| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
card to fetch an updated copy. Works with either straight URLs or HKP or
LDAP keyservers.
* keyserver-internal.h, keyserver.c (keyserver_import_fprint), import.c
(revocation_present): Use a keyserver_spec so the caller can pass in
whatever keyserver they like.
|
| |
|
|
|
| |
when using --enable-m-guard.
|
| |
|
|
|
|
| |
* configure.ac: Check for usb_get_busses since very old stable libusb
doesn't have it.
|
| |
|
|
|
|
| |
accessible. (ccid_open_reader): Allow working with an even older version
of libusb (usb_busses global instead of usb_get_busses()).
|
| | |
|
| |
|
|
|
| |
for proxies and direct requests. Suggested by Florent Thoumie.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* configure.ac: Check for readline. Make enable-card-support the
default. New option --without-readline. Allow the use of either
the development or the stable libusb.
* cardglue.h: Add members for CA fingerprints.
* cardglue.c (agent_release_card_info): Invalid them.
(learn_status_cb): Store them.
* app-common.h, app-openpgp.c, iso7816.c, iso7816.h
* apdu.c, apdu.h, ccid-driver.c, ccid-driver.h
* card-util.c: Updated from current gnupg-1.9.
* ccid-driver.h (CCID_DRIVER_ERR_ABORTED): New.
* ccid-driver.c (ccid_open_reader): Support the stable 0.1 version
of libusb.
(ccid_get_atr): Handle short messages.
* apdu.c (my_rapdu_get_status): Implemented.
* apdu.c: Include <signal.h>.
* apdu.c (reader_table_s): Add function pointers for the backends.
(apdu_close_reader, apdu_get_status, apdu_activate)
(send_apdu): Make use of them.
(new_reader_slot): Intialize them to NULL.
(dump_ccid_reader_status, ct_dump_reader_status): New.
(dump_pcsc_reader_status): New.
(open_ct_reader, open_pcsc_reader, open_ccid_reader)
(open_osc_reader, open_rapdu_reader): Intialize function pointers.
(ct_activate_card, ct_send_apdu, pcsc_send_apdu, osc_send_apdu)
(error_string): Removed. Replaced by apdu_strerror.
(get_ccid_error_string): Removed.
(ct_activate_card): Remove the unused loop.
(reset_ct_reader): Implemented.
(ct_send_apdu): Activate the card if not yet done.
(pcsc_send_apdu): Ditto.
* ccid-driver.h: Add error codes.
* ccid-driver.c: Implement more or less proper error codes all
over the place.
* apdu.c (apdu_send_direct): New.
(get_ccid_error_string): Add some error code mappings.
(send_apdu): Pass error codes along for drivers already supporting
them.
(host_sw_string): New.
(get_ccid_error_string): Use above.
(send_apdu_ccid): Reset the reader if it has not yet been done.
(open_ccid_reader): Don't care if the ATR can't be read.
(apdu_activate_card): New.
(apdu_strerror): New.
(dump_reader_status): Only enable it with opt.VERBOSE.
* iso7816.c (map_sw): Add mappings for the new error codes.
* apdu.c (open_ct_reader, open_pcsc_reader, open_ccid_reader)
(reset_ccid_reader, open_osc_reader): Call dump_reader_status only
in verbose mode.
* app-openpgp.c (do_getattr): Fix for sending CA-FPR.
* app-openpgp.c (app_openpgp_readkey): Fixed check for valid
exponent.
* app-openpgp.c (do_setattr): Sync FORCE_CHV1.
* card-util.c (change_login): Kludge to allow reading data from a
file.
(card_edit): Pass ARG_STRING to change_login.
(card_status): Print CA fingerprints.
(change_cafpr): New.
(card_edit): New command CAFPR.
* errors.h (G10ERR_NO_CARD, G10ERR_CANCELED): New error codes.
* errors.c (g10_errstr): New error codes G10ERR_NO_CARD,
G10ERR_CANCELED.
|
| |
|
|
|
|
|
|
|
|
| |
* signal.c (got_fatal_signal): Do readline cleanup. Print signal
number if we can't print the name. Use new autoconf macro
HAVE_DECL_SYS_SIGLIST.
(get_signal_name): Removed.
* ttyio.c (tty_get): Add readline support.
|
| |
|
|
|
|
|
|
|
| |
* parse-packet.c (skip_rest): Removed. Changed all callers to use
the new iobuf_skip_reset. Orginal patch by Florian Weimer.
* iobuf.c (iobuf_skip_rest): New. Orginal patch by Florian
Weimer. Added new argument PARTIAL.
|
| |
|
|
|
| |
printf. Put _() around one string.
|
| |
|
|
|
| |
know the key is definitely expired. Some translatable string cleanup.
|
| | |
|
| | |
|
| |
|
|
|
| |
Change some "this" to `this'.
|
| |
|
|
|
|
| |
search_key), gpgkeys_http.c (get_key): Do not give informational logs
since this is now done inside gpg.
|
| |
|
|
|
|
|
|
|
| |
we are taking.
