diff options
| author | Neal H. Walfield <[email protected]> | 2016-11-23 11:29:22 +0000 |
|---|---|---|
| committer | Neal H. Walfield <[email protected]> | 2016-11-23 11:29:22 +0000 |
| commit | 03a65a53231cc3132a50a1871e81a512c44da169 (patch) | |
| tree | 5df81cf4f7fbeaeb24801c5acebd6ce3160e2adf /g10/trustdb.c | |
| parent | g10: Use es_fopen instead of open. (diff) | |
| download | gnupg-03a65a53231cc3132a50a1871e81a512c44da169.tar.gz gnupg-03a65a53231cc3132a50a1871e81a512c44da169.zip | |
g10: Avoid gratuitously loading a keyblock when it is already available
* g10/trust.c (get_validity): Add new, optional parameter KB. Only
load the keyblock if KB is NULL. Update callers.
(get_validity): Likewise.
* g10/trustdb.c (tdb_get_validity_core): Likewise.
--
Signed-off-by: Neal H. Walfield <[email protected]>
GnuPG-bug-id: 2812
Diffstat (limited to 'g10/trustdb.c')
| -rw-r--r-- | g10/trustdb.c | 34 |
1 files changed, 27 insertions, 7 deletions
diff --git a/g10/trustdb.c b/g10/trustdb.c index 51a8f2217..d402cb2ba 100644 --- a/g10/trustdb.c +++ b/g10/trustdb.c @@ -983,13 +983,15 @@ tdb_check_trustdb_stale (ctrl_t ctrl) } /* - * Return the validity information for PK. This is the core of - * get_validity. If SIG is not NULL, then the trust is being - * evaluated in the context of the provided signature. This is used - * by the TOFU code to record statistics. + * Return the validity information for KB/PK (at least one of them + * must be non-NULL). This is the core of get_validity. If SIG is + * not NULL, then the trust is being evaluated in the context of the + * provided signature. This is used by the TOFU code to record + * statistics. */ unsigned int tdb_get_validity_core (ctrl_t ctrl, + kbnode_t kb, PKT_public_key *pk, PKT_user_id *uid, PKT_public_key *main_pk, PKT_signature *sig, @@ -1002,6 +1004,17 @@ tdb_get_validity_core (ctrl_t ctrl, unsigned int tofu_validity = TRUST_UNKNOWN; #endif unsigned int validity = TRUST_UNKNOWN; + int free_kb = 0; + + if (kb && pk) + log_assert (keyid_cmp (pk_main_keyid (pk), + pk_main_keyid (kb->pkt->pkt.public_key)) == 0); + + if (! pk) + { + log_assert (kb); + pk = kb->pkt->pkt.public_key; + } #ifndef USE_TOFU (void)sig; @@ -1030,14 +1043,20 @@ tdb_get_validity_core (ctrl_t ctrl, #ifdef USE_TOFU if (opt.trust_model == TM_TOFU || opt.trust_model == TM_TOFU_PGP) { - kbnode_t kb = NULL; kbnode_t n = NULL; strlist_t user_id_list = NULL; int done = 0; /* If the caller didn't supply a user id then use all uids. */ if (! uid) - kb = n = get_pubkeyblock (main_pk->keyid); + { + if (! kb) + { + kb = get_pubkeyblock (main_pk->keyid); + free_kb = 1; + } + n = kb; + } if (DBG_TRUST && sig && sig->signers_uid) log_debug ("TOFU: only considering user id: '%s'\n", @@ -1132,7 +1151,8 @@ tdb_get_validity_core (ctrl_t ctrl, may_ask); free_strlist (user_id_list); - release_kbnode (kb); + if (free_kb) + release_kbnode (kb); } #endif /*USE_TOFU*/ |