gnupg.git
13 years agoRemoved silly old file
Werner Koch [Fri, 29 Jul 2005 07:32:32 +0000 (07:32 +0000)]
Removed silly old file

13 years agoImplemented PKA trust model
Werner Koch [Thu, 28 Jul 2005 19:30:13 +0000 (19:30 +0000)]
Implemented PKA trust model

13 years agoImplemented PKA trust model
Werner Koch [Thu, 28 Jul 2005 18:59:36 +0000 (18:59 +0000)]
Implemented PKA trust model

13 years agoConverted all m_free to xfree etc.
Werner Koch [Wed, 27 Jul 2005 18:10:56 +0000 (18:10 +0000)]
Converted all m_free to xfree etc.

13 years agoRemoved directories which are only used by the 1.9 branch
Werner Koch [Wed, 27 Jul 2005 14:18:59 +0000 (14:18 +0000)]
Removed directories which are only used by the 1.9 branch

13 years agoAdd a note that CVS is beeing migrated to Subversion
Werner Koch [Wed, 27 Jul 2005 13:08:54 +0000 (13:08 +0000)]
Add a note that CVS is beeing migrated to Subversion

13 years agoFirst commit to Subversion.
Werner Koch [Wed, 27 Jul 2005 12:05:38 +0000 (12:05 +0000)]
First commit to Subversion.

13 years ago* keyserver.c (keyserver_typemap): Special-case LDAP since curl will
David Shaw [Wed, 27 Jul 2005 01:24:57 +0000 (01:24 +0000)]
* keyserver.c (keyserver_typemap): Special-case LDAP since curl will
report that it can handle it, and we don't want it to.

13 years ago* NEWS, configure.ac: Switch over to using curl or fake-curl by
David Shaw [Wed, 27 Jul 2005 01:18:52 +0000 (01:18 +0000)]
* NEWS, configure.ac: Switch over to using curl or fake-curl by
default.  Add --enable-old-keyserver-helpers to not use curl.

13 years agopost release version number updates
Werner Koch [Tue, 26 Jul 2005 19:52:22 +0000 (19:52 +0000)]
post release version number updates

13 years agoUpdated.
Werner Koch [Tue, 26 Jul 2005 19:11:51 +0000 (19:11 +0000)]
Updated.

13 years ago* passphrase.c (agent_get_passphrase): Make sure to release the
Werner Koch [Tue, 26 Jul 2005 19:08:11 +0000 (19:08 +0000)]
* passphrase.c (agent_get_passphrase): Make sure to release the
saved codeset.
(agent_open): Add arg ORIG_CODESET and switch back to it in case
of error.  Changed all callers.

* zh_TW.po, fr.po, cs.po: Updated.

13 years agoPreparing a release
Werner Koch [Tue, 26 Jul 2005 15:41:04 +0000 (15:41 +0000)]
Preparing a release

13 years ago* keyedit.c (sign_uids): Don't prompt for setting signature expiry to
David Shaw [Fri, 22 Jul 2005 16:42:48 +0000 (16:42 +0000)]
* keyedit.c (sign_uids): Don't prompt for setting signature expiry to
match key expiry unless --ask-cert-expire is set.  Suggested by Peter
Palfrader.

13 years ago*** empty log message ***
Werner Koch [Fri, 22 Jul 2005 16:31:05 +0000 (16:31 +0000)]
*** empty log message ***

13 years ago* gpg.sgml (http):
Werner Koch [Fri, 22 Jul 2005 16:28:40 +0000 (16:28 +0000)]
* gpg.sgml (http):

* g10.c, options.h: New option --exit-on-status-write-error.
* status.c (write_status_text): Make use of this option.

13 years ago* options.h, g10.c (main), keyedit.c (keyedit_menu): Use --interactive
David Shaw [Fri, 22 Jul 2005 12:52:34 +0000 (12:52 +0000)]
* options.h, g10.c (main), keyedit.c (keyedit_menu): Use --interactive
to enable the uid walking when signing a key with no uids specified to
sign.

* keylist.c (list_keyblock_print): Fix silly typo.  Noted by Greg
Sabino Mullane.

13 years ago* gpgkeys_curl.c (get_key, main): Don't try and be smart about what
David Shaw [Wed, 20 Jul 2005 21:48:28 +0000 (21:48 +0000)]
* gpgkeys_curl.c (get_key, main): Don't try and be smart about what
protocols we handle.  Directly pass them to curl or fake-curl and see if
an error comes back.

