diff options
Diffstat (limited to 'sm/ChangeLog')
| -rw-r--r-- | sm/ChangeLog | 106 |
1 files changed, 56 insertions, 50 deletions
diff --git a/sm/ChangeLog b/sm/ChangeLog index 536841094..d36a3aef6 100644 --- a/sm/ChangeLog +++ b/sm/ChangeLog @@ -1,3 +1,9 @@ +2011-07-21 Werner Koch <[email protected]> + + * call-dirmngr.c (get_cached_cert, get_cached_cert_data_cb): New. + (gpgsm_dirmngr_isvalid): Try to get the only-valid-if-cert-valid + certificate from the dirmngr first. + 2010-09-16 Werner Koch <[email protected]> * certchain.c (gpgsm_walk_cert_chain): Use GPG_ERR_MISSING_ISSUER_CERT. @@ -298,7 +304,7 @@ * server.c (cmd_encrypt): Ditto. (cmd_decrypt, cmd_verify, cmd_import, cmd_genkey): Ditto. * call-agent.c (gpgsm_scd_pksign): Ditto. - * call-dirmngr.c (release_dirmngr, release_dirmngr2) + * call-dirmngr.c (release_dirmngr, release_dirmngr2) (run_command_cb): Ditto. * certlist.c (gpgsm_add_cert_to_certlist): Ditto. * certchain.c (find_up_dirmngr): Ditto. @@ -338,7 +344,7 @@ 2008-09-03 Werner Koch <[email protected]> * sign.c (MY_GCRY_MD_SHA224): New, so that we don't need libgcrypt - 1.2. + 1.2. 2008-08-13 Werner Koch <[email protected]> @@ -442,7 +448,7 @@ (gpgsm_walk_cert_chain): Use it here. * gpgsm.c: Add option --no-common-certs-import. - + * certchain.c (find_up_dirmngr, find_up, do_validate_chain) (check_cert_policy): Be more silent with --quiet. @@ -455,8 +461,8 @@ * server.c (option_handler): Add option allow-pinentry-notify. (gpgsm_proxy_pinentry_notify): New. * call-agent.c (default_inq_cb): New. - (gpgsm_agent_pksign, gpgsm_scd_pksign, gpgsm_agent_readkey) - (gpgsm_agent_istrusted, gpgsm_agent_marktrusted) + (gpgsm_agent_pksign, gpgsm_scd_pksign, gpgsm_agent_readkey) + (gpgsm_agent_istrusted, gpgsm_agent_marktrusted) (gpgsm_agent_passwd, gpgsm_agent_get_confirmation): Call it. (struct cipher_parm_s, struct genkey_parm_s): Add field CTRL. (inq_ciphertext_cb): Test keyword and fallback to default_inq_cb. @@ -554,7 +560,7 @@ h2007-11-22 Werner Koch <[email protected]> * gpgsm.c (get_status_string): Remove. * gpgsm.h: Include status.h instead of errors.h. - + 2007-10-19 Werner Koch <[email protected]> * qualified.c (gpgsm_qualified_consent): Use i18N-swicth functions. @@ -568,7 +574,7 @@ h2007-11-22 Werner Koch <[email protected]> 2007-08-24 Werner Koch <[email protected]> - * Makefile.am (common_libs): Swap libkeybox and jnlib. + * Makefile.am (common_libs): Swap libkeybox and jnlib. 2007-08-23 Werner Koch <[email protected]> @@ -588,7 +594,7 @@ h2007-11-22 Werner Koch <[email protected]> * import.c (parse_p12): Use gnupg_tmpfile. * export.c (export_p12): Ditto. - + 2007-08-20 Werner Koch <[email protected]> * certreqgen.c (read_parameters): Change FP to an estream_t. @@ -643,7 +649,7 @@ h2007-11-22 Werner Koch <[email protected]> 2007-08-06 Werner Koch <[email protected]> Implementation of the chain model. - + * gpgsm.h (struct rootca_flags_s): Define new members VALID and CHAIN_MODEL. * call-agent.c (gpgsm_agent_istrusted): Mark ROOTCA_FLAGS valid. @@ -695,7 +701,7 @@ h2007-11-22 Werner Koch <[email protected]> when passing an int value. * server.c (cmd_encrypt, cmd_decrypt, cmd_verify, cmd_import) (cmd_export, cmd_message, cmd_genkey): Translate file descriptors. - + 2007-07-05 Werner Koch <[email protected]> * Makefile.am (common_libs): Changed order of libs. @@ -720,7 +726,7 @@ h2007-11-22 Werner Koch <[email protected]> 2007-06-24 Werner Koch <[email protected]> * gpgsm.c (open_es_fwrite): Avoid the dup by using the new - es_fdopen_nc(). + es_fdopen_nc(). 2007-06-21 Werner Koch <[email protected]> @@ -823,14 +829,14 @@ h2007-11-22 Werner Koch <[email protected]> the certificate is not available. * gpgsm.c: Add option --p12-charset. - * gpgsm.h (struct opt): Add p12_charset. + * gpgsm.h (struct opt): Add p12_charset. * export.c (popen_protect_tool): Use new option. 