12010-06-14 Werner Koch <wk@g10code.com> 2 3 Release 1.1.0. 4 52010-03-09 Werner Koch <wk@g10code.com> 6 7 Release 1.1.0rc1. 8 92009-12-22 Marcus Brinkmann <marcus@g10code.de> 10 11 * configure.ac: Do not use echo -n. 12 132009-12-15 Werner Koch <wk@g10code.com> 14 15 * configure.ac: Set version number to 1.1 due to the switch to 16 the new libassuan API. 17 (NEED_LIBASSUAN_VERSION): Set to 2.0 because 1.1.0 will not be 18 released. 19 202009-11-05 Marcus Brinkmann <marcus@g10code.de> 21 22 * tests/test-dirmngr.c (start_dirmngr): Update use 23 assuan_pipe_connect. 24 252009-10-16 Marcus Brinkmann <marcus@g10code.com> 26 27 * configure.ac: Test for libassuan instead of libassuan-pth. 28 292009-09-22 Marcus Brinkmann <marcus@g10code.de> 30 31 * configure.ac (NEED_LIBASSUAN_API, NEED_LIBASSUAN_VERSION): Bump 32 to new Assuan interface (2, 1.1.0). 33 * tests/test-dirmngr.c: Update to new Assuan interface. 34 (print_assuan_error): Use gpg_strerror 35 instead of assuan_strerror. 36 (start_dirmngr): Allocate context with assuan_new before 37 connecting to server. Release on error. 38 (sendcert): Return gpg_error_t instead of int. 39 402009-08-07 Werner Koch <wk@g10code.com> 41 42 * configure.ac: Check for strtoull. 43 442009-06-18 Werner Koch <wk@g10code.com> 45 46 * configure.ac: Fix some URL hints. 47 482009-06-17 Werner Koch <wk@g10code.com> 49 50 Released 1.0.3. 51 522008-10-29 Marcus Brinkmann <marcus@g10code.de> 53 54 * tests/asschk.c (interpreter): Add missing initializer to silence 55 gcc -W warning. 56 (expand_line): Add explicit cast for same reason. 57 582008-10-21 Werner Koch <wk@g10code.com> 59 60 * configure.ac: Require libgcrypt 1.4. Remove test for 61 gcry_md_debug. 62 632008-07-31 Werner Koch <wk@g10code.com> 64 65 * tests/Makefile.am (LDADD): Add LIBINTL and LIBICONV. 66 67 Release 1.0.2. 68 69 * config.sub, config.guess: Update to version 2007-11-19. 70 * mkinstalldirs, depcomp, compile, doc/mdate-sh, doc/texinfo.tex 71 * INSTALL, missing, install-sh: Update to version from 72 automake 1.10.1. 73 * configure.ac: Require libgcrypt 1.2.2 and libskan 1.0.2 becuase 74 gnupg has the same requirement. 75 762008-04-01 Werner Koch <wk@g10code.com> 77 78 * configure.ac (AC_INIT): Fix quoting. 79 802008-02-21 Werner Koch <wk@g10code.com> 81 82 * configure.ac: Check for gcry_md_debug. 83 842008-02-13 Werner Koch <wk@g10code.com> 85 86 * configure.ac: Add back checks for funopen and funopencookie 87 because the logging code in jnlib/ still makes use of them. 88 892007-12-17 Werner Koch <wk@g10code.com> 90 91 * configure.ac: Test for ldap_start_tls_sA. 92 (AH_BOTTOM): Add treatment for HAVE_LDAP_START_TLS_SA. 93 942007-12-13 Werner Koch <wk@g10code.com> 95 96 * doc/examples/trusted-certs/: Add new S-Trust root certs. 97 * doc/examples/extra-certs/: Add new S-TRust intermediate certs 98 992007-12-12 Werner Koch <wk@g10code.com> 100 101 * doc/examples/dirmngr.conf: Removed cruft from the editor. 102 Marcus, what's up with your ternminal settings? 103 1042007-11-27 Marcus Brinkmann <marcus@g10code.de> 105 106 * doc/examples/dirmngr.conf: Fix signer file path. 107 1082007-10-16 Marcus Brinkmann <marcus@g10code.de> 109 110 * doc/examples/Makefile.am (dist_doc_example_DATA): Rename to ... 111 (nobase_dist_doc_example_DATA): ... this, to preserve subdirectories. 112 1132007-10-08 Werner Koch <wk@g10code.com> 114 115 * configure.ac: Require libassuan 1.0.4. 116 1172007-09-04 Werner Koch <wk@g10code.com> 118 119 * configure.ac: Add test for locale.h. 120 1212007-08-23 Werner Koch <wk@g10code.com> 122 123 * doc/Makefile.am (SUBDIRS): New. 124 * doc/examples/: New. 125 1262007-08-16 Werner Koch <wk@g10code.com> 127 128 Release 1.0.1. 129 130 * configure.ac: Do not use -Wformat-nonliteral. 131 132 * tests/test-dirmngr.c (fname): Make const. 133 1342007-08-14 Werner Koch <wk@g10code.com> 135 136 * doc/yat2m.c: Updated from current GnuPG SVN. 137 1382007-08-12 Werner Koch <wk@g10code.com> 139 140 * doc/Makefile.am (yat2m): Change the way this helper is build. 141 * configure.ac (CC_FOR_BUILD): New. 142 143 * autogen.sh: Update script to modern version and add --build-w32 144 option. 145 1462007-08-09 Werner Koch <wk@g10code.com> 147 148 * doc/dirmngr.texi (Dirmngr Options): Describe the new format of 149 --ocsp-signer. 150 (Dirmngr ISVALID): Rework. 151 1522007-08-07 Werner Koch <wk@g10code.com> 153 154 * configure.ac (COPYRIGHT_YEAR_NAME): Set to 2007. 155 156 * Makefile.am (dist-hook, stowinstall): New. 157 (AUTOMAKE_OPTIONS): Do not create gzip tarballs. 158 1592007-07-26 Marcus Brinkmann <marcus@g10code.de> 160 161 * Makefile.am (tests): New variable. 162 (SUBDIRS): Replace tests with $(tests). 