No OneTemporary
Actions

Size

22 KB

Subscribers

None

View Options

	diff --git a/agent/ChangeLog b/agent/ChangeLog
	index e645142b9..1fa304777 100644
	--- a/agent/ChangeLog
	+++ b/agent/ChangeLog
	@@ -1,394 +1,400 @@
	+2002-09-03 Neal H. Walfield <neal@g10code.de>
	+
	+ * findkey.c: Include <fcntl.h>.
	+ (agent_write_private_key): Prefer POSIX compatibity, open and
	+ fdopen, over the simplicity of GNU extensions, fopen(file, "x").
	+
	2002-08-22 Werner Koch <wk@gnupg.org>

	* query.c (agent_askpin): Provide the default desc text depending
	on the pininfo. Do the basic PIN verification only when
	min_digist is set.

	2002-08-21 Werner Koch <wk@gnupg.org>

	* query.c (agent_askpin): Hack to show the right default prompt.
	(agent_get_passphrase): Ditto.

	* trans.c: Removed and replaced all usages with standard _()

	* divert-scd.c (getpin_cb): Pass a more descritive text to the
	pinentry.

	* Makefile.am: Renamed the binary protect-tool to gpg-protect-tool.
	* protect-tool.c: Removed the note about internal use only.

	* gpg-agent.c (main): New option --daemon so that the program is
	not accidently started in the background.

	2002-08-16 Werner Koch <wk@gnupg.org>

	* call-scd.c (learn_status_cb): Handle CERTINFO status.
	(agent_card_learn): Add args for certinfo cb.
	* learncard.c (release_certinfo,certinfo_cb): New.
	(send_cert_back): New. With factored out code from ..
	(agent_handle_learn): here. Return certinfo stuff.

	2002-07-26 Werner Koch <wk@gnupg.org>

	* gpg-agent.c (main): New option --ignore-cache-for-signing.
	* command.c (option_handler): New server option
	use-cache-for-signing defaulting to true.
	(cmd_pksign): handle global and per session option.
	* findkey.c (agent_key_from_file, unprotect): New arg
	ignore_cache. Changed all callers.
	* pksign.c (agent_pksign): Likewise.

	2002-06-29 Werner Koch <wk@gnupg.org>

	* query.c (start_pinentry): Use GNUPG_DERAULT_PINENTRY.
	* call-scd.c (start_scd): Use GNUPG_DEFAULT_SCDAEMON.

	2002-06-28 Werner Koch <wk@gnupg.org>

	* protect-tool.c (export_p12_file): New.
	(main): New command --p12-export.
	* minip12.c (create_final,p12_build,compute_tag_length): New.
	(store_tag_length): New.

	2002-06-27 Werner Koch <wk@gnupg.org>

	* minip12.c (crypt_block): Renamed from decrypt_block, add arg to
	allow encryption.

	* Makefile.am (pkglib_PROGRAMS): Put protect-tool there.

	* findkey.c (agent_write_private_key,agent_key_from_file)
	(agent_key_available): Use GNUPG_PRIVATE_KEYS_DIR constant.
	* gpg-agent.c (main): Use GNUPG_DEFAULT_HOMEDIR constant.

	* protect-tool.c (store_private_key): New.
	(import_p12_file): Store the new file if requested.
	(main): New options --force and --store.

	* gpg-agent.c (main): Set a global flag when running detached.
	* query.c (start_pinentry): Pass the list of FD to keep in the
	child when not running detached.
	* call-scd.c (start_scd): Ditto.

	2002-06-26 Werner Koch <wk@gnupg.org>

	* command.c (cmd_istrusted, cmd_listtrusted, cmd_marktrusted)
	(cmd_pksign, cmd_pkdecrypt, cmd_genkey, cmd_get_passphrase)
	(cmd_learn): Print an error message for a failed operation.

	* simple-pwquery.c, simple-pwquery.h: New.
	* protect-tool. (get_passphrase): New, used to get a passphrase
	from the agent if none was given on the command line.

	2002-06-25 Werner Koch <wk@gnupg.org>

	* protect-tool.c (rsa_key_check): New.
	(import_p12_file): New.
	(main): New command --p12-import.
	* minip12.c, minip12.h: New.

	2002-06-24 Werner Koch <wk@gnupg.org>

	* protect-tool.c (read_file): New.
	(read_key): Factored most code out to read_file.

