| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | |
|
| |
|
|
|
|
|
|
| |
curl_writer_finalize): New functionality to handle binary format keys by
armoring them for input to GPG.
* gpgkeys_curl.c (get_key), gpgkeys_hkp.c (get_key): Call it here.
|
| |
|
|
|
|
| |
* keyid.c (usagestr_from_pk): Remove special PUBKEY_USAGE_CERT flag.
It's no longer needed.
|
| |
|
|
|
|
|
| |
causes confusing warning messages when importing a PGP-exported key
that contains a secret key without selfsigs followed by the public
key.
|
| |
|
|
|
|
| |
for no_terminal so we don't try to open("/dev/tty") when invoked with
--no-tty.
|
| | |
|
| | |
|
| |
|
|
|
| |
--fetch-keys so we don't rebuild the trustdb after each fetch.
|
| | |
|
| |
|
|
|
|
|
| |
keyserver_fetch): Set a flag to indicate that we're doing a direct URI
fetch so we can differentiate between a keyserver operation and a URI
fetch for protocols like LDAP that can do either.
|
| | |
|
| |
|
|
|
| |
for the key-not-found error.
|
| |
|
|
|
|
|
|
|
|
| |
when fetching a URI.
* keyserver-internal.h, keyserver.c (keyserver_fetch): New. Fetch an
arbitrary URI using the keyserver helpers.
* gpg.c (main): Call it from here for --fetch-keys.
|
| |
|
|
|
|
| |
* gpgkeys_curl.c (get_key): Give key-not-found error if no data is found
(or file itself is not found) during a fetch.
|
| | |
|
| |
|
|
|
|
| |
This causes a warning on Sun's cc. Do the internal regex code as well for
consistency.
|
| |
|
|
|
| |
pointer.
|
| |
|
|
|
| |
declaration).
|
| |
|
|
|
|
| |
* secmem.c, assuan-buffer.c, dotlock.c: Fix a few warnings from printf-ing
%p where the arg wasn't void *.
|
| |
|
|
|
|
| |
ifdeffed out. This causes a warning on Sun's cc. Do sha512.c as well for
consistency.
|
| |
|
|
|
|
|
|
|
| |
revoker record. Moved from keyedit.c:show_key_with_all_names_colon.
* keylist.c (list_keyblock_colon): Use it here ...
* keyedit.c (show_key_with_all_names_colon): ... and here.
|
| |
|
|
|
|
|
|
|
| |
since we may unprotect it.
* main.h, g10.c (main), revoke.c (gen_desig_revoke): Add local user
support so users can use -u with --desig-revoke. This bypasses the
interactive walk over the revocation keys.
|
| |
|
|
|
| |
"xxxxx-minimal", and "minimize".
|
| |
|
|
|
| |
options.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
"clean", and add "minimize".
* import.c (parse_import_options): Make help text match the export
versions of the options.
* options.h, export.c (parse_export_options, do_export_stream): Reduce
clean options to two: clean and minimize.
* trustdb.h, trustdb.c (clean_one_uid): New function that joins uid
and sig cleaning into one for a simple API outside trustdb.
|
| |
|
|
|
|
| |
delimited with a colon-space pair. Therefore a line such as "Comment:
" is actually legal, albeit not particularly useful.
|
| |
|
|
|
|
|
|
|
|
|
| |
cleaning from one convenient place.
* options.h, import.c (parse_import_options, clean_sigs_from_all_uids,
import_one): Reduce clean options to two: clean and minimize.
* parse-packet.c (setup_user_id): Remove. (parse_user_id,
parse_attribute): Just use xmalloc_clear instead.
|
| |
|
|
|
| |
simpler implementation.
|
| |
|
|
|
| |
command.
|
| |
|
|
|
|
| |
(clean_uids_from_key): Fix display bug where sigs cleaned for other
reasons caused a uid to appear as if it had been compacted.
|
| | |
|
| |
|
|
|
|
| |
import_one): Add import-minimal option. Similar to export-minimal, except
it works on the way in.
|
| |
|
|
|
|
|
|
| |
non-selfsigs from key during cleaning. Change all callers.
* export.c (do_export_stream): Use it here so we don't need additional
minimize code in the export path.
|
| |
|
|
|
| |
336211 by Javier Fernández-Sanguino Peña.
|
| |
|
|
|
|
|
|
|
|
|
| |
speaking this should be only in gpg_CPPFLAGS, but then we have to
compile everything twice for gpg and gpgv.
* apdu.c (open_pcsc_reader): Fix double free.
* gpg.c (main) [__APPLE__]: Default the PCSC driver to the OS X
location. Suggested by Patty A. Hardy.
|
| |
|
|
|
|
| |
--cflags. This is needed for OS X since libusb brings in dependencies
to various Apple libraries.
|
| | |
|
| | |
|
| |
|
|
|
| |
the sigs that are cleaned. Suggested by Dirk Traulsen and many others.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
so keyserver mangled keys with doubled user IDs can be properly
cleaned - possibly sigs on the different user IDs cancel each other
out.
* import.c (parse_import_options), export.c (parse_export_options):
List "xxx-clean" before the longer options so we don't end up with a
partial match on the longer options.
* trustdb.c (clean_uids_from_key): Return proper number of cleaned
user IDs. Don't count user IDs as cleaned unless we actually delete
something.
|
| |
|
|
|
|
|
| |
--no-require-backsigs.
* DETAILS: Clarify Key-Usage.
|
| |
|
|
|
|
| |
adding a cert-only designated revoker. Code was looking for a key with
sign ability, and not cert ability. Noted by Timo Schulz.
|
| | |
|
| |
|
|
|
|
| |
algo capabilities if parameter file doesn't specify them. Noted by Timo
Schulz.
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
| |
* configure.ac: Remove the backsig configure options since this is all
done at runtime now.
|
| |
|
|
|
|
|
|
|
| |
add 0x19 backsigs to old keys that don't have them.
* misc.c (parse_options): Fix build warning.
* main.h, keygen.c (make_backsig): Make public.
|
| |
|
|
|
|
| |
(signature_check2): Add --require-backsigs and --no-require-backsigs.
Currently defaults to --no-require-backsigs.
|
