aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Release 2.0.30gnupg-2.0.30Werner Koch2016-03-311-1/+20
|
* po: Auto updateWerner Koch2016-03-312-22/+19
| | | | --
* doc: Update help.ru.textIneiev2016-03-311-107/+226
|
* build: Create *.swdb file during make distcheck.Werner Koch2016-03-311-0/+14
| | | | | | * Makefile.am (distcheck-hook): New. Signed-off-by: Werner Koch <[email protected]>
* gpg: Silence trustdb messages with --quiet.Werner Koch2016-03-311-6/+8
| | | | | | * g10/trustdb.c (validate_keys): Silence messages Signed-off-by: Werner Koch <[email protected]>
* agent: Do not remove the ssh socket.Justus Winter2016-03-021-0/+2
| | | | | | | | | | * agent/gpg-agent.c (create_server_socket): Also inhibit the removal of the ssh socket if another agent process is already running. GnuPG modern is not affected. GnuPG-bug-id: 2258 Signed-off-by: Justus Winter <[email protected]>
* g10: Make sure to have the directory for trustdb.NIIBE Yutaka2016-02-121-55/+63
| | | | | | | | | | | | | | | | * g10/tdbio.c (tdbio_set_dbname): Return earlier if !CREATE. Check the directory and create it if none before calling take_write_lock. -- Thanks to Marc Deslauriers for the bug report and his patch. GnuPG-bug-id: 2246 Signed-off-by: NIIBE Yutaka <[email protected]> (backport from master commit 2f3e42047d17313eeb38d354048f343158402a8d)
* common: Cope with AIX problem on number of open files.Werner Koch2016-01-151-38/+48
| | | | | | | | | | | * common/exechelp.c: Limit returned value for too hight values. -- GnuPG-bug-id: 1778 (backport from master commit 987532b038a2d9b9e76c0de425ee036ca2bffa1b) Signed-off-by: Werner Koch <[email protected]>
* Fix to support git worktree.NIIBE Yutaka2016-01-131-1/+1
| | | | | | | | | * Makefile.am: Use -e for testing .git. -- Signed-off-by: NIIBE Yutaka <[email protected]> (backport commit of 96237b9a63a50aed1884cb06f84279b977d6a8fa)
* sm: Handle gcry_pk_encrypt return value.NIIBE Yutaka2015-12-151-2/+5
| | | | | | | | | | | | * sm/encrypt.c (encrypt_dek): Don't ignore failure of gcry_pk_encrypt. -- Thanks to Sami Farin. GnuPG-bug-id: 2154 (backport commit of 4ee881bff4c8fdfa4b3b7a4b7afab611471e97f1)
* scd: Fix commit 9a9bfd77.NIIBE Yutaka2015-12-151-0/+1
| | | | * scd/app.c (check_application_conflict): Get SLOT.
* scd: Fix removal of unplugged usb readers on Windows.Daniel Hoffend2015-12-151-0/+3
| | | | | | | | | | | | | | | | * scd/apdu.c (pcsc_error_to_sw): map PCSC_E_NO_SERVICE and PCSC_E_SERVICE_STOPPED to the internal SW_HOST_NO_READER error code. -- Signed-off-by: Daniel Hoffend <[email protected]> GnuPG-bug-id: 2167 In Windows 8 (and later), PC/SC service only runs when reader/token is plugged in. After its removal, it returns PCSC_E_NO_SERVICE error. This error should be handled as no reader. This comment is by gniibe. (backport of commit d1a97585c5e73fbc7d4cf90e38f76ffc5aea305f)
* scd: Simplify saving application context.NIIBE Yutaka2015-12-151-61/+41
| | | | | | | | | | | | | | | | | * scd/app.c (lock_table): Remove LAST_APP field. (lock_reader, app_dump_state, application_notify_card_reset) (release_application): Follow the change. (check_conflict): New. (check_application_conflict): Lock the slot and call check_conflict. (select_application): Call check_conflict and not use LAST_APP. -- We don't need LAST_APP field but just keep the application context by APP field. Since we have a reference counter, it is possible if we can deallocate or not. (backport of commit 9639af5f16a7ed908cbce2415330b9fcd88edc90)
* scd: Fix "Conflicting usage" bug.NIIBE Yutaka2015-12-153-27/+13
