aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* gpg: Disable an MD5 workaround for pgp2 by default.Werner Koch2014-08-144-22/+32
| | | | | | | * g10/sig-check.c (do_check): Move some code to ... * g10/misc.c (print_md5_rejected_note): new function. * g10/mainproc.c (proc_tree, proc_plaintext): Enable MD5 workaround only if option --allow-weak-digest-algos is used.
* gpg: Remove options --pgp2 and --rfc1991.Werner Koch2014-08-1414-249/+51
| | | | | | | | | | | | | | * g10/gpg.c (oRFC1991, oPGP2): Remove (opts): Remove --pgp2 and --rfc1991. * g10/options.h (CO_PGP2, CO_RFC1991): Remove. Remove all users. (RFC2440, PGP2): Remove. Remove all code only enabled by these conditions. * tests/openpgp/clearsig.test: Remove --rfc1991 test. -- The use of PGP 2.c is considered insecure for quite some time now (e.g. due to the use of MD5). Thus we remove all support for _creating_ PGP 2 compatible messages.
* build: Fix autogen.sh base version hack.Werner Koch2014-08-141-3/+4
| | | | * autogen.sh <find-version>: Fix.
* gpg: Remove --compress-keys and --compress-sigs feature.Werner Koch2014-08-144-18/+8
| | | | | | | | | | | | | * g10/gpg.c (oCompressKeys, oCompressSigs): Remove. (opts): Turn --compress-keys and --compress-signs in NOPs. * g10/options.h (opt): Remove fields compress_keys and compress_sigs. * g10/export.c (do_export): Remove compress_keys feature. * g10/sign.c (sign_file): Remove compress_sigs feature. -- These features are disabled in GnuPG since the very early days and they fulfill no real purpose. For now we keep the command line options as dummys.
* gpg: Add list-option "show-usage".Werner Koch2014-08-137-4/+22
| | | | | | | * g10/gpg.c (parse_list_options): Add "show-usage". * g10/options.h (LIST_SHOW_USAGE): New. * g10/keyid.c (usagestr_from_pk): Add arg FILL. Change caller. * g10/keylist.c (list_keyblock_print): Print usage info.
* po: Remove extra LF from ja.poWerner Koch2014-08-121-2/+2
| | | | --
* gpg: Make --with-colons work again for --search-keys.Werner Koch2014-08-121-2/+2
| | | | | * g10/keyserver.c (search_line_handler): Replace log_debug by es_printf.
* speedo: Comment typo fixWerner Koch2014-08-121-2/+2
| | | | --
* common: Fix typo in header inclusion protection macro.Werner Koch2014-08-111-1/+1
| | | | | -- GnuPG-bug-id: 1669
* po: Update Japanese translation.NIIBE Yutaka2014-08-081-273/+96
|
* scd: Minor and editorial changes to app-sc-hsm.cWerner Koch2014-07-251-149/+172
| | | | | | | | | | | | | * scd/app-sc-hsm.c (select_and_read_binary): Use SW_ macro. (parse_certid): Remove useless test. (send_certinfo, send_keypairinfo): Shrink malloc to the needed size. (do_getattr): Ditto. (verify_pin): Use SW_ macro. (do_decipher): Replace OFS variable and extend comment. -- Code parts which have not been audited are marked with a warning pragma.
* scd: Add a new status word code.Werner Koch2014-07-252-0/+2
| | | | | * scd/apdu.h (SW_REF_DATA_INV): New. * scd/apdu.c (apdu_strerror): Add string.
* scd: Comment typo fixes.Werner Koch2014-07-251-5/+5
| | | | --
* scd: Support for SmartCard-HSMAndreas Schwier2014-07-255-1/+2041
| | | | | | | | | | | | | | | | | | * scd/app-sc-hsm.c: New. * scd/app.c (select_application, get_supported_applications): Register new app. -- Add a read/only driver for scdaemon that provides access to keys and certificates on a SmartCard-HSM (www.smartcard-hsm.com). The driver supports RSA and ECC keys on SmartCard-HSM cards and USB-Sticks. The driver does not yet support the MicroSD edition. -- ChangeLog and FSF copyright year fix by wk.
