David Shaw
ef8f2e2f6f
* main.h, keygen.c (ask_expire_interval, parse_expire_string): Pass in
...
the time to use to calculate the expiration offset, rather than
querying it internally. Change all callers.
2007-02-01 19:32:16 +00:00
David Shaw
67c18b8c3c
* ttyio.c (do_get): Assume that anything read from the user without
...
echoing to the screen is sensitive and put it in secure memory.
Suggested by Benjamin Bennett.
2007-02-01 04:21:07 +00:00
David Shaw
ef9e1b5fbc
* keygen.c (do_generate_keypair, proc_parameter_file,
...
generate_keypair, generate_subkeypair): Pass a timestamp through to
all the gen_xxx functions.
2007-01-31 21:39:26 +00:00
David Shaw
9f3af9e24d
* keyedit.c (sign_uids): Another multiple to single timestamp
...
operation.
2007-01-31 20:44:48 +00:00
David Shaw
5b34e0264e
* sign.c (write_plaintext_packet): Take timestamp from outside.
...
Change all callers. (sign_file, clearsign_file,
sign_symencrypt_file): Calculate one timestamp for the whole
transaction. Different timestamps for each step can leak performance
information.
2007-01-31 20:23:45 +00:00
David Shaw
efef00aed3
* main.h, keygen.c (ask_expiredate), keyedit.c (menu_expire): Remove
...
the need for ask_expiredate().
2007-01-31 19:42:48 +00:00
David Shaw
e2fdff56fc
* keygen.c (make_backsig, write_direct_sig, write_selfsigs)
...
(write_keybinding): Have the various selfsigs created during key
generation use the timestamp of their parent key. This helps avoid
leaking information about the performance of the machine where the
keys were generated. Noted by Christian Danner.
2007-01-30 21:19:45 +00:00
David Shaw
b8bd7b6186
* curl-shim.h, curl-shim.c, gpgkeys_hkp.c: Rename curl_escape() to
...
curl_easy_escape() to match cURL.
2007-01-16 18:12:43 +00:00
David Shaw
5af8d68211
* libcurl.m4: Check for curl_easy_escape() and curl_easy_unescape().
...
Replace with curl_escape() and curl_unescape() if libcurl doesn't have
it.
2007-01-16 06:10:31 +00:00
David Shaw
e5f521db93
* config.links: powerpc64* needs to come before powerpc* or it will
...
never match. Reported by Alon Bar-Lev for libgcrypt, but relevant
here as well.
2007-01-16 05:20:06 +00:00
David Shaw
a15b16a356
* gpgkeys_hkp.c (send_key): Allow GPG to send any armored key line
...
length without problems. Reported by Felix von Leitner.
2007-01-16 04:31:49 +00:00
Werner Koch
9e4a5071a6
* parse-packet.c (read_protected_v3_mpi): Make sure to stop
...
reading even for corrupted packets.
* keygen.c (generate_user_id): Need to allocate one byte more.
Reported by Felix von Leitner.
2007-01-15 19:30:33 +00:00
Werner Koch
9a1d79f67f
Installed revised translation.
2006-12-22 15:25:16 +00:00
David Shaw
6a0d191411
* configure.ac: Only check for libusb if we're building with card
...
support. Noted by Gilles Espinasse.
2006-12-21 17:51:36 +00:00
David Shaw
68ea16cbfc
* options.skel: Tweak some examples to match reality and update the
...
RFC for CERT now that it is out of draft.
2006-12-15 04:37:47 +00:00
Werner Koch
60044dd11b
Fix bug#739 (proxy/shutdown)
2006-12-14 09:55:32 +00:00
David Shaw
ea5397943a
* Makefile.am: Install options.skel via dist_pkgdata_DATA so that
...
"make uninstall" works properly.
2006-12-13 21:41:37 +00:00
Werner Koch
db8b1120a1
distribute gnupg1.info. Fixes bug#740.
2006-12-13 17:58:43 +00:00
Werner Koch
e810efc76f
Removed references to removed g10defs.h file.
2006-12-13 12:09:44 +00:00
Werner Koch
9f433cccca
Removed the use of g10defs.h.
...
This required some code cleanups and the introduction of
a few accessor ducntions in mpi.
2006-12-11 19:54:53 +00:00
David Shaw
d382fece03
* configure.ac: AM_CONDITIONAL must not be used inside an if/then.
2006-12-08 04:39:56 +00:00
Werner Koch
abfdbea116
/
...
* configure.ac: Remove GNUPG_DATADIR for non-W32 systems.
g10/
* Makefile.am (AM_CPPFLAGS): Define GNUPG_DATADIR.
* openfile.c (copy_options_file): Use log_info and not log_error
to avoid error returns in case of a missing skeleton file.
2006-12-07 11:33:24 +00:00
Werner Koch
818f65f42a
Post release updates
2006-12-06 10:48:55 +00:00
Werner Koch
d8ff6704c8
Preparing a release
gnupg-1.4.6
2006-12-06 09:52:40 +00:00
Werner Koch
68629647f3
Changing the way man pages are build.
