1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-11-04 20:38:50 +01:00
Commit Graph

2346 Commits

Author SHA1 Message Date
David Shaw
587104ae42 * ldap.m4: Revert the mozldap change: mozldap has some significant
differences around TLS compared to OpenLDAP, and will segfault (!)  if
the NSS library is not initialized first.  Nothing impossible to do,
but I think I'll wait until someone actually asks us for mozldap
support.
2007-08-02 13:17:27 +00:00
David Shaw
43f18c4b65 * gpgkeys_ldap.c (main): Fix bug in setting up whether to verify peer
SSL cert.  This used to work with older OpenLDAP, but is now more
strictly handled.
2007-07-29 02:58:26 +00:00
David Shaw
3349267ee5 * gpgkeys_ldap.c: Fix build warning with mozldap. 2007-07-27 16:33:05 +00:00
David Shaw
8898e869a2 * gpgkeys_ldap.c (search_key, main): Fix bug where searching for foo
bar (no quotes) on the command line resulted in searching for
"foo\2Abar" due to LDAP quoting.  The proper search is "foo*bar".
2007-07-27 16:21:18 +00:00
David Shaw
73f9238d93 * ldap.m4: If we don't find ldap or winldap, try for mozldap. 2007-07-27 15:48:35 +00:00
David Shaw
3b9eca640b * gpg.c (main): Fix typo. Noted by John Clizbe. 2007-07-19 12:46:08 +00:00
David Shaw
14d6d2c90c * armor.c (parse_header_line): Improve test so that the header test
only allows "Hash" in the signed data section.
2007-07-19 12:29:22 +00:00
David Shaw
2aa497521d * configure.ac: It seems that AM_GNU_GETTEXT doesn't like being run
conditionally and it confuses the includes when doing later type
checks.  This is bug#810.
2007-07-18 19:36:24 +00:00
David Shaw
ab20b58ecd * defs.inc (all_hash_algos): See "all_cipher_algos", below.
* sigs.test: Use it here, and also test with >=160 bit hashes for
DSA2.
2007-07-18 17:43:14 +00:00
David Shaw
d26739aa5a * armor.c (is_armor_tag): New. Detect if an armor header matches
2440bis-21.  (parse_header_line): Call it here, as bis-21 requires
warning the user (but continuing to process the message) when seeing
an unknown header.
2007-07-18 17:08:47 +00:00
Werner Koch
66c5c46b95 Add an extra warning for Camellia.
Minor W32 fix
Address change.
2007-07-09 17:26:51 +00:00
David Shaw
3be2eb4b35 * configure.ac: AM_PROG_CC_C_O is desired by automake 1.10 to do
per-target builds (like we do in the keyserver dir), but exists in the
currently-used 1.9.3 as well.
2007-07-08 21:48:11 +00:00
David Shaw
de50a5a1e7 * encode.c (encode_crypt): Missed one call to setup_plaintext_name().
This is bug#809.
2007-07-06 23:36:33 +00:00
Werner Koch
0a42be5773 * mk-w32-dist: Remove underline markup from man pages. Reported
by Dirk Traulsen.
2007-06-22 11:52:12 +00:00
David Shaw
7cf79c128a Add Camellia. Do not enable this if you are not doing interop
testing.  It is not (yet) legal OpenPGP, is not interop tested yet
(obviously), and it's a great way to lose your data.  Just don't do
it.
2007-06-13 15:28:11 +00:00
David Shaw
15e9a73988 * sign.c (mk_notation_policy_etc): expect all sigs that this is called
for are >=v4.  (write_signature_packets, make_keysig_packet): Only
call it for >=v4 sigs.  This allows --force-v3-sigs and
--force-v4-certs to enable or disable notations, policies, and
keyserver URLs.  This is bug#800.
2007-06-12 20:19:31 +00:00
David Shaw
1b488760bb * defs.inc (all_cipher_algos): New function to return all ciphers we
support.  This is safer than the previous setup which could hide that
some ciphers weren't being tested.  Plus, this automatically tests any
new ciphers we may add.

* conventional.test, encrypt-test, encrypt-dsa.test,
conventional-mdc.test: Use it here.
2007-05-14 23:16:05 +00:00
David Shaw
ddfaad29fd * conventional.test, encrypt.test, encrypt-dsa.test,
conventional-mdc.test: Fix some broken tests that were only testing
3DES instead of all available ciphers.
2007-05-02 17:20:45 +00:00
David Shaw
2e81dd1b98 * packet.h, mainproc.c (reset_literals_seen): New function to reset
the literals count.

