aboutsummaryrefslogtreecommitdiffstats
path: root/sm (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* * configure.ac: Changed tests for libusb to also suuport theWerner Koch2004-08-052-7/+13
| | | | | | | | | | | | | | | | | | stable version 0.1.x. * scdaemon.texi (Card applications): New section. * scdaemon.c (main): New option --disable-application. * app.c (is_app_allowed): New. (select_application): Use it to check for disabled applications. * ccid-driver.h (CCID_DRIVER_ERR_ABORTED): New. * ccid-driver.c (ccid_open_reader): Support the stable 0.1 version of libusb. (ccid_get_atr): Handle short messages. * apdu.c (my_rapdu_get_status): Implemented.
* * trustlist.c (read_list): Allow colons in the fingerprint.Werner Koch2004-07-222-1/+9
| | | | | | | | | | | | | (headerblurb): Rephrased. * gpg-agent.c (handle_connections): Increase the stack size ot 256k. * de.po: Updated. * scdaemon.c (main): Bumbed thread stack size up to 512k. * keylist.c (list_cert_raw): Print the keygrip.
* (gpgsm_validate_chain): The trust check didn'tWerner Koch2004-07-202-0/+8
| | | | | worked anymore, probably due to the changes at 2003-03-04. Fixed.
* * configure.ac: Require libksba 0.9.7.Werner Koch2004-06-069-65/+111
| | | | | | | | | | | | | | | | * certreqgen.c (get_parameter_uint, create_request): Create an extension for key usage when requested. * gpgsm.c (main): Install emergency_cleanup also as an atexit handler. * verify.c (gpgsm_verify): Removed the separate error code handling for KSBA. We use shared error codes anyway. * export.c (export_p12): Removed debugging code. * encrypt.c (gpgsm_encrypt): Put the session key in to secure memory.
* * gpg-agent.c (handle_signal): Reload the trustlist on SIGHUP.Werner Koch2004-05-112-20/+47
| | | | | | | | | | | | | | | | (start_connection_thread): Hack to simulate a ticker. * trustlist.c (agent_trustlist_housekeeping) (agent_reload_trustlist): New. Protected all global functions here with a simple counter which is sufficient for Pth. * fingerprint.c (gpgsm_get_key_algo_info): New. * sign.c (gpgsm_sign): Don't assume RSA in the status line. * keylist.c (list_cert_colon): Really print the algorithm and key length. (list_cert_raw, list_cert_std): Ditto. (list_cert_colon): Reorganized to be able to tell whether a root certificate is trusted.
* * sign.c (gpgsm_sign): Include the error source in the final errorWerner Koch2004-05-116-12/+106
| | | | | | | | | | | | | | | message. * decrypt.c (gpgsm_decrypt): Ditto. * fingerprint.c (gpgsm_get_key_algo_info): New. * sign.c (gpgsm_sign): Don't assume RSA in the status line. * keylist.c (list_cert_colon): Really print the algorithm and key length. (list_cert_raw, list_cert_std): Ditto. * gpgsm.h (opt): Add member CONFIG_FILENAME. * gpgsm.c (main): Use it here instead of the local var.
* * sysutils.c (disable_core_dumps): Only set the current limit.Werner Koch2004-05-113-1/+9
| | | | | | | | | | | | | | | (enable_core_dumps): New. * gpgsm.texi (Esoteric Options): Add --debug-allow-core-dump. * gpgsm.c: New option --debug-allow-core-dump. * gpgsm.h (opt): Add member CONFIG_FILENAME. * gpgsm.c (main): Use it here instead of the local var. * server.c (gpgsm_server): Print some additional information with the hello in verbose mode.
* Also print agent and dirmngr info.Werner Koch2004-05-111-6/+13
|
* * gpgsm.h (opt): Add member CONFIG_FILENAME.Werner Koch2004-05-114-10/+34
| | | | | | | * gpgsm.c (main): Use it here instead of the local var. * server.c (gpgsm_server): Print some additional information with the hello in verbose mode.
