1. 15 Dec, 2018 4 commits
  2. 14 Dec, 2018 3 commits
  3. 11 Dec, 2018 6 commits
  4. 06 Dec, 2018 3 commits
  5. 05 Dec, 2018 11 commits
    • NIIBE Yutaka's avatar
      g10: Fix print_pubkey_info new line output. · c5aba093
      NIIBE Yutaka authored
      * g10/keylist.c (print_pubkey_info): Reverse the condition.
      
      --
      
      This mistakes were introduced when replacing by estream.
      
      It resulted 'gpg --card-status' from a process with no controlling
      terminal fails.
      
      Fixes-commit: fb2ba989Signed-off-by: NIIBE Yutaka's avatarNIIBE Yutaka <gniibe@fsij.org>
      (cherry picked from commit e154fba30ba0d5f29040a33f5c1b5c25b441b69f)
      c5aba093
    • Werner Koch's avatar
      gpg: New list-option "show-only-fpr-mbox". · 9b538451
      Werner Koch authored
      * g10/gpg.c (parse_list_options): Add option "show-only-fpr-mbox".
      * g10/options.h (LIST_SHOW_ONLY_FPR_MBOX): New.
      * g10/keylist.c (list_keyblock_simple): New.
      (list_keyblock): Call it.
      (list_all): Do not print the keyring name in LIST_SHOW_ONLY_FPR_MBOX
      mode.
      --
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit 0e8bf204791ebfd0c9a8e4b49fbadf998ec62e49)
      
      * g10/keylist.c (list_keyblock_simple): Remove optional arg from
      mailbox_from_userid
      9b538451
    • Werner Koch's avatar
      wks: Fix filter expression syntax flaw. · 80bf1f89
      Werner Koch authored
      * tools/wks-util.c (wks_get_key, wks_filter_uid): The filter
      expression needs a space before the value.
      (install_key_from_spec_file): Replace es_getline by es_read_line and
      remove debug output.
      --
      
      A value of starting with '<' was considered an invalid operator due to
      our tokenization method.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit 0c36ec241d285545f286069843de4f663cd274a3)
      80bf1f89
    • Werner Koch's avatar
      wks: Allow reading of --install-key arguments from stdin. · b6fd60df
      Werner Koch authored
      * tools/wks-util.c (install_key_from_spec_file): New.
      (wks_cmd_install_key): Call it.
      * tools/gpg-wks-client.c (main): Allow --install-key w/o arguments.
      * tools/gpg-wks-server.c (main): Ditto.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit ba46a359b9d6549b74ec8401ea39bad434d87564)
      b6fd60df
    • Werner Koch's avatar
      wks: Create sub-directories · bf29d7c8
      Werner Koch authored
      * tools/wks-util.c (wks_compute_hu_fname): Stat and create directory
      if needed.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit 73e5b0ec9b9ba5e04e55f8c42d81e23df7c3afe0)
      bf29d7c8
    • Werner Koch's avatar
      wks: Add new commands --install-key and --remove-key to the client. · 5b4aa8c6
      Werner Koch authored
      * tools/gpg-wks-client.c (aInstallKey, aRemoveKey, oDirectory): New.
      (opts): Add "--install-key", "--remove-key" and "-C".
      (parse_arguments): Parse them.
      (main): Check that the given directory exists.  Implement the new
      commands.
      --
      
