[gnutls-dev] Fixing OpenPGP keyring import
Timo Schulz
twoaday at gmx.net
Wed Apr 18 14:59:02 CEST 2007
Simon Josefsson wrote:
>> this feature to the keydb.c code. This would not break any existing
>> interfaces. I will do it and backport the changes to 0.5.13.
>> Is this ok for you?
>
> Maybe you could post the patch? I think it would be fine.
So I won't send the wrong patch.
We decided that opencdk base64 decodes the CDK_DBTYPE_DATA object,
right? I could also post the cdk_keydb_new_from_stream but then some
other files needed to be patched also and maybe it is easier if I
commit the changes directly in the nmav-0-5-x branch?
> Yes, I agree that gnutls should use your opencdk. Maybe you could
> summarize your changes?
OK.
Most of the things I changed are not visible, adjustments for the
latest openpgp draft, bug fixes for mem leaks. The most visible change
is, that I dropped the cdk_mpi_t object and now we use gcrypt_mpi_t
objects directly. Minor things need to be changed in the gnutls openpgp
code.
I cleaned up the passphrase interface, which should also no problem
because, IIRC, gnutls do not unprotect secret keys via opencdk.
Some functions now have an additional or fewer parameters. But most of
the changes are related to bulk encryption. The external interface of
the key conversion/management API is pretty much the same.
> Also, I don't think I will have time to develop the patches for gnutls
> required to do this, so I'm hoping that you will take the lead on that
> and propose some patches for gnutls.
Of course. I wrote part of the last openpgp gnutls code and it should be
not too difficult for me to adjust the code for the new opencdk version.
But FYI, I don't think that much time is needed to finish the migration.
This is at least what I believe ;-).
Timo
More information about the Gnutls-devel
mailing list