* curl-shim.h, curl-shim.c (handle_error), ksutil.c (curl_err_to_gpg_err):
Add support for CURLE_UNSUPPORTED_PROTOCOL in fake curl.

* Makefile.am: Don't need -DFAKE_CURL any longer since it's in config.h.

13 years ago* keyserver.c (curl_can_handle): New. Do a runtime check against libcurl
David Shaw [Wed, 20 Jul 2005 21:15:04 +0000 (21:15 +0000)]
* keyserver.c (curl_can_handle): New.  Do a runtime check against libcurl
to see if it can handle a particular protocol. (keyserver_typemap): Call
it here.

* Makefile.am: Pull in libcurl for curl_version_info() if used.

13 years ago* configure.ac: Add a define for FAKE_CURL.
David Shaw [Wed, 20 Jul 2005 20:55:34 +0000 (20:55 +0000)]
* configure.ac: Add a define for FAKE_CURL.

13 years agoCURLINFO_NOW -> CURLVERSION_NOW
David Shaw [Wed, 20 Jul 2005 20:51:42 +0000 (20:51 +0000)]
CURLINFO_NOW -> CURLVERSION_NOW

13 years agoTypo.
David Shaw [Wed, 20 Jul 2005 20:46:10 +0000 (20:46 +0000)]
Typo.

13 years ago* libcurl.m4: Check that our libcurl has curl_version_info(CURLINFO_NOW).
David Shaw [Wed, 20 Jul 2005 20:45:44 +0000 (20:45 +0000)]
* libcurl.m4: Check that our libcurl has curl_version_info(CURLINFO_NOW).

13 years agoDocument --limit-card-insert-tries.
Werner Koch [Tue, 19 Jul 2005 12:25:33 +0000 (12:25 +0000)]
Document --limit-card-insert-tries.

13 years ago* g10.c, options.h: New option --limit-card-insert-tries.
Werner Koch [Tue, 19 Jul 2005 12:14:39 +0000 (12:14 +0000)]
* g10.c, options.h: New option --limit-card-insert-tries.
* cardglue.c (open_card): Use it.

13 years ago* configure.ac [W32]: Always set DISABLE_KEYSERVER_PATH.
Werner Koch [Tue, 19 Jul 2005 08:50:28 +0000 (08:50 +0000)]
* configure.ac [W32]: Always set DISABLE_KEYSERVER_PATH.

* export.c (parse_export_options): New option
export-reset-subkey-passwd.
(do_export_stream): Implement it.

* misc.c (get_libexecdir): New.
* keyserver.c (keyserver_spawn): Use it

13 years ago* samplekeys.asc: Update 99242560.
David Shaw [Tue, 19 Jul 2005 03:29:56 +0000 (03:29 +0000)]
* samplekeys.asc: Update 99242560.

* gpg.sgml: Clarify --throw-keyid and --hidden-recipient a bit.

13 years ago* tdbio.c (open_db): Check for EROFS. Suggested by Bryce Nichols.
Werner Koch [Mon, 18 Jul 2005 17:58:25 +0000 (17:58 +0000)]
* tdbio.c (open_db): Check for EROFS.  Suggested by Bryce Nichols.

* ttyio.c (do_get): Move printing of the prompt after disabling
echo.  Suggested by Scott Worley.

13 years ago* trustdb.c (clean_uids_from_key): Don't keep a valid selfsig around
David Shaw [Sat, 9 Jul 2005 02:34:04 +0000 (02:34 +0000)]
* trustdb.c (clean_uids_from_key): Don't keep a valid selfsig around
when compacting a uid.  There is no reason to make an attacker's job
easier - this way they only have a revocation which is useless in
bringing the uid back.

* keydb.h, kbnode.c (undelete_kbnode): Removed.  No longer needed.

* import.c (chk_self_sigs): Allow a uid revocation to be enough to
allow importing a particular uid (no self sig needed).  This allows
importing compacted uids.

13 years ago* gpgkeys_mailto.in, gpgkeys_test.in: Use @VERSION@ so version string
David Shaw [Thu, 23 Jun 2005 23:42:35 +0000 (23:42 +0000)]
* gpgkeys_mailto.in, gpgkeys_test.in: Use @VERSION@ so version string
stays up to date.

* gpgkeys_http.c: Don't need to define HTTP_PROXY_ENV here since it's
in ksutil.h.

