aboutsummaryrefslogtreecommitdiffstats
path: root/doc/gpgsm.texi (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Add option --no-autostart.Werner Koch2014-11-281-0/+8
| | | | | | | | | | | | | | * g10/gpg.c: Add option --no-autostart. * sm/gpgsm.c: Ditto. * g10/options.h (opt): Add field autostart. * sm/gpgsm.h (opt): Ditto. * g10/call-agent.c (start_agent): Print note if agent was not autostarted. * sm/call-agent.c (start_agent): Ditto. * g10/call-dirmngr.c (create_context): Likewise. * sm/call-dirmngr.c (start_dirmngr_ext): Ditto. Signed-off-by: Werner Koch <[email protected]>
* Typo fixes.Werner Koch2014-11-041-1/+1
| | | | --
* tests: Speed up the genkey1024.test by using not so strong random.Werner Koch2014-10-301-1/+3
| | | | | | | | | | | | | * agent/gpg-agent.c (oDebugQuickRandom): New. (opts): New option --debug-quick-random. (main): Use new option. * common/asshelp.c (start_new_gpg_agent): Add hack to pass an additional argument for the agent name. * tests/openpgp/defs.inc: Pass --debug-quick-random to the gpg-agent starting parameters. * tests/openpgp/version.test: Ditto. Signed-off-by: Werner Koch <[email protected]>
* Remove support for the GPG_AGENT_INFO envvar.Werner Koch2014-10-031-3/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | * agent/agent.h (opt): Remove field use_standard_socket. * agent/command.c (cmd_killagent): Always allow killing. * agent/gpg-agent.c (main): Turn --{no,}use-standard-socket and --write-env-file into dummy options. Always return true for --use-standard-socket-p. Do not print the GPG_AGENT_INFO envvar setting or set that envvar. (create_socket_name): Simplify by removing non standard socket support. (check_for_running_agent): Ditto. * common/asshelp.c (start_new_gpg_agent): Remove GPG_AGENT_INFO use. * common/simple-pwquery.c (agent_open): Ditto. * configure.ac (GPG_AGENT_INFO_NAME): Remove. * g10/server.c (gpg_server): Do not print the AgentInfo comment. * g13/server.c (g13_server): Ditto. * sm/server.c (gpgsm_server): Ditto. * tools/gpgconf.c (main): Simplify by removing non standard socket support. -- The indented fix to allow using a different socket than the one in the gnupg home directory is to change Libassuan to check whether the socket files exists as a regualr file with a special keyword to redirect to another socket file name.
* Add new option --with-secret.Werner Koch2014-06-031-0/+7
| | | | | | | | | | | | | | | | | | | * g10/gpg.c: Add option --with-secret. * g10/options.h (struct opt): Add field with_secret. * g10/keylist.c (public_key_list): Pass opt.with_secret to list_all and list_one. (list_all, list_one): Add arg mark_secret. (list_keyblock_colon): Add arg has_secret. * sm/gpgsm.c: Add option --with-secret. * sm/server.c (option_handler): Add option "with-secret". * sm/gpgsm.h (server_control_s): Add field with_secret. * sm/keylist.c (list_cert_colon): Take care of with_secret. Also move the token string from the wrong field 14 to 15. -- This option is useful for key managers which need to know whether a key has a secret key. This change allows to collect this information in one pass.
* gpgsm: New commands --export-secret-key-{p8,raw}Werner Koch2014-06-031-2/+15
| | | | | | | | | * sm/gpgsm.c: Add new commands. * sm/minip12.c (build_key_sequence): Add arg mode. (p12_raw_build): New. * sm/export.c (export_p12): Add arg rawmode. Call p12_raw_build. (gpgsm_p12_export): Ditto. (print_short_info): Print the keygrip.
* gpg: Add option --dirmngr-program.Werner Koch2014-03-121-1/+1
| | | | | | | | | | | * g10/gpg.c: Add option --dirmngr-program. * g10/options.h (struct opt): Add field dirmngr_program. * g10/call-dirmngr.c (create_context): Use new var. * dirmngr/dirmngr.c: Include gc-opt-flags.h. (main): Remove GC_OPT_FLAG_*. * tools/gpgconf-comp.c (GC_OPT_FLAG_NO_CHANGE): Move macro to ... * common/gc-opt-flags.h: here.
