| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
| |
issuing the prompt. Requested by Todd Vierling.
* samplekeys.asc: Refreshed the keys.
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
explain the roundrobin a bit better.
* sig-check.c (check_key_signature2), import.c (import_one,
import_revoke_cert, chk_self_sigs, delete_inv_parts, collapse_uids,
merge_blocks): Make much quieter during import of slightly munged, but
recoverable, keys. Use log_error for unrecoverable import failures.
|
| |
|
|
|
|
|
|
| |
* sign.c (mk_notation_and_policy): Making a v3 signature with notations or
policy urls is an error, not an info (i.e. increment the errorcount).
Don't print the notation or policy url to stdout since it can be mixed
into the output stream when piping and munge the stream.
|
| |
|
|
|
| |
Use NAME_OF_DEV_URANDOM.
|
| |
|
|
|
|
| |
doesn't bork the RPM install if it cannot complete (necessary for some
upgrade scenarios).
|
| |
|
|
|
|
| |
xxxx" warnings for experimental pk algorithms. An experimental algorithm
may not have a notion of (for example) a keyid (i.e. PGP's x.509 stuff).
|
| | |
|
| |
|
|
|
|
|
| |
to work properly with RPM 4.1 (all files in buildroot must be packaged).
Package and install info files. Tweak the English description. Do not
install gpgv and gpgsplit setuid root.
|
| |
|
|
|
| |
comitted due to changed line numbers.
|
| | |
|
| | |
|
| |
|
|
|
| |
building with native Windows compilers. On request by Brian Gladman.
|
| | |
|
| | |
|
| |
|
|
|
| |
later. Suggested by Kurt Garloff.
|
| | |
|
| |
|
|
|
| |
* README: Note problem with gcc < 2.96 and non-gnu as.
|
| |
|
|
|
| |
mode.
|
| |
|
|
|
|
|
|
| |
--status-fd tag.
* README: Add a note about the SunOS symbol underscore problem and how to
fix it.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Provide a signing-key-is-revoked flag. Change all callers.
* status.h, status.c (get_status_string): New REVKEYSIG status tag for a
good signature from a revoked key.
* mainproc.c (do_check_sig, check_sig_and_print): Use it here.
* import.c (import_revoke_cert, merge_blocks, merge_sigs): Compare actual
signatures on import rather than using keyid or class matching. This does
not change actual behavior with a key, but does mean that all sigs are
imported whether they will be used or not.
|
| | |
|
| |
|
|
|
|
|
| |
trustdb version record.
* keylist.c (public_key_list): Use it here for the new "tru" record.
|
| |
|
|
|
|
|
| |
check_key_signature2): Allow passing NULLs for unused parameters in the x2
form of each function to avoid the need for dummy variables. getkey.c,
mainproc.c: Change all callers.
|
| |
|
|
|
|
| |
(ask_algo): Provide key flags for DSA, Elgamal_e, and Elgamal subkeys.
(generate_keypair): Provide key flags for the default DSA/Elgamal keys.
|
| |
|
|
|
|
|
|
| |
the primary key if the key making the signature is the primary key.
* parse-packet.c (parse_signature): No need to reserve 8 bytes for the
unhashed signature cache any longer.
|
| |
|
|
|
|
|
|
| |
the signature flags (1-3/L/R/P/N/X), Document expandos %g and %p. Note
the default --personal-digest-preferences are "H2".
* DETAILS: Document the --attribute-fd data.
|
| |
|
|
|
|
|
|
|
|
|
| |
and signer's primary fingerprint (%p).
* tdbio.h, tdbio.c (create_version_record, tdbio_write_nextcheck,
tdbio_read_record, tdbio_write_record): Force a 0 into the trust_model
field. This is to help smooth the 1.2->1.4 switchover, as otherwise a 1.4
trustdb could be rebuilt as classic on 1.2 while still claiming to be a
non-classic trust model.
|
| |
|
|
|
| |
importing demo keys.
|
| |
|
|
|
| |
ascii_isspace includes \r and \n.
|
| |
|
|
|
|
|
|
|
| |
This avoids a warning on compilers that support but complain about
unsigned long long.
* util.h (ascii_isspace): New variation on isspace() that is immune from
locale changes.
|
| |
|
|
|
|
| |
this version, and was causing some build problems on quasi-posix platforms
(Solaris and Forte c89).
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
NETLIBS so we don't need to force other platforms to pull in the netlibs
when they aren't actually needed.
|
| |
|
|
|
|
|
|
|
|
| |
question. (menu_expire): When changing expiration dates, don't replace
selfsigs on revoked uids since this would effectively unrevoke them.
There is also no point in replacing expired selfsigs. This is bug #181.
* g10.c (main): Add --rfc2440 alias for --openpgp since in a few months,
they won't be the same thing.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
since it is occasionally written that way.
* mainproc.c (check_sig_and_print): Grammar fix ;)
|
| |
|
|
|
| |
vice versa.
|
| |
|
|
|
| |
field as well as the name field, and allow mixing fields when it is set.
|
| | |
|
| |
|
|
|
| |
permission warnings in the gpg.conf file about the homedir.
|
| |
|
|
|
|
|
|
|
|
|
| |
* keyedit.c (sign_uids): Do not allow signing a user ID without a
self-signature. --expert overrides.
* options.skel: Use subkeys.pgp.net as the default keyserver.
* trustdb.c (validate_one_keyblock): Certifications on revoked or expired
uids do not count in the web of trust.
|
| |
|
|
|
|
| |
Forte c89 on Solaris which seems to define only the function call half of
the two pairs by default.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
listing secret keys since they can be incorrect and/or misleading. This
is a temporary kludge, and will be handled properly in 1.9/2.0.
* signal.c (init_one_signal, pause_on_sigusr, do_block): Only use
sigprocmask() if we have sigset_t, and only use sigaction() if we have
struct sigaction. This is for Forte c89 on Solaris which seems to define
only the function call half of the two pairs by default.
(pause_on_sigusr): Typo. (do_block): If we can't use sigprocmask() and
sigset_t, try to get the number of signals from NSIG as well as MAXSIG,
and if we can't, fail with an explanation.
|
| |
|
|
|
| |
all key material packets to avoid possible corruption of keyrings.
|
| |
|
|
|
| |
descriptor gets closed. Fixes bug reported by Juan F. Codagnone.
|
