aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* * configure.ac: Allow the DNS stuff to work on OSX by trying theDavid Shaw2006-03-182-3/+28
| | | | | Apple-specific BIND_8_COMPAT.
* * keyserver.c (keyserver_import_cert): Handle the IPGP CERT type forDavid Shaw2006-03-173-24/+43
| | | | | | | both the fingerprint alone, and fingerprint+URL cases. * getkey.c (get_pubkey_byname): Minor cleanup.
* * cert.c (get_cert): Handle the fixed IPGP type with fingerprint.David Shaw2006-03-165-19/+71
|
* * keyserver-internal.h, keyserver.c (keyserver_import_pka): Use theDavid Shaw2006-03-144-31/+61
| | | | | | | | | | | | same API as the other auto-key-locate fetchers. * getkey.c (get_pubkey_byname): Use the fingerprint of the key that we actually fetched. This helps prevent problems where the key that we fetched doesn't have the same name that we used to fetch it. In the case of CERT and PKA, this is an actual security requirement as the URL might point to a key put in by an attacker. By forcing the use of the fingerprint, we won't use the attacker's key here.
* * keyserver-internal.h, keyserver.c (keyserver_spawn, keyserver_work,David Shaw2006-03-144-26/+40
| | | | | | keyserver_import_cert, keyserver_import_name, keyserver_import_ldap): Pass fingerprint info through.
* * main.h, import.c (import_one): Optionally return the fingerprint ofDavid Shaw2006-03-144-26/+43
| | | | | | the key being imported. (import_keys_internal, import_keys_stream, import): Change all callers.
* * sig-check.c (signature_check2): Print the backsig warning when thereDavid Shaw2006-03-123-8/+20
| | | | | | | | | is no backsig present. Give a URL for more information. * keyedit.c (menu_backsign): Small tweak to work properly with keys originally generated with older GnuPGs that included comments in the secret keys.
* * samplekeys.asc: Update 99242560 to have a signing subkey backsig.David Shaw2006-03-112-1840/+1873
|
* * gpg.sgml: Clarify new notation delete feature.David Shaw2006-03-092-2/+8
|
* * build-packet.c (string_to_notation): Add ability to indicate a notationDavid Shaw2006-03-093-39/+85
| | | | | | | | to be deleted with a '-' prefix. * keyedit.c (menu_set_notation): Use it here to allow deleting a notation marked with '-'. This works with either "-notation" or "-notation=value".
* keep on walking towards rc3Werner Koch2006-03-0929-15107/+15974
|
* Updatedgnupg-1.4.3rc2Werner Koch2006-03-093-68/+108
|
* Preparing for an RC23Werner Koch2006-03-096-18/+29
|
* * gpg.sgml: Document "notation".David Shaw2006-03-092-6/+17
|
* * keyedit.c (menu_set_notation): New function to set notations onDavid Shaw2006-03-092-4/+250
| | | | | | | self-signatures. (keyedit_menu): Call it here. (tty_print_notations): Helper. (show_prefs): Show notations in "showpref".
* * mainproc.c (get_pka_address), keylist.c (show_notation): RemoveDavid Shaw2006-03-093-92/+64
| | | | | duplicate code by using notation functions.
* * argparse.c (default_strusage): Update copyright year to 2006.David Shaw2006-03-092-2/+6
|
* * packet.h, build-packet.c (sig_to_notation), keygen.cDavid Shaw2006-03-094-8/+20
| | | | | | (keygen_add_notations): Provide printable text for non-human-readable notation values.
* * packet.h, build-packet.c (sig_to_notation), keygen.cDavid Shaw2006-03-084-6/+15
| | | | | | (keygen_add_notations): Tweak to handle non-human-readable notation values.
* * options.h, sign.c (mk_notation_policy_etc), gpg.c (add_notation_data):David Shaw2006-03-089-117/+275
| | | | | | | | | | Use it here for the various notation commands. * packet.h, main.h, keygen.c (keygen_add_notations), build-packet.c (string_to_notation, sig_to_notation) (free_notation): New "one stop shopping" functions to handle notations and start removing some code duplication.
* * options.h, mainproc.c (check_sig_and_print), gpg.c (main):David Shaw2006-03-086-14/+27
| | | | | | | | | pka-lookups, not pka-lookup. * options.h, gpg.c (main), keyedit.c [cmds], sig-check.c (signature_check2): Rename "backsign" to "cross-certify" as a more accurate name.
* * NEWS: Note CERT retrieval. Tweak PKA and backsig language to matchDavid Shaw2006-03-082-14/+17
| | | | | current code.
* * gpg.sgml: Rename backsigs to cross-certification (backsigs is justDavid Shaw2006-03-072-17/+28
| | | | | shorthand). Document max-cert-size.
* * gpg.sgml: Document new way of enabling the PKA functions. Some minorDavid Shaw2006-03-072-79/+71
| | | | | other cleanups.
* * options.h, gpg.c (main, parse_trust_model), pkclist.cDavid Shaw2006-03-076-50/+23
| | | | | | | (check_signatures_trust), mainproc.c (check_sig_and_print, pka_uri_from_sig), trustdb.c (init_trustdb): Some tweaks to PKA so that it is a verify-option now.
