15 years ago* misc.c (optsep): Add the ability to understand keyword="quoted arg with
David Shaw [Wed, 28 Jul 2004 04:12:50 +0000 (04:12 +0000)]
* misc.c (optsep): Add the ability to understand keyword="quoted arg with
spaces" type options.

15 years ago* gpgkeys_ldap.c (main): Don't try and error out before making a ldaps
David Shaw [Wed, 28 Jul 2004 02:36:45 +0000 (02:36 +0000)]
* gpgkeys_ldap.c (main): Don't try and error out before making a ldaps
connection to the NAI keyserver since we cannot tell if it is a NAI
keyserver until we connect.  Fail if we cannot find a base keyspace DN.
Fix a false success message for TLS being enabled.

15 years agoUpdated po files from 1.2.5
Werner Koch [Tue, 27 Jul 2004 15:15:58 +0000 (15:15 +0000)]
Updated po files from 1.2.5

15 years ago* (AM_GNU_GETTEXT_VERSION): New.
Werner Koch [Tue, 27 Jul 2004 15:12:00 +0000 (15:12 +0000)]
(min_automake_version): New.

* LINGUAS: Added all languages we supported in 1.2.5.
Copied all po files from 1.2.5.

* Updated to the modern version, grepping the required
tool versions from

15 years ago* keylist.c (list_keyblock_print): Always use the new listing format where
David Shaw [Fri, 16 Jul 2004 14:30:55 +0000 (14:30 +0000)]
* keylist.c (list_keyblock_print): Always use the new listing format where
uids are always on a line for themselves.  Mark expired secret keys as

* options.h, g10.c (main): Rename list show-validity to show-uid-validity
as it only shows for uids.

* armor.c (armor_filter): Do not use padding to get us to 8 bytes of
header.  Rather, use 2+4 as two different chunks.  This avoids a fake
filename of "is".

15 years ago* keyedit.c (sign_uids): Properly handle remaking a self-sig on revoked or
David Shaw [Thu, 15 Jul 2004 21:16:54 +0000 (21:16 +0000)]
* keyedit.c (sign_uids): Properly handle remaking a self-sig on revoked or
expired user IDs.  Also, once we've established that a given uid cannot or
will not be signed, don't continue to ask about each sig.

* mainproc.c (proc_symkey_enc), seckey-cert.c (do_check): Check the S2K
hash algorithm before we try to generate a passphrase using it.  This
prevents hitting BUG() when generating a passphrase using a hash that we
don't have.

* sign.c (sign_symencrypt_file): Allow using --force-mdc in --sign
--symmetric messages.

15 years ago* g10.c (main): Alias --charset as --display-charset to help avoid the
David Shaw [Thu, 15 Jul 2004 21:00:35 +0000 (21:00 +0000)]
* g10.c (main): Alias --charset as --display-charset to help avoid the
continuing confusion and make room for possible changes in devel.

* parse-packet.c (parse_plaintext): Show the hex value for the literal
packet mode since it may not be printable.

* keygen.c (make_backsig): Make sure that the backsig was built
successfully before we try and use it.

* status.h, status.c (get_status_string), plaintext.c (handle_plaintext):

15 years ago* ring-a-party: ElGamal -> Elgamal
David Shaw [Sun, 4 Jul 2004 21:17:29 +0000 (21:17 +0000)]
* ring-a-party: ElGamal -> Elgamal

David Shaw [Tue, 29 Jun 2004 01:48:01 +0000 (01:48 +0000)]

* gpg.sgml: Clarify that --min-cert-level disregards level 1 certs by
default.  Clarify include-revoked a bit to note that keyservers might not
be accurate.  Note that --charset is --display-charset. Some language
tweaks for --simple-sk-checksum (Debian 251795). Note the PGP silliness
with preferred keyserver subpackets causing PGP/MIME.

15 years ago(copy_secret_key): Get last fix right.
Werner Koch [Wed, 16 Jun 2004 13:24:01 +0000 (13:24 +0000)]
(copy_secret_key): Get last fix right.

15 years agos/1/i/
Werner Koch [Wed, 16 Jun 2004 09:15:21 +0000 (09:15 +0000)]

15 years ago* free-packet.c (copy_secret_key): Fixed memory leak when D is not
Werner Koch [Wed, 16 Jun 2004 09:09:31 +0000 (09:09 +0000)]
* free-packet.c (copy_secret_key): Fixed memory leak when D is not

* passphrase.c (passphrase_to_dek): Added a few comments to the

15 years ago* mk-w32-dist: Do not include the en@* po files.
Werner Koch [Mon, 14 Jun 2004 05:49:19 +0000 (05:49 +0000)]
* mk-w32-dist: Do not include the en@* po files.

* <--build-w32>: Build keyserver helpers again.

