security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-06-06 23:17:47 +02:00
Code Activity
4,205 Commits 100 Branches 301 Tags 70 MiB
96fc29950a
Commit Graph

528 Commits

Author SHA1 Message Date
Werner Koch
c9e473618f Fixed an URL typo in the FAQ. 2011-06-28 10:32:46 +02:00
Bernhard Reiter
f194773540 doc/gpgsm.texi com-certs.pem mini-fix 
[[PGP Signed Part:Undecided]]
[1. text/plain]

Example path for com-certs.pem corrected.
[2. text/x-diff; doc.diff]
 2011-06-27 16:12:35 +02:00
Werner Koch
7d68c6b0ec Add question "What are DH/DSS keys?" 
... and the answer of course.
 2011-06-27 15:56:47 +02:00
Werner Koch
d679b4d642 Require libgpg-error 1.10 
This allows to remove some error code substitutes.
Fixed a typo in gpg.text.
 2011-05-20 10:27:50 +02:00
Werner Koch
4caa768f1d Add OPTION:cache-ttl-opt-preset to gpg-agent. 
This option may be used to change the default ttl values use with the
--preset option of GENKEY and PASSWD.
 2011-04-21 15:40:48 +02:00
Werner Koch
b786f0e12b New agent option pinentry-mode. 
This provides the framework and implements the ask, cancel and error.
loopback will be implemented later.
 2011-03-03 18:35:08 +01:00
Werner Koch
2165925bae Fix doc/Makefile target online 2011-03-02 09:04:16 +01:00
Werner Koch
00f8b68505 Move parameter file description to the manual. 2011-03-01 17:08:49 +01:00
Werner Koch
28c157b55c Support X.509 certificate creation. 
Using "gpgsm --genkey" allows the creation of a self-signed
certificate via a new prompt.

Using "gpgsm --genkey --batch" should allow the creation of arbitrary
certificates controlled by a parameter file.  An example parameter file
is

    Key-Type: RSA
    Key-Length: 1024
    Key-Grip: 2C50DC6101C10C9C643E315FE3EADCCBC24F4BEA
    Key-Usage: sign, encrypt
    Serial: random
    Name-DN: CN=some test key
    Name-Email: foo@example.org
    Name-Email: bar@exmaple.org
    Hash-Algo: SHA384
    not-after: 2038-01-16 12:44

This creates a self-signed X.509 certificate using the key given by
the keygrip and using SHA-384 as hash algorithm.  The keyword
signing-key can be used to sign the certificate with a different key.
See sm/certreggen.c for details.
 2011-03-01 14:42:56 +01:00
Werner Koch
7c03c8cc65 Lock scdaemon to CCID if once found. 
This solves a problem where ccid was used, the card unplugged and then
scdaemon tries to find a new (plugged in) reader and thus will
eventually try PC/SC over and over again.