* * protect-tool.c: New option --enable-status-msg.Werner Koch2004-04-302-12/+62
| | | | | | | | | | | | (store_private_key): Print status messages for imported keys. (read_and_unprotect): Ditto for bad passphrase. * import.c (check_and_store): Do not update the stats for hidden imports of issuer certs. (popen_protect_tool): Request statusmessages from the protect-tool. (parse_p12): Detect status messages. Add new arg STATS and update them. (print_imported_summary): Include secret key stats.
* (check_and_store): Do not update the stats for hiddenWerner Koch2004-04-302-8/+20
| | | | | imports of issuer certs.
* typo fixWerner Koch2004-04-291-1/+1
|
* * gpgsm.c: New command --keydb-clear-some-cert-flags.Werner Koch2004-04-284-3/+118
| | | | | | | * keydb.c (keydb_clear_some_cert_flags): New. (keydb_update_keyblock, keydb_set_flags): Change error code CONFLICT to NOT_LOCKED.
* * scdaemon.c (main): Do the last change the usual way. This is soWerner Koch2004-04-262-2/+7
| | | | | | | | that we can easily test for versioned config files above. * gpgsm.c (main) <gpgconf>: Do not use /dev/null as default config filename.
* * call-agent.c (gpgsm_agent_pksign, gpgsm_agent_pkdecrypt)Werner Koch2004-04-2612-65/+90
| | | | | | | | | | | | | | (gpgsm_agent_genkey, gpgsm_agent_istrusted) (gpgsm_agent_marktrusted, gpgsm_agent_havekey) (gpgsm_agent_passwd): Add new arg CTRL and changed all callers. (start_agent): New arg CTRL. Send progress item when starting a new agent. * sign.c (gpgsm_get_default_cert, get_default_signer): New arg CTRL to be passed down to the agent function. * decrypt.c (prepare_decryption): Ditto. * certreqgen.c (proc_parameters, read_parameters): Ditto. * certcheck.c (gpgsm_create_cms_signature): Ditto.
* The keybox gets now compressed after 3 hours and ephemeralWerner Koch2004-04-262-0/+17
| | | | | stored certificates are deleted after about a day.
* (oidtranstbl): New. OIDs collected from several sources.Werner Koch2004-04-232-21/+309
| | | | | | | (print_name_raw, print_names_raw, list_cert_raw): New. (gpgsm_list_keys): Check the dump mode and pass it down as necessary.
* (main): New commands --dump-keys, --dump-external-keys,Werner Koch2004-04-224-13/+241
| | | | | --dump-secret-keys.
* * misc.c (setup_pinentry_env): New.Werner Koch2004-04-135-2/+46
| | | | | | * import.c (popen_protect_tool): Call it. * export.c (popen_protect_tool): Call it.
* (gpgsm_decrypt): Return GPG_ERR_NO_DATA if it is not aWerner Koch2004-04-082-0/+10
| | | | | encrypted message.
* * gpgsm.c: New option --force-crl-refresh.Werner Koch2004-04-075-2/+26
| | | | | * call-dirmngr.c (gpgsm_dirmngr_isvalid): Pass option to dirmngr.
* * configure.ac: Require libgcrypt 1.1.94.Werner Koch2004-04-063-14/+14
| | | | | | | | | | Introduce PACKAGE_GT and set it to gnupg2. * gpg-agent.c (main): Use new libgcrypt thread library register scheme. * Makevars (DOMAIN): Init from PACKAGE_GT
* Add STATUS_NEWSIGWerner Koch2004-04-062-0/+2
|
* * verify.c (gpgsm_verify): Print STATUS_NEWSIG for each signature.Werner Koch2004-04-058-22/+159
| | | | | | | | | | | | | * certchain.c (gpgsm_validate_chain) <gpgsm_cert_use_cer_p>: Do not just warn if a cert is not suitable; bail out immediately. * call-dirmngr.c (isvalid_status_cb): New. (unhexify_fpr): New. Taken from ../g10/call-agent.c (gpgsm_dirmngr_isvalid): Add new arg CTRL, changed caller to pass it thru. Detect need to check the respondert cert and do that. * certchain.c (gpgsm_validate_chain): Add new arg FLAGS. Changed all callers.
