security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-06-30 02:32:46 +02:00
Code Activity
4,545 Commits 100 Branches 301 Tags 70 MiB
a94674c54e
Commit Graph

575 Commits

Author SHA1 Message Date
Werner Koch
d679b4d642 Require libgpg-error 1.10 
This allows to remove some error code substitutes.
Fixed a typo in gpg.text.
 2011-05-20 10:27:50 +02:00
Werner Koch
4caa768f1d Add OPTION:cache-ttl-opt-preset to gpg-agent. 
This option may be used to change the default ttl values use with the
--preset option of GENKEY and PASSWD.
 2011-04-21 15:40:48 +02:00
Werner Koch
b786f0e12b New agent option pinentry-mode. 
This provides the framework and implements the ask, cancel and error.
loopback will be implemented later.
 2011-03-03 18:35:08 +01:00
Werner Koch
2165925bae Fix doc/Makefile target online 2011-03-02 09:04:16 +01:00
Werner Koch
00f8b68505 Move parameter file description to the manual. 2011-03-01 17:08:49 +01:00
Werner Koch
28c157b55c Support X.509 certificate creation. 
Using "gpgsm --genkey" allows the creation of a self-signed
certificate via a new prompt.

Using "gpgsm --genkey --batch" should allow the creation of arbitrary
certificates controlled by a parameter file.  An example parameter file
is

    Key-Type: RSA
    Key-Length: 1024
    Key-Grip: 2C50DC6101C10C9C643E315FE3EADCCBC24F4BEA
    Key-Usage: sign, encrypt
    Serial: random
    Name-DN: CN=some test key
    Name-Email: foo@example.org
    Name-Email: bar@exmaple.org
    Hash-Algo: SHA384
    not-after: 2038-01-16 12:44

This creates a self-signed X.509 certificate using the key given by
the keygrip and using SHA-384 as hash algorithm.  The keyword
signing-key can be used to sign the certificate with a different key.
See sm/certreggen.c for details.
 2011-03-01 14:42:56 +01:00
Werner Koch
7c03c8cc65 Lock scdaemon to CCID if once found. 
This solves a problem where ccid was used, the card unplugged and then
scdaemon tries to find a new (plugged in) reader and thus will
eventually try PC/SC over and over again.

