gnupg.git
12 years agoCopied gpg.texi over from 1.4.5 and started to restructure it into a proper
Werner Koch [Wed, 16 Aug 2006 14:54:19 +0000 (14:54 +0000)]
Copied gpg.texi over from 1.4.5 and started to restructure it into a proper
documentation file.  Comment tags will eventually allow to build a man page.
The idea is to have more than just a reference manual for the commands and
options while still allowing to build a man page for reference.

12 years agoWith --enable-gpg the keyservers are now build and a first test using gpg2
Werner Koch [Wed, 16 Aug 2006 10:47:53 +0000 (10:47 +0000)]
With --enable-gpg the keyservers are now build and a first test using gpg2
shows no prblems.   Needs more testing of course.

12 years agoChanged HTTP API.
Werner Koch [Mon, 14 Aug 2006 14:40:07 +0000 (14:40 +0000)]
Changed HTTP API.

12 years agoAdded http.c from 1.4.
Werner Koch [Fri, 11 Aug 2006 11:04:38 +0000 (11:04 +0000)]
Added http.c from 1.4.
Added support for estream and gnutls.

12 years agoMoved 1.9 branch to trunk
Werner Koch [Tue, 1 Aug 2006 12:23:34 +0000 (12:23 +0000)]
Moved 1.9 branch to trunk

12 years agoForgot this one. gnupg-1.4.5
Werner Koch [Tue, 1 Aug 2006 11:22:48 +0000 (11:22 +0000)]
Forgot this one.

12 years agoPreparing 1.4.5
Werner Koch [Tue, 1 Aug 2006 11:20:18 +0000 (11:20 +0000)]
Preparing 1.4.5

12 years agoFix bug 655
Werner Koch [Mon, 31 Jul 2006 11:40:14 +0000 (11:40 +0000)]
Fix bug 655

12 years agoFixed bug 479. Not a real good fix but a reliable one which limits possible
Werner Koch [Mon, 31 Jul 2006 10:16:33 +0000 (10:16 +0000)]
Fixed bug 479.  Not a real good fix but a reliable one which limits possible
breakage of other partys of the code.

12 years ago2006-07-29 Marcus Brinkmann <marcus@g10code.de> GNUPG-1-9-BRANCH
Marcus Brinkmann [Sat, 29 Jul 2006 16:40:54 +0000 (16:40 +0000)]
2006-07-29  Marcus Brinkmann  <marcus@g10code.de>

* preset-passphrase.c (preset_passphrase): Do not strip off last
character of passphrase.
(make_hexstring): New function.
* command.c (cmd_preset_passphrase): Use parse_hexstring to syntax
check passphrase argument.  Truncate passphrase at delimiter.

12 years ago2006-07-29 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Sat, 29 Jul 2006 00:22:16 +0000 (00:22 +0000)]
2006-07-29  Marcus Brinkmann  <marcus@g10code.de>

* README: Spelling fixes.

12 years ago2006-07-29 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Sat, 29 Jul 2006 00:09:24 +0000 (00:09 +0000)]
2006-07-29  Marcus Brinkmann  <marcus@g10code.de>

* secmem.c (init_pool): Close FD after establishing the mapping.

12 years agoPreparing a release candidate gnupg-1.4.5rc1
Werner Koch [Fri, 28 Jul 2006 09:52:11 +0000 (09:52 +0000)]
Preparing a release candidate

12 years agopost release preparations
Werner Koch [Thu, 27 Jul 2006 14:45:11 +0000 (14:45 +0000)]
post release preparations

12 years agoPreparing a new release gnupg-1.9.22
Werner Koch [Thu, 27 Jul 2006 14:18:55 +0000 (14:18 +0000)]
Preparing a new release

12 years ago* Makefile.am: Fix missing include path for gpgkeys_finger (needs the
David Shaw [Wed, 26 Jul 2006 21:12:55 +0000 (21:12 +0000)]
* Makefile.am: Fix missing include path for gpgkeys_finger (needs the
libcurl path, even though it doesn't use libcurl because of
ksutil.c:curl_err_to_gpg_err().  Noted by Gilbert Fernandes.