15 years ago* gpgkeys_http.c: General polish and removal of leftover stuff from
David Shaw [Wed, 26 May 2004 19:38:38 +0000 (19:38 +0000)]
* gpgkeys_http.c: General polish and removal of leftover stuff from

15 years ago* keyserver.c (keyserver_refresh): Keep track of keys already fetched so
David Shaw [Wed, 26 May 2004 15:01:48 +0000 (15:01 +0000)]
* keyserver.c (keyserver_refresh): Keep track of keys already fetched so
we don't do a regular keyserver fetch if the preferred keyserver fetch has
exhausted the list.

15 years ago* Try for wldap32 on Win32 platforms.
David Shaw [Mon, 24 May 2004 23:20:11 +0000 (23:20 +0000)]
* Try for wldap32 on Win32 platforms.

15 years ago* verify.c (verify_signatures): Verify multiple files in the same order in
David Shaw [Sun, 23 May 2004 16:24:15 +0000 (16:24 +0000)]
* verify.c (verify_signatures): Verify multiple files in the same order in
which we hashed them when issuing the signature.  Noted by Nicholas Cole.

* pkclist.c (do_edit_ownertrust): Fix a kbnode leak and do another
keyid-format conversion.

15 years agosome late minor fixes. V1-3-6
Werner Koch [Sat, 22 May 2004 11:33:47 +0000 (11:33 +0000)]
some late minor fixes.

15 years agoAbout to release 1.3.6
Werner Koch [Sat, 22 May 2004 07:31:55 +0000 (07:31 +0000)]
About to release 1.3.6

15 years ago* NEWS: Note --sig-keyserver-url and the ability to use a preferred
David Shaw [Sat, 22 May 2004 03:57:22 +0000 (03:57 +0000)]
* NEWS: Note --sig-keyserver-url and the ability to use a preferred
keyserver in a regular data sig to fetch the signing key.

15 years ago* mainproc.c (check_sig_and_print): If we're honoring preferred
David Shaw [Sat, 22 May 2004 03:50:20 +0000 (03:50 +0000)]
* mainproc.c (check_sig_and_print): If we're honoring preferred
keyservers, and auto-key-retrieve is set, try and get a missing key from
the preferred keyserver subpacket when we verify the sig.

* gpgv.c (parse_preferred_keyserver, free_keyserver_spec): Stubs.

* keyserver.c (keyidlist): Use new parse_preferred_keyserver function.
(keyserver_work): Use the passed-in keyserver spec rather than the options
global one.

* keyserver-internal.h, keyserver.c (parse_preferred_keyserver): New
function to take a sig and return a split out keyserver_spec.
(keyserver_import_keyid): Now takes a keyserver_spec.

15 years ago* gpgkeys_http.c (get_key): Cosmetic fix - make sure that URLs with no
David Shaw [Sat, 22 May 2004 03:35:57 +0000 (03:35 +0000)]
* gpgkeys_http.c (get_key): Cosmetic fix - make sure that URLs with no
path use a path of "/".

15 years ago* gpg.sgml: Document --edit-key "keyserver" command, --keyid-format,
David Shaw [Sat, 22 May 2004 00:34:28 +0000 (00:34 +0000)]
* gpg.sgml: Document --edit-key "keyserver" command, --keyid-format,
--keyserver-option honor-keyserver-url, and --list and --verify option

15 years ago* keyserver.c (keyidlist): Go back to the old fast keyid lister. Only
David Shaw [Fri, 21 May 2004 17:32:30 +0000 (17:32 +0000)]
* keyserver.c (keyidlist): Go back to the old fast keyid lister. Only
merge selfsigs if we have to for honor-keyserver-url. (keyserver_refresh):
Keyserver URL handler moved here. (calculate_keyid_fpr): Removed.

* keydb.h, keyid.c (keystr_from_desc): Calculate a key string from a

15 years ago* gpgkeys_ldap.c (ldap2epochtime): We can always rely on timegm() being
David Shaw [Fri, 21 May 2004 15:46:53 +0000 (15:46 +0000)]
* gpgkeys_ldap.c (ldap2epochtime): We can always rely on timegm() being
available now, since it's a replacement function.

15 years ago* Replacement function for timegm(). No need to check for
David Shaw [Fri, 21 May 2004 15:19:53 +0000 (15:19 +0000)]
* Replacement function for timegm().  No need to check for
setenv() any longer.

15 years ago* timegm.c: New replacement function. Removes the need for setenv.c and
David Shaw [Fri, 21 May 2004 15:18:32 +0000 (15:18 +0000)]
* timegm.c: New replacement function.  Removes the need for setenv.c and

* setenv.c: Removed.

* unsetenv.c: Removed.

15 years ago* keyserver.c (keyserver_spawn): Fix keyserver options on tempfile only
David Shaw [Fri, 21 May 2004 12:29:53 +0000 (12:29 +0000)]
* keyserver.c (keyserver_spawn): Fix keyserver options on tempfile only
platforms.  Noted by Roger Sondermann.

