gmnlm: use 'trust always' as default in TOFU prompt v1 REJECTED

Ondřej Fiala: 1
 gmnlm: use 'trust always' as default in TOFU prompt

 1 files changed, 5 insertions(+), 3 deletions(-)
Export patchset (mbox)
How do I use this?

Copy & paste the following snippet into your terminal to import this patchset into git:

curl -s https://lists.sr.ht/~sircmpwn/gmni-devel/patches/27891/mbox | git am -3
Learn more about email & git

[PATCH] gmnlm: use 'trust always' as default in TOFU prompt Export this patch

The TOFU prompt seems to encourage choosing the 'trust always' option
unless the user knows better. In such cases, it is common to default to
such option when no explicit choice is provided by the user.

To me, this seems to make the UX feel much closer to clients that don't
ask at all, while retaining the security benefits.

I considered also modifying the prompt to make this behavior more
visible, but I am not sure about a good way to do it. I am afraid that
capitalizing the first letter, which is the convention, could be
misunderstood by users in this context. Please let me know what you
think about this.

 src/gmnlm.c | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/src/gmnlm.c b/src/gmnlm.c
index 710473b..73c3230 100644
--- a/src/gmnlm.c
+++ b/src/gmnlm.c
@@ -1125,12 +1125,14 @@ tofu_callback(enum tofu_error error, const char *fingerprint,
			return TOFU_FAIL;
		if (line[1] != '\n') {

		char c = line[0];
		if (c == '\n') {
		} else if (line[1] != '\n') {

		char c = line[0];

		switch (c) {
NACK. I think this makes the behavior betray the user's expectations.