12 years agoFixed memory allocation bug and typos.
Werner Koch [Wed, 26 Jul 2006 11:25:36 +0000 (11:25 +0000)]
Fixed memory allocation bug and typos.

12 years agoCreate bag attributes so that Mozilla will accept these files.
Werner Koch [Mon, 24 Jul 2006 11:20:33 +0000 (11:20 +0000)]
Create bag attributes so that Mozilla will accept these files.
Tested with using a CAcert generated certificate.

12 years agoSupport import from TrustedMIME (i.e. from simple keyBags)
Werner Koch [Fri, 21 Jul 2006 09:41:11 +0000 (09:41 +0000)]
Support import from TrustedMIME (i.e. from simple keyBags)

12 years ago * curl-shim.c (curl_easy_perform): Minor cleanup of proxy code.
David Shaw [Fri, 21 Jul 2006 02:19:43 +0000 (02:19 +0000)]
 * curl-shim.c (curl_easy_perform): Minor cleanup of proxy code.

12 years ago* http.c (send_request): A zero-length proxy is the same as no proxy at
David Shaw [Thu, 20 Jul 2006 22:26:29 +0000 (22:26 +0000)]
* http.c (send_request): A zero-length proxy is the same as no proxy at
all.  Suggested by J. Scott Berg.

12 years ago* gpgkeys_hkp.c (send_key), gpgkeys_ldap.c (send_key,
David Shaw [Mon, 17 Jul 2006 04:11:30 +0000 (04:11 +0000)]
* gpgkeys_hkp.c (send_key), gpgkeys_ldap.c (send_key,
send_key_keyserver): Improved version of previous fix.  Force match on
spaces in string.

12 years ago* gpgkeys_hkp.c (send_key), gpgkeys_ldap.c (send_key, send_key_keyserver):
David Shaw [Fri, 14 Jul 2006 16:07:01 +0000 (16:07 +0000)]
* gpgkeys_hkp.c (send_key), gpgkeys_ldap.c (send_key, send_key_keyserver):
Fix string matching problem when the ascii armored form of the key happens
to match "KEY" at the beginning of the line.

12 years ago* gpgkeys_ldap.c (printquoted), curl-shim.c (curl_escape): Fix bad
David Shaw [Wed, 12 Jul 2006 21:16:57 +0000 (21:16 +0000)]
* gpgkeys_ldap.c (printquoted), curl-shim.c (curl_escape): Fix bad
encoding of characters > 127.  Noted by Nalin Dahyabhai.

12 years ago* tar-ustar.m4: Use dd instead of strings as it's more likely to be
David Shaw [Wed, 12 Jul 2006 14:41:08 +0000 (14:41 +0000)]
* tar-ustar.m4: Use dd instead of strings as it's more likely to be
around.  Suggested by Nelson H. F. Beebe.

12 years ago* tar-ustar.m4: Not all greps know the -q (quiet) flag, so redirect to
David Shaw [Tue, 11 Jul 2006 16:45:17 +0000 (16:45 +0000)]
* tar-ustar.m4: Not all greps know the -q (quiet) flag, so redirect to
/dev/null instead.

12 years ago* tar-ustar.m4: Pass tar data through strings so that greps that don't
David Shaw [Tue, 11 Jul 2006 12:36:04 +0000 (12:36 +0000)]
* tar-ustar.m4: Pass tar data through strings so that greps that don't
grep in binary files (Solaris) can detect the string.  Noted by Mark
Davies.

12 years ago* configure.ac: Fix resolver autoconf code so it works (fails)
David Shaw [Sat, 8 Jul 2006 23:29:25 +0000 (23:29 +0000)]
* configure.ac: Fix resolver autoconf code so it works (fails)
properly with uClibc.

12 years agobetter reporting of bad DNs
Werner Koch [Mon, 3 Jul 2006 13:26:19 +0000 (13:26 +0000)]
better reporting of bad DNs

12 years agoUpdated.
Werner Koch [Mon, 3 Jul 2006 11:39:09 +0000 (11:39 +0000)]
Updated.

12 years agoAdded keyserver directory from trunk
Werner Koch [Fri, 30 Jun 2006 13:19:49 +0000 (13:19 +0000)]
Added keyserver directory from trunk

12 years agoA couple of fixes. gpg2's key generation does now work.
Werner Koch [Fri, 30 Jun 2006 09:42:08 +0000 (09:42 +0000)]
A couple of fixes.  gpg2's key generation does now work.

12 years ago* rsa.c (generate): Use e=65537 for new RSA keys.
David Shaw [Wed, 28 Jun 2006 22:29:25 +0000 (22:29 +0000)]
* rsa.c (generate): Use e=65537 for new RSA keys.

12 years agoi18n fix
Werner Koch [Wed, 28 Jun 2006 19:33:14 +0000 (19:33 +0000)]
i18n fix

12 years ago* keydb.h, pkclist.c (select_algo_from_prefs, algo_available): Pass a
David Shaw [Wed, 28 Jun 2006 17:54:35 +0000 (17:54 +0000)]
* keydb.h, pkclist.c (select_algo_from_prefs, algo_available): Pass a
union for preference hints rather than doing void * games.

* sign.c (sign_file): Use it here.

12 years ago* sign.c (sign_file): When signing with multiple DSA keys, one being DSA1
David Shaw [Wed, 28 Jun 2006 17:12:55 +0000 (17:12 +0000)]
* sign.c (sign_file): When signing with multiple DSA keys, one being DSA1
and one being DSA2 and encrypting at the same time, if the recipient
preferences give a hash that can work with the DSA2 key, then allow the
DSA1 key to be promoted rather than giving up and using hash_for().

12 years ago* pkclist.c (algo_available): Automatically enable DSA2 mode when handling
David Shaw [Wed, 28 Jun 2006 15:26:05 +0000 (15:26 +0000)]
* pkclist.c (algo_available): Automatically enable DSA2 mode when handling
a key that clearly isn't DSA1 (i.e. q!=160).

12 years agoRemove stale lockfiles if created on the same node.
Werner Koch [Wed, 28 Jun 2006 15:14:09 +0000 (15:14 +0000)]
Remove stale lockfiles if created on the same node.

12 years agoFixed uploading of keays.
Werner Koch [Wed, 28 Jun 2006 09:37:42 +0000 (09:37 +0000)]
Fixed uploading of keays.

12 years agoVarious smaller changes
Werner Koch [Tue, 27 Jun 2006 14:32:34 +0000 (14:32 +0000)]
Various smaller changes

12 years agoPorted patches from 1.4.x
Werner Koch [Tue, 27 Jun 2006 14:30:59 +0000 (14:30 +0000)]
Ported patches from 1.4.x

12 years agodo no use reopen_std under W32.
Werner Koch [Tue, 27 Jun 2006 08:40:23 +0000 (08:40 +0000)]
do no use reopen_std under W32.

12 years agoPost release version update
Werner Koch [Sun, 25 Jun 2006 14:30:52 +0000 (14:30 +0000)]
Post release version update

12 years agoReady for a release gnupg-1.4.4
Werner Koch [Sun, 25 Jun 2006 12:17:55 +0000 (12:17 +0000)]
Ready for a release

12 years agoTypo fix
Werner Koch [Sun, 25 Jun 2006 12:07:16 +0000 (12:07 +0000)]
Typo fix

12 years agoAbout to do a new release
Werner Koch [Sun, 25 Jun 2006 12:03:38 +0000 (12:03 +0000)]
About to do a new release

12 years ago* gpg.sgml: Document --enable-dsa2, --disable-dsa2, and
David Shaw [Fri, 23 Jun 2006 04:27:57 +0000 (04:27 +0000)]
* gpg.sgml: Document --enable-dsa2, --disable-dsa2, and
--default-keyserver-url.

* DETAILS: Note "Keyserver:"

12 years ago* options.h, gpg.c (main), keygen.c (keygen_upd_std_prefs,
David Shaw [Thu, 22 Jun 2006 22:56:54 +0000 (22:56 +0000)]
* options.h, gpg.c (main), keygen.c (keygen_upd_std_prefs,
keygen_add_std_prefs, proc_parameter_file): Add --default-keyserver-url to
specify a keyserver URL at key generation time, and "Keyserver:" keyword
for doing the same through a batch file.

