aboutsummaryrefslogtreecommitdiffstats
path: root/g10/passphrase.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Comment typo fixes.Werner Koch2014-11-191-1/+1
| | | | --
* gpg: Allow for positional parameters in the passphrase prompt.Werner Koch2014-08-261-23/+12
| | | | | | | | | * g10/passphrase.c (passphrase_get): Replace sprintf by xasprintf. -- Without that at least the French translation does not always work because it requires positional parameters. Windows for example does not support them as they are not defined by C99 but by POSIX.
* gpg: Auto-create revocation certificates.Werner Koch2014-06-301-1/+2
| | | | | | | | | | | | | * configure.ac (GNUPG_OPENPGP_REVOC_DIR): New config define. * g10/revoke.c (create_revocation): Add arg "leadin". (gen_standard_revoke): New. * g10/openfile.c (get_openpgp_revocdir): New. (open_outfile): Add MODE value 3. * g10/keyid.c (hexfingerprint): New. * g10/keygen.c (do_generate_keypair): Call gen_standard_revoke. -- GnuPG-bug-id: 1042
* gpg: Re-enable secret key deletion.Werner Koch2014-04-151-1/+1
| | | | | | | * g10/call-agent.c (agent_delete_key): New. * g10/keydb.h (FORMAT_KEYDESC_DELKEY): New. * g10/passphrase.c (gpg_format_keydesc): Support new format. * g10/delkey.c (do_delete_key): Add secret key deletion.
* gpg: Change pinentry prompt to talk about "secret key".Werner Koch2014-04-151-10/+30
| | | | | | | | | * g10/passphrase.c (gpg_format_keydesc): Add mode 2. Change strings. * g10/keydb.h (FORMAT_KEYDESC_NORMAL, FORMAT_KEYDESC_IMPORT) (FORMAT_KEYDESC_EXPORT): New. Use them for clarity. -- The use of the term "certificate" was more confusing than helpful.
* gpg: Remove cipher.h and put algo ids into a common file.Werner Koch2014-01-291-1/+0
| | | | | | | | | | | | | | | | | | * common/openpgpdefs.h (cipher_algo_t, pubkey_algo_t, digest_algo_t) (compress_algo_t): New. * agent/gpg-agent.c: Remove ../g10/cipher.h. Add openpgpdefs.h. * g10/cipher.h (DEK): Move to ... * g10/dek.h: new file. * g10/cipher.h (is_RSA, is_ELGAMAL, is_DSA) (PUBKEY_MAX_NPKEY, PUBKEY_MAX_NSKEY, PUBKEY_MAX_NSIG, PUBKEY_MAX_NENC) (PUBKEY_USAGE_SIG, PUBKEY_USAGE_ENC, PUBKEY_USAGE_CERT) (PUBKEY_USAGE_AUTH, PUBKEY_USAGE_NONE): Move to * g10/packet.h: here. * g10/cipher.h: Remove. Remove from all files. * g10/filter.h, g10/packet.h: Include dek.h. * g10/Makefile.am (common_source): Remove cipher.h. Add dek.h. Signed-off-by: Werner Koch <[email protected]>
* gpg: Fix a memory leak in batch key generationWerner Koch2013-02-211-7/+11
| | | | | | | | | | | | | | | | * g10/keygen.c (append_to_parameter): New. (proc_parameter_file): Use new func to extend the parameter list. * g10/passphrase.c (passphrase_to_dek_ext): Print a diagnostic of gcry_kdf_derive failed. * g10/keygen.c (proc_parameter_file): Print a diagnostic if passphrase_to_dek failed. -- Due to an improper way of using the linked list head, all memory for items allocated in proc_parameter_file was never released. If batched key generation with a passphrase and more than ~200 keys was used this exhausted the secure memory.
* gpg: Add pinentry-mode feature.Werner Koch2013-02-071-28/+42
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * g10/gpg.c: Include shareddefs.h. (main): Add option --pinentry-mode. * g10/options.h (struct opt): Add field pinentry_mode. * g10/passphrase.c: Include shareddefs.h. (have_static_passphrase): Take care of loopback pinentry_mode. (read_passphrase_from_fd): Ditto. (get_static_passphrase): New. (passphrase_to_dek_ext): Factor some code out to ... (emit_status_need_passphrase): new. * g10/call-agent.c (start_agent): Send the pinentry mode. (default_inq_cb): Take care of the PASSPHRASE inquiry. Return a proper error code. (agent_pksign): Add args keyid, mainkeyid and pubkey_algo. (agent_pkdecrypt): Ditto. * g10/pubkey-enc.c (get_it): Pass new args. * g10/sign.c (do_sign): Pass new args. * g10/call-agent.c (struct default_inq_parm_s): New. Change all similar structs to reference this one. Change all users and inquire callback to use this struct, instead of NULL or some undefined but not used structs. This change will help to eventually get rid of global variables. -- This new features allows to use gpg without a Pinentry. As a prerequisite the agent must be configured to allow the loopback pinentry mode (option --allow-loopback-pinentry). For example gpg2 --pinentry-mode=loopback FILE.gpg may be used to decrypt FILE.gpg while entering the passphrase on the tty. If batch is used, --passphrase et al. may be used, if --command-fd is used, the passphrase may be provided by another process. Note that there are no try-again prompts in case of a bad passphrase.
