From cvs at cvs.gnupg.org Tue Nov 1 06:38:50 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Tue, 01 Nov 2016 06:38:50 +0100 Subject: [git] GCRYPT - branch, master, updated. libgcrypt-1.7.3-11-gbf6d5b1 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU crypto library". The branch, master has been updated via bf6d5b10cb4173826f47ac080506b68bb001acb2 (commit) from bfd732f53a9b5dfe14217a68a0fa289bf6913ec0 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit bf6d5b10cb4173826f47ac080506b68bb001acb2 Author: NIIBE Yutaka Date: Tue Nov 1 14:34:16 2016 +0900 cipher: Fix IDEA cipher for clearing memory. * cipher/idea.c (invert_key): Use wipememory, since this kind of memset may be removed by compiler optimization. -- Reported-by: Zhaomo Yang and Brian Johannesmeyer Signed-off-by: NIIBE Yutaka diff --git a/cipher/idea.c b/cipher/idea.c index 14234cf..ffe821d 100644 --- a/cipher/idea.c +++ b/cipher/idea.c @@ -152,7 +152,7 @@ invert_key( u16 *ek, u16 dk[IDEA_KEYLEN] ) *--p = t2; *--p = t1; memcpy(dk, temp, sizeof(temp) ); - memset(temp, 0, sizeof(temp) ); /* burn temp */ + wipememory(temp, sizeof(temp)); } ----------------------------------------------------------------------- Summary of changes: cipher/idea.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) hooks/post-receive -- The GNU crypto library http://git.gnupg.org From cvs at cvs.gnupg.org Tue Nov 1 10:19:03 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Tue, 01 Nov 2016 10:19:03 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-8-g567123d Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 567123de21247cab05762d799400739a12eb67ae (commit) from 4b3264345084a0c9bf9f97fb233df700d7608e66 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 567123de21247cab05762d799400739a12eb67ae Author: Andre Heinecke Date: Tue Nov 1 10:13:49 2016 +0100 qt, cpp: Install version headers in subdirs * lang/cpp/src/Makefile.am, lang/qt/src/Makefile.am: Install version headers in include subdirs. -- This change was requested on the gnupg-devel mailing list to avoid placing these headers into the top level include directories. There is currently no known user of these headers so changing it now should not break things downstream. diff --git a/lang/cpp/src/Makefile.am b/lang/cpp/src/Makefile.am index 342bdf8..d1f414e 100644 --- a/lang/cpp/src/Makefile.am +++ b/lang/cpp/src/Makefile.am @@ -57,7 +57,7 @@ interface_headers= \ gpgmeppincludedir = $(includedir)/gpgme++ gpgmeppinclude_HEADERS = $(gpgmepp_headers) nobase_gpgmeppinclude_HEADERS = $(interface_headers) -nodist_include_HEADERS = gpgmepp_version.h +nodist_gpgmeppinclude_HEADERS = gpgmepp_version.h libgpgmepp_la_SOURCES = $(main_sources) $(gpgmepp_headers) context_vanilla.cpp \ $(interface_headers) $(private_gpgmepp_headers) diff --git a/lang/qt/src/Makefile.am b/lang/qt/src/Makefile.am index 51fe314..f7610fd 100644 --- a/lang/qt/src/Makefile.am +++ b/lang/qt/src/Makefile.am @@ -203,7 +203,7 @@ qgpgmeincludedir = $(includedir)/qgpgme qgpgmeinclude_HEADERS = $(qgpgme_headers) camelcaseincludedir = $(includedir)/QGpgME camelcaseinclude_HEADERS = $(camelcase_headers) -nodist_include_HEADERS = qgpgme_version.h +nodist_qgpgmeinclude_HEADERS = qgpgme_version.h libqgpgme_la_SOURCES = $(qgpgme_sources) $(qgpgme_headers) $(private_qgpgme_headers) ----------------------------------------------------------------------- Summary of changes: lang/cpp/src/Makefile.am | 2 +- lang/qt/src/Makefile.am | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Tue Nov 1 18:35:24 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Tue, 01 Nov 2016 18:35:24 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-9-g627c5de Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 627c5deed84b4481710b6c0de06b26e886679bbe (commit) from 567123de21247cab05762d799400739a12eb67ae (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 627c5deed84b4481710b6c0de06b26e886679bbe Author: Andre Heinecke Date: Tue Nov 1 18:28:20 2016 +0100 qt: Add Distinguished Name parser from libkleo * lang/qt/src/dn.cpp (DN, DN::Attribute): New public API. * lang/qt/src/dn.h: New. * lang/qt/src/Makefile.am: Update accordingly. -- This is a general useful API to work with X509 distinguished names and is useful when doing CMS with GpgME. Adding this class from libkleo allows kmails messagelib to avoid any KDE UI Frameworks and so can be used more versatile in the future. This class can be combined with libkleos DNAttributeMapper to have the same bevavior as before in libkleo when using DN::prettyDN calls can be converted from: Kleo::DN(uid).prettyDN(); to: QGpgME::DN dn(uid); uid.setAttributeOrder( Kleo::DNAttributeMapper::instance()->attributeOrder()); dn.prettyDN(); diff --git a/NEWS b/NEWS index 2b71a6a..0274f9c 100644 --- a/NEWS +++ b/NEWS @@ -3,10 +3,14 @@ Noteworthy changes in version 1.7.2 (unreleased) * The module of the Python bindings has been renamed to 'gpg'. + * qt: Added Distinguished Name parser from libkleo + * Interface changes relative to the 1.7.1 release: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ gpgme_set_sender NEW. gpgme_get_sender NEW. + qt: DN NEW. + qt: DN::Attribute NEW. Noteworthy changes in version 1.7.1 (2016-10-18) diff --git a/lang/qt/src/Makefile.am b/lang/qt/src/Makefile.am index f7610fd..0dd18fe 100644 --- a/lang/qt/src/Makefile.am +++ b/lang/qt/src/Makefile.am @@ -35,7 +35,8 @@ qgpgme_sources = \ qgpgmeverifyopaquejob.cpp threadedjobmixin.cpp \ qgpgmekeyformailboxjob.cpp gpgme_backend_debug.cpp \ qgpgmetofupolicyjob.cpp \ - defaultkeygenerationjob.cpp qgpgmewkspublishjob.cpp + defaultkeygenerationjob.cpp qgpgmewkspublishjob.cpp \ + dn.cpp # If you add one here make sure that you also add one in camelcase qgpgme_headers= \ @@ -73,7 +74,8 @@ qgpgme_headers= \ verifydetachedjob.h \ defaultkeygenerationjob.h \ tofupolicyjob.h \ - wkspublishjob.h + wkspublishjob.h \ + dn.h camelcase_headers= \ AddUserIDJob \ @@ -84,6 +86,7 @@ camelcase_headers= \ DataProvider \ DecryptJob \ DecryptVerifyJob \ + DN \ DownloadJob \ EncryptJob \ ExportJob \ diff --git a/lang/qt/src/dn.cpp b/lang/qt/src/dn.cpp new file mode 100644 index 0000000..0f81a4c --- /dev/null +++ b/lang/qt/src/dn.cpp @@ -0,0 +1,495 @@ +/* + dn.cpp + + This file is part of qgpgme, the Qt API binding for gpgme + Copyright (c) 2004 Klar?lvdalens Datakonsult AB + Copyright (c) 2016 Intevation GmbH + + QGpgME is free software; you can redistribute it and/or + modify it under the terms of the GNU General Public License as + published by the Free Software Foundation; either version 2 of the + License, or (at your option) any later version. + + QGpgME is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + + In addition, as a special exception, the copyright holders give + permission to link the code of this program with any edition of + the Qt library by Trolltech AS, Norway (or with modified versions + of Qt that use the same license as Qt), and distribute linked + combinations including the two. You must obey the GNU General + Public License in all respects for all of the code used other than + Qt. If you modify this file, you may extend this exception to + your version of the file, but you are not obligated to do so. If + you do not wish to do so, delete this exception statement from + your version. +*/ + +#ifdef HAVE_CONFIG_H + #include "config.h" +#endif + +#include "dn.h" + +static const struct { + const char *name; + const char *oid; +} oidmap[] = { + // keep them ordered by oid: + { "SP", "ST" }, // hack to show the Sphinx-required/desired SP for + // StateOrProvince, otherwise known as ST or even S + { "NameDistinguisher", "0.2.262.1.10.7.20" }, + { "EMAIL", "1.2.840.113549.1.9.1" }, + { "SN", "2.5.4.4" }, + { "SerialNumber", "2.5.4.5" }, + { "T", "2.5.4.12" }, + { "D", "2.5.4.13" }, + { "BC", "2.5.4.15" }, + { "ADDR", "2.5.4.16" }, + { "PC", "2.5.4.17" }, + { "GN", "2.5.4.42" }, + { "Pseudo", "2.5.4.65" }, +}; +static const unsigned int numOidMaps = sizeof oidmap / sizeof * oidmap; + +class QGpgME::DN::Private +{ +public: + Private() : mRefCount(0) {} + Private(const Private &other) + : attributes(other.attributes), + reorderedAttributes(other.reorderedAttributes), + order{"CN", "L", "_X_", "OU", "O", "C"}, + mRefCount(0) + { + } + + int ref() + { + return ++mRefCount; + } + + int unref() + { + if (--mRefCount <= 0) { + delete this; + return 0; + } else { + return mRefCount; + } + } + + int refCount() const + { + return mRefCount; + } + + DN::Attribute::List attributes; + DN::Attribute::List reorderedAttributes; + QStringList order; +private: + int mRefCount; +}; + +namespace +{ +struct DnPair { + char *key; + char *value; +}; +} + +// copied from CryptPlug and adapted to work on DN::Attribute::List: + +#define digitp(p) (*(p) >= '0' && *(p) <= '9') +#define hexdigitp(a) (digitp (a) \ + || (*(a) >= 'A' && *(a) <= 'F') \ + || (*(a) >= 'a' && *(a) <= 'f')) +#define xtoi_1(p) (*(p) <= '9'? (*(p)- '0'): \ + *(p) <= 'F'? (*(p)-'A'+10):(*(p)-'a'+10)) +#define xtoi_2(p) ((xtoi_1(p) * 16) + xtoi_1((p)+1)) + +static char * +trim_trailing_spaces(char *string) +{ + char *p, *mark; + + for (mark = NULL, p = string; *p; p++) { + if (isspace(*p)) { + if (!mark) { + mark = p; + } + } else { + mark = NULL; + } + } + if (mark) { + *mark = '\0'; + } + + return string; +} + +/* Parse a DN and return an array-ized one. This is not a validating + parser and it does not support any old-stylish syntax; gpgme is + expected to return only rfc2253 compatible strings. */ +static const unsigned char * +parse_dn_part(DnPair *array, const unsigned char *string) +{ + const unsigned char *s, *s1; + size_t n; + char *p; + + /* parse attributeType */ + for (s = string + 1; *s && *s != '='; s++) + ; + if (!*s) { + return NULL; /* error */ + } + n = s - string; + if (!n) { + return NULL; /* empty key */ + } + p = (char *)malloc(n + 1); + + memcpy(p, string, n); + p[n] = 0; + trim_trailing_spaces((char *)p); + // map OIDs to their names: + for (unsigned int i = 0; i < numOidMaps; ++i) + if (!strcasecmp((char *)p, oidmap[i].oid)) { + free(p); + p = strdup(oidmap[i].name); + break; + } + array->key = p; + string = s + 1; + + if (*string == '#') { + /* hexstring */ + string++; + for (s = string; hexdigitp(s); s++) { + s++; + } + n = s - string; + if (!n || (n & 1)) { + return NULL; /* empty or odd number of digits */ + } + n /= 2; + array->value = p = (char *)malloc(n + 1); + + for (s1 = string; n; s1 += 2, n--) { + *p++ = xtoi_2(s1); + } + *p = 0; + } else { + /* regular v3 quoted string */ + for (n = 0, s = string; *s; s++) { + if (*s == '\\') { + /* pair */ + s++; + if (*s == ',' || *s == '=' || *s == '+' + || *s == '<' || *s == '>' || *s == '#' || *s == ';' + || *s == '\\' || *s == '\"' || *s == ' ') { + n++; + } else if (hexdigitp(s) && hexdigitp(s + 1)) { + s++; + n++; + } else { + return NULL; /* invalid escape sequence */ + } + } else if (*s == '\"') { + return NULL; /* invalid encoding */ + } else if (*s == ',' || *s == '=' || *s == '+' + || *s == '<' || *s == '>' || *s == '#' || *s == ';') { + break; + } else { + n++; + } + } + + array->value = p = (char *)malloc(n + 1); + + for (s = string; n; s++, n--) { + if (*s == '\\') { + s++; + if (hexdigitp(s)) { + *p++ = xtoi_2(s); + s++; + } else { + *p++ = *s; + } + } else { + *p++ = *s; + } + } + *p = 0; + } + return s; +} + +/* Parse a DN and return an array-ized one. This is not a validating + parser and it does not support any old-stylish syntax; gpgme is + expected to return only rfc2253 compatible strings. */ +static QGpgME::DN::Attribute::List +parse_dn(const unsigned char *string) +{ + if (!string) { + return QVector(); + } + + QVector result; + while (*string) { + while (*string == ' ') { + string++; + } + if (!