1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-12-23 10:29:58 +01:00

845 Commits

Author SHA1 Message Date
Werner Koch
ba0de8e956 * scdaemon.c (main): New option --daemon so that the program is
not accidently started in the background.
2002-08-21 08:19:12 +00:00
Werner Koch
bc8364ec4f * vasprintf.c: Hack to handle NULL for %s. 2002-08-21 08:18:43 +00:00
Werner Koch
a71981bace * divert-scd.c (getpin_cb): Pass a more descritive text to the
pinentry.

* Makefile.am: Renamed the binary protect-tool to gpg-protect-tool.
* protect-tool.c: Removed the note about internal use only.

* gpg-agent.c (main): New option --daemon so that the program is
not accidently started in the background.
2002-08-21 08:18:23 +00:00
David Shaw
1cc0480be4 * options.skel: Document no-include-attributes for keyserver-options. 2002-08-20 17:16:33 +00:00
Werner Koch
e18e3875b7 * gpgsm.c (main): Use the log file only in server mode.
* import.c (print_imported_summary): New.
(check_and_store): Update the counters, take new argument.
(import_one): Factored out core of gpgsm_import.
(gpgsm_import): Print counters.
(gpgsm_import_files): New.
* gpgsm.c (main): Use the new function for import.
2002-08-20 13:09:53 +00:00
David Shaw
12fb1e6d55 * DETAILS: Clarify that trust letters 'q' and '-' can be treated
identically.

* gpg.sgml: Document --ignore-mdc-error.
2002-08-20 12:56:51 +00:00
David Shaw
fa88fe9aaf * keylist.c, keyedit.c, keyserver.c, sign.c: Some TODOs and comments.
* export.c (do_export_stream): Fix noop bug in exporting sensitive
revocation keys.

* pkclist.c (do_edit_ownertrust): Comment out the option for showing trust
paths until it can be implemented.
2002-08-20 12:45:57 +00:00
David Shaw
0d8006450a * gpgkeys_hkp.c (get_key, parse_hkp_index): Bring over latest code from
g10/hkp.c.

* gpgkeys_ldap.c (get_key): Fix cosmetic URL display problem (extra ":" at
the end).
2002-08-19 21:14:57 +00:00
David Shaw
899343542d * NEWS: Document new ways to enable MDC, and change in automatic
compression disabling.

* configure.ac: No such thing as the "none" random gather any longer.
2002-08-19 19:38:18 +00:00
Werner Koch
aa7b6018f5 Short note about interactive and import. 2002-08-19 08:42:57 +00:00
Werner Koch
89f8e7ef36 * getkey.c (get_user_id_native): Renamed to ..
(get_user_id_printable): this.  Filter out all dangerous
characters.  Checked all usages.
(get_user_id_string_native): Renamed to..
(get_user_id_string_printable): this.  Filter out all dangerous
characters.  Checked all usages.
* keyedit.c (show_basic_key_info): New.
* keylist.c (print_fingerprint): New mode 3.
* import.c (import_one): Use new function to display the user ID.
2002-08-19 08:28:00 +00:00
Timo Schulz
5201d1ec9d 2002-08-16 Timo Schulz <ts@winpt.org>
* g10.c (main): enable opt.interactive.

