1
0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-01 11:51:31 +01:00

8849 Commits

Author SHA1 Message Date
David Shaw
b8c842df7c * README: Multiple A record rotation works with MINGW32 now, and clarify
how it works with LDAP.
2002-10-17 13:27:13 +00:00
David Shaw
9d32f6f06b * http.c (connect_server): Try all A records for names with multiple
addresses until one answers for both MINGW32 and not MINGW32.
2002-10-17 12:45:58 +00:00
David Shaw
e613304ae7 * g10.c (main): Handle --strict and --no-strict from the command line
before the options file is loaded.
2002-10-17 11:50:46 +00:00
Werner Koch
53dca7bc99 Florian Weimer reminded me about that 2002-10-17 11:38:07 +00:00
David Shaw
bc75f901ac * README: Some typo fixes from Florian Weimer, and bump version number. 2002-10-16 13:44:07 +00:00
David Shaw
73ccfeb606 * g10.c (main): Disable --textmode when encrypting (symmetric or pk) in
--pgp2 mode as PGP 2 can't handle the unknown length literal packet.
Reported by Michael Richardson.
2002-10-15 17:01:04 +00:00
David Shaw
69cd49b342 * NEWS: Some 1.3 notes. 2002-10-15 16:34:54 +00:00
David Shaw
3ee825e211 * gpgkeys_hkp.c (write_quoted): Use %-encoding instead of \-encoding.
(parse_hkp_index): Use new keyserver key listing format, and add support
for disabled keys via include-disabled.
2002-10-14 20:01:05 +00:00
David Shaw
943566f53f * gpgkeys_ldap.c (get_key): Don't print keysize unless it's >0.
(printquoted): Use %-encoding instead of \-encoding. (search_key): Use new
keyserver key listing format.
2002-10-14 19:02:11 +00:00
David Shaw
a158c89634 * keyserver.h: Go to KEYSERVER_PROTO_VERSION 1. 2002-10-14 18:52:32 +00:00
David Shaw
da1c9e820c * keyserver-internal.h, keyserver.c (print_keyrec, parse_keyrec,
show_prompt, keyserver_search_prompt, keyserver_spawn): Go to version 1 of
the keyserver protocol.  This is a better design, similar to
--with-colons, that allows for keys with multiple user IDs rather than
using multiple keys.  It also matches the machine readable pksd format.
Also use a prettier --search-keys listing format that can fill different
size windows (currently set at 24 lines).
2002-10-14 18:50:28 +00:00
Werner Koch
a94053810c Add simple tool to sign all keys in a keyring 2002-10-14 14:14:31 +00:00
Werner Koch
09bac13bf5 * configure.ac (NAME_OF_DEV_URANDOM): Use /dev/urandom for
NetBSD.  Reported by Christian Biere.
2002-10-12 14:54:42 +00:00
Werner Koch
42b93f4925 * rndunix.c (my_popen): Make sure that stdin and stderr are
connected to a file.  This is to avoid NetBSD to complain about
set{u,g}id programs invoked with fd 0, 2 closed.  Reported by
Cristian Biere.
(start_gatherer): Likewise. Reordered code.
2002-10-12 14:54:24 +00:00
Werner Koch
e5f14f15da * keygen.c (print_status_key_created): New.
(do_generate_keypair): Use it to print the fingerprint.
(generate_subkeypair): Likewise.
2002-10-12 11:47:40 +00:00
Werner Koch
10128a5e25 * DETAILS (KEY_CREATED): Enhanced by fingerprint. 2002-10-12 11:47:01 +00:00
David Shaw
9fafaa7ef7 * keyedit.c (menu_addrevoker): Properly back out if the signature fails.
Also, do not allow appointing the same revoker twice, and report
ALREADY_SIGNED if the user tries it.
2002-10-11 21:07:03 +00:00
David Shaw
4849c0ab7b * http.c (connect_server): Properly handle a single A record that fails
connect().
2002-10-11 02:24:59 +00:00
David Shaw
071966cd65 * gpgkeys_ldap.c (search_key, main): Make sure LDAP values are freed in
case of error.
2002-10-09 02:25:43 +00:00
David Shaw
7a3e940300 * gpgkeys_ldap.c (fail_all): New function to unwind a keylist and error
each item. (main): Call fail_all from here, as needed.  Also add a
NO_MEMORY error in an appropriate place and fix error return code.
(ldap_err_to_gpg_err): Add KEYSERVER_UNREACHABLE.

* gpgkeys_hkp.c (fail_all): New function to unwind a keylist and error
each item. (main): Call fail_all from here.  Also add a NO_MEMORY error in
an appropriate place. (get_key): Use new UNREACHABLE error for network
errors.
2002-10-09 02:03:22 +00:00
David Shaw
9c011f8280 * keyserver.h: Add new error code KEYSERVER_UNREACHABLE. 2002-10-09 01:53:42 +00:00
David Shaw
9e86063293 And changelog :) 2002-10-07 22:19:27 +00:00
David Shaw
e4f5b9b4c2 * import.c (import_keys_internal): Missed one s/inp/inp2/.
* keylist.c (print_capabilities): Properly indicate per-key capabilities
of sign&encrypt primary keys that have secret-parts-missing (i.e. no
capabilities at all)

* mainproc.c (symkey_decrypt_sesskey): Fix compiler warning.
2002-10-07 22:19:11 +00:00
David Shaw
60dff3c175 * configure.ac: OpenLDAP 2.0.27 changed the dependencies again. Add a
"LDAPLIBS" variable so users can try and suggest the right dependencies
for their platform.
2002-10-07 22:15:20 +00:00
David Shaw
1fed5c87f0 * getkey.c (get_pubkey_direct): Don't cache keys retrieved via this
function as they may not have all their fields filled in.

* sig-check.c (signature_check2): Use new is_primary flag to check rather
than comparing main_keyid with keyid as this still works in the case of a
not fully filled in pk.
2002-10-04 22:12:09 +00:00
Werner Koch
d68fe4f73d * import.c (import_keys_internal): s/inp/inp2/ to avoid shadowing
warning.

* passphrase.c (agent_get_passphrase): Fixed signed/unsigned char
problem in %-escaping.  Noted by Ingo Kl�cker.
2002-10-04 05:43:54 +00:00
David Shaw
8c48fbd0e2 * options.h, g10.c (main): Add --strict and --no-strict to switch the
log_warning severity level from info to error.
2002-10-03 22:13:04 +00:00
David Shaw
35cc8cf90a * util.h: Add new log_warning logger command which can be switched between
log_info and log_error via log_set_strict.
2002-10-03 22:11:03 +00:00
David Shaw
c5180316a2 * logger.c (g10_log_warning, log_set_strict): Add new log_warning logger
command which can be switched between log_info and log_error via
log_set_strict.
2002-10-03 22:10:49 +00:00
David Shaw
0bb65a8a11 * gpg.sgml: Note that '#' means secret-key-unavailable, and that keyserver
schemes are case-insensitive.

* gpg.sgml: Note that --pgp2 disables --textmode when encrypting.
2002-10-03 21:57:58 +00:00
David Shaw
fcefffcb00 * keylist.c (print_capabilities): Secret-parts-missing keys should show
that fact in the capabilities, and only primary signing keys can certify
other keys.

* packet.h, parse_packet.c (parse_key): Add is_primary flag for public
keys (it already exists for secret keys).
2002-10-03 19:20:37 +00:00
David Shaw
58972f24c4 * import.c (import_secret_one): Check for an illegal (>110) protection
cipher when importing a secret key.

* keylist.c (list_keyblock_print): Show a '#' for a secret-parts-missing
key.

* parse_packet.c (parse_key): Some comments.

* revoke.c (gen_revoke): Remove some debugging code.

* trustdb.c (verify_own_keys): Make trusted-key a non-deprecated option
again.

* seckey-cert.c (do_check): Don't give the IDEA warning unless the cipher
in question is in fact IDEA.
2002-10-02 22:01:29 +00:00
David Shaw
b959d789fe * longlong.h: Some whitespace changes in HPPA to fix assembler problems on
HP-UX.  From David Ellement.
2002-10-02 20:15:40 +00:00
David Shaw
05e894545c * configure.ac: Add an --enable-old-tiger, to revert back to the
old OID.
2002-10-02 20:05:37 +00:00
David Shaw
e8b0b6349b * tiger.c (tiger_get_info): Select the OID to use for TIGER at compile
time.
2002-10-02 19:59:43 +00:00
David Shaw
05691b1dce * import.c (import_one): Make sure that a newly imported key starts with a
clean ownertrust.
2002-10-01 17:32:06 +00:00
Werner Koch
e85fd72317 * getkey.c (get_pubkey_direct): New.
(merge_selfsigs_main): Use it here to look for an ultimately
trusted key.  Using the full get_pubkey might lead to an
infinitive recursion.
2002-10-01 08:38:24 +00:00
David Shaw
383ff96bea * keyserver.c (parse_keyserver_uri): Force the keyserver URI scheme to
lowercase to be case-insensitive.
2002-09-30 03:28:41 +00:00
David Shaw
9380f80b14 2002-09-28 David Shaw <dshaw@jabberwocky.com>
* export.c (do_export_stream): Comment.

	* sig-check.c (check_key_signature2): Properly handle a
	non-designated revocation import.

2002-09-26  Werner Koch  <wk@gnupg.org>

	* g10.c (set_homedir): New. Changed all direct assignments to use
	this.
	* gpgv.c (set_homedir): Ditto.
2002-09-28 17:49:38 +00:00
David Shaw
e18ddb60ff From stable branch
* gpgkeys_ldap.c (send_key): Removed non-constant initializers.
2002-09-27 19:33:52 +00:00
David Shaw
37f29e8102 * Makefile.am, md.c (load_digest_module): TIGER is now always enabled. 2002-09-27 19:27:24 +00:00
David Shaw
ddf90c407b * configure.ac: Remove --enable-tiger, as TIGER is now always enabled. 2002-09-27 19:24:19 +00:00
Werner Koch
2536273e67 * tiger.c (tiger_get_info): Use a regular OID. Note that this
breaks all TIGER generated signatures; if we want to do something
about it we have to do it in ../g10/sig-check.c .
2002-09-26 09:35:19 +00:00
Werner Koch
2d432afff6 * gpg-agent.c (handle_signal): Flush cache on SIGHUP.
* cache.c (agent_flush_cache): New.
* gpg-agent.c, agent.h: Add --keep-display and --keep-tty.
* query.c (start_pinentry): Implement them.  The option passing
needs more thoughts.
2002-09-26 07:10:56 +00:00
David Shaw
48d55024e2 * Makefile.am: Link gpg with EGDLIBS (i.e. NETLIBS) as EGD uses sockets.
Remove the old NETLIBS variable since the keyserver stuff is no longer
internal.
2002-09-25 11:30:51 +00:00
David Shaw
d04fd6570f * Makefile.am: Link bftest with EGDLIBS (i.e. NETLIBS) as EGD uses
sockets.
2002-09-25 11:29:14 +00:00
David Shaw
c6f8520ad1 * configure.ac: Add NETLIBS to EGDLIBS when using EGD as EGD uses sockets. 2002-09-25 11:26:08 +00:00
David Shaw
7ad7f453c0 * import.c (import_keys_stream): Fix compiler type warning.
* keyring.c (keyring_rebuild_cache), sig-check.c (check_key_signature2),
import.c (import, chk_self_sigs): Minor language cleanups.
2002-09-24 21:20:48 +00:00
David Shaw
c5faf2270a * http.c (connect_server): Try all A records for names with multiple
addresses until one answers (not MINGW32).
2002-09-24 21:06:20 +00:00
David Shaw
76846b74e4 * gpgkeys_ldap.c (ldap_err_to_gpg_err, ldap_to_gpg_err, send_key, get_key,
search_key, main): Some minor error reporting enhancements for use with
GPA (show reasons for KEY FAILED).
2002-09-24 20:17:52 +00:00