*string) { + break; /* ready */ + } + + DnPair pair = { 0, 0 }; + string = parse_dn_part(&pair, string); + if (!string) { + goto failure; + } + if (pair.key && pair.value) + result.push_back(QGpgME::DN::Attribute(QString::fromUtf8(pair.key), + QString::fromUtf8(pair.value))); + free(pair.key); + free(pair.value); + + while (*string == ' ') { + string++; + } + if (*string && *string != ',' && *string != ';' && *string != '+') { + goto failure; /* invalid delimiter */ + } + if (*string) { + string++; + } + } + return result; + +failure: + return QVector(); +} + +static QVector +parse_dn(const QString &dn) +{ + return parse_dn((const unsigned char *)dn.toUtf8().data()); +} + +static QString dn_escape(const QString &s) +{ + QString result; + for (unsigned int i = 0, end = s.length(); i != end; ++i) { + const QChar ch = s[i]; + switch (ch.unicode()) { + case ',': + case '+': + case '"': + case '\\': + case '<': + case '>': + case ';': + result += QLatin1Char('\\'); + // fall through + default: + result += ch; + } + } + return result; +} + +static QString +serialise(const QVector &dn, const QString &sep) +{ + QStringList result; + for (QVector::const_iterator it = dn.begin(); it != dn.end(); ++it) + if (!(*it).name().isEmpty() && !(*it).value().isEmpty()) { + result.push_back((*it).name().trimmed() + QLatin1Char('=') + dn_escape((*it).value().trimmed())); + } + return result.join(sep); +} + +static QGpgME::DN::Attribute::List +reorder_dn(const QGpgME::DN::Attribute::List &dn, const QStringList &attrOrder) +{ + QGpgME::DN::Attribute::List unknownEntries; + QGpgME::DN::Attribute::List result; + unknownEntries.reserve(dn.size()); + result.reserve(dn.size()); + + // find all unknown entries in their order of appearance + for (QGpgME::DN::const_iterator it = dn.begin(); it != dn.end(); ++it) + if (!attrOrder.contains((*it).name())) { + unknownEntries.push_back(*it); + } + + // process the known attrs in the desired order + for (QStringList::const_iterator oit = attrOrder.begin(); oit != attrOrder.end(); ++oit) + if (*oit == QLatin1String("_X_")) { + // insert the unknown attrs + std::copy(unknownEntries.begin(), unknownEntries.end(), + std::back_inserter(result)); + unknownEntries.clear(); // don't produce dup's + } else { + for (QGpgME::DN::const_iterator dnit = dn.begin(); dnit != dn.end(); ++dnit) + if ((*dnit).name() == *oit) { + result.push_back(*dnit); + } + } + + return result; +} + +// +// +// class DN +// +// + +QGpgME::DN::DN() +{ + d = new Private(); + d->ref(); +} + +QGpgME::DN::DN(const QString &dn) +{ + d = new Private(); + d->ref(); + d->attributes = parse_dn(dn); +} + +QGpgME::DN::DN(const char *utf8DN) +{ + d = new Private(); + d->ref(); + if (utf8DN) { + d->attributes = parse_dn((const unsigned char *)utf8DN); + } +} + +QGpgME::DN::DN(const DN &other) + : d(other.d) +{ + if (d) { + d->ref(); + } +} + +QGpgME::DN::~DN() +{ + if (d) { + d->unref(); + } +} + +const QGpgME::DN &QGpgME::DN::operator=(const DN &that) +{ + if (this->d == that.d) { + return *this; + } + + if (that.d) { + that.d->ref(); + } + if (this->d) { + this->d->unref(); + } + + this->d = that.d; + + return *this; +} + +QString QGpgME::DN::prettyDN() const +{ + if (!d) { + return QString(); + } + if (d->reorderedAttributes.empty()) { + d->reorderedAttributes = reorder_dn(d->attributes, d->order); + } + return serialise(d->reorderedAttributes, QStringLiteral(",")); +} + +QString QGpgME::DN::dn() const +{ + return d ? serialise(d->attributes, QStringLiteral(",")) : QString(); +} + +QString QGpgME::DN::dn(const QString &sep) const +{ + return d ? serialise(d->attributes, sep) : QString(); +} + +// static +QString QGpgME::DN::escape(const QString &value) +{ + return dn_escape(value); +} + +void QGpgME::DN::detach() +{ + if (!d) { + d = new QGpgME::DN::Private(); + d->ref(); + } else if (d->refCount() > 1) { + QGpgME::DN::Private *d_save = d; + d = new QGpgME::DN::Private(*d); + d->ref(); + d_save->unref(); + } +} + +void QGpgME::DN::append(const Attribute &attr) +{ + detach(); + d->attributes.push_back(attr); + d->reorderedAttributes.clear(); +} + +QString QGpgME::DN::operator[](const QString &attr) const +{ + if (!d) { + return QString(); + } + const QString attrUpper = attr.toUpper(); + for (QVector::const_iterator it = d->attributes.constBegin(); + it != d->attributes.constEnd(); ++it) + if ((*it).name() == attrUpper) { + return (*it).value(); + } + return QString(); +} + +static QVector empty; + +QGpgME::DN::const_iterator QGpgME::DN::begin() const +{ + return d ? d->attributes.constBegin() : empty.constBegin(); +} + +QGpgME::DN::const_iterator QGpgME::DN::end() const +{ + return d ? d->attributes.constEnd() : empty.constEnd(); +} + +void QGpgME::DN::setAttributeOrder (const QStringList &order) const +{ + d->order = order; +} + +const QStringList & QGpgME::DN::attributeOrder () const +{ + return d->order; +} diff --git a/lang/qt/src/dn.h b/lang/qt/src/dn.h new file mode 100644 index 0000000..17b1c30 --- /dev/null +++ b/lang/qt/src/dn.h @@ -0,0 +1,136 @@ +/* + dn.h + + This file is part of qgpgme, the Qt API binding for gpgme + Copyright (c) 2004 Klar?lvdalens Datakonsult AB + Copyright (c) 2016 Intevation GmbH + + QGpgME is free software; you can redistribute it and/or + modify it under the terms of the GNU General Public License as + published by the Free Software Foundation; either version 2 of the + License, or (at your option) any later version. + + QGpgME is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + + You should have received a copy of the GNU General Public License + along with this program; if not, write to the Free Software + Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + + In addition, as a special exception, the copyright holders give + permission to link the code of this program with any edition of + the Qt library by Trolltech AS, Norway (or with modified versions + of Qt that use the same license as Qt), and distribute linked + combinations including the two. You must obey the GNU General + Public License in all respects for all of the code used other than + Qt. If you modify this file, you may extend this exception to + your version of the file, but you are not obligated to do so. If + you do not wish to do so, delete this exception statement from + your version. +*/ +#ifndef QGPGME_DN_H +#define QGPGME_DN_H + +#include "qgpgme_export.h" + +#include +#include + +#include + +namespace QGpgME +{ + +/** + @short DN parser and reorderer +*/ +class QGPGME_EXPORT DN +{ +public: + class Attribute; + typedef QVector AttributeList; + typedef AttributeList::const_iterator const_iterator; + + DN(); + explicit DN(const QString &dn); + explicit DN(const char *utf8DN); + DN(const DN &other); + ~DN(); + + const DN &operator=(const DN &other); + + /** @return the value in rfc-2253-escaped form */ + static QString escape(const QString &value); + + /** @return the DN in a reordered form, according to the settings in + the [DN] group of the application's config file */ + QString prettyDN() const; + /** @return the DN in the original form */ + QString dn() const; + /** + \overload + Uses \a sep as separator (default: ,) + */ + QString dn(const QString &sep) const; + + QString operator[](const QString &attr) const; + + void append(const Attribute &attr); + + const_iterator begin() const; + const_iterator end() const; + + /** Set the order in which prettyDN will reorder the Attirbutes. */ + void setAttributeOrder(const QStringList &order) const; + + /** Get the used attribute order. */ + const QStringList & attributeOrder() const; + +private: + void detach(); +private: + class Private; + Private *d; +}; + +class QGPGME_EXPORT DN::Attribute +{ +public: + typedef DN::AttributeList List; + + explicit Attribute(const QString &name = QString(), const QString &value = QString()) + : mName(name.toUpper()), mValue(value) {} + Attribute(const Attribute &other) + : mName(other.name()), mValue(other.value()) {} + + const Attribute &operator=(const Attribute &other) + { + if (this != &other) { + mName = other.name(); + mValue = other.value(); + } + return *this; + } + + const QString &name() const + { + return mName; + } + const QString &value() const + { + return mValue; + } + + void setValue(const QString &value) + { + mValue = value; + } + +private: + QString mName; + QString mValue; +}; +} // namespace QGpgME +#endif // QGPGME_DN_H ----------------------------------------------------------------------- Summary of changes: NEWS | 4 + lang/qt/src/Makefile.am | 7 +- lang/qt/src/dn.cpp | 495 ++++++++++++++++++++++++++++++++++++++++++++++++ lang/qt/src/dn.h | 136 +++++++++++++ 4 files changed, 640 insertions(+), 2 deletions(-) create mode 100644 lang/qt/src/dn.cpp create mode 100644 lang/qt/src/dn.h hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Tue Nov 1 23:54:08 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Tue, 01 Nov 2016 23:54:08 +0100 Subject: [git] Scute - branch, master, updated. scute-1.3.0-65-g2680826 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PKCS#11 token on top of gpg-agent". The branch, master has been updated via 26808262a25b64483346d51db56ea82a342a6fbe (commit) from 94eeb2d580f67bd56ba711e055d9ea2ea089ec89 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 26808262a25b64483346d51db56ea82a342a6fbe Author: NIIBE Yutaka Date: Wed Nov 2 07:52:50 2016 +0900 autogen.sh: Update from gnupg. -- Detection of .git should be -e so that git worktree can be used. Signed-off-by: NIIBE Yutaka diff --git a/autogen.sh b/autogen.sh index 3fe24ea..10cc203 100755 --- a/autogen.sh +++ b/autogen.sh @@ -214,7 +214,7 @@ if [ "$myhost" = "find-version" ]; then esac beta=no - if [ -d .git ]; then + if [ -e .git ]; then ingit=yes tmp=$(git describe --match "${matchstr1}" --long 2>/dev/null) if [ -n "$tmp" ]; then @@ -423,7 +423,7 @@ if [ -d .git ]; then [ -z "${SILENT}" ] && cat < This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PKCS#11 token on top of gpg-agent". The branch, master has been updated via e4bcc781fe2280626d602d0d02702d03a9c2601a (commit) from 26808262a25b64483346d51db56ea82a342a6fbe (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit e4bcc781fe2280626d602d0d02702d03a9c2601a Author: NIIBE Yutaka Date: Wed Nov 2 09:34:30 2016 +0900 Fix formatting. * src/agent.c (scute_agent_get_random): Use '%zu'. -- '%lu' is wrong on some arch where size_t is unsigned int. Since we use gpgrt_snprintf, we can depend on the '%z' feature. Signed-off-by: NIIBE Yutaka diff --git a/src/agent.c b/src/agent.c index 8fc48e0..75d4933 100644 --- a/src/agent.c +++ b/src/agent.c @@ -1331,7 +1331,7 @@ scute_agent_get_random (unsigned char *data, size_t len) gpg_error_t err; struct random_request request; - snprintf (command, sizeof(command), "SCD RANDOM %lu", len); + snprintf (command, sizeof(command), "SCD RANDOM %zu", len); request.buffer = data; request.len = len; ----------------------------------------------------------------------- Summary of changes: src/agent.