aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Release 2.5.10gnupg-2.5.10Werner Koch2 days1-1/+15
|
* po: msgmergeWerner Koch2 days26-0/+78
| | | | --
* po: Translate a new string to German.Werner Koch2 days1-1/+4
| | | | --
* dirmngr: Implement command KS_DEL for ldap servers.Werner Koch2 days6-17/+114
| | | | | | | | | | | * dirmngr/ks-action.c (ks_action_del): Change some variable names and comments. * dirmngr/ks-engine-ldap.c (ks_ldap_del): Implement. -- GnuPG-bug-id: 5447 Tested using OpenLDAP on Linux and with an LDS and AD on Windows.
* tools: Add an experimental Windows descryption script.Werner Koch3 days1-0/+31
| | | | | | -- I am not sure whether this really works.
* artwork: Add some icons from experimentsWerner Koch3 days4-0/+0
| | | | | | | -- These were floating around the working directory. Ley's keep them in the repo.
* gpgv: New option --print-notation.Werner Koch3 days7-0/+70
| | | | | | | | | | | | | * g10/keylist.c (print_matching_notations): New. * g10/mainproc.c (check_sig_and_print): Call this. * g10/options.h (opt): Add field print_notations. * g10/gpgv.c (oPrintNotation): New. (opts): Add "print-notation". (main): Implement. -- I had the code floating around but can't remember what triggered me to write this. But it might eventually be useful, so better apply it.
* gpgsm: Fix caching of the trustlist's flags.Werner Koch3 days1-0/+6
| | | | | | | | | | | | * sm/call-agent.c (istrusted_status_cb): Clear the helper flags. -- GnuPG-bug-id: 7738 Fixes-commit: ef2be95258d2e02659e96f6c4df5a9a1a233c8fd which introduced the caching but go the flags wrong. The fallout from this was that the qualified signature consent was show for non QES certificates. Other flags are almost always the same and thus no other harm was done.
* gpg: Add a notation with version information to signatures.Werner Koch3 days14-31/+234
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * common/compliance.c (gnupg_manu_notation_value): New. * g10/build-packet.c (name_value_to_notation): New. * g10/options.h (COMPAT_NO_MANU): New. (LIST_SHOW_HIDDEN_NOTATIONS): New. (VERIFY_SHOW_HIDDEN_NOTATIONS): New. * g10/gpg.c (compatibility_flags): Add "no-manu". (parse_list_options): Add "show-hidden-notations". (main): Ditto for verify-options. * g10/import.c (list_standalone_revocation): Implement new list option. * g10/mainproc.c (check_sig_and_print):Ditto * g10/keyedit.c (keyedit_print_one_sig): Ditto. * g10/keylist.c (list_signature_print): Ditto. (show_notation): Handle hidden notation. * sm/keylist.c (oidtranstbl): Add OID for manu. * g10/sign.c (mk_notation_policy_etc): Add arg with_manu and insert extra notation. (write_signature_packets): Request manu notation in certain cases. (make_keysig_packet): Ditto. -- See DETAILS for a description of the format. Obviously this leaks the version of the used GnuPG version (major and minor only) and the fact that it was generated by GnuPG. However, by close inspection of the order of packets and and other meta data similar information can be found. We include this information to help the support desk to figure out problems. Sometimes users have very very old versions and the help desk needs to employ core developers to figure the cause. Having this information may eventually allow for better user support. This feature can be disabled unless certain compliance modes are enabled.
* agent: Allow colon delimited fingerprints for ISTRUSTED.Werner Koch3 days1-2/+14
| | | | * agent/command.c (cmd_istrusted): Improve arg parser.
* gpg: Use the new constants in one function.Werner Koch3 days1-5/+10
| | | | | | | | * g10/sign.c (make_keysig_packet): Use signature class constants. -- Having macros for the signature classes should make the code easier to understand for newbies.
* gpg: Start using macros for the signature classes.Werner Koch3 days2-7/+22
| | | | | * g10/packet.h (SIGCLASS_): New constants. * g10/keydb.h (IS_SUBKEY_SIG): Use them.
* agent: Minor robustness improvementWerner Koch10 days1-1/+1
| | | | | * agent/divert-scd.c (agent_card_ecc_kem): Add extra robustness check for len==0.
