security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2024-12-22 10:19:57 +01:00
Code Activity
gnupg/agent
History
Werner Koch 1530d04725
agent: New option --no-user-trustlist and --sys-trustlist-name. 
* agent/gpg-agent.c (oNoUserTrustlist,oSysTrustlistName): New.
(opts): Add new option names.
(parse_rereadable_options): Parse options.
(finalize_rereadable_options): Reset allow-mark-trusted for the new
option.
* agent/agent.h (opt): Add fields no_user_trustlist and
sys_trustlist_name.
* agent/trustlist.c (make_sys_trustlist_name): New.
(read_one_trustfile): Use here.
(read_trustfiles): Use here.  Implement --no-user-trustlist.
--

With the global options we can now avoid that a user changes the
Root-CA trust by editing the trustlist.txt.  However, to implement
this we need a new option so that we don't need to rely on some magic
like --no-allow-mark-trusted has been put into a force section.

The second option makes system administration easier as it allows to
keep the trustlist in a non-distributed file.

GnuPG-bug-id: 5990
2022-06-14 14:25:21 +02:00
..
agent.h
agent: New option --no-user-trustlist and --sys-trustlist-name.
2022-06-14 14:25:21 +02:00
all-tests.scm
tests: Use module_tests for testing agent/.
2022-04-26 11:13:54 +09:00
cache.c
agent: Fix SEGV when debuging for cache enabled.
2020-10-09 13:57:29 +09:00
call-daemon.c
Remove remaining support for WindowsCE
2022-06-03 10:08:21 +02:00
call-pinentry.c
agent: Fix comment for .po generation.
2021-12-21 10:11:04 +09:00
call-scd.c
agent: Handle USAGE information in KEYINFO.
2022-05-26 14:01:03 +09:00
call-tpm2d.c
agent: always use hexgrip when storing key password
2022-01-24 22:22:05 +01:00
ChangeLog-2011
Fix typos
2015-10-28 10:20:17 +01:00
command-ssh.c
agent,ssh: Make not-inserted OpenPGP.3 keys available for SSH.
2022-05-26 17:11:52 +09:00
command.c
agent: Support --format=ssh option for READKEY.
2022-06-02 20:47:36 +09:00
cvt-openpgp.c
agent: Fix importing protected secret key.
2021-06-09 10:57:52 +09:00
cvt-openpgp.h
Change all http://www.gnu.org in license notices to https://
2016-11-05 12:02:19 +01:00
divert-scd.c
agent: Move confirmation handling into findkey.c.
2022-05-20 13:43:08 +09:00
divert-tpm2.c
agent: Move confirmation handling into findkey.c.
2022-05-20 13:43:08 +09:00
findkey.c
agent: New field "Prompt" to prevent asking card key insertion.
2022-05-27 09:59:54 +09:00
genkey.c
agent: Not writing password into file.
2022-04-22 13:33:45 +09:00
gpg-agent-w32info.rc
w32: Add icons and version information.
2013-05-07 21:35:48 +02:00
gpg-agent.c
agent: New option --no-user-trustlist and --sys-trustlist-name.
2022-06-14 14:25:21 +02:00
keyformat.txt
agent: Pop up dialog window for confirmation, when specified so.
2022-05-19 14:37:01 +09:00
learncard.c
agent: Allow signing with card key even without a stub key.
2020-02-13 11:45:41 +01:00
Makefile.am
tests: Use module_tests for testing agent/.
2022-04-26 11:13:54 +09:00
pkdecrypt.c
agent: Move confirmation handling into findkey.c.
2022-05-20 13:43:08 +09:00
pksign.c
agent: Move confirmation handling into findkey.c.
2022-05-20 13:43:08 +09:00
preset-passphrase.c
Use gpgrt's new option parser for the tools.
2020-02-21 20:28:47 +01:00
protect-tool.c
agent: Avoid memory leaks in error code paths.
2021-05-20 13:38:07 +02:00
protect.c
Remove remaining support for WindowsCE
2022-06-03 10:08:21 +02:00
sexp-secret.c
agent: Avoid uninitialized buffer.
2021-11-12 15:36:02 +09:00
t-protect.c
build: Always use EXTERN_UNLESS_MAIN_MODULE pattern.
2020-02-10 16:50:47 +01:00
trans.c
agent: Replace most assert by log_assert.
2019-05-14 10:31:46 +02:00
trustlist.c
agent: New option --no-user-trustlist and --sys-trustlist-name.
2022-06-14 14:25:21 +02:00
w32main.c
Spelling cleanup.
2020-02-18 18:07:46 -05:00
w32main.h
Change all http://www.gnu.org in license notices to https://
2016-11-05 12:02:19 +01:00