2006-12-04 13:51:18 +00:00
David Shaw
ede66f6fb5
* ksutil.c (classify_ks_search): Try and recognize a key ID even
...
without the 0x prefix. This isn't exact (it's possible that a user ID
string happens to be 8 or 16 digits of hex), but it's extremely
unlikely. Plus GPG itself makes the same assumption.
2006-12-04 01:20:55 +00:00
David Shaw
cfa0b50dc0
* keyedit.c (menu_clean): Show "already minimized" rather than
...
"already clean" when a minimized key is minimized again. From Dirk
Traulsen.
2006-12-03 06:26:12 +00:00
David Shaw
928db7d34b
* gpgkeys_hkp.c (search_key): HKP keyservers like the 0x to be present
...
when searching by keyID.
2006-12-03 05:57:57 +00:00
David Shaw
69f73dddd9
* NEWS: Note the CVE for bug#728, --s2k-count, --passphrase-repeat,
...
and the OpenSSL exception.
2006-12-03 04:54:21 +00:00
David Shaw
e0cd2d31a1
* options.h, gpg.c (main), passphrase.c (passphrase_to_dek): Add
...
--passphrase-repeat option to control how many times gpg will
re-prompt for a passphrase to ensure the user has typed it correctly.
Defaults to 1.
2006-12-03 04:38:53 +00:00
Werner Koch
29f48b5fdc
Preparing an RC
2006-11-29 15:42:28 +00:00
Werner Koch
e1829a3d52
* openfile.c (ask_outfile_name): Fixed buffer overflow occurring
...
if make_printable_string returns a longer string. Fixes bug 728.
2006-11-27 16:40:14 +00:00
David Shaw
55df654ea8
Missing changelog entry
2006-11-06 04:07:33 +00:00
David Shaw
d46be5e103
* configure.ac: --enable-minimal leaves out gettext and all resolver
...
functions (SRV, PKA, & CERT).
2006-11-06 03:59:02 +00:00
David Shaw
1b41117e2a
* gpgkeys_hkp.c (curl_mrindex_writer): Revert previous change.
...
Key-not-found still has a HTML response.
2006-11-06 03:37:08 +00:00
Werner Koch
31cf39791e
New command --gpgconf-test.
2006-10-23 14:21:41 +00:00
David Shaw
9e9214b944
* gpgkeys_hkp.c (curl_mrindex_writer): Print a warning if we see HTML
...
coming back from a MR hkp query.
2006-10-20 03:56:17 +00:00
David Shaw
4e07a84cb9
* parse-packet.c (parse_symkeyenc): Show the unpacked as well as the
...
packed s2k iteration count.
* main.h, options.h, gpg.c (encode_s2k_iterations, main), passphrase.c
(hash_passphrase): Add --s2k-count option to specify the number of s2k
hash iterations.
2006-10-13 03:44:34 +00:00
David Shaw
6174275c39
* keyserver.c (keyserver_spawn): Write the 16-digit keyid rather than
...
whatever key selector the user used on the command line.
2006-10-06 05:46:07 +00:00
David Shaw
4739851ef4
* strsep.c (strsep): It's strsep, not strsep2 from testing. (If I had
...
a dollar for every time I've done that...)
2006-10-03 00:36:18 +00:00
Werner Koch
598787a094
Fixed bug 518
2006-10-02 16:05:35 +00:00
Werner Koch
7925e747d0
fix for bug 537 and documentation fixes.
2006-10-02 13:22:27 +00:00
David Shaw
da5efeb143
Add compat.h to distfiles
2006-09-28 20:12:32 +00:00
David Shaw
6f32b4e4d1
Move strsep() and ascii_isspace() to libcompat.
2006-09-28 19:53:17 +00:00
David Shaw
b17fcc5d51
Put in the basic wiring (just hextobyte for now) for a libcompat.a that
...
can contain replacement files that can be linked to keyserver helpers
without bringing in the whole libutil.a. libutil.a contains a complete
copy of libcompat.a so we only need to link to one of them.
2006-09-28 19:36:55 +00:00
David Shaw
61765b20e6
* gpgkeys_ldap.c (build_attrs), ksutil.c (ks_toupper, ks_strcasecmp),
...
ksutil.h: Remove the need for strcasecmp as the field tags are always
lowercase.
2006-09-28 19:30:03 +00:00
Werner Koch
29f68725d0
Allow to build w/o curl.
2006-09-26 14:15:17 +00:00
Werner Koch
39600e7278
Post release updates.
2006-08-01 12:27:00 +00:00
Werner Koch
4053ceded3
MOves trunk to a new branch.
2006-08-01 12:22:38 +00:00
Werner Koch
21de807d1a
Forgot this one.
gnupg-1.4.5
2006-08-01 11:22:48 +00:00