r190 - in trunk: . doc

Laurent Fousse lfousse at costa.debian.org
Tue May 3 20:57:50 CEST 2005 

Author: lfousse
Date: 2005-05-03 18:57:47 +0000 (Tue, 03 May 2005)
New Revision: 190

Modified:
   trunk/ca-sendout
   trunk/cabotrc
   trunk/doc/ca-config.pod
Log:
Introduce option challenge_encrypt_self_to, which should solve bug reported
in <20040415195012.GM20586 at nagy.mdcc.cx>.


Modified: trunk/ca-sendout
===================================================================
--- trunk/ca-sendout	2005-05-03 18:25:17 UTC (rev 189)
+++ trunk/ca-sendout	2005-05-03 18:57:47 UTC (rev 190)
@@ -46,8 +46,10 @@
 	$gnupg->options->hash_init( 'armor'        => 1,
 	                            'always_trust' => 1);
 	$gnupg->options->push_recipients( $key );
-	foreach my $mykeyid (split / /, $CONFIG{'keyid'}) {
-		$gnupg->options->push_recipients( $mykeyid );
+	if (defined($CONFIG{'challenge_encrypt_self_to'})) {
+		foreach my $mykeyid (split / /, $CONFIG{'challenge_encrypt_self_to'}) {
+			$gnupg->options->push_recipients( $mykeyid );
+		}
 	}
 	my ($inputfd, $stdoutfd, $stderrfd, $statusfd, $handles) = mkfds();
 	my $pid = $gnupg->encrypt( handles => $handles );

Modified: trunk/cabotrc
===================================================================
--- trunk/cabotrc	2005-05-03 18:25:17 UTC (rev 189)
+++ trunk/cabotrc	2005-05-03 18:57:47 UTC (rev 190)
@@ -43,6 +43,9 @@
 
 $CONFIG{'want_recv_notice'} = "yes"; # set to "no" if you don't want the
 				     # "New key in tosign" mail messages.
+# The space-separated list of keyids for which you want the challenges
+# encrypted to (comment out to disable this feature).
+$CONFIG{'challenge_encrypt_self_to'} = $CONFIG{'keyid'};
 
 # you very likely wont have to change anything below here #########################
 

Modified: trunk/doc/ca-config.pod
===================================================================
--- trunk/doc/ca-config.pod	2005-05-03 18:25:17 UTC (rev 189)
+++ trunk/doc/ca-config.pod	2005-05-03 18:57:47 UTC (rev 190)
@@ -110,6 +110,13 @@
 Set to C<no> if you don't want to get email notices when you have a new key
 to sign.
 
+=item challenge_encrypt_self_to
+
+Set this to the space-separated list of keyids you want the challenge to be
+encrypted to, in addition to the keyid that the challenge is intended
+for. This is useful if you want to get a copy of every challenge and
+be able to decrypt them too. Leave undefined to disable.
+
 =back
 
 =head1 EXAMPLE

More information about the Cabot-commit mailing list