Diffusion GnuPG 5c2080f4670a

gpg: If possible TRUST values now depend on signer's UID or --sender.
5c2080f4670a
Actions

Tags

None

Subscribers

None

Description

gpg: If possible TRUST values now depend on signer's UID or --sender.

* g10/mainproc.c (check_sig_and_print): Add failsafe check for PK.
Pass KEYBLOCK down do check_signatures_trust.  Protect existsing error
ocde in case the signature expired.
* g10/pkclist.c (is_in_sender_list): New.
(check_signatures_trust): Add args keyblock and pk.  Add new uid based
checking code.
* g10/test-stubs.c, g10/gpgv.c: Adjust stubs.

GnuPG-bug-id: T4735
Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

Authored on Jun 8 2020, 8:13 PM

Parents

rG61bb75d045a3: build: Fix recent commit for SOURCE_DATE_EPOCH.

Branches

Unknown

Tags

Unknown

Tasks

T4735: Please provide an option to make --verify accept only signatures from specific trusted UID

Event Timeline

• werner committed rG5c2080f4670a: gpg: If possible TRUST values now depend on signer's UID or --sender. (authored by • werner).Jun 8 2020, 8:13 PM

• werner added a task: T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.

Changes (6)

Path

Size

doc/

g10/

rG5c2080f4670a

doc/gpg.texi

Loading...

g10/gpgv.c

Loading...

g10/keydb.h

Loading...

g10/mainproc.c

Loading...

g10/pkclist.c

Loading...

g10/test-stubs.c

Loading...