163 * tests/test-dirmngr.c: Include <config.h> and undefine 164 _ASSUAN_ONLY_GPG_ERRORS. 165 166 * acinclude.m4 (GNUPG_PTH_VERSION_CHECK): Remove macro. 167 (GNUPG_CHECK_VA_COPY): Add macro. 168 * configure.ac: Call AM_ICONV and add vasprintf as a replacement 169 function (checking GNUPG_CHECK_VA_COPY if necessary). 170 1712007-07-20 Marcus Brinkmann <marcus@g10code.de> 172 173 * acinclude.m4 (GNUPG_FUNC_MKDIR_TAKES_ONE_ARG): New. 174 * configure.ac: Call AM_PROG_CC_C_O and 175 GNUPG_FUNC_MKDIR_TAKES_ONE_ARG. 176 (mmap_needed): New variable. Only require mmap if 177 this is set to "yes". Set it to "no" for W32. 178 (AH_BOTTOM): Add HTTP_USE_ESTREAM, _ESTREAM_PRINTF_MALLOC, 179 _ESTREAM_PRINTF_FREE and _ESTREAM_PRINTF_EXTRA_INCLUDE. 180 (AC_CHECK_FUNCS): Remove fopencookie and funopen. 181 (have_w32_system): New variable. 182 (HAVE_W32_SYSTEM, HAVE_DOSISH_SYSTEM): New defines. 183 184 * jnlib: Update to current gnupg version. 185 1862006-11-29 Werner Koch <wk@g10code.com> 187 188 Released 1.0.0. 189 190 * configure.ac: Use SVN magic for version numbers. 191 (AM_GNU_GETTEXT): Use external flag. 192 (COPYRIGHT_YEAR_NAME): New. 193 * intl/: Removed directory 194 * Makefile.am (SUBDIRS): Removed intl. 195 1962006-11-17 Werner Koch <wk@g10code.com> 197 198 Released 0.9.7. 199 200 * Makefile.am (EXTRA_DIST): Do not anymore distribute README-alpha 201 202 * configure.ac (AM_PATH_LIBASSUAN_PTH): New test. 203 (GNUPG_PATH_PTH): Use macro from GnuPG to test for Pth. 204 2052006-11-17 gettextize <bug-gnu-gettext@gnu.org> 206 207 * configure.ac (AC_CONFIG_FILES): Add intl/Makefile. 208 2092006-11-17 gettextize <bug-gnu-gettext@gnu.org> 210 211 * Makefile.am (SUBDIRS): Remove intl. 212 * configure.ac (AC_CONFIG_FILES): Remove intl/Makefile. 213 (AM_GNU_GETTEXT_VERSION): Bump to 0.15. 214 2152006-11-16 Werner Koch <wk@g10code.com> 216 217 * tests/test-dirmngr.c (start_dirmngr): Removed unneeded cast. 218 219 * autogen.sh: Add convenience option --build-amd64. 220 2212006-10-16 Werner Koch <wk@g10code.com> 222 223 * doc/dirmngr.texi (Dirmngr Options): Add a note that passwords 224 are utf-8 encoded. 225 2262006-09-11 Werner Koch <wk@g10code.com> 227 228 * configure.ac: Require libassuan 0.9.0. 229 (AH_BOTTOM): New. Move HAVE_JNLIB_LOGGING into it 230 and define _ASSUAN_ONLY_GPG_ERRORS. 231 2322006-09-04 Werner Koch <wk@g10code.com> 233 234 Released 0.9.6. 235 236 * doc/Makefile.am (dirmngr_TEXINFOS): Do not distribute the fdl.texi. 237 2382006-08-31 Werner Koch <wk@g10code.com> 239 240 * configure.ac: Require ksba 1.0.0 and added API check for it. 241 2422006-06-27 Werner Koch <wk@g10code.com> 243 244 Released 0.9.5. 245 2462006-06-23 Werner Koch <wk@g10code.com> 247 248 * doc/internals.texi: new. 249 2502006-06-08 Marcus Brinkmann <marcus@g10code.de> 251 252 * configure.ac (PTH_LIBS): Add --all to pth-config invocation. 253 2542006-05-16 Werner Koch <wk@g10code.com> 255 256 Released 0.9.4. 257 258 * config.sub, config.guess: Updated. 259 2602006-05-15 Werner Koch <wk@g10code.com> 261 262 * configure.ac: Use -Wno-pointer-sign if available. 263 2642005-10-26 Werner Koch <wk@g10code.com> 265 266 Released 0.9.3. 267 2682005-10-20 Marcus Brinkmann <marcus@g10code.de> 269 270 * doc/dirmngr.texi: Fix direntry. Thanks to Rex Dieter. 271 2722005-09-28 Marcus Brinkmann <marcus@g10code.de> 273 274 * configure.ac: Change -Wformat-noliteral to -Wformat-nonliteral. 275 2762005-04-21 Werner Koch <wk@g10code.com> 277 278 Released 0.9.2. 279 280 * Makefile.am: Also create a bzip2 tarball. 281 2822005-04-18 Werner Koch <wk@g10code.com> 283 284 * configure.ac: Require libksba 0.9.11. 285 2862005-02-08 Werner Koch <wk@g10code.com> 287 288 Released 0.9.1. 289 290 * jnlib/: Updated from GnuPG. 291 2922005-01-21 Werner Koch <wk@g10code.com> 293 294 * doc/dirmngr.texi (Dirmngr Options): Typo fix; s/URL/CRL. 295 2962005-01-04 Werner Koch <wk@g10code.com> 297 298 * configure.ac (PTH_LIBS): Die if Pth is not available. There is 299 not way to build it anymore without Pth support. 300 301 * doc/dirmngr.texi: Cleaned up. Use @copying. 302 3032005-01-03 Werner Koch <wk@g10code.com> 304 305 * tests/percent-escape.c: New. 306 * tests/Makefile.am (noinst_PROGRAMS): Add it. 307 3082004-12-18 Werner Koch <wk@g10code.com> 309 310 * configure.ac: Include /usr/local for FreeBSD. 311 3122004-12-17 Werner Koch <wk@g10code.com> 313 314 Released 0.9.0. 315 316 * acinclude.m4: Updated for automake 1.9. Removed the LDAP test 317 and replaced it by the one from gnupg 1.4. 