* status.h (STATUS_NEED_PASSPHRASE_PIN): New.
* status.c (get_status_string): Added.
* passphrase.c (ask_passphrase): Moved status printing to ..
* cardglue.c (pin_cb): .. here and issue new status message.
* keyedit.c (sign_uids): Don't include the leading LF in the
translatable string but print them separately.
* apdu.c (apdu_open_remote_reader) [_WIN32]: We don't have ENOSYS.
* g10.c: Make -K an alias for --list-secret-keys.
* keylist.c (print_card_serialno): New. Taken from gnupg 1.9.11.
(list_keyblock_print): Make use of it.
* keyedit.c (show_key_with_all_names): Print the card S/N.
* keyedit.c (keyedit_menu): New command ADDCARDKEY.
* card-util.c (card_generate_subkey): New.
* keygen.c (generate_card_subkeypair): New.
(gen_card_key): New arg IS_PRIMARY; changed all callers.
* cardglue.c (open_card): Use shutdown code if possible.
(check_card_serialno): Ditto.
on "tru" records.
* gpg.sgml: Note that PGP scales photo IDs to fit in the dialog box.
Document show-sig-subpackets. Document the '%c' signature counter
expando.
* gpg.sgml: Clarify that --min-cert-level disregards level 1 certs by
default. Clarify include-revoked a bit to note that keyservers might not
be accurate. Note that --charset is --display-charset. Some language
tweaks for --simple-sk-checksum (Debian 251795). Note the PGP silliness
with preferred keyserver subpackets causing PGP/MIME.
* samplekeys.asc: Update 99242560.
* gpg.sgml: Clarify -u/--local-user and --default-key. Note what happens
if you run 'gpg' without any commands. Document --multifile. Document
list-option show-unusable-subkeys.
* gpg.sgml: List proper documentation URL. Note that addrevoker takes an
optional "sensitive" argument. Remind that $GNUPGHOME can be used instead
of --homedir. Clarify --no-default-keyring, and note why it may not take
effect if there are no other keyrings present. Remove --pgp2 from the
list of --pgpXes that are just for bad preference lists. Explain more why
locking memory pages is good.
* gpg.sgml: Add an example of what an exclamation mark is, as people seem
to miss it often.
Christian Biere. Some minor grammar fixes. Remove the "host -l pgp.net |
grep wwwkeys" advice since the nameserver no longer all allow zone
transfers. Replace it with a mention of hkp://subkeys.pgp.net. Note that
BZIP2 defaults to compression level 6.
Document --bzip2-compress-level, and --bzip2-compress-lowmem. Clarify the
plurarility (or not) of various list and verify options. Document BZIP2
in the --compress-algo section. Warn about compatibility issues with ZLIB
and BZIP2.
* keylist.c (list_keyblock_print): Denote secrets keys stored on a
card with an '>'. Print the '#' also for subkeys.
(list_keyblock_colon): Introduce new field 15 for sec/ssb to print
the serial number.
* gpg.sgml: Document --set-notation. Explain why it is not possible to
disable permission warnings in the gpg.conf file about the homedir. Add
pointer in --ignore-time-conflict to see --ignore-valid from, and vice
versa. Warning not to try and parse --list-keys in scripts. Document the
signature flags (1-3/L/R/P/N/X), Document expandos %g and %p. Note the
default --personal-digest-preferences are "H2".
* gnupg-w32.reg: Use HLM for the program and make sure the entries are
created. Suggested by danielc@analysisandsolutions.com. (From wk on
stable branch)CVS: ----------------------------------------------------------------------
--symmetric. --export-ownertrust takes no args. Document
--no-escape-from-lines. Fix escaped "<From" to be ">From". Make
"openpgp" trust model into "pgp".
reserved field for flags in a future version.
* gpg.sgml: Document --no-textmode and --no-use-agent. Clarify the
interoperability section. Clarify that "hkp corruption"
(repair-hkp-subkey-bug) is really "pks corruption"
(repair-pks-subkey-bug).
it may change in the future.
* samplekeys.asc: Updated.
* gpg.sgml: Document "revuid". Clarify that --openpgp resets --pgpX.
Some cleanup of --no-xxx options, make sure that all SGML tags are closed,
clarify --pgp8 allows SHA-256, and document --no-emit-version.
* Makefile.am: Allow CVS version to build without faqprog.pl.
warnings are not intended to be the be-all and end-all in security checks.
Add note to --group that when used on the command line, it may be
necessary to quote the argument so it is not treated as multiple
arguments. Noted by Stefan Bellon.
what the program actually does. Noted by Dick Gevers.
* gpg.sgml: Document %-expandos for policy URLs and notations.
* gpg.sgml: Document --pgp8. Clarify that --pgp6 and --pgp7 disable
--throw-keyid.
--pgpX than forcing an algorithm manually. Better still not to use
anything, of course. CVS:
----------------------------------------------------------------------
gpg.sgml CVS:
----------------------------------------------------------------------
--cert-notation. Clarify --show-notation and --show-policy-url that
policy URLs and notations can be used in data signatures as well. Add
note about '@' being a required character in notation names.
(--import/export-options may be used as well). Document --import-options
and --export-options with their various options. --show-photos now works
during signature verification as well. Document --exec-path. Note in
--simple-sk-checksum that the passphrase must be changed for this to take
effect. Note that --pgp7 does not disable MDC. Document
--no-mdc-warning.
"setpref" that a list of available algorithms can be printed with "gpg -v
--version". Note in "updpref" that we don't select keys via attribute
uids, so preferences there will be ignored.