	2002-06-17 Werner Koch <wk@gnupg.org>

	* agent.h: Add a callback function to the pin_entry_info structure.
	* query.c (agent_askpin): Use the callback to check for a correct
	PIN. Removed the start_err_text argument because it is not
	anymore needed; changed callers.
	* findkey.c (unprotect): Replace our own check loop by a callback.
	(try_unprotect_cb): New.
	* genkey.c (reenter_compare_cb): New.
	(agent_genkey): Use this callback here. Fixed setting of the pi2
	variable and a segv in case of an empty PIN.

	* divert-scd.c (getpin_cb): Removed some unused stuff and
	explained what we still have to change.

	2002-06-12 Werner Koch <wk@gnupg.org>

	* gpg-agent.c (main): New option --disable-pth.

	2002-06-11 Werner Koch <wk@gnupg.org>

	* protect-tool.c: Add command --show-keygrip
	(show_keygrip): New.

	2002-05-23 Werner Koch <wk@gnupg.org>

	* call-scd.c: Seirialized all scdaeom access when using Pth.

	* cache.c: Made the cache Pth-thread-safe.
	(agent_unlock_cache_entry): New.
	* findkey.c (unprotect): Unlock the returned cache value.
	* command.c (cmd_get_passphrase): Ditto.

	* gpg-agent.c (main): Register pth_read/write with Assuan.

	2002-05-22 Werner Koch <wk@gnupg.org>

	* query.c: Serialized all pinentry access when using Pth.

	* gpg-agent.c (handle_signal,start_connection_thread)
	(handle_connections): New
	(main): Use the new Pth stuff to allow concurrent connections.
	* command.c (start_command_handler): Add new arg FD so that the
	fucntion can also be used for an already connected socket.
	* Makefile.am: Link with Pth.

	2002-05-14 Werner Koch <wk@gnupg.org>

	* cache.c (housekeeping, agent_put_cache): Use our time() wrapper.

	2002-04-26 Werner Koch <wk@gnupg.org>

	* cache.c (agent_put_cache): Reinitialize the creation time and
	the ttl when reusing a slot.

	* call-scd.c (start_scd): Print debug messages only with debug
	flags set.
	* query.c (start_pinentry): Ditto.

	2002-04-25 Marcus Brinkmann <marcus@g10code.de>

	* agent.h (agent_get_confirmation): Replace paramter prompt with
	two parameters ok and cancel.
	* query.c (agent_get_confirmation): Likewise. Implement this.
	* trustlist.c (agent_marktrusted): Fix invocation of
	agent_get_confirmation.
	* divert-scd.c (ask_for_card): Likewise.

	2002-04-24 Marcus Brinkmann <marcus@g10code.de>

	* agent.h (struct opt): Add members display, ttyname, ttytype,
	lc_ctype, and lc_messages.
	* gpg-agent.c (enum cmd_and_opt_values): Add oDisplay, oTTYname,
	oTTYtype, oLCctype, and LCmessages.
	(main): Handle these options.
	* command.c (option_handler): New function.
	(register_commands): Register option handler.
	* query.c (start_pinentry): Pass the various display and tty
	options to the pinentry.

	2002-04-05 Werner Koch <wk@gnupg.org>

	* protect-tool.c (show_file): New. Used as default action.

	2002-03-28 Werner Koch <wk@gnupg.org>

	* divert-scd.c (encode_md_for_card): Don't do the pkcs-1 padding,
	the scdaemon should take care of it.
	(ask_for_card): Hack to not display the trailing zero.

	2002-03-11 Werner Koch <wk@gnupg.org>

	* learncard.c (kpinfo_cb): Remove the content restrictions from
	the keyID.

	2002-03-06 Werner Koch <wk@gnupg.org>

	* learncard.c: New.
	* divert-scd.c (ask_for_card): The serial number is binary so
	convert it to hex here.
	* findkey.c (agent_write_private_key): New.
	* genkey.c (store_key): And use it here.

	* pkdecrypt.c (agent_pkdecrypt): Changed the way the diversion is done.
	* divert-scd.c (divert_pkdecrypt): Changed interface and
	implemented it.

	2002-03-05 Werner Koch <wk@gnupg.org>

	* call-scd.c (inq_needpin): New.
	(agent_card_pksign): Add getpin_cb args.
	(agent_card_pkdecrypt): New.

	2002-03-04 Werner Koch <wk@gnupg.org>

	* pksign.c (agent_pksign): Changed how the diversion is done.
	* divert-scd.c (divert_pksign): Changed interface and implemented it.
	(encode_md_for_card): New.
	* call-scd.c (agent_card_pksign): New.