* verify.c (verify_one_file), decrypt.c (decrypt_messages): Call it
here so we allow multiple literals in --multifile mode (in different
files - not concatenated together).
2007-04-17 04:00:38 +00:00
David Shaw
1fc3e4a299 * gpgkeys_hkp.c (main): Show curl or fake-curl version string.
* Makefile.am: Link with libcompat.a for ascii_str(n)casecmp.
2007-04-16 22:47:20 +00:00
David Shaw
e7c72ccc2f * gpgkeys_curl.c, gpgkeys_ldap.c, gpgkeys_hkp.c, ksutil.c: Rename all
str(n)casecmp to ascii_str(n)casecmp.  We want the locale-independent
ones here.
2007-04-16 22:43:29 +00:00
David Shaw
20af3fea15 Move some ascii_foo functions to libcompat 2007-04-16 22:32:28 +00:00
David Shaw
ebdcac8089 * gpg.c, pkclist.c: #include <strings.h> for strcasecmp if it is
present.  Note that autoconf protects us against a strings.h that
cannot be used together with string.h.
2007-04-16 21:55:53 +00:00
Werner Koch
d54ee32837 util/
* secmem.c (init_pool): Avoid assigning a negative value to a
	size_t.
./
	* acinclude.m4: Fix last change.  Make test self-conatined by
	checking for sysconf and getpagesize.  Remove indentation for the
	sake of broken C-89 cpps.
2007-04-16 15:37:45 +00:00
David Shaw
eec94ac312 Don't build shmtest unless we have shm. 2007-04-16 15:32:49 +00:00
David Shaw
3a2e31ff19 Use sysconf() when possible as not all platforms have getpagesize(). 2007-04-16 13:37:09 +00:00
David Shaw
0b677ba499 * argparse.c (default_strusage): Copyright 2007.
* cert.c, srv.c, pka.c: Need arpa/inet.h for ntohs().
2007-04-15 16:37:01 +00:00
David Shaw
c472952fe5 * configure.ac: QNX puts resolver functions in libsocket. From Sean
Boudreau.
2007-04-15 14:30:11 +00:00
David Shaw
28c7223d13 * parse-packet.c (parse_marker): New. Enforce that the marker
contains 'P', 'G', 'P', and nothing but.  (parse): Call it here.
(skip_packet): No longer need to handle marker packets here.
2007-04-04 04:00:20 +00:00
David Shaw
994ab24b4b * keyserver.c: Windows Vista doesn't grok X_OK and so fails access()
tests.  Previous versions interpreted X_OK as F_OK anyway, so we'll
just use F_OK directly.
2007-03-14 13:15:50 +00:00
David Shaw
7a81947753 * gpgkeys_curl.c (main): Use curl_version_info to verify that the
protocol we're about to use is actually available.

* curl-shim.h, curl-shim.c (curl_free): Make into a macro.
(curl_version_info): New.  Only advertises "http" for our shim, of
course.
2007-03-13 17:53:57 +00:00
Werner Koch
7b3e35a24c Add extra fflush (stdout) 2007-03-08 12:13:15 +00:00
David Shaw
57591eb76f * keyedit.c (keyedit_menu): If we modify the keyblock (via
fix_keyblock() or collapse_uids()) make sure we reprocess the keyblock
so the flags are correct.  Noted by Robin H. Johnson.

* getkey.c (fixup_uidnode): Properly clear flags that don't apply to
us (revoked, expired) so that we can reprocess a uid.
2007-03-06 06:39:38 +00:00
Werner Koch
2a3946e0d1 Post release update 2007-03-05 10:46:33 +00:00
Werner Koch
7cb81bb3ef Preparing 1.4.7 2007-03-05 10:22:56 +00:00
Werner Koch
b87b1c9a93 Updated 2007-02-26 15:45:29 +00:00
Werner Koch
958c2a6f69 [W32] Make use of the LANGUAGE envvar. 2007-02-26 14:26:32 +00:00
David Shaw
6b086c1fe3 * parse-packet.c (parse_signature): It's hex.
* getkey.c (merge_selfsigs_subkey): Avoid listing the contents of a
backsig when list mode is on.  Noted by Timo Schulz.
2007-02-14 03:41:24 +00:00
Werner Koch
22be39dfac * secmem.c (ptr_into_pool_p): New.
(m_is_secure): Implement in terms of above.  Also check that the
        pool has been initialized.
2007-02-12 14:13:37 +00:00
David Shaw
1475939994 * gpgkeys_ldap.c (send_key): Missing a free().
* curl-shim.c (curl_easy_perform): Some debugging items that may be
handy.
2007-02-11 03:56:59 +00:00
David Shaw
f6e12f4b46 * http.c (do_parse_uri): Remove the hkp port 11371 detection. We
implement hkp in the keyserver handler, and the support here makes it
appear like a bad hkp request actually succeeded.
2007-02-11 03:10:12 +00:00
Werner Koch
b4f553c1ca Fix for Debian bug 402592 2007-02-04 17:20:24 +00:00
David Shaw
e0dbc52cfc Missed one caller. 2007-02-01 20:51:15 +00:00
David Shaw
ef8f2e2f6f * main.h, keygen.c (ask_expire_interval, parse_expire_string): Pass in
the time to use to calculate the expiration offset, rather than
querying it internally.  Change all callers.
2007-02-01 19:32:16 +00:00
David Shaw
67c18b8c3c * ttyio.c (do_get): Assume that anything read from the user without
echoing to the screen is sensitive and put it in secure memory.
Suggested by Benjamin Bennett.
2007-02-01 04:21:07 +00:00
David Shaw
ef9e1b5fbc * keygen.c (do_generate_keypair, proc_parameter_file,
generate_keypair, generate_subkeypair): Pass a timestamp through to
all the gen_xxx functions.
2007-01-31 21:39:26 +00:00
David Shaw
9f3af9e24d * keyedit.c (sign_uids): Another multiple to single timestamp
operation.
2007-01-31 20:44:48 +00:00
David Shaw
5b34e0264e * sign.c (write_plaintext_packet): Take timestamp from outside.
Change all callers.  (sign_file, clearsign_file,
sign_symencrypt_file): Calculate one timestamp for the whole
transaction.  Different timestamps for each step can leak performance
information.
2007-01-31 20:23:45 +00:00
David Shaw
efef00aed3 * main.h, keygen.c (ask_expiredate), keyedit.c (menu_expire): Remove
the need for ask_expiredate().
2007-01-31 19:42:48 +00:00
David Shaw
e2fdff56fc * keygen.c (make_backsig, write_direct_sig, write_selfsigs)
(write_keybinding): Have the various selfsigs created during key
generation use the timestamp of their parent key.  This helps avoid
leaking information about the performance of the machine where the
keys were generated.  Noted by Christian Danner.
2007-01-30 21:19:45 +00:00