gpg: Add experimental AKL method "wkd" and option --with-wkd-hash.
authorWerner Koch <wk@gnupg.org>
Wed, 27 Apr 2016 06:34:29 +0000 (08:34 +0200)
committerWerner Koch <wk@gnupg.org>
Wed, 27 Apr 2016 06:34:29 +0000 (08:34 +0200)
commit87de9e19edf0311ca0342e15ef44ebe40e32861e
tree20f8f2c384040344ece6e00c64036c666dd4a843
parentc83c6f212e9bc98a9ea8dd8102bc16edd1a03050
gpg: Add experimental AKL method "wkd" and option --with-wkd-hash.

* g10/getkey.c (parse_auto_key_locate): Add method "wkd".
(get_pubkey_byname): Implement that method.  Also rename a variable.
* g10/call-dirmngr.c (gpg_dirmngr_wkd_get): New.
* g10/keyserver.c (keyserver_import_wkd): New.
* g10/test-stubs.c (keyserver_import_wkd): Add stub.
* g10/gpgv.c (keyserver_import_wkd): Ditto.
* g10/options.h (opt):  Add field 'with_wkd_hash'.
(AKL_WKD): New.

* g10/gpg.c (oWithWKDHash): New.
(opts): Add option --with-wkd-hash.
(main): Set that option.
* g10/keylist.c (list_keyblock_print): Implement that option.
--

The Web Key Directory is an experimental feature to retrieve a key via
https.  It is similar to OpenPGP DANE but also uses an encryption to
reveal less information about a key lookup.

For example the URI to lookup the key for Joe.Doe@Example.ORG is:

    https://example.org/.well-known/openpgpkey/
    hu/example.org/iy9q119eutrkn8s1mk4r39qejnbu3n5q

(line has been wrapped for rendering purposes).  The hash is a
z-Base-32 encoded SHA-1 hash of the mail address' local-part.  The
address wk@gnupg.org can be used for testing.

Signed-off-by: Werner Koch <wk@gnupg.org>
12 files changed:
doc/gpg.texi
g10/call-dirmngr.c
g10/call-dirmngr.h
g10/getkey.c
g10/gpg.c
g10/gpgv.c
g10/import.c
g10/keylist.c
g10/keyserver-internal.h
g10/keyserver.c
g10/options.h
g10/test-stubs.c