aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Reformat README and minor gpg.texi improvement.Werner Koch2014-09-242-155/+168
| | | | | | | -- The second thing is to explain the file names below under ~/.gnupg/openpgp-revocs.d/.
* Register DCO for Daniel Kahn Gillmor.Werner Koch2014-09-241-0/+3
| | | | --
* speedo: Check that wget and gpgv are installed.Werner Koch2014-09-221-0/+11
| | | | * build-aux/getswdb.sh: Check for required tools.
* speedo: Autodetect sha1sum tools.Werner Koch2014-09-222-16/+45
| | | | | | * build-aux/getswdb.sh: Add option --find-sha1sum. * build-aux/speedo.mk (check-tools): New phony target. Not yet used. (SHA1SUM): New var. Use it instead of sha1sum.
* gpg: Create default keyring with .kbx suffix.Werner Koch2014-09-221-11/+33
| | | | | | * g10/keydb.c (maybe_create_keyring_or_box): Rename arg for clarity. (keydb_add_resource): Fix order of args to maybe_create_keyring_or_box and check and create .kbx.
* doc: Fix --secret-keyring option for 2.1Werner Koch2014-09-221-0/+6
| | | | --
* gpg: --delete-secret-key - check that a secret key exists.Werner Koch2014-09-201-0/+9
| | | | | | | * g10/delkey.c (do_delete_key): Check availibility of a secret key. -- Actually we check that at least one secret subkey exists.
* gpg: Make algorithm selection prompt for ECC more clear.Werner Koch2014-09-201-1/+1
| | | | * g10/keygen.c (ask_algo): Change 9 to "ECC and ECC".
* Register DCO for Andre Heinecke.Werner Koch2014-09-201-0/+3
| | | | --
* Post beta release update.Werner Koch2014-09-182-1/+5
| | | | --
* Release 2.1.0-beta834.gnupg-2.1.0-beta834Werner Koch2014-09-183-1/+28
|
* speedo: Distribute needed files.Werner Koch2014-09-181-3/+19
| | | | * Makefile.am (EXTRA_DIST): Add speedo stuff.
* build: Enable gpgtar by default.Werner Koch2014-09-181-1/+1
|
* common: Do not build maintainer modules in non-maintainer mode.Werner Koch2014-09-182-1/+9
| | | | | | * common/Makefile.am (module_maint_tests): Use only in maintainer mode. (t_common_cflags): New.
* common: Remove superfluous statements.Werner Koch2014-09-182-12/+3
| | | | | | | | | | * common/exechelp-posix.c: Remove weak pragmas. * common/sexputil.c (make_canon_sexp_from_rsa_pk): Remove double const. -- We do not use Pth anymore and thus there is no more need for the weak pragmas.
* g13: Avoid segv after pipe creation failure.Werner Koch2014-09-181-6/+6
| | | | | | * g13/call-gpg.c (gpg_encrypt_blob): Init some vars in case of an early error. (gpg_decrypt_blob): Ditto.
* scd: Fix int/short mismatch in format string of app-p15.cWerner Koch2014-09-181-4/+8
| | | | | | | * scd/app-p15.c (parse_certid): Use snprintf and cast value. (send_certinfo): Ditto. (send_keypairinfo): Ditto. (do_getattr): Ditto.
* agent: Init a local variable in the error case.Werner Koch2014-09-181-1/+3
| | | | * agent/pksign.c (do_encode_md): Init HASH on error.
* agent: Remove left over debug output.Werner Koch2014-09-181-2/+0
| | | | | * agent/command-ssh.c (ssh_signature_encoder_eddsa): Remove debug output.
* agent: Silence compiler warning for a debug message.Werner Koch2014-09-181-2/+2
| | | | | * agent/call-pinentry.c (agent_query_dump_state): Use %p for POPUP_TID.
* sm: Silence compiler warnings.Werner Koch2014-09-182-3/+2
| | | | | | * sm/certreqgen-ui.c (gpgsm_gencertreq_tty): Remove unused var I. * sm/certreqgen.c (proc_parameters): Init PUBLIC to avoid compiler warning.
* gpg: Silence a compiler warning.Werner Koch2014-09-181-5/+4
| | | | * g10/parse-packet.c (enum_sig_subpkt): Replace hack.
