Werner Koch
f2d8a14e1b
agent: New option --disable-check-own-socket.
...
* agent/gpg-agent.c (oDisableCheckOwnSocket): New.
(disable_check_own_socket): New.
(parse_rereadable_options): Set new option.
(check_own_socket): Implement new option.
Signed-off-by: Werner Koch <wk@gnupg.org>
2013-05-22 09:56:05 +02:00
Ian Abbott
2c3fc4719b
doc: fix some Texinfo warnings.
...
* doc/gpg.texi: Fix syntax and add missing menu entries.
* doc/gpgsm.texi: Fix subsectioning.
--
These five patches fix some warnings from Texinfo 5 by adding some
missing nodes and changing some sections to subsections, and moving an
'@end ifset' to the start of a line. I also noticed the 'Deprecated
options' subsection didn't appear in the GPG options menu, so I added
it. (Texinfo never warned about it because it was after the last node
in the menu.)
1) doc/gpg.texi: move '@end ifset' to start of line
2) doc/gpg.texi: Add missing node for 'Compliance options' section.
3) doc/gpg.texi: add node for 'Deprecated options' subsection.
4) doc/gpg.texi: make 'Unattended key generation' a subsection
5) doc/gpgsm.texi: fix subsectioning for Unattended Usage
(all 5 merged into one patch by wk)
(cherry picked from commit 4d67f59a336bfa0ff19fc23209940724196fd886)
Signed-off-by: Werner Koch <wk@gnupg.org>
2013-05-07 21:25:27 +02:00
Werner Koch
ff6115227a
doc: Formatting fixes.
...
* doc/Makefile.am (.fig.jpg): Correct to use -L jpeg.
* doc/gpg.texi: Fix cross reference for --options.
* doc/gpgsm.texi: Likewise.
* doc/gpl.texi: Fix enumerate and re-indent examples.
--
Reported-by: Ian Abbott
Signed-off-by: Werner Koch <wk@gnupg.org>
2013-04-19 12:01:22 +02:00
Werner Koch
96fc29950a
Add missing file.
...
--
2013-04-17 11:26:27 +02:00
Werner Koch
e1f7f61d1e
Fix doc for the Expire-Date key generation parameter.
...
--
2013-04-04 14:26:39 +02:00
Werner Koch
07227279c4
copyright assignments are not anymore required.
2013-03-29 09:13:05 +01:00
Werner Koch
c4dbd1b2de
gpg: Print indicator for unknown key capability.
...
* g10/keylist.c (print_capabilities): Print '?' for unknown usage.
2013-03-19 17:26:42 +01:00
Daniel Kahn Gillmor
5132ea8a0d
Update RFC references to RFC 4880
...
--
2013-03-05 11:00:46 +01:00
NIIBE Yutaka
595ab0da66
Japanese: update po and doc.
...
* doc/help.ja.txt, po/ja.po: Updated.
2013-02-12 14:15:21 +09:00
NIIBE Yutaka
7253093add
scd: Rename 'keypad' to 'pinpad'.
...
* NEWS: Mention scd changes.
* agent/divert-scd.c (getpin_cb): Change message.
* agent/call-scd.c (inq_needpin): Change the protocol to
POPUPPINPADPROMPT and DISMISSPINPADPROMPT.
* scd/command.c (pin_cb): Likewise.
* scd/apdu.c (struct reader_table_s): Rename member functions.
(check_pcsc_pinpad, pcsc_pinpad_verify, pcsc_pinpad_modify,
check_ccid_pinpad, ccid_pinpad_operation, apdu_check_pinpad
apdu_pinpad_verify, apdu_pinpad_modify): Rename.
* scd/apdu.h (SW_HOST_NO_PINPAD, apdu_check_pinpad)
(apdu_pinpad_verify, apdu_pinpad_modify): Rename.
* scd/iso7816.h (iso7816_check_pinpad): Rename.
* scd/iso7816.c (map_sw): Use SW_HOST_NO_PINPAD.
(iso7816_check_pinpad): Rename.
(iso7816_verify_kp, iso7816_change_reference_data_kp): Follow
the change.
* scd/ccid-driver.h (CCID_DRIVER_ERR_NO_PINPAD): Rename.
* scd/ccid-driver.c (ccid_transceive_secure): Use it.
* scd/app-dinsig.c (verify_pin): Follow the change.
* scd/app-nks.c (verify_pin): Follow the change.
* scd/app-openpgp.c (check_pinpad_request): Rename.
(parse_login_data, verify_a_chv, verify_chv3, do_change_pin): Follow
the change.
* scd/scdaemon.c (oDisablePinpad, oEnablePinpadVarlen): Rename.
* scd/scdaemon.h (opt): Rename to disable_pinpad,
enable_pinpad_varlen.
* tools/gpgconf-comp.c (gc_options_scdaemon): Rename to
disable-pinpad.
2013-02-08 09:06:39 +09:00
Werner Koch
21feecd48f
gpg: Add pinentry-mode feature.
...
* g10/gpg.c: Include shareddefs.h.
(main): Add option --pinentry-mode.
* g10/options.h (struct opt): Add field pinentry_mode.
* g10/passphrase.c: Include shareddefs.h.
(have_static_passphrase): Take care of loopback pinentry_mode.
(read_passphrase_from_fd): Ditto.
(get_static_passphrase): New.
(passphrase_to_dek_ext): Factor some code out to ...
(emit_status_need_passphrase): new.
* g10/call-agent.c (start_agent): Send the pinentry mode.
(default_inq_cb): Take care of the PASSPHRASE inquiry. Return a
proper error code.
(agent_pksign): Add args keyid, mainkeyid and pubkey_algo.
(agent_pkdecrypt): Ditto.
* g10/pubkey-enc.c (get_it): Pass new args.
* g10/sign.c (do_sign): Pass new args.
* g10/call-agent.c (struct default_inq_parm_s): New. Change all
similar structs to reference this one. Change all users and inquire
callback to use this struct, instead of NULL or some undefined but not
used structs. This change will help to eventually get rid of global
variables.
--
This new features allows to use gpg without a Pinentry. As a
prerequisite the agent must be configured to allow the loopback
pinentry mode (option --allow-loopback-pinentry). For example
gpg2 --pinentry-mode=loopback FILE.gpg
may be used to decrypt FILE.gpg while entering the passphrase on the
tty. If batch is used, --passphrase et al. may be used, if
--command-fd is used, the passphrase may be provided by another
process. Note that there are no try-again prompts in case of a bad
passphrase.
