Werner Koch
8a12a2000d
gpgsm: Add new validation model "steed".
...
* sm/gpgsm.h (VALIDATE_FLAG_STEED): New.
* sm/gpgsm.c (gpgsm_parse_validation_model): Add model "steed".
* sm/server.c (option_handler): Allow validation model "steed".
* sm/certlist.c (gpgsm_cert_has_well_known_private_key): New.
* sm/certchain.c (do_validate_chain): Handle the
well-known-private-key attribute. Support the "steed" model.
(gpgsm_validate_chain): Ditto.
* sm/verify.c (gpgsm_verify): Return "steed" in the trust status line.
* sm/keylist.c (list_cert_colon): Print the new 'w' flag.
--
This is the first part of changes to implement the STEED proposal as
described at http://g10code.com/steed.html . The idea for X.509 is
not to use plain self-signed certificates but certificates signed by a
dummy CA (i.e. one for which the private key is known). Having a
single CA as an indication for the use of STEED might help other X.509
implementations to implement STEED.
2011-12-07 16:15:15 +01:00
Werner Koch
5cdad8ff00
gpgsm: Allow arbitrary extensions for cert creation.
...
* sm/certreqgen.c (pSUBJKEYID, pEXTENSION): New.
(read_parameters): Add new keywords.
(proc_parameters): Check values of new keywords.
(create_request): Add SubjectKeyId and extensions.
(parse_parameter_usage): Support "cert" and the encrypt alias "encr".
2011-12-06 19:57:27 +01:00
Werner Koch
d4fa82e688
Typo fix and remove of some colloquial terms
2011-10-18 16:47:12 +02:00
Werner Koch
5319aa952f
Put more options into the options index
...
Also removed the single letter options from the index.
2011-10-12 17:36:56 +02:00
Werner Koch
663768f9af
Minor doc updates v2.0 vs. v2.1)
2011-08-08 10:17:33 +02:00
Bernhard Reiter
f194773540
doc/gpgsm.texi com-certs.pem mini-fix
...
[[PGP Signed Part:Undecided]]
[1. text/plain]
Example path for com-certs.pem corrected.
[2. text/x-diff; doc.diff]
2011-06-27 16:12:35 +02:00
Werner Koch
00f8b68505
Move parameter file description to the manual.
2011-03-01 17:08:49 +01:00
Werner Koch
a78335c9ce
Add new option --with-keygrip
2010-10-08 11:11:08 +00:00
Werner Koch
bfbd80feb9
Exporting secret keys via gpg-agent is now basically supported.
...
A couple of forward ported changes.
Doc updates.
2010-10-01 20:33:53 +00:00
Werner Koch
af935bd410
Implement --faked-systrem-time for gpg.
...
Typo and comment fixes.
2009-12-17 17:25:26 +00:00
Werner Koch
a51675fabe
Add option --cert-extension.
2009-12-10 13:00:30 +00:00
Werner Koch
cb5491bfaf
support numeric debug levels.
2009-12-03 18:04:40 +00:00
Werner Koch
97be197d31
[g13] Add RECIPEINT and CREATE command.
...
[sm] Chnage --include-certs default
2009-10-19 09:18:46 +00:00
Werner Koch
506aee32fd
Typo fixes. Fixes bug#1093
2009-07-22 13:33:46 +00:00
Werner Koch
02e05e28e7
Give hints on files to backup.
2009-07-22 10:24:46 +00:00
Werner Koch
2193992559
Impleemned gpgsm's IMPORT --re-import feature.
...
Typo fix.
2009-07-07 16:52:12 +00:00
Werner Koch
f6f5430e50
Reworked passing of envars to Pinentry.
2009-07-07 10:02:41 +00:00
Werner Koch
1925cb37f9
Alow batch ode for gpgsm --gen-key.
...
Allow CSR generation using an existing key with gpgsm.
2009-07-01 18:30:33 +00:00
Werner Koch
990585ad7d
Signing using Netkey 3 cards does now work.
2009-03-26 19:27:04 +00:00
Werner Koch
a9c317a95c
New gpg-agent command to list key information.
...
Gpgsm does now print the S/N of cards.
Consider ephemeral keys during listing an export.
2009-03-06 17:31:27 +00:00
Werner Koch
53f1c11adf
Small doc fixes.
