aboutsummaryrefslogtreecommitdiffstats
path: root/agent (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Improve ssh card key diagnostic message.Werner Koch2011-11-282-2/+10
| | | | | | | * command-ssh.c (card_key_available): Change wording of no key diagnostic. (ssh_handler_request_identities): Do not call card_key_available if the scdaemon is disabled.
* Allow no protection in pinentry-mode=loopback.Ben Kibbey2011-09-132-2/+12
| | | | | When the inquired passphrase has a 0 length then treat it as no protection.
* Fixed invalid free.Ben Kibbey2011-09-131-3/+1
|
* Handle pinentry-mode=loopback.Ben Kibbey2011-09-125-2/+83
| | | | | | When this mode is set an inquire will be sent to the client to retrieve the passphrase. This adds a new inquire keyword "NEW_PASSPHRASE" that the GENKEY and PASSWD commands use when generating a new key.
* Fixed set but unused variable bugsWerner Koch2011-08-104-6/+11
|
* Update option s2k-count to match the documentation.Ben Kibbey2011-08-102-3/+8
| | | | The option would previously return an error if its value was < 65536.
* Made the KILLAGENT and KILLSCD commands working again.Werner Koch2011-08-101-0/+5
| | | | | This requires that GnuPG is build with a newer version of Libassuan (2.0.3).
* Make the inquire cancel fix a little bit more robust.Werner Koch2011-07-272-1/+18
|
* Fixed gpg-agent SCD inquire command cancellation.Ben Kibbey2011-07-272-0/+18
| | | | | Need to send the CANCEL command back to scdaemon otherwise the next SCD command will fail.
* Fix crash while reading unsupported ssh keys.Werner Koch2011-07-222-12/+11
| | | | | This bug was found by n-roeser at gmx.net (gnupg-devel@, msgid [email protected]).
* Allow listing of ssh fingerprint with the agent's KEYINFO command.Werner Koch2011-07-202-8/+32
|
* Support a confirm flag for ssh.Werner Koch2011-07-204-57/+206
| | | | | This implements the suggestion from bug#1349. With this change the fingerprint of the ssh key is also displayed in the pinentry prompts.
* Added gpg-agent OPTION "s2k-count".Ben Kibbey2011-06-298-15/+41
| | | | When unset or 0, the calibrated count will be used.
* Fix size_t vs int issues.Marcus Brinkmann2011-06-012-1/+6
|
* Add fixme note regarding pth_killWerner Koch2011-04-291-0/+1
|
* Fixed regression in OpenPGP secret key export.Werner Koch2011-04-264-2/+43
| | | | | | | | The protection used in the exported key used a different iteration count than given in the S2K field. Thus all OpenPGP keys exported from GnuPG 2.1-beta can't be imported again. Given that the actual secret key material is kept in private-keys-v1.d/ the can be re-exported with this fixed version.
* Add OPTION:cache-ttl-opt-preset to gpg-agent.Werner Koch2011-04-215-7/+25
| | | | | This option may be used to change the default ttl values use with the --preset option of GENKEY and PASSWD.
* Fix gpg-agent secure memory leak in OpenPGP private key import.Marcus Brinkmann2011-04-202-0/+8
| | | | | | | | 2011-04-20 Marcus Brinkmann <[email protected]> * command.c (cmd_import_key): Release key from failed import before converting openpgp private key in the openpgp-private-key case.
* Another PASSWD --preset fix.Ben Kibbey2011-04-182-1/+5
| | | | Check for an error before presetting the passphrase.
* Fixed PASSWD --preset.Ben Kibbey2011-04-132-7/+11
| | | | | The previous patch required that the keygrip be cached before adding the new passphrase to the cache. No more.
* Use macros for the 120 and 900s cache TTLs.Werner Koch2011-04-124-12/+23
|
* Added PASSWD --preset.Ben Kibbey2011-04-122-2/+15
|
* Added GENKEY --preset to add the passphrase of the generated key to the cache.Ben Kibbey2011-04-124-4/+24
|
* Added KEYINFO field to show the protection type of a key. This differs from ↵Ben Kibbey2011-04-122-10/+25
| | | | the second field which shows the location of the key.
* Make use of gcry_kdf_derive.Werner Koch2011-03-102-63/+10
| | | | | | Factoring common code out is always a Good Thing. Also added a configure test to print an error if gcry_kdf_derive is missing in Libgcrypt.
* Require libgcrypt 1.5Werner Koch2011-03-082-7/+4
| | | | | | | | Without Libgcrypt 1.5 is was not possible to use ECC keys. ECC is major new feature and thus it does not make sense to allow building with an older Libgcrypt without supporting ECC. Also fixed a few missing prototypes.
* Added option --inquire to PRESET_PASSPHRASE. Note that the inquired ↵Ben Kibbey2011-03-042-4/+30
| | | | passphrase will be truncated to the first encountered null byte.
* New agent option pinentry-mode.Werner Koch2011-03-035-2/+83
| | | | | This provides the framework and implements the ask, cancel and error. loopback will be implemented later.
* Fix usage of SHA-2 algorithm with OpenPGP cards.Werner Koch2011-03-024-6/+34
| | | | | | | This was a regression in 2.1 introduced due to having the agent do the signing in contrast to the old "SCD PKSIGN" command which accesses the scdaemon directly and passed the hash algorithm. The hash algorithm is used by app-openpgp.c only for a sanity check.