* gpgkeys_curl.c (get_key, main), gpgkeys_hkp.c (main): Pass AUTH
values to curl or curl-shim.

* curl-shim.c (curl_easy_perform), gpgkeys_curl.c (main),
gpgkeys_hkp.c (main): Use curl-style proxy semantics.

13 years ago* curl-shim.h, curl-shim.c (curl_easy_setopt, curl_easy_perform): Add
David Shaw [Thu, 23 Jun 2005 04:44:20 +0000 (04:44 +0000)]
* curl-shim.h, curl-shim.c (curl_easy_setopt, curl_easy_perform): Add
CURLOPT_USERPWD option for HTTP auth.

13 years ago* gpgkeys_http.c (get_key), gpgkeys_oldhkp (send_key, get_key,
David Shaw [Thu, 23 Jun 2005 04:26:01 +0000 (04:26 +0000)]
* gpgkeys_http.c (get_key), gpgkeys_oldhkp (send_key, get_key,
search_key): No longer need to pass a proxyauth.

* gpgkeys_http.c (get_key): Pass auth outside of the URL.

13 years ago* http.h: Fix prototypes for http_open_document and http_open again,
David Shaw [Thu, 23 Jun 2005 04:24:28 +0000 (04:24 +0000)]
* http.h: Fix prototypes for http_open_document and http_open again,
to handle the new different auth for regular files and proxies.

13 years ago* http.c (make_radix64_string): Add '=' padding as per standard.
David Shaw [Thu, 23 Jun 2005 04:23:37 +0000 (04:23 +0000)]
* http.c (make_radix64_string): Add '=' padding as per standard.
(send_request, http_open, http_open_document): Clean up auth code.
Can now support different auth for a proxy and the file being
requested via that proxy.  Unescape auth strings.

13 years ago* memrchr.c (memrchr): Not all compilers allow initializing based on a
David Shaw [Wed, 22 Jun 2005 20:05:21 +0000 (20:05 +0000)]
* memrchr.c (memrchr): Not all compilers allow initializing based on a
variable that is also being initialized.  Noted by Nelson H. F. Beebe.

13 years ago* libcurl.m4: Only do the OS X linker fix on Panther. Tiger has a
David Shaw [Wed, 22 Jun 2005 05:31:52 +0000 (05:31 +0000)]
* libcurl.m4: Only do the OS X linker fix on Panther.  Tiger has a
clean curl-config.

13 years ago* gpgkeys_http.c (get_key), gpgkeys_oldhkp.c (send_key, get_key,
David Shaw [Wed, 22 Jun 2005 04:16:29 +0000 (04:16 +0000)]
* gpgkeys_http.c (get_key), gpgkeys_oldhkp.c (send_key, get_key,
search_key): Fix http_open/http_open_document calls to pass NULL for
auth and proxyauth since these programs pass them in the URL.

13 years ago* http.h: Fix prototypes for http_open_document and http_open to pass
David Shaw [Wed, 22 Jun 2005 04:13:41 +0000 (04:13 +0000)]
* http.h: Fix prototypes for http_open_document and http_open to pass
in auth and proxyauth.

13 years ago* http.c (send_request, http_open, http_open_document): Pass in auth
David Shaw [Wed, 22 Jun 2005 04:12:40 +0000 (04:12 +0000)]
* http.c (send_request, http_open, http_open_document): Pass in auth
and proxyauth that can override the in-url auth.

13 years ago* http.c (send_request): Need == after the radix64-encoded basic auth
David Shaw [Wed, 22 Jun 2005 03:20:43 +0000 (03:20 +0000)]
* http.c (send_request): Need == after the radix64-encoded basic auth
string.

13 years agoPost release version number update
Werner Koch [Tue, 21 Jun 2005 14:50:10 +0000 (14:50 +0000)]
Post release version number update

13 years ago * conventional.test (algos): Uhh ohh, cut+paste error and not RC-1-4-2rc2
Werner Koch [Tue, 21 Jun 2005 14:28:12 +0000 (14:28 +0000)]
* conventional.test (algos): Uhh ohh, cut+paste error and not
  tested.

13 years ago.
Werner Koch [Tue, 21 Jun 2005 14:00:26 +0000 (14:00 +0000)]
.

