1
0
mirror of git://git.gnupg.org/gnupg.git synced 2024-12-23 10:29:58 +01:00

1282 Commits

Author SHA1 Message Date
David Shaw
ae1d1288ee * keyedit.c (sign_mk_attrib, trustsig_prompt, sign_uids, keyedit_menu):
Prompt for and create a trust signature with "tsign".  This is functional,
but needs better UI text.

* build-packet.c (build_sig_subpkt): Able to build trust and regexp
subpackets.

* pkclist.c (do_edit_ownertrust): Comment.
2002-11-03 12:46:52 +00:00
David Shaw
39e659312e * keygen.c (set_one_pref, keygen_set_std_prefs): Allow using the full
algorithm name (CAST5, SHA1) rather than the short form (S3, H2).

* main.h, keygen.c (keygen_get_std_prefs), keyedit.c (keyedit_menu):
Return and use a fake uid packet rather than a string since we already
have a nice parser/printer in keyedit.c:show_prefs.

* main.h, misc.c (string_to_compress_algo): New.
2002-11-03 00:00:42 +00:00
David Shaw
d6693c144c * cipher.c (string_to_cipher_algo), md.c (string_to_digest_algo): Allow
the Sxxx and Hxxx format for cipher and digest names.
2002-11-02 21:39:37 +00:00
David Shaw
bdf0e306df * g10.c (main): Add --no-throw-keyid.
* keydb.h, encode.c (write_pubkey_enc_from_list), g10.c (main), pkclist.c
(build_pk_list): Add --hidden-recipient (-R) and --hidden-encrypt-to,
which do a single-user variation on --throw-keyid.  The "hide this key"
flag is carried in bit 0 of the pk_list flags field.

* keyserver.c (parse_keyrec): Fix shadowing warning.
2002-11-01 16:15:45 +00:00
David Shaw
7b4ad0f64c * Makefile.am: Put gnupg.spec in the root directory so rpm -ta works. 2002-10-31 18:29:53 +00:00
David Shaw
61a15d304d * gnupg.spec.in: Update source ftp path. 2002-10-31 18:28:35 +00:00
Stefan Bellon
7dac918b6d added RISC OS module loading support 2002-10-31 16:58:47 +00:00
David Shaw
20c99d180a * build-packet.c (do_plaintext), encode.c (encode_sesskey, encode_simple,
encode_crypt), sign.c (write_plaintext_packet): Use wipememory() instead
of memset() to wipe sensitive memory as the memset() might be optimized
away.
2002-10-31 15:40:42 +00:00
David Shaw
d284a4d200 * util.h: Add wipememory() macro. 2002-10-31 15:35:24 +00:00
David Shaw
b9d7219150 * configure.ac: Add a check for volatile. 2002-10-31 15:31:04 +00:00
David Shaw
179b8570c8 * trustdb.c (check_regexp): Modern regexps require REG_EXTENDED. 2002-10-30 23:40:05 +00:00
David Shaw
09158d1e99 * packet.h, trustdb.h, trustdb.c (trust_string): New. Return a string
like "fully trusted", "marginally trusted", etc. (get_min_ownertrust):
New.  Return minimum ownertrust. (update_min_ownertrust): New.  Set
minimum ownertrust. (check_regexp): New.  Check a regular epression
against a user ID. (ask_ownertrust): Allow specifying a minimum value.
(get_ownertrust_info): Follow the minimum ownertrust when returning a
letter. (clear_validity): Remove minimum ownertrust when a key becomes
invalid. (release_key_items): Release regexp along with the rest of the
info. (validate_one_keyblock, validate_keys): Build a trust sig chain
while validating.  Call check_regexp for regexps.  Use the minimum
ownertrust if the user does not specify a genuine ownertrust.

* pkclist.c (do_edit_ownertrust): Only allow user to select a trust level
greater than the minimum value.

* parse-packet.c (can_handle_critical): Can handle critical trust and
regexp subpackets.

* trustdb.h, trustdb.c (clear_ownertrusts), delkey.c (do_delete_key),
import.c (import_one): Rename clear_ownertrust to clear_ownertrusts and
have it clear the min_ownertrust value as well.