* gpg: Switch to an EdDSA format with prefix byte.Werner Koch2014-07-251-8/+18
| | | | * g10/keygen.c (gen_ecc): USe "comp" for EdDSA.
* po: Update the German (de) translationWerner Koch2014-07-231-50/+67
| | | | --
* agent: Show just one warning with all failed passphrase constraints.Werner Koch2014-07-231-38/+74
| | | | | * agent/genkey.c (check_passphrase_constraints): Build a final warning after all checks.
* agent: Only one confirmation prompt for an empty passphrase.Werner Koch2014-07-231-21/+19
| | | | | * agent/genkey.c (check_passphrase_constraints): Moev empty passphrase check to the front.
* gpg: Add command --quick-gen-keyWerner Koch2014-07-235-3/+171
| | | | | | | | | | | * g10/gpg.c (aQuickKeygen): New. * g10/misc.c (is_valid_user_id): New stub. * g10/keygen.c (quickgen_set_para): New. (quick_generate_keypair): New. -- Note that the validation of the specified user id has not yet been implemented.
* common: Add cpr_get_answer_is_yes_def()Werner Koch2014-07-232-2/+10
| | | | | * g10/cpr.c (cpr_get_answer_is_yes): Factor code out to .... (cpr_get_answer_is_yes_def): ...new.
* gpg: Make --quick-sign-key promote local key signatures.Werner Koch2014-07-232-4/+4
| | | | * g10/keyedit.c (sign_uids): Promote local sigs in quick mode.
* Register DCO for Andreas SchwierWerner Koch2014-07-231-1/+3
| | | | --
* scd: Do not use the pcsc-wrapper.Werner Koch2014-07-223-10/+5
| | | | | | | | * scd/apdu.c (NEED_PCSC_WRAPPER): Do not define. * scd/Makefile.am (libexec_PROGRAMS): Remove gnupg-pcsc-wrapper (gnupg_pcsc_wrapper_SOURCES): Remove. (gnupg_pcsc_wrapper_LDADD): Remove. (gnupg_pcsc_wrapper_CFLAGS): Remove.
* gpg: Improve --list-packets output for faulty packets.Werner Koch2014-07-211-0/+50
| | | | * g10/parse-packet.c: Add list_mode output for certain failures.
* gpg: Cap size of attribute packets at 16MB.Werner Koch2014-07-211-1/+13
| | | | | | | | | | | | | | | * g10/parse-packet.c (parse_attribute): Avoid xmalloc failure and cap size of packet. -- Tavis Ormandy reported a fatal error for attribute packets with a zero length payload. This is due to a check in Libgcrypt's xmalloc which rejects a malloc(0) instead of silently allocating 1 byte. The fix is obvious. In addition we cap the size of attribute packets similar to what we do with user id packets. OpenPGP keys are not the proper way to store movies.
* Post beta release updateWerner Koch2014-07-031-0/+4
| | | | --
* Release 2.1.0-beta751gnupg-2.1.0-beta751Werner Koch2014-07-031-2/+31
|
* po: Auto-updateWerner Koch2014-07-034-4/+84
| | | | --
* gpg: Make show-uid-validity the default.Werner Koch2014-07-031-1/+3
|
* tests: Fix end-of-all-ticks test for Western locales.Werner Koch2014-07-031-0/+16
| | | | | | | | | | * common/t-timestuff.c (test_timegm): Use timegm if available. (main): Set TX to UTC if timegm is not available. -- On OpenBSD 5.3 i386 that test failed due to the use of mktime. Reported-by: Claus Assmann
* gpg: Spelling errorKristian Fiskerstrand2014-07-031-1/+1
|
* speedo: Update w32 installerWerner Koch2014-07-031-16/+16
| | | | --
* doc: Add gnupg-logo.pdfWerner Koch2014-07-031-0/+0
| | | | --
* gpg: Auto-create revocation certificates.Werner Koch2014-06-3010-9/+143
| | | | | | | | | | | | | * configure.ac (GNUPG_OPENPGP_REVOC_DIR): New config define. * g10/revoke.c (create_revocation): Add arg "leadin". (gen_standard_revoke): New. * g10/openfile.c (get_openpgp_revocdir): New. (open_outfile): Add MODE value 3. * g10/keyid.c (hexfingerprint): New. * g10/keygen.c (do_generate_keypair): Call gen_standard_revoke. -- GnuPG-bug-id: 1042
* estream: Fix minor glitch in "%.*s" format.Werner Koch2014-06-301-1/+3
| | | | | * common/estream-printf.c (pr_string): Take care of non-nul terminated strings.
