aboutsummaryrefslogtreecommitdiffstats
path: root/sm/gpgsm.c
diff options
context:
space:
mode:
authorWerner Koch <[email protected]>2004-06-06 13:00:59 +0000
committerWerner Koch <[email protected]>2004-06-06 13:00:59 +0000
commitf289f433b6d7f0b5ac76e03853ce628f23e3cdc2 (patch)
tree4170844bd2e7c143fab1bf498d9136a0fe021a1f /sm/gpgsm.c
parent* util.h (xtrycalloc_secure,xtrymalloc_secure): New. (diff)
downloadgnupg-f289f433b6d7f0b5ac76e03853ce628f23e3cdc2.tar.gz
gnupg-f289f433b6d7f0b5ac76e03853ce628f23e3cdc2.zip
* configure.ac: Require libksba 0.9.7.
* certreqgen.c (get_parameter_uint, create_request): Create an extension for key usage when requested. * gpgsm.c (main): Install emergency_cleanup also as an atexit handler. * verify.c (gpgsm_verify): Removed the separate error code handling for KSBA. We use shared error codes anyway. * export.c (export_p12): Removed debugging code. * encrypt.c (gpgsm_encrypt): Put the session key in to secure memory.
Diffstat (limited to 'sm/gpgsm.c')
-rw-r--r--sm/gpgsm.c16
1 files changed, 11 insertions, 5 deletions
diff --git a/sm/gpgsm.c b/sm/gpgsm.c
index e1751a7aa..bf053b7a5 100644
--- a/sm/gpgsm.c
+++ b/sm/gpgsm.c
@@ -1197,11 +1197,17 @@ main ( int argc, char **argv)
set_debug (debug_level);
- /* FIXME: should set filenames of libgcrypt explicitly
- * gpg_opt_homedir = opt.homedir; */
+ /* Although we alwasy use gpgsm_exit, we better install a regualr
+ exit handler so that at least the secure memory gets wiped
+ out. */
+ if (atexit (emergency_cleanup))
+ {
+ log_error ("atexit failed\n");
+ gpgsm_exit (2);
+ }
- /* must do this after dropping setuid, because the mapping functions
- may try to load an module and we may have disabled an algorithm */
+ /* Must do this after dropping setuid, because the mapping functions
+ may try to load an module and we may have disabled an algorithm. */
if ( !gcry_cipher_map_name (opt.def_cipher_algoid)
|| !gcry_cipher_mode_from_oid (opt.def_cipher_algoid))
log_error (_("selected cipher algorithm is invalid\n"));
@@ -1218,7 +1224,7 @@ main ( int argc, char **argv)
if (log_get_errorcount(0))
gpgsm_exit(2);
- /* set the random seed file */
+ /* Set the random seed file. */
if (use_random_seed) {
char *p = make_filename (opt.homedir, "random_seed", NULL);
gcry_control (GCRYCTL_SET_RANDOM_SEED_FILE, p);
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-08 18:58:38 +0000