12018-06-11 Werner Koch <wk@gnupg.org> 2 3 Release 1.4.23. 4 + commit 8ae6a246bef5b5eb0684e9fb1c933a4f8441dadd 5 6 72018-06-08 Werner Koch <wk@gnupg.org> 8 9 gpg: Sanitize diagnostic with the original file name. 10 + commit 2326851c60793653069494379b16d84e4c10a0ac 11 * g10/mainproc.c (proc_plaintext): Sanitize verbose output. 12 132018-04-13 NIIBE Yutaka <gniibe@fsij.org> 14 15 g10: Push compress filter only if compressed. 16 + commit 0f8fd95ab32a6d29dac79e19f0850037c7d0c16f 17 * g10/compress.c (handle_compressed): Fix memory leak. 18 192017-12-18 NIIBE Yutaka <gniibe@fsij.org> 20 21 po: Update Japanese translation. 22 + commit 1338bce5f66a95b53f18c4b54f0e9ac79604500a 23 * po/ja.po: Fix message with no "%s". 24 252017-12-04 NIIBE Yutaka <gniibe@fsij.org> 26 Damien Goutte-Gattat <dgouttegattat@incenp.org> 27 28 g10: Fix regexp sanitization. 29 + commit 9441946e1824eb58249c58432ed1f554d0d8a102 30 * g10/trustdb.c (sanitize_regexp): Only escape operators. 31 322017-11-10 Dario Niedermann <dario@darioniedermann.it> 33 34 Do not use C99 feature. 35 + commit 877e3073d731fec55a88673f91ed646a75e786c8 36 * cipher/rsa.c (secret): Move var decl to the beginning. 37 382017-09-06 Frans Spiesschaert <Frans.Spiesschaert@yucom.be> 39 40 po: update Dutch translation. 41 + commit aa26eda8ab679a80a7be2c82478cb4440b45ec8c 42 43 442017-08-04 Marcus Brinkmann <marcus.brinkmann@ruhr-uni-bochum.de> 45 46 doc: Remove documentation for future option --faked-system-time. 47 + commit eb15d5ed8e4a765998e9de7698bdc65328bcaaa3 48 doc/gpg.texi: Remove documentation for --faked-system-time. 49 502017-08-02 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 51 52 debian: Remove packaging from upstream repository. 53 + commit 9832a4bacfa5232534f2c7fe7655bd0677a41f6e 54 Debian packaging for GnuPG is handled in debian git repositories, and 55 doesn't belong here in the upstream repository. The packaging was 56 significantly out of date anyway. 57 58 If you're looking for debian packaging for the 1.4 branch of GnuPG, 59 please use the following git remote: 60 61 https://anonscm.debian.org/git/pkg-gnupg/gnupg1.git 62 632017-08-02 Joe Hansen <joedalton2@yahoo.dk> 64 65 po: Update Danish translation. 66 + commit 12afc37a946477692257d725acac513f271c4e9e 67 Originally reported at: 68 http://lists.gnupg.org/pipermail/gnupg-i18n/2014-November/000308.html 69 702017-08-02 Frans Spiesschaert <Frans.Spiesschaert@yucom.be> 71 72 po: Update Dutch translation. 73 + commit 6d5c5204d79fa9d01981c0076d3acde18534640a 74 Debian-Bug-Id: 845695 75 762017-08-01 Manuel Venturi Porras Peralta <venturi@openmailbox.org> 77 78 po: Update Spanish translation. 79 + commit 76239356bcb3bfeec5327637ed87429594868fef 80 Debian-Bug-Id: 814541 81 822017-07-19 Werner Koch <wk@gnupg.org> 83 84 Release 1.4.22. 85 + commit 6153268aaf04ec960a4e1dcc50434e815a47e0e8 86 87 882017-07-19 Åka Sikrom <a4 -at- hush -dot- com> 89 90 po: Update Norwegian translation. 91 + commit 5f7667eca899952480e066404f1b46eca7fe401f 92 93 942017-07-07 NIIBE Yutaka <gniibe@fsij.org> 95 96 gpg: Fix memory leak. 97 + commit 6b4abf1d491d30a6bdaeb2c425c780cacd65bab4 98 * g10/textfilter.c (copy_clearsig_text): Free the buffer. 99 100 rsa: Reduce secmem pressure. 101 + commit 1b1f44846b5f21a80ed101f2284ce5f6e8849ee7 102 * cipher/rsa.c (secret): Don't keep secmem. 103 104 rsa: Allow different build directory. 105 + commit 994d5b707559a800a650dc7f273372f509d74780 106 * cipher/Makefile.am (AM_CPPFLAGS): Add mpi dirs. 107 * cipher/rsa.c: Change include file. 108 1092017-07-07 Marcus Brinkmann <mb@g10code.com> 110 111 rsa: Add exponent blinding. 112 + commit 8fd9f72e1b2e578e45c98c978cab4f6d47683d2c 113 * cipher/rsa.c (secret_core_crt): Blind secret D with randomized 114 nonce R for mpi_powm computation. 115 1162017-07-07 NIIBE Yutaka <gniibe@fsij.org> 117 118 mpi: Minor fix for mpi_pow. 119 + commit 554ded4854758bf6ca268432fa087f946932a409 120 * mpi/mpi-pow.c (mpi_powm): Fix allocation size. 121 122 mpi: Same computation for square and multiply for mpi_pow. 123 + commit 12029f83fd0ab3e8ad524f6c9135854662fddfd1 124 * mpi/mpi-pow.c (_gcry_mpi_powm): Compare msize for max_u_size. Move 125 the assignment to base_u into the loop. Copy content refered by RP to 126 BASE_U except the last of the loop. 127 128 mpi: Simplify mpi_powm. 129 + commit b38f4489f75e6e435886aa885807738a22c7ff60 130 * mpi/mpi-pow.c (_gcry_mpi_powm): Simplify the loop. 131 1322017-07-04 Marcus Brinkmann <marcus.brinkmann@ruhr-uni-bochum.de> 133 134 mpi: Fix ARM assembler in longlong.h. 135 + commit 782f804765b6f4226fd77843e59f57dcca61b6fb 136 * mpi/longlong.h [__arm__] (add_ssaaaa, sub_ddmmss): Add __CLOBBER_CC. 137 [__arm__][__ARM_ARCH <= 3] (umul_ppmm): Add __AND_CLOBBER_CC. 138 1392017-07-03 Marcus Brinkmann <marcus.brinkmann@ruhr-uni-bochum.de> 140 141 doc: Fix typo. 142 + commit 7b045f539e5f67c937c18157c26fb3a767c1c7e6 143 144 1452017-05-10 Ineiev <ineiev@gnu.org> 146 147 g10: Fix secmem leak. 148 + commit 2c2121ff3c2b90f21b75dd56c981b4d9e6d1c0e2 149 * g10/keygen.c (proc_parameter_file): Fix secmem leak. 150 1512017-03-30 Werner Koch <wk@gnupg.org> 152 153 gpg: Fix exporting of zero length user ID packets. 154 + commit bb61191aad98c3dbb487c1f76dd1552d44a52fe3 155 * g10/build-packet.c (do_user_id): Avoid indeterminate length header. 156 1572016-11-02 Neal H. Walfield <neal@g10code.com> 158 Michael Mönch <michael.moench@marktjagd.de> 159 160 tools: Fix option parsing for gpg-zip. 161 + commit f2acaa5d785a29eca629c4b3df739bc474249004 162 * tools/gpg-zip.in: Correctly set GPG when --gpg is specified. 163 Correctly set TAR when --tar is specified. Pass TAR_ARGS to tar. 164 165 (cherry-picked by dkg from master branch's 166 84ebf15b06e435453b2f58775f97a3a1c61a7e55) 167 1682016-08-17 Werner Koch <wk@gnupg.org> 169 170 Release 1.4.21. 171 + commit 47531220e57bf5093dcf2312884124f0a79e15db 172 173 174 gpg: Add dummy option --with-subkey-fingerprint. 175 + commit 5e1843fc47457a9a0525ed7d3e55961d342ef1e2 176 * g10/gpg.c (opts): Add dummy option. 177 178 build: Create a swdb file during "make distcheck". 179 + commit 56792b1191a31c8409d7dcdb33b87a92f0e65ab2 180 * Makefile.am (distcheck-hook): New. 181 1822016-08-17 Ineiev <ineiev@gnu.org> 183 184 po: Update Russian translation. 185 + commit 851a9de23ac0977c66f5ef56f08d8ca5eae92930 186 187 1882016-08-17 Werner Koch <wk@gnupg.org> 189 190 random: Hash continuous areas in the csprng pool. 191 + commit c6dbfe89903d0c8191cf50ecf1abb3c8458b427a 192 * cipher/random.c (mix_pool): Store the first hash at the end of the 193 pool. 194 195 cipher: Improve readability by using a macro. 196 + commit e23eec8c9a602eee0a09851a54db0f5d611f125c 197 * cipher/random.c (mix_pool): Use DIGESTLEN instead of 20. 198 1992016-08-09 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 200 201 gpg: Avoid publishing the GnuPG version by default. 202 + commit 61539efc2bc4ba9a9faceaced12660d588c1be7a 203 * g10/gpg.c (main): initialize opt.emit_version to 0 204 * doc/gpg.texi: document different default for --emit-version 205 2062016-08-04 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 207 208 Clean up "allow to" 209 + commit 15d13272344fa0d8753a321c087b30a6d5115dfb 210 * README, cipher/cipher.c, cipher/pubkey.c, doc/gpg.texi: replace 211 "allow to" with clearer text 212 213 In standard English, the normal construction is "${XXX} allows ${YYY} 214 to" -- that is, the subject (${XXX}) of the sentence is allowing the 215 object (${YYY}) to do something. When the object is missing, the 216 phrasing sounds awkward, even if the object is implied by context. 217 There's almost always a better construction that isn't as awkward. 218 219 These changes should make the language a bit clearer. 220 221 Fix spelling: "occured" should be "occurred" 222 + commit 1820889e3c4a9a07981951b3e74f722658fb01c5 223 * checks/armor.test, cipher/des.c, g10/ccid-driver.c, g10/pkclist.c, 224 util/regcomp.c, util/regex_internal.c: correct the spelling of 225 "occured" to "occurred" 226 2272016-08-04 NIIBE Yutaka <gniibe@fsij.org> 228 229 g10: Fix checking key for signature validation. 