1998-07-14 19:10:28 +02:00
|
|
|
Noteworthy changes in version 0.3.3
|
|
|
|
|
-----------------------------------
|
1998-07-29 21:35:05 +02:00
|
|
|
* The format of the trust database has changed; you must delete
|
|
|
|
|
the old one, so gnupg can create a new one.
|
|
|
|
|
IMPORTANT: Use version 0.3.[12] to save your assigned ownertrusts
|
|
|
|
|
("gpgm --list-ownertrust >saved-trust"); then build this new version
|
|
|
|
|
and restore the ownertrust with this new version
|
|
|
|
|
("gpgm --import-ownertrust saved-trust").
|
|
|
|
|
|
|
|
|
|
* The command --edit-key now provides a commandline driven menu
|
|
|
|
|
which can be used vor vaious tasks. --sign-key is only an
|
|
|
|
|
an alias to --edit-key and maybe removed in future: use the
|
|
|
|
|
command "sign" of this new menu - you can select which user ids
|
|
|
|
|
you want to sign.
|
|
|
|
|
|
|
|
|
|
* Alternate user ids can now be created an signed.
|
|
|
|
|
|
1998-07-14 19:10:28 +02:00
|
|
|
* Removed options --gen-prime and --gen-random.
|
|
|
|
|
|
1998-07-29 21:35:05 +02:00
|
|
|
* Removed option --add-key; use --edit-key instead.
|
|
|
|
|
|
|
|
|
|
* Removed option --change-passphrase; use --edit-key instead.
|
|
|
|
|
|
1998-07-14 19:10:28 +02:00
|
|
|
* Signatures are now checked even if the output file could not
|
|
|
|
|
be created. Command "--verify" tries to find the detached data.
|
|
|
|
|
|
|
|
|
|
* gpg now disables core dumps.
|
|
|
|
|
|
1998-07-29 21:35:05 +02:00
|
|
|
* We have added the Twofish as an experimental cipher algorithm.
|
|
|
|
|
Many thanks to Matthew Skala for doing this work.
|
|
|
|
|
Twofish is the AES submission from Schneier et al.; see
|
|
|
|
|
"www.counterpane.com/twofish.html" for more information.
|
|
|
|
|
|
|
|
|
|
|
1998-07-14 19:10:28 +02:00
|
|
|
|
1998-07-09 15:37:17 +02:00
|
|
|
Noteworthy changes in version 0.3.2
|
|
|
|
|
-----------------------------------
|
|
|
|
|
* Fixed some bugs when using --textmode (-seat)
|
|
|
|
|
|
|
|
|
|
* Now displays the trust status of a positive verified message.
|
|
|
|
|
|
|
|
|
|
* Keyrings are now scanned in the sequence they are added with
|
|
|
|
|
--[secret-]keyring. Note that the default keyring is implictly
|
|
|
|
|
added as the very first one unless --no-default-keyring is used.
|
|
|
|
|
|
|
|
|
|
* Fixed setuid and dlopen bug.
|
|
|
|
|
|
1998-07-06 12:23:57 +02:00
|
|
|
Noteworthy changes in version 0.3.1
|
|
|
|
|
-----------------------------------
|
|
|
|
|
* Partial headers are now written in the OpenPGP format if
|
|
|
|
|
a key in a v4 packet is used.
|
|
|
|
|
|
|
|
|
|
* Removed some unused options, removed the gnupg.sig stuff.
|
|
|
|
|
|
|
|
|
|
* Key lookup by name now returns a key which can be used for
|
|
|
|
|
the desired action.
|
|
|
|
|
|
|
|
|
|
* New options --list-ownertrust (gpgm) to make a backup copy
|
|
|
|
|
of the ownertrust values you assigned.
|
|
|
|
|
|
|
|
|
|
* clear signature headers are now in compliance with OpenPGP.
|
|
|
|
|
|
1998-06-15 17:41:04 +02:00
|
|
|
Noteworthy changes in version 0.3.0
|
|
|
|
|
-----------------------------------
|
1998-06-25 12:19:08 +02:00
|
|
|
|
1998-06-15 17:41:04 +02:00
|
|
|
* New option --emulate-checksum-bug. If your passphrase does not
|
|
|
|
|
work anymore, use this option and --change-passphrase to rewrite
|
|
|
|
|
your passphrase.
|
|
|
|
|
|
1998-06-25 12:19:08 +02:00
|
|
|
* More complete v4 key support: Preferences and expiration time
|
|
|
|
|
is set into the self signature.