Also added an explicit --kill command to gpgconf.
 2011-02-23 10:15:34 +01:00
Werner Koch
cd9614b81b Removed deprecated SIGEXPIRED status line. 2011-02-04 10:28:28 +01:00
Werner Koch
5667e33290 Add a DECRYPTION_INFO status. 
DECRYPTION_INFO <mdc_method> <sym_algo>
        Print information about the symmetric encryption algorithm and
        the MDC method.  This will be emitted even if the decryption
        fails.
 2011-02-03 20:59:01 +01:00
Werner Koch
52b9761c88 ifset parts which are not in GnuPG 2.0 2011-01-13 15:32:11 +01:00
Werner Koch
5379d3527d Describe new log facilities. 2010-12-02 14:10:44 +00:00
Werner Koch
0103a53aa6 Smartcard related updates 2010-11-17 13:21:24 +00:00
Werner Koch
b97aeb03d5 Update FAQ 2010-11-16 10:38:13 +00:00
David Shaw
b0b46f46cf * gpg.texi (GPG Configuration Options): Clarify that show-photos 
doesn't work with --with-colons.  --personal-digest-preferences does
not have a default any longer.
 2010-10-29 19:41:28 +00:00
Werner Koch
0f721abddf Update scripts etc. 2010-10-26 12:25:47 +00:00
Werner Koch
e9996e855e doc fix 2010-10-18 13:40:06 +00:00
Werner Koch
764e88d4df All tests work are again working 2010-10-14 16:34:31 +00:00
Werner Koch
54591341a4 More agent support for gpg. 2010-10-13 15:57:08 +00:00
Werner Koch
5a679857ef Describe %v and %V. 2010-10-11 12:36:27 +00:00
Werner Koch
a78335c9ce Add new option --with-keygrip 2010-10-08 11:11:08 +00:00
Werner Koch
002b30e75c Import fixes. 
new otion for watchgnupg
 2010-10-06 11:29:10 +00:00
Werner Koch
cc71376bce Don't set SSH_AGENTPID_INFO. 
Doc fixes.
Allow TCP and local sockets in watchgnupg.
 2010-10-05 19:05:43 +00:00
Werner Koch
aac728f33e Add a static FAQ. 
Add rules to build and upload the faqs.
 2010-10-05 13:56:25 +00:00
Werner Koch
adfa280d6f [w32ce] Do not print the faulty timezone info 
Switch FAQ sources to org-mode
 2010-10-04 21:08:34 +00:00
Werner Koch
bfbd80feb9 Exporting secret keys via gpg-agent is now basically supported. 
A couple of forward ported changes.
Doc updates.
 2010-10-01 20:33:53 +00:00
David Shaw
b8f9f9b1f6 Clarify that --force-v3-sigs disables (not enables) v4 options 2010-09-28 16:04:47 +00:00
Werner Koch
77d2908ce4 Add component pinentry as an easy way to figure out the default 
pinentry.  Also allows to test whether pinentry is installed.
 2010-08-19 09:53:55 +00:00
Werner Koch
34dde96669 Fix regression in logging. 
Add a registry key to enable catch-all remote debugging for W32.
Replace more stdio stuff by estream.
 2010-08-18 19:25:15 +00:00
Werner Koch
7e752a4208 Auto-start dirmngr. 2010-08-16 11:03:43 +00:00
Werner Koch
a22c38baad Some work on the dirmngr 2010-07-23 16:16:14 +00:00
Werner Koch
b6490d3656 . 2010-07-23 12:31:25 +00:00
Werner Koch
8b8925a2bd Some work on porting dirmngr (unfinished) 
Ported gpgtar to W32.
 2010-07-16 13:19:45 +00:00
Werner Koch
006fd75aea Avoid using the protect-tool to import pkcs#12. 2010-06-17 15:44:44 +00:00
Werner Koch
63d18c2e53 Include dirmngr manual 2010-06-10 10:39:44 +00:00
Werner Koch
bbe388b5db Add unfinished gpgtar. 
Collected changes and ports of bug fixes from stable.
 2010-06-07 13:33:02 +00:00
Werner Koch
f5551672fb Update tests. 2010-05-11 18:00:31 +00:00