* gpg: Rearrange code in gen_revoke.Werner Koch2014-06-301-51/+73
| | | | | * g10/revoke.c (gen_revoke): Factor some code out to ... (create_revocation): new.
* gpg: Create exported secret files and revocs with mode 700.Werner Koch2014-06-3012-31/+43
| | | | | | | | | | | | | | | * common/iobuf.c (direct_open): Add arg MODE700. (iobuf_create): Ditto. * g10/openfile.c (open_outfile): Add arg RESTRICTEDPERM. Change call callers to pass 0 for it. * g10/revoke.c (gen_desig_revoke, gen_revoke): Here pass true for new arg. * g10/export.c (do_export): Pass true for new arg if SECRET is true. -- GnuPG-bug-id: 1653. Note that this works only if --output has been used.
* common: Minor code cleanup for a legacy OS.Werner Koch2014-06-301-8/+7
| | | | * common/iobuf.c (direct_open) [__riscos__]: Simply cpp conditionals.
* speedo: Fix the w32 installer nameWerner Koch2014-06-271-1/+1
|
* po: Auto-updateWerner Koch2014-06-272-7/+22
| | | | --
* po: Update some strings of the French (fr) translation.Werner Koch2014-06-271-73/+36
|
* po: Update the German (de) translationWerner Koch2014-06-272-104/+63
|
* agent: Adjust for changed npth_eselect under W32.Werner Koch2014-06-271-2/+1
| | | | | * agent/gpg-agent.c (handle_connections) [W32]: Make events_set an unsigned int to match the changed prototype.
* dirmngr: Use the homedir based socket also under W32.Werner Koch2014-06-271-4/+0
| | | | | * common/homedir.c (dirmngr_user_socket_name): Use same code for all platforms.
* po: Update and enable Ukrainian (uk) translation.Yuri Chornoivan2014-06-272-229/+388
|
* Fix typos in messagesYuri Chornoivan2014-06-272-2/+2
|
* build: Remove unused options.Werner Koch2014-06-272-48/+9
| | | | | | | | | | * configure.ac: Remove option --build-agent-only. (FAKE_CURL, GPGKEYS_CURL): Remove check for cURL (GPGKEYS_MAILTO): Remove ac_subst but keep the currently unused SENDMAIL check. (GPGKEYS_KDNS): Remove ac_subst. * autogen.rc (final_info): Remove suggestion to use the removed option --enable-mailto.
* scd: Add pinpad support for REINER SCT cyberJack goNIIBE Yutaka2014-06-272-0/+3
| | | | | | | | | | * scd/ccid-driver.h (VENDOR_REINER, CYBERJACK_GO): New. * scd/ccid-driver.c (ccid_transceive_secure): Handle the case for VENDOR_REINER. Original work was by Alina Friedrichsen (tiny change). -- This is revised version which adapts changes of ccid-driver and was later ported from branch-2.0 to master (2.1)
* scd: Support reader Gemalto IDBridge CT30Werner Koch2014-06-272-0/+6
| | | | | | | | | * scd/ccid-driver.h (GEMPC_CT30): New product id. * scd/ccid-driver.c (parse_ccid_descriptor): Add quirk for that reader. -- GnuPG-bug-id: 1638
* gpg: Limit keysize for unattended key generation to useful values.Werner Koch2014-06-261-2/+12
| | | | | | | | | | | | | * g10/keygen.c (gen_elg): Enforce keysize 1024 to 4096. (gen_rsa): Enforce keysize 1024 to 4096. (gen_dsa): Enforce keysize 768 to 3072. -- It was possible to create 16k RSA keys in batch mode. In addition to the silliness of such keys, they have the major drawback that under GnuPG and Libgcrypt, with their limited amount of specially secured memory areas, the use of such keys may lead to an "out of secure memory" condition.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-20 19:57:10 +0000