sm: Implement initial support for keyboxd.

* sm/gpgsm.h (MAX_FINGERPRINT_LEN): New. * sm/keydb.c (struct keydb_local_s): Change definition of search_result. (keydb_get_cert): Implement keyboxd mode. (keydb_get_flags): Temporary hack for keyboxd mode. Needs to be fixed. (struct store_parm_s, store_inq_cb): New. (keydb_insert_cert): Implement keyboxd mode. (keydb_locate_writable): Make static. (keydb_search_reset): Implement keyboxd mode. (search_status_cb): New. (keydb_search): Implement keyboxd mode. Replace return code -1 by GPG_ERR_NOT_FOUND. (keydb_set_cert_flags): Replace return code -1 by GPG_ERR_NOT_FOUND. * sm/keylist.c (list_cert_colon): Adjust for replacement of -1 by GPG_ERR_NOT_FOUND. (list_internal_keys): Ditto. * sm/sign.c (add_certificate_list): Ditto. * sm/certchain.c (find_up_search_by_keyid): Ditto. (find_up_external, find_up, find_up_dirmngr): Ditto. (gpgsm_walk_cert_chain): Ditto. (get_regtp_ca_info): Ditto. * sm/certlist.c (gpgsm_add_to_certlist): Ditto. (gpgsm_find_cert): Ditto. * sm/delete.c (delete_one): Ditto. * sm/export.c (gpgsm_export): Ditto. (gpgsm_p12_export): Ditto. * sm/import.c (gpgsm_import_files): Ditto. -- Note that keyboxd is not yet able to handle the ephemeral flag. This needs fixing here and in keyboxd. Delete et al. is also not yet implemented. A basic key listing works, though. Signed-off-by: Werner Koch <[email protected]>
author: Werner Koch <[email protected]> 2020-09-10 11:05:17 +0000
committer: Werner Koch <[email protected]> 2020-09-10 11:05:17 +0000
commit: ed6ebb696e4063dc664d7ee74fc492025881c459 (patch)
tree: 0cfe048023a2a390802bbde31f35a2ac247158cf /sm/gpgsm.h
parent: keyboxd: Add basic support for X.509. (diff)
download: gnupg-ed6ebb696e4063dc664d7ee74fc492025881c459.tar.gz
gnupg-ed6ebb696e4063dc664d7ee74fc492025881c459.zip
1 files changed, 9 insertions, 3 deletions
diff --git a/sm/gpgsm.h b/sm/gpgsm.h
index 05f06d17b..e96f15743 100644
--- a/sm/gpgsm.h
+++ b/sm/gpgsm.h
@@ -36,8 +36,14 @@
 #include "../common/ksba-io-support.h"
 #include "../common/compliance.h"
 
+/* The maximum length of a binary fingerprints.  This is used to
+ * provide a static buffer and will be increased if we need to support
+ * longer fingerprints.  */
+#define MAX_FINGERPRINT_LEN 32
+
+/* The maximum length of a binary digest.  */
+#define MAX_DIGEST_LEN 64     /* Fits for SHA-512 */
 
-#define MAX_DIGEST_LEN 64
 
 struct keyserver_spec
 {
@@ -353,8 +359,8 @@ int gpgsm_create_cms_signature (ctrl_t ctrl,
 #define VALIDATE_FLAG_CHAIN_MODEL 2
 #define VALIDATE_FLAG_STEED       4
 
-int gpgsm_walk_cert_chain (ctrl_t ctrl,
-                           ksba_cert_t start, ksba_cert_t *r_next);
+gpg_error_t gpgsm_walk_cert_chain (ctrl_t ctrl,
+                                   ksba_cert_t start, ksba_cert_t *r_next);
 int gpgsm_is_root_cert (ksba_cert_t cert);
 int gpgsm_validate_chain (ctrl_t ctrl, ksba_cert_t cert,
                           ksba_isotime_t checktime,
author	Werner Koch <[email protected]>	2020-09-10 11:05:17 +0000
committer	Werner Koch <[email protected]>	2020-09-10 11:05:17 +0000
commit	ed6ebb696e4063dc664d7ee74fc492025881c459 (patch)
tree	0cfe048023a2a390802bbde31f35a2ac247158cf /sm/gpgsm.h
parent	keyboxd: Add basic support for X.509. (diff)
download	gnupg-ed6ebb696e4063dc664d7ee74fc492025881c459.tar.gz gnupg-ed6ebb696e4063dc664d7ee74fc492025881c459.zip