2007-03-19 Werner Koch <[email protected]> Changes to let export and key listing use estream to help systems without funopen. - + * keylist.c: Use estream in place of stdio functions. * gpgsm.c (open_es_fwrite): New. (main): Use it for the list commands. @@ -846,7 +852,7 @@ h2007-11-22 Werner Koch <[email protected]> (print_dn_parts): Ditto. * certchain.c (gpgsm_validate_chain): Changed FP to type estream_t. - (do_list, unknown_criticals, allowed_ca, check_cert_policy) + (do_list, unknown_criticals, allowed_ca, check_cert_policy) (is_cert_still_valid): Ditto. * export.c (gpgsm_export): New arg STREAM. @@ -948,7 +954,7 @@ h2007-11-22 Werner Koch <[email protected]> 2006-10-17 Werner Koch <[email protected]> - * gpgsm.c: No need for pth.h. + * gpgsm.c: No need for pth.h. (main): or to init it. It used to be hack for W32. * sign.c (gpgsm_get_default_cert): Changed to return only @@ -956,7 +962,7 @@ h2007-11-22 Werner Koch <[email protected]> 2006-10-16 Werner Koch <[email protected]> - * certchain.c (already_asked_marktrusted) + * certchain.c (already_asked_marktrusted) (set_already_asked_marktrusted): New. (gpgsm_validate_chain) <not trusted>: Keep track of certificates we already asked for. @@ -988,7 +994,7 @@ h2007-11-22 Werner Koch <[email protected]> * certchain.c (gpgsm_validate_chain): More changes for the relax feature. Use certificate reference counting instead of the old - explicit tests. Added a missing free. + explicit tests. Added a missing free. 2006-09-25 Werner Koch <[email protected]> @@ -1039,9 +1045,9 @@ h2007-11-22 Werner Koch <[email protected]> Replaced all Assuan error codes by libgpg-error codes. Removed all map_to_assuan_status and map_assuan_err. - + * gpgsm.c (main): Call assuan_set_assuan_err_source to have Assuan - switch to gpg-error codes. + switch to gpg-error codes. * server.c (set_error): Adjusted. 2006-08-29 Werner Koch <[email protected]> @@ -1085,7 +1091,7 @@ h2007-11-22 Werner Koch <[email protected]> * keydb.c (keydb_delete): Likewise. Only unlock if this is set. * delete.c (delete_one): Add new argument to invocation of keydb_delete. - + 2006-05-15 Werner Koch <[email protected]> * keylist.c (print_names_raw): Sanitize URI. @@ -1304,7 +1310,7 @@ h2007-11-22 Werner Koch <[email protected]> (run_command_status_cb): Return cancel status if gpgsm_status returned an error. - * server.c (gpgsm_status, gpgsm_status2) + * server.c (gpgsm_status, gpgsm_status2) (gpgsm_status_with_err_code): Return an error code. (gpgsm_status2): Always call va_end(). @@ -1394,7 +1400,7 @@ h2007-11-22 Werner Koch <[email protected]> * Makefile.am: Adjusted for gettext 0.14. * keylist.c (list_cert_colon): Make sure that the expired flag has - a higher precedence than the invalid flag. + a higher precedence than the invalid flag. 2004-09-29 Werner Koch <[email protected]> @@ -1429,7 +1435,7 @@ h2007-11-22 Werner Koch <[email protected]> * certchain.c (gpgsm_basic_cert_check): Print more detailed error messages. - + * certcheck.c (do_encode_md): Partly support DSA. Add new arg PKALGO. Changed all callers to pass it. (pk_algo_from_sexp): New. @@ -1466,7 +1472,7 @@ h2007-11-22 Werner Koch <[email protected]> 2004-06-06 Werner Koch <[email protected]> * certreqgen.c (get_parameter_uint, create_request): Create - an extension for key usage when requested. + an extension for key usage when requested. 