2013-02-07 20:37:58 +01:00
Werner Koch
84de484bc3
doc: Fix description for NEED_PASSPHRASE status.
...
--
2013-02-07 20:18:31 +01:00
Werner Koch
65eb98966a
Convert doc/DETAILS to org-mode
...
--
Also restructure the file and fix some obviously wrong things.
2013-01-30 18:54:23 +01:00
Werner Koch
1cd6445eec
gpg: Add status line PINENTRY_LAUNCHED.
...
* common/status.h (STATUS_PINENTRY_LAUNCHED): New.
* g10/server.c (server_local_s): Add field allow_pinentry_notify.
(option_handler): Add option "allow-pinentry-notify".
(gpg_proxy_pinentry_notify): New.
* g10/call-agent.c (default_inq_cb): Factor code out to the new
function.
2013-01-30 12:00:29 +01:00
Werner Koch
5a66316ea4
faq: Add a section on copyright assignments
...
--
2012-12-19 11:05:05 +01:00
David Shaw
b8eb2ab569
Refresh sample keys
2012-11-30 12:47:49 -05:00
David Shaw
3f8ad56467
Adjust awk to not add trailing whitespace.
...
* mksamplekeys: Tweak awk script to not add trailing whitespace to
blank lines (makes git pre-commit hook unhappy)
2012-11-30 12:43:34 -05:00
Werner Koch
6505a995f9
Fix description of validity flag 'n'.
...
--
Thanks to Hauke Laging for spotting this.
2012-11-12 15:31:45 +01:00
Werner Koch
4ea37fe4b2
Fix incorrect description of --delete-secret-key
...
--
This is bug#1429.
2012-08-09 14:45:18 +02:00
Werner Koch
096e7457ec
Change all quotes in strings and comments to the new GNU standard.
...
The asymmetric quotes used by GNU in the past (`...') don't render
nicely on modern systems. We now use two \x27 characters ('...').
The proper solution would be to use the correct Unicode symmetric
quotes here. However this has the disadvantage that the system
requires Unicode support. We don't want that today. If Unicode is
available a generated po file can be used to output proper quotes. A
simple sed script like the one used for en@quote is sufficient to
change them.
The changes have been done by applying
sed -i "s/\`\([^'\`]*\)'/'\1'/g"
to most files and fixing obvious problems by hand. The msgid strings in
the po files were fixed with a similar command.
2012-06-05 19:29:22 +02:00
Werner Koch
fc00d3fcb2
Print the hash algorithm in colon mode key listing.
...
* g10/keylist.c (list_keyblock_colon): Print digest_algo.
2012-05-24 10:13:39 +02:00
Werner Koch
b4d9f8dbc8
Add tweaks for the not anymore patented IDEA algorithm.
...
* g10/keygen.c (keygen_set_std_prefs): Include IDEA only in PGP2
compatibility mode.
* g10/misc.c (idea_cipher_warn): Remove. Also remove all callers.
* common/status.h (STATUS_RSA_OR_IDEA): Remove. Do not emit this
status anymore.
--
To keep the number of actually used algorithms low, we want to support
IDEA only in a basically read-only way (unless --pgp2 is used during
key generation). It does not make sense to suggest the use of this
old 64 bit blocksize algorithm. However, there is old data available
where it might be helpful to have IDEA available.
2012-05-08 18:18:32 +02:00
Werner Koch
8eeaff0ef8
faq: Replace --list-ownerturst by --export-ownertrust.
...
--
2012-04-17 09:55:44 +02:00
Ben Kibbey
99fc61f1cf
Mention status messages in the documentation.
...
Note INQUIRE_MAXLEN.
2012-04-04 11:56:59 +02:00
Ben Kibbey
a577f06c4a
Document PASSWD --preset.
2012-04-04 11:56:55 +02:00
Ben Kibbey
108e8f622e
Document GENKEY options.
2012-04-04 11:56:48 +02:00
Ben Kibbey
96e107fc29
Document PRESET_PASSPHRASE.
2012-04-04 11:56:35 +02:00
Ben Kibbey
26b59d78c4
Document CLEAR_PASSPHRASE.
...
And describe the --mode=normal option.
2012-04-04 11:56:29 +02:00
Werner Koch
c4b9a9b9f3
Typo fixes in de.po.
...
--
This is bug#1276 and http://bugs.debian.org/594343
2012-03-26 15:50:13 +02:00
Werner Koch
7441e622ff
Add mksamplekeys script.
...
* doc/mksamplekeys: New.
--
Note that we have the same script in the 1.4 branch. That should be
removed and only this one shall be used.
2012-03-26 15:48:47 +02:00
Werner Koch
2871422d9a
gpg-connect-tool: Take the string "true" as a true condition.
...
* tools/gpg-connect-agent.c (main): Handle strings "true" and "yes" in
conditions as expected.
2012-01-27 15:40:24 +01:00
Jim Meyering
4402dc3f0a
yat2m: don't dereference pointer to freed memory
...
* doc/yat2m.c (top_parse_file): Correct macrolist-freeing loop.
2012-01-16 11:50:28 +01:00
David Shaw
860861279b
Refresh sample keys
2012-01-11 01:12:10 -05:00
Werner Koch
372fb4fc06
gpg: Allow use of a standard space separated fingerprint.
...
* common/userids.c (classify_user_id): Check for space separated GPG
fingerprint.
2012-01-06 13:36:47 +01:00
Werner Koch
8e47f1e576
Prepare for the beta3 release.
2011-12-20 15:55:43 +01:00
Werner Koch
fe2f182699
Add the STEED Self-Signing Nonthority certificate.
...
* doc/com-certs.pem: Install it when creating a keybox.
2011-12-20 15:35:42 +01:00
Werner Koch
779611494d
faq: Add section on US export restrictions.
2011-12-20 11:13:40 +01:00
Werner Koch
dcd64131c6
scd: Add the "undefined" stub application.
...
* scd/app.c (select_application): Implement the "undefined"
application.
2011-12-14 17:00:50 +01:00
Werner Koch
00c760f628
scd: New option --debug-assuan-log-cats.