        * import.c (import_one): Ask the user if the key shall be
        imported when the interactive mode is used. Useful to extract
        selected keys from a file.
2002-08-18 17:24:21 +00:00
Werner Koch
47fc9f88a2 Made it compile. 2002-08-16 14:31:49 +00:00
Werner Koch
ca7ed726a7 * call-scd.c (learn_status_cb): Handle CERTINFO status.
(agent_card_learn): Add args for certinfo cb.
* learncard.c (release_certinfo,certinfo_cb): New.
(send_cert_back): New. With factored out code from ..
(agent_handle_learn): here.  Return certinfo stuff.
2002-08-16 14:24:38 +00:00
Werner Koch
346b6a32e2 * assuan.h: Renamed Bad_Certificate_Path to Bad_Certificate_Chain. 2002-08-16 14:24:25 +00:00
Werner Koch
a55d4d129f Renamed an error code. 2002-08-16 14:24:12 +00:00
Werner Koch
8ed2348ae5 * scdaemon.c: Include i18n.h.
* card-common.h (struct p15_private_s): Forward declaration.  Add
it to card_ctx_s.
* card.c (card_close): Make sure private data is released.
(card_enum_certs): New.
* card-p15.c (p15_release_private_data): New.
(init_private_data): New to work around an OpenSC weirdness.
(p15_enum_keypairs): Do an OpenSC get_objects only once.
(p15_enum_certs): New.
(card_p15_bind): Bind new function.
* command.c (cmd_learn): Return information about the certificates.
2002-08-16 14:23:40 +00:00
Werner Koch
2f4b415fbc Renamed some configure flags. 2002-08-16 14:23:23 +00:00
Werner Koch
1299c134fa *** empty log message *** 2002-08-16 14:15:43 +00:00
Werner Koch
5776c03b4c * certpath.c: Renamed to ..
* certchain.c: this. Renamed all all other usages of "path" in the
context of certificates to "chain".
2002-08-16 14:09:23 +00:00
Werner Koch
a8e9b350c0 * call-agent.c (learn_cb): Special treatment when the issuer
certificate is missing.
2002-08-16 13:55:03 +00:00
Werner Koch
fd2f1c8aa3 * card-common.h (struct p15_private_s): Forward declaration. Add
it to card_ctx_s.
* card.c (card_close): Make sure private data is released.
* card-p15.c (p15_release_private_data): New.
(init_private_data): New to work around an OpenSC weirdness.
(p15_enum_keypairs): Do an OpenSC get_objects only once.
2002-08-16 10:33:31 +00:00
Werner Koch
e78e69f37a Removed a leftover conflict indicator. 2002-08-16 07:14:29 +00:00
Werner Koch
0996f7d4df * seckey-cert.c: Workaround to allow decryption of v3 keys created
with a bug in the mpi_get_secure_buffer.
2002-08-16 07:13:13 +00:00
David Shaw
9ad0a6550b * hkp.c (parse_hkp_index): Properly handle really large keys (5 digit key
length) in HKP searches.
2002-08-14 22:48:28 +00:00
David Shaw
1111da19a8 * encode.c (encode_simple): Fix problem with using compression algo 2 and
symmetric compressed files.

* encode.c (encode_simple, encode_crypt): If we are not using a MDC,
compress even if a file is already compressed.  This is to help against
the chosen ciphertext attack.

* pkclist.c (select_algo_from_prefs): Fix requested algorithm bug so the
request succeeds even if the requested algorithm is not the first found.

* cipher.c (write_header), encode.c (use_mdc, encode_simple, encode_crypt,
encrypt_filter), g10.c (main): Be more eager to use a MDC.  We use a MDC
if the keys directly support it, if the keys list AES (any) or TWOFISH
anywhere in the prefs, or if the cipher chosen does not have a 64 bit
blocksize.
2002-08-13 19:00:23 +00:00
David Shaw
d1f6ccd154 * cipher.h: Add AES aliases for RIJNDAEL algo numbers. 2002-08-13 18:44:25 +00:00
Werner Koch
a4750ea3de * mpicoder.c (do_get_buffer): Don't remove leading zeros if the
MPI is marked as protected.
2002-08-13 05:55:16 +00:00
Werner Koch
29e3108bb9 * cipher.c: Include the DUMMY cipher only when the new ALLOW_DUMMY
is defined. It should only be defined for hard core debugging.
2002-08-12 17:46:46 +00:00
Werner Koch
9c86904866 Minor changes for gettext NEWPG-0-3-10 2002-08-10 11:25:32 +00:00
Werner Koch
9382b621ad * keylist.c (list_cert_colon): Print the short fingerprint in the
key ID field.
* fingerprint.c (gpgsm_get_short_fingerprint): New.
* verify.c (gpgsm_verify): Print more verbose info for a good
signature.
2002-08-10 09:14:21 +00:00
Werner Koch
69f389096d * keybox-search.c (blob_cmp_fpr_part): New.
(has_short_kid, has_long_kid): Implemented.
2002-08-10 09:14:08 +00:00
Werner Koch
dc8f3ee42c * decrypt.c (prepare_decryption): Hack to detected already
unpkcsedone keys.
2002-08-09 21:01:03 +00:00
Werner Koch
beb0fef1ee Tweaked the build system so that make distcheck finanly said Well
Done.
2002-08-09 18:16:02 +00:00
Werner Koch
5b0ccaf949 * signal.c: New. Taken from GnuPG 1.1.91. 2002-08-09 18:13:41 +00:00
Werner Koch
ebaf7d6e45 Minor fixes 2002-08-09 18:13:24 +00:00
Werner Koch
850a4d5214 * gpgsm.c (emergency_cleanup): New.
(main): Initialize the signal handler.