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) hooks/post-receive -- PKCS#11 token on top of gpg-agent http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 10:09:48 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Wed, 02 Nov 2016 10:09:48 +0100 Subject: [git] GPG-ERROR - branch, master, updated. libgpg-error-1.24-9-g49e32ee Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "Error codes used by GnuPG et al.". The branch, master has been updated via 49e32eed4550869644d706352d683ddba5696d4e (commit) from 59855806e11a27c5b63d9c25f7516c8cc74668aa (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 49e32eed4550869644d706352d683ddba5696d4e Author: Werner Koch Date: Wed Nov 2 10:05:37 2016 +0100 Add error codes GPG_ERR_TOO_YOUNG and GPG_ERR_TOO_OLD. Signed-off-by: Werner Koch diff --git a/NEWS b/NEWS index a646c7d..b1c8c6c 100644 --- a/NEWS +++ b/NEWS @@ -10,6 +10,8 @@ Noteworthy changes in version 1.25 (unreleased) [C19/A19/R_) GPG_ERR_USER_ID_EXISTS NEW. GPG_ERR_NAME_EXISTS NEW. GPG_ERR_DUP_NAME NEW. + GPG_ERR_TOO_OLD NEW. + GPG_ERR_TOO_YOUNG NEW. Noteworthy changes in version 1.24 (2016-07-14) [C19/A19/R1) diff --git a/doc/errorref.txt b/doc/errorref.txt index da5df23..0ea7d76 100644 --- a/doc/errorref.txt +++ b/doc/errorref.txt @@ -851,6 +851,14 @@ GPG_ERR_USER_ID_EXISTS (304) User ID already exists GPG_ERR_NAME_EXISTS (305) Name already exists GPG_ERR_DUP_NAME (306) Duplicated name +GPG_ERR_TOO_YOUNG (307) Objects is too young + + For example used if a file is younger than expected. + +GPG_ERR_TOO_OLD (308 Objects is too old + + Used if an object is too old to be used. This is a more generic + code than GPG_ERR_ENGINE_TOO_OLD or GPG_ERR_CRL_TOO_OLD. GPG_ERR_LDAP_GENERAL LDAP General error diff --git a/src/err-codes.h.in b/src/err-codes.h.in index 1bf717d..f29c234 100644 --- a/src/err-codes.h.in +++ b/src/err-codes.h.in @@ -326,6 +326,8 @@ 304 GPG_ERR_USER_ID_EXISTS User ID already exists 305 GPG_ERR_NAME_EXISTS Name already exists 306 GPG_ERR_DUP_NAME Duplicated name +307 GPG_ERR_TOO_YOUNG Objects is too young +308 GPG_ERR_TOO_OLD Objects is too old # This range is free for use. # ----------------------------------------------------------------------- Summary of changes: NEWS | 2 ++ doc/errorref.txt | 8 ++++++++ src/err-codes.h.in | 2 ++ 3 files changed, 12 insertions(+) hooks/post-receive -- Error codes used by GnuPG et al. http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 12:26:23 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Wed, 02 Nov 2016 12:26:23 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-10-g8486f21 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 8486f213423311174ebff5cba74127cbd9bb3c2a (commit) from 627c5deed84b4481710b6c0de06b26e886679bbe (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 8486f213423311174ebff5cba74127cbd9bb3c2a Author: Andre Heinecke Date: Wed Nov 2 12:24:42 2016 +0100 qt, cpp: Add all generated files to cleanfiles * cpp/src/Makefile.am (CLEANFILES), qt/src/Makefile.am (CLEANFILES): Add all generated files to cleanfiles. diff --git a/lang/cpp/src/Makefile.am b/lang/cpp/src/Makefile.am index d1f414e..8ea99f5 100644 --- a/lang/cpp/src/Makefile.am +++ b/lang/cpp/src/Makefile.am @@ -96,4 +96,5 @@ install-data-local: install-cmake-files uninstall-local: uninstall-cmake-files -CLEANFILES = GpgmeppConfig.cmake +CLEANFILES = GpgmeppConfig.cmake GpgmeppConfigVersion.cmake \ + gpgmepp_version.h GpgmeppConfig.cmake.in diff --git a/lang/qt/src/Makefile.am b/lang/qt/src/Makefile.am index 0dd18fe..e16c489 100644 --- a/lang/qt/src/Makefile.am +++ b/lang/qt/src/Makefile.am @@ -253,7 +253,9 @@ uninstall-local: uninstall-cmake-files BUILT_SOURCES = $(qgpgme_moc_sources) $(camelcase_headers) -CLEANFILES = $(qgpgme_moc_sources) $(camelcase_headers) QGpgmeConfig.cmake +CLEANFILES = $(qgpgme_moc_sources) $(camelcase_headers) QGpgmeConfig.cmake \ + qgpgme_version.h QGpgmeConfig.cmake.in \ + QGpgmeConfigVersion.cmake nodist_libqgpgme_la_SOURCES = $(qgpgme_moc_sources) ----------------------------------------------------------------------- Summary of changes: lang/cpp/src/Makefile.am | 3 ++- lang/qt/src/Makefile.am | 4 +++- 2 files changed, 5 insertions(+), 2 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 13:12:16 2016 From: cvs at cvs.gnupg.org (by Justus Winter) Date: Wed, 02 Nov 2016 13:12:16 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-312-g60ad1a7 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 60ad1a7f37ffc10e601e69a3e2d2bb14af510257 (commit) via 5e693ddfbe44d149ce0d9393d699c613ad5ea706 (commit) via 68b59bbc42ba9ec69496758743924d54a95742f0 (commit) via 5d4f1408d0dd055d412ae44bb4a0f28f74617f05 (commit) from ad491ceec6145b3781a05dc7b4a36052abeeb4b4 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 60ad1a7f37ffc10e601e69a3e2d2bb14af510257 Author: Justus Winter Date: Wed Nov 2 13:06:06 2016 +0100 gpgscm: Fix inclusion of readline header. * tests/gpgscm/ffi.c: Define magic macro to prevent the completion function from redefined. GnuPG-bug-id: 2824 Signed-off-by: Justus Winter diff --git a/tests/gpgscm/ffi.c b/tests/gpgscm/ffi.c index 8e21ba6..305b7a1 100644 --- a/tests/gpgscm/ffi.c +++ b/tests/gpgscm/ffi.c @@ -35,6 +35,7 @@ #include #if HAVE_LIBREADLINE +#define GNUPG_LIBREADLINE_H_INCLUDED #include #include #endif commit 5e693ddfbe44d149ce0d9393d699c613ad5ea706 Author: Daniel Kahn Gillmor Date: Mon Oct 31 20:24:33 2016 -0400 build: Fix misspelled dirmngr. Signed-off-by: Daniel Kahn Gillmor diff --git a/configure.ac b/configure.ac index c211979..47de5f8 100644 --- a/configure.ac +++ b/configure.ac @@ -200,7 +200,7 @@ test -n "$GNUPG_PROTECT_TOOL_PGM" \ && show_gnupg_protect_tool_pgm="$GNUPG_PROTECT_TOOL_PGM" AC_ARG_WITH(dirmngr-ldap-pgm, - [ --with-dirmngr-ldap-pgm=PATH Use PATH as the default for the dirmnge ldap wrapper)], + [ --with-dirmngr-ldap-pgm=PATH Use PATH as the default for the dirmngr ldap wrapper)], GNUPG_DIRMNGR_LDAP_PGM="$withval", GNUPG_DIRMNGR_LDAP_PGM="" ) AC_SUBST(GNUPG_DIRMNGR_LDAP_PGM) AM_CONDITIONAL(GNUPG_DIRMNGR_LDAP_PGM, test -n "$GNUPG_DIRMNGR_LDAP_PGM") commit 68b59bbc42ba9ec69496758743924d54a95742f0 Author: Daniel Kahn Gillmor Date: Fri Oct 28 15:06:11 2016 -0400 Spelling: correct spelling of "passphrase". There were several different variant spellings of "passphrase". This should fix them all for all English text. I did notice that po/it.po contains multiple instances of "passhprase", which also looks suspect to me, but i do not know Italian, so i did not try to correct it. Signed-off-by: Daniel Kahn Gillmor diff --git a/NEWS b/NEWS index 1a780f8..395eca9 100644 --- a/NEWS +++ b/NEWS @@ -343,7 +343,7 @@ Noteworthy changes in version 2.1.9 (2015-10-09) * agent: Fix ssh fingerprint computation for nistp384 and EdDSA. - * agent: Fix crash during passprase entry on some platforms. + * agent: Fix crash during passphrase entry on some platforms. * scd: Change timeout to fix problems with some 2.1 cards. diff --git a/agent/agent.h b/agent/agent.h index a3ec457..1d40386 100644 --- a/agent/agent.h +++ b/agent/agent.h @@ -122,7 +122,7 @@ struct /* If set, a passphrase history will be written and checked at each passphrase change. */ - int enable_passhrase_history; + int enable_passphrase_history; int running_detached; /* We are running detached from the tty. */ diff --git a/agent/gpg-agent.c b/agent/gpg-agent.c index 7294c69..67ef321 100644 --- a/agent/gpg-agent.c +++ b/agent/gpg-agent.c @@ -789,7 +789,7 @@ parse_rereadable_options (ARGPARSE_ARGS *pargs, int reread) opt.min_passphrase_nonalpha = MIN_PASSPHRASE_NONALPHA; opt.check_passphrase_pattern = NULL; opt.max_passphrase_days = MAX_PASSPHRASE_DAYS; - opt.enable_passhrase_history = 0; + opt.enable_passphrase_history = 0; opt.ignore_cache_for_signing = 0; opt.allow_mark_trusted = 1; opt.allow_external_cache = 1; @@ -856,7 +856,7 @@ parse_rereadable_options (ARGPARSE_ARGS *pargs, int reread) opt.max_passphrase_days = pargs->r.ret_ulong; break; case oEnablePassphraseHistory: - opt.enable_passhrase_history = 1; + opt.enable_passphrase_history = 1; break; case oIgnoreCacheForSigning: opt.ignore_cache_for_signing = 1; break; diff --git a/doc/help.be.txt b/doc/help.be.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.be.txt +++ b/doc/help.be.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.ca.txt b/doc/help.ca.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.ca.txt +++ b/doc/help.ca.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.cs.txt b/doc/help.cs.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.cs.txt +++ b/doc/help.cs.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.da.txt b/doc/help.da.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.da.txt +++ b/doc/help.da.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.el.txt b/doc/help.el.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.el.txt +++ b/doc/help.el.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.eo.txt b/doc/help.eo.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.eo.txt +++ b/doc/help.eo.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.et.txt b/doc/help.et.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.et.txt +++ b/doc/help.et.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.gl.txt b/doc/help.gl.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.gl.txt +++ b/doc/help.gl.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.nb.txt b/doc/help.nb.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.nb.txt +++ b/doc/help.nb.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.sv.txt b/doc/help.sv.txt index 36c9ffb..d6d07e8 100644 --- a/doc/help.sv.txt +++ b/doc/help.sv.txt @@ -228,7 +228,7 @@ self-signatures will be advanced by one second. .#gpg.passphrase.enter # fixme: Please translate and remove the hash mark from the key line. -Please enter the passhrase; this is a secret sentence +Please enter the passphrase; this is a secret sentence . diff --git a/doc/help.txt b/doc/help.txt index 4c6df7c..e64656e 100644 --- a/doc/help.txt +++ b/doc/help.txt @@ -312,7 +312,7 @@ self-signatures will be advanced by one second. .gpg.passphrase.enter # (keep a leading empty line) -Please enter the passhrase; this is a secret sentence. +Please enter the passphrase; this is a secret sentence. . diff --git a/g10/ChangeLog-2011 b/g10/ChangeLog-2011 index 31359d8..37da37b 100644 --- a/g10/ChangeLog-2011 +++ b/g10/ChangeLog-2011 @@ -8210,7 +8210,7 @@ to all foo-fd options. * gpgv.c, openfile.c, ringedit.c, tdbio.c: Minor fixes. Mainly replaced hardcoded path separators with EXTSEP_S like macros. - * passprase.c [__riscos__]: Disabled agent stuff + * passphrase.c [__riscos__]: Disabled agent stuff * trustdb.c (check_trust): Changed r_trustlevel to signed int to avoid mismatch problems in pkclist.c * pkclist.c (add_ownertrust): Ditto. @@ -11583,7 +11583,7 @@ Mon May 4 09:35:53 1998 Werner Koch (wk at isil.d.shuttle.de) changed all callers. * passphrase.c (make_dek_from_passphrase): Removed - * (get_passhrase_hash): Changed name to passphrase_to_dek, add arg, + * (get_passphrase_hash): Changed name to passphrase_to_dek, add arg, changed all callers. * all: Introduced the new ELG identifier and added support for the diff --git a/po/ca.po b/po/ca.po index 51f5650..9afadcc 100644 --- a/po/ca.po +++ b/po/ca.po @@ -9798,7 +9798,7 @@ msgstr "" #~ "a la llista actual de prefer?ncies. Les marques de temps de totes les\n" #~ "autosignatures afectades s'avan?aran un segon.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Introdu?u la contrasenya; aquesta ha de ser una frase secreta \n" #~ msgid "" diff --git a/po/cs.po b/po/cs.po index d185c57..1ebade0 100644 --- a/po/cs.po +++ b/po/cs.po @@ -9669,7 +9669,7 @@ msgstr "" #~ "na aktu?ln? seznam p?edvoleb. ?asov? raz?tka v?ech dot?en?ch podpis?\n" #~ "kl??? jimi samotn?mi budou posunuty o jednu vte?inu dop?edu.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Pros?m, vlo?te heslo; toto je tajn? v?ta \n" #~ msgid "" diff --git a/po/de.po b/po/de.po index 71e5700..cf01be3 100644 --- a/po/de.po +++ b/po/de.po @@ -9616,7 +9616,7 @@ msgstr "" #~ "betroffenen\n" #~ "Eigenbeglaubigungen werden um eine Sekunde vorgestellt.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Bitte geben Sie die Passphrase ein. Dies ist ein geheimer Satz \n" #~ msgid "" diff --git a/po/el.po b/po/el.po index 77c81a8..5527de9 100644 --- a/po/el.po +++ b/po/el.po @@ -9605,7 +9605,7 @@ msgstr "" #~ "???? ???????????? ????? ???????????. ? ?????????? ???? ??? ????????????\n" #~ "????