| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
| |
* options.h (opt): Added mangle-dos-filenames.
* openfile.c (open_outfile) [USE_ONLY_8DOT3]: Truncate the
filename only when this option is set; this is the default.
NOT YET TESTED!
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Minimal isn't always best.
* sign.c (update_keysig_packet): Use the current time rather then a
modification of the original signature time. Make sure that this doesn't
cause a time warp.
* keygen.c (keygen_add_key_expire): Properly handle a key expiration date
in the past (use a duration of 0).
* keyedit.c (menu_expire): Use update_keysig_packet so any sig subpackets
are maintained during the update.
* build-packet.c (build_sig_subpkt): Mark sig expired or unexpired when
the sig expiration subpacket is added. (build_sig_subpkt_from_sig): Handle
making an expiration subpacket from a sig that has already expired (use a
duration of 0).
|
| |
|
|
|
|
| |
(menu_set_primary_uid, menu_set_preferences): Add ability to issue 0x18
subkey binding sigs to update_keysig_packet and change all callers.
|
| |
|
|
|
|
|
|
|
| |
pkclist.c (algo_available), revoke.c (gen_revoke): Add --pgp8 mode. This
is basically identical to --pgp7 in all ways except that signing subkeys,
v4 data sigs (including expiration), and SK comments are allowed.
* getkey.c (finish_lookup): Comment.
|
| |
|
|
|
|
|
|
|
|
|
| |
user ID display in the --edit-key menu to match that of the --list-keys
display.
* tdbio.c (tdbio_read_record, tdbio_write_record): Comments to reserve a
byte for trust model in the devel version.
* g10.c (add_notation_data): Fix initialization.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
expiration date of a subkey. This is not the most optimal solution, but
it is minimal change on the stable branch.
* main.h, keygen.c (do_copy_key_flags): New function to copy key flags, if
any, from one sig to another. (do_add_key_expire): New function to add key
expiration to a sig. (keygen_copy_flags_add_expire): New version of
keygen_add_key_expire that also copies key flags.
(keygen_add_key_flags_and_expire): Use do_add_key_expire.
* import.c (fix_hkp_corruption): Comment.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
'@', unless --expert is set. This is to help prevent people from
polluting the (as yet unused) IETF namespace.
* main.h: Comments about default algorithms.
* photoid.c (image_type_to_string): Comments about 3-letter file
extensions.
* g10.c (main): Add --strict and --no-strict as no-ops to smooth
transition when the devel GnuPG becomes the stable one.
|
| | |
|
| |
|
|
|
|
|
|
|
|
| |
display match the validity and trust of --with-colons --list-keys.
* passphrase.c (agent_send_all_options): Fix compile warning.
* keylist.c (list_keyblock_colon): Validity for subkeys should match that
of the primary key, and not that of the last user ID.
|
| |
|
|
|
|
|
|
| |
these facts onto all their subkeys, but only after the subkey has a chance
to be marked valid. This is to fix an incorrect "invalid public key"
error verifying a signature made by a revoked signing subkey, with a valid
unrevoked primary key.
|
| |
|
|
|
| |
get the default ttyname.
|
| |
|
|
|
| |
--with-colons listing.
|
| |
|
|
|
| |
transition to 1.4.
|
| |
|
|
|
|
|
| |
encode_crypt), sign.c (write_plaintext_packet): Use wipememory() instead
of memset() to wipe sensitive memory as the memset() might be optimized
away.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
(get_pubkey_fast): this and made extern.
(get_pubkey_byfprint_fast): New.
* import.c (import_one): Use get_pubkey_fast instead of
get_pubkey. We don't need a merged key and actually this might
lead to recursions. --> There is still a problem, though.
(revocation_present): Likewise for search by fingerprint.
* g10.c (main): Try to create the trustdb even for non-colon-mode
list-key operations. This is required because getkey needs to
know whether a a key is ultimately trusted.
|
| | |
|
| | |
|
| |
|
|
|
| |
has been assigned.
|
| |
|
|
|
|
|
|
|
|
| |
we don't need it here as it behaves more like a Posix system.
* passphrase.c (agent_get_passphrase): Ditto.
* tdbio.c (MY_O_BINARY): Need binary mode with Cygwin.
* g10.c, gpgv.c (main) [__CYGWIN32__]: Don't get the homedir from
the registry.
|
| |
|
|
|
|
| |
be enhanced to also show the current trust level. Suggested by
Florian Weimer.
|
| |
|
|
|
|
| |
(do_generate_keypair): Use it to print the fingerprint.
