| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| |
|
|
|
|
| |
Allow de/encryption using legacy type 20 keys.
Updated config.{sub,guess}
|
| |
|
|
|
|
|
| |
(malloc bombs) by force-commenting any characters aside from the ones
we explicitly want. (check_regexp): Use it here before passing the
regexp to regcomp().
|
| | |
|
| |
|
|
|
|
| |
Fixed bug 851.
Allow decryption using type 20 Elgamal keys.
|
| |
|
|
|
| |
Workaround for bad translations of the capability menu.
|
| |
|
|
|
|
|
|
|
| |
SHA-224 DER prefixes when verifying a signature. See the change
itself for more discussion.
* main.h, seskey.c (do_encode_md): Rename to pkcs1_encode_md and make
non-static.
|
| |
|
|
|
|
| |
"ciphername" and "digestname" config items so we can get a
script-parseable list of the names.
|
| | |
|
| |
|
|
|
|
|
| |
overcome problems with Mac OS 10.5 which seems to include
stdbool.h silently.
|
| |
|
|
|
| |
0x.
|
| | |
|
| |
|
|
|
| |
Updated gettext.
|
| |
|
|
|
| |
--openpgp/--rfc4880 mode.
|
| |
|
|
|
|
|
| |
Enable --require-cross-certification by default. --openpgp
(--rfc4880) is the same as --rfc2440 except with "--enable-dsa2
--no-rfc2440-text --escape-from-lines".
|
| |
|
|
|
|
|
| |
cleanup.
* armor.c (is_armor_header): Comment about 4880.
|
| |
|
|
|
|
|
|
|
| |
--rfc4880, and make --openpgp an alias to it. --rfc2440 now stands
alone. For now, use the old 2440 defaults for 4880.
* keyedit.c (keyedit_menu): Use compliance_option_string() instead of
printing the compliance modes here.
|
| |
|
|
|
| |
IDs.
|
| | |
|
| | |
|
| |
|
|
|
| |
only allows "Hash" in the signed data section.
|
| |
|
|
|
|
|
| |
2440bis-21. (parse_header_line): Call it here, as bis-21 requires
warning the user (but continuing to process the message) when seeing
an unknown header.
|
| |
|
|
|
|
| |
Minor W32 fix
Address change.
|
| |
|
|
|
| |
This is bug#809.
|
| |
|
|
|
|
|
|
| |
for are >=v4. (write_signature_packets, make_keysig_packet): Only
call it for >=v4 sigs. This allows --force-v3-sigs and
--force-v4-certs to enable or disable notations, policies, and
keyserver URLs. This is bug#800.
|
| |
|
|
|
|
|
|
|
| |
the literals count.
* verify.c (verify_one_file), decrypt.c (decrypt_messages): Call it
here so we allow multiple literals in --multifile mode (in different
files - not concatenated together).
|
| |
|
|
|
|
| |
present. Note that autoconf protects us against a strings.h that
cannot be used together with string.h.
|
| |
|
|
|
|
| |
contains 'P', 'G', 'P', and nothing but. (parse): Call it here.
(skip_packet): No longer need to handle marker packets here.
|
| |
|
|
|
|
| |
tests. Previous versions interpreted X_OK as F_OK anyway, so we'll
just use F_OK directly.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
fix_keyblock() or collapse_uids()) make sure we reprocess the keyblock
so the flags are correct. Noted by Robin H. Johnson.
* getkey.c (fixup_uidnode): Properly clear flags that don't apply to
us (revoked, expired) so that we can reprocess a uid.
|
| | |
|
| |
|
|
|
|
| |
* getkey.c (merge_selfsigs_subkey): Avoid listing the contents of a
backsig when list mode is on. Noted by Timo Schulz.
|
| | |
|
| | |
|
| |
|
|
|
|
| |
the time to use to calculate the expiration offset, rather than
querying it internally. Change all callers.
|
| |
|
|
|
|
| |
generate_keypair, generate_subkeypair): Pass a timestamp through to
all the gen_xxx functions.
|
| |
|
|
|
| |
operation.
|
| |
|
|
|
|
|
|
| |
Change all callers. (sign_file, clearsign_file,
sign_symencrypt_file): Calculate one timestamp for the whole
transaction. Different timestamps for each step can leak performance
information.
|
| |
|
|
|
| |
the need for ask_expiredate().
|
| |
|
|
|
|
|
|
| |
(write_keybinding): Have the various selfsigs created during key
generation use the timestamp of their parent key. This helps avoid
leaking information about the performance of the machine where the
keys were generated. Noted by Christian Danner.
|
| |
|
|
|
|
|
| |
reading even for corrupted packets.
* keygen.c (generate_user_id): Need to allocate one byte more.
Reported by Felix von Leitner.
|
| |
|
|
|
| |
RFC for CERT now that it is out of draft.
|
| |
|
|
|
| |
"make uninstall" works properly.
|
| | |
|
| |
|
|
|
|
| |
This required some code cleanups and the introduction of
a few accessor ducntions in mpi.
|
| |
|
|
|
|
|
|
|
| |
* configure.ac: Remove GNUPG_DATADIR for non-W32 systems.
g10/
* Makefile.am (AM_CPPFLAGS): Define GNUPG_DATADIR.
* openfile.c (copy_options_file): Use log_info and not log_error
to avoid error returns in case of a missing skeleton file.
|
| | |
|
| |
|
|
|
|
| |
"already clean" when a minimized key is minimized again. From Dirk
Traulsen.
|
| |
|
|
|
|
|
| |
--passphrase-repeat option to control how many times gpg will
re-prompt for a passphrase to ensure the user has typed it correctly.
Defaults to 1.
|