230 + commit f474b161f6c8c7a3dc0fb90d25ffceacba1ff117 231 * g10/sig-check.c (signature_check2): Not only subkey, but also primary 232 key should have flags.valid=1. 233 2342016-08-03 Justus Winter <justus@g10code.com> 235 236 Partially revert "g10: Fix another race condition for trustdb access." 237 + commit 0f6bda4ccd2091e386e78c369131388ae5ebc002 238 This amends db246f8b which accidentally included the compiled 239 translation files. 240 2412016-07-09 NIIBE Yutaka <gniibe@fsij.org> 242 243 gpgv: Tweak default options for extra security. 244 + commit cf01cf8b88abb6ed5fea300c28e2a1e6a7c67804 245 * g10/gpgv.c (main): Set opt.no_sig _cache, so that it doesn't depend on 246 cached status. Similarly, set opt.flags.require_cross_cert for backsig 247 validation for subkey signature. 248 2492016-07-06 NIIBE Yutaka <gniibe@fsij.org> 250 251 g10: Fix keysize with --expert. 252 + commit ca1fc596267b42a894a3fc85c3733007c672ed1f 253 * g10/keygen.c (ask_keysize): It's 768 only for DSA. 254 2552016-06-28 NIIBE Yutaka <gniibe@fsij.org> 256 257 g10: Fix --list-packets. 258 + commit 39e32d375ef72874848f138d941d6d17f5aff85c 259 * g10/gpg.c (main): Call set_packet_list_mode after assignment of 260 opt.list_packets. 261 * g10/mainproc.c (do_proc_packets): Don't stop processing with 262 --list-packets as the comment says. 263 * g10/options.h (list_packets): Fix the comment. 264 * g10/parse-packet.c: Fix the condition for opt.list_packets. 265 2662016-06-15 Niibe Yutaka <gniibe@fsij.org> 267 268 g10: Fix another race condition for trustdb access. 269 + commit db246f8b18b77314938e596b8217bd97223d5aad 270 * g10/tdbio.c (create_version_record): Call create_hashtable to always 271 make hashtable, together with the version record. 272 (get_trusthashrec): Remove call to create_hashtable. 273 2742016-02-12 NIIBE Yutaka <gniibe@fsij.org> 275 276 g10: Make sure to have the directory for trustdb. 277 + commit d957e4388f72581b1ec801613b5629b5ea3f586d 278 * g10/tdbio.c (tdbio_set_dbname): Return earlier if !CREATE. Check 279 the directory and create it if none before calling take_write_lock. 280 2812016-02-01 Werner Koch <wk@gnupg.org> 282 283 Fix possible sign extension problem with newer compilers. 284 + commit 22caa5c2d4b65289a0857c36bcded36b34baf4d2 285 * cipher/des.c (READ_64BIT_DATA): Cast to u32 before shifting by 24. 286 * cipher/blowfish.c (do_encrypt_block): Ditto. 287 (do_decrypt_block): Ditto. 288 * cipher/camellia.c (CAMELLIA_RR8): Ditto. 289 * cipher/cast5.c (do_encrypt_block): Ditto. 290 (do_decrypt_block): Ditto. 291 (do_cast_setkey): Ditto. 292 * cipher/twofish.c (INPACK): Ditto. 293 * util/iobuf.c (block_filter): Ditto. 294 2952016-01-26 NIIBE Yutaka <gniibe@fsij.org> 296 297 g10: Fix iobuf API of filter function for alignment. 298 + commit aa4a3aa3e7a0c7dc231b90b2958184c7138ccc93 299 * include/iobuf.h (struct iobuf_struct): Remove DESC. 300 * util/iobuf.c (iobuf_desc): New. 301 (print_chain, iobuf_close, iobuf_open, iobuf_fdopen, iobuf_sockopen) 302 (iobuf_create, iobuf_append, iobuf_openrw, iobuf_ioctl) 303 (iobuf_push_filter2, pop_filter, underflow): Use iobuf_desc. 304 (file_filter, sock_filter, block_filter): Fill the description. 305 * g10/armor.c, g10/cipher.c, g10/compress-bz2.c, g10/compress.c, 306 g10/encode.c, g10/encr-data.c, g10/mdfilter.c, g10/pipemode.c, 307 g10/progress.c, g10/textfilter.c: Likewise. 308 3092016-01-15 Werner Koch <wk@gnupg.org> 310 311 Fix possible AIX problem with sysconf in rndunix. 312 + commit a38dffde7b19bd4881afcd87c23aac2daa5bd52a 313 * cipher/rndunix.c [HAVE_STDINT_H]: Include stdint.h. 314 (start_gatherer): Detect misbehaving sysconf. 315 3162016-01-13 NIIBE Yutaka <gniibe@fsij.org> 317 318 Fix to support git worktree. 319 + commit e26706700f6f339891cce924e2a401dfbdba1a0e 320 * Makefile.am: Use -e for testing .git. 321 3222015-12-21 NIIBE Yutaka <gniibe@fsij.org> 323 324 po: Update Japanese translation. 325 + commit d908e7d2384b5e742d41d468ad079c99f4b0a625 326 327 3282015-12-19 Werner Koch <wk@gnupg.org> 329 330 Release 1.4.20. 331 + commit 19549aec296b4cba825682dbddb1fa4214b05cab 332 333 334 w32: Avoid warning when using newer mingw versions. 335 + commit 56daf9b6e53b67f75305e7806860a3db94e3be2d 336 * g10/tdbio.c (ftruncate): Do not define if already defined. 337 3382015-12-19 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 339 340 gpg: Add option --weak-digest to gpg and gpgv. 341 + commit 924518b10d4d8b39236a829989310a211f739c5b 342 * g10/options.h: Add weak_digests linked list to opts. 343 * g10/main.h: Declare weakhash linked list struct and 344 additional_weak_digest() function to insert newly-declared weak 345 digests into opts. 346 * g10/misc.c: (additional_weak_digest): New function. 347 (print_digest_algo_note): Check for deprecated digests. 348 * g10/sig-check.c: (do_check): Reject all weak digests. 349 * g10/gpg.c: Add --weak-digest option to gpg. 350 * doc/gpg.texi: Document gpg --weak-digest option. 351 * g10/gpgv.c: Add --weak-digest option to gpgv. 352 * doc/gpgv.texi: Document gpgv --weak-digest option. 353 3542015-12-19 Werner Koch <wk@gnupg.org> 355 356 gpg: Reject signatures made with MD5. 357 + commit 43e5d28c6dbab9e5bcf652b4051184d409910c69 358 * g10/gpg.c: Add option --allow-weak-digest-algos. 359 (main): Set option also in PGP2 mode. 360 * g10/options.h (struct opt): Add flags.allow_weak_digest_algos. 361 * g10/sig-check.c (do_check): Reject MD5 signatures. 362 * tests/openpgp/gpg.conf.tmpl: Add allow_weak_digest_algos. 363 3642015-12-17 Werner Koch <wk@gnupg.org> 365 366 gpg: Change default cipher for --symmetric from CAST5 to AES-128. 367 + commit fc30a414d8d6586207444356ec270bd3fe0f6e68 368 * g10/main.h (DEFAULT_CIPHER_ALGO): Change to AES or CAST5 or 3DES 369 depending on configure options. 370 * g10/gpg.c (main): Set opt.s2k_cipher_algo to DEFAULT_CIPHER_ALGO. 371 3722015-12-17 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 373 374 Pass DBUS_SESSION_BUS_ADDRESS for gnome3. 375 + commit 751b287179c3a485261051a8bc838ee9405fa890 376 * g10/passphrase.c (stdenvnames): Add DBUS_SESSION_BUS_ADDRESS. 377 3782015-11-20 Werner Koch <wk@gnupg.org> 379 380 gpg: Avoid cluttering stdout with trustdb info in verbose mode. 381 + commit 8b5cb544a8a1d9274a072990b13bb1d3cb2f6ab2 382 * g10/trustdb.c (validate_keys): Call dump_key_array only in debug 383 mode. 384 3852015-10-01 Werner Koch <wk@gnupg.org> 386 387 gpg: Silence a compiler warning. 388 + commit 6db18e29eb81b37ed6feb592add77d492c60fc35 389 * g10/parse-packet.c (enum_sig_subpkt): Replace hack. 390 3912015-09-17 NIIBE Yutaka <gniibe@fsij.org> 392 393 po: Update Japanese translation. 394 + commit 9232df23ac545e358d10c5539bdc9de2d05f15e8 395 396 3972015-09-08 NIIBE Yutaka <gniibe@fsij.org> 398 399 po: Fix Spanish translation. 400 + commit bd6f80061a7f7dd8831a2ce989bbd47f46a195bc 401 402 4032015-09-01 Werner Koch <wk@gnupg.org> 404 405 Obsolete option --no-sig-create-check. 406 + commit ae61f01523fc68fbd3dbac5f2ba761a7b8b117dd 407 * cipher/rsa.c (rsa_sign): Verify after sign. 408 * g10/gpg.c (opts): Make --no-sig-create-check a NOP. 409 * g10/options.h (opt): Remove field "no_sig_create_check". 410 * g10/sign.c (do_sign): Do check only for DSA. 411 4122015-06-16 NIIBE Yutaka <gniibe@fsij.org> 413 414 g10: Fix a race condition initially creating trustdb. 415 + commit ae38cbbca493725305c4131fbcafa716ae0c6109 416 * g10/tdbio.c (take_write_lock, tdbio_set_dbname): Fix message. 417 4182015-06-15 NIIBE Yutaka <gniibe@fsij.org> 419 420 g10: Fix a race condition initially creating trustdb. 421 + commit 6f992d94ea708535b2f3a3de22b429401d59fac9 422 * g10/tdbio.c (take_write_lock, release_write_lock): New. 423 (put_record_into_cache, tdbio_sync, tdbio_end_transaction): Use 424 new lock functions. 425 (tdbio_set_dbname): Fix the race. 426 (open_db): Don't call dotlock_create. 427 4282015-05-19 NIIBE Yutaka <gniibe@fsij.org> 429 430 g10: detects public key encryption packet error properly. 431 + commit f3b00d88efa25e23f70b757cf99302af77d3d7ae 432 g10/mainproc.c (proc_pubkey_enc): Only allow relevant algorithms for 433 encryption. 