15 years ago* keyserver.c (keyserver_work): Allow --refresh-keys with a preferred
David Shaw [Thu, 20 May 2004 20:42:01 +0000 (20:42 +0000)]
* keyserver.c (keyserver_work): Allow --refresh-keys with a preferred
keyserver to happen even if there is no global keyserver set.

* sig-check.c (do_check_messages): No need to check for Elgamal signatures
any longer. (do_check_messages, do_check, check_key_signature2):
--keyid-format conversion.

* pkclist.c (show_paths, edit_ownertrust): Remove some unused code.

15 years ago* NEWS: Note HTTP key fetching.
David Shaw [Thu, 20 May 2004 19:33:59 +0000 (19:33 +0000)]
* NEWS: Note HTTP key fetching.

* README: Update version and note that HKP is no longer build in.

* Handle --disable-http and other code to properly build

15 years ago* gpgkeys_http.c: New program to do a simple HTTP file fetch using the
David Shaw [Thu, 20 May 2004 19:07:10 +0000 (19:07 +0000)]
* gpgkeys_http.c: New program to do a simple HTTP file fetch using the
keyserver interface.

* Build it.

15 years ago* options.h (ctrl): New for member IN_AUTO_KEY_RETRIEVE.
David Shaw [Thu, 20 May 2004 18:04:33 +0000 (18:04 +0000)]
* options.h (ctrl): New for member IN_AUTO_KEY_RETRIEVE.

* mainproc.c (check_sig_and_print): track whether we are retrieving a key.

* status.c (status_currently_allowed): New. (write_status_text,
write_status_text_and_buffer): Use it here.

* g10.c: New command --gpgconf-list. (gpgconf_list): New.  From Werner on
stable branch.

15 years ago* longlong.h: Typo.
David Shaw [Thu, 20 May 2004 17:34:00 +0000 (17:34 +0000)]
* longlong.h: Typo.

* mpi-pow.c (mpi_powm): s/exp/exponent/ to shutup a compiler warning.
From Werner on stable branch.

15 years ago* dsa.c (verify): s/exp/exponent/ to fix a compiler warning. From Werner
David Shaw [Thu, 20 May 2004 17:16:34 +0000 (17:16 +0000)]
* dsa.c (verify): s/exp/exponent/ to fix a compiler warning.  From Werner
on stable branch.

15 years ago* g10.c: New command --gpgconf-list. (gpgconf_list): New. From Werner on
David Shaw [Thu, 20 May 2004 17:06:34 +0000 (17:06 +0000)]
* g10.c: New command --gpgconf-list. (gpgconf_list): New.  From Werner on
stable branch.

15 years ago* NEWS: Note the addition of preferred keyserver support,
David Shaw [Thu, 20 May 2004 03:19:25 +0000 (03:19 +0000)]
* NEWS: Note the addition of preferred keyserver support,
--ask-cert-level, --keyid-format, and the removal of show-long-keyids, the
quasi-1991 partial length encoding, --export-all, and include-non-rfc.

* acinclude.m4 (GNUPG_SYS_NM_PARSE): Remove a leftover slash in a sed

15 years ago* gpg.sgml: Clarify that --charset applies to informational strings and
David Shaw [Thu, 20 May 2004 03:01:46 +0000 (03:01 +0000)]
* gpg.sgml: Clarify that --charset applies to informational strings and
does not recode messages themselves.  Remove include-non-rfc

15 years ago* pubkey-enc.c (get_session_key, get_it), keyedit.c
David Shaw [Thu, 20 May 2004 02:51:23 +0000 (02:51 +0000)]
* pubkey-enc.c (get_session_key, get_it), keyedit.c
(show_key_with_all_names, show_basic_key_info): --keyid-format conversion.

15 years ago* sign.c (update_keysig_packet): Policies and notations should be stripped
David Shaw [Wed, 19 May 2004 03:11:22 +0000 (03:11 +0000)]
* sign.c (update_keysig_packet): Policies and notations should be stripped
out when remaking a self-signature.  Noted by Atom Smasher.

* keyserver.c (parse_keyserver_uri): Fix compiler warnings.

15 years ago* options.h, keyserver-internal.h, keyserver.c (parse_keyserver_uri):
David Shaw [Tue, 11 May 2004 19:36:44 +0000 (19:36 +0000)]
* options.h, keyserver-internal.h, keyserver.c (parse_keyserver_uri):
Improved URI parser that keeps track of the path information and doesn't
modify the input string. (keyserver_spawn): Tell keyserver plugins about
the path.

15 years ago* keylist.c (show_policy_url, show_keyserver_url, show_notation)
Werner Koch [Tue, 11 May 2004 07:43:19 +0000 (07:43 +0000)]
* keylist.c (show_policy_url, show_keyserver_url, show_notation)
(list_one): Use const char* for i18n string helpers.

