To Software - To Overview Projects Board - To Webdb Sys Administration - To Software: Webdb Documentation
Webdb: CommModule
GPG key signing
Transfer of parameters
Fields
1
2
3
4
5
6
7
8
9
10
11
client.pl: $crt=Request($ver,1,2,0,0,2,366,0,$content,"","");
client.pl $crt=Request()
$ver
1
2
0
0
2
366
0
$content
""
""
server.pl SignOpenPGP($bytes[3],$bytes[4],$bytes[5],($bytes[6]<<8)+$bytes[7], $bytes[8],$fields[1],$fields[2],$fields[3]);
server.pl: SignOpenPGP() request
$bytes[3]
$bytes[4]
$bytes[5]
($bytes[6]<<8)+$bytes[7]
$bytes[8]
$fields[1]
$fields[2]
$fields[3]
unused
server.pl SignOpenPGP() values
2
0
0
( 2<<8)+366 = 878
0
content
""
""
unused
SignOpenPGP() my() parameters
$root
$template
$hash
$days
$spkac
$request
$san x1
$subject x2
unused
Running GnuPG in $homedir with $request content: "$gpgbin --no-tty --homedir $homedir --command-fd 0 --status-fd 1 --logger-fd 2 --with-colons --import $wid/request.key" with stdin, stdout, stderr
Running GnuPG to Sign with $gpgID, $days, $keyid: "$gpgbin --no-tty --default-key $gpgID --homedir $homedir --default-cert-expire $days"."d --ask-cert-expire --cert-policy-url $CPSUrl --command-fd 0 --status-fd 1 --logger-fd 2 --sign-key $keyid"
Running GPG to export: "$gpgbin --no-tty --homedir $homedir --export --armor $keyid > $wid/result.key"
.. and .. into $content: "$gpgbin --no-tty --homedir $homedir --batch --yes --delete-key $keyid 2>&1"
result return: Response($ver,2,0,0,$content,"","");
client.pl l. 1078, store and output key in $crt
client.pl read expire date from signed key file: $date=OpenPGPextractExpiryDate($crtname);
client.pl l.1101, store signed keyfile name, issue date/time, expire date to users record
x1 san = SubjectAltName
x2 subject = subject