| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
| |
fix_pks_corruption): It's really PKS corruption, not HKP corruption.
Keep the old repair-hkp-subkey-bug command as an alias.
* g10.c (main): Rename --no-version to --no-emit-version for consistency.
Keep --no-version as an alias.
|
| |
|
|
|
| |
some platforms.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
it may change in the future.
* samplekeys.asc: Updated.
* gpg.sgml: Document "revuid". Clarify that --openpgp resets --pgpX.
Some cleanup of --no-xxx options, make sure that all SGML tags are closed,
clarify --pgp8 allows SHA-256, and document --no-emit-version.
* Makefile.am: Allow CVS version to build without faqprog.pl.
|
| |
|
|
|
| |
"index". Local fix for GnuPG.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
DNS SRV is usable.
* README: Document the various --disable-xxx switches, and add a note
about existing keys that may use one of the missing ciphers as a
preference. Update copyright date.
* NEWS: Add note about SHA-256/384/512.
* acinclude.m4: Fix URL to faqprog.pl.
|
| |
|
|
|
|
| |
* sign.c (sign_file, clearsign_file, sign_symencrypt_file): Remove unused
code.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
than a CERT.
* import.c (delete_inv_parts): Discard any key signatures that aren't key
types (i.e. 0x00, 0x01, etc.)
* g10.c (main): Add deprecated option warning for --list-ownertrust. Add
--compression-algo alias for --compress-algo. Change --version output
strings to match "showpref" strings, and make translatable.
* status.c (do_get_from_fd): Accept 'y' as well as 'Y' for --command-fd
boolean input.
* trustdb.c: Fix typo (DISABLE_REGEXP -> DISABLE_REGEX)
* keyedit.c (show_key_with_all_names_colon): Show no-ks-modify flag.
|
| |
|
|
|
|
|
|
| |
little only for Intel CPUs.
* configure.ac: Check for ranlib and ar. This is required for
cross compiling.
|
| | |
|
| |
|
|
|
| |
Stefan Bellon.
|
| |
|
|
|
|
|
|
|
| |
keyserver option. Defaults to on.
* passphrase.c (agent_get_passphrase): Fix memory leak with symmetric
messages. Fix segfault with symmetric messages. Fix incorrect prompt
with symmetric messages.
|
| |
|
|
|
|
|
| |
A records if necessary.
* Makefile.am, srv.h, srv.c: New DNS SRV handling code.
|
| |
|
|
|
| |
capabilities.
|
| |
|
|
|
|
|
|
|
| |
armored key. (main): Accept "try-dns-srv" option.
* Makefile.am: Use @CAPLIBS@ to link in -lcap if we are using
capabilities. Use @SRVLIBS@ to link in the resolver if we are using DNS
SRV.
|
| | |
|
| |
|
|
|
| |
--disable-dns-srv to disable it.
|
| |
|
|
|
|
| |
the output of implementations which don't run for PGP 2
compatibility won't get garbled.
|
| |
|
|
|
| |
capabilities.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
fully valid keys so that disabled keys are still counted in the web of
trust. (get_ownertrust_with_min): Do the same for the minimum ownertrust
calculation.
* parse-packet.c (dump_sig_subpkt): Show the notation names for
not-human-readable notations. Fix cosmetic off-by-one length counter.
* options.skel: Add explantion and commented-out
"no-mangle-dos-filenames".
* mainproc.c (proc_encrypted): Make string translatable.
* keyserver.c (keyserver_spawn): Quote ':', '%', and any 8-bit characters
in the uid strings sent to the keyserver helper.
* keyring.c (keyring_rebuild_cache): Lock the keyring while rebuilding the
signature caches to prevent another gpg from tampering with the temporary
copy.
* keygen.c (keygen_set_std_prefs): Include AES192 and AES256 in default
prefs.
* keyedit.c (show_prefs): Make strings translatable.
* keydb.c: Double the maximum number of keyrings to 40.
* gpgv.c (main): Fix bug #113 - gpgv should accept the
--ignore-time-conflict option.
* g10.c (main): --openpgp disables --pgpX. Double the amount of secure
memory to 32k (keys are getting bigger these days).
* Makefile.am: Makefile.am: Use @CAPLIBS@ to link in -lcap if we are using
capabilities.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
about the key in the data sent to the keyserver helper. This allows the
helper to use it in instructing a remote server which may not have any
actual OpenPGP smarts in parsing keys.
* main.h, export.c (export_pubkeys_stream, do_export_stream): Add ability
to return only the first match in an exported keyblock for keyserver
usage. This should be replaced at some point with a more flexible
solution where each key can be armored seperately.
|
| |
|
|
|
| |
now.
|
| | |
|
| |
|
|
|
|
| |
marks all secret keys as ultimately trusted, adds the signature caches,
and checks the trustdb. Moved from the scripts directory.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
(segfault). Noted by Marcus Brinkmann. Push and reinitialize textmode
filter for each file in a multiple file list.
* packet.h, getkey.c (fixup_uidnode), keyedit.c (show_prefs): Set and show
the keyserver no-modify flag.
* keygen.c (add_keyserver_modify): New. (keygen_upd_std_prefs): Call it
here. (keygen_set_std_prefs): Accept "ks-modify" and "no-ks-modify" as
prefs to set and unset keyserver modify flag.
|
| |
|
|
|
|
| |
indicate a string with no maximum size. This prevents early truncation of
strings that contain control chars which are expanded into \xXX form.
|
| |
|
|
|
|
|
| |
disables both the real IDEA and the possibility of using the IDEA loadable
module. Remove the --disable-dynload option since it is no longer
meaningful (it is only used if idea-stub is used).
|
| |
|
|
|
|
|
|
| |
ciphers.
* main.h, misc.c (idea_cipher_warn): We don't need this if IDEA has been
disabled.
|
| |
|
|
|
|
| |
TWOFISH, TIGER192, SHA256, and SHA384/512. Add a --enable-minimal that
disables all of them as well as --disable-exec.
|
| |
|
|
|
| |
if they are disabled.
|
| |
|
|
|
| |
* md.c (load_digest_module): #ifdef all optional digests.
|
| |
|
|
|
|
| |
Use 3DES for the s2k cipher in --openpgp mode. (print_mds): #ifdef all of
the optional digest algorithms.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
per-desc item. Merge into one function since 'force_exact' is no longer
needed. (key_byname): Use new classify_user_id function, and new exact
flag in KEYDB_SEARCH_DESC.
* keyring.h, keyring.c (keyring_search): Return an optional index to show
which KEYDB_SEARCH_DESC was the matching one.
* keydb.h, keydb.c (keydb_search): Rename to keydb_search2, and pass the
optional index to keyring_search. Add a macro version of keydb_search
that calls this new function.
* export.c (do_export_stream): If the keyid! syntax is used, export only
that specified key. If the key in question is a subkey, export the
primary plus that subkey only.
|
| |
|
|
|
|
|
|
|
| |
* g10.c (print_hex, print_mds): Print long hash strings a lot neater.
This assumes at least an 80-character display, as there are a few other
similar assumptions here and there. Users who need unformatted hashes can
still use with-colons. Check that SHA384 and 512 are available before
using them as they are no longer always available.
|
| |
|
|
|
| |
GNUPG_LIBEXECDIR so it can be easily overridden at make time.
|
| |
|
|
|
|
| |
makefiles can override it. Verify that we have a 64-bit type before
building tiger.c or sha512.c. Add uint64_t as a possible 64-bit type.
|
| |
|
|
|
| |
TIGER if specifically enabled by the 64-bit type check in configure.
|
| | |
|
| |
|
|
|
| |
can be easily overridden at make time.
|
| |
|
|
|
|
|
|
| |
armor Hash: header.
* g10.c (print_hex): Print long hash strings a little neater. (print_mds):
Add the new SHAs to the hash list.
|
| |
|
|
|
|
| |
* Makefile.am, algorithms.h, md.c (load_digest_module,
string_to_digest_algo): Add read-only support for the new SHAs.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
(treat as a v4 revocation).
* import.c (print_import_check): Do not re-utf8 convert user IDs.
|
| |
|
|
|
| |
keyid, but rather a text string from the user ID.
|
| | |
|
| |
|
|
|
|
|
|
| |
sig records.
* keylist.c (list_keyblock_colon), mainproc.c (list_node): Show trust sig
information in with-colons sig records.
|