* keygen.c (do_generate_keypair, read_parameter_file): Really
close the files.
(do_generate_keypair): Create the secret key file using safe
permissions.  Noted by Atom Smasher.

15 years ago* options.h, mainproc.c (symkey_decrypt_seskey), keyserver.c (struct
David Shaw [Mon, 10 May 2004 21:46:00 +0000 (21:46 +0000)]
* options.h, mainproc.c (symkey_decrypt_seskey), keyserver.c (struct
keyrec, parse_keyrec, keyserver_search_prompt), keyedit.c (keyedit_menu),
g10.c (add_keyserver_url, add_policy_url): Fix some compiler warnings.

15 years ago* DETAILS, credits-1.0, credits-1.2: ElGamal -> Elgamal.
David Shaw [Sat, 8 May 2004 16:32:30 +0000 (16:32 +0000)]
* DETAILS, credits-1.0, credits-1.2: ElGamal -> Elgamal.

* gpg.sgml: Document --no-use-embedded-filename and --min-cert-level.

* gpgv.sgml: Removed leftover </para>.

15 years ago* keyedit.c (keyedit_menu, menu_set_keyserver_url): Allow passing
David Shaw [Sat, 8 May 2004 13:51:14 +0000 (13:51 +0000)]
* keyedit.c (keyedit_menu, menu_set_keyserver_url): Allow passing
preferred keyserver on "keyserver" command line.  Sanity check keyserver
URL before accepting it.

* keyserver-internal.h, g10.c (main), keyserver.c (parse_keyserver_uri):
Add an option to require the scheme:// and change all callers.
(free_keyserver_spec): Make public.

15 years ago(write_plaintext_packet): Fixed the detection of too
Werner Koch [Fri, 7 May 2004 09:31:29 +0000 (09:31 +0000)]
(write_plaintext_packet): Fixed the detection of too
large files in the same way as in encode.c.

15 years ago* keylist.c (show_notation): Use bits to select which sort of notation to
David Shaw [Wed, 5 May 2004 02:40:27 +0000 (02:40 +0000)]
* keylist.c (show_notation): Use bits to select which sort of notation to
show.  Don't allow a not-shown notation to prevent us from issuing the
proper --status-fd message.

* options.h, g10.c (main): Add show-std/standard-notations and
show-user-notations.  show-notations is both.  Default is to show standard
notations only during verify.  Change all callers.

15 years agoRemoved reference to non-available option
Werner Koch [Mon, 3 May 2004 14:19:13 +0000 (14:19 +0000)]
Removed reference to non-available option

15 years ago(ac_pipe_works): Fixed BRE syntax \? -> \{0,1\}.
Werner Koch [Sat, 1 May 2004 09:05:58 +0000 (09:05 +0000)]
(ac_pipe_works): Fixed BRE syntax \? -> \{0,1\}.
Reported by Todd Vierling.

15 years ago* main.h, keylist.c (show_notation): Add argument to show only user
David Shaw [Thu, 29 Apr 2004 03:42:54 +0000 (03:42 +0000)]
* main.h, keylist.c (show_notation): Add argument to show only user
notations, only standard notations, or both.  Change all callers.

* keyserver.c (keyserver_spawn): We still need EXEC_TEMPFILE_ONLY.

15 years ago* card-util.c (card_edit): Require PIN only for generate.
Werner Koch [Wed, 28 Apr 2004 11:55:46 +0000 (11:55 +0000)]
* card-util.c (card_edit): Require PIN only for generate.

* app-openpgp.c (do_setattr): Sync FORCE_CHV1.

15 years ago(keyserver_spawn) [EXEC_TEMPFILE_ONLY]: Removed
Werner Koch [Tue, 27 Apr 2004 10:20:38 +0000 (10:20 +0000)]
(keyserver_spawn) [EXEC_TEMPFILE_ONLY]: Removed
setting use_temp_file because this option has been removed.

15 years agoRenamed prototype parameter name to avoid gcc warnings.
Werner Koch [Tue, 27 Apr 2004 08:24:37 +0000 (08:24 +0000)]
Renamed prototype parameter name to avoid gcc warnings.

15 years ago* DETAILS (NEWSIG): Documented.
Werner Koch [Tue, 27 Apr 2004 08:24:29 +0000 (08:24 +0000)]
* DETAILS (NEWSIG): Documented.

15 years agoA bunch of changes for the openpgp card.
Werner Koch [Tue, 27 Apr 2004 08:23:45 +0000 (08:23 +0000)]
A bunch of changes for the openpgp card.

15 years ago* getkey.c (get_seckey_byname2): Significantly simplify this function by
David Shaw [Mon, 26 Apr 2004 01:20:03 +0000 (01:20 +0000)]
* getkey.c (get_seckey_byname2): Significantly simplify this function by
using key_byname to do the heavy lifting.  Note that this also fixes an
old problem when the first key on the secret keyring has an unusable stub
primary, but is still chosen.

