| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
| |
extra check for a bad passphrase and/or unknown cipher algorithm here.
We'll fail quite happily later, and usually with a better error
message to boot.
|
| |
|
|
|
| |
* sign.c (hash_for): Comments.
|
| |
|
|
|
|
|
|
|
|
|
| |
(add_keyserver_url): Use isascii() to protect the isfoo macros and
to replace direct tests. Possible problems noted by Christian
Biere.
* keyserver.c (parse_keyserver_uri): Ditto.
* g10.c (main): Declare --pipemode deprecated.
* misc.c (deprecated_command): New.
|
| |
|
|
|
|
|
|
|
| |
* card-util.c (card_edit): Add command "verify". Enhanced admin
command to allow optional arguments "on", "off" and "verify".
(card_status): Print private DOs in colon mode.
* app-openpgp.c (do_check_pin): Add hack to allow verification of
CHV3.
|
| |
|
|
|
|
|
| |
old ad-hoc connection code to gpg-agent. We do need this for the
forthcoming diversion of card code to an already running gpg-agent
with card-support.
|
| |
|
|
|
| |
signatures that use hashes other than SHA-1, RIPEMD160, or MD5.
|
| |
|
|
|
| |
AES key sizes.
|
| |
|
|
|
| |
callers. We no longer need to append to $PATH.
|
| |
|
|
|
|
| |
flag 4. Use log_info for errors registering the default secret key.
* g10.c (main): Flag the default keyrings.
|
| |
|
|
|
|
| |
Rather, call keyserver helpers with the full path. This fixes some
PATH-inspired DLL problems on W32. Noted by Carlo Luciano Bianco.
|
| |
|
|
|
| |
not there. This may happen due to typos in the translation.
|
| |
|
|
|
|
|
|
|
| |
* openfile.c (ask_outfile_name): Enable readline completion when prompting
for an output filename.
* plaintext.c (ask_for_detached_datafile): Enable readline completion when
prompting for a detached sig datafile.
|
| |
|
|
|
|
| |
indentation.
* card-util.c (command_generator, card_edit_completion): Ditto.
|
| |
|
|
|
|
|
| |
[GNUPG_MAJOR_VERSION==1 && HAVE_LIBREADLINE]: New functions to enable
command completion in the --card-edit menu. (card_edit): Call them
here.
|
| |
|
|
|
|
| |
New functions to enable command completion in the --edit-key menu.
(keyedit_menu): Call them here.
|
| |
|
|
|
| |
pick a disabled default. Noted by David Crick.
|
| |
|
|
|
| |
$libexecdir.
|
| |
|
|
|
|
| |
treat 'verbose' and 'include-disabled' as special. Just pass them through
silently to the keyserver helper.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
reader type specific.
(scan_or_find_devices): Do not check the interface subclass in the
SPR532 kludge, as this depends on the firmware version.
(ccid_get_atr): Get the Slot status first. This solves the
problem with readers hanging on recent Linux 2.6.x.
(bulk_in): Add argument TIMEOUT and changed all callers to pass an
appropriate one. Change the standard timeout from 10 to 5 seconds.
(ccid_slot_status): Add a retry code with an initial short timeout.
(do_close_reader): Do an usb_reset before closing the reader.
|
| |
|
|
|
|
|
|
| |
localized asctimestamp to match the timezone used in the key
information.
* miscutil.c (isotimestamp): New.
|
| |
|
|
|
|
|
|
| |
* mk-w32-dist: Check for patch files.
* w32installer.nsi: Translated a few more strings. Print a
warning if permssions are not suitable for the installation.
Add Uninstaller entries.
|
| |
|
|
|
| |
alias for http-proxy.
|
| |
|
|
|
| |
preventing --delete-secret-and-public-keys from deleting secret keys.
|
| |
|
|
|
| |
earlier.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fixes #423.
* DETAILS: Document new status codes.
* cardglue.c (agent_scd_pkdecrypt, agent_scd_pksign)
(agent_scd_genkey, agent_scd_setattr, agent_scd_change_pin)
(agent_scd_checkpin, agent_openpgp_storekey): Make sure to send a
SC_OP_FAILURE after card operations which might change data.
* card-util.c (change_pin): Send a SC_OP_SUCCESS after a PIN has
been changed.
(change_name): Removed a debug output.
* status.h, status.c: New codes BAD_PASSPHRASE_PIN, SC_OP_FAILURE
and SC_OP_SUCCESS.
* de.po: Updated. Translation is still in the works, though.
|
| |
|
|
|
| |
from a place where it is useful (i.e. --edit-key and not --sign-key).
|
| |
|
|
|
|
|
|
| |
keyserver if no URL is available.
