| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
| |
saved codeset.
(agent_open): Add arg ORIG_CODESET and switch back to it in case
of error. Changed all callers.
* zh_TW.po, fr.po, cs.po: Updated.
|
| | |
|
| |
|
|
|
|
| |
match key expiry unless --ask-cert-expire is set. Suggested by Peter
Palfrader.
|
| | |
|
| |
|
|
|
|
| |
* g10.c, options.h: New option --exit-on-status-write-error.
* status.c (write_status_text): Make use of this option.
|
| |
|
|
|
|
|
|
|
| |
to enable the uid walking when signing a key with no uids specified to
sign.
* keylist.c (list_keyblock_print): Fix silly typo. Noted by Greg
Sabino Mullane.
|
| |
|
|
|
|
|
|
|
|
|
| |
protocols we handle. Directly pass them to curl or fake-curl and see if
an error comes back.
* curl-shim.h, curl-shim.c (handle_error), ksutil.c (curl_err_to_gpg_err):
Add support for CURLE_UNSUPPORTED_PROTOCOL in fake curl.
* Makefile.am: Don't need -DFAKE_CURL any longer since it's in config.h.
|
| |
|
|
|
|
|
|
| |
to see if it can handle a particular protocol. (keyserver_typemap): Call
it here.
* Makefile.am: Pull in libcurl for curl_version_info() if used.
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
* cardglue.c (open_card): Use it.
|
| |
|
|
|
|
|
|
|
|
| |
* export.c (parse_export_options): New option
export-reset-subkey-passwd.
(do_export_stream): Implement it.
* misc.c (get_libexecdir): New.
* keyserver.c (keyserver_spawn): Use it
|
| |
|
|
|
| |
* gpg.sgml: Clarify --throw-keyid and --hidden-recipient a bit.
|
| |
|
|
|
|
| |
* ttyio.c (do_get): Move printing of the prompt after disabling
echo. Suggested by Scott Worley.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
when compacting a uid. There is no reason to make an attacker's job
easier - this way they only have a revocation which is useless in
bringing the uid back.
* keydb.h, kbnode.c (undelete_kbnode): Removed. No longer needed.
* import.c (chk_self_sigs): Allow a uid revocation to be enough to
allow importing a particular uid (no self sig needed). This allows
importing compacted uids.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
stays up to date.
* gpgkeys_http.c: Don't need to define HTTP_PROXY_ENV here since it's
in ksutil.h.
* gpgkeys_curl.c (get_key, main), gpgkeys_hkp.c (main): Pass AUTH
values to curl or curl-shim.
* curl-shim.c (curl_easy_perform), gpgkeys_curl.c (main),
gpgkeys_hkp.c (main): Use curl-style proxy semantics.
|
| |
|
|
|
| |
CURLOPT_USERPWD option for HTTP auth.
|
| |
|
|
|
|
|
| |
search_key): No longer need to pass a proxyauth.
* gpgkeys_http.c (get_key): Pass auth outside of the URL.
|
| |
|
|
|
| |
to handle the new different auth for regular files and proxies.
|
| |
|
|
|
|
|
| |
(send_request, http_open, http_open_document): Clean up auth code.
Can now support different auth for a proxy and the file being
requested via that proxy. Unescape auth strings.
|
| |
|
|
|
| |
variable that is also being initialized. Noted by Nelson H. F. Beebe.
|
| |
|
|
|
| |
clean curl-config.
|
| |
|
|
|
|
| |
search_key): Fix http_open/http_open_document calls to pass NULL for
auth and proxyauth since these programs pass them in the URL.
|
| |
|
|
|
| |
in auth and proxyauth.
|
| |
|
|
|
| |
and proxyauth that can override the in-url auth.
|
| |
|
|
|
| |
string.
|
| | |
|
| |
|
|
|
| |
tested.
|
| | |
|
| | |
|
| |
|
|
|
| |
gpgkeys_oldhkp.c (main): Properly handle double slashes in paths.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
* g10.c, options.h: New option --no-interactive-selection.
* keyedit.c (keyedit_menu): Use it.
|
| |
|
|
|
|
|
| |
about missing timestamp or keyid. In case we don't use that key
there won't be no further error and thus gpg does not need to
return with an error.
|
| |
|
|
|
|
|
|
|
|
| |
* options.h, import.c (parse_import_options, import_one): Add
import-clean-uids option to automatically compact unusable uids when
importing. Like import-clean-sigs, this may nodify the local keyring.
* trustdb.c (clean_uids_from_key): Only allow selfsigs to be a
candidate for re-inclusion.
|
| |
|
|
|
| |
disable. This is gcc4 specific.
|
| |
|
|
|
|
|
|
| |
import_one): Add import-clean-sigs option to automatically clean a key
when importing. Note that when importing a key that is already on the
local keyring, the clean applies to the merged key - i.e. existing
superceded or invalid signatures are removed.
|
| |
|
|
|
|
| |
that even after keys may be merged together, we only have one chosen
selfsig.
|
| |
|
|
|
| |
import-unusable-sigs is now a noop.
|
| |
|
|
|
|
|
|
|
| |
menu_clean_subkeys_from_key), trustdb.h, trustdb.c
(clean_subkeys_from_key): Remove subkey cleaning function. It is of
very limited usefulness since it cannot be used on any subkey that can
sign, and can only affect multiple selfsigs on encryption-only
subkeys.
|
| |
|
|
|
|
|
|
| |
kbnode.
* trustdb.c (clean_uids_from_key): Further tweak the algorithm so that
the last good selfsig is kept when the chosen selfsig is a revocation.
|
| |
|
|
|
|
| |
(menu_clean_uids_from_key): Tweak algorithm to preserve the last
selfsig which helps prevent uid resurrections.
|
| |
|
|
|
| |
Noted by Joe Vender.
|
| |
|
|
|
|
|
| |
and revoked uids in fixup_uidnode(). No need to special case in
merge_selfsigs_main(). This also means that an expired uid will have
its selfsig tagged with chosen_selfsig.
|
| |
|
|
|
|
|
|
| |
do_export_stream): Add export-options export-clean-sigs,
export-clean-uids, export-clean-subkeys, and export-clean which is all
of the above. Export-minimal is the same except it also removes all
non-selfsigs. export-unusable-sigs is now a noop.
|
