gpgsm: New option --assert-signer

* sm/gpgsm.c (oAssertSigner, oNoop): New. (opts): Add option --assert-signer. (assert_signer_true): New var. (main): Set new option. (gpgsm_exit): Handle assert_signer_true. * sm/gpgsm.h (opt): Add field assert_signer_list. * sm/verify.c (is_x509_fingerprint): New. (check_assert_signer_list): New. (gpgsm_verify): Handle option. -- GnuPG-bug-id: 7286
author: Werner Koch <[email protected]> 2024-09-11 12:24:58 +0000
committer: Werner Koch <[email protected]> 2024-09-11 12:30:40 +0000
commit: 33e571a74a7d6153ba65aeecc72539a10f1f0ae4 (patch)
tree: b3ddc5b1932d90e29017a05fbb9318664b8a0eec /sm/gpgsm.h
parent: build: Remove configure option --enable-gpg-is-gpg2 (diff)
download: gnupg-33e571a74a7d6153ba65aeecc72539a10f1f0ae4.tar.gz
gnupg-33e571a74a7d6153ba65aeecc72539a10f1f0ae4.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/sm/gpgsm.h b/sm/gpgsm.h
index e9f74be8c..5f69db0e3 100644
--- a/sm/gpgsm.h
+++ b/sm/gpgsm.h
@@ -181,6 +181,10 @@ struct
    * attribute values.  */
   strlist_t attributes;
 
+  /* The list of --assert-signer option values.  Note: The values are
+   * modified to uppercase if they represent a fingerrint */
+  strlist_t assert_signer_list;
+
   /* Compatibility flags (COMPAT_FLAG_xxxx).  */
   unsigned int compat_flags;
 } opt;
@@ -312,6 +316,7 @@ struct rootca_flags_s
 
 /*-- gpgsm.c --*/
 extern int gpgsm_errors_seen;
+extern int assert_signer_true;
 
 void gpgsm_exit (int rc);
 void gpgsm_init_default_ctrl (struct server_control_s *ctrl);
author	Werner Koch <[email protected]>	2024-09-11 12:24:58 +0000
committer	Werner Koch <[email protected]>	2024-09-11 12:30:40 +0000
commit	33e571a74a7d6153ba65aeecc72539a10f1f0ae4 (patch)
tree	b3ddc5b1932d90e29017a05fbb9318664b8a0eec /sm/gpgsm.h
parent	build: Remove configure option --enable-gpg-is-gpg2 (diff)
download	gnupg-33e571a74a7d6153ba65aeecc72539a10f1f0ae4.tar.gz gnupg-33e571a74a7d6153ba65aeecc72539a10f1f0ae4.zip