diff options
| author | Werner Koch <[email protected]> | 2011-03-01 13:42:56 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2011-03-01 13:42:56 +0000 |
| commit | 28c157b55cf6db6b6988def5c9512e388c512b10 (patch) | |
| tree | 53b86eee5a2f3cfc131f4df068477b32076aae88 /sm/keylist.c | |
| parent | Update some M4 files and AUTHORS. (diff) | |
| download | gnupg-28c157b55cf6db6b6988def5c9512e388c512b10.tar.gz gnupg-28c157b55cf6db6b6988def5c9512e388c512b10.zip | |
Support X.509 certificate creation.
Using "gpgsm --genkey" allows the creation of a self-signed
certificate via a new prompt.
Using "gpgsm --genkey --batch" should allow the creation of arbitrary
certificates controlled by a parameter file. An example parameter file
is
Key-Type: RSA
Key-Length: 1024
Key-Grip: 2C50DC6101C10C9C643E315FE3EADCCBC24F4BEA
Key-Usage: sign, encrypt
Serial: random
Name-DN: CN=some test key
Name-Email: [email protected]
Name-Email: [email protected]
Hash-Algo: SHA384
not-after: 2038-01-16 12:44
This creates a self-signed X.509 certificate using the key given by
the keygrip and using SHA-384 as hash algorithm. The keyword
signing-key can be used to sign the certificate with a different key.
See sm/certreggen.c for details.
Diffstat (limited to 'sm/keylist.c')
| -rw-r--r-- | sm/keylist.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/sm/keylist.c b/sm/keylist.c index 1d6ce6e89..fc903bab8 100644 --- a/sm/keylist.c +++ b/sm/keylist.c @@ -186,6 +186,7 @@ static struct /* GnuPG extensions */ { "1.3.6.1.4.1.11591.2.1.1", "pkaAddress" }, + { "1.3.6.1.4.1.11591.2.2.1", "standaloneCertificate" }, /* Extensions used by the Bundesnetzagentur. */ { "1.3.6.1.4.1.8301.3.5", "validityModel" }, |