1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-10-31 20:08:43 +01:00
Commit Graph

8267 Commits

Author SHA1 Message Date
David Shaw
33ef3cf981 * sig-check.c (do_check): Properly validate v4 sigs with no hashed section
at all.
2002-07-29 03:07:11 +00:00
David Shaw
bb99f6c828 * keyedit.c (menu_revsig): Change "revsig" to honor selected uids so the
user can revoke sigs from particular uids only.

* keylist.c (list_keyblock_print): Don't display expired uids in
--list-keys unless -v and not --list-sigs (just like revoked uids).
2002-07-25 22:59:25 +00:00
David Shaw
52b1efab84 * gpg.sgml: Clarify the differences between "pref" and "showpref". Note in
"setpref" that a list of available algorithms can be printed with "gpg -v
--version".  Note in "updpref" that we don't select keys via attribute
uids, so preferences there will be ignored.
2002-07-25 20:25:59 +00:00
David Shaw
9ac6821b46 * exec.c, export.c, import.c, keyedit.c, keyserver.c, misc.c: "Warning" ->
"WARNING"
2002-07-25 18:08:09 +00:00
David Shaw
36d5779e82 * random.c: "warning" -> "WARNING" 2002-07-25 18:05:48 +00:00
David Shaw
a4427b0eb8 * gnupgbug: "Warning" -> "WARNING" 2002-07-25 18:03:25 +00:00
David Shaw
ceb76da7e2 * gpgkeys_hkp.c: "Warning" -> "WARNING" 2002-07-25 18:01:36 +00:00
David Shaw
2610f0ee62 * secmem.c: "Warning" -> "WARNING" 2002-07-25 18:00:00 +00:00
David Shaw
cead1f26f7 * config.links: Add special rule for OpenBSD on x86 to use special
i386-openbsd files.  OpenBSD (at least until version 3.1) has an older
assembler that won't work with the files in i386.
2002-07-25 17:56:07 +00:00
David Shaw
78f3138150 These are special i386 files for use on OpenBSD, which (at least until
version 3.1) has an older assembler that won't work with the files in
i386.
2002-07-25 17:52:40 +00:00
David Shaw
553ac3f08c * main.h, import.c (parse_import_options, fix_hkp_corruption, import_one,
delete_inv_parts), g10.c (main): New import-option
"repair-hkp-subkey-bug", which repairs as much as possible the HKP
mangling multiple subkeys bug.  It is on by default for keyserver
receives, and off by default for regular --import.

* main.h, import.c (import, import_one, delete_inv_parts), hkp.c
(hkp_ask_import), keyserver.c (keyserver_spawn): Use keyserver import
options when doing keyserver receives.
2002-07-24 21:17:19 +00:00
David Shaw
d0c643a6c5 * options.h, exec.h, exec.c (set_exec_path, exec_write), g10.c (main),
keyserver.c (keyserver_spawn): If the user does not use "exec-path",
completely replace $PATH with GNUPG_LIBEXECDIR before calling the
keyserver helper.  If the user does use "exec-path", append
GNUPG_LIBEXECDIR after the specified path.
2002-07-24 19:24:08 +00:00
David Shaw
0ecc2099ac * Makefile.am: Install keyserver helpers in @GNUPG_LIBEXECDIR@ 2002-07-24 18:42:38 +00:00
David Shaw
89b42e124e * configure.ac: Include a GNUPG_LIBEXECDIR in g10defs.h, as well as a
SUBST for Makefiles.
2002-07-24 18:38:56 +00:00
David Shaw
58cfd8edc0 * configure.ac: Include a GNUPG_LIBEXECDIR in g10defs.h 2002-07-24 17:59:12 +00:00
Stefan Bellon
0967b40c51 removed pragma for RISC OS 2002-07-24 15:02:14 +00:00
Werner Koch
9a4e2a4c86 * longlong.h: Replaced all K&R multiline strings by ISO ones for
the sake of modern compilers.  Suggested by Marco Parrone.
2002-07-24 08:19:48 +00:00
Werner Koch
6b50533fe1 * rndw32.c (slow_gatherer_windowsNT): Use a simple array for the
disk performance structure and increase it to the size required by
W2000.
2002-07-24 07:42:16 +00:00
Werner Koch
160895b8e6 Add a new readon code for delet key. 2002-07-24 07:41:41 +00:00
Werner Koch
35bf53d4bb Forgot to commit this:
* photoid.c (get_default_photo_command): Also use __MINGW32__
instead of HAVE_DOSISH_SYSTEM.
2002-07-24 07:40:53 +00:00
David Shaw
72a3fd4868 * import.c (parse_import_options), export.c (parse_export_options): Fix
offset problem with reversed ("no-") meanings.
2002-07-24 03:37:55 +00:00
David Shaw
eb5c0265e1 * import.c (delete_inv_parts): Discard subkey signatures (0x18 and 0x28)
if found in the userid section of the key.
2002-07-24 03:29:02 +00:00
David Shaw
4623605645 * sig-check.c (signature_check2): Signatures made by invalid subkeys
(bad/missing binding sig) are also invalid.

