security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-06-26 01:52:45 +02:00
Code Activity
2,405 Commits 100 Branches 301 Tags 70 MiB
18f6e7e5d8
Commit Graph

980 Commits

Author SHA1 Message Date
David Shaw
18f6e7e5d8 Add Camellia-192. 2008-04-17 17:40:30 +00:00
David Shaw
9fbb6f402c * getkey.c (merge_selfsigs_subkey): If there are multiple 0x19 
backsigs, take the most recent one.
 2008-04-13 01:56:01 +00:00
Werner Koch
2c045c4fca Powerpc64 fix. 2008-03-25 10:45:59 +00:00
Werner Koch
3886468f75 Change default keyserver. 2008-03-25 08:34:02 +00:00
David Shaw
766cc26305 * import.c (collapse_uids): Fix bug 894: possible memory corruption 
around deduplication of user IDs.
 2008-03-24 02:28:40 +00:00
David Shaw
a614eabba9 * parse-packet.c (parse_key): Parse a secret key encrypted with 
Camellia.
 2008-03-17 18:20:39 +00:00
Marcus Brinkmann
36ffb72bb9 2008-02-09 Marcus Brinkmann <marcus@g10code.de> 
* gpg.c (main): New variable default_configname.  Use it if
	save_configname is NULL (can happen if default configfile does
	not exist).  Move default configname determination to ...
	(get_default_configname): ... this new function.
 2008-02-09 00:49:36 +00:00
Werner Koch
80039354e8 Add card vendor 004. 2008-01-26 13:12:00 +00:00
Werner Koch
6e8bb4de07 Fixed a regression in gpg_dermor. 2007-12-14 11:30:01 +00:00
Werner Koch
81685cc799 Updated ZH po file. 
Allow de/encryption using legacy type 20 keys.
Updated config.{sub,guess}
 2007-12-12 18:26:25 +00:00
David Shaw
2e7eadbc1e * trustdb.c (sanitize_regexp): New. Protect against dangerous regexps 
(malloc bombs) by force-commenting any characters aside from the ones
we explicitly want.  (check_regexp): Use it here before passing the
regexp to regcomp().
 2007-12-12 16:38:23 +00:00
Werner Koch
7d67e4a497 Allow decryption using type 20 Elgamal keys. 2007-12-11 13:21:30 +00:00
Werner Koch
0e927e3941 Fixed auto generation of the key stub. 
Fixed bug 851.
Allow decryption using type 20 Elgamal keys.
 2007-12-10 15:34:20 +00:00
Werner Koch
aa9aec7068 Comment typ fixes. 
Workaround for bad translations of the capability menu.
 2007-12-03 14:41:38 +00:00
David Shaw
a92fa61c48 * sig-check.c (do_check): Code to try both the incorrect and correct 
SHA-224 DER prefixes when verifying a signature.  See the change
itself for more discussion.

* main.h, seskey.c (do_encode_md): Rename to pkcs1_encode_md and make
non-static.
 2007-11-28 23:08:35 +00:00
David Shaw
c756a493c9 * gpg.c (print_algo_names): New. (list_config): Use it here for the 
"ciphername" and "digestname" config items so we can get a
script-parseable list of the names.
 2007-11-28 15:09:52 +00:00
Werner Koch
e60684e3d8 Grammar fix 2007-11-19 10:10:02 +00:00
Werner Koch
14296f338f * status.c (do_get_from_fd, do_shm_get): s/bool/getbool/ to 
overcome problems with Mac OS 10.5 which seems to include
   stdbool.h silently.
 2007-11-12 15:52:01 +00:00
David Shaw
a426c89ae3 * parse-packet.c (parse_onepass_sig): Sigclass is hex, so include the 
0x.
 2007-10-27 20:00:20 +00:00
David Shaw
05c32b91a7 * keyserver.c (keyserver_spawn): Cosmetic, but looks cleaner. 2007-10-27 19:40:13 +00:00
Werner Koch
9a2a818887 Switched to GPLv3. 
Updated gettext.
 2007-10-23 10:48:09 +00:00
David Shaw
960ac80048 * gpg.c (main): Add --require-cross-certification to 
--openpgp/--rfc4880 mode.
 2007-10-23 03:00:21 +00:00
David Shaw
b550330067 * gpg.c (main): Disable --rfc2440-text and --force-v3-sigs by default. 
Enable --require-cross-certification by default.  --openpgp
(--rfc4880) is the same as --rfc2440 except with "--enable-dsa2
--no-rfc2440-text --escape-from-lines".
 2007-10-23 00:36:59 +00:00
David Shaw
f3abec2002 * misc.c (compliance_option_string, compliance_failure): Minor 
cleanup.

* armor.c (is_armor_header): Comment about 4880.
 2007-10-21 16:07:13 +00:00
David Shaw
1ce132213e * options.h, gpg.c (main), misc.c (compliance_option_string): Add 
--rfc4880, and make --openpgp an alias to it.  --rfc2440 now stands
alone.  For now, use the old 2440 defaults for 4880.