	2002-02-28 Werner Koch <wk@gnupg.org>

	* pksign.c (agent_pksign): Detect whether a Smartcard is to be
	used and divert the operation in this case.
	* pkdecrypt.c (agent_pkdecrypt): Likewise
	* findkey.c (agent_key_from_file): Add optional arg shadow_info
	and have it return information about a shadowed key.
	* protect.c (agent_get_shadow_info): New.

	* protect.c (snext,sskip,smatch): Moved to
	* sexp-parse.h: new file.
	* divert-scd.c: New.

	2002-02-27 Werner Koch <wk@gnupg.org>

	* protect.c (agent_shadow_key): New.

	* command.c (cmd_learn): New command LEARN.
	* gpg-agent.c: New option --scdaemon-program.
	* call-scd.c (start_scd): New. Based on query.c
	* query.c: Add 2 more arguments to all uses of assuan_transact.

	2002-02-18 Werner Koch <wk@gnupg.org>

	* findkey.c (unprotect): Show an error message for a bad passphrase.

	* command.c (cmd_marktrusted): Implemented.
	* trustlist.c (agent_marktrusted): New.
	(open_list): Add APPEND arg.

	* query.c (agent_get_confirmation): New.

	2002-02-06 Werner Koch <wk@gnupg.org>

	* cache.c (housekeeping): Fixed linking in the remove case.

	2002-02-01 Werner Koch <wk@gnupg.org>

	* gpg-agent.c: New option --default-cache-ttl.
	* cache.c (agent_put_cache): Use it.

	* cache.c: Add a few debug outputs.

	* protect.c (agent_private_key_type): New.
	* agent.h: Add PRIVATE_KEY_ enums.
	* findkey.c (agent_key_from_file): Use it to decide whether we
	have to unprotect a key.
	(unprotect): Cache the passphrase.

	* findkey.c (agent_key_from_file,agent_key_available): The key
	files do now require a ".key" suffix to make a script's life
	easier.
	* genkey.c (store_key): Ditto.

	2002-01-31 Werner Koch <wk@gnupg.org>

	* genkey.c (store_key): Protect the key.
	(agent_genkey): Ask for the passphrase.
	* findkey.c (unprotect): Actually unprotect the key.
	* query.c (agent_askpin): Add an optional start_err_text.

	2002-01-30 Werner Koch <wk@gnupg.org>

	* protect.c: New.
	(hash_passphrase): Based on the GnuPG 1.0.6 version.
	* protect-tool.c: New

	2002-01-29 Werner Koch <wk@gnupg.org>

	* findkey.c (agent_key_available): New.
	* command.c (cmd_havekey): New.
	(register_commands): And register new command.

	2002-01-20 Werner Koch <wk@gnupg.org>

	* command.c (cmd_get_passphrase): Remove the plus signs.

	* query.c (start_pinentry): Send no-grab option to pinentry
	* gpg-agent.c (main): Move variable grab as no_grab to agent.h.

	2002-01-19 Werner Koch <wk@gnupg.org>

	* gpg-agent.c (main): Disable core dumps.

	* cache.c: New.
	* command.c (cmd_get_passphrase): Use the cache.
	(cmd_clear_passphrase): Ditto.

	* gpg-agent.c: Removed unused cruft and implement the socket
	based server.
	(my_strusage): Take bug report address from configure.ac.
	* command.c (start_command_handler): Add an argument to start as
	regular server.
	(start_command_handler): Enable Assuan logging.

	2002-01-15 Werner Koch <wk@gnupg.org>

	* trustlist.c: New.
	* command.c (cmd_istrusted, cmd_listtrusted, cmd_marktrusted): New.

	2002-01-07 Werner Koch <wk@gnupg.org>

	* genkey.c: Store the secret part and return the public part.

	2002-01-03 Werner Koch <wk@gnupg.org>

	* command.c (cmd_get_passphrase): New.
	(cmd_clear_passphrase): New.
	* query.c (agent_get_passphrase): New.

	2002-01-02 Werner Koch <wk@gnupg.org>

	* genkey.c: New.
	* command.c (cmd_genkey): New.

	* command.c (rc_to_assuan_status): Removed and changed all callers
	to use map_to_assuan_status.

	2001-12-19 Werner Koch <wk@gnupg.org>

	* keyformat.txt: New.

