gpg: Make trusted-key override for Tofu robust against swapped tofu.db.
7de837643062Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

gpg: Make trusted-key override for Tofu robust against swapped tofu.db.

* g10/tofu.c (get_trust): For the UTK check lookup the key by
fingerprint.

Extracting the keyid form the fingerprint is not a good idea because
that only works for v4 keys. It is also better to first read the key
and then extract the keyid from the actual available key.

The entire trusted-key stuff should be reworked to make use of
fingerprints.

Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

• werner

Authored on Nov 13 2015, 4:09 PM

Parents

rG7e59fb21f728: gpg: Fix regression in --locate-keys (in 2.1.9).

Branches

Unknown

Tags

Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rG7de837643062: gpg: Make trusted-key override for Tofu robust against swapped tofu.db. (authored by Werner Koch <wk@gnupg.org>).Nov 13 2015, 4:09 PM

Changes (1)

Path

Size

g10/

tofu.c

rG7de837643062

View Options

gpg: Make trusted-key override for Tofu robust against swapped tofu.db.7de837643062UnpublishedActions