434 435 g10: Improve handling of no corresponding public key. 436 + commit b3fd30451a5464b124b0296afbc341cb98b3977c 437 * g10/getkey.c (get_seckey): Return G10ERR_NO_PUBKEY when it's not 438 exact match. 439 4402015-04-30 NIIBE Yutaka <gniibe@fsij.org> 441 442 g10: fix cmp_public_key and cmp_secret_keys. 443 + commit 04667cabef2d6aaa214b288482bb902c891893a5 444 * g10/free-packet.c (cmp_public_keys, cmp_secret_keys): Compare opaque 445 data at the first entry of the array when it's unknown algo. 446 * mpi/mpi-cmp.c (mpi_cmp): Backport libgcrypt 1.5.0's semantics. 447 4482015-04-05 Werner Koch <wk@gnupg.org> 449 450 gpg: Fix DoS while parsing mangled secret key packets. 451 + commit 506eb6fec67f170827777f2f44ced6f50745a0ad 452 * g10/parse-packet.c (parse_key): Check PKTLEN before calling mpi_read 453 et al. 454 4552015-03-28 Werner Koch <wk@gnupg.org> 456 457 gpg: Remove left-over debug message. 458 + commit f34d88364a984947bcd7c344f9532f683b856353 459 * g10/armor.c (check_input): Remove log_debug. 460 4612015-02-27 Werner Koch <wk@gnupg.org> 462 463 Release 1.4.19. 464 + commit bcf44e2d153792e20036a26126ad77cef79a0304 465 466 467 po: Update German translation. 468 + commit 47c2369bb723aac85caf848a7b563889e83bc88f 469 470 4712015-02-26 David Prévot <taffit@debian.org> 472 473 po: Update French translation. 474 + commit 9dbfca0db80789d8d2020a945de2ccff484abc02 475 476 4772015-02-26 Roman Pavlik <rp@tns.cz> 478 479 po: Update Czech translation. 480 + commit bcccd89eb93a413f633570d250b1e004cddef765 481 482 4832015-02-26 Frans Spiesschaert <Frans.Spiesschaert@yucom.be> 484 485 po: Update Dutch translation. 486 + commit 0e4a82c59bd087a6099cccec3a4419f8f57bb3c0 487 488 4892015-02-26 Manuel \"Venturi\" Porras Peralta <venturi@openmailbox.org> 490 491 po: Update Spanish translation. 492 + commit d27a4779108e265ad08d8f74887d32723cb62197 493 494 4952015-02-26 Jakub Bogusz <qboosh@pld-linux.org> 496 497 po: Update Polish translation. 498 + commit 17a2356328d0cdf9ed7fcc3e8f1f3867d3ff611d 499 500 5012015-02-26 Ineiev <ineiev@gnu.org> 502 503 po: Update Russian translation. 504 + commit 054b2c113ea01ff79dbe8365dba0c239ee4821e2 505 506 5072015-02-26 Yuri Chornoivan <yurchor@ukr.net> 508 509 po: Update Ukrainian translation. 510 + commit e5b5f50af74c7a760240c109f2b4c37d92d254b8 511 512 5132015-02-26 Milo Casagrande <milo@milo.name> 514 515 po: Update Italian translation. 516 + commit d252043b9b0aac9145f38d184c34cefbf1f9f1c9 517 518 5192015-02-26 Jedi Lin <Jedi@Jedi.org> 520 521 Update Chinese (traditional) translation. 522 + commit 4986eddbdf3485452546e9243729522c2c3fef93 523 524 5252015-02-26 Werner Koch <wk@gnupg.org> 526 527 Fix for building without DNS support. 528 + commit c43391f96537c304a8fddd2939a8380d8dd13319 529 * util/cert.c (get_cert) [!USE_DNS_CERT]: Add want_ipgp. 530 531 po,intl: Update to 0.19.3. 532 + commit 8adbf74b9398813c3e5d07c0789eaf75a6c3d97e 533 534 535 Switch to a hash and CERT record based PKA system. 536 + commit 52c6c30647a96162a10715e667299167717c58dd 537 * util/pka.c: Rewrite. 538 (get_pka_info): Add arg fprbuflen. Change callers to pass this. 539 * util/strgutil.c (ascii_strlwr): New. 540 * configure.ac: Remove option --disable-dns-pka. 541 (USE_DNS_PKA): Remove ac_define. 542 * g10/getkey.c (parse_auto_key_locate): Always include PKA. 543 544 Move two functions from g10/ to util/. 545 + commit 240451a26e3e1fdabe0451a33f8918d4adfa852b 546 * g10/misc.c (has_invalid_email_chars, is_valid_mailbox): Move to ... 547 * util/strgutil.c: here. 548 549 Add new function strconcat. 550 + commit 484d0730582a57808333e6af58d51c471f2b125a 551 * include/util.h (GNUPG_GCC_A_SENTINEL): New. 552 * util/strgutil.c (do_strconcat, strconcat): New. 553 554 Add convenience function to hash a buffer. 555 + commit 2e7a3ed39007deb561a9175f7fccd52946c85d28 556 * cipher/sha1.c (sha1_hash_buffer): New. 557 558 Allow requesting only an IPGP certtype with dns_cert(). 559 + commit d2323ce6fdceeba9765f23a1d5b5e4cb127d99ed 560 * util/cert.c (get_cert): Add arg want_ipgp. Change callers. 561 5622015-02-26 NIIBE Yutaka <gniibe@fsij.org> 563 564 mpi: Avoid data-dependent timing variations in mpi_powm. 565 + commit 6cbc75e71295f23431c4ab95edc7573f2fc28476 566 * include/mpi.h, mpi/mpiutils.c (mpi_set_cond): New. 567 * mpi/mpi-pow.c (SIZE_PRECOMP): Rename from SIZE_B_2I3. 568 (mpi_powm): Access all data in the table and use mpi_set_cond. 569 5702015-02-23 Werner Koch <wk@gnupg.org> 571 572 Protect against NULL return of mpi_get_opaque. 573 + commit e0c13ad5f290aec05706797b8f6c9e13d613eb66 574 * g10/seckey-cert.c (do_check): Call BUG for NULL return of 575 get_opaque. 576 5772015-02-23 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 578 579 gpg: Fix segv due to NULL value stored as opaque MPI. 580 + commit 6f032181ba78c5eeb14f9aab4307a75bbaf0b115 581 * g10/build-packet.c (do_secret_key): Check for NULL return from 582 gcry_mpi_get_opaque. 583 * g10/keyid.c (hash_public_key): Ditto. 584 5852015-02-23 Werner Koch <wk@gnupg.org> 586 587 gpg: Remove an unused variable. 588 + commit a35ed8af41a91a52e1bbf992522a209f9c27dd55 589 * g10/import.c (import): Remove need_armor. 590 591 [dkg: rebased to STABLE-BRANCH-1-4] 592 5932015-02-23 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 594 595 curl-shim: clean up varargs. 596 + commit 2b2f2767851eccb12e591c7a3fa432e6bf9db8f2 597 * keyserver/curl-shim.c (curl_easy_setopt) : ensure that va_end is 598 called. 599 6002015-02-23 Werner Koch <wk@gnupg.org> 601 602 gpg: Print better diagnostics for keyserver operations. 603 + commit cf8d89b0ce69d4cfaa835fab913cc7c77565a75d 604 * g10/armor.c (parse_key_failed_line): New. 605 (check_input): Watch out for gpgkeys_ error lines. 606 * g10/filter.h (armor_filter_context_t): Add field key_failed_code. 607 * g10/import.c (import): Add arg r_gpgkeys_err. 608 (import_keys_internal): Ditto. 609 (import_keys_stream): Ditto. 610 * g10/keyserver.c (keyserver_errstr): New. 611 (keyserver_spawn): Detect "KEY " lines while sending. Get gpgkeys_err 612 while receiving keys. 613 (keyserver_work): Add kludge for better error messages. 614 615 Use inline functions to convert buffer data to scalars. 616 + commit 57af33d9e7c9b20b413b96882e670e75a67a5e65 617 * include/host2net.h (buf16_to_ulong, buf16_to_uint): New. 618 (buf16_to_ushort, buf16_to_u16): New. 619 (buf32_to_size_t, buf32_to_ulong, buf32_to_uint, buf32_to_u32): New. 620 621 gpg: Prevent an invalid memory read using a garbled keyring. 622 + commit 81d3e541326e94d26a953aa70afc3cb149d11ebe 623 * g10/keyring.c (keyring_get_keyblock): Whitelist allowed packet 624 types. 625 626 gpg: Fix a NULL-deref in export due to invalid packet lengths. 627 + commit 68f260f77a9e4f5cacf0a58e4f55ddee125d3f00 628 * g10/build-packet.c (write_fake_data): Take care of a NULL stored as 629 opaque MPI. 630 631 gpg: Fix a NULL-deref due to empty ring trust packets. 632 + commit 2e8db53854506572e9d5b5908e143b5ca28f30f5 633 * g10/parse-packet.c (parse_trust): Always allocate a packet. 634 635 gpg: Limit the size of key packets to a sensible value. 636 + commit 27d7addccf782d5cb0084cb17522d712d4a6d6b6 637 * g10/parse-packet.c (MAX_KEY_PACKET_LENGTH): New. 638 (MAX_UID_PACKET_LENGTH): New. 639 (MAX_COMMENT_PACKET_LENGTH): New. 640 (MAX_ATTR_PACKET_LENGTH): New. 641 (parse_key): Limit the size of a key packet to 256k. 642 (parse_user_id): Use macro for the packet size limit. 643 (parse_attribute): Ditto. 644 (parse_comment): Ditto. 645 646 gpg: Allow predefined names as answer to the keygen.algo prompt. 647 + commit 20e14e331de4a7e9746650f8b39c1a66d2565c9e 648 * g10/keygen.c (ask_algo): Add list of strings. 649 650 gpg: Print a warning if the subkey expiration may not be what you want. 651 + commit 8baf452bb308a59478c9148109f4c78941170ecc 652 * g10/keyedit.c (subkey_expire_warning): New. 653 keyedit_menu): Call it when needed. 654 6552015-02-11 Werner Koch <wk@gnupg.org> 656 657 Use ciphertext blinding for Elgamal decryption. 658 + commit ff53cf06e966dce0daba5f2c84e03ab9db2c3c8b 659 * cipher/elgamal.c (USE_BLINDING): New. 660 (decrypt): Rewrite to use ciphertext blinding. 661 6622015-01-19 Werner Koch <wk@gnupg.org> 663 664 Modernize to automake 1.14. 665 + commit 592e1aa407a021ed8477f82b1291f30c80291086 666 * Makefile.am (AUTOMAKE_OPTIONS): Move to ... 667 * configure.ac (AM_INIT_AUTOMAKE): here and add serial-tests. 668 669 * keyserver/Makefile.am: Replace INCLUDES by AM_CPPFLAGS. 670 * mpi/Makefile.am: Ditto. 671 * util/Makefile.am: Ditto. 672 * keyserver/Makefile.am: Ditto. Adjusted other things. 673 674 * m4/intl.m4, m4/po.m4: Use autoconf's AC_PROG_MKDIR_P. 675 676 Fix a problem with select and high fds. 677 + commit 8adb5ff26062f717619aa816de8b27aa7d40d6c8 678 * cipher/rndlinux.c (rndlinux_gather_random): Check fd before using 679 FD_SET. 680 6812015-01-13 Werner Koch <wk@gnupg.org> 682 683 doc: Formatting fixes. 684 + commit ed6287d2e1546ee0f4064675270da003f51e1b39 685 * doc/gpl.texi: Fix enumerate and re-indent examples. 686 6872015-01-13 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 688 689 avoid future chance of using uninitialized memory. 690 + commit e7cbce8fb2b7417fd1048f916b3e3281f5b9dd7b 691 * util/iobuf.c: (iobuf_open): initialize len 692 6932015-01-13 Werner Koch <wk@gnupg.org> 694 695 doc: Fix memory leak in yat2m. 696 + commit e2e822d22526c1545e095bc24173b732137f5737 697 * doc/yat2m.c (write_th): Free NAME. 698 699 gpg: Fix possible read of unallocated memory. 700 + commit aab282855ada8dddee99c777c91829344e91f31a 701 * g10/parse-packet.c (can_handle_critical): Check content length 702 before calling can_handle_critical_notation. 703 7042015-01-09 Werner Koch <wk@gnupg.org> 705 706 scd: Fix possibly inhibited checkpin of the admin pin. 707 + commit c83e250ef36c28a275de74d96e89898e9f99cb1e 708 * scd/app-openpgp.c (do_check_pin): Do not check a byte of a released 709 buffer. 710 7112015-01-08 Joshua Rogers <git@internot.info> 712 713 scd: fix get_public_key for OpenPGPcard v1.0. 714 + commit 3ca1f4098c70d322658cfaaa0d12164e6ac6d5ad 715 * scd/app-openpgp.c (get_public_key): correctly close 'fp' upon use. 716 7172014-12-12 NIIBE Yutaka <gniibe@fsij.org> 718 719 gpg: release DEK soon after its use. 720 + commit da66ad5bba4215b9ddd0cb927a89aa75355632aa 721 * g10/keygen.c (generate_subkeypair): Release DEK soon. 722 7232014-11-24 Werner Koch <wk@gnupg.org> 724 725 gpg: Fix use of uninit.value in listing sig subpkts. 726 + commit 2d359681f08999686734421228cb69893d8a0060 727 * g10/parse-packet.c (dump_sig_subpkt): Print regex subpacket 728 sanitized. 729 730 gpg: Fix off-by-one read in the attribute subpacket parser. 731 + commit 2b4809406b6536cbb67a2282bf855710b8454dc2 732 * g10/parse-packet.c (parse_attribute_subpkts): Check that the 733 attribute packet is large enough for the subpacket type. 734 735 gpg: Fix a NULL-deref for invalid input data. 736 + commit 69767ccf4218d0dc5ef2d7e141be0f14c88fea59 737 * g10/mainproc.c (proc_encrypted): Take care of canceled passpharse 738 entry. 739 7402014-11-14 Werner Koch <wk@gnupg.org> 741 742 gpg: Make the use of "--verify FILE" for detached sigs harder. 743 + commit fbb50867f81d790c4bf819dcadcd14be6c3f957b 744 * g10/openfile.c (open_sigfile): Factor some code out to ... 745 (get_matching_datafile): new function. 746 * g10/plaintext.c (hash_datafiles): Do not try to find matching file 747 in batch mode. 748 * g10/mainproc.c (check_sig_and_print): Print a warning if a possibly 749 matching data file is not used by a standard signatures. 750 7512014-11-12 Werner Koch <wk@gnupg.org> 752 753 gpg: Add import option "keep-ownertrust". 754 + commit 42d2474a02aa46e6fecf0e35c067aa0b6481ffbe 755 * g10/options.h (IMPORT_KEEP_OWNERTTRUST): New. 756 * g10/import.c (parse_import_options): Add "keep-ownertrust". 757 (import_one): Act upon new option. 758 7592014-10-03 Werner Koch <wk@gnupg.org> 760 761 mpi: Fix compiler warning. 762 + commit f68123551f4d5b286309006da67c57878f6cc619 763 * mpi/mpi-inv.c (mpi_invm): Do not return a value. 764 7652014-10-03 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 766 767 gpg: Add build and runtime support for larger RSA keys. 768 + commit 534e2876acc05f9f8d9b54c18511fe768d77dfb5 769 * configure.ac: Added --enable-large-secmem option. 770 * g10/options.h: Add opt.flags.large_rsa. 771 * g10/gpg.c: Contingent on configure option: adjust secmem size, 772 add gpg --enable-large-rsa, bound to opt.flags.large_rsa. 773 * g10/keygen.c: Adjust max RSA size based on opt.flags.large_rsa 774 * doc/gpg.texi: Document --enable-large-rsa. 775 7762014-09-29 Werner Koch <wk@gnupg.org> 777 778 doc: Final update from master (gnupg 2.1) 779 + commit 3209f270d236fae588edaab3d48fe707eb25641c 780 * doc/Makefile.am (sources_from_trunk): Remove. 781 (update-source): Make it a dummy. 782 * doc/gpg.texi: Update. 783 * doc/yat2m.c: Update. 784 785 Allow use of --debug-level=LEVEL without '='. 786 + commit ad30b2a4ae06a51f747bbd8a3c0985333295f8c6 787 * g10/gpg.c (opts): Fix "debug-level". 788 7892014-09-11 Werner Koch <wk@gnupg.org> 790 791 mpi: Improve mpi_invm to detect bad input. 792 + commit cd53cdbc3774fb193bdebcdc5d7019ddebc16dbc 793 * mpi/mpi-inv.c (mpi_invm): Return 0 for bad input. 794 7952014-08-20 Werner Koch <wk@gnupg.org> 796 797 mpi: Suppress set-but-unused-variables warnings. 798 + commit b89f57fe5db364f78154671e1b2fe1ecd1b5c407 799 * include/types.h (GNUPG_GCC_ATTR_UNUSED): Define for gcc >= 3.5. 800 * mpi/mpih-div.c (mpihelp_divmod_1, mpihelp_mod_1): Mark dummy as 801 unused. 802 * mpi/mpi-internal.h (UDIV_QRNND_PREINV): Mark _ql as unused. 803 804 Fix strict-alias warnings for rijndael.c. 805 + commit ecf2728230788f413cf1864c3cbda73d63de8491 806 * cipher/rijndael.c (do_setkey, prepare_decryption): Use u32_a_t cast. 807 808 gpg: Allow compressed data with algorithm 0. 809 + commit 45e3b81114f40070dd638ac790f42df01b8c1484 810 * g10/mainproc.c (proc_compressed): Remove superfluous check for 811 an algorithm number of 0. 812 8132014-08-06 Werner Koch <wk@gnupg.org> 814 815 gpg: Fix regression due to the keyserver import filter. 816 + commit d58552760b26d840824658814d59c8b1a25a4219 817 * g10/keyserver.c (keyserver_retrieval_filter): Change args. Rewrite 818 to take subpakets in account. 819 * g10/import.c (import_one, import_secret_one): Pass keyblock to 820 filter. 821 822 Add kbnode_t for easier backporting. 823 + commit dcf58b3471b1c9ba87a826aa132033e506664808 824 * g10/global.h (kbnode_t): New. 825 8262014-06-30 Werner Koch <wk@gnupg.org> 827 828 Release 1.4.18. 829 + commit 6a7b763e05d352a08f639d5eef9d0bac01c5c456 830 831 832 Limit keysize for unattended key generation to useful values. 833 + commit aae7ec516b79e20938c56fd48fc0bc9d2116426c 834 * g10/keygen.c (gen_elg): Enforce keysize 1024 to 4096. 835 (gen_rsa): Enforce keysize 1024 to 4096. 836 (gen_dsa): Enforce keysize 768 to 3072. 837 838 Make screening of keyserver result work with multi-key commands. 839 + commit 955524f4359ba9e9de213f4067c38df9ae4808a8 840 * g10/keyserver.c (ks_retrieval_filter_arg_s): new. 841 (keyserver_retrieval_filter): Use new struct and check all 842 descriptions. 843 (keyserver_spawn): Pass filter arg suing the new struct. 844 8452014-06-23 Werner Koch <wk@gnupg.org> 846 847 Release 1.4.17. 848 + commit 297f2ac6451e638ed96926d06b01189076010823 849 850 851 doc: Update from master. 852 + commit bfc7893bdaf4dc674799ddddc0cae8f0af642b9d 853 854 855 Fix syntax error introduced with 60bd6488. 856 + commit 0d0961c483f9cd0e195f88c0c82dbf2c859f88fe 857 * g10/apdu.c (pcsc_dword_t): Fix syntax error. 858 8592014-06-23 Stefan Tomanek <tomanek@internet-sicherheit.de> 860 861 Screen keyserver responses. 862 + commit 5230304349490f31aa64ee2b69a8a2bc06bf7816 863 * g10/main.h: Typedef import_filter for filter callbacks. 864 * g10/import.c (import): Add filter callbacks to param list. 865 (import_one): Ditto. 866 (import_secret_one): Ditto. 867 (import_keys_internal): Ditto. 868 (import_keys_stream): Ditto. 869 * g10/keyserver.c (keyserver_retrieval_filter): New. 870 (keyserver_spawn): Pass filter to import_keys_stream() 871 8722014-06-23 Werner Koch <wk@gnupg.org> 873 874 Print hash algorithm in sig records. 875 + commit 8eab483a1c4817a2946624c7305f464089d1875e 876 * g10/keylist.c (list_keyblock_colon): Print field 16. 