318 3192004-12-13 Werner Koch <wk@g10code.com> 320 321 * configure.ac (AC_CHECK_TYPES): Check for sigset_t. 322 3232004-12-03 Werner Koch <wk@g10code.com> 324 325 * configure.ac (canonicalize_file_name): Check for it. 326 3272004-11-25 Werner Koch <wk@g10code.com> 328 329 * configure.ac: Reverted to require autoconf/make 2.57/1.7.6 as 330 they still seem to work alhough I am using newer versions. 331 3322004-11-19 Werner Koch <wk@g10code.com> 333 334 * configure.ac: Require libassuan 0.6.8. 335 3362004-11-15 Werner Koch <wk@g10code.com> 337 338 * tests/show-multi.c: New. 339 * tests/Makefile.am (noinst_PROGRAMS): Added. 340 3412004-11-08 Werner Koch <wk@g10code.com> 342 343 * acinclude.m4 (GNUPG_PTH_VERSION_CHECK): New. Taken from gnupg. 344 * configure.ac: Check for GNU Pth. 345 * doc/dirmngr.texi (Dirmngr Client): Added. 346 3472004-10-04 Werner Koch <wk@g10code.com> 348 349 * src/dirmngr.c: Changed an help entry description. 350 3512004-09-30 Werner Koch <wk@g10code.com> 352 353 * src/dirmngr.c (i18n_init): Always use LC_ALL. 354 3552004-09-28 Werner Koch <wk@g10code.com> 356 357 Released 0.5.6. 358 359 * config.guess, config.sub: Updated. 360 3612004-06-21 Werner Koch <wk@g10code.com> 362 363 * src/crlfetch.c (crl_fetch): Bad hack to use the right attribute. 364 3652004-05-13 Werner Koch <wk@gnupg.org> 366 367 Released 0.5.5. 368 369 * src/ldap.c (start_cert_fetch_ldap, start_cert_fetch_ldap): More 370 detailed error messages. 371 372 * src/crlcache.c (update_dir): Handle i-records properly. 373 3742004-04-29 Werner Koch <wk@gnupg.org> 375 376 Released 0.5.4. 377 378 * src/crlcache.h (crl_cache_result_t): Add CRL_CACHE_CANTUSE. 379 * src/server.c (cmd_isvalid): Handle it here. 380 * src/crlcache.c (crl_cache_isvalid): Issue this code if the CRL 381 cant be used. 382 (open_dir): Parse new fields 8,9 and 10 as well as the invalid flag. 383 (write_dir_line_crl): Write new fields. 384 (get_crl_number, get_auth_key_id): New. 385 (crl_cache_insert): Fill new fields. Mark the entry invalid if 386 the CRL is too old after an update or an unknown critical 387 extension was seen. 388 (list_one_crl_entry): Print the new fields. 389 3902004-04-28 Werner Koch <wk@gnupg.org> 391 392 * configure.ac: Requires libksba 0.9.6. 393 394 * src/dirmngr.c: New option --ocsp-signer. 395 * src/dirmngr.h (opt): Renamed member OCSP_REPONDERS to 396 OCSP_RESPONDER and made ist a simple string. Add OCSP_SIGNER. 397 * src/ocsp.c (ocsp_isvalid): Changed it accordingly. 398 (ocsp_isvalid): Pass the ocsp_signer to check_signature. 399 (check_signature): New arg SIGNER_FPR. Use it to retrieve the 400 certificate. Factored out common code to .. 401 (check_signature_core): .. New. 402 4032004-04-27 Werner Koch <wk@gnupg.org> 404 405 * src/server.c (start_command_handler): Keep track of the first 406 connection. 407 (dirmngr_tick): New. 408 * src/ldap.c (attr_fetch_fun_reader): Call it from time to time. 409 4102004-04-23 Werner Koch <wk@gnupg.org> 411 412 * src/dirmngr.c (main): Removed the add-servers option from the 413 gpgconf list. It is not really useful. 414 4152004-04-02 Thomas Schwinge <schwinge@nic-nac-project.de> 416 417 * autogen.sh: Added ACLOCAL_FLAGS. 418 4192004-04-13 Werner Koch <wk@gnupg.org> 420 421 * src/crlcache.c (update_dir): Do not double close FPOUT. 422 4232004-04-09 Werner Koch <wk@gnupg.org> 424 425 * src/cdblib.c (cdb_make_start): Wipeout the entire buffer to 426 shutup valgrind. 427 (ewrite): Fixed writing bad data on EINTR. 428 429 * src/ldap.c (get_attr_from_result_ldap): Fixed bad copy and 430 terminate of a string. 431 432 * src/crlfetch.c (crl_fetch): Fixed freeing of VALUE on error. 433 4342004-04-07 Werner Koch <wk@gnupg.org> 435 436 * src/dirmngr.h (server_control_s): Add member force_crl_refresh. 437 * src/server.c (option_handler): New. 438 (start_command_handler): Register option handler 439 * src/crlcache.c (crl_cache_isvalid): Add arg FORCE_REFRESH. 440 (crl_cache_insert): Record last refresh in memory. 441 442 * src/server.c (inquire_cert_and_load_crl): Renamed from 443 inquire_cert. 444 4452004-04-06 Werner Koch <wk@gnupg.org> 446 447 Released 0.5.3 448 449 * doc/dirmngr.texi: Updated. 450 * doc/texinfo.tex: Updated. 451 4522004-04-05 Werner Koch <wk@gnupg.org> 453 454 * src/ocsp.c (ocsp_isvalid): Check THIS_UPDATE. 455 456 * src/misc.c (add_isotime): New. 457 (date2jd, jd2date, days_per_month, days_per_year): New. Taken from 458 my ancient (1988) code used in Wedit (time2.c). 459 4602004-04-02 Werner Koch <wk@gnupg.org> 461 462 * autogen.sh: Check gettext version. 463 * configure.ac: Add AM_GNU_GETTEXT. 464 4652004-04-02 gettextize <bug-gnu-gettext@gnu.org> 466 467 * Makefile.am (SUBDIRS): Add intl. 468 (EXTRA_DIST): Add config.rpath. 469 * configure.ac (AC_CONFIG_FILES): Add intl/Makefile, 470 4712004-04-02 Werner Koch <wk@gnupg.org> 472 473 Add i18n at most places. 