|
|
|
|
|
|
|
|
|
|
* Key generation defaults to DSA/ElGamal keys, so that new keys are
|
|
|
|
|
interoperable with pgp5
|
|
|
|
|
|
|
|
|
|
* DSA key generation is faster and key generation does not anymore
|
|
|
|
|
remove entropy from the random generator (the primes are public
|
|
|
|
|
parameters, so there is really no need for a cryptographic secure
|
|
|
|
|
prime number generator which we had used).
|
|
|
|
|
|
|
|
|
|
* A complete new structure for representing the key parameters.
|
|
|
|
|
|
|
|
|
|
* Removed most public key knowledge into the cipher libray.
|
1998-06-15 17:41:04 +02:00
|
|
|
|
1998-06-25 12:19:08 +02:00
|
|
|
* Support for dynamic loading of new algorithms.
|
1998-06-15 17:41:04 +02:00
|
|
|
|
1998-06-25 12:19:08 +02:00
|
|
|
* Moved tiger to an extension module.
|
1998-06-15 17:41:04 +02:00
|
|
|
|
|
|
|
|
|
1998-05-26 15:38:00 +02:00
|
|
|
Noteworthy changes in version 0.2.19
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Replaced /dev/urandom in checks with new tool mk-tdata.
|
|
|
|
|
|
|
|
|
|
* Some assembler file cleanups; some more functions for the Alpha.
|
|
|
|
|
|
|
|
|
|
* Tiger has now the OpenPGP assigned number 6. Because the OID has
|
|
|
|
|
changed, old signatures using this algorithm can't be verified.
|
|
|
|
|
|
|
|
|
|
* gnupg now encrypts the compressed packed and not any longer in the
|
|
|
|
|
reverse order; anyway it can decrypt both versions. Thanks to Tom
|
|
|
|
|
for telling me this (not security related) bug.
|
|
|
|
|
|
|
|
|
|
* --add-key works and you are now able to generate subkeys.
|
|
|
|
|
|
1998-05-29 13:53:54 +02:00
|
|
|
* It is now possible to generate ElGamal keys in v4 packets to create
|
|
|
|
|
valid OpenPGP keys.
|
|
|
|
|
|
|
|
|
|
* Some new features for better integration into MUAs.
|
|
|
|
|
|
|
|
|
|
|
1998-05-13 19:53:36 +02:00
|
|
|
Noteworthy changes in version 0.2.18
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
1998-05-15 20:49:19 +02:00
|
|
|
* Splitted cipher/random.c, add new option "--disable-dev-random"
|
1998-05-13 19:53:36 +02:00
|
|
|
to configure to support the development of a random source for
|
|
|
|
|
other systems. Prepared sourcefiles rand-unix.c, rand-w32.c
|
|
|
|
|
and rand-dummy.c (which is used to allow compilation on systems
|
|
|
|
|
without a random source).
|
|
|
|
|
|
1998-05-15 20:49:19 +02:00
|
|
|
* Fixed a small bug in the key generation (it was possible that 48 bits
|
1998-05-13 19:53:36 +02:00
|
|
|
of a key were not taken from the random pool)
|
|
|
|
|
|
1998-05-15 20:49:19 +02:00
|
|
|
* Add key generation for DSA and v4 signatures.
|
|
|
|
|
|
|
|
|
|
* Add a function trap_unaligned(), so that a SIGBUS is issued on
|
|
|
|
|
Alphas and not the slow emulation code is used. And success: rmd160
|
|
|
|
|
raised a SIGBUS.
|
|
|
|
|
|
|
|
|
|
* Enhanced the formatting facility of argparse and changed the use of
|
|
|
|
|
\r,\v to @ because gettext does not like it.
|
|
|
|
|
|
|
|
|
|
* New option "--compress-algo 1" to allow the creation of compressed
|
|
|
|
|
messages which are readable by PGP and "--print-md" (gpgm) to make
|
|
|
|
|
speed measurement easier.
|
1998-05-13 19:53:36 +02:00
|
|
|
|
|
|
|
|
|
1998-05-04 20:49:26 +02:00
|
|
|
Noteworthy changes in version 0.2.17
|
1998-05-03 21:35:33 +02:00
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Comment packets are now of private type 61.
|
|
|
|
|
|
1998-05-04 20:49:26 +02:00
|
|
|
* Passphrase code still used a 160 bit blowfish key, added a
|
1998-05-03 21:35:33 +02:00
|
|
|
silly workaround. Please change your passphrase again - sorry.
|
|
|
|
|
|
|
|
|
|
* Conventional encryption now uses a type 3 packet to describe the
|
|
|
|
|
used algorithms.