Werner Koch
8524ac000c auto start the agent if --use-standard-socket is in use. 2010-05-03 15:23:10 +00:00
Werner Koch
a1412b05de More changes on the way to remove secring.gpg. 2010-04-21 16:26:17 +00:00
Werner Koch
fb2ba98963 Finished the bulk of changes to use estream in most places instead of 
stdio.
 2010-03-15 11:15:45 +00:00
Werner Koch
299aeda4b0 Link to the bug tracker in the gpg man page. 2010-02-11 11:30:07 +00:00
Werner Koch
8459bcf95a Various changes to eventually support openpgp keys in pgp-agent. 
Comment fixes.
Minor chnages in preparation of a W32CE port.
 2010-02-02 14:06:19 +00:00
Werner Koch
be45bf3d54 Add dummu option --passwd for gpg. 
Collected changes.
 2010-01-08 19:18:49 +00:00
Werner Koch
af935bd410 Implement --faked-systrem-time for gpg. 
Typo and comment fixes.
 2009-12-17 17:25:26 +00:00
Werner Koch
a51675fabe Add option --cert-extension. 2009-12-10 13:00:30 +00:00
Werner Koch
85d778b9f6 Use ADNS for PKA and SRV records if no other resolver is available. 2009-12-07 15:52:27 +00:00
Werner Koch
49b00ffd67 allow for default algorithms in a gpg parameter file 2009-12-04 19:47:54 +00:00
Werner Koch
cb5491bfaf support numeric debug levels. 2009-12-03 18:04:40 +00:00
Werner Koch
cf2ec5673f Add gpgconf related dummy options default_pubkey_algo. 
Add option --skip-hidden-recipients
Comment updates.
 2009-11-23 19:18:04 +00:00
Werner Koch
a1b6142855 [scd] Memory leak fix. 
[g13] Send MOUNTPOINT status line
 2009-10-28 12:02:15 +00:00
David Shaw
61b351854b * gpg.texi (GPG Configuration Options): Clarify that ca-cert-file is a 
generic store, the details of which depend on the underlying
libraries.
 2009-10-20 05:03:16 +00:00
Werner Koch
97be197d31 [g13] Add RECIPEINT and CREATE command. 
[sm] Chnage --include-certs default
 2009-10-19 09:18:46 +00:00
Werner Koch
999a909708 Allow uid sand key election using a '*'. 2009-09-04 11:52:03 +00:00
Werner Koch
deba82bd76 Updated the german translation 2009-09-03 14:08:25 +00:00
David Shaw
fa4a237b6c * gpg.text: Suggested new ordering for --edit-key. 2009-08-24 22:21:39 +00:00
David Shaw
38a3e20952 * gpg.texi (OpenPGP Options): Clarify that personal-foo-preferences 
overrides recipient preferences (safely).
 2009-08-17 16:48:49 +00:00
David Shaw
1b61770848 * gpg.texi (GPG Configuration Options): Document keyserver options 
check-cert and ca-cert-file.
 2009-08-14 19:43:26 +00:00
Werner Koch
019601191a Improved detection of bad/invalid signer keys. 2009-08-06 20:12:00 +00:00
David Shaw
9df29b446d * gpg.texi (OpenPGP Options): Don't mention --no-sk-comment (doesn't 
exist any longer).
 2009-07-31 14:36:22 +00:00
David Shaw
ab9a918bc2 Try a DNS-SD lookup to find a domain-specific LDAP server before 
resorting to keys.{domain}.
 2009-07-23 18:28:54 +00:00
Werner Koch
830dae2873 Print status of CRL checks in the audit log. 2009-07-23 15:18:58 +00:00
Werner Koch
506aee32fd Typo fixes. Fixes bug#1093 2009-07-22 13:33:46 +00:00
Werner Koch
02e05e28e7 Give hints on files to backup. 2009-07-22 10:24:46 +00:00
Werner Koch
d56084296c Fix bug 1090. 2009-07-20 10:42:45 +00:00
Werner Koch
e535e3fccc [g10] 
* exec.c: Fix function name indentation.
(expand_args): Simplify by using membuf functions.
(exec_write): Fix memory leak on error.
(w32_system): Use DETACHED_PROCESS so
that a new console is not created.
 2009-07-13 17:36:02 +00:00
Werner Koch
31084d6dc9 Support writing of existing keys with non-matching key sizes. 2009-07-09 14:54:18 +00:00
Werner Koch
2193992559 Impleemned gpgsm's IMPORT --re-import feature. 
Typo fix.
 2009-07-07 16:52:12 +00:00
Werner Koch
f6f5430e50 Reworked passing of envars to Pinentry. 2009-07-07 10:02:41 +00:00
Werner Koch
58e6e28bb1 * debugging.texi (Common Problems): Add a note about corrupted 
keys in --search-keys.
 2009-07-06 21:33:34 +00:00
Werner Koch
1925cb37f9 Alow batch ode for gpgsm --gen-key. 
Allow CSR generation using an existing key with gpgsm.
 2009-07-01 18:30:33 +00:00
Werner Koch
9c47553308 Make soem omnikey readers work with extended length APDUs. 2009-06-29 20:54:00 +00:00
Werner Koch
c998dd12a2 Preparing for 2.0.12. 2009-06-17 11:18:26 +00:00
Werner Koch
323cca8041 Fix for bug#1066. 
A couple of minor changes.
 2009-06-02 15:46:59 +00:00
Werner Koch
556d4ed983 Allow generation of DSA2 keys without --enable-dsa2. 2009-05-20 09:57:10 +00:00
Werner Koch
c4e92c3344 Made card key generate with backup key work for 2048 bit. 
Improved card key generation prompts.
 2009-05-15 19:26:46 +00:00
Werner Koch
5e208460a1 Improved smartcard robustness. 2009-05-13 17:12:00 +00:00
Werner Koch
8e7e6f124b Doc fixes. 2009-05-08 15:08:37 +00:00
Werner Koch
6adb13b079 Fix example. 2009-05-06 10:57:10 +00:00
Werner Koch
990585ad7d Signing using Netkey 3 cards does now work. 2009-03-26 19:27:04 +00:00
Werner Koch
ceb42db4dd Print NO_SECKEY status line in gpgsm. 
This fixes bug#1020.
 2009-03-25 16:05:16 +00:00
Werner Koch
36d681d98e Fix keygrip computation for TCOS 3 cards. 
Emit PROGRESS status lines during --learn-card.
 2009-03-20 19:04:47 +00:00
Werner Koch
c2c3cf4be1 Changed order of the confirmation questions for root certificates 
and stores negative answers in trustlist.txt.
 2009-03-19 10:21:51 +00:00
David Shaw
a50a274d20 * gpg.texi (GPG Configuration Options): Document keyserver-options 
debug.
 2009-03-16 18:45:46 +00:00
Werner Koch
a9c317a95c New gpg-agent command to list key information. 
Gpgsm does now print the S/N of cards.
Consider ephemeral keys during listing an export.
 2009-03-06 17:31:27 +00:00
Werner Koch
59d7a54e72 New PIN Callback attributes in gpg-agent. 
Common prompts for keypad and simple card reader.
More support for Netkey cards;  PIN management works now.
 2009-03-05 19:19:37 +00:00
Werner Koch
b61b2f542a Add missing option strings. 2009-03-02 12:32:54 +00:00
Werner Koch
f548ca97ad Modernized gpg-agent startup instructions 2009-03-02 11:53:32 +00:00
Werner Koch
618afc4231 Fixed a nasty bug in scdaemon which led to a card reset if the card was 
inserted  during scdaemon startup and a connection was made before the
ticker had a chance to run.  Add some stuff for better debugging.
 2009-02-25 10:58:56 +00:00
Werner Koch
310f45b618 Fix bug 1001. 
Documentation updates.
 2009-02-19 16:19:16 +00:00
Werner Koch
b8ffa0d947 Make --allow-admin the default. 2009-01-28 14:18:40 +00:00
Werner Koch
7b33b9324a Print more directories with gpgconf --list-dirs. 2009-01-20 19:24:24 +00:00
Werner Koch
4adb5c03e7 preparing a release 2009-01-12 09:18:27 +00:00
Werner Koch
53f1c11adf Small doc fixes. 2008-12-12 14:04:22 +00:00
Werner Koch
c3752d1057 Add option --no-ask for GET_PASSPHRASE. 2008-12-10 12:41:15 +00:00
Werner Koch
382d2f8efb Minor fixes. 2008-12-09 08:58:02 +00:00
Werner Koch
78ff45c49e Align ticker to the full or half second. 2008-12-08 19:10:42 +00:00
Werner Koch
d0440bab64 Cleanups. Fixes bug 956. 2008-12-08 11:42:33 +00:00
Werner Koch
041c764672 Add option --card-timeout. 
Add a new attribyte to app-openpgp.c
Fix two portability bugs.
Have gpg-connect-agent autostart gpg-agent on W32.
 2008-12-05 12:01:01 +00:00
Werner Koch
329509c864 Made arg_parse more readable. 2008-11-12 17:41:49 +00:00
Werner Koch
df089498d8 use $() instead of backticks. 2008-11-12 11:28:42 +00:00
Werner Koch
d0ca953014 SCD changes for PC/SC under W32. 2008-10-14 18:18:21 +00:00
Werner Koch
969dfd9890 Explain how to delete a secret X.509 key. 2008-10-13 09:29:20 +00:00
Werner Koch
af7c1fa134 Add /daatfile command to gpg-connect-agent. 2008-10-01 16:17:39 +00:00
David Shaw
bb39c59728 * gpg.texi (OpenPGP Key Management): Clarify setpref a bit. 2008-09-23 19:18:52 +00:00
Werner Koch
f899b9683b Support the Certifciate DO of the v2 OpenPGP cards. 2008-09-23 09:57:45 +00:00
Werner Koch
d30fdae24b Workaround for a mingw runtime bug. 2008-09-04 10:35:41 +00:00
Werner Koch
5a8bf0bec6 Fix gpg-preset-passphrase bug. 
Cleanups
 2008-09-03 09:37:32 +00:00
Werner Koch
d92f06e882 Add a warning nite to --throw-keyds. 2008-08-28 14:57:25 +00:00
Werner Koch
7b81a6b074 Print a 'f' for validated non-root certificates in gpgsm colon style listing. 
Doc fixes.
 2008-08-13 15:41:48 +00:00
Werner Koch
ac5c3fab30 Cehck for expire date overflows. 2008-08-11 08:08:08 +00:00
Werner Koch
7d1b0d8626 Add a warning note to --allow-multiple-messages. 
s/Sylpeed-Claws/Claws-Mail/.
 2008-08-07 07:46:52 +00:00
Werner Koch
201a348565 Fix !EROFS bug. 
Doc updates
 2008-08-01 10:51:11 +00:00
Werner Koch
9d5a10a453 Do not run the setuid test if running under as root proper. 
Documentation fixes.
Some enhancements for the new OpenPGP Card.
 2008-07-17 19:40:53 +00:00
Werner Koch
4da2ce2d4d add new certifciates 2008-06-25 11:14:48 +00:00
Werner Koch
4817ff6528 Add support for the TCOS NullPIN feature. 2008-06-24 16:00:29 +00:00
Werner Koch
d68470d9b4 Add the group option to gpgconf and define the new type "alias list". 2008-06-19 13:09:40 +00:00
Werner Koch
aa68a60301 Add controlo statement %ask-passphrase 2008-06-16 15:48:33 +00:00
Werner Koch
e2ce70f939 Clarify descrition for field 10. 2008-06-13 16:50:59 +00:00
Werner Koch
035c838f71 Made --fixed-list-mode obsolete. 2008-06-11 08:07:54 +00:00
Werner Koch
49b2db7636 Changes the header presented before requesting the user ID. 2008-06-01 19:44:05 +00:00
Werner Koch
3d39dc13d0 Minor bug fixes and document new gpg-connect-feature. 2008-05-26 16:48:05 +00:00
Marcus Brinkmann
0950648f34 2008-05-26 Marcus Brinkmann <marcus@g10code.de> 
* gpgconf-comp.c: Replace pathname by filename everywhere.
 2008-05-26 15:05:31 +00:00
Marcus Brinkmann
9c10eb6625 doc/ 
2008-05-26  Marcus Brinkmann  <marcus@ulysses.g10code.com>

	* tools.texi (Invoking gpgconf): Document --list-dirs.

tools/
2008-05-26  Marcus Brinkmann  <marcus@ulysses.g10code.com>

	* gpgconf.c (enum cmd_and_opt_values): Add aListDirs.
	(opts): Add aListDirs option.
	(main): Handle aListDirs.
	* gpgconf.h (gc_percent_escape): New declaration.
	* gpgconf-comp.c (my_percent_escape): Make non-static and rename
	to ...
	(gc_percent_escape): ... this.  Change all callers.
 2008-05-26 13:43:20 +00:00
Marcus Brinkmann
7d714a3788 doc/ 
2008-05-20  Marcus Brinkmann  <marcus@g10code.de>

	* tools.texi (Invoking gpgconf): Add --dry-run and --check-options.
	(Checking programs): Document --check-options.

tools/
2008-05-20  Marcus Brinkmann  <marcus@g10code.de>

	* gpgconf.h (gc_component_check_programs): Rename to ...
	(gc_check_programs): ... this.
	(gc_component_change_options): Add argument OUT.
	(gc_component_check_options): New function.
	* gpgconf.c (enum cmd_and_opt_values): New option aCheckOptions.
	(opts): Add new option aCheckOptions (aka --check-options).
	(main): Handle new option aCheckOptions.
	* gpgconf-comp.c (gc_component_check_programs): Rename to ...
	(gc_check_programs): ... this.  Refactor core of it to ...
	(gc_component_check_options): ... this new function.
	(gc_component_change_options): Add new argument OUT.  Externally
	verify all changes.  Implement option --dry-run.
 2008-05-19 22:46:41 +00:00
Marcus Brinkmann
102b285a2d 2008-05-15 Marcus Brinkmann <marcus@g10code.de> 
* gpg.texi (Operational GPG Commands): Mention the way to change
	the default signing key.
 2008-05-15 10:59:35 +00:00
Werner Koch
d9405f0c49 Updated German translation. 
Fix in gpgconf for W32.
 2008-05-09 09:54:35 +00:00
Werner Koch
69ae16636c Add command --locate-key. 
Fix auto-key-locate processing of "nodefault".
 2008-05-07 15:40:36 +00:00
Werner Koch
67e0a7e732 add gpg-zip man page. 2008-05-06 11:05:52 +00:00
Werner Koch
97ec9aac2b Enhanced --auto-key-locate. 2008-04-08 11:04:16 +00:00
Werner Koch
ba63cfa79b Fixed last yat2m change. 
Add a similar change to @file and @env.
 2008-04-03 09:58:28 +00:00
Werner Koch
798ca1d148 Utilize new automake vars for proper installation into doc/. 2008-03-27 13:18:19 +00:00
Werner Koch
9a8ee6e6be Changed the way i18n files are located under Windows. The setting of the 
Registry key is not anymore required.  Helpfiles are not properly located.
 2008-03-25 19:41:11 +00:00
Werner Koch
e751bcdd04 Add IF command and new variable functions to gpg-connect-agent. 2008-03-05 10:08:10 +00:00
Marcus Brinkmann
66307b34bb 2008-02-27 Marcus Brinkmann <marcus@g10code.de> 
* tools.texi (Listing options): Document new types.
 2008-02-27 17:31:47 +00:00
Werner Koch
f13c5a48fc Improve certificate chain construction. 
Extend PKITS framework
 2008-02-19 10:33:35 +00:00
Werner Koch
57d9ea99d9 Preparing a test release 2008-02-15 09:58:01 +00:00
Werner Koch
0819c1e8ca Always search missing certifcates using a running Dirmngr's cache. 2008-02-13 16:47:14 +00:00
David Shaw
9c42222a7a * gpg.texi (GPG Esoteric Options): Tweak mention of Tempest font to 
add a "claimed" in there.
 2008-02-05 19:42:12 +00:00
Werner Koch
b680d034fa W32 fix for trustdb creation. 2008-01-30 13:26:32 +00:00
Werner Koch
3d39e45a01 Typo and grammer fixes by Justin Pryzby. 2008-01-28 08:03:08 +00:00
Werner Koch
1e46b20f48 Add missing country tag to qualified.txt. 
Typo fixes.
 2008-01-10 08:13:14 +00:00
Marcus Brinkmann
b618d1c011 2008-01-10 Marcus Brinkmann <marcus@g10code.de> 
* tools.texi (gpgconf): Some clarifications.
 2008-01-10 03:03:15 +00:00
Werner Koch
157d4479aa Preparing a release. 2007-12-20 08:52:40 +00:00
Werner Koch
78c2a34afe Also add the S-TTRUST certs here. 2007-12-13 16:02:51 +00:00
Werner Koch
9d66580cff Allow verification of some broken S-TRUST generated signatures. 2007-12-13 15:45:40 +00:00
Werner Koch
bae4b256c7 Support DSA2. 
Support Camellia for testing.
More audit stuff.
 2007-12-12 10:28:30 +00:00
Werner Koch
e2aefc427e Add support for help stuff to audit.c 2007-12-06 19:02:42 +00:00
Werner Koch
63ec0b271c Created help files form the current po entries. 2007-12-04 15:00:14 +00:00
Werner Koch
8c20500a5d Allow configuraton of pinentry tooltip. 
Other minor buf fixes.
 2007-12-04 11:23:31 +00:00
Werner Koch
598a3d0ab4 [W32] Changed default socket for dirmngr. 
[W32] Add some code for event notifications 
      between scdaemon and gpg-agent.
 2007-11-27 08:01:19 +00:00
Werner Koch
c1270f06fe Document --auto-issuer-key-retrieve. 2007-11-19 16:32:05 +00:00