474 475 * src/dirmngr.c (i18n_init): New. 476 (main): Call it. 477 * src/dirmngr.h: Add i18n stuff. 478 4792004-04-01 Werner Koch <wk@gnupg.org> 480 481 * src/misc.c (get_fingerprint_hexstring): New. 482 483 * src/server.c (dirmngr_status): New. 484 4852004-03-26 Werner Koch <wk@gnupg.org> 486 487 * configure.ac: Add AC_SYS_LARGEFILE. 488 489 * doc/dirmngr.texi: Changed the license to the GPL as per message 490 by Mathhias Kalle Dalheimer of Klaralvdalens-Datakonsult dated 491 Jan 7, 2004. 492 * doc/fdl.texi: Removed. 493 4942004-03-25 Werner Koch <wk@gnupg.org> 495 496 * src/dirmngr.c (main): New command --fetch-crl. 497 4982004-03-23 Werner Koch <wk@gnupg.org> 499 500 * src/dirmngr.c: New option --allow-ocsp. 501 * src/server.c (cmd_isvalid): Make use of allow_ocsp. 502 5032004-03-17 Werner Koch <wk@gnupg.org> 504 505 * src/dirmngr.c (main) <gpgconf>: Fixed default value quoting. 506 5072004-03-16 Werner Koch <wk@gnupg.org> 508 509 * src/dirmngr.c (main): Add ocsp-responder to the gpgconf list. 510 Add option --debug-level. 511 (set_debug): New. 512 5132004-03-15 Werner Koch <wk@gnupg.org> 514 515 * src/misc.c (canon_sexp_to_grcy): New. 516 5172004-03-12 Werner Koch <wk@gnupg.org> 518 519 * src/crlfetch.c (crl_fetch): Hack to substitute http for https. 520 5212004-03-10 Werner Koch <wk@gnupg.org> 522 523 * src/dirmngr.c (parse_ldapserver_file): Don't skip the entire 524 file on errors. 525 5262004-03-09 Werner Koch <wk@gnupg.org> 527 528 * src/dirmngr.c (my_ksba_hash_buffer): New. 529 (main): Initialize the internal libksba hashing. 530 531 * src/server.c (get_issuer_cert_local): Renamed to ... 532 (get_cert_local): ... this. Changed all callers. Allow NULL for 533 ISSUER to return the current target cert. 534 (get_issuing_cert_local): New. 535 (do_get_cert_local): Moved common code to here. 536 5372004-03-06 Werner Koch <wk@gnupg.org> 538 539 Released 0.5.2. 540 541 * configure.ac: Fixed last change to check the API version of 542 libgcrypt. 543 5442004-03-05 Werner Koch <wk@gnupg.org> 545 546 * configure.ac: Also check the SONAME of libgcrypt. 547 5482004-03-03 Werner Koch <wk@gnupg.org> 549 550 * src/dirmngr.c: New option --ocsp-responder. 551 * src/dirmngr.h (opt): Add member OCSP_RESPONDERS. 552 5532004-02-26 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 554 555 * src/server.c (start_command_handler): Corrected typo and made 556 dirmngr output it's version in the greeting message. 557 5582004-02-24 Marcus Brinkmann <marcus@g10code.de> 559 560 * src/dirmngr.c (DEFAULT_ADD_SERVERS): Removed. If this were 561 true, there'd be no way to disable it. 562 (main): Dump options in new gpgconf format. 563 5642004-02-11 Werner Koch <wk@gnupg.org> 565 566 * autogen.sh (check_version): Removed bashism and simplified. 567 5682004-02-06 Moritz Schulte <mo@g10code.com> 569 570 * src/crlfetch.c (crl_fetch_default): Do not dereference VALUE, 571 when checking for non-zero. 572 5732004-02-01 Marcus Brinkmann <marcus@g10code.de> 574 575 * src/dirmngr.c (DEFAULT_ADD_SERVERS, DEFAULT_MAX_REPLIES) 576 (DEFAULT_LDAP_TIMEOUT): New macros. 577 (main): Use them. 578 (enum cmd_and_opt_values): New command aGPGConfList. 579 (main): Add handler here. 580 5812004-01-17 Werner Koch <wk@gnupg.org> 582 583 * configure.ac: Added AC_CHECK_FUNCS tests again, because the 584 other test occurrences belong to the jnlib tests block. 585 5862004-01-15 Moritz Schulte <mo@g10code.com> 587 588 * configure.ac: Fixed funopen replacement mechanism; removed 589 unnecessary AC_CHECK_FUNCS calls. 590 5912004-01-14 Werner Koch <wk@gnupg.org> 592 593 * src/crlcache.c (list_one_crl_entry): Don't use putchar. 594 595 * src/server.c (cmd_listcrls): New. 596 5972003-12-23 Werner Koch <wk@gnupg.org> 598 599 Released 0.5.1. 600 6012003-12-17 Werner Koch <wk@gnupg.org> 602 603 * configure.ac (CFLAGS): Add -Wformat-noliteral in gcc + 604 maintainer mode. 605 (NEED_LIBASSUAN_VERSION): Bump up to 0.6.2. 606 6072003-12-16 Werner Koch <wk@gnupg.org> 608 609 * configure.ac: Update the tests for jnlib. 610 * src/dirmngr.c (main): Ignore SIGPIPE in server mode. 611 6122003-12-12 Werner Koch <wk@gnupg.org> 613 614 * src/crlcache.c (hash_dbfile): Also hash version info of the 615 cache file format. 616 617 * src/Makefile.am (dirmngr_SOURCES): Add http.h. 618 619 * configure.ac: Removed checking for DB2. Add checking for mmap. 620 * src/cdb.h, src/cdblib.h: New. Add a few comments from the 621 original man page and fixed typos. 622 * src/cdblib.c (cdb_findinit, cdb_findnext): Modified to allow 623 walking over all entries. 624 * src/crlcache.h: Removed DB2/4 cruft. 625 (release_one_cache_entry, lock_db_file, crl_parse_insert) 626 (crl_cache_insert, crl_cache_isvalid, list_one_crl_entry): Use the 627 new CDB interface. 628 629 * src/dirmngr.c: Beautified the help messages. 630 (wrong_args): New. 631 (main): new option --force. Revamped the command handling code. 632 Allow to pass multiple CRLS as well as stdin to --local-crl. 633 * src/crlcache.c (crl_cache_insert): Make --force work. 634 6352003-12-11 Werner Koch <wk@gnupg.org> 636 637 * src/crlfetch.c (crl_fetch): Enhanced to allow fetching binary 638 data using HTTP. 639 * src/http.c, src/http.h: Replaced by the code from gnupg 1.3 and 640 modified acording to our needs. 641 (read_line): New. Based on the code from GnuPG's iobuf_read_line. 642 * configure.ac: Check for getaddrinfo. 643 644 * src/dirmngr.c (parse_ldapserver_file): Close the stream. 645 (main): Free ldapfile. 646 647 * src/ocsp.c, src/ocsp.h: New. Albeit not functionality. 648 649 * src/server.c (inquire_cert): Catch EOF when reading dist points. 650 651 * src/crlcache.c (hash_dbfile, check_dbfile): New. 652 (lock_db_file, crl_cache_insert): Use them here to detect 653 corrupted CRL files. 654 (open_dir): Read the new dbfile hash field. 655 656 * src/crlfetch.c (crl_fetch, crl_fetch_default): Changed to retrun 657 a stream. 658 (fun_reader, fun_closer, setup_funopen): New. 659 * src/server.c (inquire_cert): Changed to use the new stream interface 660 of crlfetch.c. 661 6622003-12-10 Werner Koch <wk@gnupg.org> 663 664 * src/funopen.c: New. 665 * configure.ac (funopen): Add test. 666 * src/Makefile.am (dirmngr_LDADD): Add LIBOBJS. 667 668 * src/crlcache.c (next_line_from_file): Remove the limit on the 669 line length. 670 (crl_cache_new): Removed. 671 (open_dbcontent): New. 672 (crl_cache_init): Use it here. 673 (crl_cache_flush): The DB content fie is now in the cache 674 directory, so we can simplify it. 675 (make_db_file_name, lock_db_file, unlock_db_file): New. 676 (release_cache): Close the cached DB files. 677 (crl_cache_isvalid): Make use of the new lock_db_file. 678 (crl_cache_insert): Changed to take a stream as argument. 679 (crl_parse_insert): Rewritten to use a temporary DB and to avoid 680 using up large amounts of memory. 681 (db_entry_new): Removed. 682 (release_cache,release_one_cache_entry): Splitted up. 683 (find_entry): Take care of the new deleted flag. 684 (crl_cache_load): Simplified becuase we can now pass a FP to the 685 insert code. 686 (save_contents): Removed. 687 (update_dir): New. 688 (open_dbcontent_file): Renamed to open_dir_file. 689 (check_dbcontent_version): Renamed to check_dir_version. 690 (open_dbcontent): Renamed to open_dir. 691 692 * src/dirmngr.c: New option --faked-system-time. 693 * src/misc.c (faked_time_p, set_time, get_time): New. Taken from GnuPG. 694 (check_isotime): New. 695 (unpercent_string): New. 696 6972003-12-09 Werner Koch <wk@gnupg.org> 698 699 * src/crlcache.h (DBDIR,DBCONTENTFILE): Changed value. 700 701 * autogen.sh: Reworked. 702 * README.CVS: New. 703 * configure.ac: Added min_automake_version. 704 7052003-12-03 Werner Koch <wk@gnupg.org> 706 707 * src/server.c (cmd_lookup): Send an END line after each 708 certificate. 709 7102003-11-28 Werner Koch <wk@gnupg.org> 711 712 * src/Makefile.am (dirmngr_LDADD): Remove DB_LIBS 713 because it never got defined and -ldb{2,4} is implictly set 714 by the AC_CHECK_LIB test in configure. 715 716 * src/crlcache.c (mydbopen): DB4 needs an extra parameter; I 717 wonder who ever tested DB4 support. Add an error statement in 718 case no DB support is configured. 719 720 * tests/Makefile.am: Don't use AM_CPPFLAGS but AM_CFLAGS, replaced 721 variables by configure templates. 722 * src/Makefile.am: Ditto. 723 7242003-11-19 Werner Koch <wk@gnupg.org> 725 726 * src/crlcache.c (list_one_crl_entry): Define X to nothing for non 727 DB4 systems. Thanks to Luca M. G. Centamore. 728 7292003-11-17 Werner Koch <wk@gnupg.org> 730 731 Released 0.5.0 732 733 * src/crlcache.c (crl_cache_new): Fixed eof detection. 734 735 * src/server.c (cmd_loadcrl): Do the unescaping. 736 737 * doc/dirmngr.texi: Added a history section for this modified 738 version. 739 7402003-11-14 Werner Koch <wk@gnupg.org> 741 742 * tests/asschk.c: New. Taken from GnuPG. 743 * tests/Makefile.am: Added asschk. 744 7452003-11-13 Werner Koch <wk@gnupg.org> 746 747 * src/ldap.c (fetch_next_cert_ldap): Get the pattern switching 748 right. 749 750 * tests/test-dirmngr.c: Replaced a couple of deprecated types. 751 752 * configure.ac (GPG_ERR_SOURCE_DEFAULT): Added. 753 (fopencookie, asprintf): Removed unneeded test. 754 (PRINTABLE_OS_NAME): Updated the test from gnupg. 