15 years ago* getkey.c (key_byname): If namelist is NULL, return the first key in the
David Shaw [Mon, 26 Apr 2004 00:36:01 +0000 (00:36 +0000)]
* getkey.c (key_byname): If namelist is NULL, return the first key in the

15 years ago* keygen.c (make_backsig): If DO_BACKSIGS is not defined, do not create
David Shaw [Fri, 23 Apr 2004 03:25:58 +0000 (03:25 +0000)]
* keygen.c (make_backsig): If DO_BACKSIGS is not defined, do not create

* getkey.c (merge_selfsigs_subkey): Find 0x19 backsigs on subkey selfsigs
and verify they are valid.  If DO_BACKSIGS is not defined, fake this as
always valid.

* packet.h, parse-packet.c (parse_signature): Make parse_signature
non-static so we can parse 0x19s in self-sigs.

* main.h, sig-check.c (check_backsig): Check a 0x19 signature.
(signature_check2): Give a backsig warning if there is no or a bad 0x19
with signatures from a subkey.

15 years ago* parse-packet.c (dump_sig_subpkt, parse_one_sig_subpkt,
David Shaw [Thu, 22 Apr 2004 00:54:30 +0000 (00:54 +0000)]
* parse-packet.c (dump_sig_subpkt, parse_one_sig_subpkt,
can_handle_critical): Parse and display 0x19 signatures.

15 years ago* keyserver.c (parse_keyserver_uri): Do not accept "http" as an alias for
David Shaw [Tue, 20 Apr 2004 20:17:38 +0000 (20:17 +0000)]
* keyserver.c (parse_keyserver_uri): Do not accept "http" as an alias for
"hkp".  They are not the same thing.

15 years ago* options.h, g10.c (main): Add keyserver-option honor-keyserver-url.
David Shaw [Mon, 19 Apr 2004 16:02:11 +0000 (16:02 +0000)]
* options.h, g10.c (main): Add keyserver-option honor-keyserver-url.
parse_keyserver_options now returns a success code.

* keyserver.c (parse_keyserver_options): Return error on failure to parse.
Currently there is no way to fail as any unrecognized options get saved to
be sent to the keyserver plugins later. Check length of keyserver option
tokens since with =arguments we must only match the prefix.
(free_keyserver_spec): Moved code from parse_keyserver_url.
(keyserver_work, keyserver_spawn): Pass in a struct keyserver_spec rather
than using the global keyserver option. (calculate_keyid_fpr): New.
Fills in a KEYDB_SEARCH_DESC for a key. (keyidlist): New implementation
using get_pubkey_bynames rather than searching the keydb directly.  If
honor-keyserver-url is set, make up a keyserver_spec and try and fetch
that key directly.  Do not include it in the returned keyidlist in that

15 years ago2004-04-02 Thomas Schwinge <>
Marcus Brinkmann [Mon, 19 Apr 2004 14:17:30 +0000 (14:17 +0000)]
2004-04-02  Thomas Schwinge  <>


15 years ago* plaintext.c (handle_plaintext): Accept 'u' as a plaintext mode that
David Shaw [Fri, 16 Apr 2004 16:31:19 +0000 (16:31 +0000)]
* plaintext.c (handle_plaintext): Accept 'u' as a plaintext mode that
requires end of line conversion.  This is being considered for a UTF8 text
packet.  If this doesn't take place, no major harm done.  If it does take
place, we'll get a jump on starting the changeover.

* g10.c (main): --no-use-embedded-filename.

* build-packet.c (calc_plaintext, do_plaintext): Do not create illegal
(packet header indicates a size larger than the actual packet) encrypted
data packets when not compressing and using a filename longer than 255

* keyedit.c (no_primary_warning): Cleanup. (menu_expire): Don't give
primary warning for subkey expiration changes.  These cannot reorder

15 years ago* keygen.c (gen_elg, gen_dsa, gen_rsa, do_create, do_generate_keypair,
David Shaw [Fri, 16 Apr 2004 16:07:07 +0000 (16:07 +0000)]
* keygen.c (gen_elg, gen_dsa, gen_rsa, do_create, do_generate_keypair,
generate_subkeypair): New is_subkey argument to set whether a generated
key is a subkey.  Do not overload the ret_sk.  This is some early cleanup
to do backsigs for signing subkeys.

* keygen.c (write_keybinding, do_generate_keypair, generate_subkeypair):
Keep track of the unprotected subkey secret key so we can make a backsig
with it.

* keygen.c (make_backsig): New function to add a backsig to a binding sig
of signing subkeys.  Currently disabled. (write_keybinding): Call it here,
for signing subkeys only.

* sign.c (make_keysig_packet): Allow generating 0x19 signatures (same as
0x18 or 0x28, but used for backsigs).

