| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
| |
bit in the R-block than in the I block, this was wrong at one
place. Fixes bug #419 and hopefully several others.
|
| |
|
|
|
|
| |
remove --sk-comments and --no-sk-comments, and clarify the form of a
non-IETF notation for --sig-notation and --cert-notation.
|
| |
|
|
|
|
|
|
|
|
|
| |
comment packets.
* export.c (do_export_stream): Don't export comment packets any
longer.
* options.h, g10.c (main): Remove --sk-comments and --no-sk-comments
options, and replace with no-op.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
selfsig into both the pk and sk, so that someone importing their sk (which
will get an autoconvert to the pk) won't end up with two selfsigs.
(do_generate_keypair): Call it from here.
* parse-packet.c (can_handle_critical_notation): New. Check for
particular notation tags that we will accept when critical. Currently,
that's only [email protected], since we know how to handle
it (pass it through to a mail program). (can_handle_critical): Call it
from here. (parse_one_sig_subpkt): Sanity check that notations are
well-formed in that the internal lengths add up to the size of the
subpacket.
|
| |
|
|
|
|
| |
Some folks reported that it makes the SCR335 hang less often.
Look at the source on how to re-enable it.
|
| |
|
|
|
|
|
|
| |
(sign_file, clearsign_file, sign_symencrypt_file), g10.c (main), keyedit.c
(sign_uids): Use seconds rather than days internally to calculate
expiration. We no longer need the day-based code as we don't generate v3
keys.
|
| |
|
|
|
| |
default sig expire value when signing in batchmode.
|
| |
|
|
|
| |
use any of these functions any longer.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
(do_generate_keypair): Use it here rather than creating and deleting a
comment packet.
* keygen.c (gen_elg, gen_dsa): Do not put public factors in secret key as
a comment.
* options.h, encode.c (encode_simple, encode_crypt), keygen.c (do_create):
Remove disabled comment packet code.
|
| |
|
|
|
| |
preferences.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
--default-cert-expire options. Suggested by Florian Weimer.
* main.h, keygen.c (parse_expire_string, ask_expire_interval): Use
defaults passed in, or "0" to control what default expiration is.
* keyedit.c (sign_uids), sign.c (sign_file, clearsign_file,
sign_symencrypt_file): Call them here, so that default expiration
is used when --ask-xxxxx-expire is off.
|
| | |
|
| |
|
|
|
| |
fake-curl.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changed all callers.
(ask_passphrase): Add new arg CACHEID and use it in agent mode.
Changed all callers.
(passphrase_clear_cache): New arg CACHEID. Changed all callers.
* cardglue.c (format_cacheid): New.
(pin_cb): Compute a cache ID.
(agent_scd_pksign, agent_scd_pkdecrypt): Use it.
(agent_clear_pin_cache): New.
* card-util.c (change_pin): Clear the PIN cache.
(check_pin_for_key_operation): Ditto.
|
| |
|
|
|
| |
comments as to the size of MAX_LINE and MAX_URL.
|
| |
|
|
|
|
|
|
|
|
| |
no-pubkey and chosen revocation cases. (clean_uid): New function to
clean a user ID of unusable (as defined by mark_usable_uid_certs)
certs.
* keyedit.c (keyedit_menu, menu_clean_uids): Call it here for new
"clean" command that removes unusable sigs from a key.
|
| |
|
|
|
| |
libcurl don't have it. Substitute free() as an alternative.
|
| |
|
|
|
|
| |
specifying user ID via the namehash from --with-colons
--fixed-list-mode --list-keys. Suggested by Peter Palfrader.
|
| |
|
|
|
| |
makefiles now calculate this correctly internally.
|
| | |
|
| |
|
|
|
|
|
| |
a key without specifying which user IDs to sign, and declines to sign
all user IDs, walk through the set of user IDs and prompt for which to
sign.
|
| |
|
|
|
|
|
| |
extra check for a bad passphrase and/or unknown cipher algorithm here.
We'll fail quite happily later, and usually with a better error
message to boot.
|
| |
|
|
|
| |
* sign.c (hash_for): Comments.
|
| |
|
|
|
|
|
| |
* Makefile.am: Build new gpgkeys_hkp.
* curl-shim.c (curl_easy_perform): Cleanup.
|
| |
|
|
|
|
| |
context to curl_writer so we can support multiple fetches in a single
session.
|
| |
|
|
|
| |
curl_easy_perform): Add POST functionality to the curl shim.
|
| |
|
|
|
| |
--with-libcurl or --enable-fake-curl.
|
| |
|
|
|
| |
curl_escape and curl_free.
|
| |
|
|
|
|
|
|
|
|
| |
arguments, try to get the proxy from the environment.
* ksutil.h, ksutil.c (curl_err_to_gpg_err, curl_writer): Copy from
gpgkeys_curl.c.
* gpgkeys_oldhkp.c: Copy from gpgkeys_hkp.c.
|
| |
|
|
|
| |
with --with-libcurl to build the curl version of HKP.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
(add_keyserver_url): Use isascii() to protect the isfoo macros and
to replace direct tests. Possible problems noted by Christian
Biere.
* keyserver.c (parse_keyserver_uri): Ditto.
* g10.c (main): Declare --pipemode deprecated.
* misc.c (deprecated_command): New.
|
| |
|
|
|
|
|
|
|
| |
* card-util.c (card_edit): Add command "verify". Enhanced admin
command to allow optional arguments "on", "off" and "verify".
(card_status): Print private DOs in colon mode.
* app-openpgp.c (do_check_pin): Add hack to allow verification of
CHV3.
|
| | |
|
| |
|
|
|
|
|
| |
old ad-hoc connection code to gpg-agent. We do need this for the
forthcoming diversion of card code to an already running gpg-agent
with card-support.
|
| |
|
|
|
| |
signatures that use hashes other than SHA-1, RIPEMD160, or MD5.
|
| |
|
|
|
| |
AES key sizes.
|
| |
|
|
|
| |
callers. We no longer need to append to $PATH.
|
| |
|
|
|
|
| |
flag 4. Use log_info for errors registering the default secret key.
* g10.c (main): Flag the default keyrings.
|
| |
|
|
|
|
| |
Rather, call keyserver helpers with the full path. This fixes some
PATH-inspired DLL problems on W32. Noted by Carlo Luciano Bianco.
|
| |
|
|
|
|
|
| |
libiconv source.
* mk-w32-dist: Add code to detect presence of source. Calculate a
build number; add option --build-number to overide.
|
| |
|
|
|
| |
not there. This may happen due to typos in the translation.
|
| |
|
|
|
|
| |
size of the object and not the one of its address. Bug reported by
Sascha Kiefer.
|
| |
|
|
|
|
|
|
|
| |
gpgkeys_ldap.c. Print a string, but strip out any CRs.
* gpgkeys_finger.c (get_key), gpgkeys_hkp.c (get_key), gpgkeys_http.c
(get_key): Use it here when outputting key material to canonicalize
line endings.
|
| |
|
|
|
|
|
|
|
| |
* openfile.c (ask_outfile_name): Enable readline completion when prompting
for an output filename.
* plaintext.c (ask_for_detached_datafile): Enable readline completion when
prompting for a detached sig datafile.
|
| |
|
|
|
|
| |
indentation.
* card-util.c (command_generator, card_edit_completion): Ditto.
|
| |
|
|
|
| |
* ldap.m4: Comments.
|
