aboutsummaryrefslogtreecommitdiffstats
path: root/sm/sign.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Start support of TCOS 3 cards.Werner Koch2008-06-261-39/+74
| | | | | | | Support restriction attribute. Fix utf-8 printing problems. Use AES by default.
* Always search missing certifcates using a running Dirmngr's cache.Werner Koch2008-02-131-1/+1
|
* Allow verification of some broken S-TRUST generated signatures.Werner Koch2007-12-131-2/+2
|
* Implemented the chain model for X.509 validation.Werner Koch2007-08-101-1/+1
|
* Typo fixes.Werner Koch2007-07-171-5/+5
| | | | | | Made --default-key work for gpgsm Add --default-key and --encrypt-to to gpgconf.
* Changed to GPLv3.Werner Koch2007-07-041-4/+2
| | | | | Removed intl/.
* Allow export to work on systems without funopen/fopencookie.Werner Koch2007-03-191-1/+1
|
* Fixed aegypten bug 372Werner Koch2006-10-171-11/+14
|
* The big Assuan error code removal.Werner Koch2006-09-061-4/+4
|
* Updated FSF's address.Werner Koch2006-06-201-1/+2
|
* Print a note that the software has not been approved for qualified signatures.Werner Koch2005-11-231-6/+6
|
* Added qualified signature features.Werner Koch2005-11-131-0/+33
|
* gcc-4 defaults forced me to edit many many files to get rid of theWerner Koch2005-06-161-1/+1
| | | | | | | char * vs. unsigned char * warnings. The GNU coding standards used to say that these mismatches are okay and better than a bunch of casts. Obviously this has changed now.
* * configure.ac: Require libksba 0.9.7.Werner Koch2004-06-061-2/+2
| | | | | | | | | | | | | | | | * certreqgen.c (get_parameter_uint, create_request): Create an extension for key usage when requested. * gpgsm.c (main): Install emergency_cleanup also as an atexit handler. * verify.c (gpgsm_verify): Removed the separate error code handling for KSBA. We use shared error codes anyway. * export.c (export_p12): Removed debugging code. * encrypt.c (gpgsm_encrypt): Put the session key in to secure memory.
* * sign.c (gpgsm_sign): Include the error source in the final errorWerner Koch2004-05-111-7/+11
| | | | | | | | | | | | | | | message. * decrypt.c (gpgsm_decrypt): Ditto. * fingerprint.c (gpgsm_get_key_algo_info): New. * sign.c (gpgsm_sign): Don't assume RSA in the status line. * keylist.c (list_cert_colon): Really print the algorithm and key length. (list_cert_raw, list_cert_std): Ditto. * gpgsm.h (opt): Add member CONFIG_FILENAME. * gpgsm.c (main): Use it here instead of the local var.
* * call-agent.c (gpgsm_agent_pksign, gpgsm_agent_pkdecrypt)Werner Koch2004-04-261-6/+7
| | | | | | | | | | | | | | (gpgsm_agent_genkey, gpgsm_agent_istrusted) (gpgsm_agent_marktrusted, gpgsm_agent_havekey) (gpgsm_agent_passwd): Add new arg CTRL and changed all callers. (start_agent): New arg CTRL. Send progress item when starting a new agent. * sign.c (gpgsm_get_default_cert, get_default_signer): New arg CTRL to be passed down to the agent function. * decrypt.c (prepare_decryption): Ditto. * certreqgen.c (proc_parameters, read_parameters): Ditto. * certcheck.c (gpgsm_create_cms_signature): Ditto.
* * verify.c (gpgsm_verify): Print STATUS_NEWSIG for each signature.Werner Koch2004-04-051-1/+1
| | | | | | | | | | | | | * certchain.c (gpgsm_validate_chain) <gpgsm_cert_use_cer_p>: Do not just warn if a cert is not suitable; bail out immediately. * call-dirmngr.c (isvalid_status_cb): New. (unhexify_fpr): New. Taken from ../g10/call-agent.c (gpgsm_dirmngr_isvalid): Add new arg CTRL, changed caller to pass it thru. Detect need to check the respondert cert and do that. * certchain.c (gpgsm_validate_chain): Add new arg FLAGS. Changed all callers.