Also added an explicit --kill command to gpgconf.
 2011-02-23 10:15:34 +01:00
Werner Koch
cd9614b81b Removed deprecated SIGEXPIRED status line. 2011-02-04 10:28:28 +01:00
Werner Koch
5667e33290 Add a DECRYPTION_INFO status. 
DECRYPTION_INFO <mdc_method> <sym_algo>
        Print information about the symmetric encryption algorithm and
        the MDC method.  This will be emitted even if the decryption
        fails.
 2011-02-03 20:59:01 +01:00
Werner Koch
52b9761c88 ifset parts which are not in GnuPG 2.0 2011-01-13 15:32:11 +01:00
Werner Koch
5379d3527d Describe new log facilities. 2010-12-02 14:10:44 +00:00
Werner Koch
0103a53aa6 Smartcard related updates 2010-11-17 13:21:24 +00:00
Werner Koch
b97aeb03d5 Update FAQ 2010-11-16 10:38:13 +00:00
David Shaw
b0b46f46cf * gpg.texi (GPG Configuration Options): Clarify that show-photos 
doesn't work with --with-colons.  --personal-digest-preferences does
not have a default any longer.
 2010-10-29 19:41:28 +00:00
Werner Koch
0f721abddf Update scripts etc. 2010-10-26 12:25:47 +00:00
Werner Koch
e9996e855e doc fix 2010-10-18 13:40:06 +00:00
Werner Koch
764e88d4df All tests work are again working 2010-10-14 16:34:31 +00:00
Werner Koch
54591341a4 More agent support for gpg. 2010-10-13 15:57:08 +00:00
Werner Koch
5a679857ef Describe %v and %V. 2010-10-11 12:36:27 +00:00
Werner Koch
a78335c9ce Add new option --with-keygrip 2010-10-08 11:11:08 +00:00
Werner Koch
002b30e75c Import fixes. 
new otion for watchgnupg
 2010-10-06 11:29:10 +00:00
Werner Koch
cc71376bce Don't set SSH_AGENTPID_INFO. 
Doc fixes.
Allow TCP and local sockets in watchgnupg.
 2010-10-05 19:05:43 +00:00
Werner Koch
aac728f33e Add a static FAQ. 
Add rules to build and upload the faqs.
 2010-10-05 13:56:25 +00:00
Werner Koch
adfa280d6f [w32ce] Do not print the faulty timezone info 
Switch FAQ sources to org-mode
 2010-10-04 21:08:34 +00:00
Werner Koch
bfbd80feb9 Exporting secret keys via gpg-agent is now basically supported. 
A couple of forward ported changes.
Doc updates.
 2010-10-01 20:33:53 +00:00
David Shaw
b8f9f9b1f6 Clarify that --force-v3-sigs disables (not enables) v4 options 2010-09-28 16:04:47 +00:00
Werner Koch
77d2908ce4 Add component pinentry as an easy way to figure out the default 
pinentry.  Also allows to test whether pinentry is installed.
 2010-08-19 09:53:55 +00:00
Werner Koch
34dde96669 Fix regression in logging. 
Add a registry key to enable catch-all remote debugging for W32.
Replace more stdio stuff by estream.
 2010-08-18 19:25:15 +00:00
Werner Koch
7e752a4208 Auto-start dirmngr. 2010-08-16 11:03:43 +00:00
Werner Koch
a22c38baad Some work on the dirmngr 2010-07-23 16:16:14 +00:00
Werner Koch
b6490d3656 . 2010-07-23 12:31:25 +00:00
Werner Koch
8b8925a2bd Some work on porting dirmngr (unfinished) 
Ported gpgtar to W32.
 2010-07-16 13:19:45 +00:00
Werner Koch
006fd75aea Avoid using the protect-tool to import pkcs#12. 2010-06-17 15:44:44 +00:00
Werner Koch
63d18c2e53 Include dirmngr manual 2010-06-10 10:39:44 +00:00
Werner Koch
bbe388b5db Add unfinished gpgtar. 
Collected changes and ports of bug fixes from stable.
 2010-06-07 13:33:02 +00:00
Werner Koch
f5551672fb Update tests. 2010-05-11 18:00:31 +00:00
Werner Koch
8524ac000c auto start the agent if --use-standard-socket is in use. 2010-05-03 15:23:10 +00:00
Werner Koch
a1412b05de More changes on the way to remove secring.gpg. 2010-04-21 16:26:17 +00:00
Werner Koch