877 878 Remove useless diagnostic in MDC verification. 879 + commit 01bd0558dd2f8b80d2f3b61f91c11a68357c91fd 880 * g10/encr-data.c (decrypt_data): Do not distinguish between a bad MDC 881 packet header and a bad MDC. 882 883 intl: Fix for uClibc. 884 + commit bb4d5c2d5f20afff4f5382b33e9f530e3352c06f 885 * intl/localename.c (gl_locale_name_thread_unsafe): Take care of 886 uCLIBC. 887 888 PC/SC cleanup. 889 + commit 60bd6488c06dd849465bfbff518297a24d28ea08 890 * g10/apdu.c (pcsc_dword_t): New. It was named as DWORD (double-word) 891 when a word was 16-bit. 892 (struct reader_table_s): Fixes for types. 893 (struct pcsc_readerstate_s) [__APPLE__]: Enable #pragma pack(1). 894 Throughout: Fixes for types. 895 896 gpg: Use more specific reason codes for INV_RECP. 897 + commit 4239780d5a8418d675884309416aa3f71b5b8faa 898 * g10/pkclist.c (build_pk_list): Use more specific reasons codes for 899 INV_RECP. 900 901 doc: Remove outdated Russian man page. 902 + commit e28cbdc5598d64bd3f87230cc4e9f0e11da3893e 903 * configure.ac (DOCBOOK_TO_MAN): Remove. 904 * doc/gpg.ru.sgml: Remove. 905 * doc/Makefile.am: Remove all gpg.ru related code. 906 9072014-06-20 Werner Koch <wk@gnupg.org> 908 909 gpg: Avoid infinite loop in uncompressing garbled packets. 910 + commit 11fdfcf82bd8d2b5bc38292a29876e10770f4b0a 911 * g10/compress.c (do_uncompress): Limit the number of extra FF bytes. 912 9132014-03-06 Werner Koch <wk@gnupg.org> 914 915 gpg: Need to init the trustdb for import. 916 + commit 23191d7851eae2217ecdac6484349849a24fd94a 917 * g10/trustdb.c (clear_ownertrusts): Init trustdb. 918 9192014-01-23 Werner Koch <wk@gnupg.org> 920 921 Support building using the latest mingw-w64 toolchain. 922 + commit 24ba0ce93263c42afb9f087ffcf2edda0b433022 923 * acinclude.m4 (GNUPG_SYS_SYMBOL_UNDERSCORE): Change mingw detection. 924 9252013-12-13 Werner Koch <wk@gnupg.org> 926 927 Release 1.4.16. 928 + commit 7cdb86e0ad7a3f452c2f7358e3e830785281addc 929 930 9312013-12-11 Werner Koch <wk@gnupg.org> 932 933 Change --show-session-key to print the session key earlier. 934 + commit fa3f555d756be0229ab10516b901e50230b22033 935 * g10/mainproc.c (proc_encrypted): Move show_session_key code to ... 936 * g10/decrypt-data.c (decrypt_data): here. 937 9382013-12-10 Werner Koch <wk@gnupg.org> 939 940 Update config.{guess,sub} and some copyright notices. 941 + commit 4466fdba7bb4cac0b5c4a21b98903bb7f27fd9d9 942 * scripts/config.guess, scripts/config.sub: Update to version 943 2013-11-29. 944 9452013-12-05 Werner Koch <wk@gnupg.org> 946 947 Prepare for newer automakes which default to parallel tests. 948 + commit 9b516323d7dc3e6103745becb63f5cc9fd8cc606 949 * checks/Makefile.am: Add a list of test dependencies. 950 9512013-12-03 Werner Koch <wk@gnupg.org> 952 953 Normalize the MPIs used as input to secret key functions. 954 + commit d0d72d98f34579213230b3febfebd2fd8dff272b 955 * cipher/rsa.c (secret): Normalize the INPUT. 956 (rsa_decrypt): Pass reduced data to secret. 957 * cipher/elgamal.c (decrypt): Normalize A and B. 958 * cipher/dsa.c (sign): Normalize HASH. 959 960 Use blinding for the RSA secret operation. 961 + commit 93a96e3c0c33370248f6570d8285c4e811d305d4 962 * cipher/random.c (randomize_mpi): New. 963 * g10/gpgv.c (randomize_mpi): New stub. 964 * cipher/rsa.c (USE_BLINDING): Define macro. 965 (secret): Implement blinding. 966 9672013-11-27 Werner Koch <wk@gnupg.org> 968 969 gpg: Change armor Version header to emit only the major version. 970 + commit b135372176b29ca985afa18398a455fd4e2a2063 971 * g10/options.h (opt): Rename field no_version to emit_version. 972 * g10/gpg.c (main): Init opt.emit_vesion to 1. Change --emit-version 973 to bump up opt.emit_version. 974 * g10/armor.c (armor_filter): Implement different --emit-version 975 values. 976 9772013-10-18 Werner Koch <wk@gnupg.org> 978 979 mpi: mpi-pow improvements. 980 + commit cad8216f9a0b33c9dc84ecc4f385b00045e7b496 981 * mpi/mpi-pow.c (USE_ALGORITHM_SIMPLE_EXPONENTIATION): New. 982 (mul_mod) [!USE_ALGORITHM_SIMPLE_EXPONENTIATION]: New. 983 (mpi_powm) [!USE_ALGORITHM_SIMPLE_EXPONENTIATION]: New implementation 984 of left-to-right k-ary exponentiation. 985 986 Print the keyid for key packets with --list-packets. 987 + commit 0bdf121d1dcf98d7df28af67272caaac07f6f581 988 * g10/parse-packet.c (parse_key): Add keyid printing. 989 9902013-10-11 Werner Koch <wk@gnupg.org> 991 992 mpi: Fix syntax error for mips64 and gcc < 4.4. 993 + commit 9d89564a4255d58b7e26c6845bcea69ec5b0214f 994 * mpi/longlong.h [__mips && gcc < 4.4]: Fix cpp syntax error. 995 996 gpg: Do not require a trustdb with --always-trust. 997 + commit 2528178e7e2fac6454dd988121167305db7c71d9 998 * g10/tdbio.c (tdbio_set_dbname): Add arg R_NOFILE. 999 * g10/trustdb.c (trustdb_args): Add field no_trustdb. 1000 (init_trustdb): Set that field. 1001 (revalidation_mark): Take care of a nonexistent trustdb file. 1002 (read_trust_options): Ditto. 1003 (get_ownertrust): Ditto. 1004 (get_min_ownertrust): Ditto. 1005 (update_ownertrust): Ditto. 1006 (update_min_ownertrust): Ditto. 1007 (clear_ownertrusts): Ditto. 1008 (cache_disabled_value): Ditto. 1009 (check_trustdb_stale): Ditto. 1010 (get_validity): Ditto. 1011 * g10/gpg.c (main): Do not create a trustdb with most commands for 1012 trust-model always. 1013 10142013-10-04 Werner Koch <wk@gnupg.org> 1015 1016 Release 1.4.15. 1017 + commit 8707657fe635b50a5e1a4ed804ea2645c1427ac6 1018 1019 1020 doc: Update from master. 1021 + commit f5c32bd1c6416c97762d7960c94d6f536e259cfa 1022 1023 1024 gpg: Print a "not found" message for an unknown key in --key-edit. 1025 + commit 4a06d9a600def07fdcbb9a6a9500776767d3c2f4 1026 * g10/keyedit.c (keyedit_menu): Print message. 1027 1028 gpg: Protect against rogue keyservers sending secret keys. 1029 + commit d74dd36c11f1643bd92efb50714e2448cdb885d0 1030 * g10/options.h (IMPORT_NO_SECKEY): New. 1031 * g10/keyserver.c (keyserver_spawn, keyserver_import_cert): Set new 1032 flag. 1033 * g10/import.c (import_secret_one): Deny import if flag is set. 1034 10352013-10-04 Daniel Kahn Gillmor <dkg@fifthhorseman.net> 1036 1037 gpg: Allow setting of all zero key flags. 1038 + commit fe0fb5e6b0bb351eb6244e290e112a22a68472d8 1039 * g10/keygen.c (do_add_key_flags): Do not check for empty key flags. 1040 (cherry picked from commit b693ec02c467696bf9d7324dd081e279f9965151) 1041 (cherry picked from commit dd868acb0d13a9f119c0536777350a6c237a66a1) 1042 10432013-10-04 Werner Koch <wk@gnupg.org> 1044 1045 gpg: Distinguish between missing and cleared key flags. 1046 + commit 27d0f32f77fbef59ddf7c6d79b5b4adee6b2e6ac 1047 * include/cipher.h (PUBKEY_USAGE_NONE): New. 1048 * g10/getkey.c (parse_key_usage): Set new flag. 1049 1050 keyserver: Allow use of cURL's default CA store. 1051 + commit 69088ac76fd4b9f303edf3c1453088dda8596399 1052 * keyserver/gpgkeys_curl.c (main): Set CURLOPT_CAINFO only if a file 1053 has been given. 1054 * keyserver/gpgkeys_hkp.c (main): Ditto. 1055 1056 gpg: Limit the nesting level of I/O filters. 1057 + commit f10b184e48015f30849d7611bd9654ed23b91211 1058 * until/iobuf.c (MAX_NESTING_FILTER): New. 1059 (iobuf_push_filter2): Limit the nesting level. 1060 10612013-10-02 Werner Koch <wk@gnupg.org> 1062 1063 gpg: Fix bug with deeply nested compressed packets. 1064 + commit d90a1d23404f482cc4a5a2b2ee0f296d67ff2227 1065 * g10/mainproc.c (MAX_NESTING_DEPTH): New. 1066 (proc_compressed): Return an error code. 1067 (check_nesting): New. 1068 (do_proc_packets): Check packet nesting depth. Handle errors from 1069 check_compressed. 1070 10712013-09-16 Werner Koch <wk@gnupg.org> 1072 1073 Fix bug in mpi_tdiv_q_2exp. 1074 + commit 9dc6dd0572102a2fa27df28ba4d66728827eb03d 1075 * mpi/mpi-internal.h (MPN_COPY_INCR): Make it work. 1076 10772013-08-30 Werner Koch <wk@gnupg.org> 1078 1079 gpg: Use 2048 as the default keysize in batch mode. 1080 + commit 6ed7056197e7ede1305b25457e4633c4ac4301d4 1081 * g10/keygen.c (gen_elg, gen_dsa, gen_rsa): Set default keysize to 1082 2048. 1083 10842013-08-02 Werner Koch <wk@gnupg.org> 1085 1086 gpg: No need to create a trustdb when encrypting with --always-trust. 