* packet.h, build-packet.c (build_sig_subpkt): Add new SIGSUBPKT_SIGNATURE
type for embedded signatures.

15 years ago* main.h, misc.c (optsep, argsplit, optlen, parse_options): Simplify code
David Shaw [Fri, 16 Apr 2004 15:19:35 +0000 (15:19 +0000)]
* main.h, misc.c (optsep, argsplit, optlen, parse_options): Simplify code
and properly handle a partial match against an option with an argument.

* keyserver-internal.h, keyserver.c (parse_keyserver_options): Use new
optsep and argsplit functions.

15 years ago* main.h, misc.c (argsplit): Refactor argsep into argsplit and argsep so
David Shaw [Fri, 16 Apr 2004 02:57:20 +0000 (02:57 +0000)]
* main.h, misc.c (argsplit): Refactor argsep into argsplit and argsep so
they can be called separately.

15 years ago* options.h, keyserver.c (parse_keyserver_options): Remove duplicate code
David Shaw [Thu, 15 Apr 2004 18:16:17 +0000 (18:16 +0000)]
* options.h, keyserver.c (parse_keyserver_options): Remove duplicate code
from parse_keyserver_options by calling the generic parse_options.

* keyserver.c (keyserver_spawn, keyserver_refresh), g10.c (main), gpgv.c
(main), mainproc.c (check_sig_and_print), import.c (revocation_present):
Change all callers.

15 years ago* packet.h, getkey.c (fixup_uidnode, merge_selfsigs_subkey): Keep track of
David Shaw [Thu, 15 Apr 2004 00:30:05 +0000 (00:30 +0000)]
* packet.h, getkey.c (fixup_uidnode, merge_selfsigs_subkey): Keep track of
which self-sig we actually chose.

* keyedit.c (menu_expire, menu_set_primary_uid, menu_set_preferences): Use
it here to avoid updating non-used self-sigs and possibly promoting an old
self-sig into consideration again.

15 years ago* options.h, import.c, keyserver-internal.h, g10.c, mainproc.c,
David Shaw [Wed, 14 Apr 2004 21:33:45 +0000 (21:33 +0000)]
* options.h, import.c, keyserver-internal.h, g10.c, mainproc.c,
keyserver.c (parse_keyserver_uri): Parse keyserver URI into a structure.
Cleanup for new "guess my keyserver" functionality, as well as refreshing
via a preferred keyserver subpacket.

15 years ago* options.h: Encapsulate keyserver details. Change all callers.
David Shaw [Wed, 14 Apr 2004 17:56:23 +0000 (17:56 +0000)]
* options.h: Encapsulate keyserver details.  Change all callers.

15 years ago* gpg.sgml: Document delsig. Clarify that --refresh-keys arguments are
David Shaw [Sat, 10 Apr 2004 02:40:53 +0000 (02:40 +0000)]
* gpg.sgml: Document delsig.  Clarify that --refresh-keys arguments are
optional.  Document --bzip2-decompress-lowmem.

15 years ago* keyedit.c (keyedit_menu): Request a trustdb update when adding a new
David Shaw [Sun, 28 Mar 2004 05:33:00 +0000 (05:33 +0000)]
* keyedit.c (keyedit_menu): Request a trustdb update when adding a new
user ID so the new ID gets validity set.  Reported by Owen Taylor.

15 years ago* options.h, g10.c (main), compress-bz2.c (init_uncompress): Rename
David Shaw [Thu, 25 Mar 2004 22:43:51 +0000 (22:43 +0000)]
* options.h, g10.c (main), compress-bz2.c (init_uncompress): Rename
--bzip2-compress-lowmem to --bzip2-decompress-lowmem since it applies to
decompression, not compression.

15 years ago* keyedit.c (sign_uids, show_key_and_fingerprint, ask_revoke_sig,
David Shaw [Wed, 24 Mar 2004 17:34:57 +0000 (17:34 +0000)]
* keyedit.c (sign_uids, show_key_and_fingerprint, ask_revoke_sig,
menu_revsig, menu_showphoto): --keyid-format conversion.
(menu_addrevoker): Use print_pubkey_info() rather than duplicating code.

15 years ago* trustdb.c (update_min_ownertrust, validate_keys): Do not use keystr
David Shaw [Fri, 19 Mar 2004 23:15:27 +0000 (23:15 +0000)]
* trustdb.c (update_min_ownertrust, validate_keys): Do not use keystr
functions in log_debug.

* import.c (import_one): Try and collapse user IDs when importing a key
for the first time.

* keyedit.c (menu_addrevoker): Allow appointing a subkey as a designated
revoker if the user forces it via keyid!, so long as the subkey can
certify.  Also use the proper date string when prompting for confirmation.

* g10.c (main): Maintain ordering of multiple Comment lines. Requested by
Peter Hyman.