* keylist.c (print_fingerprint): Show the primary as well as the secondary
key fingerprint in modes 1 & 2.
2002-07-23 18:42:18 +00:00
Timo Schulz
d83e64968f 2002-07-22 Timo Schulz <ts@winpt.org>
* configure.ac: Replace the 'c:/' variables with 'c:\' due
        to the fact we already use '\' in the remaining code.
2002-07-23 08:54:40 +00:00
David Shaw
125613737c * options.h, main.h, g10.c (main), import.c (parse_import_options,
delete_inv_parts), keyserver.c (parse_keyserver_options): add new
--import-options option.  The only current flag is "allow-local-sigs".

* g10.c (main): Don't disable MDC in pgp7 mode.

* options.h, g10.c (main), keyserver.c (parse_keyserver_options): Remove
old keyserver-option include-attributes now that there is an export-option
for the same thing.
2002-07-22 22:26:14 +00:00
David Shaw
002f085c23 * options.h, main.h, export.c (parse_export_options, do_export_stream),
g10.c (main): add new --export-options option. Current flags are
"include-non-rfc", "include-local-sigs", "include-attributes", and
"include-sensitive-revkeys".

* options.h, hkp.c (hkp_export), keyserver.c (parse_keyserver_options,
keyserver_spawn): try passing unknown keyserver options to export options,
and if successful, use them when doing a keyserver --send-key.

* build-packet.c (build_sig_subpkt): We do not generate
SIGSUBPKT_PRIV_VERIFY_CACHE anymore.
2002-07-22 19:07:21 +00:00
David Shaw
b65aced7b2 * revoke.c (gen_desig_revoke): Lots more comments about including
sensitive revkeys along with the revocation sig itself.

* keyserver.c (parse_keyserver_options): Simpler implementation that can
skip one pass over the options.
2002-07-22 17:52:02 +00:00
Werner Koch
5190d70423 * keydb.c (keydb_add_resource): Register a lock file.
(lock_all, unlock_all): Implemented.
2002-07-22 13:14:48 +00:00
Werner Koch
9f8fef65ca * delete.c: New.
* gpgsm.c: Made --delete-key work.
* server.c (cmd_delkeys): New.
(register_commands): New command DELKEYS.

* decrypt.c (gpgsm_decrypt): Print a convenience note when RC2 is
used and a STATUS_ERROR with the algorithm oid.
2002-07-22 10:23:10 +00:00
Werner Koch
508ce100c9 * keybox-defs.h: New BLOBTYPTE_EMPTY.
* keybox-dump.c (_keybox_dump_blob): Handle new type.
* keybox-file.c (_keybox_read_blob): Skip over empty blobs.  Store
the file offset.
* keybox-blob.c (_keybox_new_blob): Add new arg OFF.
(_keybox_get_blob_fileoffset): New.
* keybox-update.c (keybox_delete): Implemented.
2002-07-22 10:21:04 +00:00
Werner Koch
bbf580e702 * fseeko.c, ftello.c: New.
* configure.ac: Check for ftello and provide a replacement.
2002-07-22 10:20:39 +00:00
David Shaw
fc8d9e4741 * keyedit.c (keyedit_menu, menu_addrevoker): Allow specifying "sensitive"
as an argument to an addrevoker command.  This sets the 0x40 sensitive
revoker flag.

* revoke.c (gen_desig_revoke): When generating a designated revocation,
include the direct key sig that contains the designated revoker subpacket.
This allows sensitive designated revocation subpackets to be exported.
Also indicate which revokers are sensitive in the first place.
2002-07-19 05:08:54 +00:00
David Shaw
75ad30031f * keyedit.c (show_key_with_all_names_colon): The 0x40 class bit in a
designated revoker means "sensitive", not "local".  It's exportable under
the right circumstances.

* main.h, options.h, export.c (do_export_stream), g10.c (main), hkp.c
(hkp_export), keyserver.c (keyserver_spawn: Add a flag to skip attribute
packets and their signatures while exporting.  This is to accomodate
keyservers (pksd again) that choke on attributes. Use keyserver-option
"include-attributes" to control it.  This defaults to ON (i.e. don't
skip).
2002-07-17 19:48:19 +00:00
David Shaw
2921721841 * gpgkeys_ldap.c (send_key, get_key, main): Consult the server version
string to determine whether to use pgpKey or pgpKeyV2.
2002-07-15 23:13:48 +00:00
David Shaw
9ffea0d67b * options.h, keyserver.c (parse_keyserver_uri, keyserver_spawn,
keyserver_work), hkp.c (hkp_ask_import, hkp_export, hkp_search): Use a
much more strict reading of RFC-2396 for the keyserver URIs. Specifically,
don't try and be smart about checking the value of ":port" so long as it
is all digits, and properly handle opaque data (those scheme specific
parts that do not start with "//").
2002-07-09 19:40:18 +00:00
David Shaw
fd415ba29f * gpgkeys_mailto.in: Use new OPAQUE tag for non net-path URIs. Fail more
elegantly if there is no email address to send to.  Show the GnuPG version
in the message body.

