gpg: New option --default-new-key-adsk.

* g10/options.h (opt): Add field def_new_key_adsks. * g10/gpg.c (oDefaultNewKeyADSK): New. (opts): Add --default-new-key-adsk. (main): Parse option. * g10/keyedit.c (menu_addadsk): Factor some code out to ... (append_adsk_to_key): new. Add compliance check. * g10/keygen.c (pADSK): New. (para_data_s): Add adsk to the union. (release_parameter_list): Free the adsk. (prepare_adsk): New. (get_parameter_adsk): New. (get_parameter_revkey): Remove unneeded arg key and change callers. (proc_parameter_file): Prepare adsk parameter from the configured fingerprints. (do_generate_keypair): Create adsk. -- GnuPG-bug-id: 6882
author: Werner Koch <[email protected]> 2024-06-03 16:52:06 +0000
committer: Werner Koch <[email protected]> 2024-06-03 16:52:06 +0000
commit: ed118e2ed521d82c1be7765a0a19d5b4f19afe10 (patch)
tree: 61c2a3b3cdff0907f6b1546a6b74ba5f1bcf660d /doc
parent: common: New function tokenize_to_strlist. (diff)
download: gnupg-ed118e2ed521d82c1be7765a0a19d5b4f19afe10.tar.gz
gnupg-ed118e2ed521d82c1be7765a0a19d5b4f19afe10.zip
1 files changed, 18 insertions, 5 deletions
diff --git a/doc/gpg.texi b/doc/gpg.texi
index 02131da75..67c6012c9 100644
--- a/doc/gpg.texi
+++ b/doc/gpg.texi
@@ -1809,12 +1809,25 @@ this option at all (e.g. due to the @option{--no-options} option).
 Add the key specified by @var{fingerprint} as a designated revoker to
 newly created keys.  If the fingerprint is prefixed with the keyword
 ``sensitive:'' that info is normally not exported with the key.  This
-option may be given several time to add more than one designated
+option may be given several times to add more than one designated
 revoker.  If the keyword ``clear'' is used instead of a fingerprint,
-all designated options previously encountered are discarded.
-Designated revokers are marked on the key as non-revocable.  Note that
-a designated revoker specified using a parameter file will also be
-added to the key.
+all previously fiven fingerprints are discarded.  Designated revokers
+are marked on the key as non-revocable.  Note that a designated
+revoker specified using a parameter file will also be added to the
+key.
+
+@item --default-new-key-adsk @var{fingerprint}
+@opindex default-new-key-adsk
+Add the subkey specified by @var{fingerprint} as an Additional
+Decryption Subkey (ADSK) to newly created keys.  This option may be
+given several time to add more than one ADSK.  It is also possible to
+give several fingerprints delimited by space or comma as value to this
+option.  If the keyword ``clear'' is used instead of a fingerprint,
+all previously specified fingerprints are discarded (useful to
+override options given in a config file).  The fingerprint is expected
+to specify a subkey and it does not need an exclamation mark as
+suffix; it must be given in cmpact format (40 or 64 hex-digits without
+any spaces).
 
 
 @item --trust-model @{pgp|classic|tofu|tofu+pgp|direct|always|auto@}
author	Werner Koch <[email protected]>	2024-06-03 16:52:06 +0000
committer	Werner Koch <[email protected]>	2024-06-03 16:52:06 +0000
commit	ed118e2ed521d82c1be7765a0a19d5b4f19afe10 (patch)
tree	61c2a3b3cdff0907f6b1546a6b74ba5f1bcf660d /doc
parent	common: New function tokenize_to_strlist. (diff)
download	gnupg-ed118e2ed521d82c1be7765a0a19d5b4f19afe10.tar.gz gnupg-ed118e2ed521d82c1be7765a0a19d5b4f19afe10.zip