| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
| |
attributes so we can do subkey searches.
* gpgkeys_ldap.c (main): Under certain error conditions, we might try and
unbind twice. Don't.
|
| |
|
|
|
|
|
| |
we can try a modify operation first, and fail over to an add if that
fails. Add cannot cope with the NULLs at the head of the modify request,
so we jump into the list in the middle.
|
| |
|
|
|
| |
whitespace afterwards.
|
| |
|
|
|
| |
spaces" type options.
|
| |
|
|
|
|
|
| |
connection to the NAI keyserver since we cannot tell if it is a NAI
keyserver until we connect. Fail if we cannot find a base keyspace DN.
Fix a false success message for TLS being enabled.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
(min_automake_version): New.
* LINGUAS: Added all languages we supported in 1.2.5.
Copied all po files from 1.2.5.
* autogen.sh: Updated to the modern version, grepping the required
tool versions from configure.ac.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
uids are always on a line for themselves. Mark expired secret keys as
expired.
* options.h, g10.c (main): Rename list show-validity to show-uid-validity
as it only shows for uids.
* armor.c (armor_filter): Do not use padding to get us to 8 bytes of
header. Rather, use 2+4 as two different chunks. This avoids a fake
filename of "is".
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
expired user IDs. Also, once we've established that a given uid cannot or
will not be signed, don't continue to ask about each sig.
* mainproc.c (proc_symkey_enc), seckey-cert.c (do_check): Check the S2K
hash algorithm before we try to generate a passphrase using it. This
prevents hitting BUG() when generating a passphrase using a hash that we
don't have.
* sign.c (sign_symencrypt_file): Allow using --force-mdc in --sign
--symmetric messages.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
continuing confusion and make room for possible changes in devel.
* parse-packet.c (parse_plaintext): Show the hex value for the literal
packet mode since it may not be printable.
* keygen.c (make_backsig): Make sure that the backsig was built
successfully before we try and use it.
* status.h, status.c (get_status_string), plaintext.c (handle_plaintext):
New status tags PLAINTEXT and PLAINTEXT_LENGTH.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
* gpg.sgml: Clarify that --min-cert-level disregards level 1 certs by
default. Clarify include-revoked a bit to note that keyservers might not
be accurate. Note that --charset is --display-charset. Some language
tweaks for --simple-sk-checksum (Debian 251795). Note the PGP silliness
with preferred keyserver subpackets causing PGP/MIME.
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
| |
NULL.
* passphrase.c (passphrase_to_dek): Added a few comments to the
code.
|
| |
|
|
|
| |
* autogen.sh <--build-w32>: Build keyserver helpers again.
|
| |
|
|
|
| |
gpgkeys_hkp.c.
|
| |
|
|
|
|
| |
we don't do a regular keyserver fetch if the preferred keyserver fetch has
exhausted the list.
|
| | |
|
| |
|
|
|
|
|
|
| |
which we hashed them when issuing the signature. Noted by Nicholas Cole.
* pkclist.c (do_edit_ownertrust): Fix a kbnode leak and do another
keyid-format conversion.
|
| | |
|
| | |
|
| |
|
|
|
| |
keyserver in a regular data sig to fetch the signing key.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
keyservers, and auto-key-retrieve is set, try and get a missing key from
the preferred keyserver subpacket when we verify the sig.
* gpgv.c (parse_preferred_keyserver, free_keyserver_spec): Stubs.
* keyserver.c (keyidlist): Use new parse_preferred_keyserver function.
(keyserver_work): Use the passed-in keyserver spec rather than the options
global one.
* keyserver-internal.h, keyserver.c (parse_preferred_keyserver): New
function to take a sig and return a split out keyserver_spec.
(keyserver_import_keyid): Now takes a keyserver_spec.
|
| |
|
|
|
| |
path use a path of "/".
|
| |
|
|
|
|
| |
--keyserver-option honor-keyserver-url, and --list and --verify option
show-std/user-notations.
|
| |
|
|
|
|
|
|
|
| |
merge selfsigs if we have to for honor-keyserver-url. (keyserver_refresh):
Keyserver URL handler moved here. (calculate_keyid_fpr): Removed.