13 years agoPreparing a release candidate
Werner Koch [Tue, 21 Jun 2005 12:54:56 +0000 (12:54 +0000)]
Preparing a release candidate

13 years ago* gpgkeys_hkp.c (append_path, send_key, get_key, search_key, main),
David Shaw [Tue, 21 Jun 2005 04:24:10 +0000 (04:24 +0000)]
* gpgkeys_hkp.c (append_path, send_key, get_key, search_key, main),
gpgkeys_oldhkp.c (main): Properly handle double slashes in paths.

13 years ago* NEWS: Note key cleaning commands.
David Shaw [Mon, 20 Jun 2005 18:05:37 +0000 (18:05 +0000)]
* NEWS: Note key cleaning commands.

13 years ago* gpg.sgml: Document --edit-key/clean, import-clean, and export-clean.
David Shaw [Mon, 20 Jun 2005 18:04:39 +0000 (18:04 +0000)]
* gpg.sgml: Document --edit-key/clean, import-clean, and export-clean.

13 years ago* keygen.c (save_unprotected_key_to_card): Better fix for gcc4 warning.
David Shaw [Mon, 20 Jun 2005 17:32:09 +0000 (17:32 +0000)]
* keygen.c (save_unprotected_key_to_card): Better fix for gcc4 warning.

13 years ago* gpg.sgml: Document smartcard related options.
Werner Koch [Mon, 20 Jun 2005 17:03:27 +0000 (17:03 +0000)]
* gpg.sgml: Document smartcard related options.

* g10.c, options.h: New option --no-interactive-selection.
* keyedit.c (keyedit_menu): Use it.

13 years ago(parse_signature): Use log_info for messages
Werner Koch [Sat, 18 Jun 2005 11:49:50 +0000 (11:49 +0000)]
(parse_signature): Use log_info for messages
about missing timestamp or keyid.  In case we don't use that key
there won't be no further error and thus gpg does not need to
return with an error.

13 years ago* keygen.c (save_unprotected_key_to_card): Fix gcc4 warning.
David Shaw [Tue, 14 Jun 2005 03:55:19 +0000 (03:55 +0000)]
* keygen.c (save_unprotected_key_to_card): Fix gcc4 warning.

* options.h, import.c (parse_import_options, import_one): Add
import-clean-uids option to automatically compact unusable uids when
importing.  Like import-clean-sigs, this may nodify the local keyring.

* trustdb.c (clean_uids_from_key): Only allow selfsigs to be a
candidate for re-inclusion.

13 years ago* configure.ac: Add check for no-pointer-sign warning keyword, and
David Shaw [Mon, 13 Jun 2005 20:45:05 +0000 (20:45 +0000)]
* configure.ac: Add check for no-pointer-sign warning keyword, and
disable.  This is gcc4 specific.

13 years ago* options.h, import.c (parse_import_options, clean_sigs_from_all_uids,
David Shaw [Sun, 12 Jun 2005 21:17:46 +0000 (21:17 +0000)]
* options.h, import.c (parse_import_options, clean_sigs_from_all_uids,
import_one): Add import-clean-sigs option to automatically clean a key
when importing.  Note that when importing a key that is already on the
local keyring, the clean applies to the merged key - i.e. existing
superceded or invalid signatures are removed.

13 years ago* getkey.c (merge_selfsigs_main, merge_selfsigs_subkey): Make sure
David Shaw [Sun, 12 Jun 2005 20:42:04 +0000 (20:42 +0000)]
* getkey.c (merge_selfsigs_main, merge_selfsigs_subkey): Make sure
that even after keys may be merged together, we only have one chosen
selfsig.

13 years ago* options.h, import.c (parse_import_options, delete_inv_parts):
David Shaw [Fri, 10 Jun 2005 03:15:25 +0000 (03:15 +0000)]
* options.h, import.c (parse_import_options, delete_inv_parts):
import-unusable-sigs is now a noop.

13 years ago* options.h, export.c (do_export_stream), keyedit.c (keyedit_menu,
David Shaw [Fri, 10 Jun 2005 03:00:57 +0000 (03:00 +0000)]
* options.h, export.c (do_export_stream), keyedit.c (keyedit_menu,
menu_clean_subkeys_from_key), trustdb.h, trustdb.c
(clean_subkeys_from_key): Remove subkey cleaning function.  It is of
very limited usefulness since it cannot be used on any subkey that can
sign, and can only affect multiple selfsigs on encryption-only
subkeys.

13 years ago* keydb.h, kbnode.c (undelete_kbnode): New function to undelete a
David Shaw [Fri, 10 Jun 2005 02:52:41 +0000 (02:52 +0000)]
* keydb.h, kbnode.c (undelete_kbnode): New function to undelete a
kbnode.