* agent: Fix for smartcard decryption returning x-coordinate only.NIIBE Yutaka11 days1-0/+6
| | | | | | | | | | * agent/divert-scd.c (agent_card_ecc_kem): Handle the case where smartcard returns x-coordinate only. -- GnuPG-bug-id: 7709 Signed-off-by: NIIBE Yutaka <[email protected]>
* agent: Another fix for a regression with unknown curves and sshWerner Koch11 days1-0/+1
| | | | | | | | | | | * agent/command-ssh.c (ssh_send_available_keys): Clear the error when skipping. -- Of course we need to clear the error so that in case the last key in the array was skipped, that error is not returned by the function. Updates-commit: 2469dc5aae671247100339493ad7919919a02db9
* Post release updatesWerner Koch2025-07-102-1/+8
| | | | --
* Release 2.5.9gnupg-2.5.9Werner Koch2025-07-101-1/+5
|
* gpg: Display the correct OpenPGP algo name at 3 places.Werner Koch2025-07-082-4/+4
| | | | | | | | | | | | | | * g10/card-util.c (do_change_keyattr): Replace gcry_pk_algo_name by openpgp_pk_algo_name. * g10/keyedit.c (show_key_with_all_names): Ditto. -- For RSA and and DSA the Libgcrypt and the OpenPGP identifiers are the same. But for ECC they are different and thus we need to use the respective function to avoid printing a ? for example EdDSA designated revocation keys. Updates-commit: b7f8dec6325f1c80640f878ed3080bbc194fbc78
* kbx: Make it easier to enable debug outputWerner Koch2025-07-081-17/+30
| | | | | * kbx/kbx-client-util.c: New variable. Uncomment all log_debug and control them by this variable.
* dirmngr: Add option--user-agent and always use a User-Agent header.Werner Koch2025-07-087-0/+29
| | | | | | | | | | | | | | | | | | | * dirmngr/dirmngr.h (opt): Add user_agent. * dirmngr/dirmngr.c (oUserAgent): New. (opts): Add "user-agent". (parse_rereadable_options): Set option. * dirmngr/ks-engine-hkp.c (send_request): Send User-Agent. * dirmngr/ks-engine-http.c (ks_http_fetch): Ditto. * dirmngr/ocsp.c (do_ocsp_request): Ditto. -- Note that the http_open_document function is not used by dirmngr. If it ever gets used we may want to add a way to configure the http.c module with a user-agent string, so that it is send by the send_request function and we do not need to explictly do that in the caller. GnuPG-bug-id: 7715
* doc: Typo fixes and suchWerner Koch2025-07-083-11/+3
| | | | --
* common: Remove openpgp_oid_to_kem_algo.NIIBE Yutaka2025-07-042-34/+9
| | | | | | | | | | | | | * common/openpgp-oid.c (oidtable): Don't include kem_algo. (openpgp_oid_to_kem_algo): Remove. -- The information is now retrieved by openpgp_oid_to_curve + gnupg_get_ecc_params. GnuPG-bug-id: 7698 Signed-off-by: NIIBE Yutaka <[email protected]>
* gpg:ecc: Use the common function of gnupg_get_ecc_params.NIIBE Yutaka2025-07-041-204/+71
| | | | | | | | | | | | * g10/pkglue.c (do_encrypt_kem): From ECC_OID, determine the CURVE by openpgp_oid_to_curve, and then use gnupg_get_ecc_params to get ECC parameters. (do_encrypt_ecdh): Likewise. -- GnuPG-bug-id: 7698 Signed-off-by: NIIBE Yutaka <[email protected]>
* common:ecc: Have a field if the curve of ECC is Weierstrass.NIIBE Yutaka2025-07-042-9/+18
| | | | | | | | | | * common/util.h (struct gnupg_ecc_params): Add is_weierstrauss. * common/kem.c (ecc_table): Update. Also add secp256k1. -- GnuPG-bug-id: 7698 Signed-off-by: NIIBE Yutaka <[email protected]>
* common:kem: Factor out a function to retrieve ECC parameters.NIIBE Yutaka2025-07-034-112/+104
| | | | | | | | | | | | | | | | | * common/util.h (struct gnupg_ecc_params, gnupg_get_ecc_params): New. (ECC_SCALAR_LEN_MAX, ECC_POINT_LEN_MAX, ECC_HASH_LEN_MAX): New. * agent/pkdecrypt.c (ecc_extract_pk_from_key, ecc_extract_sk_from_key): Follow the change of gnupg_get_ecc_params. (ecc_raw_kem, ecc_pgp_kem_decap, composite_pgp_kem_decrypt): Likewise. (ecc_kem_decrypt): Likewise. (get_ecc_params): Move to... * common/kem.c (gnupg_get_ecc_params): ... here * g10/pkglue.c (ECC_POINT_LEN_MAX, ECC_HASH_LEN_MAX): Remove duplicates. -- GnuPG-bug-id: 7649 Signed-off-by: NIIBE Yutaka <[email protected]>
* dirmngr: Use wrapper function for Windows LDAP peculiarities.Werner Koch2025-06-241-10/+68
| | | | | | | | | | * dirmngr/ks-engine-ldap.c (my_ldap_return_with_check): New. (my_ldap_parse_result): New. (my_ldap_parse_page_control): New. (search_and_parse): Use the wrappers. -- Updates-commit: b3dc2305e1ca92dfd75c701cca2fb90832abf7e3
* dirmngr:w32: Fix ldap_* typesZhang Maiyun2025-06-241-2/+8
| | | | | | | | * dirmngr/ks-engine-ldap.c: when compiling with Windows/MinGW headers, `ldap_parse_page_control` and `ldap_parse_result` expects `ULONG`. This has become a hard error when using GCC 15. Signed-off-by: Zhang Maiyun <[email protected]>
* gpg: Do not show the secp256k1 curve in --full-gen-key.Werner Koch2025-06-242-14/+20
| | | | | | | | | | * g10/keygen.c (ask_curve): Add a curve aparemter to no list a curbe in the menu. -- This is non-standard curve and thus has severe interop problems. To avoid accidental selection of this curve, it may now only be given by its name.