* (gpgsm_sign): Include a short list of capabilities.Werner Koch2004-03-241-0/+19
|
* * gpgsm.c: New option --with-md5-fingerprint.Werner Koch2004-02-171-1/+1
| | | | | | | | | | | | | | | | | | | | | | | * keylist.c (list_cert_std): Print MD5 fpr. * gpgsm.c: New options --with-validation. * server.c (option_handler): New option "with-validation". * keylist.c (list_cert_std, list_internal_keys): New args CTRL and WITH_VALIDATION. Changed callers to set it. (list_external_cb, list_external_keys): Pass CTRL to the callback. (list_cert_colon): Add arg CTRL. Check validation if requested. * certchain.c (unknown_criticals, allowed_ca, check_cert_policy) (gpgsm_validate_chain): New args LISTMODE and FP. (do_list): New helper for info output. (find_up): New arg FIND_NEXT. (gpgsm_validate_chain): After a bad signature try again with other CA certificates. * import.c (print_imported_status): New arg NEW_CERT. Print additional STATUS_IMPORT_OK becuase that is what gpgme expects. (check_and_store): Always call above function after import. * server.c (get_status_string): Added STATUS_IMPORT_OK.
* * configure.ac: Require libksba 0.9.3 due to another bug fix there.Werner Koch2004-01-301-0/+8
| | | | | | | | | * sign.c (add_certificate_list): Decrement N for the first cert. * Makefile.am (sbin_SCRIPTS): New, to install addgnupghome. (EXTRA_DIST): Added rfc822parse.c rfc822parse.h gpgparsemail.c which might be useful for debugging.
* * sign.c (gpgsm_sign): Print an error message on all failures.Werner Koch2004-01-161-0/+2
| | | | | * decrypt.c (gpgsm_decrypt): Ditto.
* Replaced deprecated type names.Werner Koch2003-12-171-14/+14
| | | | | | | | * certdump.c (gpgsm_print_serial): Cleaned up cast use in strtoul. (gpgsm_dump_serial): Ditto. * decrypt.c (gpgsm_decrypt): Replaced ERR by RC.
* * gpgsm.c (main): Set the prefixes for assuan logging.Werner Koch2003-12-161-1/+12
| | | | | | | | | * sign.c (gpgsm_sign): Add validation checks for the default certificate. * gpgsm.c: Add -k as alias for --list-keys and -K for --list-secret-keys.
* Mainly changes to adjust for the changed KSBA API.Werner Koch2003-11-121-28/+28
|
* * verify.c (strtimestamp_r, gpgsm_verify):Werner Koch2003-10-311-4/+4
| | | | | | | | | | | * sign.c (gpgsm_sign): * keylist.c (print_time, list_cert_std, list_cert_colon): * certdump.c (gpgsm_print_time, gpgsm_dump_time, gpgsm_dump_cert): * certchain.c (gpgsm_validate_chain): Changed to use ksba_isotime_t.
* This commit was manufactured by cvs2svn to create branchRepo Admin2003-08-051-0/+621
| | | | 'GNUPG-1-9-BRANCH'.
* This commit was manufactured by cvs2svn to create branchRepo Admin2002-10-191-622/+0
| | | | 'GNUPG-1-9-BRANCH'.
* * gpgsm.c (emergency_cleanup): New.Werner Koch2002-08-091-113/+132
| | | | | | | | (main): Initialize the signal handler. * sign.c (gpgsm_sign): Reset the hash context for subsequent signers and release it at the end.
* * sign.c (hash_and_copy_data): New.Werner Koch2002-06-121-11/+93
| | | | | | | | | | | (gpgsm_sign): Implemented normal (non-detached) signatures. * gpgsm.c (main): Ditto. * certpath.c (gpgsm_validate_path): Special error handling for no policy match. * configure.ac (NEED_LIBKSBA_VERSION): We need 0.4.3 now.
* sm/Werner Koch2002-05-141-1/+1
| | | | | | | | | | | | | | * gpgsm.c: New option --faked-system-time * sign.c (gpgsm_sign): And use it here. * certpath.c (gpgsm_validate_path): Ditto. common/ * gettime.c: New. agent/ * cache.c (housekeeping, agent_put_cache): Use our time() wrapper. / * doc/: New * configure.ac, Makefile.am: Added doc/
* * certlist.c (cert_usable_p): New.Werner Koch2002-04-121-0/+4
| | | | | | | | | | | | (gpgsm_cert_use_sign_p,gpgsm_cert_use_encrypt_p): New. (gpgsm_cert_use_verify_p,gpgsm_cert_use_decrypt_p): New. (gpgsm_add_to_certlist): Check the key usage. * sign.c (gpgsm_sign): Ditto. * verify.c (gpgsm_verify): Print a message wehn an unsuitable certificate was used. * decrypt.c (gpgsm_decrypt): Ditto * keylist.c (print_capabilities): Determine values from the cert.
