| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| | |
|
| |
|
|
|
| |
keyserver in a regular data sig to fetch the signing key.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
keyservers, and auto-key-retrieve is set, try and get a missing key from
the preferred keyserver subpacket when we verify the sig.
* gpgv.c (parse_preferred_keyserver, free_keyserver_spec): Stubs.
* keyserver.c (keyidlist): Use new parse_preferred_keyserver function.
(keyserver_work): Use the passed-in keyserver spec rather than the options
global one.
* keyserver-internal.h, keyserver.c (parse_preferred_keyserver): New
function to take a sig and return a split out keyserver_spec.
(keyserver_import_keyid): Now takes a keyserver_spec.
|
| |
|
|
|
| |
path use a path of "/".
|
| |
|
|
|
|
| |
--keyserver-option honor-keyserver-url, and --list and --verify option
show-std/user-notations.
|
| |
|
|
|
|
|
|
|
| |
merge selfsigs if we have to for honor-keyserver-url. (keyserver_refresh):
Keyserver URL handler moved here. (calculate_keyid_fpr): Removed.
* keydb.h, keyid.c (keystr_from_desc): Calculate a key string from a
KEYDB_SEARCH_DESC.
|
| |
|
|
|
| |
available now, since it's a replacement function.
|
| |
|
|
|
| |
setenv() any longer.
|
| |
|
|
|
|
|
|
|
| |
unsetenv.c.
* setenv.c: Removed.
* unsetenv.c: Removed.
|
| |
|
|
|
| |
platforms. Noted by Roger Sondermann.
|
| |
|
|
|
|
|
|
|
|
|
| |
keyserver to happen even if there is no global keyserver set.
* sig-check.c (do_check_messages): No need to check for Elgamal signatures
any longer. (do_check_messages, do_check, check_key_signature2):
--keyid-format conversion.
* pkclist.c (show_paths, edit_ownertrust): Remove some unused code.
|
| |
|
|
|
|
|
|
| |
* README: Update version and note that HKP is no longer build in.
* configure.ac: Handle --disable-http and other code to properly build
gpgkeys_http.
|
| |
|
|
|
|
|
| |
keyserver interface.
* Makefile.am: Build it.
|
| |
|
|
|
|
|
|
|
|
|
| |
* mainproc.c (check_sig_and_print): track whether we are retrieving a key.
* status.c (status_currently_allowed): New. (write_status_text,
write_status_text_and_buffer): Use it here.
* g10.c: New command --gpgconf-list. (gpgconf_list): New. From Werner on
stable branch.
|
| |
|
|
|
|
| |
* mpi-pow.c (mpi_powm): s/exp/exponent/ to shutup a compiler warning.
From Werner on stable branch.
|
| |
|
|
|
| |
on stable branch.
|
| |
|
|
|
| |
stable branch.
|
| |
|
|
|
|
|
|
|
| |
--ask-cert-level, --keyid-format, and the removal of show-long-keyids, the
quasi-1991 partial length encoding, --export-all, and include-non-rfc.
* acinclude.m4 (GNUPG_SYS_NM_PARSE): Remove a leftover slash in a sed
expression.
|
| |
|
|
|
|
| |
does not recode messages themselves. Remove include-non-rfc
export-option.
|
| |
|
|
|
| |
(show_key_with_all_names, show_basic_key_info): --keyid-format conversion.
|
| |
|
|
|
|
|
| |
out when remaking a self-signature. Noted by Atom Smasher.
* keyserver.c (parse_keyserver_uri): Fix compiler warnings.
|
| |
|
|
|
|
|
| |
Improved URI parser that keeps track of the path information and doesn't
modify the input string. (keyserver_spawn): Tell keyserver plugins about
the path.
|
| |
|
|
|
|
|
|
|
|
| |
(list_one): Use const char* for i18n string helpers.
* keygen.c (do_generate_keypair, read_parameter_file): Really
close the files.
(do_generate_keypair): Create the secret key file using safe
permissions. Noted by Atom Smasher.
|
| |
|
|
|
|
| |
keyrec, parse_keyrec, keyserver_search_prompt), keyedit.c (keyedit_menu),
g10.c (add_keyserver_url, add_policy_url): Fix some compiler warnings.
|
| |
|
|
|
|
|
| |
* gpg.sgml: Document --no-use-embedded-filename and --min-cert-level.
* gpgv.sgml: Removed leftover </para>.
|
| |
|
|
|
|
|
|
|
|
| |
preferred keyserver on "keyserver" command line. Sanity check keyserver
URL before accepting it.
* keyserver-internal.h, g10.c (main), keyserver.c (parse_keyserver_uri):
Add an option to require the scheme:// and change all callers.