* keylist.c (list_keyblock_print): Indent uid to match pub and sig.
2002-10-30 03:11:57 +00:00
David Shaw
de9c6b3169 * configure.ac: Add --disable-regex in case some platform just can't
handle the regex stuff.  This means they can't fully handle trust sigs
with an attached regex either.
2002-10-29 22:44:07 +00:00
David Shaw
809b8b031a * keyedit.c (print_and_check_one_sig, show_key_and_fingerprint,
menu_addrevoker), keylist.c (list_keyblock_print, print_fingerprint): Show
"T" or the trust depth for trust signatures, and add spaces to some
strings to make room for it.

* packet.h, parse-packet.c (dump_sig_subpkt, parse_one_sig_subpkt,
parse_signature): Parse trust signature values.

* tdbio.h, tdbio.c (tdbio_read_record, tdbio_write_record): Reserve a byte
for the minimum ownertrust value (for use with trust signatures).
2002-10-29 18:00:07 +00:00
Stefan Bellon
e4021a4c95 tidied RISC OS filetype support 2002-10-29 14:37:12 +00:00
Stefan Bellon
557f65836d filetype support for RISC OS 2002-10-28 13:26:44 +00:00
David Shaw
f33df26a20 * gnupg.spec.in: Use new path for keyserver helpers, /usr/lib is no longer
used for cipher/hash plugins, and include gpgv, gpgsplit, and the new
gnupg.7 man page.
2002-10-26 19:45:00 +00:00
David Shaw
be1d2a4038 * gpgkeys_hkp.c (main), gpgkeys_ldap.c (main): Add -V flag to output
protocol and program version.
2002-10-24 22:33:22 +00:00
David Shaw
c42c5f9229 * gpg.sgml: Document --refresh-keys.
* gpg.sgml: Clarify --force-mdc, and document --disable-mdc.
2002-10-24 05:48:14 +00:00
David Shaw
64291d81be * main.h, import.c (sec_to_pub_keyblock, import_secret_one,
parse_import_options), g10.c (main): New import-option "convert-sk-to-pk"
to convert a secret key into a public key during import.  It is on by
default.
2002-10-23 15:59:45 +00:00
Werner Koch
fc9aa1ecae * gpgsplit.c: New options --secret-to-public and --no-split.
GNUified the indentation style.
2002-10-23 08:47:17 +00:00
Werner Koch
7e5f9547c5 * pubkey-enc.c (get_it): Fix segv, test for revoked only when PK
has been assigned.
2002-10-23 07:11:01 +00:00
David Shaw
45a8594ff9 * Makefile.am: Anything linking with libutil.a needs INTLLIBS as well on
platforms where INTLLIBS is set.
2002-10-21 20:32:38 +00:00
David Shaw
9e00f6816b * distfiles, _regex.h: Add _regex.h from glibc 2.3.1. 2002-10-19 20:36:28 +00:00
David Shaw
586c6fe9d1 * configure.ac: Regex tests adapted from mutt to decide whether to use the
internal regex code or not.
2002-10-19 20:34:51 +00:00
David Shaw
5cc82fc5b8 * Makefile.am, regcomp.c, regex.c, regex_internal.c, regex_internal.h,
regexec.c: Add new regex files from glibc 2.3.1.
2002-10-19 20:24:53 +00:00
Timo Schulz
aa853f1eb5 2002-10-18 Timo Schulz <ts@winpt.org>
* keylist.c: (print_pubkey_info): New.
        (print_seckey_info): New.
        * main.h: Prototypes for the new functions.
        * delkey.c (do_delete_key): Use it here.
        * revoke.c (gen_desig_revoke): Ditto.
2002-10-18 15:41:33 +00:00
Werner Koch
8d76177f10 Bumped version number for cvs version 2002-10-18 10:41:34 +00:00
Werner Koch
53255c3261 * POTFILES.in (hkp.c): Removed. V1-3-0 2002-10-18 09:39:04 +00:00
Werner Koch
61fbbd0b92 * configure.ac: Changed version number comments.
(ALL_LINGUAS): Removed all except for de.  During development it
might not be a good idea to keep all of them - they get outdated
too soon and diff files will be far too large.
2002-10-18 09:32:42 +00:00
Werner Koch
74d460ad63 * config.links (powerpc-apple-darwin6.1): Disable assembler
