| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
| |
* sign.c (gpgsm_sign): Add validation checks for the default
certificate.
* gpgsm.c: Add -k as alias for --list-keys and -K for
--list-secret-keys.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
* sign.c (gpgsm_sign):
* keylist.c (print_time, list_cert_std, list_cert_colon):
* certdump.c (gpgsm_print_time, gpgsm_dump_time, gpgsm_dump_cert):
* certchain.c (gpgsm_validate_chain): Changed to use ksba_isotime_t.
|
| |
|
|
| |
'GNUPG-1-9-BRANCH'.
|
| |
|
|
| |
'GNUPG-1-9-BRANCH'.
|
| |
|
|
|
|
|
|
| |
(main): Initialize the signal handler.
* sign.c (gpgsm_sign): Reset the hash context for subsequent
signers and release it at the end.
|
| |
|
|
|
|
|
|
|
|
|
| |
(gpgsm_sign): Implemented normal (non-detached) signatures.
* gpgsm.c (main): Ditto.
* certpath.c (gpgsm_validate_path): Special error handling for
no policy match.
* configure.ac (NEED_LIBKSBA_VERSION): We need 0.4.3 now.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* gpgsm.c: New option --faked-system-time
* sign.c (gpgsm_sign): And use it here.
* certpath.c (gpgsm_validate_path): Ditto.
common/
* gettime.c: New.
agent/
* cache.c (housekeeping, agent_put_cache): Use our time() wrapper.
/
* doc/: New
* configure.ac, Makefile.am: Added doc/
|
| |
|
|
|
|
|
|
|
|
|
|
| |
(gpgsm_cert_use_sign_p,gpgsm_cert_use_encrypt_p): New.
(gpgsm_cert_use_verify_p,gpgsm_cert_use_decrypt_p): New.
(gpgsm_add_to_certlist): Check the key usage.
* sign.c (gpgsm_sign): Ditto.
* verify.c (gpgsm_verify): Print a message wehn an unsuitable
certificate was used.
* decrypt.c (gpgsm_decrypt): Ditto
* keylist.c (print_capabilities): Determine values from the cert.
|
| |
|
|
|
|
|
|
|
|
|
| |
* sign.c (gpgsm_get_default_cert): New.
(get_default_signer): Use the new function if local_user is not
set otherwise used that value.
* encrypt.c (get_default_recipient): Removed.
(gpgsm_encrypt): Use gpgsm_get_default_cert.
* verify.c (gpgsm_verify): Better error text for a bad signature
found by comparing the hashs.
|
| |
|
|
|
|
|
| |
except the root cert".
* sign.c (add_certificate_list): Implement it here.
* certpath.c (gpgsm_is_root_cert): New.
|
| |
|
|
|
| |
* sign.c (gpgsm_sign): Do not release certificate twice.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
* sign.c (add_certificate_list): New.
(gpgsm_sign): Add the certificates to the CMS object.
* certpath.c (gpgsm_walk_cert_chain): New.
* gpgsm.h (server_control_s): Add included_certs.
* gpgsm.c: Add option --include-certs.
(gpgsm_init_default_ctrl): New.
(main): Call it.
* server.c (gpgsm_server): Ditto.
(option_handler): Support --include-certs.
|
| |
|
|
|
|
|
|
| |
* server.c (cmd_genkey): New.
* certreqgen.c: New. The parameter handling code has been taken
from gnupg/g10/keygen.c version 1.0.6.
* call-agent.c (gpgsm_agent_genkey): New.
|
| |
|
|
|
| |
* sign.c (gpgsm_sign): Write a STATUS_SIG_CREATED.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* sign.c (gpgsm_sign): Ditto.
* base64.c (base64_reader_cb): Reset the linelen when we need to
skip the line and adjusted test; I somehow forgot about DeMorgan.
* server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify)
(cmd_import): Close the FDs on success.
(close_message_fd): New.
(input_notify): Setting autodetect_encoding to 0 after initializing
it to 0 is pretty pointless. Easy to fix.
|
| | |
|
| | |
|
| |
|
|
|
| |
default key.
|
| |
|
|
|
|
| |
Allow to specify a recipient on the commandline
There is still a default hardwired recipient if none has been set.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
of direct creation of ksba_reader/writer.
* gpgsm.c (main): Set ctrl.auto_encoding unless --no-armor is used.
This way we can feed PEM encoded stuff to --verify.
|
| |
|
|
|
|
| |
* keylist.c (gpgsm_list_keys): Fixed non-server keylisting.
* server.c (rc_to_assuan_status): New. Use it for all commands.
|
| |
|
|
|
|
| |
numbers between gpg, gpgsm and gpg-agent. Move some files and code to
there.
|
| |
|
|
|
|
| |
should set GPGSM_FAKE_KEY=1 before you try to verify a signature
created by gpgsm --sign or the SIGN server command.
|
|
|
exhibits a bug in --verify.
|