12 years ago* sign.c (do_sign): Accept a truncated hash even for DSA1 keys (be liberal
David Shaw [Thu, 22 Jun 2006 19:17:21 +0000 (19:17 +0000)]
* sign.c (do_sign): Accept a truncated hash even for DSA1 keys (be liberal
in what you accept, etc).

12 years ago* gpg.sgml: Note that --pgp8 does not include SHA224. Clarify that
David Shaw [Thu, 22 Jun 2006 19:13:18 +0000 (19:13 +0000)]
* gpg.sgml: Note that --pgp8 does not include SHA224.  Clarify that
clearsigned messages are not reversible.

12 years agoPreparing a new release gnupg-1.9.21
Werner Koch [Tue, 20 Jun 2006 18:52:43 +0000 (18:52 +0000)]
Preparing a new release

12 years agoMade make distcheck work again
Werner Koch [Tue, 20 Jun 2006 17:47:10 +0000 (17:47 +0000)]
Made make distcheck work again

12 years agoUpdated FSF's address.
Werner Koch [Tue, 20 Jun 2006 17:21:37 +0000 (17:21 +0000)]
Updated FSF's address.

12 years agoAdd MAC t P12 files.
Werner Koch [Tue, 20 Jun 2006 15:48:09 +0000 (15:48 +0000)]
Add MAC t P12 files.

13 years agoAdded missing files
Werner Koch [Fri, 16 Jun 2006 11:49:27 +0000 (11:49 +0000)]
Added missing files

13 years ago* import.c (import_one): Add a flag (from_sk) so we don't check prefs
David Shaw [Mon, 12 Jun 2006 12:05:34 +0000 (12:05 +0000)]
* import.c (import_one): Add a flag (from_sk) so we don't check prefs
on an autoconverted public key.  The check should only happen on the
sk size.  Noted by Dirk Traulsen.

13 years ago* keygen.c (gen_card_key): Add optional argument to return a pointer
David Shaw [Sat, 10 Jun 2006 04:11:05 +0000 (04:11 +0000)]
* keygen.c (gen_card_key): Add optional argument to return a pointer
(not a copy) of the stub secret key for the secret key we just
generated on the card.  (generate_card_subkeypair): Use it here so
that the signing key on the card can use the card to generate the 0x19
backsig on the primary key.  Noted by Janko Heilgeist and Jonas Oberg.

13 years ago* parse-packet.c (parse_user_id): Cap the user ID size at 2048 bytes.
David Shaw [Fri, 9 Jun 2006 19:45:19 +0000 (19:45 +0000)]
* parse-packet.c (parse_user_id): Cap the user ID size at 2048 bytes.
This prevents a memory allocation attack with a very large user ID.  A
very large packet length could even cause the allocation (a u32) to wrap
around to a small number.  Noted by Evgeny Legerov on full-disclosure.

13 years ago2006-06-09 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Fri, 9 Jun 2006 11:32:22 +0000 (11:32 +0000)]
2006-06-09  Marcus Brinkmann  <marcus@g10code.de>

* Makefile.am (gpgconf_LDADD): Add $(GPG_ERROR_LIBS).
(gpgkey2ssh_LDADD): Add ../jnlib/libjnlib.a.

13 years ago2006-06-09 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Fri, 9 Jun 2006 10:28:26 +0000 (10:28 +0000)]
2006-06-09  Marcus Brinkmann  <marcus@g10code.de>

* Makefile.am (gpg_agent_LDADD): Add $(NETLIBS).
(gpg_protect_tool_LDADD): Likewise.
(gpg_preset_passphrase_LDADD): Likewise.

13 years agoagent/
Marcus Brinkmann [Fri, 9 Jun 2006 10:23:30 +0000 (10:23 +0000)]
agent/
2006-06-09  Marcus Brinkmann  <marcus@g10code.de>

* Makefile.am (gpg_agent_LDADD): Add $(NETLIBS).

scd/
2006-06-09  Marcus Brinkmann  <marcus@g10code.de>

* Makefile.am (scdaemon_LDADD): Add $(NETLIBS).

13 years ago2006-06-08 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Thu, 8 Jun 2006 12:17:38 +0000 (12:17 +0000)]
2006-06-08  Marcus Brinkmann  <marcus@g10code.de>

* asschk.c (__func__) [__STDC_VERSION__ < 199901L && __GNUC__ >= 2]:
Define macro to __FUNCTION__.
(die): Use __func__ instead of __FUNCTION__.

13 years ago2006-06-08 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Thu, 8 Jun 2006 11:57:18 +0000 (11:57 +0000)]
2006-06-08  Marcus Brinkmann  <marcus@g10code.de>

* configure.ac (PTH_LIBS): Add --all to pth-config invocation.

13 years agoRevert last. It is still wrong.
David Shaw [Sat, 27 May 2006 02:07:05 +0000 (02:07 +0000)]
Revert last.  It is still wrong.

13 years ago* exec.c (make_tempdir) [_WIN32]: Modified to properly handle
David Shaw [Sat, 27 May 2006 01:38:54 +0000 (01:38 +0000)]
* exec.c (make_tempdir) [_WIN32]: Modified to properly handle
arbitrarily long temporary directory paths.

13 years ago* keygen.c (gen_dsa): Allow generating DSA2 keys (allow specifying sizes >
David Shaw [Thu, 25 May 2006 19:39:03 +0000 (19:39 +0000)]
* keygen.c (gen_dsa): Allow generating DSA2 keys (allow specifying sizes >
1024 when --enable-dsa2 is set).  The size of q is set automatically based
on the key size. (ask_keysize, generate_keypair): Ask for DSA size when
--enable-dsa2 is set.

13 years agoAdded backsig to my key
Werner Koch [Thu, 25 May 2006 13:55:34 +0000 (13:55 +0000)]
Added backsig to my key

13 years ago* exec.c (make_tempdir): Fix bug with a temporary directory on Win32
David Shaw [Thu, 25 May 2006 03:02:51 +0000 (03:02 +0000)]
* exec.c (make_tempdir): Fix bug with a temporary directory on Win32
that is over 256 bytes long.  Noted by Israel G. Lugo.

13 years agoStill making gpg2 work.
Werner Koch [Wed, 24 May 2006 11:12:28 +0000 (11:12 +0000)]
Still making gpg2 work.
At least the keyids are now correctly computed again.

13 years ago* mksamplekeys: Incorporate new package signature key and minimize keys
David Shaw [Tue, 23 May 2006 22:48:21 +0000 (22:48 +0000)]
* mksamplekeys: Incorporate new package signature key and minimize keys
when generating samplekeys.asc.

13 years ago* gpg.c (reopen_std): New function to reopen fd 0, 1, or 2 if we are
David Shaw [Tue, 23 May 2006 22:04:09 +0000 (22:04 +0000)]
* gpg.c (reopen_std): New function to reopen fd 0, 1, or 2 if we are
called with them closed.  This is to protect our keyring/trustdb files
from corruption if they get attached to one of the standard fds.  Print a
warning if possible that this has happened, and fail completely if we
cannot reopen (should never happen). (main): Call it here.

13 years agog10/ does build again.
Werner Koch [Tue, 23 May 2006 16:19:43 +0000 (16:19 +0000)]
g10/ does build again.

13 years ago* configure.ac: Add --disable-optimization. This is handy for debugging
David Shaw [Tue, 23 May 2006 15:32:57 +0000 (15:32 +0000)]
* configure.ac: Add --disable-optimization.  This is handy for debugging
so the compiler doesn't rearrange things and eliminate variables.

13 years ago* parse-packet.c (dump_sig_subpkt, parse_signature), build-packet.c
David Shaw [Tue, 23 May 2006 03:58:53 +0000 (03:58 +0000)]
* parse-packet.c (dump_sig_subpkt, parse_signature), build-packet.c
(build_sig_subpkt_from_sig), getkey.c (fixup_uidnode,
merge_selfsigs_main, merge_selfsigs_subkey), keygen.c
(keygen_add_key_expire): Fix meaning of key expiration and sig
expiration subpackets - zero means "never expire" according to 2440,
not "expire instantly".