* Allow NULL for free_public_key.Werner Koch2011-09-201-6/+3
|
* Make use of gcry_kdf_derive.Werner Koch2011-03-101-77/+19
| | | | | | Factoring common code out is always a Good Thing. Also added a configure test to print an error if gcry_kdf_derive is missing in Libgcrypt.
* Sample ECC keys and message do now work.Werner Koch2011-02-021-52/+52
| | | | | | | | Import and export of secret keys does now work. Encryption has been fixed to be compatible with the sample messages. This version tests for new Libgcrypt function and thus needs to be build with a new Libgcrypt installed.
* Integrating http://code.google.com/p/gnupg-ecc/source/detail?r=15 .Andrey Jivsov2011-01-061-3/+3
| | | | | | | | | | The following works: gpg2 --gen-key (ECC) gpg2 --list-keys gpg2 --list-packets ~/.gnupg/pubring.gpg gpg2 --list-packets <private key from http://sites.google.com/site/brainhub/pgpecckeys> ECDH doesn't work yet as the code must be re-written to adjust for gpg-agent refactoring.
* Re-implemented GPG's --passwd command and improved it.Werner Koch2010-10-261-4/+4
|
* More agent support for gpg.Werner Koch2010-10-131-12/+2
|
* Removed more secret key related code.Werner Koch2010-09-061-5/+21
| | | | | | It builds fine and passes some of the tests but there are quite some features which don't work yet.
* Even less prompts for a new key now.Werner Koch2010-09-011-2/+0
|
* Provide a useful pinentry prompt.Werner Koch2010-04-271-0/+54
|
* Add dummu option --passwd for gpg.Werner Koch2010-01-081-3/+63
| | | | | Collected changes.
* 2009-08-20 Daiki Ueno <[email protected]>Werner Koch2009-08-201-8/+8
| | | | | | | | | * mainproc.c (proc_encrypted): Clear passphrase cached with S2K cache ID if decryption failed. * passphrase.c (passphrase_to_dek_ext): Set dek->s2k_cacheid. * gpgv.c (passphrase_clear_cache): New stub.
* Comment changes.Werner Koch2009-07-301-0/+4
| | | | | Changed --learn-card.
* Fixed a bunch of little bugs as reported by Fabian Keil.Werner Koch2009-06-241-1/+1
| | | | | Still one problem left; marked with a gcc #warning.
* Add full Camellia support.David Shaw2009-06-051-2/+2
| | | | | | | | | | | | | | | | | | * configure.ac: Remove Camellia restriction. * gpg.c (main), misc.c (openpgp_cipher_test_algo): Remove Camellia restriction. * misc.c (map_cipher_openpgp_to_gcry), main.h: Add macros for openpgp_cipher_open, openpgp_cipher_get_algo_keylen, and openpgp_cipher_get_algo_blklen to wrap around the corresponding gcry_* functions, but pass the algorithm number through map_cipher_openpgp_to_gcry. This is needed in case the gcry algorithm number doesn't match the OpenPGP number (c.f. Camellia). * encr-data.c, pubkey-enc.c, mainproc.c, cipher.c, encode.c, seskey.c, passphrase.c, seckey-cert.c: Use new openpgp_cipher_* macros here.
* New gpgsm server option no-encrypt-to.Werner Koch2009-05-181-17/+32
| | | | | | Add caching for symkey encryption. Minor cleanups.
* Made card key generate with backup key work for 2048 bit.Werner Koch2009-05-151-54/+21
| | | | | Improved card key generation prompts.
* Import/export of pkcs#12 now uses the gpg-agent directly.Werner Koch2009-04-011-2/+3
| | | | | Removed duplicated code (percent unescaping).
* Move password repetition from gpg to gpg-agent.Werner Koch2009-03-171-34/+6
|
* Add rmd160.c.Werner Koch2008-12-121-0/+2
| | | | | Emit anotehr error code status line.
* Marked all unused args on non-W32 platforms.Werner Koch2008-10-201-0/+4
|
* Fixed an email/DN bug.Werner Koch2008-03-131-4/+6
| | | | | Changed pinentry prompts.