|
|
|
|
|
|
1998-05-04 20:49:26 +02:00
|
|
|
* The new algorithm number for Blowfish is 20, 16 is still used for
|
|
|
|
|
encryption only; for signing it is only used when it is in a v3 packet,
|
|
|
|
|
so that GNUPG keys are still valid.
|
1998-05-03 21:35:33 +02:00
|
|
|
|
|
|
|
|
|
1998-04-30 16:06:01 +02:00
|
|
|
Noteworthy changes in version 0.2.16
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Add experimental support for the TIGER/192 message diigest algorithm.
|
|
|
|
|
(But there is only a dummy ASN OID).
|
|
|
|
|
|
|
|
|
|
* Standard cipher is now Blowfish with 128 bit key in OpenPGP's CFB
|
|
|
|
|
mode. I renamed the old cipher to Blowfish160. Because the OpenPGP
|
|
|
|
|
group refused to assign me a number for Blowfish160, I have to
|
|
|
|
|
drop support for this in the future. You should use
|
|
|
|
|
"--change-passphrase" to recode your current passphrase with 128
|
|
|
|
|
bit Blowfish.
|
|
|
|
|
|
|
|
|
|
|
1998-04-04 22:16:55 +02:00
|
|
|
Noteworthy changes in version 0.2.15
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
1998-04-07 20:16:10 +02:00
|
|
|
* Fixed a bug with the old checksum calculation for secret keys.
|
|
|
|
|
If you run the program without --batch, a warning does inform
|
|
|
|
|
you if your secret key needs to be converted; simply use
|
|
|
|
|
--change-passphrase to recalculate the checksum. Please do this
|
|
|
|
|
soon, as the compatible mode will be removed sometime in the future.
|
1998-04-04 22:16:55 +02:00
|
|
|
|
1998-04-07 20:16:10 +02:00
|
|
|
* CAST5 works (using the PGP's special CFB mode).
|
1998-04-04 22:16:55 +02:00
|
|
|
|
1998-04-09 13:19:09 +02:00
|
|
|
* Again somewhat more PGP 5 compatible.
|
1998-04-08 21:49:02 +02:00
|
|
|
|
|
|
|
|
* Some new test cases
|
1998-04-04 22:16:55 +02:00
|
|
|
|
1998-04-02 12:30:03 +02:00
|
|
|
Noteworthy changes in version 0.2.14
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Changed the internal handling of keyrings.
|
|
|
|
|
|
|
|
|
|
* Add support to list PGP 5 keyrings with supkeys
|
|
|
|
|
|
|
|
|
|
* Timestamps of signatures are now verified.
|
|
|
|
|
|
|
|
|
|
* A expiration time can now be specified during key generation.
|
|
|
|
|
|
|
|
|
|
* Some speedups for Blowfish and SHA-1, rewrote SHA-1 transform.
|
|
|
|
|
Reduced the amount of random bytes needed for key generation in
|
|
|
|
|
some cases.
|
|
|
|
|
|
|
|
|
|
|
1998-03-19 16:27:29 +01:00
|
|
|
Noteworthy changes in version 0.2.13
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Verify of DSA signatures works.
|
|
|
|
|
|
|
|
|
|
* Re-implemented the slower random number generator.
|
|
|
|
|
|
|
|
|
|
|
1998-03-09 22:44:06 +01:00
|
|
|
Noteworthy changes in version 0.2.12
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* --delete-key checks that there is no secret key. The new
|
|
|
|
|
option --delete-secret-key maybe used to delete a secret key.
|
|
|
|
|
|
|
|
|
|
* "-kv" now works as expected. Options "--list-{keys,sigs]"
|
|
|
|
|
and "--check-sigs" are now working.
|
|
|
|
|
|
|
|
|
|
* New options "--verify" and "--decrypt" to better support integration
|
|
|
|
|
into MUAs (partly done for Mutt).
|
|
|
|
|
|
|
|
|
|
* New option "--with-colons" to make parsing of key lists easier.
|
|
|
|
|
|
1998-03-03 09:43:28 +01:00
|
|
|
Noteworthy changes in version 0.2.11
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* GPG now asks for a recipient's name if option "-r" is not used.
|
|
|
|
|
|
|
|
|
|
* If there is no good trust path, the program asks whether to use
|
|
|
|
|
the public keys anyway.
|
|
|
|
|
|
|
|
|
|
* "--delete-key" works for public keys. What semantics shall I use
|
|
|
|
|
when there is a secret key too? Delete the secret key or leave him
|
|
|
|
|
and auto-regenerate the public key, netxt time the secret key is used?
