| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
| |
--hidden-encrypt-to/--hidden-recipient, and long algorithm name support
everywhere.
|
| |
|
|
|
|
|
|
|
|
|
| |
Prompt for and create a trust signature with "tsign". This is functional,
but needs better UI text.
* build-packet.c (build_sig_subpkt): Able to build trust and regexp
subpackets.
* pkclist.c (do_edit_ownertrust): Comment.
|
| |
|
|
|
|
|
|
|
|
|
| |
algorithm name (CAST5, SHA1) rather than the short form (S3, H2).
* main.h, keygen.c (keygen_get_std_prefs), keyedit.c (keyedit_menu):
Return and use a fake uid packet rather than a string since we already
have a nice parser/printer in keyedit.c:show_prefs.
* main.h, misc.c (string_to_compress_algo): New.
|
| |
|
|
|
| |
the Sxxx and Hxxx format for cipher and digest names.
|
| |
|
|
|
|
|
|
|
|
| |
* keydb.h, encode.c (write_pubkey_enc_from_list), g10.c (main), pkclist.c
(build_pk_list): Add --hidden-recipient (-R) and --hidden-encrypt-to,
which do a single-user variation on --throw-keyid. The "hide this key"
flag is carried in bit 0 of the pk_list flags field.
* keyserver.c (parse_keyrec): Fix shadowing warning.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
encode_crypt), sign.c (write_plaintext_packet): Use wipememory() instead
of memset() to wipe sensitive memory as the memset() might be optimized
away.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
like "fully trusted", "marginally trusted", etc. (get_min_ownertrust):
New. Return minimum ownertrust. (update_min_ownertrust): New. Set
minimum ownertrust. (check_regexp): New. Check a regular epression
against a user ID. (ask_ownertrust): Allow specifying a minimum value.
(get_ownertrust_info): Follow the minimum ownertrust when returning a
letter. (clear_validity): Remove minimum ownertrust when a key becomes
invalid. (release_key_items): Release regexp along with the rest of the
info. (validate_one_keyblock, validate_keys): Build a trust sig chain
while validating. Call check_regexp for regexps. Use the minimum
ownertrust if the user does not specify a genuine ownertrust.
* pkclist.c (do_edit_ownertrust): Only allow user to select a trust level
greater than the minimum value.
* parse-packet.c (can_handle_critical): Can handle critical trust and
regexp subpackets.
* trustdb.h, trustdb.c (clear_ownertrusts), delkey.c (do_delete_key),
import.c (import_one): Rename clear_ownertrust to clear_ownertrusts and
have it clear the min_ownertrust value as well.
* keylist.c (list_keyblock_print): Indent uid to match pub and sig.
|
| |
|
|
|
|
| |
handle the regex stuff. This means they can't fully handle trust sigs
with an attached regex either.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
menu_addrevoker), keylist.c (list_keyblock_print, print_fingerprint): Show
"T" or the trust depth for trust signatures, and add spaces to some
strings to make room for it.
* packet.h, parse-packet.c (dump_sig_subpkt, parse_one_sig_subpkt,
parse_signature): Parse trust signature values.
* tdbio.h, tdbio.c (tdbio_read_record, tdbio_write_record): Reserve a byte
for the minimum ownertrust value (for use with trust signatures).
|
| | |
|
| | |
|
| |
|
|
|
|
| |
used for cipher/hash plugins, and include gpgv, gpgsplit, and the new
gnupg.7 man page.
|
| |
|
|
|
| |
protocol and program version.
|
| |
|
|
|
| |
* gpg.sgml: Clarify --force-mdc, and document --disable-mdc.
|
| |
|
|
|
|
|
| |
parse_import_options), g10.c (main): New import-option "convert-sk-to-pk"
to convert a secret key into a public key during import. It is on by
default.
|
| |
|
|
|
| |
GNUified the indentation style.
|
| |
|
|
|
| |
has been assigned.
|
| |
|
|
|
| |
platforms where INTLLIBS is set.
|
| | |
|
| |
|
|
|
| |
internal regex code or not.
|
| |
|
|
|
| |
regexec.c: Add new regex files from glibc 2.3.1.
|
| |
|
|
|
|
|
|
|
| |
* keylist.c: (print_pubkey_info): New.
(print_seckey_info): New.
* main.h: Prototypes for the new functions.
* delkey.c (do_delete_key): Use it here.
* revoke.c (gen_desig_revoke): Ditto.
|
| | |
|
| | |
|
| |
|
|
|
|
|
| |
(ALL_LINGUAS): Removed all except for de. During development it
might not be a good idea to keep all of them - they get outdated
too soon and diff files will be far too large.
|
| |
|
|
|
| |
due to non-working modules/as. Suggested by Gordon Worley.
|
| |
|
|
|
| |
names. Suggested by Simon Josefsson.
|
| |
|
|
|
|
| |
be enhanced to also show the current trust level. Suggested by
Florian Weimer.
|
| |
|
|
|
| |
how it works with LDAP.
|
| |
|
|
|
| |
addresses until one answers for both MINGW32 and not MINGW32.
|
| |
|
|
|
| |
before the options file is loaded.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
--pgp2 mode as PGP 2 can't handle the unknown length literal packet.
Reported by Michael Richardson.
|
| | |
|
| |
|
|
|
|
| |
(parse_hkp_index): Use new keyserver key listing format, and add support
for disabled keys via include-disabled.
|
| |
|
|
|
|
| |
(printquoted): Use %-encoding instead of \-encoding. (search_key): Use new
keyserver key listing format.
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
show_prompt, keyserver_search_prompt, keyserver_spawn): Go to version 1 of
the keyserver protocol. This is a better design, similar to
--with-colons, that allows for keys with multiple user IDs rather than
using multiple keys. It also matches the machine readable pksd format.
Also use a prettier --search-keys listing format that can fill different
size windows (currently set at 24 lines).
|
| | |
|
| |
|
|
|
| |
NetBSD. Reported by Christian Biere.
|
| |
|
|
|
|
|
|
| |
connected to a file. This is to avoid NetBSD to complain about
set{u,g}id programs invoked with fd 0, 2 closed. Reported by
Cristian Biere.
(start_gatherer): Likewise. Reordered code.
|
| |
|
|
|
|
| |
(do_generate_keypair): Use it to print the fingerprint.
(generate_subkeypair): Likewise.
|
| | |
|
