1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-06-11 23:59:50 +02:00
gnupg/agent
Werner Koch e897e1e255
scd:piv: Implement import of private keys for Yubikeys.
* scd/app-piv.c (concat_tlv_list): Add arg 'secure' and adjust
 callers.
(writekey_rsa, writekey_ecc): New.
(do_writekey): New.
(do_writecert): Provide a better error message for an empty cert.
(app_select_piv): Register do_writekey.
* scd/iso7816.c (iso7816_send_apdu): New.
* scd/app-common.h (APP_WRITEKEY_FLAG_FORCE): New.
* agent/command.c (cmd_keytocard): Make the timestamp optional.
* tools/card-call-scd.c (inq_writekey_parms): Remove.
(scd_writekey): Rewrite.
* tools/gpg-card.c (cmd_writekey): New.
(enum cmdids): Add cmdWRITEKEY.
(dispatch_command, interactive_loop): Call cmd_writekey.
--

This has been tested with gpgsm and RSA keys.  For ECC keys only
partly tested using the sample OpenPGP nistp256 and nistp384 keys
because gpgsm does not yet support ECC certificates and thus we can't
write the certificates to the cert object after a writekey.  Note that
they nevertheless show up in "gpgcard list" because gpg-card searches
for them in gpg and gpgsm.  However, this does not work completely.

Signed-off-by: Werner Koch <wk@gnupg.org>
2019-03-05 15:49:20 +01:00
..
agent.h agent: Minor change to the KEYTOCARD command. 2019-03-05 12:08:27 +01:00
all-tests.scm tests: Make it possible to run all tests using our infrastructure. 2017-05-11 18:12:37 +02:00
cache.c agent: New commands PUT_SECRET and GET_SECRET. 2018-07-02 21:36:19 +02:00
call-pinentry.c agent: Terminate pinentry process gracefully, by watching socket. 2019-02-19 14:36:50 +09:00
call-scd.c scd:piv: Implement import of private keys for Yubikeys. 2019-03-05 15:49:20 +01:00
ChangeLog-2011 Fix typos 2015-10-28 10:20:17 +01:00
command-ssh.c ssh: Simplify the curve name lookup. 2019-01-17 15:58:30 +01:00
command.c scd:piv: Implement import of private keys for Yubikeys. 2019-03-05 15:49:20 +01:00
cvt-openpgp.c Merge branch 'STABLE-BRANCH-2-2' into master 2018-03-27 08:48:00 +02:00
cvt-openpgp.h Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00
divert-scd.c agent: Minor change to the KEYTOCARD command. 2019-03-05 12:08:27 +01:00
findkey.c agent: Clear bogus pinentry cache, when it causes an error. 2019-01-28 12:58:13 +09:00
genkey.c agent: Make the request origin a part of the cache items. 2018-03-27 08:40:58 +02:00
gpg-agent-w32info.rc w32: Add icons and version information. 2013-05-07 21:35:48 +02:00
gpg-agent.c agent: Make the S2K calibration time runtime configurabe. 2018-12-11 18:12:51 +01:00
keyformat.txt all: fix more spelling errors 2018-10-25 16:53:05 -04:00
learncard.c all: fix spelling and typos 2018-10-24 15:56:18 -04:00
Makefile.am tests: Make it possible to run all tests using our infrastructure. 2017-05-11 18:12:37 +02:00
pkdecrypt.c Use the gpgrt log functions if possible. 2017-11-27 15:00:25 +01:00
pksign.c agent: PKSIGN should return signature in same format for card. 2019-02-27 10:37:26 +09:00
preset-passphrase.c Fix usage of ARGPARSE_OPTS. 2017-07-19 13:41:18 +09:00
protect-tool.c agent: Make the request origin a part of the cache items. 2018-03-27 08:40:58 +02:00
protect.c gpg: Move S2K encoding function to a shared file. 2019-01-26 23:10:38 +01:00
t-protect.c agent: Fix description of shadow format. 2017-12-08 09:19:50 +09:00
trans.c Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00
trustlist.c Spelling fixes in docs and comments. 2017-04-28 10:06:33 +09:00
w32main.c agent: Resolve conflict of util.h. 2017-03-07 19:22:48 +09:00
w32main.h Change all http://www.gnu.org in license notices to https:// 2016-11-05 12:02:19 +01:00