_addadsk): Factor some code out to ... (append_adsk_to_key): new. Add compliance check. * g10/keygen.c (pADSK): New. (para_data_s): Add adsk to the union. (release_parameter_list): Free the adsk. (prepare_adsk): New. (get_parameter_adsk): New. (get_parameter_revkey): Remove unneeded arg key and change callers. (proc_parameter_file): Prepare adsk parameter from the configured fingerprints. (do_generate_keypair): Create adsk. -- GnuPG-bug-id: 6882
This commit is contained in:
Werner Koch
parent
d2dca58338
commit
ed118e2ed5
6 changed files with 240 additions and 57 deletions
23
doc/gpg.texi
23
doc/gpg.texi
|
|
@ -1809,12 +1809,25 @@ this option at all (e.g. due to the @option{--no-options} option).
|
|||
Add the key specified by @var{fingerprint} as a designated revoker to
|
||||
newly created keys. If the fingerprint is prefixed with the keyword
|
||||
``sensitive:'' that info is normally not exported with the key. This
|
||||
option may be given several time to add more than one designated
|
||||
option may be given several times to add more than one designated
|
||||
revoker. If the keyword ``clear'' is used instead of a fingerprint,
|
||||
all designated options previously encountered are discarded.
|
||||
Designated revokers are marked on the key as non-revocable. Note that
|
||||
a designated revoker specified using a parameter file will also be
|
||||
added to the key.
|
||||
all previously fiven fingerprints are discarded. Designated revokers
|
||||
are marked on the key as non-revocable. Note that a designated
|
||||
revoker specified using a parameter file will also be added to the
|
||||
key.
|
||||
|
||||
@item --default-new-key-adsk @var{fingerprint}
|
||||
@opindex default-new-key-adsk
|
||||
Add the subkey specified by @var{fingerprint} as an Additional
|
||||
Decryption Subkey (ADSK) to newly created keys. This option may be
|
||||
given several time to add more than one ADSK. It is also possible to
|
||||
give several fingerprints delimited by space or comma as value to this
|
||||
option. If the keyword ``clear'' is used instead of a fingerprint,
|
||||
all previously specified fingerprints are discarded (useful to
|
||||
override options given in a config file). The fingerprint is expected
|
||||
to specify a subkey and it does not need an exclamation mark as
|
||||
suffix; it must be given in cmpact format (40 or 64 hex-digits without
|
||||
any spaces).
|
||||
|
||||
|
||||
@item --trust-model @{pgp|classic|tofu|tofu+pgp|direct|always|auto@}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue