[git] GnuPG - branch, STABLE-BRANCH-2-0, updated. gnupg-2.0.30-11-gcbd0308

by Daniel Kahn Gillmor cvs at cvs.gnupg.org
Tue Aug 9 12:35:57 CEST 2016 

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU Privacy Guard".

The branch, STABLE-BRANCH-2-0 has been updated
       via  cbd0308bc70855a2dd34bda85b9b40a61199678c (commit)
      from  caff669212d2465a3a387571305a7230d394c0e0 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit cbd0308bc70855a2dd34bda85b9b40a61199678c
Author: Daniel Kahn Gillmor <dkg at fifthhorseman.net>
Date:   Fri Aug 5 10:47:51 2016 -0400

    gpg: Avoid publishing the GnuPG version by default
    
    * g10/gpg.c (main): initialize opt.emit_version to 0
    * doc/gpg.texi: document different default for --emit-version
    
    --
    
    The version of GnuPG in use is not particularly helpful.  It is not
    cryptographically verifiable, and it doesn't distinguish between
    significant version differences like 2.0.x and 2.1.x.
    
    Additionally, it leaks metadata that can be used to distinguish users
    from one another, and can potentially be used to target specific
    attacks if there are known behaviors that differ between major
    versions.
    
    It's probably better to take the more parsimonious approach to
    metadata production by default.
    
    (backport of master commit c9387e41db7520d176edd3d6613b85875bdeb32c)
    
    Signed-off-by: Daniel Kahn Gillmor <dkg at fifthhorseman.net>

diff --git a/doc/gpg.texi b/doc/gpg.texi
index 23636e9..cde27a5 100644
--- a/doc/gpg.texi
+++ b/doc/gpg.texi
@@ -2504,9 +2504,9 @@ protected by the signature.
 @opindex emit-version
 Force inclusion of the version string in ASCII armored output.  If
 given once only the name of the program and the major number is
-emitted (default), given twice the minor is also emitted, given triple
+emitted, given twice the minor is also emitted, given triple
 the micro is added, and given quad an operating system identification
-is also emitted.  @option{--no-emit-version} disables the version
+is also emitted.  @option{--no-emit-version} (default) disables the version
 line.
 
 @item --sig-notation @code{name=value}
diff --git a/g10/gpg.c b/g10/gpg.c
index 3a7dc38..a757fe3 100644
--- a/g10/gpg.c
+++ b/g10/gpg.c
@@ -2018,7 +2018,7 @@ main (int argc, char **argv)
     opt.def_cert_expire="0";
     set_homedir ( default_homedir () );
     opt.passphrase_repeat=1;
-    opt.emit_version = 1; /* Limit to the major number.  */
+    opt.emit_version = 0;
 
     opt.list_options   |= LIST_SHOW_UID_VALIDITY;
     opt.verify_options |= LIST_SHOW_UID_VALIDITY;

-----------------------------------------------------------------------

Summary of changes:
 doc/gpg.texi | 4 ++--
 g10/gpg.c    | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)


hooks/post-receive
-- 
The GNU Privacy Guard
http://git.gnupg.org

More information about the Gnupg-commits mailing list