diff options
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 106 |
1 files changed, 84 insertions, 22 deletions
@@ -1,6 +1,66 @@ Noteworthy changes in version 2.3.0 (unreleased) ------------------------------------------------ + Changes also found in 2.2.11: + + * gpgsm: Fix CRL loading when intermediate certicates are not yet + trusted. + + * gpgsm: Fix an error message about the digest algo. [#4219] + + * gpg: Fix a wrong warning due to new sign usage check introduced + with 2.2.9. [#4014] + + * gpg: Print the "data source" even for an unsuccessful keyserver + query. + + * gpg: Do not store the TOFU trust model in the trustdb. This + allows to enable or disable a TOFO model without triggering a + trustdb rebuild. [#4134] + + * scd: Fix cases of "Bad PIN" after using "forcesig". [#4177] + + * agent: Fix possible hang in the ssh handler. [#4221] + + * dirmngr: Tack the unmodified mail address to a WKD request. See + commit a2bd4a64e5b057f291a60a9499f881dd47745e2f for details. + + * dirmngr: Tweak diagnostic about missing LDAP server file. + + * dirmngr: In verbose mode print the OCSP responder id. + + * dirmngr: Fix parsing of the LDAP port. [#4230] + + * wks: Add option --directory/-C to the server. Always build the + server on Unix systems. + + * wks: Add option --with-colons to the client. Support sites which + use the policy file instead of the submission-address file. + + * Fix EBADF when gpg et al. are called by broken CGI scripts. + + * Fix some minor memory leaks and bugs. + + Release-info: https://dev.gnupg.org/T4233 + See-also: gnupg-announce/2018q4/000432.html + + Changes also found in 2.2.10: + + * gpg: Refresh expired keys originating from the WKD. [#2917] + + * gpg: Use a 256 KiB limit for a WKD imported key. + + * gpg: New option --known-notation. [#4060] + + * scd: Add support for the Trustica Cryptoucan reader. + + * agent: Speed up starting during on-demand launching. [#3490] + + * dirmngr: Validate SRV records in WKD queries. + + Release-info: https://dev.gnupg.org/T4112 + See-also: gnupg-announce/2018q3/000428.html + Changes also found in 2.2.9: * dirmngr: Fix recursive resolver mode and other bugs in the libdns @@ -98,7 +158,7 @@ Noteworthy changes in version 2.3.0 (unreleased) * dirmngr: Fallback to CRL if no default OCSP responder is configured. * dirmngr: Implement CRL fetching via https. Here a redirection to - http is explictly allowed. + http is explicitly allowed. * dirmngr: Make LDAP searching and CRL fetching work under Windows. This stopped working with 2.1. [#3937] @@ -317,15 +377,17 @@ Noteworthy changes in version 2.3.0 (unreleased) Release dates of 2.2.x versions: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ - Version 2.2.1 (2017-09-19) - Version 2.2.2 (2017-11-07) - Version 2.2.3 (2017-11-20) - Version 2.2.4 (2017-12-20) - Version 2.2.5 (2018-02-22) - Version 2.2.6 (2018-04-09) - Version 2.2.7 (2018-05-02) - Version 2.2.8 (2018-06-08) - Version 2.2.9 (2018-07-12) + Version 2.2.1 (2017-09-19) + Version 2.2.2 (2017-11-07) + Version 2.2.3 (2017-11-20) + Version 2.2.4 (2017-12-20) + Version 2.2.5 (2018-02-22) + Version 2.2.6 (2018-04-09) + Version 2.2.7 (2018-05-02) + Version 2.2.8 (2018-06-08) + Version 2.2.9 (2018-07-12) + Version 2.2.10 (2018-08-30) + Version 2.2.11 (2018-11-06) Noteworthy changes in version 2.2.0 (2017-08-28) @@ -959,7 +1021,7 @@ Noteworthy changes in version 2.1.11 (2016-01-26) * gpg: Emit PROGRESS status lines during key generation. - * gpg: Don't check for ambigious or non-matching key specification in + * gpg: Don't check for ambiguous or non-matching key specification in the config file or given to --encrypt-to. This feature will return in 2.3.x. @@ -986,7 +1048,7 @@ Noteworthy changes in version 2.1.11 (2016-01-26) * dirmmgr: All configured keyservers are now searched. * dirmngr: Install CA certificate for hkps.pool.sks-keyservers.net. - Use