	2001-12-19 Marcus Brinkmann <marcus@g10code.de>

	* query.c (start_pinentry): Add new argument to assuan_pipe_connect.

	2001-12-18 Werner Koch <wk@gnupg.org>

	* Makefile.am: Use LIBGCRYPT macros

	2001-12-14 Werner Koch <wk@gnupg.org>

	* gpg-agent.c (main): New option --batch. New option --debug-wait
	n, so that it is possible to attach gdb when used in server mode.
	* query.c (agent_askpin): Don't ask in batch mode.

	* command.c: Removed the conversion macros as they are now in
	../common/util.h.

	2001-12-14 Marcus Brinkmann <marcus@g10code.de>

	* query.c (LINELENGTH): Removed.
	(agent_askpin): Use ASSUAN_LINELENGTH, not LINELENGTH.

	2001-11-19 Werner Koch <wk@gnupg.org>

	* gpg-agent.c: Removed all GUI code, removed code for old
	protocol. New code to use the Assuan protocol as a server and
	also to communicate with a new ask-passphrase utility.

	2000-11-22 Werner Koch <wk@gnupg.org>

	* gpg-agent.c (main): csh support by Dan Winship, new options --sh
	and --csh and set default by consulting $SHELL.

	Mon Aug 21 17:59:17 CEST 2000 Werner Koch <wk@openit.de>

	* gpg-agent.c (passphrase_dialog): Cleanup the window and added the
	user supplied text to the window.
	(main): Fixed segv in gtk_init when used without a command to start.

	* gpg-agent.c: --flush option.
	(req_flush): New.
	(req_clear_passphrase): Implemented.

	Fri Aug 18 14:27:14 CEST 2000 Werner Koch <wk@openit.de>

	* gpg-agent.c: New.
	* Makefile.am: New.


	Copyright 2001, 2002 Free Software Foundation, Inc.

	This file is free software; as a special exception the author gives
	unlimited permission to copy and/or distribute it, with or without
	modifications, as long as this notice is preserved.

	This file is distributed in the hope that it will be useful, but
	WITHOUT ANY WARRANTY, to the extent permitted by law; without even the
	implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
	diff --git a/agent/findkey.c b/agent/findkey.c
	index 2201f0ae5..8ec230fa0 100644
	--- a/agent/findkey.c
	+++ b/agent/findkey.c
	@@ -1,331 +1,350 @@
	/* findkey.c - locate the secret key
	- * Copyright (C) 2001 Free Software Foundation, Inc.
	+ * Copyright (C) 2001,02 Free Software Foundation, Inc.
	*
	* This file is part of GnuPG.
	*
	* GnuPG is free software; you can redistribute it and/or modify
	* it under the terms of the GNU General Public License as published by
	* the Free Software Foundation; either version 2 of the License, or
	* (at your option) any later version.
	*
	* GnuPG is distributed in the hope that it will be useful,
	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	* GNU General Public License for more details.
	*
	* You should have received a copy of the GNU General Public License
	* along with this program; if not, write to the Free Software
	* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
	*/

	#include <config.h>
	#include <errno.h>
	#include <stdio.h>
	#include <stdlib.h>
	#include <string.h>
	#include <ctype.h>
	+#include <fcntl.h>
	#include <assert.h>
	#include <unistd.h>
	#include <sys/stat.h>
	#include <assert.h>

	#include "agent.h"

	/* Helper to pass data to the check callback of the unprotect function. */
	struct try_unprotect_arg_s {
	const unsigned char *protected_key;
	unsigned char *unprotected_key;
	};



	int
	agent_write_private_key (const unsigned char *grip,
	const void *buffer, size_t length, int force)
	{
	int i;
	char *fname;
	FILE *fp;
	char hexgrip[40+4+1];

	for (i=0; i < 20; i++)
	sprintf (hexgrip+2*i, "%02X", grip[i]);
	strcpy (hexgrip+40, ".key");