* trustdb.c (clean_uids_from_key): Further tweak the algorithm so that
the last good selfsig is kept when the chosen selfsig is a revocation.

13 years ago* trustdb.c (clean_uids_from_key), keyedit.c
David Shaw [Thu, 9 Jun 2005 02:53:18 +0000 (02:53 +0000)]
* trustdb.c (clean_uids_from_key), keyedit.c
(menu_clean_uids_from_key): Tweak algorithm to preserve the last
selfsig which helps prevent uid resurrections.

13 years ago* dotlock.c [HAVE_DOSISH_SYSTEM]: Fix unused function warnings on mingw32.
David Shaw [Wed, 8 Jun 2005 22:54:02 +0000 (22:54 +0000)]
* dotlock.c [HAVE_DOSISH_SYSTEM]: Fix unused function warnings on mingw32.
Noted by Joe Vender.

13 years ago* getkey.c (fixup_uidnode, merge_selfsigs_main): Handle both expired
David Shaw [Wed, 8 Jun 2005 13:12:57 +0000 (13:12 +0000)]
* getkey.c (fixup_uidnode, merge_selfsigs_main): Handle both expired
and revoked uids in fixup_uidnode().  No need to special case in
merge_selfsigs_main().  This also means that an expired uid will have
its selfsig tagged with chosen_selfsig.

13 years ago* options.h, g10.c (main), export.c (parse_export_options,
David Shaw [Wed, 8 Jun 2005 03:31:48 +0000 (03:31 +0000)]
* options.h, g10.c (main), export.c (parse_export_options,
do_export_stream): Add export-options export-clean-sigs,
export-clean-uids, export-clean-subkeys, and export-clean which is all
of the above.  Export-minimal is the same except it also removes all
non-selfsigs.  export-unusable-sigs is now a noop.

13 years ago* random.c: Fix prototype of the fast random gatherer. Noted by Joe
David Shaw [Tue, 7 Jun 2005 18:03:19 +0000 (18:03 +0000)]
* random.c: Fix prototype of the fast random gatherer.  Noted by Joe
Vender.

13 years ago* ksutil.c (init_ks_options, parse_ks_options): Provide a default "/"
David Shaw [Sun, 5 Jun 2005 14:34:47 +0000 (14:34 +0000)]
* ksutil.c (init_ks_options, parse_ks_options): Provide a default "/"
path unless overridden by the config.  Allow config to specify items
multiple times and take the last specified item.

13 years ago* gpgkeys_hkp.c, gpgkeys_oldhkp.c: Add support for HKP servers that
David Shaw [Sat, 4 Jun 2005 23:09:27 +0000 (23:09 +0000)]
* gpgkeys_hkp.c, gpgkeys_oldhkp.c: Add support for HKP servers that
aren't at the root path.  Suggested by Jack Bates.

13 years ago* signal.c [HAVE_DOSISH_SYSTEM]: Fix unused function warnings on mingw32.
David Shaw [Wed, 1 Jun 2005 19:13:05 +0000 (19:13 +0000)]
* signal.c [HAVE_DOSISH_SYSTEM]: Fix unused function warnings on mingw32.
Noted by Joe Vender.

* passphrase.c [_WIN32]: Remove unused variables.

13 years ago* ksutil.c [HAVE_DOSISH_SYSTEM]: Fix warnings on mingw32. Noted by Joe
David Shaw [Wed, 1 Jun 2005 19:08:56 +0000 (19:08 +0000)]
* ksutil.c [HAVE_DOSISH_SYSTEM]: Fix warnings on mingw32.  Noted by Joe
Vender.

13 years ago* keyedit.c (menu_clean_uids_from_key, menu_clean_subkeys_from_key),
David Shaw [Tue, 31 May 2005 19:12:10 +0000 (19:12 +0000)]
* keyedit.c (menu_clean_uids_from_key, menu_clean_subkeys_from_key),
trustdb.c (clean_uids_from_key, clean_subkeys_from_key): Fix mingw32 build
warnings.  Noted by Joe Vender.

13 years ago.
Werner Koch [Tue, 31 May 2005 12:26:02 +0000 (12:26 +0000)]
.

