diff options
| -rw-r--r-- | doc/gpgme.texi | 9 | ||||
| -rw-r--r-- | lang/cpp/src/context.cpp | 10 | ||||
| -rw-r--r-- | lang/cpp/src/context.h | 3 | ||||
| -rw-r--r-- | lang/qt/src/qgpgmequickjob.cpp | 11 | ||||
| -rw-r--r-- | lang/qt/src/qgpgmequickjob.h | 1 | ||||
| -rw-r--r-- | lang/qt/src/quickjob.h | 3 | ||||
| -rw-r--r-- | src/engine-gpg.c | 33 | ||||
| -rw-r--r-- | src/genkey.c | 8 | ||||
| -rw-r--r-- | src/gpgme.h.in | 1 | ||||
| -rw-r--r-- | tests/run-genkey.c | 41 |
10 files changed, 116 insertions, 4 deletions
diff --git a/doc/gpgme.texi b/doc/gpgme.texi index aaa2ab3f..48cca032 100644 --- a/doc/gpgme.texi +++ b/doc/gpgme.texi @@ -4390,6 +4390,11 @@ override this check. Request generation of keys that do not expire. +@item GPGME_CREATE_ADSK +@since{1.24.0} + +Add an ADSK to the key. + @end table After the operation completed successfully, information about the @@ -4465,6 +4470,10 @@ values for timestamps and thus can only encode dates up to the year @var{flags} takes the same values as described above for @code{gpgme_op_createkey}. +If the @code{GPGME_CREATE_ADSK} flag is set, the subkey fingerprint +given in the @code{algo} parameter is added as an ADSK +to the key. + After the operation completed successfully, information about the created key can be retrieved with @code{gpgme_op_genkey_result}. diff --git a/lang/cpp/src/context.cpp b/lang/cpp/src/context.cpp index 7d04e9cc..57f92394 100644 --- a/lang/cpp/src/context.cpp +++ b/lang/cpp/src/context.cpp @@ -1799,6 +1799,16 @@ Error Context::startRevokeSignature(const Key &key, const Key &signingKey, key.impl(), signingKey.impl(), uids.c_str(), flags)); } +Error Context::addAdsk(const Key &k, const char *adsk) +{ + return Error(d->lasterr = gpgme_op_createsubkey(d->ctx, k.impl(), adsk, 0, 0, GPGME_CREATE_ADSK)); +} + +Error Context::startAddAdsk(const Key &k, const char *adsk) +{ + return Error(d->lasterr = gpgme_op_createsubkey_start(d->ctx, k.impl(), adsk, 0, 0, GPGME_CREATE_ADSK)); +} + Error Context::setFlag(const char *name, const char *value) { return Error(d->lasterr = gpgme_set_ctx_flag(d->ctx, name, value)); diff --git a/lang/cpp/src/context.h b/lang/cpp/src/context.h index 4d7fedf0..c4f968f4 100644 --- a/lang/cpp/src/context.h +++ b/lang/cpp/src/context.h @@ -324,6 +324,9 @@ public: Error startRevokeSignature(const Key &key, const Key &signingKey, const std::vector<UserID> &userIds = std::vector<UserID>()); + Error addAdsk(const Key &k, const char *adsk); + Error startAddAdsk(const Key &k, const char *adsk); + // using TofuInfo::Policy Error setTofuPolicy(const Key &k, unsigned int policy); Error setTofuPolicyStart(const Key &k, unsigned int policy); diff --git a/lang/qt/src/qgpgmequickjob.cpp b/lang/qt/src/qgpgmequickjob.cpp index 33f1178a..1c6023a4 100644 --- a/lang/qt/src/qgpgmequickjob.cpp +++ b/lang/qt/src/qgpgmequickjob.cpp @@ -109,6 +109,12 @@ static QGpgMEQuickJob::result_type revokeSignatureWorker(Context *ctx, return std::make_tuple(err, QString(), Error()); } +static QGpgMEQuickJob::result_type addAdskWorker(Context *ctx, const Key &key, const char *adsk) +{ + const auto err = ctx->addAdsk(key, adsk); + return std::make_tuple(err, QString(), Error()); +} + void QGpgMEQuickJob::startCreate(const QString &uid, const char *algo, const QDateTime &expires, @@ -142,4 +148,9 @@ void QGpgMEQuickJob::startRevokeSignature(const Key &key, const Key &signingKey, run(std::bind(&revokeSignatureWorker, std::placeholders::_1, key, signingKey, userIds)); } +void QGpgMEQuickJob::startAddAdsk(const GpgME::Key &key, const char *adsk) +{ + run(std::bind(&addAdskWorker, std::placeholders::_1, key, adsk)); +} + #include "qgpgmequickjob.moc" diff --git a/lang/qt/src/qgpgmequickjob.h b/lang/qt/src/qgpgmequickjob.h index 2f59d8d4..07b89e18 100644 --- a/lang/qt/src/qgpgmequickjob.h +++ b/lang/qt/src/qgpgmequickjob.h @@ -71,6 +71,7 @@ public: unsigned int flags = 0) override; void startRevokeSignature(const GpgME::Key &key, const GpgME::Key &signingKey, const std::vector<GpgME::UserID> &userIds = std::vector<GpgME::UserID>()) override; + void startAddAdsk(const GpgME::Key &key, const char *adsk) override; }; } diff --git a/lang/qt/src/quickjob.h b/lang/qt/src/quickjob.h index 612a53d0..2d159bbe 100644 --- a/lang/qt/src/quickjob.h +++ b/lang/qt/src/quickjob.h @@ -85,6 +85,9 @@ public: virtual void startRevokeSignature(const GpgME::Key &key, const GpgME::Key &signingKey, const std::vector<GpgME::UserID> &userIds = std::vector<GpgME::UserID>()) = 0; + /** Start --quick-add-adsk */ + virtual void startAddAdsk(const GpgME::Key &key, const char *adsk) = 0; + Q_SIGNALS: void result(const GpgME::Error &error, const QString &auditLogAsHtml = QString(), const GpgME::Error &auditLogError = GpgME::Error()); diff --git a/src/engine-gpg.c b/src/engine-gpg.c index d5b2ab71..e212f1f8 100644 --- a/src/engine-gpg.c +++ b/src/engine-gpg.c @@ -2856,6 +2856,33 @@ gpg_adduid (engine_gpg_t gpg, static gpgme_error_t +gpg_addadsk (engine_gpg_t gpg, gpgme_key_t key, const char *adskfpr) +{ + gpgme_error_t err; + + if (!key || !key->fpr) + return gpg_error (GPG_ERR_INV_ARG); + + if (!adskfpr || !*adskfpr) + return gpg_error (GPG_ERR_INV_ARG); + + if (!have_gpg_version (gpg, "2.4.1")) + return gpg_error (GPG_ERR_NOT_SUPPORTED); + + err = add_arg (gpg, "--quick-add-adsk"); + if (!err) + err = add_arg (gpg, "--"); + if (!err) + err = add_arg (gpg, key->fpr); + if (!err) + err = add_arg (gpg, adskfpr); + if (!err) + err = start (gpg); + return err; +} + + +static gpgme_error_t gpg_genkey (void *engine, const char *userid, const char *algo, unsigned long reserved, unsigned long expires, @@ -2878,6 +2905,8 @@ gpg_genkey (void *engine, * !USERID && KEY - Add a new subkey to KEY (gpg >= 2.1.14) * USERID && KEY && !ALGO - Add a new user id to KEY (gpg >= 2.1.14). * or set a flag on a user id. + * !USERID && KEY && ALGO + * && GPGME_CREATE_ADSK - Add ALGO as an ADSK to KEY. */ if (help_data) { @@ -2894,10 +2923,12 @@ gpg_genkey (void *engine, err = gpg_error (GPG_ERR_NOT_SUPPORTED); else if (userid && !key) err = gpg_createkey (gpg, userid, algo, expires, flags, extraflags); - else if (!userid && key) + else if (!userid && key && !(flags & GPGME_CREATE_ADSK)) err = gpg_addkey (gpg, algo, expires, key, flags, extraflags); else if (userid && key && !algo) err = gpg_adduid (gpg, key, userid, extraflags); + else if (!userid && key && algo && (flags & GPGME_CREATE_ADSK)) + err = gpg_addadsk (gpg, key, algo); else err = gpg_error (GPG_ERR_INV_VALUE); diff --git a/src/genkey.c b/src/genkey.c index 89e1d985..11ca5cbe 100644 --- a/src/genkey.c +++ b/src/genkey.c @@ -48,6 +48,9 @@ typedef struct /* The key parameters passed to the crypto engine. */ gpgme_data_t key_parameter; + + /* Flag to indicate that an ADSK is to be added. */ + unsigned int adskmode : 1; } *op_data_t; @@ -180,7 +183,7 @@ genkey_status_handler (void *priv, gpgme_status_code_t code, char *args) case GPGME_STATUS_EOF: if (opd->error_code) return opd->error_code; - else if (!opd->uidmode && !opd->result.primary && !opd->result.sub) + else if (!opd->uidmode && !opd->adskmode && !opd->result.primary && !opd->result.sub) return gpg_error (GPG_ERR_GENERAL); else if (opd->failure_code) return opd->failure_code; @@ -445,6 +448,9 @@ createsubkey_start (gpgme_ctx_t ctx, int