* Add comment to last patch.Werner Koch2011-03-022-14/+23
|
* Added option --data to KEYINFO to return the result with a data response.Ben Kibbey2011-03-021-12/+27
|
* Let KEYINFO show the cached status of a key grip.Ben Kibbey2011-03-021-1/+11
|
* Rename Ben's new option.Werner Koch2011-03-022-7/+11
|
* Added CLEAR_PASSPHRASE option --agent to search the cache for a cacheid with ↵Ben Kibbey2011-03-021-3/+10
| | | | a mode of CACHE_MODE_NORMAL. These cache modes are created with PKDECRYPT.
* Fix ECDSA 521 bit signing.Werner Koch2011-02-072-1/+7
| | | | | This fix also allows the creation and use of an 521 bit ECDH key which used to fail while creating the binding signature.
* Nuked almost all trailing white space.post-nuke-of-trailing-wsWerner Koch2011-02-0421-531/+511
| | | | | | | | We better do this once and for all instead of cluttering all future commits with diffs of trailing white spaces. In the majority of cases blank or single lines are affected and thus this change won't disturb a git blame too much. For future commits the pre-commit scripts checks that this won't happen again.
* Finished ECC integration.ECC-INTEGRATION-2-1Werner Koch2011-02-032-83/+98
| | | | | | | | | | | | Wrote the ChangeLog 2011-01-13 entry for Andrey's orginal work modulo the cleanups I did in the last week. Adjusted my own ChangeLog entries to be consistent with that entry. Nuked quite some trailing spaces; again sorry for that, I will better take care of not saving them in the future. "git diff -b" is useful to read the actual changes ;-). The ECC-INTEGRATION-2-1 branch can be closed now.
* Sample ECC keys and message do now work.Werner Koch2011-02-022-91/+96
| | | | | | | | Import and export of secret keys does now work. Encryption has been fixed to be compatible with the sample messages. This version tests for new Libgcrypt function and thus needs to be build with a new Libgcrypt installed.
* Fixed the ECC interface to Libgcrypt to be ABI compatible with the previous ↵Werner Koch2011-01-312-3/+4
| | | | | | | | | | | | | | | | version. Quite some changes were needed but in the end we have less code than before. Instead of trying to do everything with MPIs and pass them back and forth between Libgcrypt and GnuPG, we know use the S-expression based interface and make heavy use of our opaque MPI feature. Encryption, decryption, signing and verification work with self-generared keys. Import and export does not yet work; thus it was not possible to check the test keys at https://sites.google.com/site/brainhub/pgpecckeys .
* Reworked the ECC changes to better fit into the Libgcrypt API.Werner Koch2011-01-312-2/+8
| | | | | See ChangeLog for details. Key generation, signing and verification works. Encryption does not yet work. Requires latest Libgcrypt changes.
* Merge branch 'master' into ECC-INTEGRATION-2-1Werner Koch2011-01-242-3/+10
|\
| * Fixed a CR/LF problem on WindowsWerner Koch2011-01-192-3/+10
| |
* | Make most of the selftests work.Werner Koch2011-01-212-15/+20
| | | | | | | | | | Note that there is still a problem with tests/openpgp/sigs.test while using the option --digest-algo SHA256.
* | Editorial changes and allow building with old libgcrypts.Werner Koch2011-01-214-43/+31
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changed order of some conditional to make to put the special case into the true branch. Indentation changes. Minor other changes to make the ECC code more similar to the rest of our code. It builds but many sefltests still fail. Need to fix that before using it with an ECDH enabled libgcrypt. [/] 2011-01-21 Werner Koch <[email protected]> * configure.ac: Need Libgcrypt 1.4.6 due to AESWRAP. (HAVE_GCRY_PK_ECDH): Add new test. [agent/] 2011-01-21 Werner Koch <[email protected]> * cvt-openpgp.c (GCRY_PK_ECDH) [!HAVE_GCRY_PK_ECDH]: New. [include/] 2011-01-21 Werner Koch <[email protected]> * cipher.h (GCRY_PK_USAGE_CERT): Remove compatibility macros because we now require libgcrypt 1.4.6. (GCRY_PK_ECDH): Add replacement.
* | Fixed key generation with P-521. Confirmed that signature generation and ↵Andrey Jivsov2011-01-134-14/+25
| | | | | | | | verification work.
* | Integrating http://code.google.com/p/gnupg-ecc/source/detail?r=15 .Andrey Jivsov2011-01-063-16/+83
|/ | | | | | | | | | The following works: gpg2 --gen-key (ECC) gpg2 --list-keys gpg2 --list-packets ~/.gnupg/pubring.gpg gpg2 --list-packets <private key from http://sites.google.com/site/brainhub/pgpecckeys> ECDH doesn't work yet as the code must be re-written to adjust for gpg-agent refactoring.
* Change timer tick interval under WinceWerner Koch2010-12-022-11/+16
|
* s/AES/AES128/ in diagnostics and --list-configWerner Koch2010-12-021-1/+1
|
* Remove recently added debug outputWerner Koch2010-12-021-20/+1
|
* Init cache encryption on the fly.Werner Koch2010-11-293-24/+84
| | | | | add some debug code
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-15 12:34:00 +0000