| Commit message (Collapse) | Author | Files | Lines |
|---|
|
(cert_usage_p): Support it here.
* call-dirmngr.c (gpgsm_dirmngr_isvalid): Use it here.
|
|
--with-validation is set.
* certchain.c (gpgsm_basic_cert_check): Print more detailed error
messages.
* certcheck.c (do_encode_md): Partly support DSA. Add new arg
PKALGO. Changed all callers to pass it.
(pk_algo_from_sexp): New.
tests/pkits: New directory
|
|
--keyid-format. Rename show-validity as show-uid-validity.
--ask-cert-level defaults to no.
|
|
* keylist.c (list_internal_keys): Set it here.
(list_cert_raw): And indicate those keys. Changed all our callers
to pass the new arg HD through.
|
|
stable version 0.1.x.
* scdaemon.texi (Card applications): New section.
* scdaemon.c (main): New option --disable-application.
* app.c (is_app_allowed): New.
(select_application): Use it to check for disabled applications.
* ccid-driver.h (CCID_DRIVER_ERR_ABORTED): New.
* ccid-driver.c (ccid_open_reader): Support the stable 0.1 version
of libusb.
(ccid_get_atr): Handle short messages.
* apdu.c (my_rapdu_get_status): Implemented.
|
|
|
|
* gpg.sgml: Clarify that --min-cert-level disregards level 1 certs by
default. Clarify include-revoked a bit to note that keyservers might not
be accurate. Note that --charset is --display-charset. Some language
tweaks for --simple-sk-checksum (Debian 251795). Note the PGP silliness
with preferred keyserver subpackets causing PGP/MIME.
|
|
|
|
* gnupg.texi: Include it.
|
|
* gnupg.texi: Include it.
|
|
--keyserver-option honor-keyserver-url, and --list and --verify option
show-std/user-notations.
|
|
does not recode messages themselves. Remove include-non-rfc
export-option.
|
|
(enable_core_dumps): New.
* gpgsm.texi (Esoteric Options): Add --debug-allow-core-dump.
* gpgsm.c: New option --debug-allow-core-dump.
* gpgsm.h (opt): Add member CONFIG_FILENAME.
* gpgsm.c (main): Use it here instead of the local var.
* server.c (gpgsm_server): Print some additional information with
the hello in verbose mode.
|
|
* gpg.sgml: Document --no-use-embedded-filename and --min-cert-level.
* gpgv.sgml: Removed leftover </para>.
|
|
--no-default-keyring.
|
|
(main): New option --allow-mark-trusted.
* trustlist.c (agent_marktrusted): Use it here.
* gpg-agent.texi (Agent Options): Add --allow-mark-trusted.
* gpgconf-comp.c: Add --allow-mark-trusted for the gpg-agent.
|
|
* keydb.c (keydb_clear_some_cert_flags): New.
(keydb_update_keyblock, keydb_set_flags): Change error code
CONFLICT to NOT_LOCKED.
|
|
|
|
stored certificates are deleted after about a day.
|
|
that the scdaemon is still running.
* gpg-agent.c (handle_signal): Do not use SIGUSR{1,2} anymore for
changing the verbosity.
|
|
optional. Document --bzip2-decompress-lowmem.
|
|
|
|
|
|
--default-cert-level.
|
|
merge-only, remove old honor-http-proxy, --merge-only, and
--emulate-md-encode-bug. Document COLUMNS and LINES.
|
|
* certchain.c (gpgsm_validate_chain): Use it here.
* certlist.c (cert_usage_p): Apply extKeyUsage.
|
|
(export_p12_file): Read a certificate from STDIN and pass it to
p12_build. Detect a keygrip and construct the filename in that
case. Unprotcet a key if needed. Print error messages for key
formats we can't handle.
(release_passphrase): New.
(get_passphrase): New arg PROMPTNO. Return the allocated
string. Changed all callers.
* minip12.c: Revamped the build part.
(p12_build): New args CERT and CERTLEN.
* simple-pwquery.c (agent_open): Don't mangle INFOSTR.
* export.c (export_p12, popen_protect_tool)
(gpgsm_p12_export): New.
* gpgsm.c (main): New command --export-secret-key-p12.
|
|
|
|
|
|
* samplekeys.asc: Update 99242560.
* gpg.sgml: Clarify -u/--local-user and --default-key. Note what happens
if you run 'gpg' without any commands. Document --multifile. Document
list-option show-unusable-subkeys.
|
|
|
|
* gpg.sgml: Document --ungroup and --list-config.
|
|
* gpg.sgml: List proper documentation URL. Note that addrevoker takes an
optional "sensitive" argument. Remind that $GNUPGHOME can be used instead
of --homedir. Clarify --no-default-keyring, and note why it may not take
effect if there are no other keyrings present. Remove --pgp2 from the
list of --pgpXes that are just for bad preference lists. Explain more why
locking memory pages is good.
* gpg.sgml: Add an example of what an exclamation mark is, as people seem
to miss it often.
|
|
'GNUPG-1-9-BRANCH'.
|
|
Christian Biere. Some minor grammar fixes. Remove the "host -l pgp.net |
grep wwwkeys" advice since the nameserver no longer all allow zone
transfers. Replace it with a mention of hkp://subkeys.pgp.net. Note that
BZIP2 defaults to compression level 6.
|
|
|
|
|
|
|
|
Document --bzip2-compress-level, and --bzip2-compress-lowmem. Clarify the
plurarility (or not) of various list and verify options. Document BZIP2
in the --compress-algo section. Warn about compatibility issues with ZLIB
and BZIP2.
|
|
entries.
* TRANSLATE: New, note to translators about the yes|yes multiple match
syntax.
* Makefile.am: Include TRANSLATE in distributed files.
|
|
|
|
(check_card_serialno): New.
(agent_scd_pksign, agent_scd_pkdecrypt): Use it here.
* cardglue.c (open_card): Issue insertion status message.
* status.h, status.c (STATUS_CARDCTRL): New.
* status.c (cpr_get_answer_okay_cancel): New.
* miscutil.c (answer_is_okay_cancel): New.
|
|
* keylist.c (list_keyblock_print): Denote secrets keys stored on a
card with an '>'. Print the '#' also for subkeys.
(list_keyblock_colon): Introduce new field 15 for sec/ssb to print
the serial number.
|
|
check the PIN in advance.
(card_status): Add new args to return the serial number. Changed
all callers.
* call-agent.c (agent_scd_checkpin): New.
|
|
|
|
* gpg.sgml: Document --no-groups.
|
|
photos mean big keys. Document --rfc2440. Document verify-option
show-unusable-uids.
|
|
show-unusable-uids, remove --no-comment (which is now --no-sk-comments),
add --no-comments (to remove --comment), remove --default-comment, and
document --sig-keyserver-url.
|
|
|
|
sake of short and simple commands.
|