...
* scd/scdaemon.c (oDebugAssuanLogCats): New.
(opts): Add option --debug-assuan-log-cats.
(main): Implement option.
* common/asshelp.c (set_libassuan_log_cats): New.
--
The old way of setting the logging categories with an environment
variable is awkward if sdaemon is spawned from a running gpg-agent.
2011-12-13 17:59:00 +01:00
Werner Koch
8a12a2000d
gpgsm: Add new validation model "steed".
...
* sm/gpgsm.h (VALIDATE_FLAG_STEED): New.
* sm/gpgsm.c (gpgsm_parse_validation_model): Add model "steed".
* sm/server.c (option_handler): Allow validation model "steed".
* sm/certlist.c (gpgsm_cert_has_well_known_private_key): New.
* sm/certchain.c (do_validate_chain): Handle the
well-known-private-key attribute. Support the "steed" model.
(gpgsm_validate_chain): Ditto.
* sm/verify.c (gpgsm_verify): Return "steed" in the trust status line.
* sm/keylist.c (list_cert_colon): Print the new 'w' flag.
--
This is the first part of changes to implement the STEED proposal as
described at http://g10code.com/steed.html . The idea for X.509 is
not to use plain self-signed certificates but certificates signed by a
dummy CA (i.e. one for which the private key is known). Having a
single CA as an indication for the use of STEED might help other X.509
implementations to implement STEED.
2011-12-07 16:15:15 +01:00
Werner Koch
5cdad8ff00
gpgsm: Allow arbitrary extensions for cert creation.
...
* sm/certreqgen.c (pSUBJKEYID, pEXTENSION): New.
(read_parameters): Add new keywords.
(proc_parameters): Check values of new keywords.
(create_request): Add SubjectKeyId and extensions.
(parse_parameter_usage): Support "cert" and the encrypt alias "encr".
2011-12-06 19:57:27 +01:00
Werner Koch
2336b09779
Generate the ChangeLog from commit logs.
...
* scripts/gitlog-to-changelog: New script. Taken from gnulib.
* scripts/git-log-fix: New file.
* scripts/git-log-footer: New file.
* doc/HACKING: Describe the ChangeLog policy
* ChangeLog: New file.
* Makefile.am (EXTRA_DIST): Add new files.
(gen-ChangeLog): New.
(dist-hook): Run gen-ChangeLog.
Rename all ChangeLog files to ChangeLog-2011.
2011-12-01 11:09:02 +01:00
Werner Koch
31f548a18a
Rewrite dns-cert.c to not use the gpg-only iobuf stuff.
...
* common/dns-cert.c: Remove iobuf.h.
(get_dns_cert): Rename to _get_dns_cert. Remove MAX_SIZE arg. Change
iobuf arg to a estream-t. Rewrite function to make use of estream
instead of iobuf. Require all parameters. Return an gpg_error_t
error instead of the type. Add arg ERRSOURCE.
* common/dns-cert.h (get_dns_cert): New macro to pass the error source
to _gpg_dns_cert.
* common/t-dns-cert.c (main): Adjust for changes in get_dns_cert.
* g10/keyserver.c (keyserver_import_cert): Ditto.
* doc/gpg.texi (GPG Configuration Options): Remove max-cert-size.
2011-11-30 17:34:49 +01:00
Werner Koch
32118628a0
typo fixes
2011-11-02 18:29:47 +01:00
Werner Koch
d4fa82e688
Typo fix and remove of some colloquial terms
2011-10-18 16:47:12 +02:00
Werner Koch
5319aa952f
Put more options into the options index
...
Also removed the single letter options from the index.
2011-10-12 17:36:56 +02:00
Werner Koch
b277bec250
Extend yat2m to allow indented tables.
...
Current makeinfo versions allow to indent the texinfo source. However
yat2m had no support for this. With this patch it is now possible to
use a simple indentation style while keeping man pages readable.
2011-10-12 15:52:13 +02:00
Werner Koch
4379c01a24
Beautified the online html manual
2011-08-12 14:40:47 +02:00
Werner Koch
7316b53426
Typo fix
2011-08-10 13:26:17 +02:00
Werner Koch
663768f9af
Minor doc updates v2.0 vs. v2.1)
2011-08-08 10:17:33 +02:00
Werner Koch
d479906991
Support a confirm flag for ssh.
...
This implements the suggestion from bug#1349. With this change the
fingerprint of the ssh key is also displayed in the pinentry prompts.
2011-07-20 20:49:41 +02:00
Werner Koch
550d94b011
Clarify documentation of --keyid-format.
...
Fixes bug#1354.
2011-07-18 10:38:14 +02:00
Werner Koch
92e66c70b6
Document OPTION s2k-count
2011-06-29 13:23:41 +02:00
Werner Koch
c9e473618f
Fixed an URL typo in the FAQ.
2011-06-28 10:32:46 +02:00
Bernhard Reiter
f194773540
doc/gpgsm.texi com-certs.pem mini-fix
...
[[PGP Signed Part:Undecided]]
[1. text/plain]
Example path for com-certs.pem corrected.
[2. text/x-diff; doc.diff]
2011-06-27 16:12:35 +02:00
Werner Koch
7d68c6b0ec
Add question "What are DH/DSS keys?"
...
... and the answer of course.
2011-06-27 15:56:47 +02:00
Werner Koch
d679b4d642
Require libgpg-error 1.10
...
This allows to remove some error code substitutes.
Fixed a typo in gpg.text.
2011-05-20 10:27:50 +02:00
Werner Koch
4caa768f1d
Add OPTION:cache-ttl-opt-preset to gpg-agent.
...
This option may be used to change the default ttl values use with the
--preset option of GENKEY and PASSWD.
2011-04-21 15:40:48 +02:00
Werner Koch
b786f0e12b
New agent option pinentry-mode.
...
This provides the framework and implements the ask, cancel and error.
loopback will be implemented later.
2011-03-03 18:35:08 +01:00
Werner Koch
2165925bae
Fix doc/Makefile target online
2011-03-02 09:04:16 +01:00
Werner Koch
00f8b68505
Move parameter file description to the manual.
2011-03-01 17:08:49 +01:00
Werner Koch
28c157b55c
Support X.509 certificate creation.
...
Using "gpgsm --genkey" allows the creation of a self-signed
certificate via a new prompt.
