gpgme 0.3.3 questions

Werner Koch wk@gnupg.org
Fri Sep 21 16:17:02 2001 

On Fri, 21 Sep 2001 13:54:09 +0200, Stephane Corthesy said:


> What's the point of returning 0, without being at EOF?


It might choose to interrupt the read operation instead of waiting for
more data.


> But can I still use returned keys/trustItems/data if I  

> retained/referenced them?


Sure.  Consider GpgmeContext, GpgmeKey, GpgmeData all as independent
object classes.


> It will be in gpg 1.1... When will it be out?


I don't known.  I have to balance my time spend on pro bono work against
those which yield some revenue.


> Yes, it would be nice if I could get the list of imported keys.  

> Maybe through the new "context operation status".


This should not grow indefinitely; I am not yet sure how to do it.


> So, this is a global attribute, isn't it? It has no sense to ask a  

> subkey its secretness: we should ask the main key instead.


The flag just says: secret key available for this public key.  Wether
you can access all subkeys is a different story - they might be
protected by different passphrases.


> So, gpgme_data_release_and_get_mem() is a kind of shortcut.


Yeah, it can just use the memory already allocated by gpgme for the data.


> I hope it's high priority ;-) We miss it do create a PGP Key Manager  

> application.


IIRC, Timo has some patches but I want a protocol independent
interface for this.


> I didn't think that the number of keys could be retrieved after  

> --throw-keyid...


Well, the encrypted data is still available - other wise it would not
be possible to decrypt it.  The way it works is that a session is used
to encrypt the message and this session key is then public key
encrypted for each recipient.  --throw-keyid just removes the keyid of
the recipient, so that he has to try all his secret keys to decrupt
it, but all those encrypted session keys are visible.


> Thanks very much for your explanations,


Your welcome,

  Werner

-- 
Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus