Screen keyserver responses.
523030434949Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

Screen keyserver responses.

* g10/main.h: Typedef import_filter for filter callbacks.
* g10/import.c (import): Add filter callbacks to param list.
(import_one): Ditto.
(import_secret_one): Ditto.
(import_keys_internal): Ditto.
(import_keys_stream): Ditto.
* g10/keyserver.c (keyserver_retrieval_filter): New.
(keyserver_spawn): Pass filter to import_keys_stream()

These changes introduces import functions that apply a constraining
filter to imported keys. These filters can verify the fingerprints of
the keys returned before importing them into the keyring, ensuring that
the keys fetched from the keyserver are in fact those selected by the
user beforehand.

Re-indention and minor changes by wk.

Signed-off-by: Stefan Tomanek <tomanek@internet-sicherheit.de>

Details

Provenance

Stefan Tomanek <tomanek@internet-sicherheit.de>	Authored on Jan 30 2014, 12:57 AM
• werner	Committed on Jun 23 2014, 3:34 PM

Parents

rG8eab483a1c48: Print hash algorithm in sig records

Branches

Unknown

Tags

Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rG523030434949: Screen keyserver responses. (authored by Stefan Tomanek <tomanek@internet-sicherheit.de>).Jun 23 2014, 3:34 PM