Using "gpgsm --genkey --batch" should allow the creation of arbitrary
certificates controlled by a parameter file. An example parameter file
is
Key-Type: RSA
Key-Length: 1024
Key-Grip: 2C50DC6101C10C9C643E315FE3EADCCBC24F4BEA
Key-Usage: sign, encrypt
Serial: random
Name-DN: CN=some test key
Name-Email: foo@example.org
Name-Email: bar@exmaple.org
Hash-Algo: SHA384
not-after: 2038-01-16 12:44
This creates a self-signed X.509 certificate using the key given by
the keygrip and using SHA-384 as hash algorithm. The keyword
signing-key can be used to sign the certificate with a different key.
See sm/certreggen.c for details.
2011-03-01 14:42:56 +01:00
Werner Koch
7c03c8cc65
Lock scdaemon to CCID if once found.
...
This solves a problem where ccid was used, the card unplugged and then
scdaemon tries to find a new (plugged in) reader and thus will
eventually try PC/SC over and over again.
Also added an explicit --kill command to gpgconf.
2011-02-23 10:15:34 +01:00
Werner Koch
cd9614b81b
Removed deprecated SIGEXPIRED status line.
2011-02-04 10:28:28 +01:00
Werner Koch
5667e33290
Add a DECRYPTION_INFO status.
...
DECRYPTION_INFO <mdc_method> <sym_algo>
Print information about the symmetric encryption algorithm and
the MDC method. This will be emitted even if the decryption
fails.
2011-02-03 20:59:01 +01:00
Werner Koch
52b9761c88
ifset parts which are not in GnuPG 2.0
2011-01-13 15:32:11 +01:00
Werner Koch
5379d3527d
Describe new log facilities.
2010-12-02 14:10:44 +00:00
Werner Koch
0103a53aa6
Smartcard related updates
2010-11-17 13:21:24 +00:00
Werner Koch
b97aeb03d5
Update FAQ
2010-11-16 10:38:13 +00:00
David Shaw
b0b46f46cf
* gpg.texi (GPG Configuration Options): Clarify that show-photos
...
doesn't work with --with-colons. --personal-digest-preferences does
not have a default any longer.
2010-10-29 19:41:28 +00:00
Werner Koch
0f721abddf
Update scripts etc.
2010-10-26 12:25:47 +00:00
Werner Koch
e9996e855e
doc fix
2010-10-18 13:40:06 +00:00
Werner Koch
764e88d4df
All tests work are again working
2010-10-14 16:34:31 +00:00
Werner Koch
54591341a4
More agent support for gpg.
2010-10-13 15:57:08 +00:00
Werner Koch
5a679857ef
Describe %v and %V.
2010-10-11 12:36:27 +00:00
Werner Koch
a78335c9ce
Add new option --with-keygrip
2010-10-08 11:11:08 +00:00
Werner Koch
002b30e75c
Import fixes.
...
new otion for watchgnupg
2010-10-06 11:29:10 +00:00
Werner Koch
cc71376bce
Don't set SSH_AGENTPID_INFO.
...
Doc fixes.
Allow TCP and local sockets in watchgnupg.
2010-10-05 19:05:43 +00:00
Werner Koch
aac728f33e
Add a static FAQ.
...
Add rules to build and upload the faqs.
2010-10-05 13:56:25 +00:00
Werner Koch
adfa280d6f
[w32ce] Do not print the faulty timezone info
...
Switch FAQ sources to org-mode
2010-10-04 21:08:34 +00:00
Werner Koch
bfbd80feb9
Exporting secret keys via gpg-agent is now basically supported.
...
A couple of forward ported changes.
Doc updates.
2010-10-01 20:33:53 +00:00
David Shaw
b8f9f9b1f6
Clarify that --force-v3-sigs disables (not enables) v4 options
2010-09-28 16:04:47 +00:00
Werner Koch
77d2908ce4
Add component pinentry as an easy way to figure out the default
...
pinentry. Also allows to test whether pinentry is installed.
2010-08-19 09:53:55 +00:00
Werner Koch
34dde96669
Fix regression in logging.
...
Add a registry key to enable catch-all remote debugging for W32.
Replace more stdio stuff by estream.
2010-08-18 19:25:15 +00:00
Werner Koch
7e752a4208
Auto-start dirmngr.
2010-08-16 11:03:43 +00:00
Werner Koch
a22c38baad
Some work on the dirmngr
2010-07-23 16:16:14 +00:00
Werner Koch
b6490d3656
.
2010-07-23 12:31:25 +00:00
Werner Koch
8b8925a2bd
Some work on porting dirmngr (unfinished)
...
Ported gpgtar to W32.
2010-07-16 13:19:45 +00:00
Werner Koch
006fd75aea
Avoid using the protect-tool to import pkcs#12.
2010-06-17 15:44:44 +00:00
Werner Koch
63d18c2e53
Include dirmngr manual
2010-06-10 10:39:44 +00:00
Werner Koch
bbe388b5db
Add unfinished gpgtar.
...
Collected changes and ports of bug fixes from stable.
2010-06-07 13:33:02 +00:00
Werner Koch
f5551672fb
Update tests.
2010-05-11 18:00:31 +00:00
Werner Koch
8524ac000c
auto start the agent if --use-standard-socket is in use.
2010-05-03 15:23:10 +00:00
Werner Koch
a1412b05de
More changes on the way to remove secring.gpg.
2010-04-21 16:26:17 +00:00
Werner Koch
fb2ba98963
Finished the bulk of changes to use estream in most places instead of
...
stdio.
2010-03-15 11:15:45 +00:00
Werner Koch
299aeda4b0
Link to the bug tracker in the gpg man page.
2010-02-11 11:30:07 +00:00
Werner Koch
8459bcf95a
Various changes to eventually support openpgp keys in pgp-agent.
...
Comment fixes.
Minor chnages in preparation of a W32CE port.
2010-02-02 14:06:19 +00:00
Werner Koch
be45bf3d54
Add dummu option --passwd for gpg.
...
Collected changes.
2010-01-08 19:18:49 +00:00
Werner Koch
af935bd410
Implement --faked-systrem-time for gpg.
...
Typo and comment fixes.
2009-12-17 17:25:26 +00:00
Werner Koch
a51675fabe
Add option --cert-extension.