13 years ago*** empty log message *** RC-1-4-2rc1
Werner Koch [Tue, 31 May 2005 10:12:01 +0000 (10:12 +0000)]
*** empty log message ***

13 years ago * keydb.h [!ENABLE_AGENT_SUPPORT]: Define dummy types.
Werner Koch [Tue, 31 May 2005 10:11:01 +0000 (10:11 +0000)]
    * keydb.h [!ENABLE_AGENT_SUPPORT]: Define dummy types.

        * cardglue.c (assuan_strerror, assuan_transact): Dummy functions
        if not build with agent support.

* zh_TW.po, zh_CN.po, es.po, ro.po: Updated.

        * tr.po: Updated from TP.  Note: this is an exception in general
        translations from the Robot are not anymore accepted.

        * regcomp.c (MB_CUR_MAX) [_WIN32]: Define it only if not defined.

13 years agoUpdated FSF street address and preparations for a release candidate.
Werner Koch [Tue, 31 May 2005 08:39:18 +0000 (08:39 +0000)]
Updated FSF street address and preparations for a release candidate.

13 years ago* trustdb.h, trustdb.c (clean_subkeys_from_key): New. Walk through
David Shaw [Tue, 31 May 2005 03:59:24 +0000 (03:59 +0000)]
* trustdb.h, trustdb.c (clean_subkeys_from_key): New.  Walk through
the subkeys on a key, and mark any that aren't usable for deletion.
Note that a signing subkey is never marked for deletion since these
keys are still useful after expiration or revocation.

* keyedit.c (menu_clean_subkeys_from_key): New function to call
clean_subkeys_from_key() on a key.  Note that the strings here are not
marked for translation yet.  The UI is still in flux, and there is no
point in annoying the translators twice.  (keyedit_menu): Call it here
as part of the "clean" command.

13 years ago* strgutil.c (set_native_charset) [_WIN32]: Add alias for codepage
David Shaw [Mon, 30 May 2005 03:46:17 +0000 (03:46 +0000)]
* strgutil.c (set_native_charset) [_WIN32]: Add alias for codepage
CP65001 to utf-8.

13 years ago* trustdb.h, trustdb.c (clean_uids_from_key): New. Walk through the
David Shaw [Mon, 30 May 2005 03:43:30 +0000 (03:43 +0000)]
* trustdb.h, trustdb.c (clean_uids_from_key): New.  Walk through the
user IDs on a key, and mark any that aren't valid for deletion.

* keyedit.c (menu_clean_uids_from_key): New function to call
clean_uids_from_key() on a key.  (keyedit_menu): Call it from here as
part of the "clean" command.

13 years ago* g10.c (main): Default {export|import}-unusable-sigs to off until the
David Shaw [Fri, 27 May 2005 03:00:26 +0000 (03:00 +0000)]
* g10.c (main): Default {export|import}-unusable-sigs to off until the
"clean" UI can be finished.

13 years ago* NEWS: Note command completion and the new curl-based HKP helper.
David Shaw [Thu, 26 May 2005 15:13:05 +0000 (15:13 +0000)]
* NEWS: Note command completion and the new curl-based HKP helper.

13 years ago* passphrase.c (ask_passphrase): Unescape the description string.
Werner Koch [Tue, 24 May 2005 12:39:42 +0000 (12:39 +0000)]
* passphrase.c (ask_passphrase): Unescape the description string.
* cardglue.c (unescape_status_string): Removed.  Changed all
caller to use ...
* misc.c (unescape_percent_string): New.

13 years ago(add_notation_data): Check number of at-signs.
Werner Koch [Tue, 24 May 2005 09:15:01 +0000 (09:15 +0000)]
(add_notation_data): Check number of at-signs.

13 years ago(add_notation_data): Check number of at-signs.
Werner Koch [Tue, 24 May 2005 09:14:31 +0000 (09:14 +0000)]
(add_notation_data): Check number of at-signs.

13 years ago* app-openpgp.c, app-common.h: Again updated from gnupg 1.9 CVS.
Werner Koch [Mon, 23 May 2005 20:16:21 +0000 (20:16 +0000)]
* app-openpgp.c, app-common.h: Again updated from gnupg 1.9 CVS.

* cardglue.c (open_card): Check USE_AGENT.
(agent_scd_checkpin): Implemented Assuan part.
(agent_scd_change_pin): Ditto.

13 years ago* cardglue.c (open_card): Check USE_AGENT.
Werner Koch [Mon, 23 May 2005 14:38:05 +0000 (14:38 +0000)]
* cardglue.c (open_card): Check USE_AGENT.