* sign.c (gpgsm_sign): Reset the hash context for subsequent
signers and release it at the end.
2002-08-09 18:12:22 +00:00
Werner Koch
1d81b994b8 * card.c (card_get_serial_and_stamp): Use the tokeinfo serial
number as a fallback. Add a special prefix for serial numbers.
2002-08-09 18:12:01 +00:00
Werner Koch
0e43a57953 Added distfiles kludge to distribute the content of the samplekeys directory. 2002-08-09 14:44:59 +00:00
David Shaw
74a84ca93b * options.skel: Some language tweaks, and remove the load-extension
section for random gatherers.

* keyring.c (create_tmp_file, rename_tmp_file): Create tmp files with
user-only permissions, but restore the original permissions if the user
has something special set.

* openfile.c (copy_options_file): Create new options file (gpg.conf) with
user-only permissions.

* keydb.c (keydb_add_resource): Create new keyrings with user-only
permissions.
2002-08-09 02:23:42 +00:00
David Shaw
3d85ad800d * Makefile.am, md.c (load_digest_module): Allow switching TIGER on and off
via configure.
2002-08-08 19:41:30 +00:00
David Shaw
fcdd2ec92f * configure.ac: Add an --enable-tiger.
* NEWS: Clarify new permission checks.
2002-08-08 19:38:59 +00:00
David Shaw
c3f1100411 * tdbio.c (tdbio_set_dbname): Create new trustdbs with user-only
permissions.
2002-08-08 19:09:34 +00:00
Werner Koch
0b01b9cb62 * asschk.c: Added some new features.
* runtest, inittests: New.
* text-1.txt, text-2.txt, text-3.txt: New.
* text-1.osig.pem, text-1.dsig.pem, text-1.osig-bad.pem: New.
* text-2.osig.pem, text-2.osig-bad.pem: New.
* samplekeys : New directory
* sm-verify, sm-sign+verify: The first test scripts.
2002-08-08 16:32:01 +00:00
David Shaw
e703540328 * sig-check.c (signature_check2): Sanity check that the md has a context
for the hash that the sig is expecting.  This can happen if a onepass sig
header does not match the actual sig, and also if the clearsign "Hash:"
header is missing or does not match the actual sig.
2002-08-07 19:53:27 +00:00
David Shaw
bed4e0daa0 * cipher.h: Add md_algo_present(). 2002-08-07 19:48:45 +00:00
David Shaw
faed12a698 * md.c (md_algo_present): New function to check if a given algo is in use
for a given MD_HANDLE.
2002-08-07 19:47:57 +00:00
Werner Koch
c8b8326aae First test script. Still missing the environment setup. 2002-08-07 16:42:47 +00:00
David Shaw
fee7e35bae * keyedit.c (menu_revsig): Properly show a uid is revoked without
restarting gpg.  This is Debian bug 124219, though their supplied patch
will not do the right thing.

* main.h, tdbio.c (tdbio_set_dbname), misc.c (removed check_permissions),
keydb.c (keydb_add_resource), g10.c (main, check_permissions): Significant
reworking of the permission check mechanism.  The new behavior is to check
everything in the homedir by checking the homedir itself.  If the user
wants to put (possibly shared) keyrings outside the homedir, they are not
checked.  The options file and any extension files are checked wherever
they are, as well as their enclosing directories.  This is Debian bug
147760.
2002-08-07 15:53:15 +00:00
David Shaw
df50c106f8 * configure.ac: If the static IDEA cipher is present, disable dynamic
loading.  Also fix backwards grammar of keyserver exec-path CHECKING
message.
2002-08-07 14:32:07 +00:00