* options.h, gpg.c (main): Add --enable-dsa2 and --disable-dsa2. Defaults

to disable. * pkclist.c (algo_available): If --enable-dsa2 is set, we're allowed to truncate hashes to fit DSA keys. * sign.c (match_dsa_hash): New. Return the best match hash for a given q size. (do_sign, hash_for, sign_file): When signing with a DSA key, if it has q==160, assume it is an old DSA key and don't allow truncation unless --enable-dsa2 is also set. q!=160 always allows truncation since they must be DSA2 keys. (make_keysig_packet): If the user doesn't specify a --cert-digest-algo, use match_dsa_hash to pick the best hash for key signatures.
author: David Shaw <[email protected]> 2006-04-20 21:32:42 +0000
committer: David Shaw <[email protected]> 2006-04-20 21:32:42 +0000
commit: 0f1c0a9f2818dcdda209778347ce6c6b238d2c4d (patch)
tree: 22420cb36c74879e4cab0a93c0644af05a82017d /g10/options.h
parent: (generate): Tweak to allow keys larger than 1024 bits. Enforce that the q (diff)
download: gnupg-0f1c0a9f2818dcdda209778347ce6c6b238d2c4d.tar.gz
gnupg-0f1c0a9f2818dcdda209778347ce6c6b238d2c4d.zip
1 files changed, 1 insertions, 0 deletions
diff --git a/g10/options.h b/g10/options.h
index 06ea29130..6c69d80aa 100644
--- a/g10/options.h
+++ b/g10/options.h
@@ -222,6 +222,7 @@ struct
     unsigned int require_cross_cert:1;
     unsigned int use_embedded_filename:1;
     unsigned int utf8_filename:1;
+    unsigned int dsa2:1;
   } flags;
 
   /* Linked list of ways to find a key if the key isn't on the local
author	David Shaw <[email protected]>	2006-04-20 21:32:42 +0000
committer	David Shaw <[email protected]>	2006-04-20 21:32:42 +0000
commit	0f1c0a9f2818dcdda209778347ce6c6b238d2c4d (patch)
tree	22420cb36c74879e4cab0a93c0644af05a82017d /g10/options.h
parent	(generate): Tweak to allow keys larger than 1024 bits. Enforce that the q (diff)
download	gnupg-0f1c0a9f2818dcdda209778347ce6c6b238d2c4d.tar.gz gnupg-0f1c0a9f2818dcdda209778347ce6c6b238d2c4d.zip