      These commands maybe useful to prepare a WKD directory on a non-Unix
      box using the standard wks client.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit 602b1909632925d5a2e0778c102d66109795c627)
      5b4aa8c6
    • Werner Koch's avatar
      wks: Move a few server functions to wks-util. · 51b722c6
      Werner Koch authored
      * tools/gpg-wks-server.c (write_to_file): Move to ...
      * tools/wks-util.c: here.
      * tools/gpg-wks-server.c (compute_hu_fname): Move to ...
      * tools/wks-util.c (wks_compute_hu_fname): here.
      * tools/gpg-wks-server.c (fname_from_userid): Move to ...
      * tools/wks-util.c (wks_fname_from_userid): here.
      * tools/gpg-wks-server.c (command_install_key): Move to ...
      * tools/wks-util.c (wks_cmd_install_key): here and change caller.
      * tools/gpg-wks-server.c (command_remove_key): Move to ...
      * tools/wks-util.c (wks_cmd_remove_key): here and change callers.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit 99094c992c20dd22971beb3527cfda109cd1df89)
      51b722c6
    • Jussi Kivilinna's avatar
      g10/mainproc: disable hash contexts when --skip-verify is used · 6008410e
      Jussi Kivilinna authored
      * g10/mainproc.c (proc_plaintext): Do not enable hash contexts when
      opt.skip_verify is set.
      --
      Signed-off-by: 's avatarJussi Kivilinna <jussi.kivilinna@iki.fi>
      (cherry picked from commit 73e74de0e33bbb76300f96a4174024779047df06)
      6008410e
    • Jussi Kivilinna's avatar
      common/iobuf: fix memory wiping in iobuf_copy · ebd434a4
      Jussi Kivilinna authored
      * common/iobuf.c (iobuf_copy): Wipe used area of buffer instead of
      first sizeof(char*) bytes.
      --
      Signed-off-by: 's avatarJussi Kivilinna <jussi.kivilinna@iki.fi>
      (cherry picked from commit 654e353d9b20f10fa275e7ae10cc50480654f079)
      ebd434a4
    • Jussi Kivilinna's avatar
      common: Use platform memory zeroing function for wipememory · 21fdef69
      Jussi Kivilinna authored
      * common/mischelp.h (wipememory): Replace macro with function
      prototype.
      (wipememory2): Remove.
      * common/mischelp.c (wipememory): New.
      * configure.ac (AC_CHECK_FUNCS): Check for 'explicit_bzero' and
      remove duplicated checks.
      --
      
      In new wipememory function, memory is cleared through platform
      provided secure memory zeroing function, SecureZeroMemory
      or explicit_bzero.
      
      If none of these is available, memset is called through
      volatile function pointer to so that compiler won't optimize
      away the call.
      Signed-off-by: 's avatarJussi Kivilinna <jussi.kivilinna@iki.fi>
      (cherry picked from commit 2a650772b4e1c78a4fd20bc88433930e5551fe9c)
      21fdef69
    • Werner Koch's avatar
      gpg: Improve error message about failed keygrip computation. · edeebe0a
      Werner Koch authored
      * g10/keyid.c (keygrip_from_pk): Print the fingerprint on failure.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit cd64af003d4b6b46b69dbd575f73d53359ae0bcc)
      edeebe0a
  6. 23 Nov, 2018 1 commit
    • Werner Koch's avatar
      dirmngr: Avoid possible CSRF attacks via http redirects. · 4a4bb874
      Werner Koch authored
      * dirmngr/http.h (parsed_uri_s): Add fields off_host and off_path.
      (http_redir_info_t): New.
      * dirmngr/http.c (do_parse_uri): Set new fields.
      (same_host_p): New.
      (http_prepare_redirect): New.
      * dirmngr/t-http-basic.c: New test.
      * dirmngr/ks-engine-hkp.c (send_request): Use http_prepare_redirect
      instead of the open code.
      * dirmngr/ks-engine-http.c (ks_http_fetch): Ditto.
      --
      
      With this change a http query will not follow a redirect unless the
      Location header gives the same host.  If the host is different only
      the host and port is taken from the Location header and the original
      path and query parts are kept.
      Signed-off-by: 's avatarWerner Koch <wk@gnupg.org>
      (cherry picked from commit fa1b1eaa4241ff3f0634c8bdf8591cbc7c464144)
      4a4bb874
  7. 21 Nov, 2018 1 commit
  8. 18 Nov, 2018 6 commits
  9. 15 Nov, 2018 1 commit
  10. 12 Nov, 2018 1 commit
  11. 07 Nov, 2018 3 commits