15 years ago* mainproc.c (proc_pubkey_enc, print_pkenc_list, list_node):
David Shaw [Thu, 18 Mar 2004 02:56:41 +0000 (02:56 +0000)]
* mainproc.c (proc_pubkey_enc, print_pkenc_list, list_node):
--keyid-format conversion.

15 years ago* getkey.c (skip_unusable, merge_selfsigs_main,
David Shaw [Tue, 16 Mar 2004 22:47:45 +0000 (22:47 +0000)]
* getkey.c (skip_unusable, merge_selfsigs_main,
premerge_public_with_secret, lookup, get_user_id_string): --keyid-format

15 years ago* trustdb.c (add_utk, verify_own_keys, update_min_ownertrust,
David Shaw [Mon, 15 Mar 2004 23:15:57 +0000 (23:15 +0000)]
* trustdb.c (add_utk, verify_own_keys, update_min_ownertrust,
get_validity, ask_ownertrust, validate_keys): --keyid-format conversion.

15 years ago* import.c (check_prefs_warning, check_prefs): --keyid-format conversion
David Shaw [Mon, 15 Mar 2004 20:00:42 +0000 (20:00 +0000)]
* import.c (check_prefs_warning, check_prefs): --keyid-format conversion
and a little better text. (import_one, import_secret_one,
import_revoke_cert, chk_self_sigs, delete_inv_parts, merge_blocks): Still
more --keyid-format conversions.

15 years ago* keylist.c (print_seckey_info, print_pubkey_info): --keyid-format
David Shaw [Sat, 6 Mar 2004 20:45:44 +0000 (20:45 +0000)]
* keylist.c (print_seckey_info, print_pubkey_info): --keyid-format
conversion. (list_keyblock_print): 0xshort should not push us into the new
list format since it is not much longer than regular 8-character short

15 years ago* keydb.h, keyid.c (keystr_from_pk, keystr_from_sk): New functions to pull
David Shaw [Sat, 6 Mar 2004 17:12:44 +0000 (17:12 +0000)]
* keydb.h, keyid.c (keystr_from_pk, keystr_from_sk): New functions to pull
a key string from a key in one step.  This isn't faster than before, but
makes for neater code.

* keylist.c (list_keyblock_print): Use keystr_from_xx here.
(print_key_data): No need to pass a keyid in.

15 years ago* keyid.c (keyid_from_sk): Minor performance boost by caching secret key
David Shaw [Sat, 6 Mar 2004 04:08:06 +0000 (04:08 +0000)]
* keyid.c (keyid_from_sk): Minor performance boost by caching secret key
keyids so we don't have to calculate them each time.

15 years ago* getkey.c (merge_selfsigs_subkey): Do not mark subkeys valid if we do not
David Shaw [Fri, 5 Mar 2004 13:34:56 +0000 (13:34 +0000)]
* getkey.c (merge_selfsigs_subkey): Do not mark subkeys valid if we do not
support their pk algorithm.  This allows for early (during get_*)
rejection of a subkey, and selection of another.

* passphrase.c (passphrase_to_dek): Give a little more information when we
have room to do so.

15 years ago* revoke.c (export_minimal_pk), export.c (do_export_stream), passphrase.c
David Shaw [Fri, 5 Mar 2004 00:01:25 +0000 (00:01 +0000)]
* revoke.c (export_minimal_pk), export.c (do_export_stream), passphrase.c
(passphrase_to_dek), keyserver.c (print_keyrec): A few more places to use

* options.h, g10.c (main), export.c (parse_export_options,
do_export_stream): Remove --export-all and the "include-non-rfc"
export-option as they are no longer meaningful with the removal of v3
Elgamal keys.

15 years ago* iobuf.c (block_filter): Remove the old gpg indeterminate length mode.
David Shaw [Thu, 4 Mar 2004 20:48:46 +0000 (20:48 +0000)]
* iobuf.c (block_filter): Remove the old gpg indeterminate length mode.
(iobuf_set_block_mode, iobuf_in_block_mode): Removed as superfluous.

15 years ago* iobuf.h: Remove iobuf_set_block_mode() and iobuf_in_block_mode().
David Shaw [Thu, 4 Mar 2004 20:46:56 +0000 (20:46 +0000)]
* iobuf.h: Remove iobuf_set_block_mode() and iobuf_in_block_mode().

15 years ago* armor.c (fake_packet, armor_filter): Use the 2440 partial length
David Shaw [Thu, 4 Mar 2004 20:40:12 +0000 (20:40 +0000)]
* armor.c (fake_packet, armor_filter): Use the 2440 partial length
encoding for the faked plaintext packet.