1087 + commit a1a59e6a539e597996976d0afb6aa3062e954188 1088 * g10/gpg.c (main): Special case setup_trustdb for --encrypt. 1089 10902013-07-25 Werner Koch <wk@gnupg.org> 1091 1092 Release 1.4.14. 1093 + commit fb5c9deaa506249518705846cd9f4c178fe1c4e6 1094 1095 10962013-07-25 Jedi Lin <Jedi@Jedi.org> 1097 1098 Update Chinese translation. 1099 + commit beb6a51df79ce25f16b9b37b25badbc02cb05782 1100 1101 11022013-07-25 Werner Koch <wk@gnupg.org> 1103 1104 Update to modern beta release numbering scheme. 1105 + commit 439999da117d9be9f88bb3e0ce7c444f9484ee2f 1106 * configure.ac: s/my_/mym4_/. Add new release building code. 1107 1108 Prepare for a forthcoming new algorithm id. 1109 + commit 801803ab6e954173c2dcb7f0eb6eb8623238e99c 1110 * include/cipher.h (PUBKEY_ALGO_ECC): New. 1111 * g10/keyid.c (pubkey_letter): Add letter 'C'. 1112 1113 Mitigate a flush+reload cache attack on RSA secret exponents. 1114 + commit 35646689f4b80955ff7dbe1687bf2c479c53421e 1115 * mpi/mpi-pow.c (mpi_powm): Always perform the mpi_mul for exponents 1116 hold in secure memory. 1117 1118 Fix git revision parsing. 1119 + commit fd86f3031161f11c3cbef643a213a04c821364dd 1120 * configure.ac: Use git rev-parse to retrieve the revision. 1121 11222013-07-16 NIIBE Yutaka <gniibe@fsij.org> 1123 1124 gpg: fix previous change. 1125 + commit f61d8fa5a7591423f5a2ef43725b308acd5f2357 1126 * g10/gpgv.c: Fix void dotlock_remove_lockfiles. 1127 11282013-07-12 NIIBE Yutaka <gniibe@fsij.org> 1129 1130 gpg: signal handling fix. 1131 + commit 212a325d428e0ab5c51c42a3ea33efb21ad1f79f 1132 * include/dotlock.h (dotlock_remove_lockfiles_reclaim): New. 1133 (dotlock_destroy, dotlock_remove_lockfiles): Add a flag to reclaim 1134 memory or not. 1135 * util/dotlock.c (dotlock_create): Use 1136 dotlock_remove_lockfiles_reclaim for atexit. 1137 (dotlock_destroy_unix, dotlock_destroy) 1138 (dotlock_remove_lockfiles): Add a reclaim flag. 1139 (dotlock_remove_lockfiles_reclaim): New. 1140 * g10/signal.c (got_fatal_signal): Disable flag of reclaim memory to 1141 avoid non-async-face call. 1142 * g10/keydb.c (maybe_create_keyring): Follow the API change. 1143 * g10/gpgv.c: Follow the API change. 1144 11452013-03-03 David Shaw <dshaw@jabberwocky.com> 1146 1147 Differentiate between success (full or partial), not-found, and failure. 1148 + commit 6f0ec6ab485f48c8079ab2a16ed41ee7859f88ab 1149 * keyserver/gpgkeys_hkp.c (get_key): Use curl_easy_setinfo to get the 1150 HTTP status code so we can tell the difference between a successful 1151 retrieval, a partial retrieval, a not-found, or a server failed. 1152 1153 Emulate curl_easy_getinfo and CURLINFO_RESPONSE_CODE in curl-shim. 1154 + commit ca0b94d4d41c81045ed97fad0569ff4b64e5a6fe 1155 * keyserver/curl-shim.h, keyserver/curl-shim.c (curl_easy_getinfo): 1156 New. Return the HTTP status code for the last transfer. 1157 11582013-01-30 David Shaw <dshaw@jabberwocky.com> 1159 1160 Fix DNS check for recent OS X releases. 1161 + commit 1edc1b3751496885b236f5ab1194ad667c96b174 1162 * configure.ac: OS X now needs BIND_8_COMPAT and -lresolv 1163 11642013-01-11 Werner Koch <wk@gnupg.org> 1165 1166 Automake 1.13 compatibility fix. 1167 + commit b4d4acf491105687c98178b6f4efed2ca9bdc98f 1168 * configure.ac: s/AM_CONFIG_HEADER/AC_CONFIG_HEADERS/. 1169 1170 Fix idea.c for big endian CPUs. 1171 + commit 37f1a427440b9bb4374bf7d878f17190df75918b 1172 * cipher/idea.c: Replace use of WORDS_BIGENDIAN by BIG_ENDIAN_HOST. 1173 11742013-01-11 Christian Aistleitner <christian@quelltextlich.at> 1175 1176 Fix honoring --cert-digest-algo when recreating a cert. 1177 + commit ff5cfadc2c402ebc3884ad2575bc5a51f0067f56 1178 * g10/sign.c (update_keysig_packet): Override original signature's 1179 digest algo in hashed data. 1180 11812012-12-20 Werner Koch <wk@gnupg.org> 1182 1183 Release 1.4.13. 1184 + commit 0bd168bf8eecf4ec11c147edada0f08bebdc6cc0 1185 1186 1187 Last fix for the SRV record patches. 1188 + commit 2812ab7d6a7f47128edd89c41038c553f7153318 1189 * keyserver/gpgkeys_hkp.c (srv_replace): Make sure SRVCOUNT is 1190 always initialized. 1191 1192 Update manuals from master. 1193 + commit 65d6da865ca868781eca386b57d498e6be33e582 1194 * doc/Makefile.am (update-source): Copy from Git master. 1195 (update-source-from-gnupg-2): Remove. 1196 * doc/gpg.texi: Fix minor typos and grammar bugs. 1197 * doc/yat2m.c: Change diagnostics to updated coding standards. 1198 1199 Update config.{guess,sub} to version 2012-07-31. 1200 + commit cb5f64042054305e3a6ef7030a74a3c88d567185 1201 * scripts/config.guess, scripts/config.sub: Update. 1202 12032012-12-20 Joe Hansen <joedalton2@yahoo.dk> 1204 1205 po: Update Danish translation. 1206 + commit f464a3d3a83f426e4cacf73d0e676513eabdc52d 1207 * po/da.po: Update. 1208 12092012-12-20 Werner Koch <wk@gnupg.org> 1210 1211 gpg: Suppress "public key already present" in quiet mode. 1212 + commit 3a4b96e665fa639772854058737ee3d54ba0694e 1213 * g10/pkclist.c (build_pk_list): Print two diagnostics only in 1214 non-quiet mode. 1215 1216 Import only packets which are allowed in a keyblock. 1217 + commit f795a0d59e197455f8723c300eebf59e09853efa 1218 * g10/import.c (valid_keyblock_packet): New. 1219 (read_block): Store only valid packets. 1220 12212012-12-19 David Shaw <dshaw@jabberwocky.com> 1222 1223 Issue 1447: Pass proper Host header and SNI when SRV is used with curl. 1224 + commit 5c557a51cdf37d9f50b3d5d7e11d17e6ea6bb2b8 1225 * configure.ac: Check for inet_ntop. 1226 1227 * m4/libcurl.m4: Provide a #define for the version of the curl 1228 library. 1229 1230 * keyserver/gpgkeys_hkp.c (main, srv_replace): Call getaddrinfo() on 1231 each target. Once we find one that resolves to an address (whether 1232 IPv4 or IPv6), pass it into libcurl via CURLOPT_RESOLVE using the 1233 SRV name as the "host". Force the HTTP Host header to be the same. 1234 1235 Backported from 6b1f71055ebab36989e2089cfde319d2ba40ada7 1236 1237 * keyserver/gpgkeys_hkp.c (main): Only default try-dns-srv to on if we 1238 have SRV support in the first place. 1239 1240 Backported from 732f3d1d4786239db5f31f82cc04ec79326cc13c 1241 1242 Part of issue 1447: Pass proper Host header when SRV is used. 1243 + commit 6c3a76cca064070d0a9e636fedc824415e710451 1244 * common/http.c (send_request, connect_server): Set proper Host header 1245 (no :port, host is that of the SRV) when SRV is used in the 1246 curl-shim. 1247 1248 Backported from cbe98b2cb1e40ba253300e604996681ae191e363 1249 12502012-12-19 Werner Koch <wk@gnupg.org> 1251 1252 Fix last commit. 1253 + commit 58004340cc8c7124edc3c6866eec5478499b252e 1254 * util/http.c (connect_server): Bump SRVINDEX and not SRV. 1255 12562012-12-19 David Shaw <dshaw@jabberwocky.com> 1257 1258 Fix issue 1446: honor ports given in SRV responses. 1259 + commit f2f12f41efe5a476833295dc6c44fcd887d0abe6 1260 * common/http.c (send_request, connect_server, http_open): Use a 1261 struct srv instead of a single srvtag so we can pass the chosen host 1262 and port back to the caller. 1263 (connect_server): Use the proper port in the HAVE_GETADDRINFO case. 1264 1265 * keyserver/curl-shim.c (curl_easy_perform): Use struct srv and log 1266 chosen host and port. 1267 1268 * keyserver/gpgkeys_hkp.c (main): Properly take the port given by SRV. 1269 1270 Backported from ba9e974f1fd85b3dbbfb5e26d7a14f71d07c7cf2 1271 12722012-12-18 Werner Koch <wk@gnupg.org> 1273 1274 Add meta option ignore-invalid-option. 1275 + commit 8044a5acea80cb749159cd725e95bad246be5f72 1276 * util/argparse.c (iio_item_def_s, IIO_ITEM_DEF): New. 1277 (initialize): Init field IIO_LIST. 1278 (ignore_invalid_option_p): New. 1279 (ignore_invalid_option_add): New. 1280 (ignore_invalid_option_clear): New. 1281 (optfile_parse): Implement meta option. 1282 12832012-12-15 Werner Koch <wk@gnupg.org> 1284 1285 Fix potential heap corruption in "gpg -v --version" 1286 + commit e33e74e3a4b2b4a0341f933410ddd5db7a12515e 1287 * g10/gpg.c (build_list): Rewrite to cope with buffer overflow in 1288 certain locales. 1289 * util/membuf.c (put_membuf_str): New. 1290 (get_membuf): Make LEN optional. 