* g10.c (main): Option --debug-ccid-driver may now be given
several times increase the debug level.

* ccid-driver.c (parse_ccid_descriptor): Mark SCR335 FW version
5.14 as good.
(do_close_reader): Never do a reset. The caller should instead
make sure that the reader has been closed properly.  The new retry
code in ccid_slot_status will make sure that the readersatrts up
fine even if the last process didn't closed the USB connection
properly.
(ccid_get_atr): For certain readers try switching to ISO mode.
Thanks to Ludovic Rousseau for this hint and the magic numbers.
(print_command_failed): New.
(bulk_in): Use it here. Add new arg NO_DEBUG.
(ccid_slot_status): Disabled debugging.

13 years ago* cardglue.c (send_status_info): Make CTRL optional.
Werner Koch [Sat, 21 May 2005 14:04:32 +0000 (14:04 +0000)]
* cardglue.c (send_status_info): Make CTRL optional.
(agent_scd_writekey, inq_writekey_parms): New.
(agent_openpgp_storekey): Removed.
* cardglue.h: Add a few more error code mappings.
* keygen.c (copy_mpi): Removed.
(save_unprotected_key_to_card): Changed to use agent_scd_writekey.
* app-common.h, app-openpgp.c, tlv.c, tlv.h: Updated from newer
version in gnupg 1.9 CVS.

13 years ago(ccid_transceive): Arghhh. The seqno is another
Werner Koch [Fri, 20 May 2005 20:37:08 +0000 (20:37 +0000)]
(ccid_transceive): Arghhh.  The seqno is another
bit in the R-block than in the I block, this was wrong at one
place. Fixes bug #419 and hopefully several others.

13 years ago* gpg.sgml: Document --default-sig-expire and --default-cert-expire,
David Shaw [Sat, 14 May 2005 02:55:10 +0000 (02:55 +0000)]
* gpg.sgml: Document --default-sig-expire and --default-cert-expire,
remove --sk-comments and --no-sk-comments, and clarify the form of a
non-IETF notation for --sig-notation and --cert-notation.

13 years ago* build-packet.c (do_comment): Removed. (build_packet): Ignore
David Shaw [Sat, 14 May 2005 02:38:31 +0000 (02:38 +0000)]
* build-packet.c (do_comment): Removed.  (build_packet): Ignore
comment packets.

* export.c (do_export_stream): Don't export comment packets any
longer.

* options.h, g10.c (main): Remove --sk-comments and --no-sk-comments
options, and replace with no-op.

13 years ago* keygen.c (write_selfsigs): Rename from write_selfsig. Write the same
David Shaw [Wed, 11 May 2005 19:31:53 +0000 (19:31 +0000)]
* keygen.c (write_selfsigs): Rename from write_selfsig.  Write the same
selfsig into both the pk and sk, so that someone importing their sk (which
will get an autoconvert to the pk) won't end up with two selfsigs.
(do_generate_keypair): Call it from here.

* parse-packet.c (can_handle_critical_notation): New.  Check for
particular notation tags that we will accept when critical. Currently,
that's only preferred-email-encoding@pgp.com, since we know how to handle
it (pass it through to a mail program). (can_handle_critical): Call it
from here. (parse_one_sig_subpkt): Sanity check that notations are
well-formed in that the internal lengths add up to the size of the
subpacket.

13 years ago(do_close_reader): Don't do a reset before close.
Werner Koch [Sat, 7 May 2005 15:22:01 +0000 (15:22 +0000)]
(do_close_reader): Don't do a reset before close.
Some folks reported that it makes the SCR335 hang less often.
Look at the source on how to re-enable it.

13 years ago* main.h, keygen.c (parse_expire_string, ask_expire_interval), sign.c
David Shaw [Fri, 6 May 2005 19:25:19 +0000 (19:25 +0000)]
* main.h, keygen.c (parse_expire_string, ask_expire_interval), sign.c
(sign_file, clearsign_file, sign_symencrypt_file), g10.c (main), keyedit.c
(sign_uids): Use seconds rather than days internally to calculate
expiration.  We no longer need the day-based code as we don't generate v3
keys.

13 years ago* sign.c (sign_file, clearsign_file, sign_symencrypt_file): Use the
David Shaw [Fri, 6 May 2005 13:03:22 +0000 (13:03 +0000)]
* sign.c (sign_file, clearsign_file, sign_symencrypt_file): Use the
default sig expire value when signing in batchmode.