* * gpgsm.c, gpgsm.h: Add local_user.Werner Koch2002-03-051-5/+71
| | | | | | | | | | | * sign.c (gpgsm_get_default_cert): New. (get_default_signer): Use the new function if local_user is not set otherwise used that value. * encrypt.c (get_default_recipient): Removed. (gpgsm_encrypt): Use gpgsm_get_default_cert. * verify.c (gpgsm_verify): Better error text for a bad signature found by comparing the hashs.
* * server.c (option_handler): Allow to use -2 for "send all certsWerner Koch2002-02-251-3/+15
| | | | | | | except the root cert". * sign.c (add_certificate_list): Implement it here. * certpath.c (gpgsm_is_root_cert): New.
* 2002-02-01 Marcus Brinkmann <[email protected]>Marcus Brinkmann2002-02-011-4/+1
| | | | | * sign.c (gpgsm_sign): Do not release certificate twice.
* * gpgsm.c (main): Disable core dumps.Werner Koch2002-01-251-5/+51
| | | | | | | | | | | | | * sign.c (add_certificate_list): New. (gpgsm_sign): Add the certificates to the CMS object. * certpath.c (gpgsm_walk_cert_chain): New. * gpgsm.h (server_control_s): Add included_certs. * gpgsm.c: Add option --include-certs. (gpgsm_init_default_ctrl): New. (main): Call it. * server.c (gpgsm_server): Ditto. (option_handler): Support --include-certs.
* * base64.c (gpgsm_create_writer): Allow to set the object nameWerner Koch2002-01-101-0/+1
| | | | | | | | * server.c (cmd_genkey): New. * certreqgen.c: New. The parameter handling code has been taken from gnupg/g10/keygen.c version 1.0.6. * call-agent.c (gpgsm_agent_genkey): New.
* * decrypt.c (gpgsm_decrypt): Write STATUS_DECRYPTION_*.Werner Koch2001-12-151-5/+39
| | | | | * sign.c (gpgsm_sign): Write a STATUS_SIG_CREATED.
* * verify.c (gpgsm_verify): Add hash debug helpersWerner Koch2001-12-141-0/+6
| | | | | | | | | | | | | | * sign.c (gpgsm_sign): Ditto. * base64.c (base64_reader_cb): Reset the linelen when we need to skip the line and adjusted test; I somehow forgot about DeMorgan. * server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify) (cmd_import): Close the FDs on success. (close_message_fd): New. (input_notify): Setting autodetect_encoding to 0 after initializing it to 0 is pretty pointless. Easy to fix.
* * sign.c (get_default_signer): Use keydb_classify_name here.Werner Koch2001-12-141-1/+9
|
* Fixed test keyWerner Koch2001-12-141-1/+1
|
* Now that the DN encoding works more correct, we have to update theWerner Koch2001-12-131-1/+1
| | | | | default key.
* Implemented encryption in server mode.Werner Koch2001-12-111-2/+1
| | | | | | Allow to specify a recipient on the commandline There is still a default hardwired recipient if none has been set.
* Started with decryption stuffWerner Koch2001-12-051-3/+6
|
* --armor does now produce PEM format.Werner Koch2001-11-271-0/+6
|
* * base64.c: New. Changed all other functions to use this insteadWerner Koch2001-11-271-32/+5
| | | | | | | of direct creation of ksba_reader/writer. * gpgsm.c (main): Set ctrl.auto_encoding unless --no-armor is used. This way we can feed PEM encoded stuff to --verify.
* * keydb.c (keydb_add_resource): Create keyboxWerner Koch2001-11-261-4/+11
| | | | | | * keylist.c (gpgsm_list_keys): Fixed non-server keylisting. * server.c (rc_to_assuan_status): New. Use it for all commands.
* Added new directory common to enable sharing of some code and errorWerner Koch2001-11-241-3/+3
| | | | | | numbers between gpg, gpgsm and gpg-agent. Move some files and code to there.
* Signing does now work. There is no secret key management yet, so youWerner Koch2001-11-241-9/+12
| | | | | | should set GPGSM_FAKE_KEY=1 before you try to verify a signature created by gpgsm --sign or the SIGN server command.
* Just a Backup. We can now write out a basic signature which in turnWerner Koch2001-11-231-0/+356
exhibits a bug in --verify.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-08 23:04:27 +0000