* doc: fix some Texinfo warnings.Ian Abbott2013-05-071-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | * doc/gpg.texi: Fix syntax and add missing menu entries. * doc/gpgsm.texi: Fix subsectioning. -- These five patches fix some warnings from Texinfo 5 by adding some missing nodes and changing some sections to subsections, and moving an '@end ifset' to the start of a line. I also noticed the 'Deprecated options' subsection didn't appear in the GPG options menu, so I added it. (Texinfo never warned about it because it was after the last node in the menu.) 1) doc/gpg.texi: move '@end ifset' to start of line 2) doc/gpg.texi: Add missing node for 'Compliance options' section. 3) doc/gpg.texi: add node for 'Deprecated options' subsection. 4) doc/gpg.texi: make 'Unattended key generation' a subsection 5) doc/gpgsm.texi: fix subsectioning for Unattended Usage (all 5 merged into one patch by wk) (cherry picked from commit 4d67f59a336bfa0ff19fc23209940724196fd886) Signed-off-by: Werner Koch <[email protected]>
* doc: Formatting fixes.Werner Koch2013-04-191-2/+3
| | | | | | | | | | | * doc/Makefile.am (.fig.jpg): Correct to use -L jpeg. * doc/gpg.texi: Fix cross reference for --options. * doc/gpgsm.texi: Likewise. * doc/gpl.texi: Fix enumerate and re-indent examples. -- Reported-by: Ian Abbott Signed-off-by: Werner Koch <[email protected]>
* gpgsm: Add new validation model "steed".Werner Koch2011-12-071-4/+5
| | | | | | | | | | | | | | | | | | | | * sm/gpgsm.h (VALIDATE_FLAG_STEED): New. * sm/gpgsm.c (gpgsm_parse_validation_model): Add model "steed". * sm/server.c (option_handler): Allow validation model "steed". * sm/certlist.c (gpgsm_cert_has_well_known_private_key): New. * sm/certchain.c (do_validate_chain): Handle the well-known-private-key attribute. Support the "steed" model. (gpgsm_validate_chain): Ditto. * sm/verify.c (gpgsm_verify): Return "steed" in the trust status line. * sm/keylist.c (list_cert_colon): Print the new 'w' flag. -- This is the first part of changes to implement the STEED proposal as described at http://g10code.com/steed.html . The idea for X.509 is not to use plain self-signed certificates but certificates signed by a dummy CA (i.e. one for which the private key is known). Having a single CA as an indication for the use of STEED might help other X.509 implementations to implement STEED.
* gpgsm: Allow arbitrary extensions for cert creation.Werner Koch2011-12-061-3/+3
| | | | | | | | * sm/certreqgen.c (pSUBJKEYID, pEXTENSION): New. (read_parameters): Add new keywords. (proc_parameters): Check values of new keywords. (create_request): Add SubjectKeyId and extensions. (parse_parameter_usage): Support "cert" and the encrypt alias "encr".
* Typo fix and remove of some colloquial termsWerner Koch2011-10-181-15/+16
|
* Put more options into the options indexWerner Koch2011-10-121-2/+0
| | | | Also removed the single letter options from the index.
* Minor doc updates v2.0 vs. v2.1)Werner Koch2011-08-081-3/+17
|
* doc/gpgsm.texi com-certs.pem mini-fixBernhard Reiter2011-06-271-1/+1
| | | | | | | | [[PGP Signed Part:Undecided]] [1. text/plain] Example path for com-certs.pem corrected. [2. text/x-diff; doc.diff]
* Move parameter file description to the manual.Werner Koch2011-03-011-35/+179
|
* Add new option --with-keygripWerner Koch2010-10-081-0/+4
|
* Exporting secret keys via gpg-agent is now basically supported.Werner Koch2010-10-011-6/+5
| | | | | | A couple of forward ported changes. Doc updates.