	fname = make_filename (opt.homedir, GNUPG_PRIVATE_KEYS_DIR, hexgrip, NULL);
	if (force)
	fp = fopen (fname, "wb");
	else
	{
	+ int fd;
	+
	if (!access (fname, F_OK))
	{
	log_error ("secret key file `%s' already exists\n", fname);
	xfree (fname);
	return seterr (General_Error);
	}
	- fp = fopen (fname, "wbx"); /* FIXME: the x is a GNU extension - let
	- configure check whether this actually
	- works */
	+
	+ /* We would like to create FNAME but only if it does not already
	+ exist. We cannot make this guarantee just using POSIX (GNU
	+ provides the "x" opentype for fopen, however, this is not
	+ portable). Thus, we use the more flexible open function and
	+ then use fdopen to obtain a stream.
	+
	+ The mode parameter to open is what fopen uses. It will be
	+ combined with the process' umask automatically. */
	+ fd = open (fname, O_CREAT \| O_EXCL \| O_RDWR,
	+ S_IRUSR \| S_IWUSR \| S_IRGRP \| S_IWGRP \| S_IROTH \| S_IWOTH);
	+ if (fd < 0)
	+ fp = 0;
	+ else
	+ {
	+ fp = fdopen (fd, "wb");
	+ if (! fp)
	+ close (fd);
	+ }
	}

	if (!fp)
	{
	log_error ("can't create `%s': %s\n", fname, strerror (errno));
	xfree (fname);
	return seterr (File_Create_Error);
	}

	if (fwrite (buffer, length, 1, fp) != 1)
	{
	log_error ("error writing `%s': %s\n", fname, strerror (errno));
	fclose (fp);
	remove (fname);
	xfree (fname);
	return seterr (File_Create_Error);
	}
	if ( fclose (fp) )
	{
	log_error ("error closing `%s': %s\n", fname, strerror (errno));
	remove (fname);
	xfree (fname);
	return seterr (File_Create_Error);
	}

	xfree (fname);
	return 0;
	}


	/* Callback function to try the unprotection from the passpharse query
	code. */
	static int
	try_unprotect_cb (struct pin_entry_info_s *pi)
	{
	struct try_unprotect_arg_s *arg = pi->check_cb_arg;
	size_t dummy;

	assert (!arg->unprotected_key);
	return agent_unprotect (arg->protected_key, pi->pin,
	&arg->unprotected_key, &dummy);
	}


	/* Unprotect the canconical encoded S-expression key in KEYBUF. GRIP
	should be the hex encoded keygrip of that key to be used with the
	cahing mechanism. */
	static int
	unprotect (unsigned char *keybuf, const unsigned char grip, int ignore_cache)
	{
	struct pin_entry_info_s *pi;
	struct try_unprotect_arg_s arg;
	int rc, i;
	unsigned char *result;
	size_t resultlen;
	char hexgrip[40+1];

	for (i=0; i < 20; i++)
	sprintf (hexgrip+2*i, "%02X", grip[i]);
	hexgrip[40] = 0;

	/* first try to get it from the cache - if there is none or we can't
	unprotect it, we fall back to ask the user */
	if (!ignore_cache)
	{
	void *cache_marker;
	const char *pw = agent_get_cache (hexgrip, &cache_marker);
	if (pw)
	{
	rc = agent_unprotect (*keybuf, pw, &result, &resultlen);
	agent_unlock_cache_entry (&cache_marker);
	if (!rc)
	{
	xfree (*keybuf);
	*keybuf = result;
	return 0;
	}
	rc = 0;
	}
	}

	pi = gcry_calloc_secure (1, sizeof (*pi) + 100);
	pi->max_length = 100;
	pi->min_digits = 0; /* we want a real passphrase */
	pi->max_digits = 8;
	pi->max_tries = 3;
	pi->check_cb = try_unprotect_cb;
	arg.protected_key = *keybuf;
	arg.unprotected_key = NULL;
	pi->check_cb_arg = &arg;

	rc = agent_askpin (NULL, pi);
	if (!rc)
	{
	assert (arg.unprotected_key);
	agent_put_cache (hexgrip, pi->pin, 0);
	xfree (*keybuf);
	*keybuf = arg.unprotected_key;
	}
	xfree (pi);
	return rc;
	}



	/* Return the secret key as an S-Exp after locating it using the grip.
	Returns NULL if key is not available or the operation should be
	diverted to a token. In the latter case shadow_info will point to
	an allocated S-Expression with the shadow_info part from the file.
	With IGNORE_CACHE passed as true the passphrase is not taken from
	the cache.*/
	GCRY_SEXP
	agent_key_from_file (const unsigned char grip, unsigned char *shadow_info,
	int ignore_cache)
	{
	int i, rc;
	char *fname;
	FILE *fp;
	struct stat st;
	unsigned char *buf;
	size_t len, buflen, erroff;
	GCRY_SEXP s_skey;
	char hexgrip[40+4+1];