(free_keyserver_spec): Make public.
|
| |
|
|
|
| |
large files in the same way as in encode.c.
|
| |
|
|
|
|
|
|
|
|
| |
show. Don't allow a not-shown notation to prevent us from issuing the
proper --status-fd message.
* options.h, g10.c (main): Add show-std/standard-notations and
show-user-notations. show-notations is both. Default is to show standard
notations only during verify. Change all callers.
|
| |
|
|
|
| |
--no-default-keyring.
|
| |
|
|
|
| |
Reported by Todd Vierling.
|
| |
|
|
|
|
|
| |
notations, only standard notations, or both. Change all callers.
* keyserver.c (keyserver_spawn): We still need EXEC_TEMPFILE_ONLY.
|
| |
|
|
|
| |
* app-openpgp.c (do_setattr): Sync FORCE_CHV1.
|
| |
|
|
|
| |
setting use_temp_file because this option has been removed.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
using key_byname to do the heavy lifting. Note that this also fixes an
old problem when the first key on the secret keyring has an unusable stub
primary, but is still chosen.
|
| |
|
|
|
| |
keyring.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
backsigs.
* getkey.c (merge_selfsigs_subkey): Find 0x19 backsigs on subkey selfsigs
and verify they are valid. If DO_BACKSIGS is not defined, fake this as
always valid.
* packet.h, parse-packet.c (parse_signature): Make parse_signature
non-static so we can parse 0x19s in self-sigs.
* main.h, sig-check.c (check_backsig): Check a 0x19 signature.
(signature_check2): Give a backsig warning if there is no or a bad 0x19
with signatures from a subkey.
|
| |
|
|
|
| |
can_handle_critical): Parse and display 0x19 signatures.
|
| |
|
|
|
| |
"hkp". They are not the same thing.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
parse_keyserver_options now returns a success code.
* keyserver.c (parse_keyserver_options): Return error on failure to parse.
Currently there is no way to fail as any unrecognized options get saved to
be sent to the keyserver plugins later. Check length of keyserver option
tokens since with =arguments we must only match the prefix.
(free_keyserver_spec): Moved code from parse_keyserver_url.
(keyserver_work, keyserver_spawn): Pass in a struct keyserver_spec rather
than using the global keyserver option. (calculate_keyid_fpr): New.
Fills in a KEYDB_SEARCH_DESC for a key. (keyidlist): New implementation
using get_pubkey_bynames rather than searching the keydb directly. If
honor-keyserver-url is set, make up a keyserver_spec and try and fetch
that key directly. Do not include it in the returned keyidlist in that
case.
|
| |
|
|
|
| |
* autogen.sh: Added ACLOCAL_FLAGS.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
requires end of line conversion. This is being considered for a UTF8 text
packet. If this doesn't take place, no major harm done. If it does take
place, we'll get a jump on starting the changeover.
* g10.c (main): --no-use-embedded-filename.
* build-packet.c (calc_plaintext, do_plaintext): Do not create illegal
(packet header indicates a size larger than the actual packet) encrypted
data packets when not compressing and using a filename longer than 255
characters.
* keyedit.c (no_primary_warning): Cleanup. (menu_expire): Don't give
primary warning for subkey expiration changes. These cannot reorder
primaries.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
generate_subkeypair): New is_subkey argument to set whether a generated
key is a subkey. Do not overload the ret_sk. This is some early cleanup
to do backsigs for signing subkeys.
* keygen.c (write_keybinding, do_generate_keypair, generate_subkeypair):
Keep track of the unprotected subkey secret key so we can make a backsig
with it.
* keygen.c (make_backsig): New function to add a backsig to a binding sig
of signing subkeys. Currently disabled. (write_keybinding): Call it here,
for signing subkeys only.
* sign.c (make_keysig_packet): Allow generating 0x19 signatures (same as
0x18 or 0x28, but used for backsigs).
* packet.h, build-packet.c (build_sig_subpkt): Add new SIGSUBPKT_SIGNATURE
type for embedded signatures.
|
| |
|
|
|
|
|
|
| |
and properly handle a partial match against an option with an argument.
* keyserver-internal.h, keyserver.c (parse_keyserver_options): Use new
optsep and argsplit functions.
|
| |
|
|
|
| |
they can be called separately.
|
| |
|
|
|
|
|
|
|
| |
from parse_keyserver_options by calling the generic parse_options.
* keyserver.c (keyserver_spawn, keyserver_refresh), g10.c (main), gpgv.c
(main), mainproc.c (check_sig_and_print), import.c (revocation_present):
Change all callers.
|
| |
|
|
|
|
|
|
|
| |
which self-sig we actually chose.
* keyedit.c (menu_expire, menu_set_primary_uid, menu_set_preferences): Use
it here to avoid updating non-used self-sigs and possibly promoting an old
self-sig into consideration again.
|