----------------------------------------------------------------------
gpgkeys_mailto.in CVS:
----------------------------------------------------------------------
2002-07-09 19:19:25 +00:00
David Shaw
b67d342b9d * configure.ac: Add --with-mailprog to override the use of sendmail with
another MTA.  We can use anything that follows the "$MAILPROG -t"
convention.
2002-07-09 02:55:00 +00:00
Werner Koch
f07463b72c * argparse.c (initialize): We better exit after a read error so
that we don't run into an endless loop when reading a directory.
Noted by Andrew Suffield.
2002-07-05 06:25:14 +00:00
David Shaw
32b11e4501 * photoid.c (get_default_photo_command, show_photos): Honor
FIXED_PHOTO_VIEWER and DISABLE_PHOTO_VIEWER.

* mainproc.c (check_sig_and_print): Use --show-photos to show photos when
verifying a sig made by a key with a photo.

* keyserver.c (parse_keyserver_uri): Properly parse a URI with no :port
section and an empty file path, but with a terminating '/'.
(keyserver_work): Honor DISABLE_KEYSERVER_HELPERS.

* hkp.c (hkp_ask_import): Display keyserver URI as a URI, but only if
verbose.

* exec.c, g10.c: USE_EXEC_PATH -> FIXED_EXEC_PATH
2002-07-04 16:06:38 +00:00
David Shaw
5d74fb31d8 * configure.ac: --enable-exec-path should be a 'with'. Fix 'no' cases of
--with-exec-path and --with-photo-viewer.
2002-07-04 14:37:40 +00:00
David Shaw
a811246420 * gpgkeys_ldap.c (get_key), gpgkeys_hkp.c (get_key): Display keyserver URI
as a URI, but only if verbose.
2002-07-04 14:14:08 +00:00
David Shaw
1c3fae007b Fix previous ChangeLog commit 2002-07-04 13:37:52 +00:00
David Shaw
107e4a3f58 * README: Document --disable-exec, --disable-photo-viewers,
--disable-keyserver-helpers, --enable-exec-path, and --with-photo-viewer.

* configure.ac: Add --with-photo-viewer to lock the viewer at compile time
and --disable-keyserver-helpers and --disable-photo-viewers to allow
disabling one without disabling the other.
2002-07-04 13:35:42 +00:00
Werner Koch
f48b2851f6 * server.c (gpgsm_status2): Insert a blank between all optional
arguments when using assuan.
* server.c (cmd_recipient): No more need for extra blank in constants.
* import.c (print_imported_status): Ditto.
* gpgsm.c (main): Ditto.
2002-07-03 16:03:22 +00:00
David Shaw
985b36ac07 * configure.ac: Allow setting USE_EXEC_PATH to lock the exec-path to a
fixed value.
2002-07-03 04:05:06 +00:00
David Shaw
bccb780228 * exec.h, exec.c (set_exec_path, exec_write), g10.c (main): If
USE_EXEC_PATH is defined at compile time, use it to lock the exec-path and
not allow the user to change it.
2002-07-03 04:01:21 +00:00
David Shaw
c6feade425 * options.h, g10.c (main), keyserver.c (keyserver_refresh): Maintain and
use the original keyserver URI for cosmetics rather than trying to
recreate it when needed.

* mainproc.c (check_sig_and_print): Properly disregard expired uids.
Make sure that the first uid listed is a real uid and not an attribute
(attributes should only be listed in the "aka" section).  When there are
no valid textual userids, try for an invalid textual userid before using
any attribute uid.
2002-07-02 22:13:00 +00:00
Werner Koch
6aaa48054b * verify.c (gpgsm_verify): Extend the STATUS_BADSIG line with
the fingerprint.
2002-07-02 19:38:14 +00:00
Werner Koch
6041ae63f3 * certpath.c (check_cert_policy): Don't use log_error to print a
warning.
2002-07-02 17:40:26 +00:00
Werner Koch
5795c02b09 * keydb.c (keydb_store_cert): Add optional ar EXISTED and changed
all callers.
* call-agent.c (learn_cb): Print info message only for real imports.

* import.c (gpgsm_import): Moved duplicated code to ...
(check_and_store): new function.  Added magic to import the entire
chain. Print status only for real imports and moved printing code
to ..
(print_imported_status): New.
2002-07-02 10:40:12 +00:00