	if (shadow_info)
	*shadow_info = NULL;

	for (i=0; i < 20; i++)
	sprintf (hexgrip+2*i, "%02X", grip[i]);
	strcpy (hexgrip+40, ".key");

	fname = make_filename (opt.homedir, GNUPG_PRIVATE_KEYS_DIR, hexgrip, NULL);
	fp = fopen (fname, "rb");
	if (!fp)
	{
	log_error ("can't open `%s': %s\n", fname, strerror (errno));
	xfree (fname);
	return NULL;
	}

	if (fstat (fileno(fp), &st))
	{
	log_error ("can't stat `%s': %s\n", fname, strerror (errno));
	xfree (fname);
	fclose (fp);
	return NULL;
	}

	buflen = st.st_size;
	buf = xmalloc (buflen+1);
	if (fread (buf, buflen, 1, fp) != 1)
	{
	log_error ("error reading `%s': %s\n", fname, strerror (errno));
	xfree (fname);
	fclose (fp);
	xfree (buf);
	return NULL;
	}

	rc = gcry_sexp_sscan (&s_skey, &erroff, buf, buflen);
	xfree (fname);
	fclose (fp);
	xfree (buf);
	if (rc)
	{
	log_error ("failed to build S-Exp (off=%u): %s\n",
	(unsigned int)erroff, gcry_strerror (rc));
	return NULL;
	}
	len = gcry_sexp_sprint (s_skey, GCRYSEXP_FMT_CANON, NULL, 0);
	assert (len);
	buf = xtrymalloc (len);
	if (!buf)
	{
	gcry_sexp_release (s_skey);
	return NULL;
	}
	len = gcry_sexp_sprint (s_skey, GCRYSEXP_FMT_CANON, buf, len);
	assert (len);
	gcry_sexp_release (s_skey);

	switch (agent_private_key_type (buf))
	{
	case PRIVATE_KEY_CLEAR:
	break; /* no unprotection needed */
	case PRIVATE_KEY_PROTECTED:
	rc = unprotect (&buf, grip, ignore_cache);
	if (rc)
	log_error ("failed to unprotect the secret key: %s\n",
	gnupg_strerror (rc));
	break;
	case PRIVATE_KEY_SHADOWED:
	if (shadow_info)
	{
	const unsigned char *s;
	size_t n;

	rc = agent_get_shadow_info (buf, &s);
	if (!rc)
	{
	n = gcry_sexp_canon_len (s, 0, NULL,NULL);
	assert (n);
	*shadow_info = xtrymalloc (n);
	if (!*shadow_info)
	rc = GNUPG_Out_Of_Core;
	else
	{
	memcpy (*shadow_info, s, n);
	rc = 0;
	}
	}
	if (rc)
	log_error ("get_shadow_info failed: %s\n", gnupg_strerror (rc));
	}
	rc = -1; /* ugly interface: we return an error but keep a value
	in shadow_info. */
	break;
	default:
	log_error ("invalid private key format\n");
	rc = GNUPG_Bad_Secret_Key;
	break;
	}
	if (rc)
	{
	xfree (buf);
	return NULL;
	}

	/* arggg FIXME: does scan support secure memory? */
	rc = gcry_sexp_sscan (&s_skey, &erroff,
	buf, gcry_sexp_canon_len (buf, 0, NULL, NULL));
	xfree (buf);
	if (rc)
	{
	log_error ("failed to build S-Exp (off=%u): %s\n",
	(unsigned int)erroff, gcry_strerror (rc));
	return NULL;
	}

	return s_skey;
	}

	/* Return the secret key as an S-Exp after locating it using the grip.
	Returns NULL if key is not available. 0 = key is available */
	int
	agent_key_available (const unsigned char *grip)
	{
	int i;
	char *fname;
	char hexgrip[40+4+1];

	for (i=0; i < 20; i++)
	sprintf (hexgrip+2*i, "%02X", grip[i]);
	strcpy (hexgrip+40, ".key");

	fname = make_filename (opt.homedir, GNUPG_PRIVATE_KEYS_DIR, hexgrip, NULL);
	i = !access (fname, R_OK)? 0 : -1;
	xfree (fname);
	return i;
	}

File Metadata

Mime Type: text/x-diff
Expires: Fri, Mar 14, 4:40 AM (1 d, 10 h)
Storage Engine: local-disk
Storage Format: Raw Data
Storage Handle: 28/c3/72cfacefc77c66a76f2092e41c0f

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions