security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-11-04 20:38:50 +01:00
Code Activity
2,338 Commits 101 Branches 306 Tags 72 MiB
ab20b58ecd
Commit Graph

2338 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
David Shaw
ab20b58ecd * defs.inc (all_hash_algos): See "all_cipher_algos", below. 
* sigs.test: Use it here, and also test with >=160 bit hashes for
DSA2.
 2007-07-18 17:43:14 +00:00
David Shaw
d26739aa5a * armor.c (is_armor_tag): New. Detect if an armor header matches 
2440bis-21.  (parse_header_line): Call it here, as bis-21 requires
warning the user (but continuing to process the message) when seeing
an unknown header.
 2007-07-18 17:08:47 +00:00
Werner Koch
66c5c46b95 Add an extra warning for Camellia. 
Minor W32 fix
Address change.
 2007-07-09 17:26:51 +00:00
David Shaw
3be2eb4b35 * configure.ac: AM_PROG_CC_C_O is desired by automake 1.10 to do 
per-target builds (like we do in the keyserver dir), but exists in the
currently-used 1.9.3 as well.
 2007-07-08 21:48:11 +00:00
David Shaw
de50a5a1e7 * encode.c (encode_crypt): Missed one call to setup_plaintext_name(). 
This is bug#809.
 2007-07-06 23:36:33 +00:00
Werner Koch
0a42be5773 * mk-w32-dist: Remove underline markup from man pages. Reported 
by Dirk Traulsen.
 2007-06-22 11:52:12 +00:00
David Shaw
7cf79c128a Add Camellia. Do not enable this if you are not doing interop 
testing.  It is not (yet) legal OpenPGP, is not interop tested yet
(obviously), and it's a great way to lose your data.  Just don't do
it.
 2007-06-13 15:28:11 +00:00
David Shaw
15e9a73988 * sign.c (mk_notation_policy_etc): expect all sigs that this is called 
for are >=v4.  (write_signature_packets, make_keysig_packet): Only
call it for >=v4 sigs.  This allows --force-v3-sigs and
--force-v4-certs to enable or disable notations, policies, and
keyserver URLs.  This is bug#800.
 2007-06-12 20:19:31 +00:00
David Shaw
1b488760bb * defs.inc (all_cipher_algos): New function to return all ciphers we 
support.  This is safer than the previous setup which could hide that
some ciphers weren't being tested.  Plus, this automatically tests any
new ciphers we may add.

* conventional.test, encrypt-test, encrypt-dsa.test,
conventional-mdc.test: Use it here.
 2007-05-14 23:16:05 +00:00
David Shaw
ddfaad29fd * conventional.test, encrypt.test, encrypt-dsa.test, 
conventional-mdc.test: Fix some broken tests that were only testing
3DES instead of all available ciphers.
 2007-05-02 17:20:45 +00:00
David Shaw
2e81dd1b98 * packet.h, mainproc.c (reset_literals_seen): New function to reset 
the literals count.

* verify.c (verify_one_file), decrypt.c (decrypt_messages): Call it
here so we allow multiple literals in --multifile mode (in different
files - not concatenated together).
 2007-04-17 04:00:38 +00:00
David Shaw
1fc3e4a299 * gpgkeys_hkp.c (main): Show curl or fake-curl version string. 
* Makefile.am: Link with libcompat.a for ascii_str(n)casecmp.
 2007-04-16 22:47:20 +00:00
David Shaw
e7c72ccc2f * gpgkeys_curl.c, gpgkeys_ldap.c, gpgkeys_hkp.c, ksutil.c: Rename all 
str(n)casecmp to ascii_str(n)casecmp.  We want the locale-independent
ones here.
 2007-04-16 22:43:29 +00:00
David Shaw
20af3fea15 Move some ascii_foo functions to libcompat 2007-04-16 22:32:28 +00:00
David Shaw
ebdcac8089 * gpg.c, pkclist.c: #include <strings.h> for strcasecmp if it is 
present.  Note that autoconf protects us against a strings.h that
cannot be used together with string.h.
 2007-04-16 21:55:53 +00:00
Werner Koch
d54ee32837 util/ 
* secmem.c (init_pool): Avoid assigning a negative value to a
	size_t.
./
	* acinclude.m4: Fix last change.  Make test self-conatined by
	checking for sysconf and getpagesize.  Remove indentation for the
	sake of broken C-89 cpps.
 2007-04-16 15:37:45 +00:00
David Shaw
eec94ac312 Don't build shmtest unless we have shm. 2007-04-16 15:32:49 +00:00
David Shaw
3a2e31ff19 Use sysconf() when possible as not all platforms have getpagesize(). 2007-04-16 13:37:09 +00:00
David Shaw
0b677ba499 * argparse.c (default_strusage): Copyright 2007. 
* cert.c, srv.c, pka.c: Need arpa/inet.h for ntohs().
 2007-04-15 16:37:01 +00:00
David Shaw
c472952fe5 * configure.ac: QNX puts resolver functions in libsocket. From Sean 
Boudreau.
 2007-04-15 14:30:11 +00:00
David Shaw
28c7223d13 * parse-packet.c (parse_marker): New. Enforce that the marker 
contains 'P', 'G', 'P', and nothing but.  (parse): Call it here.
(skip_packet): No longer need to handle marker packets here.
 2007-04-04 04:00:20 +00:00
David Shaw
994ab24b4b * keyserver.c: Windows Vista doesn't grok X_OK and so fails access() 
tests.  Previous versions interpreted X_OK as F_OK anyway, so we'll
just use F_OK directly.
 2007-03-14 13:15:50 +00:00
David Shaw
7a81947753 * gpgkeys_curl.c (main): Use curl_version_info to verify that the 
protocol we're about to use is actually available.

* curl-shim.h, curl-shim.c (curl_free): Make into a macro.
(curl_version_info): New.  Only advertises "http" for our shim, of
course.
 2007-03-13 17:53:57 +00:00
Werner Koch
7b3e35a24c Add extra fflush (stdout) 2007-03-08 12:13:15 +00:00
David Shaw
57591eb76f * keyedit.c (keyedit_menu): If we modify the keyblock (via 
fix_keyblock() or collapse_uids()) make sure we reprocess the keyblock
so the flags are correct.  Noted by Robin H. Johnson.

