aboutsummaryrefslogtreecommitdiffstats
path: root/sm/verify.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* * verify.c (gpgsm_verify): Extend the STATUS_BADSIG line withWerner Koch2002-07-021-2/+10
| | | | | the fingerprint.
* * keydb.c (keydb_store_cert): Add optional ar EXISTED and changedWerner Koch2002-07-021-1/+1
| | | | | | | | | | | | all callers. * call-agent.c (learn_cb): Print info message only for real imports. * import.c (gpgsm_import): Moved duplicated code to ... (check_and_store): new function. Added magic to import the entire chain. Print status only for real imports and moved printing code to .. (print_imported_status): New.
* * certlist.c (gpgsm_add_to_certlist): Fixed locating of aWerner Koch2002-06-201-2/+9
| | | | | | | | | | | | | | | | | | | | | | | certificate with the required key usage. * gpgsm.c (main): Fixed a segv when using --outfile without an argument. * keylist.c (print_capabilities): Also check for non-repudiation and data encipherment. * certlist.c (cert_usage_p): Test for signing and encryption was swapped. Add a case for certification usage, handle non-repudiation and data encipherment. (gpgsm_cert_use_cert_p): New. (gpgsm_add_to_certlist): Added a CTRL argument and changed all callers to pass it. * certpath.c (gpgsm_validate_path): Use it here to print a status message. Added a CTRL argument and changed all callers to pass it. * decrypt.c (gpgsm_decrypt): Print a status message for wrong key usage. * verify.c (gpgsm_verify): Ditto. * keydb.c (classify_user_id): Allow a colon delimited fingerprint.
* * call-agent.c (learn_cb): Use log_info instead of log_error onWerner Koch2002-06-191-1/+1
| | | | | | | | | | | | successful import. * keydb.c (keydb_set_ephemeral): New. (keydb_store_cert): New are ephemeral, changed all callers. * keylist.c (list_external_cb): Store cert as ephemeral. * export.c (gpgsm_export): Kludge to export epehmeral certificates. * gpgsm.c (main): New command --list-external-keys.
* * sign.c (hash_and_copy_data): New.Werner Koch2002-06-121-6/+25
| | | | | | | | | | | (gpgsm_sign): Implemented normal (non-detached) signatures. * gpgsm.c (main): Ditto. * certpath.c (gpgsm_validate_path): Special error handling for no policy match. * configure.ac (NEED_LIBKSBA_VERSION): We need 0.4.3 now.
* * certpath.c (gpgsm_validate_path): Added EXPTIME arg and changedWerner Koch2002-05-031-26/+41
| | | | | | | all callers. * verify.c (gpgsm_verify): Tweaked usage of log_debug and log_error. Return EXPSIG status and add expiretime to VALIDSIG.
* * certlist.c (cert_usable_p): New.Werner Koch2002-04-121-0/+1
| | | | | | | | | | | | (gpgsm_cert_use_sign_p,gpgsm_cert_use_encrypt_p): New. (gpgsm_cert_use_verify_p,gpgsm_cert_use_decrypt_p): New. (gpgsm_add_to_certlist): Check the key usage. * sign.c (gpgsm_sign): Ditto. * verify.c (gpgsm_verify): Print a message wehn an unsuitable certificate was used. * decrypt.c (gpgsm_decrypt): Ditto * keylist.c (print_capabilities): Determine values from the cert.
* * verify.c (gpgsm_verify): Detect certs-only message.Werner Koch2002-03-121-6/+11
|
* * gpgsm.c, gpgsm.h: Add local_user.Werner Koch2002-03-051-4/+2
| | | | | | | | | | | * sign.c (gpgsm_get_default_cert): New. (get_default_signer): Use the new function if local_user is not set otherwise used that value. * encrypt.c (get_default_recipient): Removed. (gpgsm_encrypt): Use gpgsm_get_default_cert. * verify.c (gpgsm_verify): Better error text for a bad signature found by comparing the hashs.
* * certlist.c (gpgsm_add_to_certlist): Check that the specifiedWerner Koch2002-02-071-1/+1
| | | | | | | | | | | | | | | | name identifies a certificate unambiguously. (gpgsm_find_cert): Ditto. * server.c (cmd_listkeys): Check that the data stream is available. (cmd_listsecretkeys): Ditto. (has_option): New. (cmd_sign): Fix ambiguousity in option recognition. * gpgsm.c (main): Enable --logger-fd. * encrypt.c (gpgsm_encrypt): Increased buffer size for better performance. * call-agent.c (gpgsm_agent_pksign): Check the S-Exp received from the agent. * keylist.c (list_cert_colon): Filter out control characters.