2009-12-10 13:00:30 +00:00
Werner Koch
85d778b9f6
Use ADNS for PKA and SRV records if no other resolver is available.
2009-12-07 15:52:27 +00:00
Werner Koch
49b00ffd67
allow for default algorithms in a gpg parameter file
2009-12-04 19:47:54 +00:00
Werner Koch
cb5491bfaf
support numeric debug levels.
2009-12-03 18:04:40 +00:00
Werner Koch
cf2ec5673f
Add gpgconf related dummy options default_pubkey_algo.
...
Add option --skip-hidden-recipients
Comment updates.
2009-11-23 19:18:04 +00:00
Werner Koch
a1b6142855
[scd] Memory leak fix.
...
[g13] Send MOUNTPOINT status line
2009-10-28 12:02:15 +00:00
David Shaw
61b351854b
* gpg.texi (GPG Configuration Options): Clarify that ca-cert-file is a
...
generic store, the details of which depend on the underlying
libraries.
2009-10-20 05:03:16 +00:00
Werner Koch
97be197d31
[g13] Add RECIPEINT and CREATE command.
...
[sm] Chnage --include-certs default
2009-10-19 09:18:46 +00:00
Werner Koch
999a909708
Allow uid sand key election using a '*'.
2009-09-04 11:52:03 +00:00
Werner Koch
deba82bd76
Updated the german translation
2009-09-03 14:08:25 +00:00
David Shaw
fa4a237b6c
* gpg.text: Suggested new ordering for --edit-key.
2009-08-24 22:21:39 +00:00
David Shaw
38a3e20952
* gpg.texi (OpenPGP Options): Clarify that personal-foo-preferences
...
overrides recipient preferences (safely).
2009-08-17 16:48:49 +00:00
David Shaw
1b61770848
* gpg.texi (GPG Configuration Options): Document keyserver options
...
check-cert and ca-cert-file.
2009-08-14 19:43:26 +00:00
Werner Koch
019601191a
Improved detection of bad/invalid signer keys.
2009-08-06 20:12:00 +00:00
David Shaw
9df29b446d
* gpg.texi (OpenPGP Options): Don't mention --no-sk-comment (doesn't
...
exist any longer).
2009-07-31 14:36:22 +00:00
David Shaw
ab9a918bc2
Try a DNS-SD lookup to find a domain-specific LDAP server before
...
resorting to keys.{domain}.
2009-07-23 18:28:54 +00:00
Werner Koch
830dae2873
Print status of CRL checks in the audit log.
2009-07-23 15:18:58 +00:00
Werner Koch
506aee32fd
Typo fixes. Fixes bug#1093
2009-07-22 13:33:46 +00:00
Werner Koch
02e05e28e7
Give hints on files to backup.
2009-07-22 10:24:46 +00:00
Werner Koch
d56084296c
Fix bug 1090.
2009-07-20 10:42:45 +00:00
Werner Koch
e535e3fccc
[g10]
...
* exec.c: Fix function name indentation.
(expand_args): Simplify by using membuf functions.
(exec_write): Fix memory leak on error.
(w32_system): Use DETACHED_PROCESS so
that a new console is not created.
2009-07-13 17:36:02 +00:00
Werner Koch
31084d6dc9
Support writing of existing keys with non-matching key sizes.
2009-07-09 14:54:18 +00:00
Werner Koch
2193992559
Impleemned gpgsm's IMPORT --re-import feature.
...
Typo fix.
2009-07-07 16:52:12 +00:00
Werner Koch
f6f5430e50
Reworked passing of envars to Pinentry.
2009-07-07 10:02:41 +00:00
Werner Koch
58e6e28bb1
* debugging.texi (Common Problems): Add a note about corrupted
...
keys in --search-keys.
2009-07-06 21:33:34 +00:00
Werner Koch
1925cb37f9
Alow batch ode for gpgsm --gen-key.
...
Allow CSR generation using an existing key with gpgsm.
2009-07-01 18:30:33 +00:00
Werner Koch
9c47553308
Make soem omnikey readers work with extended length APDUs.
2009-06-29 20:54:00 +00:00
Werner Koch
c998dd12a2
Preparing for 2.0.12.
2009-06-17 11:18:26 +00:00
Werner Koch
323cca8041
Fix for bug#1066.
...
A couple of minor changes.
2009-06-02 15:46:59 +00:00
Werner Koch
556d4ed983
Allow generation of DSA2 keys without --enable-dsa2.
2009-05-20 09:57:10 +00:00
Werner Koch
c4e92c3344
Made card key generate with backup key work for 2048 bit.
...
Improved card key generation prompts.
2009-05-15 19:26:46 +00:00
Werner Koch
5e208460a1
Improved smartcard robustness.
2009-05-13 17:12:00 +00:00
Werner Koch
8e7e6f124b
Doc fixes.
2009-05-08 15:08:37 +00:00
Werner Koch
6adb13b079
Fix example.
2009-05-06 10:57:10 +00:00
Werner Koch
990585ad7d
Signing using Netkey 3 cards does now work.
2009-03-26 19:27:04 +00:00
Werner Koch
ceb42db4dd
Print NO_SECKEY status line in gpgsm.
...
This fixes bug#1020.
2009-03-25 16:05:16 +00:00
Werner Koch
36d681d98e
Fix keygrip computation for TCOS 3 cards.
...
Emit PROGRESS status lines during --learn-card.
2009-03-20 19:04:47 +00:00
Werner Koch
c2c3cf4be1
Changed order of the confirmation questions for root certificates
...
and stores negative answers in trustlist.txt.
2009-03-19 10:21:51 +00:00
David Shaw
a50a274d20
* gpg.texi (GPG Configuration Options): Document keyserver-options
...
debug.
2009-03-16 18:45:46 +00:00
Werner Koch
a9c317a95c
New gpg-agent command to list key information.
...
Gpgsm does now print the S/N of cards.
Consider ephemeral keys during listing an export.
2009-03-06 17:31:27 +00:00
Werner Koch
59d7a54e72
New PIN Callback attributes in gpg-agent.
...
Common prompts for keypad and simple card reader.
More support for Netkey cards; PIN management works now.
2009-03-05 19:19:37 +00:00
Werner Koch
b61b2f542a
Add missing option strings.
