mirror of
git://git.gnupg.org/gnupg.git
synced 2024-09-21 15:01:41 +02:00
103c1576b7
* scd/app-help.c (app_help_get_keygrip_string_pk): Add optional arg r_pkey and change all callers. (app_help_get_keygrip_string): Ditto. * scd/app-p15.c (struct cdf_object_s): Use bit flags (struct aodf_object_s): Ditto. Add field 'fid'. (struct prkdf_object_s): Ditto. Add fields keygrip, keyalgo, and keynbits. (parse_certid): Allow a keygrip instead of a certid aka keyref. (read_ef_aodf): Store the FID. (keygripstr_from_prkdf): Rename to ... (keygrip_from_prkdf): this. Remove arg r_gripstr and implement cache. Change callers to directly use the values from the object. Also store the algo and length of the key ion the object. (keyref_from_keyinfo): New. Factored out code. (do_sign): Support SHA-256 and >2048 bit RSA keys. (do_with_keygrip): New. (app_select_p15): Register new function. -- This has been tested with a D-Trust card featuring 3072 bit keys. Note that non-repudiation key for a qualified signature does not yet work because we do not yet support rsaPSS padding. Thus a gpgsm --learn shows a couple of Bad Signature errors for this key. Signed-off-by: Werner Koch <wk@gnupg.org> |
||
---|---|---|
.. | ||
apdu.c | ||
apdu.h | ||
app-common.h | ||
app-dinsig.c | ||
app-geldkarte.c | ||
app-help.c | ||
app-nks.c | ||
app-openpgp.c | ||
app-p15.c | ||
app-piv.c | ||
app-sc-hsm.c | ||
app.c | ||
atr.c | ||
atr.h | ||
ccid-driver.c | ||
ccid-driver.h | ||
ChangeLog-2011 | ||
command.c | ||
iso7816.c | ||
iso7816.h | ||
Makefile.am | ||
scdaemon-w32info.rc | ||
scdaemon.c | ||
scdaemon.h |