* * import.c (gpgsm_import): Just do a basic cert check beforeWerner Koch2002-01-151-30/+5
| | | | | | | | | | | | | | | | storing it. * certpath.c (gpgsm_basic_cert_check): New. * keydb.c (keydb_store_cert): New. * import.c (store_cert): Removed and change all caller to use the new function. * verify.c (store_cert): Ditto. * certlist.c (gpgsm_add_to_certlist): Validate the path * certpath.c (gpgsm_validate_path): Check the trust list. * call-agent.c (gpgsm_agent_istrusted): New.
* * verify.c (gpgsm_verify): Implemented non-detached signatureWerner Koch2001-12-201-12/+37
| | | | | | | verification. Add OUT_FP arg, initialize a writer and changed all callers. * server.c (cmd_verify): Pass an out_fp if one has been set.
* * base64.c (base64_reader_cb): Try to detect an S/MIME body part.Werner Koch2001-12-201-46/+3
| | | | | | | | | | | | | | * certdump.c (print_sexp): Renamed to gpgsm_dump_serial, made global. (print_time): Renamed to gpgsm_dump_time, made global. (gpgsm_dump_serial): Take a real S-Expression as argument and print the first item. * keylist.c (list_cert_colon): Ditto. * keydb.c (keydb_search_issuer_sn): Ditto. * decrypt.c (print_integer_sexp): Removed and made callers use gpgsm_dump_serial. * verify.c (print_time): Removed, made callers use gpgsm_dump_time.
* Changes to be used with the new libksba interface.Werner Koch2001-12-181-7/+14
| | | | | libgcrypt-1.1.5 is required (cvs or tarball)
* * verify.c (gpgsm_verify): Add hash debug helpersWerner Koch2001-12-141-0/+5
| | | | | | | | | | | | | | * sign.c (gpgsm_sign): Ditto. * base64.c (base64_reader_cb): Reset the linelen when we need to skip the line and adjusted test; I somehow forgot about DeMorgan. * server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify) (cmd_import): Close the FDs on success. (close_message_fd): New. (input_notify): Setting autodetect_encoding to 0 after initializing it to 0 is pretty pointless. Easy to fix.
* Implemented encryption in server mode.Werner Koch2001-12-111-1/+1
| | | | | | Allow to specify a recipient on the commandline There is still a default hardwired recipient if none has been set.
* --encrypt does now work for a hardwired key.Werner Koch2001-12-101-1/+1
|
* * base64.c: New. Changed all other functions to use this insteadWerner Koch2001-11-271-66/+16
| | | | | | | of direct creation of ksba_reader/writer. * gpgsm.c (main): Set ctrl.auto_encoding unless --no-armor is used. This way we can feed PEM encoded stuff to --verify.
* * keydb.c (keydb_add_resource): Create keyboxWerner Koch2001-11-261-0/+34
| | | | | | * keylist.c (gpgsm_list_keys): Fixed non-server keylisting. * server.c (rc_to_assuan_status): New. Use it for all commands.
* The agent does now work and read the secret keys from the directoryWerner Koch2001-11-251-1/+0
| | | | | | ~/.gnupg-test/private-keys-v1.d/<keygrip-as-20-byte-hex-number>. I will post a sample key to gpa-dev.
* Added new directory common to enable sharing of some code and errorWerner Koch2001-11-241-12/+12
| | | | | | numbers between gpg, gpgsm and gpg-agent. Move some files and code to there.
* Signing does now work. There is no secret key management yet, so youWerner Koch2001-11-241-2/+6
| | | | | | should set GPGSM_FAKE_KEY=1 before you try to verify a signature created by gpgsm --sign or the SIGN server command.
* Just a Backup. We can now write out a basic signature which in turnWerner Koch2001-11-231-1/+1
| | | | | exhibits a bug in --verify.
* Map Libksba's OIDs to Libgcrypt digest algo numbers.Werner Koch2001-11-201-11/+17
| | | | | The latest Libgcrypt CVS version is needed.
* Write status output, make verify work in server mode.Werner Koch2001-11-191-2/+50
|
* gpgsm --verify does now work like gpg including theWerner Koch2001-11-191-8/+52
| | | | | --enable-special-filenames option.
* Base code for gpgsm --verify does workWerner Koch2001-11-161-0/+374
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-09 15:38:37 +0000