755 (CFLAGS): Do full warnings only in maintainer mode. Add flag 756 --enable gcc-warnings to override it and to enable even more 757 warnings. 758 * acinclude.m4: Removed the libgcrypt test. 759 760 * src/ldap.c (get_attr_from_result_ldap): Simplified the binary 761 hack and return a proper gpg error. 762 (attr_fetch_ldap_internal): Changed error handling. 763 (attr_fetch_ldap): Reworked. Return configuration error if no 764 servers are configured. 765 (url_fetch_ldap, add_server_to_servers) 766 (url_fetch_ldap_internal): Reworked. 767 (struct cert_fetch_context_s): New to get rid of a global state. 768 (start_cert_fetch_ldap): Allocate context and do a bind with a 769 timeout. Parse pattern. 770 (end_cert_fetch_ldap): Take context and don't return anything. 771 (find_next_pattern): Removed. 772 (parse_one_pattern): Redone. 773 (get_cert_ldap): Redone. 774 * src/server.c (cmd_lookup): Changed for changed fetch functions. 775 776 * doc/dirmngr.texi: Reworked a bit to get rid of tex errors. 777 778 * configure.ac: Enable makeinfo test. 779 780 * src/crlcache.c (crl_cache_insert): Fixed for latest KSBA API 781 changes. 782 * tests/test-dirmngr.c (main): Ditto. Also added some more error 783 checking. 784 7852003-11-11 Werner Koch <wk@gnupg.org> 786 787 * src/cert.c (hashify_data, hexify_data, serial_hex) 788 (serial_to_buffer): Moved all to ... 789 * src/misc.c: .. here. 790 * src/Makefile.am (cert.c, cert.h): Removed. 791 * cert.c, cert.h: Removed. 792 793 * m4/: New. 794 * configure.ac, Makefile.am: Include m4 directory support, updated 795 required library versions. 796 797 * src/cert.c (make_cert): Removed. 798 799 * src/ldap.c (fetch_next_cert_ldap): Return a gpg style error. 800 801 * src/misc.h (copy_time): New. 802 * src/misc.c (get_isotime): New. 803 (iso_string2time, iso_time2string): Removed. 804 (unhexify): New. 805 806 * src/crlcache.h (DBCONTENTSVERSION): Bumbed to 0.6. 807 * src/crlcache.c (finish_sig_check): New. Factored out from 808 crl_parse_insert and entirely redone. 809 (do_encode_md): Removed. 810 (print_time): Removed 811 (crl_cache_isvalid): Reworked. 812 8132003-11-10 Werner Koch <wk@gnupg.org> 814 815 * src/crlcache.c (make_db_val, parse_db_val): Removed. 816 817 * src/cert.c (serial_to_buffer): New. 818 819 * src/server.c (get_issuer_cert_local): Rewritten. 820 821 * src/crlcache.c (crl_parse_insert): Rewritten. Takes now a CTRL 822 instead of the Assuan context. Changed caller accordingly. 823 (get_issuer_cert): Cleaned up. 824 825 * src/crlfetch.c (crl_fetch): Changed VALUE to unsigned char* for 826 documentation reasons. Make sure that VALUE is released on error. 827 (crl_fetch_default, ca_cert_fetch): Ditto. 828 829 * src/crlcache.c (release_cache): New. 830 (crl_cache_deinit): Use it here. 831 (crl_cache_flush): Redone. 832 (save_contents): Redone. 833 (crl_cache_list, list_one_crl_entry): Print error messages. 834 8352003-11-06 Werner Koch <wk@gnupg.org> 836 837 * src/crlcache.c (create_directory_if_needed, cleanup_cache_dir): 838 New. Factored out from crl_cache_new and mostly rewritten. 839 (crl_cache_new): Rewritten. 840 (next_line_from_file): New. 841 (find_entry): Cleaned up. 842 (crl_cache_deinit): Cleaned up. 843 844 * src/dirmngr.c (dirmngr_init_default_ctrl): New stub. 845 * src/dirmngr.h (ctrl_t): New. 846 (DBG_ASSUAN,...): Added the usual debug test macros. 847 * src/server.c: Removed the GET_PTR cruft, replaced it by ctrl_t. 848 Removed the recursion flag. 849 (get_issuer_cert_local): Allow for arbitary large 850 certificates. 4096 is definitely too small. 851 (inquire_cert): Ditto. 852 (start_command_handler): Set a hello line and call the default 853 init function. 854 (cmd_isvalid): Rewritten. 855 (inquire_cert): Removed unused arg LINE. General cleanup. 856 (map_assuan_err,map_to_assuan_status): New. Taken from gnupg 1.9. 857 (cmd_lookup): Rewritten. 858 (cmd_loadcrl): Started to rewrite it. 859 8602003-10-29 Werner Koch <wk@gnupg.org> 861 862 * src/dirmngr.c (parse_ldapserver_file): Entirely rewritten. 863 (cleanup): New. 864 (main): Cleaned up. 865 8662003-10-28 Werner Koch <wk@gnupg.org> 867 868 * src/dirmngr.h: Renamed dirmngr_opt to opt. 869 870 * src/dirmngr.c (parse_ldapserver_file, free_ldapservers_list): 871 Moved with this file. Cleaned up. Replaced too deep recursion in 872 the free function. 873 8742003-10-21 Werner Koch <wk@gnupg.org> 875 876 Changed all occurrences of assuan.h to use use the system provided 877 one. 878 * src/server.c (register_commands): Adjusted for Assuan API change. 879 8802003-08-14 Werner Koch <wk@gnupg.org> 881 882 * src/Makefile.am: s/LIBKSBA_/KSBA_/. Changed for external Assuan lib. 883 * tests/Makefile.am: Ditto. 884 885 * configure.ac: Partly restructured, add standard checks for 886 required libraries, removed included libassuan. 887 * Makefile.am (SUBDIRS): Removed assuan becuase we now use the 888 libassuan package. 889 890 * src/dirmngr.c (main): Properly initialize Libgcrypt and libksba. 891 8922003-08-13 Werner Koch <wk@gnupg.org> 893 894 * src/server.c (get_issuer_cert_local): Print error using 895 assuan_strerror. 896 897 * src/crlcache.c (do_encode_md, start_sig_check): Adjust for 898 changed Libgcrypt API. 899 9002003-06-19 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 901 902 * configure.ac: Upped version to 0.4.7-cvs. 903 9042003-06-19 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 905 906 * configure.ac: Release 0.4.6. 907 9082003-06-17 Bernhard Reiter <bernhard@intevation.de> 909 910 * src/ldap.c (url_fetch_ldap()): 911 try other default servers when an url with hostname failed 912 * AUTHORS: added Steffen and Werner 913 * THANKS: Thanked people in the ChangeLog and the Ägypten-Team 914 915 9162003-06-16 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 917 918 * configure.ac, src/crlcache.h, src/crlcache.c: Added db4 support. 919 * src/Makefile.am, tests/Makefile.am: Removed automake warning. 920 * tests/test-dirmngr.c: Removed a warning. 921 9222003-05-12 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 923 924 * doc/Makefile.am: Added dirmngr.ops to DISTCLEANFILES. 925 * ChangeLog, doc/ChangeLog, src/ChangeLog: Merged dirmngr ChangeLogs 926 into one toplevel file. 927 * acinclude.m4, configure.ac: Renamed PFX to PATH for consistency. 928 9292003-05-12 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 930 931 * src/ldap.c: Fixed end-of-certificates-list indication. 932 9332003-05-08 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 934 935 * src/server.c: Fixed iteration over server list 936 9372003-02-23 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 938 939 * src/crlcache.h, src/crlcache.c, src/dirmngr.c: Implemented --flush command. 940 9412003-02-07 Marcus Brinkmann <marcus@g10code.de> 942 943 * configure.ac: Release 0.4.4. 944 9452003-02-05 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 946 947 * src/ldap.c: Try harder with and without ";binary" in the 948 attribute name when fetching certificates. 949 * src/ldap.c, src/server.c: Support multiple userCertificate attributes 950 per entry. 951 9522003-02-04 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 953 954 * src/ldap.c: Include the sn attribute in the search filter. 955 Better log messages. 956 9572002-11-20 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 958 959 * Doc updates (fixes #1373) 960 * Fix for #1419 (crash in free_ldapservers_list()) 961 * Fix for #1375. Dirmngr now asks back with an INQUIRE SENDCERT before 962 querying the LDAP servers for an issuer certificate to validate a CRL 963 9642002-11-12 Werner Koch <wk@gnupg.org> 965 966 * config.sub, config.guess: Updated from ftp.gnu.org/gnu/config 967 to version 2002-11-08. 968 9692002-11-12 Werner Koch <wk@gnupg.org> 970 971 * dirmngr.c (main) <load_crl_filename>: Better pass NULL instead 972 of an unitialized Assuan context. Let's hope that the other 973 functions can cope with this. 974 9752002-10-25 Bernhard Reiter <bernhard@intevation.de> 976 977 * src/ldap.c (get_attr_from_result_ldap()): 978 added value extraction retry for CRLs and Certs without ";binary" 979 * changed version number to reflect cvs status to "0.4.3-cvs" 980 9812002-08-21 Werner Koch <wk@gnupg.org> 982 983 * dirmngr.c (main): Changed default homedir to .gnupg. 984 9852002-08-07 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 986 987 * Added configure check to examine whether db2 cursor() uses 3 or 988 4 parameters. 989 9902002-07-31 Werner Koch <wk@gnupg.org> 991 992 * doc/dirmngr.texi: Fixed the structure and added menu entries 993 for the other nodes. 994 9952002-07-30 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 996 997 * Added doc dir and first steps towards manual. 998 9992002-07-29 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1000 1001 * Got rid of the default server for CRL lookup. We now use the 1002 same list of servers that we use for cert. lookup. 1003 10042002-07-29 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1005 1006 * New option --add-servers to allow dirmngr to add LDAP servers 1007 found in CRL distribution points to the list of servers it 1008 searches. NOTE: The added servers are only active in the currently 1009 running dirmngr -- the info isn't written to persistens storage. 