2009-03-02 12:32:54 +00:00
Werner Koch
f548ca97ad
Modernized gpg-agent startup instructions
2009-03-02 11:53:32 +00:00
Werner Koch
618afc4231
Fixed a nasty bug in scdaemon which led to a card reset if the card was
...
inserted during scdaemon startup and a connection was made before the
ticker had a chance to run. Add some stuff for better debugging.
2009-02-25 10:58:56 +00:00
Werner Koch
310f45b618
Fix bug 1001.
...
Documentation updates.
2009-02-19 16:19:16 +00:00
Werner Koch
b8ffa0d947
Make --allow-admin the default.
2009-01-28 14:18:40 +00:00
Werner Koch
7b33b9324a
Print more directories with gpgconf --list-dirs.
2009-01-20 19:24:24 +00:00
Werner Koch
4adb5c03e7
preparing a release
2009-01-12 09:18:27 +00:00
Werner Koch
53f1c11adf
Small doc fixes.
2008-12-12 14:04:22 +00:00
Werner Koch
c3752d1057
Add option --no-ask for GET_PASSPHRASE.
2008-12-10 12:41:15 +00:00
Werner Koch
382d2f8efb
Minor fixes.
2008-12-09 08:58:02 +00:00
Werner Koch
78ff45c49e
Align ticker to the full or half second.
2008-12-08 19:10:42 +00:00
Werner Koch
d0440bab64
Cleanups. Fixes bug 956.
2008-12-08 11:42:33 +00:00
Werner Koch
041c764672
Add option --card-timeout.
...
Add a new attribyte to app-openpgp.c
Fix two portability bugs.
Have gpg-connect-agent autostart gpg-agent on W32.
2008-12-05 12:01:01 +00:00
Werner Koch
329509c864
Made arg_parse more readable.
2008-11-12 17:41:49 +00:00
Werner Koch
df089498d8
use $() instead of backticks.
2008-11-12 11:28:42 +00:00
Werner Koch
d0ca953014
SCD changes for PC/SC under W32.
2008-10-14 18:18:21 +00:00
Werner Koch
969dfd9890
Explain how to delete a secret X.509 key.
2008-10-13 09:29:20 +00:00
Werner Koch
af7c1fa134
Add /daatfile command to gpg-connect-agent.
2008-10-01 16:17:39 +00:00
David Shaw
bb39c59728
* gpg.texi (OpenPGP Key Management): Clarify setpref a bit.
2008-09-23 19:18:52 +00:00
Werner Koch
f899b9683b
Support the Certifciate DO of the v2 OpenPGP cards.
2008-09-23 09:57:45 +00:00
Werner Koch
d30fdae24b
Workaround for a mingw runtime bug.
2008-09-04 10:35:41 +00:00
Werner Koch
5a8bf0bec6
Fix gpg-preset-passphrase bug.
...
Cleanups
2008-09-03 09:37:32 +00:00
Werner Koch
d92f06e882
Add a warning nite to --throw-keyds.
2008-08-28 14:57:25 +00:00
Werner Koch
7b81a6b074
Print a 'f' for validated non-root certificates in gpgsm colon style listing.
...
Doc fixes.
2008-08-13 15:41:48 +00:00
Werner Koch
ac5c3fab30
Cehck for expire date overflows.
2008-08-11 08:08:08 +00:00
Werner Koch
7d1b0d8626
Add a warning note to --allow-multiple-messages.
...
s/Sylpeed-Claws/Claws-Mail/.
2008-08-07 07:46:52 +00:00
Werner Koch
201a348565
Fix !EROFS bug.
...
Doc updates
2008-08-01 10:51:11 +00:00
Werner Koch
9d5a10a453
Do not run the setuid test if running under as root proper.
...
Documentation fixes.
Some enhancements for the new OpenPGP Card.
2008-07-17 19:40:53 +00:00
Werner Koch
4da2ce2d4d
add new certifciates
2008-06-25 11:14:48 +00:00
Werner Koch
4817ff6528
Add support for the TCOS NullPIN feature.
2008-06-24 16:00:29 +00:00
Werner Koch
d68470d9b4
Add the group option to gpgconf and define the new type "alias list".
2008-06-19 13:09:40 +00:00
Werner Koch
aa68a60301
Add controlo statement %ask-passphrase
2008-06-16 15:48:33 +00:00
Werner Koch
e2ce70f939
Clarify descrition for field 10.
2008-06-13 16:50:59 +00:00
Werner Koch
035c838f71
Made --fixed-list-mode obsolete.
2008-06-11 08:07:54 +00:00
Werner Koch
49b2db7636
Changes the header presented before requesting the user ID.
2008-06-01 19:44:05 +00:00
Werner Koch
3d39dc13d0
Minor bug fixes and document new gpg-connect-feature.
2008-05-26 16:48:05 +00:00
Marcus Brinkmann
0950648f34
2008-05-26 Marcus Brinkmann <marcus@g10code.de>
...
* gpgconf-comp.c: Replace pathname by filename everywhere.
2008-05-26 15:05:31 +00:00
Marcus Brinkmann
9c10eb6625
doc/
...
2008-05-26 Marcus Brinkmann <marcus@ulysses.g10code.com>
* tools.texi (Invoking gpgconf): Document --list-dirs.
tools/
2008-05-26 Marcus Brinkmann <marcus@ulysses.g10code.com>
* gpgconf.c (enum cmd_and_opt_values): Add aListDirs.
(opts): Add aListDirs option.
(main): Handle aListDirs.
* gpgconf.h (gc_percent_escape): New declaration.
* gpgconf-comp.c (my_percent_escape): Make non-static and rename
to ...
(gc_percent_escape): ... this. Change all callers.
2008-05-26 13:43:20 +00:00
Marcus Brinkmann
7d714a3788
doc/
...
2008-05-20 Marcus Brinkmann <marcus@g10code.de>
* tools.texi (Invoking gpgconf): Add --dry-run and --check-options.
(Checking programs): Document --check-options.
tools/
2008-05-20 Marcus Brinkmann <marcus@g10code.de>
* gpgconf.h (gc_component_check_programs): Rename to ...
(gc_check_programs): ... this.
(gc_component_change_options): Add argument OUT.
(gc_component_check_options): New function.
* gpgconf.c (enum cmd_and_opt_values): New option aCheckOptions.