* getkey.c (fixup_uidnode): Properly clear flags that don't apply to
us (revoked, expired) so that we can reprocess a uid.
 2007-03-06 06:39:38 +00:00
Werner Koch
2a3946e0d1 Post release update 2007-03-05 10:46:33 +00:00
Werner Koch
7cb81bb3ef Preparing 1.4.7 2007-03-05 10:22:56 +00:00
Werner Koch
b87b1c9a93 Updated 2007-02-26 15:45:29 +00:00
Werner Koch
958c2a6f69 [W32] Make use of the LANGUAGE envvar. 2007-02-26 14:26:32 +00:00
David Shaw
6b086c1fe3 * parse-packet.c (parse_signature): It's hex. 
* getkey.c (merge_selfsigs_subkey): Avoid listing the contents of a
backsig when list mode is on.  Noted by Timo Schulz.
 2007-02-14 03:41:24 +00:00
Werner Koch
22be39dfac * secmem.c (ptr_into_pool_p): New. 
(m_is_secure): Implement in terms of above.  Also check that the
        pool has been initialized.
 2007-02-12 14:13:37 +00:00
David Shaw
1475939994 * gpgkeys_ldap.c (send_key): Missing a free(). 
* curl-shim.c (curl_easy_perform): Some debugging items that may be
handy.
 2007-02-11 03:56:59 +00:00
David Shaw
f6e12f4b46 * http.c (do_parse_uri): Remove the hkp port 11371 detection. We 
implement hkp in the keyserver handler, and the support here makes it
appear like a bad hkp request actually succeeded.
 2007-02-11 03:10:12 +00:00
Werner Koch
b4f553c1ca Fix for Debian bug 402592 2007-02-04 17:20:24 +00:00
David Shaw
e0dbc52cfc Missed one caller. 2007-02-01 20:51:15 +00:00
David Shaw
ef8f2e2f6f * main.h, keygen.c (ask_expire_interval, parse_expire_string): Pass in 
the time to use to calculate the expiration offset, rather than
querying it internally.  Change all callers.
 2007-02-01 19:32:16 +00:00
David Shaw
67c18b8c3c * ttyio.c (do_get): Assume that anything read from the user without 
echoing to the screen is sensitive and put it in secure memory.
Suggested by Benjamin Bennett.
 2007-02-01 04:21:07 +00:00
David Shaw
ef9e1b5fbc * keygen.c (do_generate_keypair, proc_parameter_file, 
generate_keypair, generate_subkeypair): Pass a timestamp through to
all the gen_xxx functions.
 2007-01-31 21:39:26 +00:00
David Shaw
9f3af9e24d * keyedit.c (sign_uids): Another multiple to single timestamp 
operation.
 2007-01-31 20:44:48 +00:00
David Shaw
5b34e0264e * sign.c (write_plaintext_packet): Take timestamp from outside. 
Change all callers.  (sign_file, clearsign_file,
sign_symencrypt_file): Calculate one timestamp for the whole
transaction.  Different timestamps for each step can leak performance
information.
 2007-01-31 20:23:45 +00:00
David Shaw
efef00aed3 * main.h, keygen.c (ask_expiredate), keyedit.c (menu_expire): Remove 
the need for ask_expiredate().
 2007-01-31 19:42:48 +00:00
David Shaw
e2fdff56fc * keygen.c (make_backsig, write_direct_sig, write_selfsigs) 
(write_keybinding): Have the various selfsigs created during key
generation use the timestamp of their parent key.  This helps avoid
leaking information about the performance of the machine where the
keys were generated.  Noted by Christian Danner.
 2007-01-30 21:19:45 +00:00
David Shaw
b8bd7b6186 * curl-shim.h, curl-shim.c, gpgkeys_hkp.c: Rename curl_escape() to 
curl_easy_escape() to match cURL.
 2007-01-16 18:12:43 +00:00
David Shaw
5af8d68211 * libcurl.m4: Check for curl_easy_escape() and curl_easy_unescape(). 
Replace with curl_escape() and curl_unescape() if libcurl doesn't have
it.
 2007-01-16 06:10:31 +00:00
David Shaw
e5f521db93 * config.links: powerpc64* needs to come before powerpc* or it will 
never match.  Reported by Alon Bar-Lev for libgcrypt, but relevant
here as well.
 2007-01-16 05:20:06 +00:00
David Shaw
a15b16a356 * gpgkeys_hkp.c (send_key): Allow GPG to send any armored key line 
length without problems.  Reported by Felix von Leitner.
 2007-01-16 04:31:49 +00:00
Werner Koch
9e4a5071a6 * parse-packet.c (read_protected_v3_mpi): Make sure to stop 
reading even for corrupted packets.
	* keygen.c (generate_user_id): Need to allocate one byte more.
	Reported by Felix von Leitner.
 2007-01-15 19:30:33 +00:00
Werner Koch
9a1d79f67f Installed revised translation. 2006-12-22 15:25:16 +00:00
David Shaw
6a0d191411 * configure.ac: Only check for libusb if we're building with card 
support.  Noted by Gilles Espinasse.
 2006-12-21 17:51:36 +00:00
David Shaw
68ea16cbfc * options.skel: Tweak some examples to match reality and update the 
RFC for CERT now that it is out of draft.
 2006-12-15 04:37:47 +00:00