batch signing of keys

Werner Koch wk at gnupg.org
Mon Feb 2 10:40:34 CET 2004


On Fri, 30 Jan 2004 18:28:04 +0000 (GMT), Nicholas Cole said:

> difficult to script the current bebehavioureven with
> the 
> status-fdfdnd command-fdfdptions (which are not fully
> documented).

I don't think that this is really difficult.  Well, not all things are
documented but this ain't no problem because a script is assumed to
either fail for an unknown prompt or to use the default (i.e. answer
with an empty string).  You may want to lookup how GPA implements it.

> Obviously, this would require a few extra command line
> options: a "expire this signature at this time"
> option, a "signature mode" option, and a "sign

What you have in mind is too complex to be implemented with just a few
more options.  There are far too many parameters involved in the
signing process and setting this all up properly will result in code
more complex than a simple FSM to fully handle all required
--status-fd stuff.


  Werner


-- 
Werner Koch                                      <wk at gnupg.org>
The GnuPG Experts                                http://g10code.com
Free Software Foundation Europe                  http://fsfeurope.org




More information about the Gnupg-devel mailing list