Home GnuPG
Diffusion GnuPG 44c17bcb003a

g10: If the set of UTKs changes, invalidate any changed policies.
44c17bcb003aUnpublished
Actions

Unpublished Commit ยท Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

g10: If the set of UTKs changes, invalidate any changed policies.

* g10/trustdb.c (tdb_utks): New function.
* g10/tofu.c (check_utks): New function.
(initdb): Call it.
* tests/openpgp/tofu.scm: Modify test to check the effective policy of
keys whose effective policy changes when we change the set of UTKs.

If the set of ultimately trusted keys changes, then it is possible
that a binding's effective policy changes. To deal with this, we
detect when the set of ultimately trusted keys changes and invalidate
all cached policies.

  • Signed-off-by: Neal H. Walfield <neal@g10code.com>

Details

Provenance
Neal H. Walfield <neal@g10code.com>Authored on Nov 22 2016, 3:05 PM
Parents
rG5c2db9dedfe9: scd: Fix receive buffer size.
Branches
Unknown
Tags
Unknown

Event Timeline

Neal H. Walfield <neal@g10code.com> committed rG44c17bcb003a: g10: If the set of UTKs changes, invalidate any changed policies. (authored by Neal H. Walfield <neal@g10code.com>).Nov 22 2016, 3:24 PM

Changes (4)

PathSize
g10/
tests/
openpgp/

rG44c17bcb003a

View Options

g10/tofu.c

Loading...
View Options

g10/trustdb.c

Loading...
View Options

g10/trustdb.h

Loading...
View Options

tests/openpgp/tofu.scm

Loading...