-????????? ?? ??????? ???? 1 ????????????.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "?????????????? ?? ????? ??????? ???? ????? ??? ??????? ??????? \n" #~ msgid "" diff --git a/po/eo.po b/po/eo.po index 63f3882..87331ff 100644 --- a/po/eo.po +++ b/po/eo.po @@ -9488,7 +9488,7 @@ msgstr "" #~ "al la aktuala listo de preferoj. La dato de ?iuj trafitaj\n" #~ "mem-subskriboj estos anta?enigitaj je unu sekundo.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Bonvolu doni la pasfrazon; tio estas sekreta frazo \n" #~ msgid "" diff --git a/po/es.po b/po/es.po index 76fae21..f12f9c0 100644 --- a/po/es.po +++ b/po/es.po @@ -9955,7 +9955,7 @@ msgstr "" #~ "seleccionados) a la lista actual de preferencias. El sello de tiempo\n" #~ "de todas las autofirmas afectadas se avanzar? en un segundo.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Por favor introduzca la contrase?a: una frase secreta \n" #~ msgid "" diff --git a/po/et.po b/po/et.po index 74426d8..75ded06 100644 --- a/po/et.po +++ b/po/et.po @@ -9492,7 +9492,7 @@ msgstr "" #~ "vastavaks hetkel m??ratud seadetele. K?ikide asjasse puutuvate\n" #~ "ise loodud allkirjade ajatempleid suurendatakse ?he sekundi v?rra.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Palun sisestage parool; see on salajane tekst \n" #~ msgid "" diff --git a/po/fi.po b/po/fi.po index 5002410..5063207 100644 --- a/po/fi.po +++ b/po/fi.po @@ -9584,7 +9584,7 @@ msgstr "" #~ "nykyiseen luetteloon valinnoista. Kaikkien muutettujen\n" #~ "oma-allekirjoitusten aikaleima siirret??n yhdell? sekunnilla eteenp?in.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Ole hyv? ja sy?t? salasana, t?m?n on salainen lause \n" #~ msgid "" diff --git a/po/gl.po b/po/gl.po index 833533d..f02986f 100644 --- a/po/gl.po +++ b/po/gl.po @@ -9605,7 +9605,7 @@ msgstr "" #~ "sinaturas\n" #~ "afectadas ha avanzar un segundo.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Por favor, introduza o contrasinal; esta ? unha frase secreta \n" #~ msgid "" diff --git a/po/hu.po b/po/hu.po index bcfe704..b068e69 100644 --- a/po/hu.po +++ b/po/hu.po @@ -9548,7 +9548,7 @@ msgstr "" #~ "tartoz? preferenci?kat az aktu?lis preferenci?kra. Minden ?rintett\n" #~ "?nal??r?s id?pontj?t egy m?sodperccel n?veli.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "K?rem, adja meg a jelsz?t! Ezt egy titkos mondat. \n" #~ msgid "" diff --git a/po/id.po b/po/id.po index 015e419..5ee96c7 100644 --- a/po/id.po +++ b/po/id.po @@ -9540,7 +9540,7 @@ msgstr "" #~ "ke daftar preferensi saat ini. Timestamp seluruh self-signature\n" #~ "yang terpengaruh akan bertambah satu detik.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Silakan masukkan passphrase; ini kalimat rahasia\n" #~ msgid "" diff --git a/po/it.po b/po/it.po index dfc4f45..c109126 100644 --- a/po/it.po +++ b/po/it.po @@ -9599,7 +9599,7 @@ msgstr "" #~ "coinvolte\n" #~ "sar? aumentato di un secondo.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Inserisci la passphrase, cio? una frase segreta \n" #~ msgid "" diff --git a/po/pt.po b/po/pt.po index 1593ff0..40d65f7 100644 --- a/po/pt.po +++ b/po/pt.po @@ -9532,7 +9532,7 @@ msgstr "" #~ "O 'timestamp' de todas as auto-assinaturas afectuadas ser? avan?ado\n" #~ "em um segundo.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Por favor digite a frase secreta \n" #~ msgid "" diff --git a/po/ro.po b/po/ro.po index 460223c..12fd6f6 100644 --- a/po/ro.po +++ b/po/ro.po @@ -9639,7 +9639,7 @@ msgstr "" #~ "cele selectate) conform cu lista curent? de preferin?e. Timestamp-urile\n" #~ "tuturor auto-semn?turilor afectate vor fi avansate cu o secund?.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "" #~ "V? rug?m introduce?i fraza-parol?; aceasta este o propozi?ie secret? \n" diff --git a/po/sk.po b/po/sk.po index 801cfe8..62b220e 100644 --- a/po/sk.po +++ b/po/sk.po @@ -9564,7 +9564,7 @@ msgstr "" #~ "podpisov\n" #~ "k???ov nimi samotn?mi bud? posunut? o jednu sekundu dopredu.\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "Pros?m, vlo?te heslo; toto je tajn? veta \n" #~ msgid "" diff --git a/po/zh_CN.po b/po/zh_CN.po index 5e16c8a..f153d7e 100644 --- a/po/zh_CN.po +++ b/po/zh_CN.po @@ -9408,7 +9408,7 @@ msgstr "" #~ "???????????(????)??????????????????\n" #~ "?????????????\n" -#~ msgid "Please enter the passhrase; this is a secret sentence \n" +#~ msgid "Please enter the passphrase; this is a secret sentence \n" #~ msgstr "??????????????? \n" #~ msgid "" diff --git a/scd/app-nks.c b/scd/app-nks.c index d0b96a9..458516b 100644 --- a/scd/app-nks.c +++ b/scd/app-nks.c @@ -1068,7 +1068,7 @@ do_decipher (app_t app, const char *keyidstr, /* Parse a password ID string. Returns NULL on error or a string - suitable as passpahrse prompt on success. On success stores the + suitable as passphrase prompt on success. On success stores the reference value for the password at R_PWID and a flag indicating that the SigG application is to be used at R_SIGG. If NEW_MODE is true, the returned description is suitable for a new Password. diff --git a/tests/openpgp/ecc.scm b/tests/openpgp/ecc.scm index f2f3b7c..8f38494 100755 --- a/tests/openpgp/ecc.scm +++ b/tests/openpgp/ecc.scm @@ -187,7 +187,7 @@ Rg== ;; ;; Now check that we can encrypt and decrypt our own messages. ;; -;; Note that we don't need to provide a passppharse because we already +;; Note that we don't need to provide a passphrase because we already ;; preset the passphrase into the gpg-agent. ;; (for-each-p commit 5d4f1408d0dd055d412ae44bb4a0f28f74617f05 Author: Justus Winter Date: Wed Nov 2 12:45:18 2016 +0100 g10,w32: Fix build on Windows. * g10/tofu.c (begin_transaction): Use the new 'gnupg_usleep'. Signed-off-by: Justus Winter diff --git a/g10/tofu.c b/g10/tofu.c index 8280321..46d9484 100644 --- a/g10/tofu.c +++ b/g10/tofu.c @@ -192,7 +192,6 @@ begin_transaction (ctrl_t ctrl, int only_batch) && dbs->batch_update_started != gnupg_get_time ()) { struct stat statbuf; - struct timespec ts; /* If we are in a batch update, then batch updates better have been enabled. */ @@ -209,9 +208,7 @@ begin_transaction (ctrl_t ctrl, int only_batch) /* Yield to allow another process a chance to run. Note: * testing suggests that anything less than a 100ms tends to * not result in the other process getting the lock. */ - memset (&ts, 0, sizeof (ts)); - ts.tv_nsec = 100 * 1000 * 1000; - nanosleep (&ts, &ts); + gnupg_usleep (100000); } else dbs->batch_update_started = gnupg_get_time (); ----------------------------------------------------------------------- Summary of changes: NEWS | 2 +- agent/agent.h | 2 +- agent/gpg-agent.c | 4 ++-- configure.ac | 2 +- doc/help.be.txt | 2 +- doc/help.ca.txt | 2 +- doc/help.cs.txt | 2 +- doc/help.da.txt | 2 +- doc/help.el.txt | 2 +- doc/help.eo.txt | 2 +- doc/help.et.txt | 2 +- doc/help.gl.txt | 2 +- doc/help.nb.txt | 2 +- doc/help.sv.txt | 2 +- doc/help.txt | 2 +- g10/ChangeLog-2011 | 4 ++-- g10/tofu.c | 5 +---- po/ca.po | 2 +- po/cs.po | 2 +- po/de.po | 2 +- po/el.po | 2 +- po/eo.po | 2 +- po/es.po | 2 +- po/et.po | 2 +- po/fi.po | 2 +- po/gl.po | 2 +- po/hu.po | 2 +- po/id.po | 2 +- po/it.po | 2 +- po/pt.po | 2 +- po/ro.po | 2 +- po/sk.po | 2 +- po/zh_CN.po | 2 +- scd/app-nks.c | 2 +- tests/gpgscm/ffi.c | 1 + tests/openpgp/ecc.scm | 2 +- 36 files changed, 38 insertions(+), 40 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 13:21:49 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Wed, 02 Nov 2016 13:21:49 +0100 Subject: [git] GnuPG - branch, STABLE-BRANCH-1-4, updated. gnupg-1.4.21-4-g23944d0 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, STABLE-BRANCH-1-4 has been updated via 23944d0249b7a6dc854dcc8b0c7c74cd46b1341e (commit) via f2acaa5d785a29eca629c4b3df739bc474249004 (commit) from 82bc22aa139c7dda5276fc658d4ee40cab27d8e7 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 23944d0249b7a6dc854dcc8b0c7c74cd46b1341e Author: Daniel Kahn Gillmor Date: Mon Aug 29 10:36:33 2016 -0400 spelling: Correct achived to achieved. -- Signed-off-by: Daniel Kahn Gillmor diff --git a/THOUGHTS b/THOUGHTS index 25707c4..aba9402 100644 --- a/THOUGHTS +++ b/THOUGHTS @@ -90,7 +90,7 @@ extension mechanisms in GPG should be enough to try various ways later on. 1) pass an argument string to loadable extension modules (maybe gpg --load-extension foofish=arg1,arg2,arg3 ?) - --> could also be achived by S-Exps + --> could also be achieved by S-Exps 2) allow multiple instances of the same extension module (presumably with different arguments) diff --git a/doc/gpg.texi b/doc/gpg.texi index 12a6d60..e9935c3 100644 --- a/doc/gpg.texi +++ b/doc/gpg.texi @@ -1894,7 +1894,7 @@ opposite meaning. The options are: a formerly deleted key does not automatically gain an ownertrust values merely due to import. On the other hand it is sometimes necessary to re-import a trusted set of keys again but keeping - already assigned ownertrust values. This can be achived by using + already assigned ownertrust values. This can be achieved by using this option. @item repair-pks-subkey-bug commit f2acaa5d785a29eca629c4b3df739bc474249004 Author: Neal H. Walfield Date: Mon Aug 29 10:56:16 2016 -0400 tools: Fix option parsing for gpg-zip. * tools/gpg-zip.in: Correctly set GPG when --gpg is specified. Correctly set TAR when --tar is specified. Pass TAR_ARGS to tar. (cherry-picked by dkg from master branch's 84ebf15b06e435453b2f58775f97a3a1c61a7e55) -- Signed-off-by: Neal H. Walfield Co-authored-by: Michael M?nch GnuPG-bug-id 1351 GnuPG-bug-id 1442 diff --git a/tools/gpg-zip.in b/tools/gpg-zip.in index d27b1f9..a6b4238 100644 --- a/tools/gpg-zip.in +++ b/tools/gpg-zip.in @@ -94,7 +94,8 @@ while test $# -gt 0 ; do exit 0 ;; --gpg) - GPG=$1 + GPG=$2 + shift shift ;; --gpg-args) @@ -103,7 +104,8 @@ while test $# -gt 0 ; do shift ;; --tar) - TAR=$1 + TAR=$2 + shift shift ;; --tar-args) @@ -126,8 +128,8 @@ while test $# -gt 0 ; do done if test x$create = xyes ; then -# echo "$TAR -cf - "$@" | $GPG --set-filename x.tar $gpg_args" 1>&2 - $TAR -cf - "$@" | $GPG --set-filename x.tar $gpg_args +# echo "$TAR $tar_args -cf - "$@" | $GPG --set-filename x.tar $gpg_args" 1>&2 + $TAR $tar_args -cf - "$@" | $GPG --set-filename x.tar $gpg_args elif test x$list = xyes ; then # echo "cat \"$1\" | $GPG $gpg_args | $TAR $tar_args -tf -" 1>&2 cat "$1" | $GPG $gpg_args | $TAR $tar_args -tf - ----------------------------------------------------------------------- Summary of changes: THOUGHTS | 2 +- doc/gpg.texi | 2 +- tools/gpg-zip.in | 10 ++++++---- 3 files changed, 8 insertions(+), 6 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 14:51:47 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Wed, 02 Nov 2016 14:51:47 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-13-gbf9aa0c Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via bf9aa0ccf7b0165aa3a1af2bdb18daca7c02ce74 (commit) via b5c4d56cfdcafade3467be100fca6f1c89ecab73 (commit) via 4149194d2e2f2f4d142926ba4d4efbd336b543f2 (commit) from 8486f213423311174ebff5cba74127cbd9bb3c2a (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit bf9aa0ccf7b0165aa3a1af2bdb18daca7c02ce74 Author: Andre Heinecke Date: Wed Nov 2 14:43:44 2016 +0100 qt, cpp: Fix versioning in cmake config and header * configure.ac (VERSION_MAJOR, VERSION_MINOR, VERSION_MICRO): New subst variables for the version header. * lang/cpp/src/GpgmeppConfigVersion.cmake.in, lang/cpp/src/gpgmepp_version.h.in, lang/qt/src/QGpgmeConfigVersion.cmake.in, lang/qt/src/qgpgme_version.h.in: Use new variables. -- Using the LT_* variables was just wrong. Reporting the package version also makes more sense then the library version. Having different versions might make ABI breaks more visible by increasing the major version number, but to have different versions in the same package is too confusing imo and gpgme uses a versioning that is unrelated to the library version number. diff --git a/configure.ac b/configure.ac index 600e8ba..b52f214 100644 --- a/configure.ac +++ b/configure.ac @@ -79,6 +79,10 @@ NEED_LIBASSUAN_VERSION=2.0.2 PACKAGE=$PACKAGE_NAME VERSION=$PACKAGE_VERSION +VERSION_MAJOR=mym4_version_major +VERSION_MINOR=mym4_version_minor +VERSION_MICRO=mym4_version_micro + AC_CONFIG_AUX_DIR([build-aux]) AC_CONFIG_MACRO_DIR([m4]) AC_CONFIG_SRCDIR(src/gpgme.h.in) @@ -119,6 +123,9 @@ AC_SUBST(LIBQGPGME_LT_REVISION) AC_SUBST(PACKAGE) AC_SUBST(VERSION) +AC_SUBST(VERSION_MAJOR) +AC_SUBST(VERSION_MINOR) +AC_SUBST(VERSION_MICRO) AC_DEFINE_UNQUOTED(PACKAGE, "$PACKAGE", [Name of this package]) AC_DEFINE_UNQUOTED(VERSION, "$VERSION", [Version of this package]) VERSION_NUMBER=m4_esyscmd(printf "0x%02x%02x%02x" mym4_version_major \ diff --git a/lang/cpp/src/GpgmeppConfigVersion.cmake.in b/lang/cpp/src/GpgmeppConfigVersion.cmake.in index 43d6512..259bddd 100644 --- a/lang/cpp/src/GpgmeppConfigVersion.cmake.in +++ b/lang/cpp/src/GpgmeppConfigVersion.cmake.in @@ -19,7 +19,7 @@ # 02111-1307, USA # based on a generated file from cmake. -set(PACKAGE_VERSION "@LIBGPGMEPP_LT_CURRENT at .@LIBGPGMEPP_LT_AGE at .@LIBGPGMEPP_LT_REVISION at .@BUILD_REVISION@") +set(PACKAGE_VERSION "@VERSION_MAJOR at .@VERSION_MINOR at .@VERSION_MICRO@") if("${PACKAGE_VERSION}" VERSION_LESS "${PACKAGE_FIND_VERSION}" ) set(PACKAGE_VERSION_COMPATIBLE FALSE) diff --git a/lang/cpp/src/gpgmepp_version.h.in b/lang/cpp/src/gpgmepp_version.h.in index 3c33a30..9cf6aeb 100644 --- a/lang/cpp/src/gpgmepp_version.h.in +++ b/lang/cpp/src/gpgmepp_version.h.in @@ -23,10 +23,9 @@ #ifndef GPGMEPP_VERSION_H #define GPGMEPP_VERSION_H -#define GPGMEPP_VERSION_STRING "@LIBGPGMEPP_LT_CURRENT at .@LIBGPGMEPP_LT_AGE at .@LIBGPGMEPP_LT_REVISION@" -#define GPGMEPP_VERSION_MAJOR @LIBGPGMEPP_LT_CURRENT@ -#define GPGMEPP_VERSION_MINOR @LIBGPGMEPP_LT_AGE@ -#define GPGMEPP_VERSION_PATCH @LIBGPGMEPP_LT_REVISION@ -#define GPGMEPP_VERSION ((@LIBGPGMEPP_LT_CURRENT@<<16)|(@LIBGPGMEPP_LT_AGE@<<8)|(@LIBGPGMEPP_LT_REVISION@)) - +#define GPGMEPP_VERSION_STRING "@VERSION_MAJOR at .@VERSION_MINOR at .@VERSION_MICRO@" +#define GPGMEPP_VERSION_MAJOR @VERSION_MAJOR@ +#define GPGMEPP_VERSION_MINOR @VERSION_MINOR@ +#define GPGMEPP_VERSION_PATCH @VERSION_MICRO@ +#define GPGMEPP_VERSION ((@VERSION_MAJOR@<<16)|(@VERSION_MINOR@<<8)|(@VERSION_MICRO@)) #endif diff --git a/lang/qt/src/QGpgmeConfigVersion.cmake.in b/lang/qt/src/QGpgmeConfigVersion.cmake.in index 04a12cb..549a536 100644 --- a/lang/qt/src/QGpgmeConfigVersion.cmake.in +++ b/lang/qt/src/QGpgmeConfigVersion.cmake.in @@ -19,7 +19,7 @@ # 02111-1307, USA # based on a generated file from cmake. -set(PACKAGE_VERSION "@LIBQGPGME_LT_CURRENT at .@LIBQGPGME_LT_AGE at .@LIBQGPGME_LT_REVISION at .@BUILD_REVISION@") +set(PACKAGE_VERSION "@VERSION_MAJOR at .@VERSION_MINOR at .@VERSION_MICRO@") if("${PACKAGE_VERSION}" VERSION_LESS "${PACKAGE_FIND_VERSION}" ) set(PACKAGE_VERSION_COMPATIBLE FALSE) diff --git a/lang/qt/src/qgpgme_version.h.in b/lang/qt/src/qgpgme_version.h.in index 9fbe965..5ec59a8 100644 --- a/lang/qt/src/qgpgme_version.h.in +++ b/lang/qt/src/qgpgme_version.h.in @@ -23,10 +23,10 @@ #ifndef QGPGME_VERSION_H #define QGPGME_VERSION_H -#define QGPGME_VERSION_STRING "@LIBQGPGME_LT_CURRENT at .@LIBQGPGME_LT_AGE at .@LIBQGPGME_LT_REVISION@" -#define QGPGME_VERSION_MAJOR @LIBQGPGME_LT_CURRENT@ -#define QGPGME_VERSION_MINOR @LIBQGPGME_LT_AGE@ -#define QGPGME_VERSION_PATCH @LIBQGPGME_LT_REVISION@ -#define QGPGME_VERSION ((@LIBQGPGME_LT_CURRENT@<<16)|(@LIBQGPGME_LT_AGE@<<8)|(@LIBQGPGME_LT_REVISION@)) +#define QGPGME_VERSION_STRING "@VERSION_MAJOR at .@VERSION_MINOR at .@VERSION_MICRO@" +#define QGPGME_VERSION_MAJOR @VERSION_MAJOR@ +#define QGPGME_VERSION_MINOR @VERSION_MINOR@ +#define QGPGME_VERSION_PATCH @VERSION_MICRO@ +#define QGPGME_VERSION ((@VERSION_MAJOR@<<16)|(@VERSION_MINOR@<<8)|(@VERSION_MICRO@)) #endif commit b5c4d56cfdcafade3467be100fca6f1c89ecab73 Author: Andre Heinecke Date: Wed Nov 2 14:36:56 2016 +0100 qt: Install cmake config into qgpgme subdir * lang/qt/src/Makefile.am: Install cmake config file in qgpgme subdir. -- Putting it together with Gpgmepp was done for historic reasons but the proper way is for each library to have its own subdir. diff --git a/lang/qt/src/Makefile.am b/lang/qt/src/Makefile.am index e16c489..8742bc8 100644 --- a/lang/qt/src/Makefile.am +++ b/lang/qt/src/Makefile.am @@ -236,16 +236,16 @@ $(camelcase_headers): Makefile.am echo ".h\"" >> "$@" install-cmake-files: QGpgmeConfig.cmake QGpgmeConfigVersion.cmake - -$(INSTALL) -d $(DESTDIR)$(libdir)/cmake/Gpgmepp + -$(INSTALL) -d $(DESTDIR)$(libdir)/cmake/QGpgme $(INSTALL) -m 644 QGpgmeConfig.cmake \ - $(DESTDIR)$(libdir)/cmake/Gpgmepp/QGpgmeConfig.cmake + $(DESTDIR)$(libdir)/cmake/QGpgme/QGpgmeConfig.cmake $(INSTALL) -m 644 QGpgmeConfigVersion.cmake \ - $(DESTDIR)$(libdir)/cmake/Gpgmepp/QGpgmeConfigVersion.cmake + $(DESTDIR)$(libdir)/cmake/QGpgme/QGpgmeConfigVersion.cmake uninstall-cmake-files: - -rm $(DESTDIR)$(libdir)/cmake/Gpgmepp/QGpgmeConfigVersion.cmake - -rm $(DESTDIR)$(libdir)/cmake/Gpgmepp/QGpgmeConfig.cmake - -rmdir $(DESTDIR)$(libdir)/cmake/Gpgmepp/ + -rm $(DESTDIR)$(libdir)/cmake/QGpgme/QGpgmeConfigVersion.cmake + -rm $(DESTDIR)$(libdir)/cmake/QGpgme/QGpgmeConfig.cmake + -rmdir $(DESTDIR)$(libdir)/cmake/QGpgme/ install-data-local: install-cmake-files commit 4149194d2e2f2f4d142926ba4d4efbd336b543f2 Author: Andre Heinecke Date: Wed Nov 2 14:31:35 2016 +0100 qt: Require gpgmepp from cmake config script * lang/qt/src/QGpgmeConfig.cmake.in.in: Require cpp. -- This fixes an error if a user only does find_package(QGpgme) diff --git a/lang/qt/src/QGpgmeConfig.cmake.in.in b/lang/qt/src/QGpgmeConfig.cmake.in.in index 5b6c188..a17a19f 100644 --- a/lang/qt/src/QGpgmeConfig.cmake.in.in +++ b/lang/qt/src/QGpgmeConfig.cmake.in.in @@ -96,3 +96,6 @@ unset(_IMPORT_CHECK_TARGETS) # Commands beyond this point should not need to know the version. set(CMAKE_IMPORT_FILE_VERSION) cmake_policy(POP) + +# Gpgmepp is a requirement for qgpgme +find_package(Gpgmepp CONFIG REQUIRED) ----------------------------------------------------------------------- Summary of changes: configure.ac | 7 +++++++ lang/cpp/src/GpgmeppConfigVersion.cmake.in | 2 +- lang/cpp/src/gpgmepp_version.h.in | 11 +++++------ lang/qt/src/Makefile.am | 12 ++++++------ lang/qt/src/QGpgmeConfig.cmake.in.in | 3 +++ lang/qt/src/QGpgmeConfigVersion.cmake.in | 2 +- lang/qt/src/qgpgme_version.h.in | 10 +++++----- 7 files changed, 28 insertions(+), 19 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 14:55:51 2016 From: cvs at cvs.gnupg.org (by Andras Mantia) Date: Wed, 02 Nov 2016 14:55:51 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-14-gb4658f6 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via b4658f6a1110bb0b54bd5dfc9df8e8b390e38d61 (commit) from bf9aa0ccf7b0165aa3a1af2bdb18daca7c02ce74 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b4658f6a1110bb0b54bd5dfc9df8e8b390e38d61 Author: Andras Mantia Date: Wed Nov 2 11:23:42 2016 +0200 qt: Fix build with g++ 4.8.x * lang/qt/src/defaultkeygenerationjob.cpp (DefaultKeyGenerationJob::start): Explicitly connect pointer in the QPointer. -- Commit message written by Andre Heinecke diff --git a/lang/qt/src/defaultkeygenerationjob.cpp b/lang/qt/src/defaultkeygenerationjob.cpp index d26e824..020f4d2 100644 --- a/lang/qt/src/defaultkeygenerationjob.cpp +++ b/lang/qt/src/defaultkeygenerationjob.cpp @@ -105,11 +105,11 @@ GpgME::Error DefaultKeyGenerationJob::start(const QString &email, const QString d->job = openpgp()->keyGenerationJob(); d->job->installEventFilter(this); - connect(d->job, &KeyGenerationJob::result, + connect(d->job.data(), &KeyGenerationJob::result, this, &DefaultKeyGenerationJob::result); - connect(d->job, &KeyGenerationJob::done, + connect(d->job.data(), &KeyGenerationJob::done, this, &DefaultKeyGenerationJob::done); - connect(d->job, &KeyGenerationJob::done, + connect(d->job.data(), &KeyGenerationJob::done, this, &QObject::deleteLater); return d->job->start(args); } ----------------------------------------------------------------------- Summary of changes: lang/qt/src/defaultkeygenerationjob.cpp | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Wed Nov 2 18:02:24 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Wed, 02 Nov 2016 18:02:24 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-314-g0ed6a6d Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 0ed6a6df5aa421a9c5cdb1e63867f0deee79af9e (commit) via 488b183811fc25c1ae49b4730491accf1adf518e (commit) from 60ad1a7f37ffc10e601e69a3e2d2bb14af510257 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 0ed6a6df5aa421a9c5cdb1e63867f0deee79af9e Author: Werner Koch Date: Wed Nov 2 17:54:32 2016 +0100 gpgconf: Add command --query-swdb. * tools/gpgconf.c (aQuerySWDB): New. (opts): Add --query-swdb. (valid_swdb_name_p): New. (query_swdb): New. (main): Implement command --query-swdb. -- Right now this command is not very useful because dimngr has not yet been changed to create the swdb.lst. For manual tests the swdb.lst file from the Net can be used with these additional lines: .filedate 20161102T130337 .verified 20161102T150000 diff --git a/doc/tools.texi b/doc/tools.texi index 199b11e..2d2ccef 100644 --- a/doc/tools.texi +++ b/doc/tools.texi @@ -250,6 +250,7 @@ throughout this section. * Listing options:: List all options of a component. * Changing options:: Changing options of a component. * Listing global options:: List all global options. +* Querying versions:: Get and compare software versions. * Files used by gpgconf:: What files are used by gpgconf. @end menu @@ -302,6 +303,13 @@ List the global configuration file in a colon separated format. If Run a syntax check on the global configuration file. If @var{filename} is given, check that file instead. + + at item --query-swdb @var{package_name} [@var{version_string}] +Returns the current version for @var{package_name} and if + at var{version_string} is given also an indicator on whether an update +is available. + + @item --reload [@var{component}] @opindex reload Reload all or the given component. This is basically the same as sending @@ -953,6 +961,80 @@ Unknown record types should be ignored. Note that there is intentionally no feature to change the global option file through @command{gpgconf}. + at node Querying versions + at subsection Get and compare software versions. + +The GnuPG Project operates a server to query the current versions of +software packages related to GnuPG. @command{gpgconf} can be used to +access this online database. To allow for offline operations, this +feature works by having @command{dirmngr} download a file from + at code{https://versions.gnupg.org}, checking the signature of that file +and storing the file in the GnuPG home directory. If + at command{gpgconf} is used and @command{dirmngr} is running, it may ask + at command{dirmngr} to refresh that file before itself uses the file. + +The command @option{--query-swdb} returns information for the given +package in a colon delimited format: + + at table @var + + at item name +This is the name of the package as requested. Note that "gnupg" is a +special name which is replaced by the actual package implementing this +version of GnuPG. For this name it is also not required to specify a +version because @command{gpgconf} takes its own version in this case. + + at item status +The status of the software package according to this table: + at table @code + at item - +No information available. This is either because no current version +has been specified or due to an error. + at item ? +The given name is not known in the online database. + at item u +An update of the software is available. + at item c +The specified version of the software is current. + at item n +The specified version is already newer than the released version. + at end table + + at item urgency +If the value (the empty string should be considered as zero) is +greater than zero an important update is available. + + at item error +This returns an @command{gpg-error} error code to distinguish between +various failure modes. + + at item filedate +This gives the date of the file with the version numbers in standard +ISO format (@code{yyyymmddThhmmss}). The date has been extracted by + at command{dirmngr} from the signature of the file. + + at item verified +This gives the date in ISO format the file was downloaded. This value +can be used to evaluate the freshness of the information. + + at item version +This returns the version string for the requested software from the +file. + + at item reldate +This returns the release date in ISO format. + + at item size +This returns the size of the package as decimal number of bytes. + + at item hash +This returns a hexified SHA-2 hash of the package. + + at end table + + at noindent +More fields may be added in future to the output. + @mansect files @node Files used by gpgconf @@ -965,6 +1047,12 @@ no feature to change the global option file through @command{gpgconf}. If this file exists, it is processed as a global configuration file. A commented example can be found in the @file{examples} directory of the distribution. + + at item @var{GNUPGHOME}/swdb.lst + at cindex swdb.lst + A file with current software versions. @command{dirmngr} creates + this file on demand from an online resource. + @end table diff --git a/tools/gpgconf.c b/tools/gpgconf.c index a1ca79f..1f00418 100644 --- a/tools/gpgconf.c +++ b/tools/gpgconf.c @@ -1,5 +1,6 @@ /* gpgconf.c - Configuration utility for GnuPG * Copyright (C) 2003, 2007, 2009, 2011 Free Software Foundation, Inc. + * Copyright (C) 2016 g10 Code GmbH. * * This file is part of GnuPG. * @@ -52,6 +53,7 @@ enum cmd_and_opt_values aApplyDefaults, aListConfig, aCheckConfig, + aQuerySWDB, aListDirs, aLaunch, aKill, @@ -79,6 +81,8 @@ static ARGPARSE_OPTS opts[] = N_("list global configuration file") }, { aCheckConfig, "check-config", 256, N_("check global configuration file") }, + { aQuerySWDB, "query-swdb", 256, + N_("query the software version database") }, { aReload, "reload", 256, N_("reload all or a given component")}, { aLaunch, "launch", 256, N_("launch a given component")}, { aKill, "kill", 256, N_("kill a given component")}, @@ -203,6 +207,235 @@ list_dirs (estream_t fp, char **names) } + +/* Check whether NAME is valid argument for query_swdb(). Valid names + * start with a letter and contain only alphanumeric characters or an + * underscore. */ +static int +valid_swdb_name_p (const char *name) +{ + if (!name || !*name || !alphap (name)) + return 0; + + for (name++; *name; name++) + if (!alnump (name) && *name != '_') + return 0; + + return 1; +} + + +/* Query the SWDB file. If necessary and possible this functions asks + * the dirmngr to load an updated version of that file. The caller + * needs to provide the NAME to query (e.g. "gnupg", "libgcrypt") and + * optional the currently installed version in CURRENT_VERSION. The + * output written to OUT is a colon delimited line with these fields: + * + * name :: The name of the package + * status :: This value tells the status of the software package + * '-' :: No information available + * (error or CURRENT_VERSION not given) + * '?' :: Unknown NAME + * 'u' :: Update available + * 'c' :: The version is Current + * 'n' :: The current version is already Newer than the + * available one. + * urgency :: If the value is greater than zero an urgent update is required. + * error :: 0 on success or an gpg_err_code_t + * Common codes seen: + * GPG_ERR_TOO_OLD :: The SWDB file is to old to be used. + * GPG_ERR_ENOENT :: The SWDB file is not available. + * GPG_ERR_BAD_SIGNATURE :: Currupted SWDB file. + * filedate:: Date of the swdb file (yyyymmddThhmmss) + * verified:: Date we checked the validity of the file (yyyyymmddThhmmss) + * version :: The version string from the swdb. + * reldate :: Release date of that version (yyyymmddThhmmss) + * size :: Size of the package in bytes. + * hash :: SHA-2 hash of the package. + * + */ +static void +query_swdb (estream_t out, const char *name, const char *current_version) +{ + gpg_error_t err; + const char *search_name; + char *fname = NULL; + estream_t fp = NULL; + char *line = NULL; + char *self_version = NULL; + size_t length_of_line = 0; + size_t maxlen; + ssize_t len; + char *fields[2]; + char *p; + gnupg_isotime_t filedate = {0}; + gnupg_isotime_t verified = {0}; + char *value_ver = NULL; + gnupg_isotime_t value_date = {0}; + char *value_size = NULL; + char *value_sha2 = NULL; + unsigned long value_size_ul; + int status, i; + + + if (!valid_swdb_name_p (name)) + { + log_error ("error in package name '%s': %s\n", + name, gpg_strerror (GPG_ERR_INV_NAME)); + goto leave; + } + if (!strcmp (name, "gnupg")) + search_name = "gnupg21"; + else if (!strcmp (name, "gnupg1")) + search_name = "gnupg1"; + else + search_name = name; + + if (!current_version && !strcmp (name, "gnupg")) + { + /* Use our own version but string a possible beta string. */ + self_version = xstrdup (PACKAGE_VERSION); + p = strchr (self_version, '-'); + if (p) + *p = 0; + current_version = self_version; + } + + if (current_version && compare_version_strings (current_version, NULL)) + { + log_error ("error in version string '%s': %s\n", + current_version, gpg_strerror (GPG_ERR_INV_ARG)); + goto leave; + } + + fname = make_filename (gnupg_homedir (), "swdb.lst", NULL); + fp = es_fopen (fname, "r"); + if (!fp) + { + err = gpg_error_from_syserror (); + es_fprintf (out, "%s:-::%u:::::::\n", name, gpg_err_code (err)); + if (gpg_err_code (err) != GPG_ERR_ENOENT) + log_error (_("error opening '%s': %s\n"), fname, gpg_strerror (err)); + goto leave; + } + + /* Note that the parser uses the first occurance of a matching + * values and ignores possible duplicated values. */ + + maxlen = 2048; /* Set limit. */ + while ((len = es_read_line (fp, &line, &length_of_line, &maxlen)) > 0) + { + if (!maxlen) + { + err = gpg_error (GPG_ERR_LINE_TOO_LONG); + log_error (_("error reading '%s': %s\n"), fname, gpg_strerror (err)); + goto leave; + } + /* Strip newline and carriage return, if present. */ + while (len > 0 && (line[len - 1] == '\n' || line[len - 1] == '\r')) + line[--len] = '\0'; + + if (split_fields (line, fields, DIM (fields)) < DIM(fields)) + continue; /* Skip empty lines and names w/o a value. */ + if (*fields[0] == '#') + continue; /* Skip comments. */ + + /* Record the meta data. */ + if (!*filedate && !strcmp (fields[0], ".filedate")) + { + string2isotime (filedate, fields[1]); + continue; + } + if (!*verified && !strcmp (fields[0], ".verified")) + { + string2isotime (verified, fields[1]); + continue; + } + + /* Tokenize the name. */ + p = strrchr (fields[0], '_'); + if (!p) + continue; /* Name w/o an underscore. */ + *p++ = 0; + + /* Wait for the requested name. */ + if (!strcmp (fields[0], search_name)) + { + if (!strcmp (p, "ver") && !value_ver) + value_ver = xstrdup (fields[1]); + else if (!strcmp (p, "date") && !*value_date) + string2isotime (value_date, fields[1]); + else if (!strcmp (p, "size") && !value_size) + value_size = xstrdup (fields[1]); + else if (!strcmp (p, "sha2") && !value_sha2) + value_sha2 = xstrdup (fields[1]); + } + } + if (len < 0 || es_ferror (fp)) + { + err = gpg_error_from_syserror (); + log_error (_("error reading '%s': %s\n"), fname, gpg_strerror (err)); + goto leave; + } + + if (!*filedate || !*verified) + { + err = gpg_error (GPG_ERR_INV_TIME); + es_fprintf (out, "%s:-::%u:::::::\n", name, gpg_err_code (err)); + goto leave; + } + + if (!value_ver) + { + es_fprintf (out, "%s:?:::::::::\n", name); + goto leave; + } + + if (value_size) + { + gpg_err_set_errno (0); + value_size_ul = strtoul (value_size, &p, 10); + if (errno) + value_size_ul = 0; + else if (*p == 'k') + value_size_ul *= 1024; + } + + err = 0; + status = '-'; + if (compare_version_strings (value_ver, NULL)) + err = gpg_error (GPG_ERR_INV_VALUE); + else if (!current_version) + ; + else if (!(i = compare_version_strings (value_ver, current_version))) + status = 'c'; + else if (i > 0) + status = 'u'; + else + status = 'n'; + + es_fprintf (out, "%s:%c::%d:%s:%s:%s:%s:%lu:%s:\n", + name, + status, + err, + filedate, + verified, + value_ver, + value_date, + value_size_ul, + value_sha2? value_sha2 : ""); + + leave: + xfree (value_ver); + xfree (value_size); + xfree (value_sha2); + xfree (line); + es_fclose (fp); + xfree (fname); + xfree (self_version); +} + + /* gpgconf main. */ int main (int argc, char **argv) @@ -250,6 +483,7 @@ main (int argc, char **argv) case aApplyDefaults: case aListConfig: case aCheckConfig: + case aQuerySWDB: case aReload: case aLaunch: case aKill: @@ -417,6 +651,18 @@ main (int argc, char **argv) list_dirs (outfp, argc? argv : NULL); break; + case aQuerySWDB: + /* Query the software version database. */ + if (!fname || argc > 2) + { + es_fprintf (es_stderr, "usage: %s --query-swdb NAME [VERSION]\n", + GPGCONF_NAME); + exit (2); + } + get_outfp (&outfp); + query_swdb (outfp, fname, argc > 1? argv[1] : NULL); + break; + case aCreateSocketDir: { char *socketdir; commit 488b183811fc25c1ae49b4730491accf1adf518e Author: Werner Koch Date: Wed Nov 2 16:24:58 2016 +0100 common: Improve compare_string_versions. * common/stringhelp.c: Include limits.h. (compare_version_strings): Change semantics to behave like strcmp. Include the patch lebel in the comparison. Allow checking a single version string. * common/t-stringhelp.c (test_compare_version_strings): Adjust test vectors and a few new vectors. * g10/call-agent.c (warn_version_mismatch): Adjust to new sematics. * g10/call-dirmngr.c (warn_version_mismatch): Ditto. * sm/call-agent.c (warn_version_mismatch): Ditto. * sm/call-dirmngr.c (warn_version_mismatch): Ditto. Signed-off-by: Werner Koch diff --git a/common/stringhelp.c b/common/stringhelp.c index b5d9f4c..f494bc5 100644 --- a/common/stringhelp.c +++ b/common/stringhelp.c @@ -49,6 +49,7 @@ # include #endif #include +#include #include "util.h" #include "common-defs.h" @@ -1356,9 +1357,9 @@ parse_version_number (const char *s, int *number) /* This function breaks up the complete string-representation of the version number S, which is of the following struture: ... The major, - minor and micro number components will be stored in *MAJOR, *MINOR - and *MICRO. + number>.[.]. The major, + minor, and micro number components will be stored in *MAJOR, *MINOR + and *MICRO. If MICRO is not given 0 is used instead. On success, the last component, the patch level, will be returned; in failure, NULL will be returned. */ @@ -1385,32 +1386,50 @@ parse_version_string (const char *s, int *major, int *minor, int *micro) } -/* Check that the version string MY_VERSION is greater or equal than - REQ_VERSION. Returns true if the condition is satisfied or false - if not. This works with 3 part and two part version strings; for a - two part version string the micor part is assumed to be 0. */ +/* Compare the version string MY_VERSION to the version string + * REQ_VERSION. Returns -1, 0, or 1 if MY_VERSION is found, + * respectively, to be less than, to match, or be greater than + * REQ_VERSION. This function works for three and two part version + * strings; for a two part version string the micro part is assumed to + * be 0. Patch levels are compared as strings. If a version number + * is invalid INT_MIN is returned. If REQ_VERSION is given as NULL + * the function returns 0 if MY_VERSION is parsable version string. */ int compare_version_strings (const char *my_version, const char *req_version) { int my_major, my_minor, my_micro; int rq_major, rq_minor, rq_micro; - - if (!my_version || !req_version) - return 0; - - if (!parse_version_string (my_version, &my_major, &my_minor, &my_micro)) - return 0; - if (!parse_version_string(req_version, &rq_major, &rq_minor, &rq_micro)) - return 0; - - if (my_major > rq_major - || (my_major == rq_major && my_minor > rq_minor) - || (my_major == rq_major && my_minor == rq_minor - && my_micro >= rq_micro)) + const char *my_patch, *rq_patch; + int result; + + if (!my_version) + return INT_MIN; + + my_patch = parse_version_string (my_version, &my_major, &my_minor, &my_micro); + if (!my_patch) + return INT_MIN; + if (!req_version) + return 0; /* MY_VERSION can be parsed. */ + rq_patch = parse_version_string (req_version, &rq_major, &rq_minor,&rq_micro); + if (!rq_patch) + return INT_MIN; + + if (my_major == rq_major) { - return 1; + if (my_minor == rq_minor) + { + if (my_micro == rq_micro) + result = strcmp (my_patch, rq_patch); + else + result = my_micro - rq_micro; + } + else + result = my_minor - rq_minor; } - return 0; + else + result = my_major - rq_major; + + return !result? 0 : result < 0 ? -1 : 1; } diff --git a/common/t-stringhelp.c b/common/t-stringhelp.c index ccadf02..93b014a 100644 --- a/common/t-stringhelp.c +++ b/common/t-stringhelp.c @@ -40,6 +40,7 @@ #endif #include #include +#include #include "t-support.h" #include "stringhelp.h" @@ -903,45 +904,63 @@ static void test_compare_version_strings (void) { struct { const char *a; const char *b; int okay; } tests[] = { - { "1.0.0", "1.0.0", 1 }, + { "1.0.0", "1.0.0", 0 }, { "1.0.0-", "1.0.0", 1 }, { "1.0.0-1", "1.0.0", 1 }, { "1.0.0.1", "1.0.0", 1 }, - { "1.0.0", "1.0.1", 0 }, - { "1.0.0-", "1.0.1", 0 }, - { "1.0.0-1", "1.0.1", 0 }, - { "1.0.0.1", "1.0.1", 0 }, - { "1.0.0", "1.1.0", 0 }, - { "1.0.0-", "1.1.0", 0 }, - { "1.0.0-1", "1.1.0", 0 }, - { "1.0.0.1", "1.1.0", 0 }, - - { "1.0.0", "1.0.0-", 1 }, - { "1.0.0", "1.0.0-1", 1 }, - { "1.0.0", "1.0.0.1", 1 }, + { "1.0.0", "1.0.1", -1 }, + { "1.0.0-", "1.0.1", -1 }, + { "1.0.0-1", "1.0.1", -1 }, + { "1.0.0.1", "1.0.1", -1 }, + { "1.0.0", "1.1.0", -1 }, + { "1.0.0-", "1.1.0", -1 }, + { "1.0.0-1", "1.1.0", -1 }, + { "1.0.0.1", "1.1.0", -1 }, + + { "1.0.0", "1.0.0-", -1 }, + { "1.0.0", "1.0.0-1", -1 }, + { "1.0.0", "1.0.0.1", -1 }, { "1.1.0", "1.0.0", 1 }, { "1.1.1", "1.1.0", 1 }, - { "1.1.2", "1.1.2", 1 }, + { "1.1.2", "1.1.2", 0 }, { "1.1.2", "1.0.2", 1 }, { "1.1.2", "0.0.2", 1 }, - { "1.1.2", "1.1.3", 0 }, + { "1.1.2", "1.1.3", -1 }, { "0.99.1", "0.9.9", 1 }, - { "0.9.1", "0.91.0", 0 }, + { "0.9.1", "0.91.0", -1 }, { "1.5.3", "1.5", 1 }, - { "1.5.0", "1.5", 1 }, - { "1.4.99", "1.5", 0 }, + { "1.5.0", "1.5", 0 }, + { "1.4.99", "1.5", -1 }, { "1.5", "1.4.99", 1 }, - { "1.5", "1.5.0", 1 }, - { "1.5", "1.5.1", 0 }, + { "1.5", "1.5.0", 0 }, + { "1.5", "1.5.1", -1 }, { "1.5.3-x17", "1.5-23", 1 }, { "1.5.3a", "1.5.3", 1 }, - { "1.5.3a", "1.5.3b", 1 }, - - { NULL, NULL, 0 } + { "1.5.3a", "1.5.3b", -1 }, + + { "3.1.4-ab", "3.1.4-ab", 0 }, + { "3.1.4-ab", "3.1.4-ac", -1 }, + { "3.1.4-ac", "3.1.4-ab", 1 }, + { "3.1.4-ab", "3.1.4-abb", -1 }, + { "3.1.4-abb", "3.1.4-ab", 1 }, + + { "", "", INT_MIN }, + { NULL, "", INT_MIN }, + { "1.2.3", "", INT_MIN }, + { "1.2.3", "2", INT_MIN }, + + /* Test cases for validity of A. */ + { "", NULL, INT_MIN }, + { "1", NULL, INT_MIN }, + { "1.", NULL, 0 }, + { "1.0", NULL, 0 }, + { "1.0.", NULL, 0 }, + { "a1.2", NULL, INT_MIN }, + { NULL, NULL, INT_MIN } }; int idx; int res; diff --git a/g10/call-agent.c b/g10/call-agent.c index b17a80f..eeea7bf 100644 --- a/g10/call-agent.c +++ b/g10/call-agent.c @@ -195,7 +195,7 @@ warn_version_mismatch (assuan_context_t ctx, const char *servername, int mode) if (err) log_error (_("error getting version from '%s': %s\n"), servername, gpg_strerror (err)); - else if (!compare_version_strings (serverversion, myversion)) + else if (compare_version_strings (serverversion, myversion) < 0) { char *warn; diff --git a/g10/call-dirmngr.c b/g10/call-dirmngr.c index f739833..66db357 100644 --- a/g10/call-dirmngr.c +++ b/g10/call-dirmngr.c @@ -145,7 +145,7 @@ warn_version_mismatch (assuan_context_t ctx, const char *servername) if (err) log_error (_("error getting version from '%s': %s\n"), servername, gpg_strerror (err)); - else if (!compare_version_strings (serverversion, myversion)) + else if (compare_version_strings (serverversion, myversion) < 0) { char *warn; diff --git a/sm/call-agent.c b/sm/call-agent.c index c0a2081..c9a210f 100644 --- a/sm/call-agent.c +++ b/sm/call-agent.c @@ -97,7 +97,7 @@ warn_version_mismatch (ctrl_t ctrl, assuan_context_t ctx, if (err) log_error (_("error getting version from '%s': %s\n"), servername, gpg_strerror (err)); - else if (!compare_version_strings (serverversion, myversion)) + else if (compare_version_strings (serverversion, myversion) < 0) { char *warn; diff --git a/sm/call-dirmngr.c b/sm/call-dirmngr.c index 03c9a68..6d7053c 100644 --- a/sm/call-dirmngr.c +++ b/sm/call-dirmngr.c @@ -163,7 +163,7 @@ warn_version_mismatch (ctrl_t ctrl, assuan_context_t ctx, if (err) log_error (_("error getting version from '%s': %s\n"), servername, gpg_strerror (err)); - else if (!compare_version_strings (serverversion, myversion)) + else if (compare_version_strings (serverversion, myversion) < 0) { char *warn; ----------------------------------------------------------------------- Summary of changes: common/stringhelp.c | 63 ++++++++----- common/t-stringhelp.c | 65 ++++++++----- doc/tools.texi | 88 ++++++++++++++++++ g10/call-agent.c | 2 +- g10/call-dirmngr.c | 2 +- sm/call-agent.c | 2 +- sm/call-dirmngr.c | 2 +- tools/gpgconf.c | 246 ++++++++++++++++++++++++++++++++++++++++++++++++++ 8 files changed, 421 insertions(+), 49 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 09:33:52 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Thu, 03 Nov 2016 09:33:52 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-15-g0c2038c Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 0c2038c0043c1e79547b55e79c3d3e267dae801c (commit) from b4658f6a1110bb0b54bd5dfc9df8e8b390e38d61 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 0c2038c0043c1e79547b55e79c3d3e267dae801c Author: Werner Koch Date: Thu Nov 3 09:31:30 2016 +0100 core: Make use of --homedir in gpgconf. * src/engine-gpgconf.c (struct engine_gpgconf): Add field 'version'. (have_gpgconf_version): New. (gpgconf_release): Free VERSION. (gpgconf_new): Set VERSION. (gpgconf_read, gpgconf_write): Use --homedir with recent gnupg. Signed-off-by: Werner Koch diff --git a/src/engine-gpgconf.c b/src/engine-gpgconf.c index 90f32c7..271a4dd 100644 --- a/src/engine-gpgconf.c +++ b/src/engine-gpgconf.c @@ -52,11 +52,20 @@ struct engine_gpgconf { char *file_name; char *home_dir; + char *version; }; typedef struct engine_gpgconf *engine_gpgconf_t; +/* Return true if the engine's version is at least VERSION. */ +static int +have_gpgconf_version (engine_gpgconf_t gpgconf, const char *version) +{ + return _gpgme_compare_versions (gpgconf->version, version); +} + + static char * gpgconf_get_version (const char *file_name) { @@ -84,6 +93,8 @@ gpgconf_release (void *engine) free (gpgconf->file_name); if (gpgconf->home_dir) free (gpgconf->home_dir); + if (gpgconf->version) + free (gpgconf->version); free (gpgconf); } @@ -96,8 +107,6 @@ gpgconf_new (void **engine, const char *file_name, const char *home_dir, gpgme_error_t err = 0; engine_gpgconf_t gpgconf; - (void)version; /* Not yet used. */ - gpgconf = calloc (1, sizeof *gpgconf); if (!gpgconf) return gpg_error_from_syserror (); @@ -114,6 +123,13 @@ gpgconf_new (void **engine, const char *file_name, const char *home_dir, err = gpg_error_from_syserror (); } + if (!err && version) + { + gpgconf->version = strdup (version); + if (!gpgconf->version) + err = gpg_error_from_syserror (); + } + if (err) gpgconf_release (gpgconf); else @@ -209,7 +225,8 @@ gpgconf_read (void *engine, const char *arg1, char *arg2, char *linebuf; size_t linebufsize; int linelen; - char *argv[4] = { NULL /* file_name */, NULL, NULL, NULL }; + char *argv[6]; + int argc = 0; int rp[2]; struct spawn_fd_item_s cfd[] = { {-1, 1 /* STDOUT_FILENO */, -1, 0}, {-1, -1} }; @@ -217,14 +234,19 @@ gpgconf_read (void *engine, const char *arg1, char *arg2, int nread; char *mark = NULL; - argv[1] = (char*)arg1; - argv[2] = arg2; - + /* _gpgme_engine_new guarantees that this is not NULL. */ + argv[argc++] = gpgconf->file_name; - /* FIXME: Deal with engine->home_dir. */ + if (gpgconf->home_dir && have_gpgconf_version (gpgconf, "2.1.13")) + { + argv[argc++] = (char*)"--homedir"; + argv[argc++] = gpgconf->home_dir; + } - /* _gpgme_engine_new guarantees that this is not NULL. */ - argv[0] = gpgconf->file_name; + argv[argc++] = (char*)arg1; + argv[argc++] = arg2; + argv[argc] = NULL; + assert (argc < DIM (argv)); if (_gpgme_io_pipe (rp, 1) < 0) return gpg_error_from_syserror (); @@ -685,16 +707,26 @@ gpgconf_write (void *engine, const char *arg1, char *arg2, gpgme_data_t conf) #define BUFLEN 1024 char buf[BUFLEN]; int buflen = 0; - char *argv[] = { NULL /* file_name */, (char*)arg1, arg2, 0 }; + char *argv[6]; + int argc = 0; int rp[2]; struct spawn_fd_item_s cfd[] = { {-1, 0 /* STDIN_FILENO */}, {-1, -1} }; int status; int nwrite; - /* FIXME: Deal with engine->home_dir. */ - /* _gpgme_engine_new guarantees that this is not NULL. */ - argv[0] = gpgconf->file_name; + argv[argc++] = gpgconf->file_name; + + if (gpgconf->home_dir && have_gpgconf_version (gpgconf, "2.1.13")) + { + argv[argc++] = (char*)"--homedir"; + argv[argc++] = gpgconf->home_dir; + } + + argv[argc++] = (char*)arg1; + argv[argc++] = arg2; + argv[argc] = NULL; + assert (argc < DIM (argv)); if (_gpgme_io_pipe (rp, 0) < 0) return gpg_error_from_syserror (); ----------------------------------------------------------------------- Summary of changes: src/engine-gpgconf.c | 58 ++++++++++++++++++++++++++++++++++++++++------------ 1 file changed, 45 insertions(+), 13 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 10:09:41 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Thu, 03 Nov 2016 10:09:41 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-16-g34a4e80 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 34a4e8017be452e8ead6b9c2da84be1ec7929cae (commit) from 0c2038c0043c1e79547b55e79c3d3e267dae801c (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 34a4e8017be452e8ead6b9c2da84be1ec7929cae Author: Andre Heinecke Date: Thu Nov 3 09:40:00 2016 +0100 qt: Change license of export / version header * lang/qt/src/qgpgme_export.h, lang/qt/src/qgpgme_version.h: Change license to GPLv2+ -- These files were based on copies from the cpp version/export headers. This change is meant to clarify the licensing by bringing it in line with the overall licesense of the qgpgme library. diff --git a/lang/qt/src/qgpgme_export.h b/lang/qt/src/qgpgme_export.h index ceb3888..48296f7 100644 --- a/lang/qt/src/qgpgme_export.h +++ b/lang/qt/src/qgpgme_export.h @@ -1,22 +1,32 @@ -/*qgpgme_export.h - Export macros for qgpgme - Copyright (C) 2016, Intevation GmbH +/* qgpgme_export.h - Export macros for qgpgme - This file is part of GPGME++. + This file is part of qgpgme, the Qt API binding for gpgme + Copyright (c) 2016 Intevation GmbH - GPGME++ is free software; you can redistribute it and/or - modify it under the terms of the GNU Library General Public - License as published by the Free Software Foundation; either - version 2 of the License, or (at your option) any later version. + QGpgME is free software; you can redistribute it and/or + modify it under the