aboutsummaryrefslogtreecommitdiffstats
path: root/g10/getkey.c (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Added a copyright year for files changed this year.Werner Koch2002-04-291-1/+1
|
* * keygen.c (generate_subkeypair): 2440bis04 adds that creating subkeys onDavid Shaw2002-04-201-3/+4
| | | | | | | | | v3 keys is a MUST NOT. * getkey.c (finish_lookup): The --pgp6 "use the primary key" behavior should only apply while data signing and not encryption. Noted by Roger Sondermann.
* * trustdb.c (mark_usable_uid_certs): Properly handle nonrevocableDavid Shaw2002-04-181-4/+7
| | | | | | | | | | | signatures that can expire. In short, the only thing that can override an unexpired nonrevocable signature is another unexpired nonrevocable signature. * getkey.c (finish_lookup): Always use primary signing key for signatures when --pgp6 is on since pgp6 and 7 do not understand signatures made by signing subkeys.
* * getkey.c (lookup): Advance the searchmode after a search FIRST.Werner Koch2002-04-181-0/+6
|
* * getkey.c (premerge_public_with_secret): Fixed 0x12345678! syntaxWerner Koch2002-04-181-1/+5
| | | | | | | | | | | | for use with secret keys. * seckey-cert.c (do_check): Always calculate the old checksum for use after unprotection. * g10.c, options.skel: New option --no-escape-from. Made --escape-from and --force-v3-sigs the default and removed them from the options skeleton.
* * parse-packet.c (parse_signature): Minor fix - signatures should expireDavid Shaw2002-04-141-1/+2
| | | | | | | | | | | | | | at their expiration time and not one second later. * keygen.c (proc_parameter_file): Allow specifying preferences string (i.e. "s5 s2 z1 z2", etc) in a batchmode key generation file. * keyedit.c (keyedit_menu): Print standard error message when signing a revoked key (no new translation). * getkey.c (merge_selfsigs): Get the default set of key prefs from the real (not attribute) primary uid.
* * misc.c (pct_expando), options.skel: Use %t to indicate type of a photoDavid Shaw2002-04-111-9/+6
| | | | | | | | | | | | | | | | | | | ID (in this version, it's always "jpeg"). Also tweak string expansion loop to minimize reallocs. * mainproc.c (do_check_sig): Variable type fix. * keyedit.c (menu_set_primary_uid): Differentiate between true user IDs and attribute user IDs when making one of them primary. That is, if we are making a user ID primary, we alter user IDs. If we are making an attribute packet primary, we alter attribute packets. This matches the language in the latest attribute packet draft. * keyedit.c (sign_uids): No need for the empty string hack. * getkey.c (fixup_uidnode): Only accept preferences from the hashed segment of the self-sig.
* Minor tweak to importing to allow more non-signed uids (now thatDavid Shaw2002-03-241-3/+7
| | | | | | | | | | | | | | | | | | | --allow-non-selfsigned-uid allows for completey unsigned uids). Do not choose an attribute packet (i.e. photo) as primary uid. This prevents oddities like "Good signature from [image of size 2671]". This is still not perfect (one can still select an attribute packet as primary in --edit), but is closer to the way the draft is going. The algorithms list should include #110. --pgp2 implies --no-ask-sig-expire and --no-ask-cert-expire as those would cause a v4 sig/cert. Be more lenient in what constitutes a valid armor header (i.e. -----BEGIN blah blah-----) as some Windows programs seem to add spaces at the end. --openpgp makes it strict again
* --openpgp implies --allow-non-selfsigned-uidDavid Shaw2002-03-171-6/+28
| | | | | | | | | | | | | | | | | | | | | | If none of the uids are primary (because none are valid) then pick the first to be primary (but still invalid). This is for cosmetics in case some display needs to print a user ID from a non-selfsigned key. Also use --allow-non-selfsigned-uid to make such a key valid and not --always-trust. The key is *not* automatically trusted via --allow-non-selfsigned-uid. Make sure non-selfsigned uids print [uncertain] on verification even though one is primary now. If the main key is not valid, then neither are the subkeys. Allow --allow-non-selfsigned-uid to work on completely unsigned keys. Print the uids in UTF8. Remove mark_non_selfsigned_uids_valid() Show revocation key as UTF8. Allow --not-dash-escaped to work with v3 keys.
* This is the first half of revocation key / designated revokerDavid Shaw2002-02-281-2/+113
| | | | | | | | | | | | | | | | | | | | | support. That is, it handles all the data to mark a key as revoked if it has been revoked by a designated revoker. The second half (coming later) will contain the code to make someones key your designated revoker and to issue revocations for someone else. Note that this is written so that a revoked revoker can still issue revocations: i.e. If A revokes B, but A is revoked, B is still revoked. I'm not completely convinced this is the proper behavior, but it matches how PGP does it. It does at least have the advantage of much simpler code - my first version of this had lots of loop maintaining code so you could chain revokers many levels deep and if D was revoked, C was not, which meant that B was, and so on. It was sort of scary, actually. This also changes importing to allow bringing in more revocation keys, and exporting to not export revocation keys marked "sensitive". The --edit menu information will show if a revocation key is present.
* If a key isn't valid (say, because of no self-signature), allowDavid Shaw2002-02-271-0/+12
| | | | | --always-trust to force it valid so it can be trusted.