* keyedit.c (keyedit_menu): Use compliance_option_string() instead of
printing the compliance modes here.
 2007-10-17 16:37:09 +00:00
David Shaw
8bc8b9d932 * import.c (collapse_uids): Significant speedup for de-duping user 
IDs.
 2007-09-02 14:09:24 +00:00
Werner Koch
d1a13319bb Improved detection of ketrings specified several times. 2007-08-24 09:51:58 +00:00
David Shaw
3b9eca640b * gpg.c (main): Fix typo. Noted by John Clizbe. 2007-07-19 12:46:08 +00:00
David Shaw
14d6d2c90c * armor.c (parse_header_line): Improve test so that the header test 
only allows "Hash" in the signed data section.
 2007-07-19 12:29:22 +00:00
David Shaw
d26739aa5a * armor.c (is_armor_tag): New. Detect if an armor header matches 
2440bis-21.  (parse_header_line): Call it here, as bis-21 requires
warning the user (but continuing to process the message) when seeing
an unknown header.
 2007-07-18 17:08:47 +00:00
Werner Koch
66c5c46b95 Add an extra warning for Camellia. 
Minor W32 fix
Address change.
 2007-07-09 17:26:51 +00:00
David Shaw
de50a5a1e7 * encode.c (encode_crypt): Missed one call to setup_plaintext_name(). 
This is bug#809.
 2007-07-06 23:36:33 +00:00
David Shaw
15e9a73988 * sign.c (mk_notation_policy_etc): expect all sigs that this is called 
for are >=v4.  (write_signature_packets, make_keysig_packet): Only
call it for >=v4 sigs.  This allows --force-v3-sigs and
--force-v4-certs to enable or disable notations, policies, and
keyserver URLs.  This is bug#800.
 2007-06-12 20:19:31 +00:00
David Shaw
2e81dd1b98 * packet.h, mainproc.c (reset_literals_seen): New function to reset 
the literals count.

* verify.c (verify_one_file), decrypt.c (decrypt_messages): Call it
here so we allow multiple literals in --multifile mode (in different
files - not concatenated together).
 2007-04-17 04:00:38 +00:00
David Shaw
ebdcac8089 * gpg.c, pkclist.c: #include <strings.h> for strcasecmp if it is 
present.  Note that autoconf protects us against a strings.h that
cannot be used together with string.h.
 2007-04-16 21:55:53 +00:00
David Shaw
28c7223d13 * parse-packet.c (parse_marker): New. Enforce that the marker 
contains 'P', 'G', 'P', and nothing but.  (parse): Call it here.
(skip_packet): No longer need to handle marker packets here.
 2007-04-04 04:00:20 +00:00
David Shaw
994ab24b4b * keyserver.c: Windows Vista doesn't grok X_OK and so fails access() 
tests.  Previous versions interpreted X_OK as F_OK anyway, so we'll
just use F_OK directly.
 2007-03-14 13:15:50 +00:00
Werner Koch
7b3e35a24c Add extra fflush (stdout) 2007-03-08 12:13:15 +00:00
David Shaw
57591eb76f * keyedit.c (keyedit_menu): If we modify the keyblock (via 
fix_keyblock() or collapse_uids()) make sure we reprocess the keyblock
so the flags are correct.  Noted by Robin H. Johnson.

* getkey.c (fixup_uidnode): Properly clear flags that don't apply to
us (revoked, expired) so that we can reprocess a uid.
 2007-03-06 06:39:38 +00:00
Werner Koch
7cb81bb3ef Preparing 1.4.7 2007-03-05 10:22:56 +00:00
David Shaw
6b086c1fe3 * parse-packet.c (parse_signature): It's hex. 
* getkey.c (merge_selfsigs_subkey): Avoid listing the contents of a
backsig when list mode is on.  Noted by Timo Schulz.
 2007-02-14 03:41:24 +00:00
Werner Koch
b4f553c1ca Fix for Debian bug 402592 2007-02-04 17:20:24 +00:00
David Shaw
ef8f2e2f6f * main.h, keygen.c (ask_expire_interval, parse_expire_string): Pass in 
the time to use to calculate the expiration offset, rather than
querying it internally.  Change all callers.
 2007-02-01 19:32:16 +00:00
David Shaw
ef9e1b5fbc * keygen.c (do_generate_keypair, proc_parameter_file, 
generate_keypair, generate_subkeypair): Pass a timestamp through to
all the gen_xxx functions.
 2007-01-31 21:39:26 +00:00
David Shaw
9f3af9e24d * keyedit.c (sign_uids): Another multiple to single timestamp 
operation.
 2007-01-31 20:44:48 +00:00
David Shaw
5b34e0264e * sign.c (write_plaintext_packet): Take timestamp from outside. 
Change all callers.  (sign_file, clearsign_file,
sign_symencrypt_file): Calculate one timestamp for the whole
transaction.  Different timestamps for each step can leak performance
information.
 2007-01-31 20:23:45 +00:00
David Shaw
efef00aed3 * main.h, keygen.c (ask_expiredate), keyedit.c (menu_expire): Remove 
the need for ask_expiredate().
 2007-01-31 19:42:48 +00:00
David Shaw
e2fdff56fc * keygen.c (make_backsig, write_direct_sig, write_selfsigs) 
(write_keybinding): Have the various selfsigs created during key
generation use the timestamp of their parent key.  This helps avoid
leaking information about the performance of the machine where the
keys were generated.  Noted by Christian Danner.
 2007-01-30 21:19:45 +00:00
Werner Koch
9e4a5071a6 * parse-packet.c (read_protected_v3_mpi): Make sure to stop 
reading even for corrupted packets.
	* keygen.c (generate_user_id): Need to allocate one byte more.
	Reported by Felix von Leitner.
 2007-01-15 19:30:33 +00:00
David Shaw
68ea16cbfc * options.skel: Tweak some examples to match reality and update the 
RFC for CERT now that it is out of draft.
 2006-12-15 04:37:47 +00:00