| | | | | | | | | | | | | | | | | | | | | | * scd/apdu.c (apdu_close_reader): Call CLOSE_READER method even if we got an error from apdu_disconnect. * scd/app-common.h (no_reuse): Remove. * scd/app.c (application_notify_card_reset): Deallocate APP here. (select_application, release_application): Don't use NO_REUSE. -- Reproducible scenario: Invoke gpg --card-edit session from a terminal. Invoke another gpg --card-edit session from another. Remove a token. Insert a token again. Type RET on both terminals. One of terminal answers "Conflicting usage". Perhaps, having NO_REUSE field was to avoid race conditions. Now, APP can be safely deallocated by application_notify_card_reset. Thanks to the2nd. (backport of commit f42c50dbf00c2e6298ca6830cbe6d36805fa54a3)
* doc: Don't install gpg-zip.1.NIIBE Yutaka2015-10-291-2/+2
| | | | | | | | | | | | | * doc/Makefile.am (myman_pages): Remove gpg-zip.1. (DISTCLEANFILES): Add gpg-zip.1. -- (backport of commit d25e29ad9374da1c11ccfc38f392dbab2d707042) Thanks to Thomas Klausner. GnuPG-bug-id: 2095
* agent: Fix alignment problem with the second passphrase struct.Werner Koch2015-10-052-16/+34
| | | | | | | | | | | | | | | | | | | | | | | | | | * agent/genkey.c (agent_ask_new_passphrase): Use a separate malloc for PI2. Check return value of the malloc function. * agent/command-ssh.c (ssh_identity_register): Use a separate malloc for PI2. Wipe PI2. -- For whatever stupid reasons I once allocated only one memory area and split that into PI and PI2. This is actually a common pattern with malloc but here we used a made up object size and do not take the extra alignment required into account. One of these not yet hit by a (sig)bus PC/VAX hacker bugs. Instead of trying to fix the alignment, it is better to use a second calloc for the second struct. GnuPG-bug-id: 2112 Signed-off-by: Werner Koch <[email protected]> Resolved conflicts: agent/command-ssh.c agent/genkey.c (backport master commit ddf9dd135acd2b3635bb986f6dfc0e4e446d5fad)
* gpg: Silence a compiler warning.Werner Koch2015-10-011-4/+4
| | | | | | | | | | * g10/parse-packet.c (enum_sig_subpkt): Replace hack. -- GCC 5 failure reported by Kevin Locke <[email protected]> (backport from master commit 6a0c3fa19cfcdd590b96691e8a8ffb48fb5e0ec4)
* gpg: Improve 'General key info' line of --card-status.NIIBE Yutaka2015-09-291-2/+4
| | | | | | | | | | | | | | * g10/keylist.c (print_pubkey_info): Print either "pub" or "sub". -- This now prints "sub" if the first used card key is actually a subkey. Signed-off-by: Werner Koch <[email protected]> GnuPG-bug-id: 2079 (backported from master 874ef16e70ab750db7b153f17a7e859a0db6a2f1)
* ssh: Fix fingerprint computation for 384 bit ECDSA keys.Werner Koch2015-09-221-1/+1
| | | | | | | | | | | | | * common/ssh-utils.c (get_fingerprint): Fix hashed string. -- That was an obvious c+p bug which should have been caught by a test case. GnuPG-bug-id: 2075 Debian-bug-id: 795636 (backported from master 2167951b275bae51cf669c02547e2e7ea8fbe2ee)
* po: Update Japanese translation.NIIBE Yutaka2015-09-171-116/+112
|
* scd: Fix ccid-driver timeout for OpenPGPcard v2.1.NIIBE Yutaka2015-09-171-3/+6
| | | | | | | | | | | | | | * scd/ccid-driver.c (CCID_CMD_TIMEOUT): New. (ccid_transceive_apdu_level, ccid_transceive): Use. -- It is reported that key generation causes timeout with OpenPGPcard v2.1. Ideally, timeout value could be determined at run-time by examining card's ATR. Compile-time fixed value is OK for internal CCID driver. (cherry-picked from 2.1 6510df3a7cd2b5bf44fac1e4d50ee54b8c897daa)
* po: Update Japanese translation.NIIBE Yutaka2015-09-151-3/+3
|
* po: Update Japanese Translation.NIIBE Yutaka2015-09-101-4/+3
|
* gpgconf: Fix scdaemon reload.NIIBE Yutaka2015-09-101-3/+4
| | | | | | | | | | * tools/gpgconf-comp.c (scdaemon_runtime_change): Add "scd bye". -- In GnuPG 2.0.x, it doesn't require newer libassuan which has ASSUAN_FORCE_CLOSE feature. We need to send "scd bye" to let the control finish from command loop.