2008-12-12 14:04:22 +00:00
Werner Koch
d0ca953014
SCD changes for PC/SC under W32.
2008-10-14 18:18:21 +00:00
Werner Koch
969dfd9890
Explain how to delete a secret X.509 key.
2008-10-13 09:29:20 +00:00
Werner Koch
201a348565
Fix !EROFS bug.
...
Doc updates
2008-08-01 10:51:11 +00:00
Werner Koch
f13c5a48fc
Improve certificate chain construction.
...
Extend PKITS framework
2008-02-19 10:33:35 +00:00
Werner Koch
0819c1e8ca
Always search missing certifcates using a running Dirmngr's cache.
2008-02-13 16:47:14 +00:00
Werner Koch
3d39e45a01
Typo and grammer fixes by Justin Pryzby.
2008-01-28 08:03:08 +00:00
Werner Koch
9d66580cff
Allow verification of some broken S-TRUST generated signatures.
2007-12-13 15:45:40 +00:00
Werner Koch
e2aefc427e
Add support for help stuff to audit.c
2007-12-06 19:02:42 +00:00
Werner Koch
c1270f06fe
Document --auto-issuer-key-retrieve.
2007-11-19 16:32:05 +00:00
Werner Koch
d20d11a0ee
Documentaion updates.
...
Support doe Dirmngr under W32.
Fixed a yat2m bug.
2007-08-14 16:50:27 +00:00
Werner Koch
74d344a521
Implemented the chain model for X.509 validation.
2007-08-10 16:52:05 +00:00
Werner Koch
11573b09c4
Typo fixes.
...
Made --default-key work for gpgsm
Add --default-key and --encrypt-to to gpgconf.
2007-07-17 18:11:24 +00:00
Werner Koch
0b66f30d66
Implemented the --gen-key command as we can't use the gpgsm-gencert.sh under Windows.
2007-06-21 18:44:48 +00:00
Werner Koch
0cfbfd6186
A whole bunch of changes to allow building for Windows.
...
See the ChangeLogs for details.
2007-06-14 17:05:07 +00:00
Werner Koch
5f3bca9682
Use estream_asprintf instead of the GNU asprintf.
2007-05-15 16:10:48 +00:00
Werner Koch
fd628ffda1
Allow setting of the passphrase encoding of pkcs#12 files.
...
New option --p12-charset.
2007-03-20 10:00:55 +00:00
Werner Koch
b861561e47
Included LIBICONV in all Makefiles.
...
g10/
* passphrase.c (passphrase_get): Set the cancel flag on all error
from the agent. Fixes a bug reported by Tom Duerbusch.
sm/
* gpgsm.c (main): Let --gen-key print a more informative error
message.
2007-01-31 14:24:41 +00:00
Werner Koch
650293c4f6
sm/
...
* server.c (skip_options): Skip leading spaces.
(has_option): Honor "--".
(cmd_export): Add option --data to do an inline export. Skip all
options.
* certdump.c (gpgsm_fpr_and_name_for_status): New.
* verify.c (gpgsm_verify): Use it to print correct status messages.
doc/
* gpgsm.texi (GPGSM EXPORT): Document changes.
2006-11-14 10:23:21 +00:00
Werner Koch
7b8ea82ab6
.
2006-10-23 14:02:13 +00:00
Werner Koch
13e4f5c95c
Made buliding w/o curl work
2006-09-26 14:35:24 +00:00
Werner Koch
43ab905823
Various updates
2006-09-21 13:30:45 +00:00
Werner Koch
f132e66f49
Ready for another release
2006-09-18 13:23:18 +00:00
Werner Koch
9577dd45ab
Various fixes and new features.
...
Enhanced gpg-connect-agent.
2006-09-13 15:57:30 +00:00
Werner Koch
90af581b08
doc fixes
2006-09-08 17:02:06 +00:00
Werner Koch
2eb232778a
Some fixes as needed by dirmngr man pages
2006-09-04 14:53:20 +00:00
Werner Koch
d8602648b8
See ChangeLogs
2006-08-29 16:18:30 +00:00
Werner Koch
368170215f
More man pages. Added include files for 2 common paragraphs.
2006-08-18 13:05:39 +00:00
Werner Koch
e5be94ce45
include support and texi fixes
2006-08-17 19:58:28 +00:00
Werner Koch
6e3e2513d8
More man pages.
2006-08-17 18:01:25 +00:00