* keydb.h, keyid.c (keystr_from_desc): Calculate a key string from a
KEYDB_SEARCH_DESC.
|
| |
|
|
|
| |
available now, since it's a replacement function.
|
| |
|
|
|
| |
setenv() any longer.
|
| |
|
|
|
|
|
|
|
| |
unsetenv.c.
* setenv.c: Removed.
* unsetenv.c: Removed.
|
| |
|
|
|
| |
platforms. Noted by Roger Sondermann.
|
| |
|
|
|
|
|
|
|
|
|
| |
keyserver to happen even if there is no global keyserver set.
* sig-check.c (do_check_messages): No need to check for Elgamal signatures
any longer. (do_check_messages, do_check, check_key_signature2):
--keyid-format conversion.
* pkclist.c (show_paths, edit_ownertrust): Remove some unused code.
|
| |
|
|
|
|
|
|
| |
* README: Update version and note that HKP is no longer build in.
* configure.ac: Handle --disable-http and other code to properly build
gpgkeys_http.
|
| |
|
|
|
|
|
| |
keyserver interface.
* Makefile.am: Build it.
|
| |
|
|
|
|
|
|
|
|
|
| |
* mainproc.c (check_sig_and_print): track whether we are retrieving a key.
* status.c (status_currently_allowed): New. (write_status_text,
write_status_text_and_buffer): Use it here.
* g10.c: New command --gpgconf-list. (gpgconf_list): New. From Werner on
stable branch.
|
| |
|
|
|
|
| |
* mpi-pow.c (mpi_powm): s/exp/exponent/ to shutup a compiler warning.
From Werner on stable branch.
|
| |
|
|
|
| |
on stable branch.
|
| |
|
|
|
| |
stable branch.
|
| |
|
|
|
|
|
|
|
| |
--ask-cert-level, --keyid-format, and the removal of show-long-keyids, the
quasi-1991 partial length encoding, --export-all, and include-non-rfc.
* acinclude.m4 (GNUPG_SYS_NM_PARSE): Remove a leftover slash in a sed
expression.
|
| |
|
|
|
|
| |
does not recode messages themselves. Remove include-non-rfc
export-option.
|
| |
|
|
|
| |
(show_key_with_all_names, show_basic_key_info): --keyid-format conversion.
|
| |
|
|
|
|
|
| |
out when remaking a self-signature. Noted by Atom Smasher.
* keyserver.c (parse_keyserver_uri): Fix compiler warnings.
|
| |
|
|
|
|
|
| |
Improved URI parser that keeps track of the path information and doesn't
modify the input string. (keyserver_spawn): Tell keyserver plugins about
the path.
|
| |
|
|
|
|
|
|
|
|
| |
(list_one): Use const char* for i18n string helpers.
* keygen.c (do_generate_keypair, read_parameter_file): Really
close the files.
(do_generate_keypair): Create the secret key file using safe
permissions. Noted by Atom Smasher.
|
| |
|
|
|
|
| |
keyrec, parse_keyrec, keyserver_search_prompt), keyedit.c (keyedit_menu),
g10.c (add_keyserver_url, add_policy_url): Fix some compiler warnings.
|
| |
|
|
|
|
|
| |
* gpg.sgml: Document --no-use-embedded-filename and --min-cert-level.
* gpgv.sgml: Removed leftover </para>.
|
| |
|
|
|
|
|
|
|
|
| |
preferred keyserver on "keyserver" command line. Sanity check keyserver
URL before accepting it.
* keyserver-internal.h, g10.c (main), keyserver.c (parse_keyserver_uri):
Add an option to require the scheme:// and change all callers.
(free_keyserver_spec): Make public.
|
| |
|
|
|
| |
large files in the same way as in encode.c.
|
| |
|
|
|
|
|
|
|
|
| |
show. Don't allow a not-shown notation to prevent us from issuing the
proper --status-fd message.
* options.h, g10.c (main): Add show-std/standard-notations and
show-user-notations. show-notations is both. Default is to show standard
notations only during verify. Change all callers.
|
| |
|
|
|
| |
--no-default-keyring.
|