(opts): Add new option aCheckOptions (aka --check-options).
(main): Handle new option aCheckOptions.
* gpgconf-comp.c (gc_component_check_programs): Rename to ...
(gc_check_programs): ... this. Refactor core of it to ...
(gc_component_check_options): ... this new function.
(gc_component_change_options): Add new argument OUT. Externally
verify all changes. Implement option --dry-run.
2008-05-19 22:46:41 +00:00
Marcus Brinkmann
102b285a2d
2008-05-15 Marcus Brinkmann <marcus@g10code.de>
...
* gpg.texi (Operational GPG Commands): Mention the way to change
the default signing key.
2008-05-15 10:59:35 +00:00
Werner Koch
d9405f0c49
Updated German translation.
...
Fix in gpgconf for W32.
2008-05-09 09:54:35 +00:00
Werner Koch
69ae16636c
Add command --locate-key.
...
Fix auto-key-locate processing of "nodefault".
2008-05-07 15:40:36 +00:00
Werner Koch
67e0a7e732
add gpg-zip man page.
2008-05-06 11:05:52 +00:00
Werner Koch
97ec9aac2b
Enhanced --auto-key-locate.
2008-04-08 11:04:16 +00:00
Werner Koch
ba63cfa79b
Fixed last yat2m change.
...
Add a similar change to @file and @env.
2008-04-03 09:58:28 +00:00
Werner Koch
798ca1d148
Utilize new automake vars for proper installation into doc/.
2008-03-27 13:18:19 +00:00
Werner Koch
9a8ee6e6be
Changed the way i18n files are located under Windows. The setting of the
...
Registry key is not anymore required. Helpfiles are not properly located.
2008-03-25 19:41:11 +00:00
Werner Koch
e751bcdd04
Add IF command and new variable functions to gpg-connect-agent.
2008-03-05 10:08:10 +00:00
Marcus Brinkmann
66307b34bb
2008-02-27 Marcus Brinkmann <marcus@g10code.de>
...
* tools.texi (Listing options): Document new types.
2008-02-27 17:31:47 +00:00
Werner Koch
f13c5a48fc
Improve certificate chain construction.
...
Extend PKITS framework
2008-02-19 10:33:35 +00:00
Werner Koch
57d9ea99d9
Preparing a test release
2008-02-15 09:58:01 +00:00
Werner Koch
0819c1e8ca
Always search missing certifcates using a running Dirmngr's cache.
2008-02-13 16:47:14 +00:00
David Shaw
9c42222a7a
* gpg.texi (GPG Esoteric Options): Tweak mention of Tempest font to
...
add a "claimed" in there.
2008-02-05 19:42:12 +00:00
Werner Koch
b680d034fa
W32 fix for trustdb creation.
2008-01-30 13:26:32 +00:00
Werner Koch
3d39e45a01
Typo and grammer fixes by Justin Pryzby.
2008-01-28 08:03:08 +00:00
Werner Koch
1e46b20f48
Add missing country tag to qualified.txt.
...
Typo fixes.
2008-01-10 08:13:14 +00:00
Marcus Brinkmann
b618d1c011
2008-01-10 Marcus Brinkmann <marcus@g10code.de>
...
* tools.texi (gpgconf): Some clarifications.
2008-01-10 03:03:15 +00:00
Werner Koch
157d4479aa
Preparing a release.
2007-12-20 08:52:40 +00:00
Werner Koch
78c2a34afe
Also add the S-TTRUST certs here.
2007-12-13 16:02:51 +00:00
Werner Koch
9d66580cff
Allow verification of some broken S-TRUST generated signatures.
2007-12-13 15:45:40 +00:00
Werner Koch
bae4b256c7
Support DSA2.
...
Support Camellia for testing.
More audit stuff.
2007-12-12 10:28:30 +00:00
Werner Koch
e2aefc427e
Add support for help stuff to audit.c
2007-12-06 19:02:42 +00:00
Werner Koch
63ec0b271c
Created help files form the current po entries.
2007-12-04 15:00:14 +00:00
Werner Koch
8c20500a5d
Allow configuraton of pinentry tooltip.
...
Other minor buf fixes.
2007-12-04 11:23:31 +00:00
Werner Koch
598a3d0ab4
[W32] Changed default socket for dirmngr.
...
[W32] Add some code for event notifications
between scdaemon and gpg-agent.
2007-11-27 08:01:19 +00:00
Werner Koch
c1270f06fe
Document --auto-issuer-key-retrieve.
2007-11-19 16:32:05 +00:00
Werner Koch
55ba204bfa
Started to implement the audit log feature.
...
Pass PINENTRY_USER_DATA and XAUTHORITY to Pinentry.
Improved support for the quality bar.
Minor internal restructuring.
Translation fixes.
2007-11-19 16:03:50 +00:00
Marcus Brinkmann
659025112c
2007-10-31 Marcus Brinkmann <marcus@g10code.de>
...
* gpg-agent.texi (Agent Options): Fix typos, by Bernhard Reiter.
2007-10-31 13:09:16 +00:00
David Shaw
dbdea101fe
* gpg.texi: Document --rfc4880 (the new --openpgp).
2007-10-27 14:09:36 +00:00
David Shaw
92cc7c2d34
* gpg.texi: Clarify --force-v3-sigs, --pgp2, and --pgp6 a bit.
2007-10-26 04:16:42 +00:00
Werner Koch
eda26e299f
Add a /while loop.
2007-10-24 15:34:23 +00:00
Werner Koch
fca02368da
New option --list-config for gpgconf.
2007-10-23 18:13:27 +00:00
Werner Koch
259a40c830
Enhanced gpg-conect-agent scripting.
...
Typo fixes in comments.
2007-10-19 14:51:39 +00:00
Werner Koch
273433d70d
Make gpgconf --list-components also print the name of the executable program.
2007-08-31 08:24:52 +00:00
Werner Koch
8464627bf4
Extended the --check-program output: Error messages are now inlcued in an
...
easy parsable format.
2007-08-29 16:59:20 +00:00
Werner Koch
b13587ef16
New command --check-programs for gpgconf.
2007-08-29 09:51:37 +00:00
Werner Koch
f268889b8f
Add more passphrase policy rules.
...
(--max-passphrase-days).
