gpgme 0.3.3 questions

Werner Koch wk at
Fri Sep 21 17:17:02 CEST 2001

On Fri, 21 Sep 2001 13:54:09 +0200, Stephane Corthesy said:

> What's the point of returning 0, without being at EOF?

It might choose to interrupt the read operation instead of waiting for
more data.

> But can I still use returned keys/trustItems/data if I  
> retained/referenced them?

Sure.  Consider GpgmeContext, GpgmeKey, GpgmeData all as independent
object classes.

> It will be in gpg 1.1... When will it be out?

I don't known.  I have to balance my time spend on pro bono work against
those which yield some revenue.

> Yes, it would be nice if I could get the list of imported keys.  
> Maybe through the new "context operation status".

This should not grow indefinitely; I am not yet sure how to do it.

> So, this is a global attribute, isn't it? It has no sense to ask a  
> subkey its secretness: we should ask the main key instead.

The flag just says: secret key available for this public key.  Wether
you can access all subkeys is a different story - they might be
protected by different passphrases.

> So, gpgme_data_release_and_get_mem() is a kind of shortcut.

Yeah, it can just use the memory already allocated by gpgme for the data.

> I hope it's high priority ;-) We miss it do create a PGP Key Manager  
> application.

IIRC, Timo has some patches but I want a protocol independent
interface for this.

> I didn't think that the number of keys could be retrieved after  
> --throw-keyid...

Well, the encrypted data is still available - other wise it would not
be possible to decrypt it.  The way it works is that a session is used
to encrypt the message and this session key is then public key
encrypted for each recipient.  --throw-keyid just removes the keyid of
the recipient, so that he has to try all his secret keys to decrupt
it, but all those encrypted session keys are visible.

> Thanks very much for your explanations,

Your welcome,


Werner Koch        Omnis enim res, quae dando non deficit, dum habetur
g10 Code GmbH      et non datur, nondum habetur, quomodo habenda est.
Privacy Solutions                                        -- Augustinus

More information about the Gnupg-devel mailing list