| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| | |
|
| |
|
|
|
| |
Use it in all other functions to locate the signing cert..
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
| |
* card.c (card_open): set it here.
* card-p15.c (p15_prepare_key): Factored out common code from ...
(p15_sign, p15_decipher): here and made the decryption work the
regular way.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
(gpgsm_cert_use_sign_p,gpgsm_cert_use_encrypt_p): New.
(gpgsm_cert_use_verify_p,gpgsm_cert_use_decrypt_p): New.
(gpgsm_add_to_certlist): Check the key usage.
* sign.c (gpgsm_sign): Ditto.
* verify.c (gpgsm_verify): Print a message wehn an unsuitable
certificate was used.
* decrypt.c (gpgsm_decrypt): Ditto
* keylist.c (print_capabilities): Determine values from the cert.
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
common errors.
|
| |
|
|
|
| |
issuer is not at the right place. Print a chainingID.
|
| | |
|
| |
|
|
|
|
| |
the scdaemon should take care of it.
(ask_for_card): Hack to not display the trailing zero.
|
| |
|
|
|
|
| |
* gpgsm.c: Add command --export.
* server.c (cmd_export): New.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
(do_listkeys): new. Add pattern parsing.
* keylist.c (gpgsm_list_keys): Handle selection pattern.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* gpgsm.c: New command --learn-card
* call-agent.c (learn_cb,gpgsm_agent_learn): New.
* gpgsm.c (main): Print error messages for non-implemented commands.
agent/
* learncard.c: New.
* divert-scd.c (ask_for_card): The serial number is binary so
convert it to hex here.
* findkey.c (agent_write_private_key): New.
* genkey.c (store_key): And use it here.
scd/
* pkdecrypt.c (agent_pkdecrypt): Changed the way the diversion is done.
* divert-scd.c (divert_pkdecrypt): Changed interface and
implemented it.
|
| |
|
|
|
| |
(assuan_transact): Pass it to the data callback.
|
| | |
|
| | |
|
| |
|
|
|
| |
code requires the latest OpenSC CVS code.
|
| | |
|
| |
|
|
|
|
| |
is of course a different thing. Note, that you need to create the
shadowed-private-key file manually.
|
| |
|
|
|
|
|
|
|
|
|
| |
* sign.c (gpgsm_get_default_cert): New.
(get_default_signer): Use the new function if local_user is not
set otherwise used that value.
* encrypt.c (get_default_recipient): Removed.
(gpgsm_encrypt): Use gpgsm_get_default_cert.
* verify.c (gpgsm_verify): Better error text for a bad signature
found by comparing the hashs.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
used and divert the operation in this case.
* pkdecrypt.c (agent_pkdecrypt): Likewise
* findkey.c (agent_key_from_file): Add optional arg shadow_info
and have it return information about a shadowed key.
* protect.c (agent_get_shadow_info): New.
* protect.c (snext,sskip,smatch): Moved to
* sexp-parse.h: new file.
* divert-scd.c: New.
|
| | |
|
| |
|
|
|
| |
no real code yet.
|
| |
|
|
|
|
|
| |
support status lines. Passing NULL yields the old behaviour.
* assuan-handler.c (process_request): Flush data lines send
without using the data fp.
|
| |
|
|
|
|
|
| |
except the root cert".
* sign.c (add_certificate_list): Implement it here.
* certpath.c (gpgsm_is_root_cert): New.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
because mail addresses are in general case insensitive (well
RFC2822 allows for case sensitive mailbox parts, but this is in
general considired a Bad Thing). Add additional substr parameter
to allow for substring matches within the mail address. Change
all callers to pass this along.
(blob_cmp_name): Likewise but do the case-insensitive search only
in sub string mode.
(keybox_search): Implement MAILSUB and SUBSTR mode.
* stringhelp.c (ascii_memcasemem): New.
|
| |
|
|
|
|
|
|
| |
(gpgsm_validate_path): And call it from here.
* gpgsm.c (main): New options --policy-file,
--disable-policy-checks and --enable-policy-checks.
* gpgsm.h (opt): Added policy_file, no_policy_checks.
|
| | |
|
| |
|
|
|
|
| |
certificate into the trusted list.
* call-agent.c (gpgsm_agent_marktrusted): New.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
* trustlist.c (agent_marktrusted): New.
(open_list): Add APPEND arg.
* query.c (agent_get_confirmation): New.
|
| |
|
|
|
|
|
|
| |
* vasprintf.c: New. Taken from binutils-2.9.1 and dropped all non
ANSI-C stuff. Merged with asprintf version.
* no-pth.c: New.
|
| |
|
|
|
| |
* assuan-socket-server.c (accept_connection) [USE_GNU_PTH]: Ditto.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
name identifies a certificate unambiguously.
(gpgsm_find_cert): Ditto.
* server.c (cmd_listkeys): Check that the data stream is available.
(cmd_listsecretkeys): Ditto.
(has_option): New.
(cmd_sign): Fix ambiguousity in option recognition.
* gpgsm.c (main): Enable --logger-fd.
* encrypt.c (gpgsm_encrypt): Increased buffer size for better
performance.
* call-agent.c (gpgsm_agent_pksign): Check the S-Exp received from
the agent.
* keylist.c (list_cert_colon): Filter out control characters.
|
| |
|
|
|
|
|
|
| |
* server.c (reset_notify): Close input and output FDs.
(cmd_encrypt,cmd_decrypt,cmd_verify,cmd_sign.cmd_import)
(cmd_genkey): Close the FDs and release the recipient list even in
the error case.
|