13 years ago* import.c (import_one): Fix bug when importing a new key from a file.
David Shaw [Mon, 22 May 2006 21:38:13 +0000 (21:38 +0000)]
* import.c (import_one): Fix bug when importing a new key from a file.

13 years ago2006-05-22 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Mon, 22 May 2006 17:19:22 +0000 (17:19 +0000)]
2006-05-22  Marcus Brinkmann  <marcus@g10code.de>

* configure.ac: Remove check for noexecstack and invoke
CL_AS_NOEXECSTACK instead.

m4/
2006-05-22  Marcus Brinkmann  <marcus@g10code.de>

* noexecstack.m4: New file.

13 years ago* getkey.c (get_pubkey_byname), import.c (import_one): Fix key selection
David Shaw [Mon, 22 May 2006 16:53:09 +0000 (16:53 +0000)]
* getkey.c (get_pubkey_byname), import.c (import_one): Fix key selection
problem when auto-key-locate returns a list of keys, not all of which are
usable (revoked, expired, etc).  Noted by Simon Josefsson.

13 years ago2006-05-19 Marcus Brinkmann <marcus@g10code.de>
Marcus Brinkmann [Mon, 22 May 2006 14:35:04 +0000 (14:35 +0000)]
2006-05-19  Marcus Brinkmann  <marcus@g10code.de>

* keydb.c (keydb_insert_cert): Do not lock here, but only check if
it is locked.
(keydb_store_cert): Lock here.

* keydb.h (keydb_delete): Accept new argument UNLOCK.
* keydb.c (keydb_delete): Likewise.  Only unlock if this is set.
* delete.c (delete_one): Add new argument to invocation of
keydb_delete.

13 years agoUpdated keys
Werner Koch [Wed, 17 May 2006 08:42:12 +0000 (08:42 +0000)]
Updated keys

13 years agoForgot to save the actual fix
Werner Koch [Tue, 16 May 2006 11:08:47 +0000 (11:08 +0000)]
Forgot to save the actual fix

13 years agoFixed OSF5 warning suppression.
Werner Koch [Tue, 16 May 2006 11:06:28 +0000 (11:06 +0000)]
Fixed OSF5 warning suppression.

13 years agoAdded sample certificates.
Werner Koch [Tue, 16 May 2006 09:54:41 +0000 (09:54 +0000)]
Added sample certificates.

13 years ago* libcurl.m4: Fix mistaken AC_SUBST when curl is not found.
David Shaw [Wed, 10 May 2006 02:09:27 +0000 (02:09 +0000)]
* libcurl.m4: Fix mistaken AC_SUBST when curl is not found.

13 years agoRepackaged PKITS_data.tar.bz2
Werner Koch [Tue, 2 May 2006 08:19:59 +0000 (08:19 +0000)]
Repackaged PKITS_data.tar.bz2

13 years agoFix for sanitize string. Added SHA224
Werner Koch [Fri, 28 Apr 2006 14:32:13 +0000 (14:32 +0000)]
Fix for sanitize string.  Added SHA224

13 years agoMerged recent changes from 1.4
Werner Koch [Fri, 28 Apr 2006 14:31:29 +0000 (14:31 +0000)]
Merged recent changes from 1.4

13 years ago* NEWS: Note SHA-224 and DSA2.
David Shaw [Thu, 27 Apr 2006 16:20:13 +0000 (16:20 +0000)]
* NEWS: Note SHA-224 and DSA2.

* configure.ac: Remove --enable-old-keyserver-helpers.  Comment out
--enable-m-guard for now.

13 years ago(keyserver_import_cert): Show warning if there is a CERT fingerprint,
David Shaw [Thu, 27 Apr 2006 03:38:56 +0000 (03:38 +0000)]
(keyserver_import_cert): Show warning if there is a CERT fingerprint,
but no --keyserver set.

13 years ago* keyserver.c (path_makes_direct): New. (keyserver_spawn): Used here
David Shaw [Thu, 27 Apr 2006 03:14:17 +0000 (03:14 +0000)]
* keyserver.c (path_makes_direct): New.  (keyserver_spawn): Used here
to add "_uri" to certain gpgkeys_xxx helpers when the meaning is
different if a path is provided (i.e. ldap).

