aboutsummaryrefslogtreecommitdiffstats
path: root/sm/sign.c (unfollow)
Commit message (Collapse)AuthorFilesLines
2007-12-13Allow verification of some broken S-TRUST generated signatures.Werner Koch1-2/+2
2007-08-10Implemented the chain model for X.509 validation.Werner Koch1-1/+1
2007-07-17Typo fixes.Werner Koch1-5/+5
Made --default-key work for gpgsm Add --default-key and --encrypt-to to gpgconf.
2007-07-04Changed to GPLv3.Werner Koch1-4/+2
Removed intl/.
2007-03-19Allow export to work on systems without funopen/fopencookie.Werner Koch1-1/+1
2006-10-17Fixed aegypten bug 372Werner Koch1-11/+14
2006-09-06The big Assuan error code removal.Werner Koch1-4/+4
2006-06-20Updated FSF's address.Werner Koch1-1/+2
2005-11-23Print a note that the software has not been approved for qualified signatures.Werner Koch1-6/+6
2005-11-13Added qualified signature features.Werner Koch1-0/+33
2005-07-27Removed directories which are only used by the 1.9 branchWerner Koch1-621/+0
2005-06-16gcc-4 defaults forced me to edit many many files to get rid of theWerner Koch1-1/+1
char * vs. unsigned char * warnings. The GNU coding standards used to say that these mismatches are okay and better than a bunch of casts. Obviously this has changed now.
2004-06-06* configure.ac: Require libksba 0.9.7.Werner Koch1-2/+2
* certreqgen.c (get_parameter_uint, create_request): Create an extension for key usage when requested. * gpgsm.c (main): Install emergency_cleanup also as an atexit handler. * verify.c (gpgsm_verify): Removed the separate error code handling for KSBA. We use shared error codes anyway. * export.c (export_p12): Removed debugging code. * encrypt.c (gpgsm_encrypt): Put the session key in to secure memory.
2004-05-11* sign.c (gpgsm_sign): Include the error source in the final errorWerner Koch1-7/+11
message. * decrypt.c (gpgsm_decrypt): Ditto. * fingerprint.c (gpgsm_get_key_algo_info): New. * sign.c (gpgsm_sign): Don't assume RSA in the status line. * keylist.c (list_cert_colon): Really print the algorithm and key length. (list_cert_raw, list_cert_std): Ditto. * gpgsm.h (opt): Add member CONFIG_FILENAME. * gpgsm.c (main): Use it here instead of the local var.
2004-04-26* call-agent.c (gpgsm_agent_pksign, gpgsm_agent_pkdecrypt)Werner Koch1-6/+7
(gpgsm_agent_genkey, gpgsm_agent_istrusted) (gpgsm_agent_marktrusted, gpgsm_agent_havekey) (gpgsm_agent_passwd): Add new arg CTRL and changed all callers. (start_agent): New arg CTRL. Send progress item when starting a new agent. * sign.c (gpgsm_get_default_cert, get_default_signer): New arg CTRL to be passed down to the agent function. * decrypt.c (prepare_decryption): Ditto. * certreqgen.c (proc_parameters, read_parameters): Ditto. * certcheck.c (gpgsm_create_cms_signature): Ditto.
2004-04-05* verify.c (gpgsm_verify): Print STATUS_NEWSIG for each signature.Werner Koch1-1/+1
* certchain.c (gpgsm_validate_chain) <gpgsm_cert_use_cer_p>: Do not just warn if a cert is not suitable; bail out immediately. * call-dirmngr.c (isvalid_status_cb): New. (unhexify_fpr): New. Taken from ../g10/call-agent.c (gpgsm_dirmngr_isvalid): Add new arg CTRL, changed caller to pass it thru. Detect need to check the respondert cert and do that. * certchain.c (gpgsm_validate_chain): Add new arg FLAGS. Changed all callers.