due to non-working modules/as.  Suggested by Gordon Worley.
2002-10-18 09:24:56 +00:00
Werner Koch
36bf36b2de * autogen.sh: Allow env variables to override the auto* tool
names.  Suggested by Simon Josefsson.
2002-10-17 14:03:11 +00:00
Werner Koch
be9b626c1d * pkclist.c (do_edit_ownertrust): Show all user IDs. This should
be enhanced to also show the current trust level.  Suggested by
Florian Weimer.
2002-10-17 13:48:43 +00:00
David Shaw
b8c842df7c * README: Multiple A record rotation works with MINGW32 now, and clarify
how it works with LDAP.
2002-10-17 13:27:13 +00:00
David Shaw
9d32f6f06b * http.c (connect_server): Try all A records for names with multiple
addresses until one answers for both MINGW32 and not MINGW32.
2002-10-17 12:45:58 +00:00
David Shaw
e613304ae7 * g10.c (main): Handle --strict and --no-strict from the command line
before the options file is loaded.
2002-10-17 11:50:46 +00:00
Werner Koch
53dca7bc99 Florian Weimer reminded me about that 2002-10-17 11:38:07 +00:00
David Shaw
bc75f901ac * README: Some typo fixes from Florian Weimer, and bump version number. 2002-10-16 13:44:07 +00:00
David Shaw
73ccfeb606 * g10.c (main): Disable --textmode when encrypting (symmetric or pk) in
--pgp2 mode as PGP 2 can't handle the unknown length literal packet.
Reported by Michael Richardson.
2002-10-15 17:01:04 +00:00
David Shaw
69cd49b342 * NEWS: Some 1.3 notes. 2002-10-15 16:34:54 +00:00
David Shaw
3ee825e211 * gpgkeys_hkp.c (write_quoted): Use %-encoding instead of \-encoding.
(parse_hkp_index): Use new keyserver key listing format, and add support
for disabled keys via include-disabled.
2002-10-14 20:01:05 +00:00
David Shaw
943566f53f * gpgkeys_ldap.c (get_key): Don't print keysize unless it's >0.
(printquoted): Use %-encoding instead of \-encoding. (search_key): Use new
keyserver key listing format.
2002-10-14 19:02:11 +00:00
David Shaw
a158c89634 * keyserver.h: Go to KEYSERVER_PROTO_VERSION 1. 2002-10-14 18:52:32 +00:00
David Shaw
da1c9e820c * keyserver-internal.h, keyserver.c (print_keyrec, parse_keyrec,
show_prompt, keyserver_search_prompt, keyserver_spawn): Go to version 1 of
the keyserver protocol.  This is a better design, similar to
--with-colons, that allows for keys with multiple user IDs rather than
using multiple keys.  It also matches the machine readable pksd format.
Also use a prettier --search-keys listing format that can fill different
size windows (currently set at 24 lines).
2002-10-14 18:50:28 +00:00
Werner Koch
a94053810c Add simple tool to sign all keys in a keyring 2002-10-14 14:14:31 +00:00
Werner Koch
09bac13bf5 * configure.ac (NAME_OF_DEV_URANDOM): Use /dev/urandom for
NetBSD.  Reported by Christian Biere.
2002-10-12 14:54:42 +00:00
Werner Koch
42b93f4925 * rndunix.c (my_popen): Make sure that stdin and stderr are
connected to a file.  This is to avoid NetBSD to complain about
set{u,g}id programs invoked with fd 0, 2 closed.  Reported by
Cristian Biere.
(start_gatherer): Likewise. Reordered code.
2002-10-12 14:54:24 +00:00
Werner Koch
e5f14f15da * keygen.c (print_status_key_created): New.
(do_generate_keypair): Use it to print the fingerprint.
(generate_subkeypair): Likewise.
2002-10-12 11:47:40 +00:00
Werner Koch
10128a5e25 * DETAILS (KEY_CREATED): Enhanced by fingerprint. 2002-10-12 11:47:01 +00:00
David Shaw
9fafaa7ef7 * keyedit.c (menu_addrevoker): Properly back out if the signature fails.
Also, do not allow appointing the same revoker twice, and report
ALREADY_SIGNED if the user tries it.
2002-10-11 21:07:03 +00:00