fb2ba98963 Finished the bulk of changes to use estream in most places instead of 
stdio.
 2010-03-15 11:15:45 +00:00
Werner Koch
299aeda4b0 Link to the bug tracker in the gpg man page. 2010-02-11 11:30:07 +00:00
Werner Koch
8459bcf95a Various changes to eventually support openpgp keys in pgp-agent. 
Comment fixes.
Minor chnages in preparation of a W32CE port.
 2010-02-02 14:06:19 +00:00
Werner Koch
be45bf3d54 Add dummu option --passwd for gpg. 
Collected changes.
 2010-01-08 19:18:49 +00:00
Werner Koch
af935bd410 Implement --faked-systrem-time for gpg. 
Typo and comment fixes.
 2009-12-17 17:25:26 +00:00
Werner Koch
a51675fabe Add option --cert-extension. 2009-12-10 13:00:30 +00:00
Werner Koch
85d778b9f6 Use ADNS for PKA and SRV records if no other resolver is available. 2009-12-07 15:52:27 +00:00
Werner Koch
49b00ffd67 allow for default algorithms in a gpg parameter file 2009-12-04 19:47:54 +00:00
Werner Koch
cb5491bfaf support numeric debug levels. 2009-12-03 18:04:40 +00:00
Werner Koch
cf2ec5673f Add gpgconf related dummy options default_pubkey_algo. 
Add option --skip-hidden-recipients
Comment updates.
 2009-11-23 19:18:04 +00:00
Werner Koch
a1b6142855 [scd] Memory leak fix. 
[g13] Send MOUNTPOINT status line
 2009-10-28 12:02:15 +00:00
David Shaw
61b351854b * gpg.texi (GPG Configuration Options): Clarify that ca-cert-file is a 
generic store, the details of which depend on the underlying
libraries.
 2009-10-20 05:03:16 +00:00
Werner Koch
97be197d31 [g13] Add RECIPEINT and CREATE command. 
[sm] Chnage --include-certs default
 2009-10-19 09:18:46 +00:00
Werner Koch
999a909708 Allow uid sand key election using a '*'. 2009-09-04 11:52:03 +00:00
Werner Koch
deba82bd76 Updated the german translation 2009-09-03 14:08:25 +00:00
David Shaw
fa4a237b6c * gpg.text: Suggested new ordering for --edit-key. 2009-08-24 22:21:39 +00:00
David Shaw
38a3e20952 * gpg.texi (OpenPGP Options): Clarify that personal-foo-preferences 
overrides recipient preferences (safely).
 2009-08-17 16:48:49 +00:00
David Shaw
1b61770848 * gpg.texi (GPG Configuration Options): Document keyserver options 
check-cert and ca-cert-file.
 2009-08-14 19:43:26 +00:00
Werner Koch
019601191a Improved detection of bad/invalid signer keys. 2009-08-06 20:12:00 +00:00
David Shaw
9df29b446d * gpg.texi (OpenPGP Options): Don't mention --no-sk-comment (doesn't 
exist any longer).
 2009-07-31 14:36:22 +00:00
David Shaw
ab9a918bc2 Try a DNS-SD lookup to find a domain-specific LDAP server before 
resorting to keys.{domain}.
 2009-07-23 18:28:54 +00:00
Werner Koch
830dae2873 Print status of CRL checks in the audit log. 2009-07-23 15:18:58 +00:00
Werner Koch
506aee32fd Typo fixes. Fixes bug#1093 2009-07-22 13:33:46 +00:00
Werner Koch
02e05e28e7 Give hints on files to backup. 2009-07-22 10:24:46 +00:00
Werner Koch
d56084296c Fix bug 1090. 2009-07-20 10:42:45 +00:00
Werner Koch
e535e3fccc [g10] 
* exec.c: Fix function name indentation.
(expand_args): Simplify by using membuf functions.
(exec_write): Fix memory leak on error.
(w32_system): Use DETACHED_PROCESS so
that a new console is not created.
 2009-07-13 17:36:02 +00:00
Werner Koch
31084d6dc9 Support writing of existing keys with non-matching key sizes. 2009-07-09 14:54:18 +00:00
Werner Koch
2193992559 Impleemned gpgsm's IMPORT --re-import feature. 
Typo fix.
 2009-07-07 16:52:12 +00:00
Werner Koch
f6f5430e50 Reworked passing of envars to Pinentry. 2009-07-07 10:02:41 +00:00