1010 10112002-07-26 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1012 1013 * Default LDAP timeout is 100 seconds now. 1014 1015 * Use DB2 instead of DB1. Check for libresolv, fixed bug when 1016 libldap was found in the default search path. 1017 10182002-07-22 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1019 1020 * Implemented --load-crl <filename> option. Also available as 1021 LOADCRL assuan command when in server mode. 1022 10232002-07-22 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1024 1025 * Implemented new option --ldaptimeout to specify the number of seconds to 1026 wait for an LDAP request before timeout. 1027 1028 * Added --list-crls option to print the contents of the CRL cache 1029 * Added some items to the dbcontents file to make printout nicer 1030 and updated it's version number 1031 10322002-07-02 Werner Koch <wk@gnupg.org> 1033 1034 * crlcache.c (crl_parse_insert): Fixed log_debug format string. 1035 10362002-07-02 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1037 1038 * configure.ac: Use DB->get() return value correctly. 1039 10402002-06-28 Werner Koch <wk@gnupg.org> 1041 1042 * crlcache.c (crl_parse_insert): Keep track of newly allocated 1043 ENTRY so that we don't free existing errors after a bad signature. 1044 1045 * dirmngr.h: Include prototype for start_command_handler. 1046 1047 * crlfetch.c, crlcache.c, http.c, cert.c, ldap.c: Include 1048 config.h. 1049 1050 * crlcache.c (crl_parse_insert): Fixed format type specifiers for 1051 time_t variables in log_debug. 1052 1053 * error.h: Use log_debug instead of dirmngr_debug. Changed all 1054 callers. 1055 * Makefile.am (dirmngr_SOURCES): Removed error.c 1056 1057 * dirmngr.c (main): Register gcrypt malloc functions with ksba so 1058 that we don't run into problems by using the wrong free function. 1059 The gcrypt malloc function have the additional benefit of a 1060 providing allocation sanity checks when compiled with that 1061 feature. 1062 1063 * crlcache.c (get_issuer_cert): Use xfree instead of ksba_free. 1064 1065 10662002-06-27 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1067 1068 * ldap.c: Look for both userCertificate and caCertificate 1069 10702002-06-26 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1071 1072 * configure.ac: Upped version number to 0.3.1 1073 10742002-06-25 Werner Koch <wk@gnupg.org> 1075 1076 * server.c (cmd_lookup): Use assuan_write_status which ensures a 1077 correct syntax. 1078 10792002-06-20 Werner Koch <wk@gnupg.org> 1080 1081 * crlcache.c (crl_cache_isvalid): Started with some nicer logging. 1082 However, this will need a lot more work. 1083 (get_issuer_cert): Ditto. 1084 1085 * dirmngr.c (main): Changed required libgcrypt version and don't 1086 print the prefix when using a logfile. 1087 10882002-06-20 Werner Koch <wk@gnupg.org> 1089 1090 * tests/Makefile.am (TESTS): Removed test-dirmngr because it 1091 is not a proper test program. 1092 (EXTRA_DIST): Removed the non-existent test certificate. 1093 10942002-05-21 Werner Koch <wk@gnupg.org> 1095 1096 * server.c (start_command_handler): Enable assuan debugging. 1097 10982002-05-08 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1099 1100 * Replaced gdbm check with db1 check 1101 11022002-05-08 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1103 1104 * Replaced gdbm with db1, updated file format version 1105 11062002-03-01 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1107 1108 * Added gdbm configure check 1109 11102002-01-23 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1111 1112 * Return ASSUAN_CRL_Too_Old if the CRL is too old 1113 1114 11152002-01-17 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1116 1117 Added commandline options --ldapserver <host> --ldapport <port> 1118 --ldapuser <user> --ldappassword <passwd>. 1119 1120 Cleaned up CRL parsing, signature evaluation a bit, changed 1121 datetime format in config file to ISO, added version string to 1122 contents format and cache file clean up code in case of mismatch. 1123 11242002-01-14 Steffen Hansen <steffen@klaralvdalens-datakonsult.se> 1125 1126 * Use dirmngr_opt.homedir for storing the db. Added Makefile.am to 1127 tests, bugfixes. 1128 1129 * First code. 1130 Things that work: 1131 Loading/saving database (paths hardcoded) 1132 Fetching CRL from hardcoded server, parsing and inserting in database 1133 Answer ISVALID xxx.yyy requests 1134 1135 Things that are missing: 1136 Some error-checking/handling 1137 Proper autoconf handling of gdbm and OpenLDAP 1138 Signature checking downloaded CRLs 1139 Answer LOOKUP requests 1140 ... 1141 1142 How to test: 1143 cd tests 1144 ldapsearch -v -x -h www.trustcenter.de -b '<some-users-DN>' userCertificate -t 1145 cp /tmp/<cert-file> testcert.der 1146 ./test-dirmngr 1147 1148