2004-05-12 Werner Koch <[email protected]> @@ -1522,9 +1528,9 @@ h2007-11-22 Werner Koch <[email protected]> * gpgsm.c (main) <gpgconf>: Do not use /dev/null as default config filename. - * call-agent.c (gpgsm_agent_pksign, gpgsm_agent_pkdecrypt) - (gpgsm_agent_genkey, gpgsm_agent_istrusted) - (gpgsm_agent_marktrusted, gpgsm_agent_havekey) + * call-agent.c (gpgsm_agent_pksign, gpgsm_agent_pkdecrypt) + (gpgsm_agent_genkey, gpgsm_agent_istrusted) + (gpgsm_agent_marktrusted, gpgsm_agent_havekey) (gpgsm_agent_passwd): Add new arg CTRL and changed all callers. (start_agent): New arg CTRL. Send progress item when starting a new agent. @@ -1556,7 +1562,7 @@ h2007-11-22 Werner Koch <[email protected]> 2004-04-08 Werner Koch <[email protected]> - * decrypt.c (gpgsm_decrypt): Return GPG_ERR_NO_DATA if it is not a + * decrypt.c (gpgsm_decrypt): Return GPG_ERR_NO_DATA if it is not a encrypted message. 2004-04-07 Werner Koch <[email protected]> @@ -1660,12 +1666,12 @@ h2007-11-22 Werner Koch <[email protected]> * export.c (export_p12, popen_protect_tool) (gpgsm_p12_export): New. - * gpgsm.c (main): New command --export-secret-key-p12. + * gpgsm.c (main): New command --export-secret-key-p12. 2004-02-18 Werner Koch <[email protected]> * gpgsm.c (set_debug): Set the new --debug-level flags. - (main): New option --gpgconf-list. + (main): New option --gpgconf-list. (main): Do not setup -u and -r keys when not required. (main): Setup the used character set. @@ -1687,7 +1693,7 @@ h2007-11-22 Werner Koch <[email protected]> WITH_VALIDATION. Changed callers to set it. (list_external_cb, list_external_keys): Pass CTRL to the callback. (list_cert_colon): Add arg CTRL. Check validation if requested. - * certchain.c (unknown_criticals, allowed_ca, check_cert_policy) + * certchain.c (unknown_criticals, allowed_ca, check_cert_policy) (gpgsm_validate_chain): New args LISTMODE and FP. (do_list): New helper for info output. (find_up): New arg FIND_NEXT. @@ -1704,7 +1710,7 @@ h2007-11-22 Werner Koch <[email protected]> * certcheck.c (gpgsm_create_cms_signature): Format a description for use by the pinentry. * decrypt.c (gpgsm_decrypt): Ditto. Free HEXKEYGRIP. - * certdump.c (format_name_cookie, format_name_writer) + * certdump.c (format_name_cookie, format_name_writer) (gpgsm_format_name): New. (gpgsm_format_serial): New. (gpgsm_format_keydesc): New. @@ -1778,7 +1784,7 @@ h2007-11-22 Werner Koch <[email protected]> (print_dn_part): Do not delimit multiple RDN by " + ". Handle multi-valued RDNs in a special way, i.e. in the order specified by the certificate. - (print_dn_parts): Simplified. + (print_dn_parts): Simplified. 2004-01-16 Werner Koch <[email protected]> @@ -1866,7 +1872,7 @@ h2007-11-22 Werner Koch <[email protected]> 2003-08-14 Timo Schulz <[email protected]> * encrypt.c (encode_session_key): Use new Libgcrypt interface. - + 2003-07-31 Werner Koch <[email protected]> * Makefile.am (gpgsm_LDADD): Added INTLLIBS. @@ -1889,7 +1895,7 @@ h2007-11-22 Werner Koch <[email protected]> * verify.c (strtimestamp): Renamed to strtimestamp_r Adjusted for changes in the libgcrypt API. Some more fixes for the - libgpg-error stuff. + libgpg-error stuff. 2003-06-04 Werner Koch <[email protected]> @@ -1918,7 +1924,7 @@ h2007-11-22 Werner Koch <[email protected]> 2002-11-25 Werner Koch <[email protected]> - * verify.c (gpgsm_verify): Handle content-type attribute. + * verify.c (gpgsm_verify): Handle content-type attribute. 2002-11-13 Werner Koch <[email protected]> @@ -1928,7 +1934,7 @@ h2007-11-22 Werner Koch <[email protected]> 2002-11-12 Werner Koch <[email protected]> - * gpgsm.c: New command --call-dirmngr. + * gpgsm.c: New command --call-dirmngr. * call-dirmngr.c (gpgsm_dirmngr_run_command) (run_command_inq_cb,run_command_cb) (run_command_status_cb): New. @@ -1946,7 +1952,7 @@ h2007-11-22 Werner Koch <[email protected]> * certcheck.c (gpgsm_check_cert_sig): Add cert hash debugging. - * certchain.c (find_up): Print info when the cert was not found + * certchain.c (find_up): Print info when the cert was not found by the autorithyKeyIdentifier. 