* Factored utf8 switching code out to i18n.c.Werner Koch2007-10-191-28/+6
|
* Changed to GPLv3.Werner Koch2007-07-041-4/+2
| | | | | Removed intl/.
* First steps towards supporting W32.Werner Koch2007-06-061-0/+2
| | | | | | | This is mainly source code reorganization. Update gnulib. g10/ does currently not build.
* 2007-05-19 Marcus Brinkmann <[email protected]>Marcus Brinkmann2007-05-181-2/+2
| | | | | * passphrase.c (passphrase_get): Use PACKAGE_GT, not PACKAGE.
* agent/Marcus Brinkmann2007-05-181-3/+6
| | | | | | | | | | | | | | | | | | | | | | | | 2007-05-19 Marcus Brinkmann <[email protected]> * protect-tool.c (get_passphrase): Free ORIG_CODESET on error. g10/ 2007-05-19 Marcus Brinkmann <[email protected]> * passphrase.c (passphrase_get): Free ORIG_CODESET on error. sm/ 2007-05-18 Marcus Brinkmann <[email protected]> * qualified.c (gpgsm_qualified_consent, gpgsm_not_qualified_warning): Free ORIG_CODESET on error. * certdump.c (gpgsm_format_keydesc): Likewise. tools/ 2007-05-19 Marcus Brinkmann <[email protected]> * symcryptrun.c (confucius_get_pass): Free ORIG_CODESET on error.
* 2007-04-26 Marcus Brinkmann <[email protected]>Marcus Brinkmann2007-04-281-0/+2
| | | | | | * passphrase.c (passphrase_to_dek): Write missing passphrase status message in case of cancellation.
* Included LIBICONV in all Makefiles.Werner Koch2007-01-311-2/+13
| | | | | | | | | | g10/ * passphrase.c (passphrase_get): Set the cancel flag on all error from the agent. Fixes a bug reported by Tom Duerbusch. sm/ * gpgsm.c (main): Let --gen-key print a more informative error message.
* Fixes for CVE-2006-6235Werner Koch2006-12-061-5/+20
|
* * options.h, gpg.c (main), passphrase.c (passphrase_to_dek): AddDavid Shaw2006-12-031-11/+15
| | | | | | | --passphrase-repeat option to control how many times gpg will re-prompt for a passphrase to ensure the user has typed it correctly. Defaults to 1.
* * parse-packet.c (parse_symkeyenc): Show the unpacked as well as theDavid Shaw2006-10-131-2/+2
| | | | | | | | | packed s2k iteration count. * main.h, options.h, gpg.c (encode_s2k_iterations, main), passphrase.c (hash_passphrase): Add --s2k-count option to specify the number of s2k hash iterations.
* Re-enabled --passphrase-fdWerner Koch2006-10-041-15/+57
|
* Fixed agent access for gpg.Werner Koch2006-10-041-759/+289
|
* g10/ does build again.Werner Koch2006-05-231-2/+2
|
* Continued with merging.Werner Koch2006-04-191-16/+17
| | | | | Still does not build.
* Merged with gpg 1.4.3 code. Werner Koch2006-04-191-676/+509
| | | | | The gpg part does not yet build.
* 2004-08-18 Marcus Brinkmann <[email protected]>Marcus Brinkmann2004-08-181-3/+5
| | | | | * passphrase.c (agent_get_passphrase):
* * configure.ac: Require libgcrypt 1.1.94.Werner Koch2004-04-061-6/+6
| | | | | | | | | | Introduce PACKAGE_GT and set it to gnupg2. * gpg-agent.c (main): Use new libgcrypt thread library register scheme. * Makevars (DOMAIN): Init from PACKAGE_GT
* * call-agent.c (start_agent): Ignore an empty GPG_AGENT_INFO.Werner Koch2004-02-181-1/+1
| | | | | * passphrase.c (agent_open): Ditto.
* * card-util.c (print_name): Fixed bad format string usage.Werner Koch2003-12-171-12/+6
| | | | | | | | | | | | | | | | | | (print_isoname): Ditto. * trustdb.c (check_regexp): s/exp/expr/. * keyedit.c (trustsig_prompt): Removed a "> 255" term; it is always false due to the data type. * passphrase.c (agent_get_passphrase): Use xasprintf and avoid non-literal format strings. * tdbio.c (upd_hashtable, drop_from_hashtable, lookup_hashtable): Fixed log_error format string bugs. Kudos to the now working gcc-3.3 -Wformat-nonliteral and Florian Weimer's investigations in gnupg 1.2.3.
* Merged most of David Shaw's changes in 1.3 since 2003-06-03.Werner Koch2003-09-231-9/+13
|
* Key generation and signing using the OpenPGP card does rudimentary work.Werner Koch2003-06-271-1/+1
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-15 20:58:36 +0000