this certiticate even if --hkp-cacert is not used. + Use this certificate even if --hkp-cacert is not used. * gpgtar: Add actual encryption code. gpgtar does now fully replace gpg-zip. @@ -1020,7 +1082,7 @@ Noteworthy changes in version 2.1.10 (2015-12-04) * gpg: New option --only-sign-text-ids to exclude photo IDs from key signing. - * gpg: Check for ambigious or non-matching key specification in the + * gpg: Check for ambiguous or non-matching key specification in the config file or given to --encrypt-to. * gpg: Show the used card reader with --card-status. @@ -1310,7 +1372,7 @@ Noteworthy changes in version 2.1.1 (2014-12-16) * gpg: Fixed regression in --refresh-keys. - * gpg: Fixed regresion in %g and %p codes for --sig-notation. + * gpg: Fixed regression in %g and %p codes for --sig-notation. * gpg: Fixed best matching hash algo detection for ECDSA and EdDSA. @@ -1390,7 +1452,7 @@ Noteworthy changes in version 2.1.0 (2014-11-06) * gpg: Default keyring is now created with a .kbx suffix. - * gpg: Add a shortcut to the key capabilies menu (e.g. "=e" sets the + * gpg: Add a shortcut to the key capabilities menu (e.g. "=e" sets the encryption capabilities). * gpg: Fixed obsolete options parsing. @@ -1582,7 +1644,7 @@ Noteworthy changes in version 2.1.0 (2014-11-06) * scdaemon: Does not anymore block after changing a card (regression fix). - * tools: gpg-connect-agent does now proberly display the help output + * tools: gpg-connect-agent does now properly display the help output for "SCD HELP" commands. @@ -1707,7 +1769,7 @@ Noteworthy changes in version 2.0.13 (2009-09-04) * Add hack to the internal CCID driver to allow the use of some Omnikey based card readers with 2048 bit keys. - * GPG now repeatly asks the user to insert the requested OpenPGP + * GPG now repeatedly asks the user to insert the requested OpenPGP card. This can be disabled with --limit-card-insert-tries=1. * Minor bug fixes. @@ -1833,7 +1895,7 @@ Noteworthy changes in version 2.0.9 (2008-03-26) * Extended the PKITS framework. - * Fixed a bug in the ambigious name detection. + * Fixed a bug in the ambiguous name detection. * Fixed possible memory corruption while importing OpenPGP keys (bug introduced with 2.0.8). [CVE-2008-1530] @@ -2383,7 +2445,7 @@ Noteworthy changes in version 1.9.2 (2003-11-17) command but from the menu provided by the new --card-edit command. * PINs are now properly cached and there are only 2 PINs visible. - The 3rd PIN (CHV2) is internally syncronized with the regular PIN. + The 3rd PIN (CHV2) is internally synchronized with the regular PIN. * All kind of other internal stuff. @@ -3087,7 +3149,7 @@ Noteworthy changes in version 1.0.1 (1999-12-16) * Fixed some minor bugs and the problem with conventional encrypted packets which did use the gpg v3 partial length headers. - * Add Indonesian and Portugese translations. + * Add Indonesian and Portuguese translations. * Fixed a bug with symmetric-only encryption using the non-default 3DES. The option --emulate-3des-s2k-bug may be used to decrypt documents @@ -3190,7 +3252,7 @@ Noteworthy changes in version 0.9.8 (1999-06-26) * New option --with-key-data to list the public key parameters. New option -N to insert notations and a --set-policy-url. - A couple of other options to allow reseting of options. + A couple of other options to allow resetting of options. * Better support for HPUX. @@ -3669,7 +3731,7 @@ Noteworthy changes in version 0.2.19 (1998-05-29) Noteworthy changes in version 0.2.18 (1998-05-15) ------------------------------------ - * Splitted cipher/random.c, add new option "--disable-dev-random" + * Split cipher/random.c, add new option "--disable-dev-random" to configure to support the development of a random source for other systems. Prepared sourcefiles rand-unix.c, rand-w32.c and rand-dummy.c (which is used to allow compilation on systems |