13 years ago* Makefile.am, packet.h, main.h, comment.c: Remove comment.c. We don't
David Shaw [Thu, 5 May 2005 22:32:52 +0000 (22:32 +0000)]
* Makefile.am, packet.h, main.h, comment.c: Remove comment.c.  We don't
use any of these functions any longer.

13 years agoRemove add_days_to_timestamp (unused)
David Shaw [Thu, 5 May 2005 22:21:34 +0000 (22:21 +0000)]
Remove add_days_to_timestamp (unused)

13 years ago* keygen.c (start_tree): New function to "prime" a KBNODE list.
David Shaw [Thu, 5 May 2005 22:08:37 +0000 (22:08 +0000)]
* keygen.c (start_tree): New function to "prime" a KBNODE list.
(do_generate_keypair): Use it here rather than creating and deleting a
comment packet.

* keygen.c (gen_elg, gen_dsa): Do not put public factors in secret key as
a comment.

* options.h, encode.c (encode_simple, encode_crypt), keygen.c (do_create):
Remove disabled comment packet code.

13 years ago* keygen.c (keygen_set_std_prefs): Add SHA256 and BZip2 to default
David Shaw [Thu, 5 May 2005 21:18:47 +0000 (21:18 +0000)]
* keygen.c (keygen_set_std_prefs): Add SHA256 and BZip2 to default
preferences.

13 years ago* options.h, g10.c (main): Add new --default-sig-expire and
David Shaw [Thu, 5 May 2005 19:21:40 +0000 (19:21 +0000)]
* options.h, g10.c (main): Add new --default-sig-expire and
--default-cert-expire options.  Suggested by Florian Weimer.

* main.h, keygen.c (parse_expire_string, ask_expire_interval): Use
defaults passed in, or "0" to control what default expiration is.

* keyedit.c (sign_uids), sign.c (sign_file, clearsign_file,
sign_symencrypt_file): Call them here, so that default expiration
is used when --ask-xxxxx-expire is off.

13 years ago* gpg.sgml: Clarify --min-cert-level a bit.
David Shaw [Thu, 5 May 2005 12:39:36 +0000 (12:39 +0000)]
* gpg.sgml: Clarify --min-cert-level a bit.

13 years ago* ksutil.h, ksutil.c: #ifdef so we can build without libcurl or
David Shaw [Wed, 4 May 2005 13:34:25 +0000 (13:34 +0000)]
* ksutil.h, ksutil.c: #ifdef so we can build without libcurl or
fake-curl.

13 years ago* gpgkeys_http.c: Need GET defined.
David Shaw [Wed, 4 May 2005 02:46:02 +0000 (02:46 +0000)]
* gpgkeys_http.c: Need GET defined.

13 years ago* passphrase.c (agent_get_passphrase): Add new arg CACHEID.
Werner Koch [Tue, 3 May 2005 22:27:07 +0000 (22:27 +0000)]
* passphrase.c (agent_get_passphrase): Add new arg CACHEID.
Changed all callers.
(ask_passphrase): Add new arg CACHEID and use it in agent mode.
Changed all callers.
(passphrase_clear_cache): New arg CACHEID.  Changed all callers.
* cardglue.c (format_cacheid): New.
(pin_cb): Compute a cache ID.
(agent_scd_pksign, agent_scd_pkdecrypt): Use it.
(agent_clear_pin_cache): New.
* card-util.c (change_pin): Clear the PIN cache.
(check_pin_for_key_operation): Ditto.

13 years ago* gpgkeys_hkp.c, gpgkeys_oldhkp.c, ksutil.h: Some minor cleanup and
David Shaw [Mon, 2 May 2005 00:46:39 +0000 (00:46 +0000)]
* gpgkeys_hkp.c, gpgkeys_oldhkp.c, ksutil.h: Some minor cleanup and
comments as to the size of MAX_LINE and MAX_URL.

13 years ago* trustdb.h, trustdb.c (mark_usable_uid_certs): Add flags for the
David Shaw [Sun, 24 Apr 2005 18:35:30 +0000 (18:35 +0000)]
* trustdb.h, trustdb.c (mark_usable_uid_certs): Add flags for the
no-pubkey and chosen revocation cases.  (clean_uid): New function to
clean a user ID of unusable (as defined by mark_usable_uid_certs)
certs.

* keyedit.c (keyedit_menu, menu_clean_uids): Call it here for new
"clean" command that removes unusable sigs from a key.