2007-08-28 17:48:13 +00:00
Werner Koch
15d0cb42a1
Implemented more gpg-agen options to support certain passphrase policies.
...
New tool gpg-check-pattern.
2007-08-27 18:10:27 +00:00
Werner Koch
503f91e0ae
tryu harder to ignore duplicate specified keyrings and -boxes.
...
Documentation updates.
2007-08-24 09:34:39 +00:00
Werner Koch
d20d11a0ee
Documentaion updates.
...
Support doe Dirmngr under W32.
Fixed a yat2m bug.
2007-08-14 16:50:27 +00:00
Werner Koch
74d344a521
Implemented the chain model for X.509 validation.
2007-08-10 16:52:05 +00:00
Werner Koch
ebd36b6344
Factored common gpgconf constants out
...
Fixed W32 compare_filenames
2007-08-02 18:12:43 +00:00
Werner Koch
11573b09c4
Typo fixes.
...
Made --default-key work for gpgsm
Add --default-key and --encrypt-to to gpgconf.
2007-07-17 18:11:24 +00:00
Werner Koch
4631bc8ddf
Fixed card key generation of gpg2.
...
Reveal less information about timings while generating a key.
2007-07-05 16:58:19 +00:00
Werner Koch
93d3811abc
Changed to GPLv3.
...
Removed intl/.
2007-07-04 19:49:40 +00:00
Werner Koch
831cd76256
Fixed a problem in estream-printf.c.
...
Changes for Windows (gpgsm -k does now work).
Minor cleanups.
2007-06-25 11:54:43 +00:00
Werner Koch
0b66f30d66
Implemented the --gen-key command as we can't use the gpgsm-gencert.sh under Windows.
2007-06-21 18:44:48 +00:00
Werner Koch
09cc0ee7be
[w32] gpg-agent is now started automagically by gpgsm.
2007-06-20 11:16:42 +00:00
Werner Koch
540f9164c0
Made percent_escape more general.
...
Added regression tests support to jnlib.
W32 changes.
2007-06-19 09:11:11 +00:00
Werner Koch
ad4a6067ca
Add missing fiels for W32.
...
New agent commands: GETINFO and KILLAGENT (w32 only).
Agent does now detach from the console.
2007-06-18 10:33:12 +00:00
Werner Koch
0cfbfd6186
A whole bunch of changes to allow building for Windows.
...
See the ChangeLogs for details.
2007-06-14 17:05:07 +00:00
Werner Koch
2c9791db55
First steps towards supporting W32.
...
This is mainly source code reorganization.
Update gnulib.
g10/ does currently not build.
2007-06-06 18:12:30 +00:00
Werner Koch
5f3bca9682
Use estream_asprintf instead of the GNU asprintf.
2007-05-15 16:10:48 +00:00
Werner Koch
edb3dc99e9
Preparing 2.0.4
2007-05-09 11:01:33 +00:00
Werner Koch
8bf339ab59
Add a howto section.
...
Makefile fixes
2007-05-08 13:59:41 +00:00
Werner Koch
1db69a88c7
gnupg.ps build fixes.
2007-05-08 08:15:55 +00:00
Werner Koch
174521f8da
Updated to automake 1.10.
...
Use latest texinfo.tex.
Typo and grammar fix.
2007-05-04 12:04:26 +00:00
Werner Koch
2ec906db3a
Fixed installation of gpg2keys_mailto
2007-05-04 09:23:51 +00:00
David Shaw
2be1afb5aa
* gpg.texi (OpenPGP Options): Update the personal-foo-preferences
...
documentation a bit.
2007-04-15 05:01:22 +00:00
Werner Koch
6ae6e18d5f
g10/ and sm/
...
* call-agent.c (start_agent): Don't use log_error when using the
fallback hack to start the agent. This is bug 782.
scripts/
* mail-to-translators: Copied from 1.4. and adjusted.
tools/
* gpgconf-comp.c: Allow changing of --allow-mark-trusted.
* gpg-connect-agent.c (main): New option --decode and commands
decode and undecode.
(read_and_print_response): Implement option.
2007-04-13 11:45:05 +00:00
Werner Koch
3bbc481935
Add a way to get a listing of available CCID readers.
2007-04-03 16:57:37 +00:00
Werner Koch
fd628ffda1
Allow setting of the passphrase encoding of pkcs#12 files.
...
New option --p12-charset.
2007-03-20 10:00:55 +00:00
Werner Koch
12b661166c
Changes to let the key listing use estream to help systems without
...
funopen.
2007-03-19 14:35:04 +00:00
Werner Koch
43a7d88e11
Add new logo.
2007-03-08 18:31:56 +00:00
Werner Koch
634b4c31d2
The Cherry XX44 keyboard's PINpad does now work.
...
DINSIG and NKS card applications are now also PIN pad aware.
2007-03-07 20:55:14 +00:00
Werner Koch
ed84b0f787
Support for a global gpgconf configuration file.
2007-03-06 20:44:41 +00:00
Werner Koch
9491ab44c5
Ported multiple-messages protection.
2007-03-05 14:56:31 +00:00
Werner Koch
f6243073a8
Add new SVN only file README.maint
...
doc/
* gpg.texi (GPG Configuration): Document envvar LANGUAGE.
(GPG Configuration Options): Document show-primary-uid-only.
g10/
* gpg.c (main): Add verify option show-primary-uid-only.
* options.h (VERIFY_SHOW_PRIMARY_UID_ONLY): New.
* mainproc.c (check_sig_and_print): Implement it.
* encr-data.c (decrypt_data): Correctly test for unknown algorithm.
* import.c (check_prefs): Ditto.
* keyedit.c (show_prefs): Ditto.
* mainproc.c (proc_symkey_enc): Ditto.
2007-02-26 20:24:29 +00:00
Werner Koch
fedae25efd
doc/
...
* gpg.texi (GPG Esoteric Options): No card reader options for gpg2.
scd/
* scdaemon.c (DEFAULT_PCSC_DRIVER): Add a default for OS X.
2007-02-18 13:48:03 +00:00
Werner Koch
5240d014f8
agent/
...
* gpg-agent.c: New option --pinentry-touch-file.
(get_agent_socket_name): New.
* agent.h (opt): Add pinentry_touch_file.
* call-pinentry.c (start_pinentry): Send new option to the
pinentry.
2007-02-14 16:27:55 +00:00