* keyid.c (keystr): If printing a keyid that lacks the high 4 bytes, print
the low 4 alone. (keystr_from_desc): Handle short keyids and warn on v3
fingerprints.
|
| |
|
|
|
|
|
| |
and remove the printable stuff since we're print-ifying valid utf8
characters. Change all callers in import.c, sign.c, keylist.c, and
encode.c.
|
| |
|
|
|
|
| |
""") in HTML responses. (search_key): Search key must be unsigned for
url encoder to work properly for 8-bit values.
|
| |
|
|
|
| |
function build_info().
|
| |
|
|
|
| |
converted from UTF-8 before display.
|
| |
|
|
|
| |
got shrunk due to encoding.
|
| |
|
|
|
|
|
|
| |
full DN rather than LDAP_SCOPE_ONELEVEL plus a filter to find the
pgpServerInfo object. Some LDAP setups don't like the search. (main):
Stop binding to the server since it seems no server really requires it,
and some require it not be there.
|
| |
|
|
|
| |
characters. Noted by Vladimir Novak.
|
| |
|
|
|
|
| |
substituting code to actually do clever things. Thanks to
Matthias Urlichs for noting the implementation problem.
|
| |
|
|
|
| |
* passphrase.c (agent_get_passphrase):
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* g10.c (main): New alias --throw-keyid for --throw-keyids, so that it
continues to work in old configuration files. Noted by Jens Adam.
* pkclist.c (algo_available): --pgp8 now allows blowfish, zlib, and bzip2.
* status.c (do_get_from_fd): Flush stdout if status isn't flushing it for
us. This guarantees that any menus that were displayed before the prompt
don't get stuck in a buffer. Noted by Peter Palfrader. This is Debian
bug #254072.
* sign.c (update_keysig_packet): Revert change of 2004-05-18. It is not
appropriate to strip policy and notations when remaking a sig. That
should only happen when specifically requested by the user.
|
| |
|
|
|
|
| |
--keyid-format. Rename show-validity as show-uid-validity.
--ask-cert-level defaults to no.
|
| |
|
|
|
| |
CRC is a MAY).
|
| |
|
|
|
|
|
|
| |
with OpenLDAP, but it's practically vital to debug SSL and TLS setups.
Add "basedn" option. This allows users to override the autodetection for
base DN. SSL overrides TLS, so TLS will not be started on SSL connections
(starting an already started car).
|
| |
|
|
|
|
|
|
| |
attributes so we can do subkey searches.
* gpgkeys_ldap.c (main): Under certain error conditions, we might try and
unbind twice. Don't.
|
| |
|
|
|
|
|
| |
we can try a modify operation first, and fail over to an add if that
fails. Add cannot cope with the NULLs at the head of the modify request,
so we jump into the list in the middle.
|
| |
|
|
|
| |
whitespace afterwards.
|
| |
|
|
|
| |
spaces" type options.
|
| |
|
|
|
|
|
| |
connection to the NAI keyserver since we cannot tell if it is a NAI
keyserver until we connect. Fail if we cannot find a base keyspace DN.
Fix a false success message for TLS being enabled.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
(min_automake_version): New.
* LINGUAS: Added all languages we supported in 1.2.5.
Copied all po files from 1.2.5.
* autogen.sh: Updated to the modern version, grepping the required
tool versions from configure.ac.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
uids are always on a line for themselves. Mark expired secret keys as
expired.
* options.h, g10.c (main): Rename list show-validity to show-uid-validity
as it only shows for uids.
* armor.c (armor_filter): Do not use padding to get us to 8 bytes of
header. Rather, use 2+4 as two different chunks. This avoids a fake
filename of "is".
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
expired user IDs. Also, once we've established that a given uid cannot or
will not be signed, don't continue to ask about each sig.
* mainproc.c (proc_symkey_enc), seckey-cert.c (do_check): Check the S2K
hash algorithm before we try to generate a passphrase using it. This
prevents hitting BUG() when generating a passphrase using a hash that we
don't have.
* sign.c (sign_symencrypt_file): Allow using --force-mdc in --sign
--symmetric messages.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
continuing confusion and make room for possible changes in devel.
* parse-packet.c (parse_plaintext): Show the hex value for the literal
packet mode since it may not be printable.
* keygen.c (make_backsig): Make sure that the backsig was built
successfully before we try and use it.
* status.h, status.c (get_status_string), plaintext.c (handle_plaintext):
New status tags PLAINTEXT and PLAINTEXT_LENGTH.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
* gpg.sgml: Clarify that --min-cert-level disregards level 1 certs by
default. Clarify include-revoked a bit to note that keyservers might not
be accurate. Note that --charset is --display-charset. Some language
tweaks for --simple-sk-checksum (Debian 251795). Note the PGP silliness
with preferred keyserver subpackets causing PGP/MIME.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
NULL.
* passphrase.c (passphrase_to_dek): Added a few comments to the
code.
|
| |
|
|
|
| |
* autogen.sh <--build-w32>: Build keyserver helpers again.
|
| |
|
|
|
| |
gpgkeys_hkp.c.
|
| |
|
|
|
|
| |
we don't do a regular keyserver fetch if the preferred keyserver fetch has
exhausted the list.
|
| | |
|
| |
|
|
|
|
|
|
| |
which we hashed them when issuing the signature. Noted by Nicholas Cole.
* pkclist.c (do_edit_ownertrust): Fix a kbnode leak and do another
keyid-format conversion.
|