1291 12922012-12-14 Werner Koch <wk@gnupg.org> 1293 1294 Workaround for a gettext problem during "make distcheck". 1295 + commit e9385a6651e1c2cc2d5cc9032468d93ce3ef1ea0 1296 * configure.ac: Add comment string "GNU gnupg". 1297 1298 gettext: Upgrade to version 0.18. 1299 + commit 4032aa8be8ee74d3561dfa6802b977f4586cef53 1300 * configure.ac (AM_GNU_GETTEXT_VERSION): Bump to 0.18. 1301 * po/Makefile.in.in: Upgrade to gettext-0.18. Keep option --previous 1302 of msgmerge. 1303 * intl/: Upgrade to gettext-0.18. 1304 * m4/gettext.m4: Upgrade to gettext-0.18.1. 1305 * m4/iconv.m4: Upgrade to gettext-0.18.1. 1306 * m4/lib-ld.m4: Upgrade to gettext-0.18.1. 1307 * m4/lib-link.m4: Upgrade to gettext-0.18.1. 1308 * m4/lib-prefix.m4: Upgrade to gettext-0.18.1. 1309 * m4/nls.m4: Upgrade to gettext-0.18.1. 1310 * m4/po.m4: Upgrade to gettext-0.18.1. 1311 * m4/progtest.m4: Upgrade to gettext-0.18.1. 1312 * m4/codeset.m4: Upgrade to gettext-0.18.1. 1313 * m4/fcntl-o.m4: New file, from gettext-0.18.1. 1314 * m4/glibc2.m4: Upgrade to gettext-0.18.1. 1315 * m4/glibc21.m4: Upgrade to gettext-0.18.1. 1316 * m4/intdiv0.m4: Upgrade to gettext-0.18.1. 1317 * m4/intl.m4: Upgrade to gettext-0.18.1. 1318 * m4/intldir.m4: Upgrade to gettext-0.18.1. 1319 * m4/intlmacosx.m4: Upgrade to gettext-0.18.1. 1320 * m4/intmax.m4: Upgrade to gettext-0.18.1. 1321 * m4/inttypes_h.m4: Upgrade to gettext-0.18.1. 1322 * m4/inttypes-pri.m4: Upgrade to gettext-0.18.1. 1323 * m4/lcmessage.m4: Upgrade to gettext-0.18.1. 1324 * m4/lock.m4: Upgrade to gettext-0.18.1. 1325 * m4/longlong.m4: Upgrade to gettext-0.18.1. 1326 * m4/printf-posix.m4: Upgrade to gettext-0.18.1. 1327 * m4/size_max.m4: Upgrade to gettext-0.18.1. 1328 * m4/stdint_h.m4: Upgrade to gettext-0.18.1. 1329 * m4/threadlib.m4: New file, from gettext-0.18.1. 1330 * m4/uintmax_t.m4: Upgrade to gettext-0.18.1. 1331 * m4/visibility.m4: Upgrade to gettext-0.18.1. 1332 * m4/wchar_t.m4: Upgrade to gettext-0.18.1. 1333 * m4/wint_t.m4: Upgrade to gettext-0.18.1. 1334 * m4/xsize.m4: Upgrade to gettext-0.18.1. 1335 * m4/Makefile.am (EXTRA_DIST): Add the new files. 1336 13372012-12-13 Werner Koch <wk@gnupg.org> 1338 1339 Support NetBSD m68K ELF targets. 1340 + commit 0fee571260e56c11023a998d564bb9c0c1d87d70 1341 * mpi/config.links (m68k*-*-netbsdelf): New. 1342 13432012-12-13 NIIBE Yutaka <gniibe@fsij.org> 1344 1345 Card: Fix the process of writing key or generating key. 1346 + commit 09dd073096439f6ae0122e57321201f79045d3bc 1347 * g10/app-openpgp.c (store_fpr): Flush KEY-FPR and KEY-TIME. 1348 13492012-11-30 David Shaw <dshaw@jabberwocky.com> 1350 1351 Fix mksamplekeys awk to not leave out the whitespace altogether. 1352 + commit e71dbf244a2b6e7edcca37ac9544000f0629de0e 1353 1354 1355 Refresh sample keys. 1356 + commit 3ab272086cdd39cc982b6deccd827a3cdb804cf1 1357 * mksamplekeys: Tweak awk script to not add trailing whitespace to 1358 blank lines (makes git pre-commit hook unhappy). 1359 1360 * samplekeys.asc: Refresh. 1361 13622012-11-29 David Shaw <dshaw@jabberwocky.com> 1363 1364 The keyserver search menu should honor --keyid-format. 1365 + commit d42dcbfa923cc2e97faf588b19c19f63c4db409d 1366 * keyserver.c (print_keyrec): Honor --keyid-format when getting back 1367 full fingerprints from the keyserver (the comment in the code was 1368 correct, the code was not). 1369 13702012-11-08 Werner Koch <wk@gnupg.org> 1371 1372 tests: Skip secret key import check in SELinux mode. 1373 + commit 95347cf950e2e26d1726791f9f4278af70dccce9 1374 * configure.ac (ENABLE_SELINUX_HACKS): New am_conditional. 1375 * checks/Makefile.am (prepared.stamp): Replace by defs-config.inc. 1376 (defs-config.inc): Create and set enable_selinux_hacks variable. 1377 * checks/defs.inc: Include defs-config.inc. 1378 1379 * checks/armor.test: Do not run the last test in selinux mode. 1380 1381 de.po: Grammar fix. 1382 + commit e3e540604930d06ba23692ae3e4c43ec422a31b9 1383 * po/de.po: Grammar fix by Daniel Leidert 1384 1385 Create off-line card encryption key with the right size. 1386 + commit 64e7c237db1eb5f463f4b810b09eda232da83676 1387 * g10/keygen.c (gen_card_key_with_backup): Get the size of the key 1388 from the card. 1389 1390 Support the not anymore patented IDEA cipher algorithm. 1391 + commit b1eac93431c377805984210a8ef76f5c314c8a5f 1392 * cipher/idea.c: New. Take from Libgcrypt master and adjust for 1393 direct use in GnuPG. 1394 * cipher/idea-stub.c: Remove. 1395 * cipher/Makefile.am: Add idea.c and remove idea-stub.c rules. 1396 * configure.ac: Remove idea-stub code. 1397 * g10/gpg.c (check_permissions): Remove code path for ITEM==2. 1398 (main): Make --load-extension a dummy option. 1399 * g10/keygen.c (keygen_set_std_prefs): Include IDEA only in PGP2 1400 compatibility mode. 1401 * g10/misc.c (idea_cipher_warn): Remove. Also remove all callers. 1402 * g10/seckey-cert.c (do_check): Remove emitting of STATUS_RSA_OR_IDEA. 1403 * g10/status.c (get_status_string): Remove STATUS_RSA_OR_IDEA. 1404 * g10/status.h (STATUS_RSA_OR_IDEA): Remove. 1405 14062012-11-07 Werner Koch <wk@gnupg.org> 1407 1408 Fix usage of dlerror to conform to POSIX. 1409 + commit c3a5448379cdf07b408a265fe8f477901524170d 1410 * cipher/idea-stub.c: Clear last error before dlsym. 1411 1412 Improve handling of random_seed read errors. 1413 + commit b1abc01d4ad199258b3d2fb579ac06c6fea747fd 1414 * cipher/random.c (read_seed_file): Distinguish between errors and 1415 short reads. 1416 14172012-11-06 Thomas Klausner <wiz@NetBSD.org> 1418 1419 Handle systems which have uint64_t but not the UINT64_C macro. 1420 + commit 6a41f385c496c180ee730ce80ff5653746410759 1421 * include/types.h (U64_C) [!UINT64_C]: Add simple replacement. 1422 14232012-11-06 Werner Koch <wk@gnupg.org> 1424 1425 Fix extern inline use for gcc > 4.3 in c99 mode. 1426 + commit 5093bed27580e608de073bcc5953bd76b6b8b2de 1427 * mpi/mpi-inline.h [!G10_MPI_INLINE_DECL]: Take care of changed extern 1428 inline semantics in gcc. 1429 14302012-08-24 Werner Koch <wk@gnupg.org> 1431 1432 Update translations to adjust for typo fixes. 1433 + commit a1856e767ac4cefe3252211a81ef479f6e3e4e5f 1434 1435 14362012-08-24 David Prévot <taffit@debian.org> 1437 1438 Update French translation. 1439 + commit fadb3ca2f680d0ab5de6b64c3f34f3d5a874721b 1440 * po/fr.po: Update. 1441 14422012-08-24 Werner Koch <wk@gnupg.org> 1443 1444 Fix typos spotted during translations. 1445 + commit a76efe1b05c50bb0688221bccbefaacd6932652d 1446 * g10/gpg.c: uppercase after Syntax 1447 * util/secmem.c (print_warn): Update URL. 1448 14492012-08-24 David Prévot <taffit@debian.org> 1450 1451 Keep previous msgids of translated messages. 1452 + commit bc317df59a98daf83a5b69c7f8ad9954180e86b6 1453 * po/Makefile.in.in: Use option --previous with msgmerge. 1454 14552012-04-29 Werner Koch <wk@gnupg.org> 1456 1457 With --quiet do not print reading passphrase from fd message. 1458 + commit 7a852fba6c3fce4ec6db8ab5287e646249251070 1459 Fix for bug#1403. 1460 * g10/passphrase.c (read_passphrase_from_fd): Act on --quiet. 1461 14622012-02-01 David Shaw <dshaw@jabberwocky.com> 1463 1464 Honor --cert-digest-algo when recreating a cert. 1465 + commit 509fe4ce5d50089776b072c33c199798d3defe8c 1466 * g10/sign.c (update_keysig_packet): Honor --cert-digest-algo when 1467 recreating a cert. 1468 1469 This is used by various things in --edit-key like setpref, primary, 1470 etc. Suggested by Christian Aistleitner. 1471 14722012-01-30 Werner Koch <wk@gnupg.org> 1473 1474 Release 1.4.12. 1475 + commit 75b347a2a191ad479123a57f935e27b78e079188 1476 1477 1478 Fix ChangeLog creation rule. 1479 + commit 3165b5cb8348881cfb5a158f5a9f0407f9c6bcba 1480 * Makefile.am (gen-ChangeLog): Use set -e. Fixes commit b99e77d5. 1481 1482 Add Ukrainian translation. 1483 + commit 88d8ca22b5af043e7e58dc0f3354ccc78a08a08e 1484 * po/uk.po: New. 1485 * po/LINGUAS: Add uk.po. 1486 1487 Update GNU helper files. 1488 + commit e792d82bbaa0f4bc8666af911bf84735179e59be 1489 * scripts/config.guess, scripts/config.rpath: Update to version 1490 2012-01-01. 1491 * scripts/config.rpath, scripts/compile, scripts/depcomp: Update to 1492 modern version. 