|
|
|
|
|
|
1998-02-27 18:51:28 +01:00
|
|
|
Noteworthy changes in version 0.2.10
|
|
|
|
|
------------------------------------
|
|
|
|
|
|
|
|
|
|
* Code for the alpha is much faster (about 20 times); the data
|
|
|
|
|
was misaligned and the kernel traps this, so nearly all time
|
|
|
|
|
was used by system to trap the misalignments and to write
|
|
|
|
|
syslog messages. Shame on me and thanks to Ralph for
|
|
|
|
|
pointing me at this while drinking some beer yesterday.
|
|
|
|
|
|
|
|
|
|
* Changed some configure options and add an option
|
|
|
|
|
--disable-m-guard to remove the memory checking code
|
|
|
|
|
and to compile everthing with optimization on.
|
|
|
|
|
|
|
|
|
|
* New environment variable GNUPGHOME, which can be used to set
|
|
|
|
|
another homedir than ~/.gnupg. Changed default homedir for
|
|
|
|
|
Windoze version to c:/gnupg.
|
|
|
|
|
|
|
|
|
|
* Fixed detached signatures; detached PGP signatures caused a SEGV.
|
|
|
|
|
|
|
|
|
|
* The Windoze version works (as usual w/o a strong RNG).
|
|
|
|
|
|
|
|
|
|
|
1998-02-26 17:56:31 +01:00
|
|
|
Noteworthy changes in version 0.2.9
|
|
|
|
|
-----------------------------------
|
|
|
|
|
|
|
|
|
|
* Fixed FreeBSD bug.
|
|
|
|
|
|
|
|
|
|
* Added a simple man page.
|
|
|
|
|
|
|
|
|
|
* Switched to automake1.2f and a newer gettext.
|
|
|
|
|
|
1998-02-24 19:50:46 +01:00
|
|
|
Noteworthy changes in version 0.2.8
|
|
|
|
|
-----------------------------------
|
|
|
|
|
|
|
|
|
|
* Changed the name to GNUPG, the binaries are called gpg and gpgm.
|
|
|
|
|
You must rename rename the directory "~/.g10" to ~/.gnupg/, rename
|
|
|
|
|
{pub,sec}ring.g10 to {pub,sec}ring.gpg, trustdb.g10 to trustdb.gpg
|
|
|
|
|
and g10.sig to gnupg.sig.
|
|
|
|
|
|
|
|
|
|
* New or changed passphrases are now salted.
|
|
|
|
|
|
|
|
|
|
|
1998-02-16 21:05:02 +01:00
|
|
|
Noteworthy changes in version 0.2.7
|
|
|
|
|
-----------------------------------
|
|
|
|
|
|
1998-02-18 14:58:46 +01:00
|
|
|
* New command "gen-revoke" to create a key revocation certificate.
|
1998-02-16 21:05:02 +01:00
|
|
|
|
1998-02-18 14:58:46 +01:00
|
|
|
* New option "homedir" to set the homedir (which defaults to "~/.g10").
|
|
|
|
|
This directory is created if it does not exists (only the last
|
|
|
|
|
part of the name and not the complete hierarchy)
|
|
|
|
|
|
|
|
|
|
* Command "import" works. (Try: "finger gcrypt@ftp.guug.de|g10 --import")
|
|
|
|
|
|
|
|
|
|
* New commands "dearmor/enarmor" for g10maint. These are mainly
|
|
|
|
|
used for internal test purposes.
|
|
|
|
|
|
|
|
|
|
* Option --version now conforming to the GNU standards and lists
|
1998-02-16 21:05:02 +01:00
|
|
|
the available ciphers, message digests and public key algorithms.
|
|
|
|
|
|
1998-02-18 14:58:46 +01:00
|
|
|
* Assembler code for m68k (not tested).
|
1998-02-16 21:05:02 +01:00
|
|
|
|
1998-02-18 19:52:59 +01:00
|
|
|
* "make check" works.
|
|
|
|
|
|
1998-02-13 21:58:50 +01:00
|
|
|
Noteworthy changes in version 0.2.6
|
|
|
|
|
-----------------------------------
|
|
|
|
|
|
|
|
|
|
* Option "--export" works.
|
|
|
|
|
|
|
|
|
|
|
1998-02-12 15:39:08 +01:00
|
|
|
Noteworthy changes in version 0.2.5
|
|
|
|
|
-----------------------------------
|
|
|
|
|
|
|
|
|
|
* Added zlib for systems which don't have it.