* Implement --faked-systrem-time for gpg.Werner Koch2009-12-171-1/+1
| | | | | Typo and comment fixes.
* Add option --cert-extension.Werner Koch2009-12-101-1/+10
|
* support numeric debug levels.Werner Koch2009-12-031-6/+12
|
* [g13] Add RECIPEINT and CREATE command.Werner Koch2009-10-191-1/+1
| | | | | [sm] Chnage --include-certs default
* Typo fixes. Fixes bug#1093Werner Koch2009-07-221-24/+24
|
* Give hints on files to backup.Werner Koch2009-07-221-3/+6
|
* Impleemned gpgsm's IMPORT --re-import feature.Werner Koch2009-07-071-2/+12
| | | | | Typo fix.
* Reworked passing of envars to Pinentry.Werner Koch2009-07-071-2/+2
|
* Alow batch ode for gpgsm --gen-key.Werner Koch2009-07-011-3/+4
| | | | | Allow CSR generation using an existing key with gpgsm.
* Signing using Netkey 3 cards does now work.Werner Koch2009-03-261-0/+6
|
* New gpg-agent command to list key information.Werner Koch2009-03-061-5/+9
| | | | | | Gpgsm does now print the S/N of cards. Consider ephemeral keys during listing an export.
* Small doc fixes.Werner Koch2008-12-121-5/+6
|
* SCD changes for PC/SC under W32.Werner Koch2008-10-141-1/+1
|
* Explain how to delete a secret X.509 key.Werner Koch2008-10-131-1/+7
|
* Fix !EROFS bug.Werner Koch2008-08-011-2/+10
| | | | | Doc updates
* Improve certificate chain construction.Werner Koch2008-02-191-0/+7
| | | | | Extend PKITS framework
* Always search missing certifcates using a running Dirmngr's cache.Werner Koch2008-02-131-1/+18
|
* Typo and grammer fixes by Justin Pryzby.Werner Koch2008-01-281-3/+3
|
* Allow verification of some broken S-TRUST generated signatures.Werner Koch2007-12-131-0/+13
|
* Add support for help stuff to audit.cWerner Koch2007-12-061-1/+15
|
* Document --auto-issuer-key-retrieve.Werner Koch2007-11-191-1/+12
|
* Documentaion updates.Werner Koch2007-08-141-1/+2
| | | | | | Support doe Dirmngr under W32. Fixed a yat2m bug.
* Implemented the chain model for X.509 validation.Werner Koch2007-08-101-1/+13
|
* Typo fixes.Werner Koch2007-07-171-0/+8
| | | | | | Made --default-key work for gpgsm Add --default-key and --encrypt-to to gpgconf.
* Implemented the --gen-key command as we can't use the gpgsm-gencert.sh under ↵Werner Koch2007-06-211-2/+3
| | | | Windows.
* A whole bunch of changes to allow building for Windows.Werner Koch2007-06-141-0/+9
| | | | | See the ChangeLogs for details.
* Use estream_asprintf instead of the GNU asprintf.Werner Koch2007-05-151-2/+8
|
* Allow setting of the passphrase encoding of pkcs#12 files.Werner Koch2007-03-201-5/+18
| | | | New option --p12-charset.
* Included LIBICONV in all Makefiles.Werner Koch2007-01-311-1/+2
| | | | | | | | | | g10/ * passphrase.c (passphrase_get): Set the cancel flag on all error from the agent. Fixes a bug reported by Tom Duerbusch. sm/ * gpgsm.c (main): Let --gen-key print a more informative error message.
* sm/Werner Koch2006-11-141-4/+10
| | | | | | | | | | | | | | * server.c (skip_options): Skip leading spaces. (has_option): Honor "--". (cmd_export): Add option --data to do an inline export. Skip all options. * certdump.c (gpgsm_fpr_and_name_for_status): New. * verify.c (gpgsm_verify): Use it to print correct status messages. doc/ * gpgsm.texi (GPGSM EXPORT): Document changes.
* .Werner Koch2006-10-231-0/+9
|
* Made buliding w/o curl workWerner Koch2006-09-261-1/+4
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-18 17:34:40 +0000