* po: Update Dutch translationFrans Spiesschaert2015-09-091-49/+37
| | | | --
* doc: Allow uploading of a 2.0 manualWerner Koch2015-09-081-2/+2
| | | | --
* Post release updates.Werner Koch2015-09-082-1/+4
| | | | --
* Release 2.0.29.gnupg-2.0.29Werner Koch2015-09-084-8/+19
| | | | Signed-off-by: Werner Koch <[email protected]>
* po: Auto-update.Werner Koch2015-09-0828-225/+350
| | | | --
* po: Update German translationWerner Koch2015-09-081-9/+13
| | | | --
* po: Update Russian translation.Ineiev2015-09-081-26/+15
| | | | --
* gpg: Print a new FAILURE status after most commands.Werner Koch2015-09-084-19/+94
| | | | | | | | | | | | | | | | | | * common/status.h (STATUS_FAILURE): New. * g10/cpr.c (write_status_failure): New. * g10/gpg.c (main): Call write_status_failure for all commands which print an error message here. -- This status line can be used similar to the error code returned by commands send over the Assuan interface in gpgsm. We don't emit them in gpgsm because there we already have that Assuan interface to return proper error code. This change helps GPGME to return better error codes. (backported from master 9cdff09743c473a12359bfdb914578ede0e4e3e2) Signed-off-by: Werner Koch <[email protected]>
* gpg: Avoid cluttering stdout with trustdb info in verbose mode.Werner Koch2015-09-081-1/+1
| | | | | | | | | | | | | | | | * g10/trustdb.c (validate_keys): Call dump_key_array only in debug mode. -- I guess that is a left-over from an early attempt to output information on the trustdb for use by other tools. Maybe related to the former --list-trust-path command. Sending it to stdout is probably useful so we do this now only in debug mode. Signed-off-by: Werner Koch <[email protected]> Backported to STABLE-BRANCH-2-0 from b03a2647299a6c8764a2574590cbaccdff9e497d by dkg
* gpg: Obsolete --no-sig-create-check.Werner Koch2015-09-014-13/+12
| | | | | | | | * g10/gpg.c (opts): Make --no-sig-create-check a NOP. * g10/options.h (struct opt): Remove field "no_sig_create_check". * g10/sign.c (do_sign): Do not run the create check for Libgcrypt 1.7. Signed-off-by: Werner Koch <[email protected]>
* g10: fix --card-status creating stub.NIIBE Yutaka2015-08-121-0/+1
| | | | * g10/getkey.c (get_seckeyblock_byfprint): Require exact match.
* sm: Revert to use SHA-1 for CSR generation.Werner Koch2015-07-271-9/+16
| | | | | | | | | * sm/certreqgen.c (create_request): Revert to use SHA-1 but change to set it only at one place. -- Regression-due-to: bdf439035d123e4751e133ad42982673b0c86b75 Signed-off-by: Werner Koch <[email protected]>
* Don't segfault if the first 'auto-key-locate' option is 'clear'.Neal H. Walfield2015-07-161-0/+3
| | | | | | | | | | | | | * g10/getkey.c (free_akl): If AKL is NULL, just return. -- Backported from f2ee673c99825d5189631031ddec2dbf54dbd482. Note: unlike in 2.1, in 2.0 this bug is not (currently) triggered since parse_auto_key_locate doesn't recognize "clear". Signed-off-by: Neal H. Walfield <[email protected]>. Reported-by: Sami Farin. GnuPG-bug-id: 2045
* scd: pinpad workaround for PC/SC implementations.NIIBE Yutaka2015-06-231-4/+12
| | | | | | | | | | | | | | * scd/adpu.c (pcsc_pinpad_verify, pcsc_pinpad_modify): Bigger buffer for TPDU card reader. -- (backport from 2.1 commit 5e1d2fe6555d06f9dcd2daac713b2edfbc0428a5) GnuPG-bug-id: 2003, 2004 This is needed for PC/SC on Debian Jessie. Note that it's not only for Cherry ST-2000, but also, for any TPDU card readers.