* gpg: Replace a hash algo test function.Werner Koch2014-09-181-18/+18
| | | | | | | | | | | | | * g10/gpg.c (print_mds): Replace openpgp_md_test_algo. -- This is actually not required because as of now the used OpenPGP and Gcrypt hash algorithm numbers are identical. But that might change in the future. This changes the behavior of GnuPG in case it has been build with some algorithms disabled: If those algorithms are available in Libgcrypt, their results will be used printed anyway.
* gpg: Re-indent a function.Werner Koch2014-09-181-78/+89
| | | | --
* speedo: Various fixesWerner Koch2014-09-182-18/+35
| | | | | * build-aux/speedo.mk: Take zlib and bzip2 from ftp.gnupg.org. Minor other fixes.
* speedo: Improve speedo Makefile.Werner Koch2014-09-172-72/+223
| | | | | | | | | | -- Building for the native platform is now a mere make -f build-aux/speedo.mk native You may also use "help" as target.
* po: Auto-updateWerner Koch2014-09-174-0/+32
| | | | --
* gpg: Print a warning if the subkey expiration may not be what you want.Werner Koch2014-09-171-0/+63
| | | | | | | | | | * g10/keyedit.c (subkey_expire_warning): New. (keyedit_menu): Call it when needed. -- GnuPG-bug-id: 1715 The heuristic to detect a problem is not very advanced but it should catch the most common cases.
* gpg: Improve passphrase caching.Werner Koch2014-09-176-9/+81
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | * agent/cache.c (last_stored_cache_key): New. (agent_get_cache): Allow NULL for KEY. (agent_store_cache_hit): New. * agent/findkey.c (unprotect): Call new function and try to use the last stored key. * g10/revoke.c (create_revocation): Add arg CACHE_NONCE and pass to make_keysig_packet. (gen_standard_revoke): Add arg CACHE_NONCE and pass to create_revocation. * g10/keygen.c (do_generate_keypair): Call gen_standard_revoke with cache nonce. -- This patch adds two features: 1. The key for the last passphrase successfully used for unprotecting a key is stored away. On a cache miss the stored away passphrase is tried as well. This helps for the common GPG use case of having a signing and encryption (sub)key with the same passphrase. See the code for more comments. 2. The now auto-generated revocation certificate does not anymore popup a passphrase prompt. Thus for standard key generation the passphrase needs to be given only once (well, two with the confirmation).
* gpg: Use algorithm id 22 for EdDSA.Werner Koch2014-09-127-10/+72
| | | | | | | | | * common/openpgpdefs.h (PUBKEY_ALGO_EDDSA): Change to 22. * g10/keygen.c (ask_curve): Reword the Curve25519 warning note. -- In the hope that the IETF will eventually assign 22 for EdDSA using the draft-koch-eddsa-for-openpgp-01 specs we start using this number.
* build: Require libgpg-error 1.15Werner Koch2014-09-121-1/+1
| | | | | | | -- 1.14 had a problem in its ABI and was thus remove from the FTP Server after 3 days. 1.15 fixes this.
* doc: Small grammar fixWerner Koch2014-09-121-2/+2
| | | | --
* gpg: Stop early on bogus old style comment packets.Werner Koch2014-09-111-1/+3
| | | | | | | | * g10/parse-packet.c (parse_key): Take care of too short packets for old style commet packets. -- GnuPG-bug-id: 1714
* dirmngr: Support https for KS_FETCH.Werner Koch2014-09-104-35/+48
| | | | | | | | | | | | | * dirmngr/ks-engine-hkp.c (cert_log_cb): Move to ... * dirmngr/misc.c (cert_log_cb): here. * dirmngr/ks-engine-http.c (ks_http_fetch): Support 307-redirection and https. -- Note that this requires that the root certificates are registered using the --hkp-cacert option. Eventually we may introduce a separate option to allow using different CAs for KS_FETCH and keyserver based requests.
* dirmngr: Fix the ks_fetch command for the http scheme.Werner Koch2014-09-101-3/+8
| | | | | | | | | | * common/http.c (http_session_ref): Allow for NULL arg. -- We always test for a an existing session and thus passing NULL as session object should be allowed. Reported-by: Jens Lechtenboerger
* Merge branch 'wk/test-gpgrt-estream'Werner Koch2014-09-0847-7322/+325
|\
| * gpg: Fix memory leak in ECC encryption.Werner Koch2014-09-081-26/+29
| | | | | | | | | | * g10/pkglue.c (pk_encrypt): Fix memory leak and streamline error handling.