* (gpgsm_sign): Include a short list of capabilities.Werner Koch2004-03-242-0/+23
|
* * gpg-agent.c (main) <gpgconf>: Fixed default value quoting.Werner Koch2004-03-172-2/+6
| | | | | | * scdaemon.c (main) <gpgconf>: Fixed default value quoting. * gpgsm.c (main) <gpgconf>: Fixed default value quoting.
* (main): Implemented --gpgconf-list.Werner Koch2004-03-163-16/+49
|
* (list_cert_colon): Hack to set the expired flag.Werner Koch2004-03-154-10/+33
|
* still preparing for a releaseV1-9-6Werner Koch2004-03-061-2/+2
|
* Preparing for a releaseWerner Koch2004-03-066-167/+152
|
* (gpgsm_export): Make sure that we don't export moreWerner Koch2004-03-032-3/+16
| | | | | than one certificate.
* (create_duptable, destroy_duptable)Werner Koch2004-03-022-35/+149
| | | | | | (insert_duptable): New. (gpgsm_export): Avoid duplicates.
* (compare_certs): New.Werner Koch2004-02-262-4/+46
| | | | | | (gpgsm_validate_chain): Fixed infinite certificate checks after bad signatures.
* (list_cert_colon): Print the fingerprint as theWerner Koch2004-02-242-2/+13
| | | | | cert-id for root certificates.
* * keylist.c (list_internal_keys): Return error codes.Werner Koch2004-02-216-16/+56
| | | | | | | | | (list_external_keys, gpgsm_list_keys): Ditto. * server.c (do_listkeys): Ditto. * gpgsm.c (main): Display a key description for --passwd. * call-agent.c (gpgsm_agent_passwd): New arg DESC.
* * gpgsm.c (main): New option --debug-ignore-expiration.Werner Koch2004-02-206-16/+149
| | | | | | | * certchain.c (gpgsm_validate_chain): Use it here. * certlist.c (cert_usage_p): Apply extKeyUsage.
* * protect-tool.c: New options --have-cert and --prompt.Werner Koch2004-02-195-2/+388
| | | | | | | | | | | | | | | | | | | | (export_p12_file): Read a certificate from STDIN and pass it to p12_build. Detect a keygrip and construct the filename in that case. Unprotcet a key if needed. Print error messages for key formats we can't handle. (release_passphrase): New. (get_passphrase): New arg PROMPTNO. Return the allocated string. Changed all callers. * minip12.c: Revamped the build part. (p12_build): New args CERT and CERTLEN. * simple-pwquery.c (agent_open): Don't mangle INFOSTR. * export.c (export_p12, popen_protect_tool) (gpgsm_p12_export): New. * gpgsm.c (main): New command --export-secret-key-p12.
* * gpgsm.c (set_debug): Set the new --debug-level flags.Werner Koch2004-02-184-50/+143
| | | | | | | | | | (main): New option --gpgconf-list. (main): Do not setup -u and -r keys when not required. (main): Setup the used character set. * keydb.c (keydb_add_resource): Print a hint to start the gpg-agent.
* * gpgsm.c: Fixed value parsing for --with-validation.Werner Koch2004-02-174-4/+9
| | | | | | * call-agent.c (start_agent): Ignore an empty GPG_AGENT_INFO. * call-dirmngr.c (start_dirmngr): Likewise for DIRMNGR_INFO.