* Treat key lists internally as fingerprints when possible. All this is viaDavid Shaw2002-02-261-28/+0
| | | | | | | | | | | | KEYDB_SEARCH_DESC - no point in reinventing the wheel. This allows the helper program to search the keyserver by fingerprint if desired (and the keyserver supports it). Note that automatic fingerprint promotion during refresh only applies to v4 keys as a v4 fingerprint can be easily changed into a long or short key id, and a v3 cannot. Take two copies of hextobyte() from pubkey-enc.c and getkey.c and make them into one copy in misc.c.
* Some compatibility polish for PGP2. Add a fake IDEA preference for v3David Shaw2002-01-221-0/+8
| | | | | | | | keys (this is in the RFC), so that they can be (sometimes) used along OpenPGP keys. Do not force using IDEA on an OpenPGP key, as this may violate its prefs. Also, revise the help text for the sig class explanation.
* fix off-by-one in building attribute subpacketsDavid Shaw2002-01-061-2/+0
| | | | | | | | | | change default compression to 1 add ask-sig-expire and ask-cert-expire (--expert was getting absurdly overloaded) permit v3 subkeys use --expert to protect adding multiple photo ids and adding photos to a v3 key
* * keyserver.c (keyserver_spawn): Removed some variablesWerner Koch2001-12-221-1/+1
| | | | | | | | | | | | declaration due to shadowing warnings. * build-packet.c (build_attribute_subpkt): s/index/idx/ to avoid compiler warnig due to index(3). * getkey.c (get_ctx_handle): Use KEYDB_HANDLE as return value. * keylist.c (list_one): Made resname const. * keyedit.c (keyedit_menu): Allow "addphoto" only when --openpgp is not used. * options.skel: Changed one example photo viewer to qiv.
* * g10.c. options.h : New option --show-keyringWerner Koch2001-12-211-1/+5
| | | | | | * getkey.c (get_ctx_handle): New. * keylist.c (list_one): Implement option here. By David Champion.
* Bug fix in "showpref"David Shaw2001-12-071-1/+1
| | | | | Allow setting a no-compression preference
* calculate time of next trustdb checkWerner Koch2001-09-281-5/+9
|
* completed the new key validation codeWerner Koch2001-09-261-0/+1
|
* made keylisting fasterWerner Koch2001-09-251-47/+0
|
* Revamped the trustDBWerner Koch2001-09-241-36/+2
|
* Bug fixes and Timo's patchesWerner Koch2001-09-191-1/+1
|
* more bug fixesand some warning cleanupsWerner Koch2001-09-091-1/+2
|
* Last changes before 1.0.6a snapshot releaseSNAP-1-0-6aWerner Koch2001-09-071-1/+1
|
* fixed a stupid C errorWerner Koch2001-09-071-59/+52
|
* Revamped the keyring codeWerner Koch2001-09-061-503/+202
|
* MDC feature support and other stuffWerner Koch2001-08-301-50/+20
|
* Revamped preference handlingWerner Koch2001-08-101-36/+105
|
* reworked the way hased data is stored and added a "primary" commandWerner Koch2001-08-091-12/+11
| | | | | DCVS: ----------------------------------------------------------------------
* Changed lsign behaviour, allow future subkeys, don't list revoked keysWerner Koch2001-08-011-1/+7
|
* migration to autoconf 2.52 and bugfixesWerner Koch2001-07-261-12/+8
|
* one debian bug fixedWerner Koch2001-06-161-1/+10
|
* Fix for toupper('I') != 'i'Werner Koch2001-06-121-3/+4
|
* just released another snapshotWerner Koch2001-05-281-29/+18
|
* last hour fixes.Werner Koch2001-04-281-1/+1
|
* Fixed translation issueWerner Koch2001-04-241-2/+6
|
* Estonian translation, .texi man pages.Werner Koch2001-04-171-6/+39
|
* Improved pipemode and tweaked handling of multiple signatures.Werner Koch2001-04-051-3/+12
|
* Made genkey work again.Werner Koch2001-03-271-1/+6
|
* Fixed a bugs; e.g. in --list-secret-keysWerner Koch2001-03-271-11/+14
|
* Key listing cleanupWerner Koch2001-03-131-0/+9
|
* worked on solving some bugsWerner Koch2001-03-121-18/+22
|
* Changed and added copyright noticesWerner Koch2001-03-081-6/+4
|
* Changed the implementation of iobuf to avoid stdio calls.Werner Koch2001-03-071-1/+1
|
* Fixed the new key selection codeWerner Koch2001-03-031-40/+87
|
* Fixed some bugs in the selection codeWerner Koch2001-02-081-2/+4
|
* Backported getkey.c from 1.1Werner Koch2001-02-081-724/+1096
|
* See ChangeLog: Thu Sep 14 17:45:11 CEST 2000 Werner KochWerner Koch2000-09-141-1/+34
|
* See ChangeLog: Fri May 12 14:01:20 CEST 2000 Werner KochWerner Koch2000-05-121-1/+1
|
* See ChangeLog: Mon May 1 15:38:04 CEST 2000 Werner KochWerner Koch2000-05-011-3/+5
|
generated by cgit v1.2.3 (git 2.25.1) at 2025-06-29 07:47:11 +0000