synchronous, return err; } + if (flags & GPGME_CREATE_ADSK) + opd->adskmode = 1; + return _gpgme_engine_op_genkey (ctx->engine, NULL, algo, reserved, expires, key, flags, diff --git a/src/gpgme.h.in b/src/gpgme.h.in index eaeb22aa..0ee3e088 100644 --- a/src/gpgme.h.in +++ b/src/gpgme.h.in @@ -1866,6 +1866,7 @@ gpgme_error_t gpgme_op_export_keys (gpgme_ctx_t ctx, #define GPGME_CREATE_WANTSEC (1 << 11) /* Return the secret key. */ #define GPGME_CREATE_FORCE (1 << 12) /* Force creation. */ #define GPGME_CREATE_NOEXPIRE (1 << 13) /* Create w/o expiration. */ +#define GPGME_CREATE_ADSK (1 << 14) /* Add an ADSK */ /* An object to return result from a key generation. diff --git a/tests/run-genkey.c b/tests/run-genkey.c index 8572db26..56404dd3 100644 --- a/tests/run-genkey.c +++ b/tests/run-genkey.c @@ -215,6 +215,7 @@ show_usage (int ex) " for revuid: FPR USERID\n" " for setexpire: FPR EXPIRE [SUBFPRS]\n" " for set-primary: FPR USERID\n" + " for addadsk: FPR ADSKFPR\n" "Options:\n" " --addkey add a subkey to the key with FPR\n" " --adduid add a user id to the key with FPR\n" @@ -222,6 +223,7 @@ show_usage (int ex) " --set-primary set the primary key flag on USERID\n" " --setexpire set the expiration time of the key FPR\n" " or of its subkeys SUBFPRS\n" + " --addadsk add the subkey with ADSKFPR to the key FPR\n" " --verbose run in verbose mode\n" " --status print status lines from the backend\n" " --progress print progress info\n" @@ -250,6 +252,7 @@ main (int argc, char **argv) int revuid = 0; int setpri = 0; int setexpire = 0; + int addadsk = 0; const char *userid; const char *algo = NULL; const char *newuserid = NULL; @@ -260,6 +263,7 @@ main (int argc, char **argv) int i; size_t n; char *subfprs_buffer = NULL; + char *adskfpr = NULL; if (argc) { argc--; argv++; } @@ -281,6 +285,7 @@ main (int argc, char **argv) revuid = 0; setpri = 0; setexpire = 0; + addadsk = 0; argc--; argv++; } else if (!strcmp (*argv, "--adduid")) @@ -290,6 +295,7 @@ main (int argc, char **argv) revuid = 0; setpri = 0; setexpire = 0; + addadsk = 0; argc--; argv++; } else if (!strcmp (*argv, "--revuid")) @@ -299,6 +305,7 @@ main (int argc, char **argv) revuid = 1; setpri = 0; setexpire = 0; + addadsk = 0; argc--; argv++; } else if (!strcmp (*argv, "--set-primary")) @@ -308,6 +315,7 @@ main (int argc, char **argv) revuid = 0; setpri = 1; setexpire = 0; + addadsk = 0; argc--; argv++; } else if (!strcmp (*argv, "--setexpire")) @@ -317,6 +325,17 @@ main (int argc, char **argv) revuid = 0; setpri = 0; setexpire = 1; + addadsk = 0; + argc--; argv++; + } + else if (!strcmp (*argv, "--addadsk")) + { + addkey = 0; + adduid = 0; + revuid = 0; + setpri = 0; + setexpire = 0; + addadsk = 1; argc--; argv++; } else if (!strcmp (*argv, "--verbose")) @@ -412,6 +431,13 @@ main (int argc, char **argv) subfprs = NULL; } } + else if (addadsk) + { + if (argc != 2) + show_usage(1); + userid = argv[0]; + adskfpr = argv[1]; + } else { if (!argc || argc > 4) @@ -445,7 +471,7 @@ main (int argc, char **argv) } - if (addkey || adduid || revuid || setpri || setexpire) + if (addkey || adduid || revuid || setpri || setexpire || addadsk) { gpgme_key_t akey; @@ -507,6 +533,17 @@ main (int argc, char **argv) exit (1); } } + else if (addadsk) + { + err = gpgme_op_createsubkey(ctx, akey, adskfpr, 0, 0, + GPGME_CREATE_ADSK); + if (err) + { + fprintf (stderr, PGM ": gpgme_op_createsubkey failed: %s\n", + gpg_strerror (err)); + exit (1); + } + } gpgme_key_unref (akey); } @@ -521,7 +558,7 @@ main (int argc, char **argv) } } - if (!setpri && !setexpire) + if (!setpri && !setexpire && !addadsk) { result = gpgme_op_genkey_result (ctx); if (!result) |