15 years ago* options.h, g10.c (main), mainproc.c (check_sig_and_print): Remove
David Shaw [Wed, 3 Mar 2004 20:54:03 +0000 (20:54 +0000)]
* options.h, g10.c (main), mainproc.c (check_sig_and_print): Remove
verify-option show-long-keyids and replace with the more general

15 years ago* build-packet.c (write_header2): Remove call to start old gpg partial
David Shaw [Wed, 3 Mar 2004 16:38:34 +0000 (16:38 +0000)]
* build-packet.c (write_header2): Remove call to start old gpg partial
length mode and change all callers. (do_plaintext): Turn off partial
length encoding now that we're done writing the packet. (do_comment,
do_user_id): Try for a headerlen of 2 since that's the smallest and most
likely encoding for these packets.

* parse-packet.c (parse): Remove call to start old gpg partial length

15 years ago* options.h, g10.c (main): Add a more flexible --keyid-format option to
David Shaw [Wed, 3 Mar 2004 05:47:51 +0000 (05:47 +0000)]
* options.h, g10.c (main): Add a more flexible --keyid-format option to
replace the list-option (and eventually verify-option) show-long-keyids.
The format can be short, long, 0xshort, and 0xlong.

* keydb.h, keyid.c (keystr, keystrlen): New functions to generate a
printable keyid.

* keyedit.c (print_and_check_one_sig, show_key_with_all_names), keylist.c
(list_keyblock_print): Use new keystr() function here to print keyids.

15 years ago* packet.h, free-packet.c (free_encrypted, free_plaintext), parse-packet.c
David Shaw [Wed, 3 Mar 2004 00:09:16 +0000 (00:09 +0000)]
* packet.h, free-packet.c (free_encrypted, free_plaintext), parse-packet.c
(copy_packet, skip_packet, skip_rest, read_rest, parse_plaintext,
parse_encrypted, parse_gpg_control): Use a flag to indicate partial or
indeterminate encoding.  This is the first step in some minor surgery to
remove the old gpg partial length encoding.

15 years ago* parse-packet.c (parse): Only data-type packets are allowed to use
David Shaw [Mon, 1 Mar 2004 23:10:35 +0000 (23:10 +0000)]
* parse-packet.c (parse): Only data-type packets are allowed to use
OpenPGP partial length encoding.

15 years ago* iobuf.c (block_filter): Properly handle a partial body stream that ends
David Shaw [Mon, 1 Mar 2004 21:48:32 +0000 (21:48 +0000)]
* iobuf.c (block_filter): Properly handle a partial body stream that ends
with a 5-byte length that happens to be zero.

15 years ago* unsetenv.c: Fixed debugging typo.
David Shaw [Sat, 28 Feb 2004 20:53:08 +0000 (20:53 +0000)]
* unsetenv.c: Fixed debugging typo.

15 years ago* Don't split LDADD across two lines since some make programs
David Shaw [Sat, 28 Feb 2004 20:38:25 +0000 (20:38 +0000)]
* Don't split LDADD across two lines since some make programs
can't handle blank lines after a \ continuation.  Noted by Christoph

15 years agoPost release version number change
Werner Koch [Thu, 26 Feb 2004 18:22:20 +0000 (18:22 +0000)]
Post release version number change

15 years agoPreparing for 1.3.5 V1-3-5
Werner Koch [Thu, 26 Feb 2004 17:18:57 +0000 (17:18 +0000)]
Preparing for 1.3.5

15 years ago* gpg.sgml: Document --ask-cert-level, --max-output, and
David Shaw [Thu, 26 Feb 2004 05:08:18 +0000 (05:08 +0000)]
* gpg.sgml: Document --ask-cert-level, --max-output, and

15 years ago* gpg.sgml: Document keyserver-option http-proxy, import-option
David Shaw [Thu, 26 Feb 2004 05:04:16 +0000 (05:04 +0000)]
* gpg.sgml: Document keyserver-option http-proxy, import-option
merge-only, remove old honor-http-proxy, --merge-only, and
--emulate-md-encode-bug.  Document COLUMNS and LINES.

15 years ago* README: Update copyright.
David Shaw [Thu, 26 Feb 2004 04:40:57 +0000 (04:40 +0000)]
* README: Update copyright.

* NEWS: Note --max-output, --list-config, --min-cert-level, AIX fix, new
http-proxy keyserver-option, new LDAP server code, TLS, LDAPS, and
--show-session-key with --symmetric.

15 years ago* delkey.c (do_delete_key): Allow deleting a public key with a secret
David Shaw [Thu, 26 Feb 2004 02:03:27 +0000 (02:03 +0000)]
* delkey.c (do_delete_key): Allow deleting a public key with a secret
present if --expert is set.

* plaintext.c (handle_plaintext): Make bytecount static so it works with
multiple literal packets inside a message.

* encode.c, helptext.c (keygen.algo, keygen.algo.elg_se), keygen.c
(ask_algo), sig-check.c (do_check_messages), skclist.c (build_sk_list):
Rename "ElGamal" to "Elgamal" as that is the proper spelling nowadays.
Suggested by Jon Callas.