This is the first half of revocation key / designated revoker

support. That is, it handles all the data to mark a key as revoked if it has been revoked by a designated revoker. The second half (coming later) will contain the code to make someones key your designated revoker and to issue revocations for someone else. Note that this is written so that a revoked revoker can still issue revocations: i.e. If A revokes B, but A is revoked, B is still revoked. I'm not completely convinced this is the proper behavior, but it matches how PGP does it. It does at least have the advantage of much simpler code - my first version of this had lots of loop maintaining code so you could chain revokers many levels deep and if D was revoked, C was not, which meant that B was, and so on. It was sort of scary, actually. This also changes importing to allow bringing in more revocation keys, and exporting to not export revocation keys marked "sensitive". The --edit menu information will show if a revocation key is present.
2025-07-02 22:46:30 +02:00 · 2002-02-28 21:01:25 +00:00 · 2002-02-28 21:01:25 +00:00 · fbc66185f8
commit fbc66185f8
parent 6be293e24b
9 changed files with 332 additions and 30 deletions
--- a/g10/packet.h
+++ b/g10/packet.h
@ -26,6 +26,7 @@
 #include "mpi.h"
 #include "cipher.h"
 #include "filter.h"
+#include "global.h"

 #define DEBUG_PARSE_PACKET 1

@ -113,6 +114,11 @@ typedef struct {
    byte data[1];
 } subpktarea_t;

+struct revocation_key {
+  byte class;
+  byte algid;
+  byte fpr[MAX_FINGERPRINT_LEN];
+};

 typedef struct {
    ulong   local_id;	    /* internal use, valid if > 0 */
@ -133,7 +139,9 @@ typedef struct {
    byte    sig_class;	    /* sig classification, append for MD calculation*/
    byte    pubkey_algo;    /* algorithm used for public key scheme */
 			    /* (PUBKEY_ALGO_xxx) */
-    byte digest_algo;	    /* algorithm used for digest (DIGEST_ALGO_xxxx) */
+    byte    digest_algo;    /* algorithm used for digest (DIGEST_ALGO_xxxx) */
+    struct revocation_key **revkey;
+    int numrevkeys;
    subpktarea_t *hashed;    /* all subpackets with hashed  data (v4 only) */
    subpktarea_t *unhashed;  /* ditto for unhashed data */
    byte digest_start[2];   /* first 2 bytes of the digest */
@ -190,13 +198,16 @@ typedef struct {
    u32     has_expired;    /* set to the expiration date if expired */ 
    int     is_revoked;     /* key has been revoked */
    int     is_valid;       /* key (especially subkey) is valid */
+    int     dont_cache;     /* do not cache this */
    ulong   local_id;	    /* internal use, valid if > 0 */
    u32     main_keyid[2];  /* keyid of the primary key */
    u32     keyid[2];	    /* calculated by keyid_from_pk() */
    prefitem_t *prefs;      /* list of preferences (may be NULL) */
-    int    mdc_feature;    /* mdc feature set */
+    int     mdc_feature;    /* mdc feature set */
    byte    *namehash;	    /* if != NULL: found by this name */
    PKT_user_id *user_id;   /* if != NULL: found by that uid */
+    struct revocation_key *revkey;
+    int     numrevkeys;
    MPI     pkey[PUBKEY_MAX_NPKEY];
 } PKT_public_key;