diff options
| author | Justus Winter <justus@sequoia-pgp.org> | 2021-06-28 14:37:47 +0200 |
|---|---|---|
| committer | Justus Winter <justus@sequoia-pgp.org> | 2021-07-16 11:57:22 +0200 |
| commit | 33d4f9513627b22e4bc1c3ecf2fa22f1dd3b274f (patch) | |
| tree | 95dd81756b0bcd9367fd6f43d8f09d7435f251a6 /openpgp/src/cert.rs | |
| parent | 39cef59facba9d2da8b4768e2c99ac7d6de98fd2 (diff) | |
openpgp: Add missing ValidCert::revocation_keys.
- The documentation refers to this function, however, until now it
was missing. Adding it is simple enough, but technically breaks
the API, because it breaks callers invoking
ValidCert::revocation_keys, which would previously deref to
Cert::revocation_keys.
- Avoid the breakage by adding an optional argument, which should be
None but can be Some(_) in order to appease existing users. See
#725.
Diffstat (limited to 'openpgp/src/cert.rs')
| -rw-r--r-- | openpgp/src/cert.rs | 50 |
1 files changed, 50 insertions, 0 deletions
diff --git a/openpgp/src/cert.rs b/openpgp/src/cert.rs index d1231ad4..b4552086 100644 --- a/openpgp/src/cert.rs +++ b/openpgp/src/cert.rs @@ -3530,6 +3530,56 @@ impl<'a> ValidCert<'a> { pub fn user_attributes(&self) -> ValidUserAttributeAmalgamationIter<'a> { self.cert.user_attributes().with_policy(self.policy, self.time) } + + /// Returns a list of any designated revokers for this certificate. + /// + /// This function returns the designated revokers listed on the + /// primary key's binding signatures and the certificate's direct + /// key signatures. + /// + /// Note: the returned list is deduplicated. + /// + /// In order to preserve our API during the 1.x series, this + /// function takes an optional policy argument. It should be + /// `None`, but if it is `Some(_)`, it will be used instead of the + /// `ValidCert`'s policy. This makes the function signature + /// compatible with [`Cert::revocation_keys`]. + /// + /// # Examples + /// + /// ``` + /// use sequoia_openpgp as openpgp; + /// # use openpgp::Result; + /// use openpgp::cert::prelude::*; + /// use openpgp::policy::StandardPolicy; + /// use openpgp::types::RevocationKey; + /// + /// # fn main() -> Result<()> { + /// let p = &StandardPolicy::new(); + /// + /// let (alice, _) = + /// CertBuilder::general_purpose(None, Some("alice@example.org")) + /// .generate()?; + /// // Make Alice a designated revoker for Bob. + /// let (bob, _) = + /// CertBuilder::general_purpose(None, Some("bob@example.org")) + /// .set_revocation_keys(vec![(&alice).into()]) + /// .generate()?; + /// + /// // Make sure Alice is listed as a designated revoker for Bob. + /// assert_eq!(bob.with_policy(p, None)?.revocation_keys(None) + /// .collect::<Vec<&RevocationKey>>(), + /// vec![&(&alice).into()]); + /// # Ok(()) } + /// ``` + pub fn revocation_keys<P>(&self, policy: P) + -> Box<dyn Iterator<Item = &'a RevocationKey> + 'a> + where + P: Into<Option<&'a dyn Policy>>, + { + self.cert.revocation_keys( + policy.into().unwrap_or_else(|| self.policy())) + } } macro_rules! impl_pref { |