(generate_subkeypair): Likewise.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
of sign&encrypt primary keys that have secret-parts-missing (i.e. no
capabilities at all).
|
| |
|
|
|
|
|
|
|
| |
function as they may not have all their fields filled in.
* sig-check.c (signature_check2): Use new is_primary flag to check rather
than comparing main_keyid with keyid as this still works in the case of a
not fully filled in pk.
|
| |
|
|
|
| |
problem in %-escaping. Noted by Ingo Kl�cker.
|
| |
|
|
|
| |
that fact in the capabilities.
|
| |
|
|
|
|
|
|
| |
(it already exists for secret keys).
* keylist.c (print_capabilities): Only primary signing keys can certify
other keys.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
cipher when importing a secret key.
* keylist.c (list_keyblock_print): Show a '#' for a secret-parts-missing
key.
* parse_packet.c (parse_key): Some comments.
* revoke.c (gen_revoke): Remove some debugging code.
* trustdb.c (verify_own_keys): Make trusted-key a non-deprecated option
again.
|
| |
|
|
|
| |
in question is in fact IDEA.
|
| |
|
|
|
|
| |
clean ownertrust. (import_revoke_cert): Remove ultimate trust when
revoking an ultimately trusted key.
|
| |
|
|
|
|
|
| |
(merge_selfsigs_main): Use it here to look for an ultimately
trusted key. Using the full get_pubkey might lead to a infinitive
recursion.
|
| |
|
|
|
|
| |
--pgp2 mode as PGP 2 can't handle the unknown length literal packet.
Reported by Michael Richardson.
|
| |
|
|
|
| |
lowercase to be case-insensitive.
|
| |
|
|
|
| |
revocation import.
|
| |
|
|
|
|
| |
this.
* gpgv.c (set_homedir): Ditto.
|
| |
|
|
|
|
|
|
|
|
|
| |
--with-colons listing.
* keyserver.c (keyserver_spawn): Properly handle line truncation. Don't
leak memory (~10-20 bytes) on searches.
(keyserver_search_prompt): Cleanup.
* hkp.c (hkp_search): Properly handle line truncation.
|
| |
|
|
|
|
| |
keys must be at least v4 to carry the revocation key subpacket. Add a PGP
2.x warning for revocation keys.
|
| |
|
|
|
| |
already done for 1.2.
|
| |
|
|
|
|
|
|
|
| |
(don't incorporate string parts).
* keyedit.c (sign_uids): Make strings translatable.
* sig-check.c (check_key_signature2): Make string translatable.
|
| |
|
|
|
|
|
|
|
|
|
| |
* main.h, sig-check.c (check_revocation_keys): to here. Also return the
signature_check error code rather than 0/1 and cache the sig result.
* sig-check.c (check_key_signature2): Divert to check_revocation_keys if a
revocation sig is made by someone other than the pk owner.
* getkey.c (merge_selfsigs_main): Tidy.
|
| | |
|
| |
|
|
|
| |
commands.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* misc.c (checksum_u16_nobug): Removed.
(checksum_u16): Removed the bug emulation.
(checksum_mpi): Ditto.
(checksum_mpi_counted_nbits): Removed and replaced all calls
with checksum_mpi.
* parse-packet.c (read_protected_v3_mpi): New.
(parse_key): Use it here to store it as an opaque MPI.
* seckey-cert.c (do_check): Changed the v3 unprotection to the new
why to store these keys.
(protect_secret_key): Likewise.
* build-packet.c (do_secret_key): And changed the writing.
|
| |
|
|
|
| |
(exec_write): Missed one tick.
|
| | |
|
| |
|
|
|
|
|
| |
Use a better error message for when no = is found.
* hkp.c (hkp_export): Use CRLF in headers.
|
| |
|
|
|
|
|
| |
printing the list of keys a message was encrypted to. This would make gpg
give a non-zero exit code even for completely valid messages if the
message was encrypted to more than one key that the user owned.
|
| |
|
|
|
|
|
|
|
| |
used one in verbosity level 3.
* gpgv.c (main): Try to set a default character set.
* status.c, status.h (STATUS_IMPORT_OK): New.
* import.c (import_one,import_secret_one): Print new status.
|
| |
|
|
|
|
| |
user. This (or a disabled key) fail with "unavailable pubkey"
(G10ERR_UNU_PUBKEY).
|
