From e1a86a1fdfeb32d384bff29e92eeb050e3136512 Mon Sep 17 00:00:00 2001 From: Werner Koch Date: Mon, 25 Mar 2019 15:39:18 +0100 Subject: [PATCH] doc: Add relevant NEWS items from 2.2. -- --- NEWS | 99 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 99 insertions(+) diff --git a/NEWS b/NEWS index cf096b66e..e4599c2bd 100644 --- a/NEWS +++ b/NEWS @@ -1,6 +1,102 @@ Noteworthy changes in version 2.3.0 (unreleased) ------------------------------------------------ + Changes also found in 2.2.14: + + * gpg: Allow import of PGP desktop exported secret keys. Also avoid + importing secret keys if the secret keyblock is not valid. [#4392] + + * gpg: Make invalid primary key algo obvious in key listings. + + * sm: Do not mark a certificate in a key listing as de-vs compliant + if its use for a signature will not be possible. + + * sm: Fix certificate creation with key on card. + + * sm: Create rsa3072 bit certificates by default. + + * sm: Print Yubikey attestation extensions with --dump-cert. + + * agent: Fix cancellation handling for scdaemon. + + * agent: Support --mode=ssh option for CLEAR_PASSPHRASE. [#4340] + + * scd: Fix flushing of the CA-FPR DOs in app-openpgp. + + * scd: Avoid a conflict error with the "undefined" app. + + * dirmngr: Add CSRF protection exception for protonmail. + + * dirmngr: Fix build problems with gcc 9 in libdns. + + * gpgconf: New option --show-socket for use with --launch. + + * gpgtar: Make option -C work for archive creation. + + Release-info: https://dev.gnupg.org/T4412 + See-also: gnupg-announce/2019q1/000435.html + + Changes also found in 2.2.13: + + * gpg: Implement key lookup via keygrip (using the & prefix). + + * gpg: Allow generating Ed25519 key from existing key. + + * gpg: Emit an ERROR status line if no key was found with -k. + + * gpg: Stop early when trying to create a primary Elgamal key. [#4329] + + * gpgsm: Print the card's key algorithms along with their keygrips + in interactive key generation. + + * agent: Clear bogus pinentry cache in the error case. [#4348] + + * scd: Support "acknowledge button" feature. + + * scd: Fix for USB INTERRUPT transfer. [#4308] + + * wks: Do no use compression for the the encrypted challenge and + response. + + Release-info: https://dev.gnupg.org/T4290 + See-also: gnupg-announce/2019q1/000434.html + + Changes also found in 2.2.12: + + * tools: New commands --install-key and --remove-key for + gpg-wks-client. This allows to prepare a Web Key Directory on a + local file system for later upload to a web server. + + * gpg: New --list-option "show-only-fpr-mbox". This makes the use + of the new gpg-wks-client --install-key command easier on Windows. + + * gpg: Improve processing speed when --skip-verify is used. + + * gpg: Fix a bug where a LF was accidentally written to the console. + + * gpg: --card-status now shows whether a card has the new KDF + feature enabled. + + * agent: New runtime option --s2k-calibration=MSEC. New configure + option --with-agent-s2k-calibration=MSEC. [#3399] + + * dirmngr: Try another keyserver from the pool on receiving a 502, + 503, or 504 error. [#4175] + + * dirmngr: Avoid possible CSRF attacks via http redirects. A HTTP + query will not anymore follow a 3xx redirect unless the Location + header gives the same host. If the host is different only the + host and port is taken from the Location header and the original + path and query parts are kept. + + * dirmngr: New command FLUSHCRL to flush all CRLS from disk and + memory. [#3967] + + * New simplified Chinese translation (zh_CN). + + Release-info: https://dev.gnupg.org/T4289 + See-also: gnupg-announce/2018q4/000433.html + Changes also found in 2.2.11: * gpgsm: Fix CRL loading when intermediate certicates are not yet @@ -388,6 +484,9 @@ Noteworthy changes in version 2.3.0 (unreleased) Version 2.2.9 (2018-07-12) Version 2.2.10 (2018-08-30) Version 2.2.11 (2018-11-06) + Version 2.2.12 (2018-12-14) + Version 2.2.13 (2019-02-12) + Version 2.2.14 (2019-03-19) Noteworthy changes in version 2.2.0 (2017-08-28)