13 years ago* gpgkeys_http.c, gpgkeys_oldhkp.c: Removed.
David Shaw [Wed, 26 Apr 2006 21:49:43 +0000 (21:49 +0000)]
* gpgkeys_http.c, gpgkeys_oldhkp.c: Removed.

13 years ago* Makefile.am: Don't build gpgkeys_http or gpgkeys_(old)hkp any longer as
David Shaw [Wed, 26 Apr 2006 21:48:29 +0000 (21:48 +0000)]
* Makefile.am: Don't build gpgkeys_http or gpgkeys_(old)hkp any longer as
this is done via curl or fake-curl.

* ksutil.h, ksutil.c, gpgkeys_hkp.c, gpgkeys_curl.c: Minor #include tweaks
as FAKE_CURL is no longer meaningful.

13 years ago* keyserver.c: Fix build problem with platforms that stick libcurl in
David Shaw [Sat, 22 Apr 2006 14:15:50 +0000 (14:15 +0000)]
* keyserver.c: Fix build problem with platforms that stick libcurl in
a place not in the regular include search path.

13 years agoStill merging 1.4.3 code back
Werner Koch [Fri, 21 Apr 2006 12:56:40 +0000 (12:56 +0000)]
Still merging 1.4.3 code back

13 years ago* make-dns-cert.c (main): Small exit code tweak from Peter Palfrader.
David Shaw [Thu, 20 Apr 2006 22:05:42 +0000 (22:05 +0000)]
* make-dns-cert.c (main): Small exit code tweak from Peter Palfrader.

13 years ago* options.h, gpg.c (main): Add --enable-dsa2 and --disable-dsa2. Defaults
David Shaw [Thu, 20 Apr 2006 21:32:42 +0000 (21:32 +0000)]
* options.h, gpg.c (main): Add --enable-dsa2 and --disable-dsa2. Defaults
to disable.

* pkclist.c (algo_available): If --enable-dsa2 is set, we're allowed to
truncate hashes to fit DSA keys.

* sign.c (match_dsa_hash): New.  Return the best match hash for a given q
size. (do_sign, hash_for, sign_file): When signing with a DSA key, if it
has q==160, assume it is an old DSA key and don't allow truncation unless
--enable-dsa2 is also set.  q!=160 always allows truncation since they
must be DSA2 keys. (make_keysig_packet): If the user doesn't specify a
--cert-digest-algo, use match_dsa_hash to pick the best hash for key
signatures.

13 years ago(generate): Tweak to allow keys larger than 1024 bits. Enforce that the q
David Shaw [Thu, 20 Apr 2006 21:11:56 +0000 (21:11 +0000)]
(generate): Tweak to allow keys larger than 1024 bits.  Enforce that the q
size doesn't end between byte boundaries.

13 years agoThe plumbing necessary to create DSA keys with variable sized q.
David Shaw [Thu, 20 Apr 2006 18:40:37 +0000 (18:40 +0000)]
The plumbing necessary to create DSA keys with variable sized q.
Not yet used (q==160).

13 years ago* gpg.c (print_mds), armor.c (armor_filter, parse_hash_header): Add
David Shaw [Thu, 20 Apr 2006 02:36:05 +0000 (02:36 +0000)]
* gpg.c (print_mds), armor.c (armor_filter, parse_hash_header): Add
SHA-224.

* sign.c (write_plaintext_packet), encode.c (encode_simple): Factor
common literal packet setup code from here, to...

* main.h, plaintext.c (setup_plaintext_name): Here. New. Make sure the
literal packet filename field is UTF-8 encoded.

* options.h, gpg.c (main): Make sure --set-filename is UTF-8 encoded
and note when filenames are already UTF-8.

13 years ago* sigs.test, mds.test: Add tests for SHA-224, SHA-384, and SHA-512.
David Shaw [Thu, 20 Apr 2006 02:12:34 +0000 (02:12 +0000)]
* sigs.test, mds.test: Add tests for SHA-224, SHA-384, and SHA-512.

13 years agoAdd SHA-224 support
David Shaw [Thu, 20 Apr 2006 02:05:32 +0000 (02:05 +0000)]
Add SHA-224 support