|
1998-02-26 17:56:31 +01:00
|
|
|
Use "./configure --with-zlib" to link with the static version.
|
1998-02-12 15:39:08 +01:00
|
|
|
|
|
|
|
|
* Generalized some more functions and rewrote the encoding of
|
|
|
|
|
message digests into MPIs.
|
|
|
|
|
|
|
|
|
|
* Enhanced the checkit script
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Noteworthy changes in version 0.2.4
|
|
|
|
|
-----------------------------------
|
1998-02-11 04:25:44 +01:00
|
|
|
|
|
|
|
|
* nearly doubled the speed of the ElGamal signature verification.
|
|
|
|
|
|
|
|
|
|
* backup copies of keyrings are created.
|
|
|
|
|
|
|
|
|
|
* assembler stuff for Pentium; gives about 15% better perfomance.
|
|
|
|
|
|
1998-02-12 00:22:09 +01:00
|
|
|
* fixed a lot of bugs.
|
|
|
|
|
|
1998-02-11 04:25:44 +01:00
|
|
|
|
|
|
|
|
Noteworthy changes in version 0.2.3
|
1998-02-12 15:39:08 +01:00
|
|
|
-----------------------------------
|
1998-01-12 11:18:17 +01:00
|
|
|
|
1998-02-09 18:43:42 +01:00
|
|
|
* Found a bug in the calculation of ELG fingerprints. This is now
|
|
|
|
|
fixed, but all existing fingerprints and keyids for ELG keys
|
|
|
|
|
are not any more valid.
|
|
|
|
|
|
|
|
|
|
* armor should now work; including clear signed text.
|
|
|
|
|
|
|
|
|
|
* moved some options to the new program g10maint
|
|
|
|
|
|
1998-02-04 19:54:31 +01:00
|
|
|
* It's now 64 bit clean and runs fine on an alpha--linux.
|
|
|
|
|
|
|
|
|
|
* Key generation is much faster now. I fixed this by using not
|
|
|
|
|
so strong random number for the primes (this was a bug because the
|
|
|
|
|
ElGamal primes are public parameters and it does not make sense
|
|
|
|
|
to generate them from strong random). The real secret is the x value
|
|
|
|
|
which is still generated from strong (okay: /dev/random) random bits.
|
1998-01-30 17:23:16 +01:00
|
|
|
|
1998-02-04 19:54:31 +01:00
|
|
|
* added option "--status-fd": see g10/OPTIONS
|
1998-01-30 17:23:16 +01:00
|
|
|
|
1998-01-28 17:09:43 +01:00
|
|
|
* We have secure memeory on systems which support mlock().
|
|
|
|
|
It is not complete yet, because we do not have signal handler
|
|
|
|
|
which does a cleanup in very case.
|
|
|
|
|
We should also check the ulimit for the user in the case
|
|
|
|
|
that the admin does not have set a limit on locked pages.
|
|
|
|
|
|
|
|
|
|
* started with internationalization support.
|
|
|
|
|
|
1998-01-25 19:56:33 +01:00
|
|
|
* The logic to handle the web of trust is now implemented. It is
|
|
|
|
|
has some bugs; but I'm going to change the algorithm anyway.
|
|
|
|
|
It works by calculating the trustlevel on the fly. It may ask
|
|
|
|
|
you to provide trust parameters if the calculated trust probability
|
|
|
|
|
is too low. I will write a paper which discusses this new approach.
|
|
|
|
|
|
|
|
|
|
* a couple of changes to the configure script.
|
|
|
|
|
|
1998-01-16 22:15:24 +01:00
|
|
|
* New option "--quick-random" which uses a much quicker random
|
|
|
|
|
number generator. Keys generated while this option is in effect
|
|
|
|
|
are flags with "INSECURE!" in the user-id. This is a development
|
|
|
|
|
only option.
|
|
|
|
|
|
|
|
|
|
* Read support for new version packets (OpenPGP).
|
|
|
|
|
|
1998-01-28 17:09:43 +01:00
|
|
|
* Comment packets are now of correct OpenPGP type 16. Old comment
|
|
|
|
|
packets written by G10 are detected because they always start with
|
1998-01-16 22:15:24 +01:00
|
|
|
a hash which is an invalid version byte.
|
|
|
|
|
|
1998-01-12 11:18:17 +01:00
|
|
|
* The string "(INSECURE!)" is appended to a new user-id if this
|
|
|
|
|
is generated on a system without a good random number generator.
|
|
|
|
|
|