* gpg: Re-add the revocation reason to the sigclass in a "rev" record.Werner Koch2025-06-232-2/+8
| | | | | | | | | | | | | * g10/import.c (get_revocation_reason): Fix setting of r_reason. -- Note that gpgme has not yet support for parsing the revocation reason. Due to the split of gpgme it was not tested with gpgmeqt which has its own parser in its regression tests which kicked it when building debian packages. GnuPG-bug-id: 7083 Fixes-commit: 3f825b044b2f1db8773f27a96034c925177fe9f0
* Post release updatesWerner Koch2025-06-202-1/+8
| | | | --
* Release 2.5.8gnupg-2.5.8Werner Koch2025-06-202-2/+17
|
* po: msgmergeWerner Koch2025-06-2027-108/+108
| | | | --
* gpg: Print the revocation reasons as comment in the pub record.Werner Koch2025-06-202-3/+26
| | | | | | | | * g10/keylist.c (list_keyblock_colon): Print the revocation reasons in the pub record's comment field. -- GnuPG-bug-id: 7083
* gpg: Show revocation reason with a standard -k listing.Werner Koch2025-06-208-74/+188
| | | | | | | | | | | | | | | | | | | | | | | | | * g10/packet.h (struct revoke_info): Extend to carry the recocation reason. * g10/getkey.c (sig_to_revoke_info): Extend to strore the reason. (merge_selfsigs): Extend to also store the reason in the public key. * g10/keylist.c (list_signature_print): Factor some code out to ... (print_revocation_reason_comment): new function. (print_revocation_reason): New. (print_key_line): Call new function to print the reason. * g10/import.c (get_revocation_reason): Use print_revocation_reason_comment and factor some code out to ... (revocation_reason_code_to_str): new function. * g10/gpgv.c (revocation_reason_code_to_str): Add stub. * g10/test-stubs.c (revocation_reason_code_to_str): Ditto. -- With this change the revocation reason of a revoked key (but not for a revoked uid or subkey) is now displayed in "gpg -k" listing right below the primary key fingerprint. Before that "gpg --checks-sigs" was required to do show this info. GnuPG-bug-id: 7083
* dirmngr: Do not require a keyserver for KS_FETCH.Werner Koch2025-06-171-5/+0
| | | | | | * dirmngr/server.c (cmd_ks_fetch): Remove check for a keyserver. -- GnuPG-bug-id: 7693
* agent: Fix for the prefix 0x40 in the point representation.NIIBE Yutaka2025-06-061-0/+10
| | | | | | | | | | * agent/pkdecrypt.c (ECC_CURVE25519_INDEX): New. (ecc_pgp_kem_decap): Handle the prefix 0x40 for Curve25519. -- GnuPG-bug-id: 7676 Signed-off-by: NIIBE Yutaka <[email protected]>
* scd: Take care of possible buffer overflow in do_auth.NIIBE Yutaka2025-06-051-1/+3
| | | | | | | | * scd/app-openpgp.c (do_auth): Check the length in the heuristic. -- Signed-off-by: NIIBE Yutaka <[email protected]>
* scd: Fix detecting digest OID in the message to be signed.NIIBE Yutaka2025-06-041-2/+1
| | | | | | | | | | | * scd/app-openpgp.c (do_auth): Don't exclude Ed25519 for removing digest OID. -- GnuPG-bug-id: 7589 Fixes-commit: 3132bd90dc8db9c7fd19ba201918e95891306dc5 Signed-off-by: NIIBE Yutaka <[email protected]>
* po: Update Japanese Translation.NIIBE Yutaka2025-06-031-14/+8
| | | | | | -- Signed-off-by: NIIBE Yutaka <[email protected]>
* gpg,regexp: Use -DREGEXP_PREFIX=gnupg_.NIIBE Yutaka2025-06-033-2/+27
| | | | | | | | | | | | * g10/Makefile.am (AM_CPPFLAGS): Add -DREGEXP_PREFIX=gnupg_ * regexp/Makefile.am (AM_CPPFLAGS): Likewise. * regexp/jimregexp.h (ADD_PREFIX): New. (regcomp, regexec, regerror, regfree): Use ADD_PREFIX. -- GnuPG-bug-id: 7668 Signed-off-by: NIIBE Yutaka <[email protected]>
* gpgtar: Fix releasing PROC correctly.NIIBE Yutaka2025-06-032-3/+3