Werner Koch
58e6e28bb1 * debugging.texi (Common Problems): Add a note about corrupted 
keys in --search-keys.
 2009-07-06 21:33:34 +00:00
Werner Koch
1925cb37f9 Alow batch ode for gpgsm --gen-key. 
Allow CSR generation using an existing key with gpgsm.
 2009-07-01 18:30:33 +00:00
Werner Koch
9c47553308 Make soem omnikey readers work with extended length APDUs. 2009-06-29 20:54:00 +00:00
Werner Koch
c998dd12a2 Preparing for 2.0.12. 2009-06-17 11:18:26 +00:00
Werner Koch
323cca8041 Fix for bug#1066. 
A couple of minor changes.
 2009-06-02 15:46:59 +00:00
Werner Koch
556d4ed983 Allow generation of DSA2 keys without --enable-dsa2. 2009-05-20 09:57:10 +00:00
Werner Koch
c4e92c3344 Made card key generate with backup key work for 2048 bit. 
Improved card key generation prompts.
 2009-05-15 19:26:46 +00:00
Werner Koch
5e208460a1 Improved smartcard robustness. 2009-05-13 17:12:00 +00:00
Werner Koch
8e7e6f124b Doc fixes. 2009-05-08 15:08:37 +00:00
Werner Koch
6adb13b079 Fix example. 2009-05-06 10:57:10 +00:00
Werner Koch
990585ad7d Signing using Netkey 3 cards does now work. 2009-03-26 19:27:04 +00:00
Werner Koch
ceb42db4dd Print NO_SECKEY status line in gpgsm. 
This fixes bug#1020.
 2009-03-25 16:05:16 +00:00
Werner Koch
36d681d98e Fix keygrip computation for TCOS 3 cards. 
Emit PROGRESS status lines during --learn-card.
 2009-03-20 19:04:47 +00:00
Werner Koch
c2c3cf4be1 Changed order of the confirmation questions for root certificates 
and stores negative answers in trustlist.txt.
 2009-03-19 10:21:51 +00:00
David Shaw
a50a274d20 * gpg.texi (GPG Configuration Options): Document keyserver-options 
debug.
 2009-03-16 18:45:46 +00:00
Werner Koch
a9c317a95c New gpg-agent command to list key information. 
Gpgsm does now print the S/N of cards.
Consider ephemeral keys during listing an export.
 2009-03-06 17:31:27 +00:00
Werner Koch
59d7a54e72 New PIN Callback attributes in gpg-agent. 
Common prompts for keypad and simple card reader.
More support for Netkey cards;  PIN management works now.
 2009-03-05 19:19:37 +00:00
Werner Koch
b61b2f542a Add missing option strings. 2009-03-02 12:32:54 +00:00
Werner Koch
f548ca97ad Modernized gpg-agent startup instructions 2009-03-02 11:53:32 +00:00
Werner Koch
618afc4231 Fixed a nasty bug in scdaemon which led to a card reset if the card was 
inserted  during scdaemon startup and a connection was made before the
ticker had a chance to run.  Add some stuff for better debugging.
 2009-02-25 10:58:56 +00:00
Werner Koch
310f45b618 Fix bug 1001. 
Documentation updates.
 2009-02-19 16:19:16 +00:00
Werner Koch
b8ffa0d947 Make --allow-admin the default. 2009-01-28 14:18:40 +00:00
Werner Koch
7b33b9324a Print more directories with gpgconf --list-dirs. 2009-01-20 19:24:24 +00:00
Werner Koch
4adb5c03e7 preparing a release 2009-01-12 09:18:27 +00:00
Werner Koch
53f1c11adf Small doc fixes. 2008-12-12 14:04:22 +00:00
Werner Koch
c3752d1057 Add option --no-ask for GET_PASSPHRASE. 2008-12-10 12:41:15 +00:00
Werner Koch
382d2f8efb Minor fixes. 2008-12-09 08:58:02 +00:00
Werner Koch
78ff45c49e Align ticker to the full or half second. 2008-12-08 19:10:42 +00:00
Werner Koch
d0440bab64 Cleanups. Fixes bug 956. 2008-12-08 11:42:33 +00:00
Werner Koch
041c764672 Add option --card-timeout. 
Add a new attribyte to app-openpgp.c
Fix two portability bugs.
Have gpg-connect-agent autostart gpg-agent on W32.
 2008-12-05 12:01:01 +00:00