2004-03-24(gpgsm_sign): Include a short list of capabilities.Werner Koch1-0/+19
2004-02-17* gpgsm.c: New option --with-md5-fingerprint.Werner Koch1-1/+1
* keylist.c (list_cert_std): Print MD5 fpr. * gpgsm.c: New options --with-validation. * server.c (option_handler): New option "with-validation". * keylist.c (list_cert_std, list_internal_keys): New args CTRL and WITH_VALIDATION. Changed callers to set it. (list_external_cb, list_external_keys): Pass CTRL to the callback. (list_cert_colon): Add arg CTRL. Check validation if requested. * certchain.c (unknown_criticals, allowed_ca, check_cert_policy) (gpgsm_validate_chain): New args LISTMODE and FP. (do_list): New helper for info output. (find_up): New arg FIND_NEXT. (gpgsm_validate_chain): After a bad signature try again with other CA certificates. * import.c (print_imported_status): New arg NEW_CERT. Print additional STATUS_IMPORT_OK becuase that is what gpgme expects. (check_and_store): Always call above function after import. * server.c (get_status_string): Added STATUS_IMPORT_OK.
2004-01-30* configure.ac: Require libksba 0.9.3 due to another bug fix there.Werner Koch1-0/+8
* sign.c (add_certificate_list): Decrement N for the first cert. * Makefile.am (sbin_SCRIPTS): New, to install addgnupghome. (EXTRA_DIST): Added rfc822parse.c rfc822parse.h gpgparsemail.c which might be useful for debugging.
2004-01-16* sign.c (gpgsm_sign): Print an error message on all failures.Werner Koch1-0/+2
* decrypt.c (gpgsm_decrypt): Ditto.
2003-12-17Replaced deprecated type names.Werner Koch1-14/+14
* certdump.c (gpgsm_print_serial): Cleaned up cast use in strtoul. (gpgsm_dump_serial): Ditto. * decrypt.c (gpgsm_decrypt): Replaced ERR by RC.
2003-12-16* gpgsm.c (main): Set the prefixes for assuan logging.Werner Koch1-1/+12
* sign.c (gpgsm_sign): Add validation checks for the default certificate. * gpgsm.c: Add -k as alias for --list-keys and -K for --list-secret-keys.
2003-11-12Mainly changes to adjust for the changed KSBA API.Werner Koch1-28/+28
2003-10-31* verify.c (strtimestamp_r, gpgsm_verify):Werner Koch1-4/+4
* sign.c (gpgsm_sign): * keylist.c (print_time, list_cert_std, list_cert_colon): * certdump.c (gpgsm_print_time, gpgsm_dump_time, gpgsm_dump_cert): * certchain.c (gpgsm_validate_chain): Changed to use ksba_isotime_t.
2003-08-05This commit was manufactured by cvs2svn to create branchRepo Admin1-0/+621
'GNUPG-1-9-BRANCH'.
2003-06-27Key generation and signing using the OpenPGP card does rudimentary work.Werner Koch1-19/+17
2003-06-05A small step for GnuPG but a huge leap for error codes.Werner Koch1-3/+3
(Sorry, it does not build currently - I need to check it in to avoid duplicate work.)
2003-06-03Make use of libgpg-errorWerner Koch1-14/+15
2003-04-29* Makefile.am: Use libassuan. Don't override LDFLAGS anymore.Werner Koch1-2/+2
* server.c (register_commands): Adjust for new Assuan semantics.
2002-10-19This commit was manufactured by cvs2svn to create branchRepo Admin1-622/+0
'GNUPG-1-9-BRANCH'.
2002-08-09* gpgsm.c (emergency_cleanup): New.Werner Koch1-113/+132
(main): Initialize the signal handler. * sign.c (gpgsm_sign): Reset the hash context for subsequent signers and release it at the end.
2002-06-12* sign.c (hash_and_copy_data): New.Werner Koch1-11/+93
(gpgsm_sign): Implemented normal (non-detached) signatures. * gpgsm.c (main): Ditto. * certpath.c (gpgsm_validate_path): Special error handling for no policy match. * configure.ac (NEED_LIBKSBA_VERSION): We need 0.4.3 now.