* * gpgsm.c: New option --with-md5-fingerprint.Werner Koch2004-02-1711-153/+315
| | | | | | | | | | | | | | | | | | | | | | | * keylist.c (list_cert_std): Print MD5 fpr. * gpgsm.c: New options --with-validation. * server.c (option_handler): New option "with-validation". * keylist.c (list_cert_std, list_internal_keys): New args CTRL and WITH_VALIDATION. Changed callers to set it. (list_external_cb, list_external_keys): Pass CTRL to the callback. (list_cert_colon): Add arg CTRL. Check validation if requested. * certchain.c (unknown_criticals, allowed_ca, check_cert_policy) (gpgsm_validate_chain): New args LISTMODE and FP. (do_list): New helper for info output. (find_up): New arg FIND_NEXT. (gpgsm_validate_chain): After a bad signature try again with other CA certificates. * import.c (print_imported_status): New arg NEW_CERT. Print additional STATUS_IMPORT_OK becuase that is what gpgme expects. (check_and_store): Always call above function after import. * server.c (get_status_string): Added STATUS_IMPORT_OK.
* * certcheck.c (gpgsm_create_cms_signature): Format a descriptionWerner Koch2004-02-137-13/+236
| | | | | | | | | | | | for use by the pinentry. * decrypt.c (gpgsm_decrypt): Ditto. Free HEXKEYGRIP. * certdump.c (format_name_cookie, format_name_writer) (gpgsm_format_name): New. (gpgsm_format_serial): New. (gpgsm_format_keydesc): New. * call-agent.c (gpgsm_agent_pksign): New arg DESC. (gpgsm_agent_pkdecrypt): Ditto.
* * encrypt.c (init_dek): Check for too weak algorithms.Werner Koch2004-02-138-68/+457
| | | | | | | | | | | | * import.c (parse_p12, popen_protect_tool): New. * base64.c (gpgsm_create_reader): New arg ALLOW_MULTI_PEM. Changed all callers. (base64_reader_cb): Handle it here. (gpgsm_reader_eof_seen): New. (base64_reader_cb): Set a flag for EOF. (simple_reader_cb): Ditto.
* * Makefile.am (AM_CPPFLAGS): Pass directory constants via -D; thisWerner Koch2004-02-123-6/+12
| | | | | will allow to override directory names at make time.
* Fixed a build bug (straw letter in sm/import.c) and updated the documentation.Werner Koch2004-02-041-1/+1
|
* * import.c (check_and_store): Import certificates even withWerner Koch2004-02-032-4/+17
| | | | | | missing issuer's cert. Fixed an "depending on the verbose setting" bug.
* * keybox.h (keybox_flag_t): New.Werner Koch2004-02-026-23/+209
| | | | | | | | | | | | | | | | | | | | | * keybox-search.c (get_flag_from_image, keybox_get_flags): New. (_keybox_get_flag_location): New. * certchain.c (gpgsm_validate_chain): Mark revoked certs in the keybox. * keylist.c (list_cert_colon): New arg VALIDITY; use it to print a revoked flag. (list_internal_keys): Retrieve validity flag. (list_external_cb): Pass 0 as validity flag. * keydb.c (keydb_get_flags, keydb_set_flags): New. (keydb_set_cert_flags): New. (lock_all): Return a proper error code. (keydb_lock): New. (keydb_delete): Don't lock but check that it has been locked. (keydb_update_keyblock): Ditto. * delete.c (delete_one): Take a lock.
* (check_cert_policy): Fixed read error checking.V1-9-4Werner Koch2004-01-302-6/+16
| | | | | | (check_cert_policy): With no critical policies issue only a warning if the policy file does not exists.
* * configure.ac: Require libksba 0.9.3 due to another bug fix there.Werner Koch2004-01-302-0/+12
| | | | | | | | | * sign.c (add_certificate_list): Decrement N for the first cert. * Makefile.am (sbin_SCRIPTS): New, to install addgnupghome. (EXTRA_DIST): Added rfc822parse.c rfc822parse.h gpgparsemail.c which might be useful for debugging.
* (parse_dn_part): Map common OIDs to human readableWerner Koch2004-01-292-9/+48
| | | | | | labels. Make sure that a value won't get truncated if it includes a Nul.
* (gpgsm_validate_chain): Changed the message printedWerner Koch2004-01-282-2/+7
| | | | | for an untrusted root certificate.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-20 13:02:54 +0000