* w32installer.nsi: Added page to select the language.
* mk-w32-dist: Create the opt.ini using the available languages.
|
| |
|
|
|
|
|
|
| |
* passphrase.c (agent_get_passphrase): Don't call free_public_key
if PK is NULL.
(passphrase_clear_cache): Ditto. Removed debug output.
(passphrase_to_dek): Ditto.
|
| |
|
|
|
| |
regards to the Mister and Zuccherato attack on OpenPGP CFB mode.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
is dirty and --interactive is set, do an --update-trustdb. If not
interactive, do a --check_trustdb unless --no-auto-check-trustdb is
set.
* import.c (import_keys_internal): Moved from here.
* keyserver.c (keyserver_refresh): Call it here after all refreshing
has happened so that we don't rebuild after each preferred keyserver
set of imports, but do one big rebuild at the end. This is Debian bug
#293816, noted by Kurt Roeckx.
|
| |
|
|
|
| |
backsigs code.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
before the encryption key. This is a partial workaround for a PGP bug
(as of this writing, all versions including 8.1), that causes it to
try and encrypt to the most recent subkey regardless of whether that
subkey is actually an encryption type. In this case, the auth key is
an RSA key so it succeeds.
|
| |
|
|
|
|
|
|
|
| |
instead of 0x0000000000000000 for the invalid key ID since all-zeroes
is reserved for the anonymous recipient.
* keyedit.c (change_passphrase), keygen.c (generate_subkeypair): Fix a
string ;)
|
| |
|
|
|
|
|
|
|
|
| |
ask for the passphrase. Return an error if the primary key is a
plain stub.
* keyedit.c (change_passphrase): Don't ever change any stub key.
Print a note if a key consists of only stub keys. Reported by
Dany Nativel. These are bugs #401 and #402.
|
| | |
|
| |
|
|
|
|
| |
address] syntax in keyserver URLs. (keyserver_typemap): Map ftps if
we are supporting it.
|
| |
|
|
|
|
| |
fixed at two places. Why at all didn't I used a goto to cleanup,
tsss?
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
the cache. Changed all callers.
(get_one_do): Bypass the cache if the value would have been read
directly for v1.1 cards.It makes things a bit slower but obnly for
1.0 cards and there are not that many cards out in the wild. This
is required to fix a caching bug when generating new keys; as a
side effect of the retrieval of the the C4 DO from the 6E DO the
chaced fingerprint will get updated to the old value and later
when signing the generated key the checking of the fingerprint
fails becuase it won't match the new one. Thanks to Moritz for
analyzing this problem.
(verify_chv3): Removed the CHV status reread logic because we
won't cache the C4 DO anymore.
|
| |
|
|
|
| |
(keyserver_typemap): Map https if we are supporting it.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
* card-util.c (card_status): Create asecret key stub on the fly
and print more information about a card key.
* import.c (pub_to_sec_keyblock, auto_create_card_key_stub): New.
* getkey.c (get_seckeyblock_byfprint): New.
* keylist.c (print_card_key_info): New.
|
| |
|
|
|
|
|
|
|
| |
initialization.
* gpgv.c (i18n_init) [W32]: Ditto.
* simple-gettext.c (set_gettext_file): Use MO files depending on
the installation directory. Add new arg REGKEY.
|
| |
|
|
|
|
| |
opening the keyring.
(secret_key_list): Ditto.
|
| |
|
|
|
| |
get ready for the readline completion code.
|
| |
|
|
|
|
| |
agent_get_passphrase, passphrase_clear_cache): Rename readline() to
readaline() to keep readline library namespace clear.
|
| |
|
|
|
|
|
|
|
|
| |
filter context instead of hardcoding '\n' or '\r\n'. If no eol string is
provided, default to '\n' or '\r\n' as appropriate. (is_armor_header):
Trim tabs in armor header lines as well.
* keyserver.c (keyserver_spawn): Use it here to force '\n' line endings
since the keyserver output file gets a LF->CRLF expansion on win32.
|
| |
|
|
|
|
|
| |
* armor.c (is_armor_header): Allow CR and LF (not just actual spaces) in
an armor header line (-----BEGIN etc). This is needed due to CRLF issues
on win32. As before, --openpgp makes it strict.
|
| |
|
|
|
| |
* import.c (delete_inv_parts): Comments on import-unusable-sigs.
|
| |
|
|
|
|
|
|
|
|
| |
import-unusable-sigs flag to enable importing unusable (currently:
expired) sigs.
* options.h, export.c (parse_export_options, do_export_stream): Add
export-unusable-sigs flag to enable exporting unusable (currently:
expired) sigs.
|
