diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 183 |
1 files changed, 183 insertions, 0 deletions
@@ -1,6 +1,184 @@ Noteworthy changes in version 2.3.0 (unreleased) ------------------------------------------------ + Changes also found in 2.2.16: + + * gpg,gpgsm: Fix deadlock on Windows due to a keybox sharing + violation. [#4505] + + * gpg: Allow deletion of subkeys with --delete-key. This finally + makes the bang-suffix work as expected for that command. [#4457] + + * gpg: Replace SHA-1 by SHA-256 in self-signatures when updating + them with --quick-set-expire or --quick-set-primary-uid. [#4508] + + * gpg: Improve the photo image viewer selection. [#4334] + + * gpg: Fix decryption with --use-embedded-filename. [#4500] + + * gpg: Remove hints on using the --keyserver option. [#4512] + + * gpg: Fix export of certain secret keys with comments. [#4490] + + * gpg: Reject too long user-ids in --quick-gen-key. [#4532] + + * gpg: Fix a double free in the best key selection code. [#4462] + + * gpg: Fix the key generation dialog for switching back from EdDSA + to ECDSA. + + * gpg: Use AES-192 with SHA-384 to comply with RFC-6637. + + * gpg: Use only the addrspec from the Signer's UID subpacket to + mitigate a problem with another implementation. + + * gpg: Skip invalid packets during a keyring listing and sync + diagnostics with the output. + + * gpgsm: Avoid confusing diagnostic when signing with the default + key. [#4535] + + * agent: Do not delete any secret key in --dry-run mode. + + * agent: Fix failures on 64 bit big-endian boxes related to URIs in + a keyfile. [#4501] + + * agent: Stop scdaemon after a reload with disable-scdaemon newly + configured. [#4326] + + * dirmngr: Improve caching algorithm for WKD domains. + + * dirmngr: Support other hash algorithms than SHA-1 for OCSP. [#3966] + + * gpgconf: Make --homedir work for --launch. [#4496] + + * gpgconf: Before --launch check for a valid config file. [#4497] + + * wkd: Do not import more than 5 keys from one WKD address. + + * wkd: Accept keys which are stored in armored format in the + directory. + + * The installer for Windows now comes with signed binaries. + + Release-info: https://dev.gnupg.org/T4509 + See-also: gnupg-announce/2019q2/000438.html + + Changes also found in 2.2.15: + + * sm: Fix --logger-fd and --status-fd on Windows for non-standard + file descriptors. + + * sm: Allow decryption even if expired keys are configured. [#4431] + + * agent: Change command KEYINFO to print ssh fingerprints with other + hash algos. + + * dirmngr: Fix build problems on Solaris due to the use of reserved + symbol names. [#4420] + + * wkd: New commands --print-wkd-hash and --print-wkd-url for + gpg-wks-client. + + Release-info: https://dev.gnupg.org/T4434 + See-also: gnupg-announce/2019q1/000436.html + + Changes also found in 2.2.14: + + * gpg: Allow import of PGP desktop exported secret keys. Also avoid + importing secret keys if the secret keyblock is not valid. [#4392] + + * gpg: Make invalid primary key algo obvious in key listings. + + * sm: Do not mark a certificate in a key listing as de-vs compliant + if its use for a signature will not be possible. + + * sm: Fix certificate creation with key on card. + + * sm: Create rsa3072 bit certificates by default. + + * sm: Print Yubikey attestation extensions with --dump-cert. + + * agent: Fix cancellation handling for scdaemon. + + * agent: Support --mode=ssh option for CLEAR_PASSPHRASE. [#4340] + + * scd: Fix flushing of the CA-FPR DOs in app-openpgp. + + * scd: Avoid a conflict error with the "undefined" app. + + * dirmngr: Add CSRF protection exception for protonmail. + + * dirmngr: Fix build problems with gcc 9 in libdns. + + * gpgconf: New option --show-socket for use with --launch. + + * gpgtar: Make option -C work for archive creation. + + Release-info: https://dev.gnupg.org/T4412 + See-also: gnupg-announce/2019q1/000435.html + + Changes also found in 2.2.13: + + * gpg: Implement key lookup via keygrip (using the & prefix). + + * gpg: Allow generating Ed25519 key from existing key. + + * gpg: Emit an ERROR status line if no key was found with -k. + + * gpg: Stop early when trying to create a primary Elgamal key. [#4329] + + * gpgsm: Print the card's key algorithms along with their keygrips + in interactive key generation. + + * agent: Clear bogus pinentry cache in the error case. [#4348] + + * scd: Support "acknowledge button" feature. + + * scd: Fix for USB INTERRUPT transfer. [#4308] + + * wks: Do no use compression for the the encrypted challenge and + response. + + Release-info: https://dev.gnupg.org/T4290 + See-also: gnupg-announce/2019q1/000434.html + + Changes also found in 2.2.12: + + * tools: New commands --install-key and --remove-key for + gpg-wks-client. This allows to prepare a Web Key Directory on a + local file system for later upload to a web server. + + * gpg: New --list-option "show-only-fpr-mbox". This makes the use + of the new gpg-wks-client --install-key command easier on Windows. + + * gpg: Improve processing speed when --skip-verify is used. + + * gpg: Fix a bug where a LF was accidentally written to the console. + + * gpg: --card-status now shows whether a card has the new KDF + feature enabled. + + * agent: New runtime option --s2k-calibration=MSEC. New configure + option --with-agent-s2k-calibration=MSEC. [#3399] + + * dirmngr: Try another keyserver from the pool on receiving a 502, + 503, or 504 error. [#4175] + + * dirmngr: Avoid possible CSRF attacks via http redirects. A HTTP + query will not anymore follow a 3xx redirect unless the Location + header gives the same host. If the host is different only the + host and port is taken from the Location header and the original + path and query parts are kept. + + * dirmngr: New command FLUSHCRL to flush all CRLS from disk and + memory. [#3967] + + * New simplified Chinese translation (zh_CN). + + Release-info: https://dev.gnupg.org/T4289 + See-also: gnupg-announce/2018q4/000433.html + Changes also found in 2.2.11: * gpgsm: Fix CRL loading when intermediate certicates are not yet @@ -388,6 +566,11 @@ Noteworthy changes in version 2.3.0 (unreleased) Version 2.2.9 (2018-07-12) Version 2.2.10 (2018-08-30) Version 2.2.11 (2018-11-06) + Version 2.2.12 (2018-12-14) + Version 2.2.13 (2019-02-12) + Version 2.2.14 (2019-03-19) + Version 2.2.15 (2019-03-26) + Version 2.2.16 (2019-05-28) Noteworthy changes in version 2.2.0 (2017-08-28) |