diff options
| author | Werner Koch <wk@gnupg.org> | 2024-06-21 10:19:00 +0200 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2024-06-21 10:19:00 +0200 |
| commit | 1067e544c29d652f6f19e47ed2d563e570611e43 (patch) | |
| tree | 133be65cbb5698c637bf986f793c3223df7ab8ce /sm | |
| parent | Fix the previous commit. (diff) | |
| download | gnupg2-1067e544c29d652f6f19e47ed2d563e570611e43.tar.xz gnupg2-1067e544c29d652f6f19e47ed2d563e570611e43.zip | |
sm: Emit user IDs in colon mode even if the Subject is empty.
* sm/keylist.c (list_cert_colon): Rework listing of user IDs.
--
Only in colon mode this did not work. Note that an updated libksba is
anyway required to parse a certificate with an empty Subject.
GnuPG-bug-id: 7171
Diffstat (limited to 'sm')
| -rw-r--r-- | sm/keylist.c | 51 |
1 files changed, 31 insertions, 20 deletions
diff --git a/sm/keylist.c b/sm/keylist.c index 65902480d..a29c7d792 100644 --- a/sm/keylist.c +++ b/sm/keylist.c @@ -660,36 +660,47 @@ list_cert_colon (ctrl_t ctrl, ksba_cert_t cert, unsigned int validity, print_key_data (cert, fp); kludge_uid = NULL; - for (idx=0; (p = ksba_cert_get_subject (cert,idx)); idx++) + p = ksba_cert_get_subject (cert, 0); + es_fprintf (fp, "uid:%s::::::::", truststring); + if (p) + es_write_sanitized (fp, p, strlen (p), ":", NULL); + es_putc (':', fp); + es_putc (':', fp); + es_putc (':', fp); + es_putc ('\n', fp); + if (p) + { + /* It would be better to get the faked email address from the + * keydb. But as long as we don't have a way to pass the meta + * data back, we just check it the same way as the code used to + * create the keybox meta data does */ + kludge_uid = email_kludge (p); + if (kludge_uid) + { + es_fprintf (fp, "uid:%s::::::::", truststring); + es_write_sanitized (fp, kludge_uid, strlen (kludge_uid), + ":", NULL); + es_putc (':', fp); + es_putc (':', fp); + es_putc ('\n', fp); + } + xfree (p); + } + for (idx=1; (p = ksba_cert_get_subject (cert,idx)); idx++) { /* In the case that the same email address is in the subject DN as well as in an alternate subject name we avoid printing it a second time. */ if (kludge_uid && !strcmp (kludge_uid, p)) - continue; - + { + xfree (p); + continue; + } es_fprintf (fp, "uid:%s::::::::", truststring); es_write_sanitized (fp, p, strlen (p), ":", NULL); es_putc (':', fp); es_putc (':', fp); es_putc ('\n', fp); - if (!idx) - { - /* It would be better to get the faked email address from - the keydb. But as long as we don't have a way to pass - the meta data back, we just check it the same way as the - code used to create the keybox meta data does */ - kludge_uid = email_kludge (p); - if (kludge_uid) - { - es_fprintf (fp, "uid:%s::::::::", truststring); - es_write_sanitized (fp, kludge_uid, strlen (kludge_uid), - ":", NULL); - es_putc (':', fp); - es_putc (':', fp); - es_putc ('\n', fp); - } - } xfree (p); } xfree (kludge_uid); |