2002-05-14sm/Werner Koch1-1/+1
* gpgsm.c: New option --faked-system-time * sign.c (gpgsm_sign): And use it here. * certpath.c (gpgsm_validate_path): Ditto. common/ * gettime.c: New. agent/ * cache.c (housekeeping, agent_put_cache): Use our time() wrapper. / * doc/: New * configure.ac, Makefile.am: Added doc/
2002-04-12* certlist.c (cert_usable_p): New.Werner Koch1-0/+4
(gpgsm_cert_use_sign_p,gpgsm_cert_use_encrypt_p): New. (gpgsm_cert_use_verify_p,gpgsm_cert_use_decrypt_p): New. (gpgsm_add_to_certlist): Check the key usage. * sign.c (gpgsm_sign): Ditto. * verify.c (gpgsm_verify): Print a message wehn an unsuitable certificate was used. * decrypt.c (gpgsm_decrypt): Ditto * keylist.c (print_capabilities): Determine values from the cert.
2002-03-05* gpgsm.c, gpgsm.h: Add local_user.Werner Koch1-5/+71
* sign.c (gpgsm_get_default_cert): New. (get_default_signer): Use the new function if local_user is not set otherwise used that value. * encrypt.c (get_default_recipient): Removed. (gpgsm_encrypt): Use gpgsm_get_default_cert. * verify.c (gpgsm_verify): Better error text for a bad signature found by comparing the hashs.
2002-02-25* server.c (option_handler): Allow to use -2 for "send all certsWerner Koch1-3/+15
except the root cert". * sign.c (add_certificate_list): Implement it here. * certpath.c (gpgsm_is_root_cert): New.
2002-02-012002-02-01 Marcus Brinkmann <[email protected]>Marcus Brinkmann1-4/+1
* sign.c (gpgsm_sign): Do not release certificate twice.
2002-01-25* gpgsm.c (main): Disable core dumps.Werner Koch1-5/+51
* sign.c (add_certificate_list): New. (gpgsm_sign): Add the certificates to the CMS object. * certpath.c (gpgsm_walk_cert_chain): New. * gpgsm.h (server_control_s): Add included_certs. * gpgsm.c: Add option --include-certs. (gpgsm_init_default_ctrl): New. (main): Call it. * server.c (gpgsm_server): Ditto. (option_handler): Support --include-certs.
2002-01-10* base64.c (gpgsm_create_writer): Allow to set the object nameWerner Koch1-0/+1
* server.c (cmd_genkey): New. * certreqgen.c: New. The parameter handling code has been taken from gnupg/g10/keygen.c version 1.0.6. * call-agent.c (gpgsm_agent_genkey): New.
2001-12-15* decrypt.c (gpgsm_decrypt): Write STATUS_DECRYPTION_*.Werner Koch1-5/+39
* sign.c (gpgsm_sign): Write a STATUS_SIG_CREATED.
2001-12-14* verify.c (gpgsm_verify): Add hash debug helpersWerner Koch1-0/+6
* sign.c (gpgsm_sign): Ditto. * base64.c (base64_reader_cb): Reset the linelen when we need to skip the line and adjusted test; I somehow forgot about DeMorgan. * server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify) (cmd_import): Close the FDs on success. (close_message_fd): New. (input_notify): Setting autodetect_encoding to 0 after initializing it to 0 is pretty pointless. Easy to fix.
2001-12-14* sign.c (get_default_signer): Use keydb_classify_name here.Werner Koch1-1/+9
2001-12-14Fixed test keyWerner Koch1-1/+1
2001-12-13Now that the DN encoding works more correct, we have to update theWerner Koch1-1/+1
default key.
2001-12-11Implemented encryption in server mode.Werner Koch1-2/+1
Allow to specify a recipient on the commandline There is still a default hardwired recipient if none has been set.
2001-12-05Started with decryption stuffWerner Koch1-3/+6
2001-11-27--armor does now produce PEM format.Werner Koch1-0/+6
2001-11-27* base64.c: New. Changed all other functions to use this insteadWerner Koch1-32/+5
of direct creation of ksba_reader/writer. * gpgsm.c (main): Set ctrl.auto_encoding unless --no-armor is used. This way we can feed PEM encoded stuff to --verify.
2001-11-26* keydb.c (keydb_add_resource): Create keyboxWerner Koch1-4/+11
* keylist.c (gpgsm_list_keys): Fixed non-server keylisting. * server.c (rc_to_assuan_status): New. Use it for all commands.
2001-11-24Added new directory common to enable sharing of some code and errorWerner Koch1-3/+3
numbers between gpg, gpgsm and gpg-agent. Move some files and code to there.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-10 16:30:30 +0000