* * NEWS: Note --auto-key-locate and that keyservers can handle binary dataDavid Shaw2006-03-072-5/+20
| | | | | now.
* More tests added; make distcheck worksWerner Koch2006-03-0733-7805/+8146
|
* * gpg.sgml: Document --auto-key-locate.David Shaw2006-03-072-5/+47
|
* * sign.c (make_keysig_packet): Don't use MD5 for a RSA_S key as thatDavid Shaw2006-03-072-3/+5
| | | | | is not a PGP 2.x algorithm.
* * mainproc.c (proc_compressed): "Uncompressed" is not a valid compressionDavid Shaw2006-03-062-1/+8
| | | | | algorithm.
* Stricter test of allowed signature packet compositions.Werner Koch2006-03-067-123/+299
| | | | | There is still one problem to solve.
* Fixed problem with PGP2 style signatures and mutilple plaintext dataWerner Koch2006-03-065-40/+74
|
* Replaced an assert and fixed batch mode issue in cardglue.Werner Koch2006-03-056-14/+43
|
* * gpgkeys_ldap.c (main): Fix build problem with non-OpenLDAP LDAPDavid Shaw2006-03-032-5/+15
| | | | | libraries that have TLS.
* * getkey.c (parse_auto_key_locate): Error if the user selects "cert" orDavid Shaw2006-03-013-10/+20
| | | | | | | | | "pka" when those features are disabled. * misc.c (has_invalid_email_chars): Fix some C syntax that broke the compilers on SGI IRIX MIPS and Compaq/DEC OSF/1 Alpha. Noted by Nelson H. F. Beebe.
* * configure.ac: Fix accidental enabling of SHA-384/512. Noted by NelsonDavid Shaw2006-03-012-1/+6
| | | | | H. F. Beebe.
* * options.skel: Document auto-key-locate and give a pointer to SimonDavid Shaw2006-02-272-0/+29
| | | | | Josefsson's page for CERT.
* * gpg.sgml: Document new --keyserver syntax.David Shaw2006-02-252-9/+17
|
* * keydb.h, getkey.c (release_akl), gpg.c (main): AddDavid Shaw2006-02-248-27/+114
| | | | | | | | | | | | | | | --no-auto-key-locate. * options.h, gpg.c (main): Keep track of each keyserver registered so we can match on them later. * keyserver-internal.h, keyserver.c (cmp_keyserver_spec, keyserver_match), gpgv.c: New. Find a keyserver that matches ours and return its spec. * getkey.c (get_pubkey_byname): Use it here to get the per-keyserver options from an earlier keyserver.
* * keyserver.c (parse_keyserver_options): Only change max_cert if it isDavid Shaw2006-02-242-1/+4
| | | | | used.
* * options.c, gpg.c (main), keyserver.c (keyserver_spawn): No specialDavid Shaw2006-02-234-26/+19
| | | | | | treatment of include-revoked, include-subkeys, and try-dns-srv. These are keyserver features, and GPG shouldn't get involved here.
* * ksutil.c (init_ks_options): Default include-revoked and include-subkeysDavid Shaw2006-02-232-0/+7
| | | | | to on, as gpg isn't doing this any longer.
* * keyserver.c (parse_keyserver_uri, add_canonical_option): Always appendDavid Shaw2006-02-232-3/+7
| | | | | options to the list, as ordering may be significant to the user.
* * gpg.c (add_notation_data): Fix reversed logic for isascii check whenDavid Shaw2006-02-232-1/+4
| | | | | adding notations. Noted by Christian Biere.
* * options.h, keyserver.c (add_canonical_option): New.David Shaw2006-02-234-20/+54
| | | | | | | (parse_keyserver_options): Moved from here. (parse_keyserver_uri): Use it here so each keyserver can have some private options in addition to the main keyserver-options (e.g. per-keyserver auth).
* * options.h, keyserver-internal.h, keyserver.c (keyserver_import_name),David Shaw2006-02-226-9/+45
| | | | | | getkey.c (free_akl, parse_auto_key_locate, get_pubkey_byname): The obvious next step: allow arbitrary keyservers in the auto-key-locate list.
* * gpgkeys_hkp.c (get_name): A GETNAME query turns exact=on to cut down onDavid Shaw2006-02-222-0/+8
| | | | | odd matches.
* * options.h, keyserver.c (parse_keyserver_options): RemoveDavid Shaw2006-02-223-7/+9
| | | | | | auto-cert-retrieve as it is no longer meaningful. Add max-cert-size to allow users to pick a max key size retrieved via CERT.
* * options.h, gpg.c (main), mainproc.c (check_sig_and_print), keyserver.cDavid Shaw2006-02-225-10/+19
| | | | | | (keyserver_opts): Rename auto-pka-retrieve to honor-pka-record to be consistent with honor-keyserver-url.
* * options.h, keydb.h, g10.c (main), getkey.c (parse_auto_key_locate):David Shaw2006-02-225-64/+139
| | | | | | Parse a list of key access methods. (get_pubkey_byname): Walk the list here to try and retrieve keys we don't have locally.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-21 13:24:39 +0000