1493 * scripts/texinfo.tex: Update from current gnulib. 1494 1495 Update documentation. 1496 + commit 422774a1d99a2936f292333a25f288c5b274f0cd 1497 * doc/gpg.texi, doc/specify-user-id.texi, doc/yat2m.c: Update from 1498 current GnuPG master (commit bdde44a). 1499 1500 Require gitlog-to-changelog to be installed. 1501 + commit b99e77d59cb3def23328426cf92e28967f51b3da 1502 * Makefile.am (GITLOG_TO_CHANGELOG): New. 1503 (gen-ChangeLog): Use installed version of gitlog-to-changelog. 1504 15052012-01-20 Werner Koch <wk@gnupg.org> 1506 1507 Do not copy default merge commit log entries into the ChangeLog. 1508 + commit 51c1e84265890b26bf3b6ac0b17fb14c58e6e893 1509 * scripts/gitlog-to-changelog: Skip merge commits. 1510 15112012-01-20 David Shaw <dshaw@jabberwocky.com> 1512 1513 Changes to --min-cert-level should cause a trustdb rebuild (issue 1366) 1514 + commit f310735975a199f8fde08e7ffeb42412e75daa3c 1515 * g10/gpgv.c, g10/trustdb.c (read_trust_options): Add min_cert_level 1516 1517 * g10/trustdb.c (check_trustdb_stale): Request a rebuild if 1518 pending_check_trustdb is true (set when we detect a trustdb 1519 parameter has changed). 1520 1521 * g10/keylist.c (public_key_list): Use 'l' in the "tru" with-colons 1522 listing for min_cert_level not matching. 1523 1524 * g10/tdbio.c (tdbio_update_version_record, create_version_record, 1525 tdbio_db_matches_options, tdbio_dump_record, tdbio_read_record, 1526 tdbio_write_record): Add a byte for min_cert_level in the tdbio 1527 version record. 1528 15292012-01-16 Werner Koch <wk@gnupg.org> 1530 1531 w32: Always build with -fno-omit-frame-pointer. 1532 + commit eb1c9a44c352ded1bcb9316f5fa0752b61abbb10 1533 This is required due to a bug in the mingw32 runtime. 1534 * configure.ac (HAVE_W32_SYSTEM): Force use of -fno-omit-frame-pointer. 1535 1536 w32: Allow passing a relative name for the tarball. 1537 + commit 9b16cd09d127a46f8772a2a2ec426767356d1ae2 1538 * scripts/mk-w32-dist: Prepend PWD to TARBALL. 1539 1540 Automate W32 installer building. 1541 + commit 81839d286137b9804aa2f5b943b51663f3c172b6 1542 * doc/README.W32: Document new installer build procedure. 1543 * scripts/autogen.sh: Pass all args to the installer (regression fix). 1544 * scripts/conf-w32/README: Remove from repo. 1545 * scripts/conf-w32/bzip2-1.diff: Remove from repo. 1546 * scripts/mk-w32-dist: Rewrite. 1547 * scripts/w32installer.nsi [WITH_PATCHES]: Use constant patch file 1548 name. 1549 15502012-01-13 Werner Koch <wk@gnupg.org> 1551 1552 Add a DECRYPTION_INFO status. 1553 + commit cfb193a1de2f0553ee65a19a417a885938539225 1554 * g10/status.h (STATUS_DECRYPTION_INFO): New. 1555 * g10/status.c (get_status_string): Add new status string. 1556 * g10/encr-data.c: Include status.h. 1557 (decrypt_data): Print STATUS_DECRYPTION_INFO. 1558 1559 Include bzip2 code to ease building for W32. 1560 + commit 1575678710588986275f3f820961b3418e81fc62 1561 * bzlib/: Include bzip2 code. 1562 * configure.ac [W32]: Force use of included bzip2 code. 1563 * scripts/autogen.sh <--build-w32>: Do not pass --with-bzip option. 1564 * Makefile.am (SUBDIRS): Add bzip. Use it only under W32. 1565 15662012-01-12 Werner Koch <wk@gnupg.org> 1567 1568 Allow building with the 32 bit mingw-w64 toolchain. 1569 + commit 3a22b622c89ae87c4d557ab71c619803a4fed8ed 1570 * scripts/autogen.sh <--build-w32>: Support i686-w64-mingw32 and use 1571 it by default if installed. 1572 * keyserver/gpgkeys_ldap.c (my_ldap_start_tls_s): Define macro 1573 depending on compiler version. 1574 (main): Use new macro. 1575 * util/miscutil.c [!HAVE_TIMEGM]: Add prototype for the timegm 1576 autoconf replacement function. 1577 1578 gpg: Remove unused fields from a trust data structure. 1579 + commit 02f282368e6e68ac1c8dffcfd6e772ec4ff356f8 1580 The functions tdbio_read_record and tdbio_write_record control the 1581 actual on-disk format. Thus there is no need to keep reserved fields 1582 in the internal data structure. 1583 1584 * g10/tdbio.h (struct trust_record): Remove reserved fields. 1585 1586 Typo fixes and comment re-formatting. 1587 + commit 16c90b2175c92c0698172b547b90f5325bb9ab17 1588 1589 15902012-01-11 David Shaw <dshaw@jabberwocky.com> 1591 1592 Distribute dotlock.h. 1593 + commit cb8ebf792e919b1797bf16b6606427d77c45c947 1594 1595 15962012-01-10 David Shaw <dshaw@jabberwocky.com> 1597 1598 Refresh sample keys. 1599 + commit 174d2f80bf40c9ae18fcd9fa834092ca2517e977 1600 1601 16022012-01-10 Werner Koch <wk@gnupg.org> 1603 1604 Allow use of a standard space separated fingerprint. 1605 + commit 9b2a98ea148f768ef334f1baf640d8f7c6a813fb 1606 We allow a single or a double space in the middle of the fingerprint 1607 to help with c+p fingerprints from an HTML pages which are not being 1608 enclosed in a "pre" tag. 1609 * g10/getkey.c (classify_user_id): Check for space separated GPG 1610 fingerprint. 1611 1612 Replace file locking by the new portable dotlock code. 1613 + commit b9333cd890a85cae5064ff2b0b97c4ba2afc1a99 1614 * include/dotlock.h: New. From current gnupg master. 1615 * util/dotlock.c: Ditto. Include util.h. The major changes done in 1616 master are: Factor Unix and W32 specific code out into specific 1617 functions. Define HAVE_POSIX_SYSTEM. Rearrange some functions. 1618 (disable_dotlock): Rename to dotlock_disable. 1619 (create_dotlock): Rename to dotlock_create and add a dummy arg. 1620 (destroy_dotlock): Rename to dotlock_destroy. 1621 (make_dotlock): Rename to dotlock_take. 1622 (release_dotlock): Rename to dotlock_release. 1623 (remove_lockfiles): Rename to dotlock_remove_lockfiles. 1624 1625 Update copyright years. 1626 + commit dccdcef319014d3a0ec43c77017cd65a09240f0c 1627 * util/argparse.c (default_strusage): Update printed copyright year. 1628 1629 Use gcc pragmas to suppress some warnings. 1630 + commit 667ba59ec52d169902d7ef244cdcdde1bcc30681 1631 * configure.ac (AH_BOTTOM): Add GNUPG_GCC_VERSION macro. 1632 * util/estream-printf.c (pr_float): Use new gcc pragma to ignore a 1633 warning about a non-literal format. 1634 * util/miscutil.c (asctimestamp): Ditto. 1635 * cipher/md.c (md_stop_debug): Use new gcc pragme to ignore a warning 1636 * about a set but unused variable. 1637 1638 Update gitlog-to-changelog. 1639 + commit b5b6cb57db47dc892b74c9e24caae7099b274a9f 1640 * scripts/gitlog-to-changelog: Update from gnupg master. 1641 * Makefile.am (gen-ChangeLog): Add new options. 1642 * scripts/autogen.sh: Fix typo in URL. Reported by Gilles Espinasse. 1643 16442011-12-28 David Shaw <dshaw@jabberwocky.com> 1645 1646 Use the longest key ID available when talking to a HKP server. 1647 + commit 6fe25e5602fabe92c68e5ba30e4777221e8612df 1648 This is issue 1340. Now that PKSD is dead, and SKS supports long key 1649 IDs, this is safe to do. Patch from Daniel Kahn Gillmor 1650 <dkg@fifthhorseman.net>. 1651 16522011-12-02 Werner Koch <wk@gnupg.org> 1653 1654 Generate the ChangeLog from commit logs. 1655 + commit 120b0ce1362a3d77955c10a0374d6cc99e885c86 1656 * scripts/gitlog-to-changelog: New script. Taken from gnulib. 1657 * scripts/git-log-fix: New file. 1658 * scripts/git-log-footer: New file. 1659 * scripts/git-hooks/commit-msg: New script. 1660 * autogen.sh: Install commit-msg hook for git. 1661 * doc/HACKING: Describe the ChangeLog policy. 1662 * Makefile.am (EXTRA_DIST): Add new files. 1663 (gen-ChangeLog): New. 1664 (dist-hook): Run gen-ChangeLog. 1665 1666 Rename all ChangeLog files to ChangeLog-2011. 1667 + commit 76b73caf91b4631c282c4b744900a0d873c4ccf0 1668 * ChangeLog: New file. 1669 16702011-12-01 Werner Koch <wk@gnupg.org> 1671 1672 NB: Changes done before December 1st, 2011 are described in 1673 per directory files named ChangeLog-2011. See doc/HACKING for 1674 details. 1675 1676 ----- 1677 Copyright (C) 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 1678 2006, 2007, 2008, 2009, 2010, 2011, 1679 2012 Free Software Foundation, Inc. 1680 1681 Copying and distribution of this file and/or the original GIT 1682 commit log messages, with or without modification, are 1683 permitted provided the copyright notice and this notice are 1684 preserved. 1685