| * doc: Remove some stuff for the very incomplete instguide.Werner Koch2014-09-031-29/+15
| | | | | | | | --
| * doc: Typo fixWerner Koch2014-09-021-1/+1
| | | | | | | | | | -- Debian-bug-id: 760273
| * gpg: Fix export of NIST ECC keys.Werner Koch2014-09-021-72/+60
| | | | | | | | | | | | | | | | | | | | | | | | * common/openpgp-oid.c (struct oidtable): New. (openpgp_curve_to_oid): Rewrite and allow OID as input. (openpgp_oid_to_curve): Make use of the new table. -- Due to the previous change we now usually store the OID with the private key and not the name. Thus during import we do not anymore need to map the name to an oid but can use the oid directly. We fix that by extending openpgp_curve_to_oid to allow an oidstr as input.
| * agent: Fix import of OpenPGP EdDSA keys.Werner Koch2014-09-021-18/+66
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * agent/cvt-openpgp.c (get_keygrip): Special case EdDSA. (convert_secret_key): Ditto. (convert_transfer_key): Ditto. (apply_protection): Handle opaque MPIs. (do_unprotect): Check FLAG_OPAQUE instead of FLAG_USER1 before unpacking an opaque mpi. -- The key transfer protocol between gpg and gpg-agent uses gcrypt algorithm numbers which merge all ECC algorithms into one. Thus it is not possible to use the algorithm number to determine the EdDSA algorithm. We need to known that because Libgcrypt requires the "eddsa" flag with the curve "Ed25519" to actually use the Ed25519 signature specification. The last fix is for correctness; the first case won't be used anyway.
| * gpg: Fix export of ecc secret keys by adjusting check ordering.Kyle Butt2014-09-011-1/+5
| | | | | | | | | | | | * g10/export.c (transfer_format_to_openpgp): Move the check against PUBKEY_MAX_NSKEY to after the ECC code adjusts the number of parameters.
| * agent: Allow key unprotection using AES-256.Werner Koch2014-09-011-29/+50
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * agent/protect.c (PROT_CIPHER): Rename to GCRY_CIPHER_AES128 for clarity. (do_decryption): Add args prot_cipher and prot_cipher_keylen. USe them instead of the hardwired values. (agent_unprotect): Change to use a table of protection algorithms. Add AES-256 variant. -- This patch will make a possible future key protection algorithm changes smoother. AES-256 is also allowed although there is currently no way to encrypt using it.
| * speedo: Fix for non-Windows build of glib.Werner Koch2014-09-011-1/+2
| | | | | | | | --
| * gpg: Do not show "MD5" and triplicated "RSA" in --version.Werner Koch2014-08-281-0/+11
| | | | | | | | | | * g10/gpg.c (build_list_pk_test_algo): Ignore RSA aliases (build_list_md_test_algo): Ignore MD5.
| * gpg: Remove CAST5 from the default prefs and order SHA-1 last.Werner Koch2014-08-261-11/+4
| | | | | | | | * g10/keygen.c (keygen_set_std_prefs): Update prefs.
| * Switch to the libgpg-error provided estream.Werner Koch2014-08-2638-7134/+93
| | | | | | | | | | | | | | | | | | | | * configure.ac (NEED_GPG_ERROR_VERSION): Reguire 1.14. (GPGRT_ENABLE_ES_MACROS): Define. (estream_INIT): Remove. * m4/estream.m4: Remove. * common/estream-printf.c, common/estream-printf.h: Remove. * common/estream.c, common/estream.h: Remove. * common/init.c (_init_common_subsystems): Call gpgrt initialization.
* | gpg: Do not show "MD5" and triplicated "RSA" in --version.Werner Koch2014-08-281-0/+11
|/ | | | | * g10/gpg.c (build_list_pk_test_algo): Ignore RSA aliases (build_list_md_test_algo): Ignore MD5.
* gpg: Allow for positional parameters in the passphrase prompt.Werner Koch2014-08-261-23/+12
| | | | | | | | | * g10/passphrase.c (passphrase_get): Replace sprintf by xasprintf. -- Without that at least the French translation does not always work because it requires positional parameters. Windows for example does not support them as they are not defined by C99 but by POSIX.
* gpg: Fix "can't handle public key algorithm" warning.Werner Koch2014-08-201-4/+21
| | | | | * g10/parse-packet.c (unknown_pubkey_warning): Check for encr/sign capabilities.
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-18 10:17:50 +0000