* scd: Fix Cherry ST-2000 support for pinpad input.NIIBE Yutaka2015-06-232-6/+16
| | | | | | | | | | | | * scd/apdu.c (pcsc_vendor_specific_init): Set pinmax to 15. * scd/ccid-driver.c (ccid_transceive_secure): Add zero for the template of APDU. -- (backport from 2.1 commit 444e9232aa9e00aacd939cbf7bdb881b550dfebe) GnuPG-bug-id: 2003, 2004
* gpg: Print PGP-2 fingerprint instead of all zeroes.Werner Koch2015-06-172-1/+9
| | | | | | | | | | | | | | | | * g10/keyid.c (fingerprint_from_pk): Allow PGP-2 fingerprints. * g10/keylist.c (print_fingerprint): Print a warning after a PGP-2 fingerprint. -- Printing all zeroes for a PGP-2 (v3 key) fingerprint has the problem that frontends (or the user) may use that fingerprint to lookup a key and gpg will return all PGP2 keys. They may then show a different PGP-2 key than the one actually used for a signature. This is worse than displaying a weak fingerprint. GnuPG-bug-id: 2000 Signed-off-by: Werner Koch <[email protected]>
* po: Update Japanese Translation.NIIBE Yutaka2015-06-161-4/+4
|
* g10: Fix a race condition initially creating trustdb.NIIBE Yutaka2015-06-151-65/+56
| | | | | | | | | | | | | | * g10/tdbio.c (take_write_lock, release_write_lock): New. (put_record_into_cache, tdbio_sync, tdbio_end_transaction): Use new lock functions. (tdbio_set_dbname): Fix the race. (open_db): Don't call create_dotlock. -- (backported from commit fe5c6edaed78839303d67e01e141cfc6b5de9aec) GnuPG-bug-id: 1675
* po:Update Japanese translation.NIIBE Yutaka2015-06-151-28/+13
|
* doc: Replace "conventional encryption" by "symmetric encryption".Werner Koch2015-06-023-8/+8
| | | | | | -- Suggested-by: Daniel Kahn Gillmor <[email protected]>
* gpg: Consider that gcry_mpi_get_opaque may return NULL.Werner Koch2015-06-021-26/+35
| | | | | | | | | | | | * g10/seckey-cert.c (do_check): Handle a NULL opaque MPI. -- This patch extends b2d9d10 for secret keys. The problem is that we changed the semantics so that opaque MPIs may be NULL with a bit length. This patch is not required in GnuPG 2 because we do not use secret keys there. Signed-off-by: Werner Koch <[email protected]>
* gpg: Fix segv due to NULL value stored as opaque MPI (BRANCH 2.0)Daniel Kahn Gillmor2015-06-022-8/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * g10/build-packet.c (do_secret_key): Check for NULL return from gcry_mpi_get_opaque. * g10/keyid.c (hash_public_key): Ditto. -- This is a backport of 76c8122adfed0f0f443cce7bda702ba2b39661b3 from master to the STABLE-BRANCH-2-0 On the STABLE-BRANCH-2-0, we may also want to patch g10/seckey-cert.c, but that has not been done in this patch. This fix extends commmit 0835d2f44ef62eab51fce6a927908f544e01cf8f. gpg2 --export --no-default-keyring --keyring TESTDATA With TESTDATA being below after unpacking. -----BEGIN PGP ARMORED FILE----- mBMEhdkMmS8BcX8F//8F5voEhQAQmBMEnAAAZwAAo4D/f/8EhQAAAIAEnP8EhQAQ iBMEnP8AAAAABf8jIID///8EhQYQmBMEnIUAEIgTBKT/AAAAAAUAACCA/f//BIUA EJgTBJx/AP8ABPPzBJx/AP8ABPPz =2yE0 -----END PGP ARMORED FILE----- Reported-by: Jodie Cunningham Signed-off-by: Daniel Kahn Gillmor <[email protected]>
* doc: Typo fix for "Creation-Date".Werner Koch2015-06-021-1/+1
| | | | | | | | -- Debian-bug-id: 760273 This has already been fixed in master.
* Post release updatesWerner Koch2015-06-023-9/+56
| | | | | | -- The fuzzy entries of ru.po are not in the release. Does not matter.
* Release 2.0.28gnupg-2.0.28Werner Koch2015-06-021-1/+16
|
* po: Auto-updateWerner Koch2015-06-0227-250/+1131
| | | | --
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-18 00:08:44 +0000