| | | | | | | | | | | * tools/gpgtar-extract.c (gpgtar_extract): Initialize PROC as NULL, and release at the end for the case of jumping to "leave:" label. * tools/gpgtar-list.c (gpgtar_list): Release at the end. -- Fixes-commit: 29bc14f56f6430294f225b6744012ab1f5df62e6 Signed-off-by: NIIBE Yutaka <[email protected]>
* Post release updates.Werner Koch2025-06-023-4/+8
| | | | | | | -- Note that this also includes a minor fix in the wixlib description which is actually part of gnupg-w32-2.5.7_20250602.wixlib.
* Release 2.5.7gnupg-2.5.7Werner Koch2025-06-022-2/+32
|
* nsis: Install the help files.Werner Koch2025-06-021-2/+15
| | | | | | | | | | * build-aux/speedo/w32/inst.nsi: Install the template files. -- The help files are not very well known but we should at least install some. We also install those for the wks-utils in case we will ever support gpg-wks-server of gpg-mail-tube on Windows. Release 2.5.7
* po: msgmergeWerner Koch2025-06-0226-0/+381
| | | | --
* po: Update German translationWerner Koch2025-06-021-1/+11
| | | | --
* wks: Use templates for the server responses.Werner Koch2025-06-0212-75/+406
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * common/helpfile.c (gnupg_get_template): Add arg locale_override and adjust all callers. * tools/wks-receive.c (struct receive_ctx_s): Add field ct_language. (get_language): New. (new_part): Call it. (wks_receive): Pass language to the result callback. * tools/gpg-wks-client.c (short_locale): New. (main): Get and store the current locale. (command_create): Fix a glitch for the Posteo hack. Insert the locale into the confirmation request. (send_confirmation_response): Ditto. * tools/gpg-wks-server.c (struct server_ctx_s): Add field language. (only_ascii): New. (struct my_subst_vars_s, my_subst_vars_cb, my_subst_vars): New. (send_confirmation_request): Use a template. (send_congratulation_message): Ditto. (check_and_publish): Pss ctx to send_congratulation_message. (command_receive_cb): Add arg language. * doc/wks-utils.txt, doc/wks-utils.de.txt: New. * doc/Makefile.am (helpfiles): Add them. -- GnuPG-bug-id: 7381 Note that the subject is not yet translated or templated due to a missing header encoding function.
* gpg-mail-tube: Support templates.Werner Koch2025-05-305-5/+128
| | | | | | | | | | | | | * tools/gpg-mail-tube.c: Include i18n.h. (main): Call i18n.h (only_ascii): New. (mail_tube_encrypt): Use a template or fallback to the old version. * doc/mail-tube.txt, doc/mail-tube.de.txt: Two standard templates. * doc/Makefile.am (helpfiles): Add them. -- GnuPG-bug-id: 7381
* tools: Add a quoted-printable encoding function.Werner Koch2025-05-304-2/+227
| | | | | | | * tools/mime-maker.c (mime_maker_qp_encode): New. * tools/t-mime-maker.c: New. * tools/Makefile.am (TESTS): New. (module_tests): Add the first test.
* common: Improve helpfile.c to provide a generic template API.Werner Koch2025-05-303-31/+83
| | | | | | | | | | | | | | | * common/util.h (GET_TEMPLATE_CURRENT_LOCALE): New. (GET_TEMPLATE_SUBST_ENVVARS): New. (GET_TEMPLATE_CRLF): New. * common/helpfile.c (findkey_fname): Add arg flags and terminate line with CRLF if requested. (findkey_locale): Replace arg only_current_locale by flags and add arg domain. (gnupg_get_help_string): Factor all code out to ... (gnupg_get_template): new. Add arg domain. Handle SUBST flags. Do not trim tralins spaces with the CRLF flag. * common/t-helpfile.c (main): Require domain name and add two options.
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-27 16:43:58 +0000