2002-09-03 Werner Koch <[email protected]> @@ -2020,10 +2026,10 @@ h2007-11-22 Werner Koch <[email protected]> * sign.c (gpgsm_sign): New argument SIGNERLIST and implemt multiple signers. * gpgsm.c (main): Support more than one -u. - + * server.c (cmd_recipient): Return reason code 1 for No_Public_Key which is actually what gets returned from add_to_certlist. - + 2002-07-26 Werner Koch <[email protected]> * certcheck.c (gpgsm_check_cert_sig): Implement proper cleanup. @@ -2125,7 +2131,7 @@ h2007-11-22 Werner Koch <[email protected]> 2002-06-24 Werner Koch <[email protected]> * gpgsm.c: Removed duped help entry for --list-keys. - + * gpgsm.c, gpgsm.h: New option --debug-no-path-validation. * certpath.c (gpgsm_validate_path): Use it here instead of the @@ -2168,7 +2174,7 @@ h2007-11-22 Werner Koch <[email protected]> * export.c (gpgsm_export): Kludge to export epehmeral certificates. * gpgsm.c (main): New command --list-external-keys. - + 2002-06-17 Werner Koch <[email protected]> * certreqgen.c (read_parameters): Improved error handling. @@ -2190,7 +2196,7 @@ h2007-11-22 Werner Koch <[email protected]> * sign.c (hash_and_copy_data): New. (gpgsm_sign): Implemented normal (non-detached) signatures. * gpgsm.c (main): Ditto. - + * certpath.c (gpgsm_validate_path): Special error handling for no policy match. @@ -2198,7 +2204,7 @@ h2007-11-22 Werner Koch <[email protected]> * server.c (get_status_string): Add STATUS_ERROR. - * certpath.c (gpgsm_validate_path): Tweaked the error checking to + * certpath.c (gpgsm_validate_path): Tweaked the error checking to return error codes in a more sensitive way. * verify.c (gpgsm_verify): Send status TRUST_NEVER also for a bad CA certificate and when the certificate has been revoked. Issue @@ -2320,7 +2326,7 @@ h2007-11-22 Werner Koch <[email protected]> * export.c: New. * gpgsm.c: Add command --export. * server.c (cmd_export): New. - + 2002-03-13 Werner Koch <[email protected]> * decrypt.c (gpgsm_decrypt): Allow multiple recipients. @@ -2562,10 +2568,10 @@ h2007-11-22 Werner Koch <[email protected]> print the first item. * keylist.c (list_cert_colon): Ditto. * keydb.c (keydb_search_issuer_sn): Ditto. - * decrypt.c (print_integer_sexp): Removed and made callers + * decrypt.c (print_integer_sexp): Removed and made callers use gpgsm_dump_serial. * verify.c (print_time): Removed, made callers use gpgsm_dump_time. - + 2001-12-19 Marcus Brinkmann <[email protected]> * call-agent.c (start_agent): Add new argument to assuan_pipe_connect. @@ -2621,7 +2627,7 @@ h2007-11-22 Werner Koch <[email protected]> * base64.c (base64_reader_cb): Reset the linelen when we need to skip the line and adjusted test; I somehow forgot about DeMorgan. - * server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify) + * server.c (cmd_encrypt,cmd_decrypt,cmd_sign,cmd_verify) (cmd_import): Close the FDs on success. (close_message_fd): New. (input_notify): Setting autodetect_encoding to 0 after initializing @@ -2645,7 +2651,7 @@ h2007-11-22 Werner Koch <[email protected]> 2001-12-12 Werner Koch <[email protected]> - * gpgsm.c (main): New options --assume-{armor,base64,binary}. + * gpgsm.c (main): New options --assume-{armor,base64,binary}. * base64.c (base64_reader_cb): Fixed non-autodetection mode. 2001-12-04 Werner Koch <[email protected]> @@ -2673,7 +2679,7 @@ h2007-11-22 Werner Koch <[email protected]> * server.c (rc_to_assuan_status): New. Use it for all commands. - + Copyright 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009 Free Software Foundation, Inc. |