terms of the GNU General Public License as + published by the Free Software Foundation; either version 2 of the + License, or (at your option) any later version. - GPGME++ is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU Library General Public License for more details. + QGpgME is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. - You should have received a copy of the GNU Library General Public License - along with GPGME++; see the file COPYING.LIB. If not, write to the - Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, - Boston, MA 02110-1301, USA. + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + + In addition, as a special exception, the copyright holders give + permission to link the code of this program with any edition of + the Qt library by Trolltech AS, Norway (or with modified versions + of Qt that use the same license as Qt), and distribute linked + combinations including the two. You must obey the GNU General + Public License in all respects for all of the code used other than + Qt. If you modify this file, you may extend this exception to + your version of the file, but you are not obligated to do so. If + you do not wish to do so, delete this exception statement from + your version. */ #ifndef QGPGME_EXPORT_H diff --git a/lang/qt/src/qgpgme_version.h.in b/lang/qt/src/qgpgme_version.h.in index 5ec59a8..1bc5694 100644 --- a/lang/qt/src/qgpgme_version.h.in +++ b/lang/qt/src/qgpgme_version.h.in @@ -1,22 +1,32 @@ -/*qgpgme_version.h - Version macros for qgpgme - Copyright (C) 2016, Intevation GmbH - - This file is part of GPGME++. - - GPGME++ is free software; you can redistribute it and/or - modify it under the terms of the GNU Library General Public - License as published by the Free Software Foundation; either - version 2 of the License, or (at your option) any later version. - - GPGME++ is distributed in the hope that it will be useful, - but WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - GNU Library General Public License for more details. - - You should have received a copy of the GNU Library General Public License - along with GPGME++; see the file COPYING.LIB. If not, write to the - Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, - Boston, MA 02110-1301, USA. +/* qgpgme_version.h - Version macros for qgpgme + + This file is part of qgpgme, the Qt API binding for gpgme + Copyright (c) 2016 Intevation GmbH + + QGpgME is free software; you can redistribute it and/or + modify it under the terms of the GNU General Public License as + published by the Free Software Foundation; either version 2 of the + License, or (at your option) any later version. + + QGpgME is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA + + In addition, as a special exception, the copyright holders give + permission to link the code of this program with any edition of + the Qt library by Trolltech AS, Norway (or with modified versions + of Qt that use the same license as Qt), and distribute linked + combinations including the two. You must obey the GNU General + Public License in all respects for all of the code used other than + Qt. If you modify this file, you may extend this exception to + your version of the file, but you are not obligated to do so. If + you do not wish to do so, delete this exception statement from + your version. */ ----------------------------------------------------------------------- Summary of changes: lang/qt/src/qgpgme_export.h | 40 +++++++++++++++++++++------------- lang/qt/src/qgpgme_version.h.in | 48 +++++++++++++++++++++++++---------------- 2 files changed, 54 insertions(+), 34 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 11:01:01 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Thu, 03 Nov 2016 11:01:01 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-315-gd10b67b Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via d10b67b9bc32e8feff1be86e6646fc23e58fe45d (commit) from 0ed6a6df5aa421a9c5cdb1e63867f0deee79af9e (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit d10b67b9bc32e8feff1be86e6646fc23e58fe45d Author: Werner Koch Date: Thu Nov 3 10:58:19 2016 +0100 gpgconf: Add a new field to the --query-swdb output. * tools/gpgconf.c (query_swdb): Insert new field with the installed version. Check that the supplied version does not contain a colon. Signed-off-by: Werner Koch diff --git a/doc/tools.texi b/doc/tools.texi index 2d2ccef..6e578a3 100644 --- a/doc/tools.texi +++ b/doc/tools.texi @@ -984,6 +984,11 @@ special name which is replaced by the actual package implementing this version of GnuPG. For this name it is also not required to specify a version because @command{gpgconf} takes its own version in this case. + at item iversion +The currently installed version or an empty string. The value is +taken from the command line argument but may be provided by gpg +if not given. + @item status The status of the software package according to this table: @table @code @@ -995,9 +1000,9 @@ The given name is not known in the online database. @item u An update of the software is available. @item c -The specified version of the software is current. +The installed version of the software is current. @item n -The specified version is already newer than the released version. +The installed version is already newer than the released version. @end table @item urgency diff --git a/tools/gpgconf.c b/tools/gpgconf.c index 1f00418..e43f49d 100644 --- a/tools/gpgconf.c +++ b/tools/gpgconf.c @@ -232,6 +232,7 @@ valid_swdb_name_p (const char *name) * output written to OUT is a colon delimited line with these fields: * * name :: The name of the package + * curvers:: The installed version if given. * status :: This value tells the status of the software package * '-' :: No information available * (error or CURRENT_VERSION not given) @@ -301,7 +302,8 @@ query_swdb (estream_t out, const char *name, const char *current_version) current_version = self_version; } - if (current_version && compare_version_strings (current_version, NULL)) + if (current_version && (strchr (current_version, ':') + || compare_version_strings (current_version, NULL))) { log_error ("error in version string '%s': %s\n", current_version, gpg_strerror (GPG_ERR_INV_ARG)); @@ -313,7 +315,10 @@ query_swdb (estream_t out, const char *name, const char *current_version) if (!fp) { err = gpg_error_from_syserror (); - es_fprintf (out, "%s:-::%u:::::::\n", name, gpg_err_code (err)); + es_fprintf (out, "%s:%s:-::%u:::::::\n", + name, + current_version? current_version : "", + gpg_err_code (err)); if (gpg_err_code (err) != GPG_ERR_ENOENT) log_error (_("error opening '%s': %s\n"), fname, gpg_strerror (err)); goto leave; @@ -381,13 +386,18 @@ query_swdb (estream_t out, const char *name, const char *current_version) if (!*filedate || !*verified) { err = gpg_error (GPG_ERR_INV_TIME); - es_fprintf (out, "%s:-::%u:::::::\n", name, gpg_err_code (err)); + es_fprintf (out, "%s:%s:-::%u:::::::\n", + name, + current_version? current_version : "", + gpg_err_code (err)); goto leave; } if (!value_ver) { - es_fprintf (out, "%s:?:::::::::\n", name); + es_fprintf (out, "%s:%s:?:::::::::\n", + name, + current_version? current_version : ""); goto leave; } @@ -414,8 +424,9 @@ query_swdb (estream_t out, const char *name, const char *current_version) else status = 'n'; - es_fprintf (out, "%s:%c::%d:%s:%s:%s:%s:%lu:%s:\n", + es_fprintf (out, "%s:%s:%c::%d:%s:%s:%s:%s:%lu:%s:\n", name, + current_version? current_version : "", status, err, filedate, ----------------------------------------------------------------------- Summary of changes: doc/tools.texi | 9 +++++++-- tools/gpgconf.c | 21 ++++++++++++++++----- 2 files changed, 23 insertions(+), 7 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 15:07:48 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Thu, 03 Nov 2016 15:07:48 +0100 Subject: [git] GpgOL - branch, nomapi, updated. gpgol-1.4.0-135-gada53e4 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG extension for MS Outlook". The branch, nomapi has been updated via ada53e40e5c3907e8ae9539bd3212b57b48aba43 (commit) via 51e12dd2dddcdf91031b4f7eee0cfafbbd5a68ef (commit) via 86b7dcc999038425993dd0ed6b45df50d20a6831 (commit) via 4f2b76c0e1d4bb84e477dbf3fea1f6d23873e3de (commit) via 9a2ef44b0e36537cb91a35a107809a80f46bf499 (commit) via 80e972f8b4260c619c9eaea8c1762917a20c7a33 (commit) via 920a9c0d1a29a3d73b902d15ff6bd061ae414052 (commit) from 1d734d5938224e02236245223cf925a61563e2fc (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit ada53e40e5c3907e8ae9539bd3212b57b48aba43 Author: Andre Heinecke Date: Thu Nov 3 14:46:57 2016 +0100 Add explorer and explorers event handler * explorer-events.cpp: New. Invalidate ui on selection change. * explorers-events.cpp: New. Install event handler for new explorers. * gpgoladdin.cpp (GpgolAddin::~GpgolAddin): Release explorers event handler. (install_explorer_sinks): Install explorers and explorer event handler. (GpgolAddin::OnStartupComplete): call install_explorer_sinks -- This fixes the problem that without another read by outlook the state of the ui might not have matched to the signature state, which is critical as it may have shown the wrong sigstate. diff --git a/src/explorer-events.cpp b/src/explorer-events.cpp new file mode 100644 index 0000000..f48f6ac --- /dev/null +++ b/src/explorer-events.cpp @@ -0,0 +1,91 @@ +/* explorer-events.cpp - Event handling for the application. + * Copyright (C) 2016 Intevation GmbH + * + * This file is part of GpgOL. + * + * GpgOL is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2.1 of the License, or (at your option) any later version. + * + * GpgOL is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program; if not, see . + */ + +/* The event handler classes defined in this file follow the + general pattern that they implment the IDispatch interface + through the eventsink macros and handle event invocations + in their invoke methods. +*/ +#ifdef HAVE_CONFIG_H +#include +#endif + +#include "eventsink.h" +#include "ocidl.h" +#include "common.h" +#include "oomhelp.h" +#include "mail.h" +#include "gpgoladdin.h" + +/* Explorer Events */ +BEGIN_EVENT_SINK(ExplorerEvents, IDispatch) +EVENT_SINK_DEFAULT_CTOR(ExplorerEvents) +EVENT_SINK_DEFAULT_DTOR(ExplorerEvents) +typedef enum + { + Activate = 0xF001, + AttachmentSelectionChange = 0xFC79, + BeforeFolderSwitch = 0xF003, + BeforeItemCopy = 0xFA0E, + BeforeItemCut = 0xFA0F, + BeforeItemPaste = 0xFA10, + BeforeMaximize = 0xFA11, + BeforeMinimize = 0xFA12, + BeforeMove = 0xFA13, + BeforeSize = 0xFA14, + BeforeViewSwitch = 0xF005, + Close = 0xF008, + Deactivate = 0xF006, + DisplayModeChange = 0xFC98, + FolderSwitch = 0xF002, + InlineResponse = 0xFC92, + InlineResponseClose = 0xFC96, + SelectionChange = 0xF007, + ViewSwitch = 0xF004 + } ExplorerEvent; + +EVENT_SINK_INVOKE(ExplorerEvents) +{ + USE_INVOKE_ARGS + switch(dispid) + { + case SelectionChange: + { + log_oom_extra ("%s:%s: Selection change in explorer: %p", + SRCNAME, __func__, this); + gpgoladdin_invalidate_ui (); + break; + } + case Close: + { + log_oom_extra ("%s:%s: Deleting event handler: %p", + SRCNAME, __func__, this); + delete this; + return S_OK; + } + default: + break; +#if 0 + log_oom_extra ("%s:%s: Unhandled Event: %lx \n", + SRCNAME, __func__, dispid); +#endif + } + return S_OK; +} +END_EVENT_SINK(ExplorerEvents, IID_ExplorerEvents) diff --git a/src/explorers-events.cpp b/src/explorers-events.cpp new file mode 100644 index 0000000..476e11e --- /dev/null +++ b/src/explorers-events.cpp @@ -0,0 +1,76 @@ +/* explorer-events.cpp - Event handling for the application. + * Copyright (C) 2016 Intevation GmbH + * + * This file is part of GpgOL. + * + * GpgOL is free software; you can redistribute it and/or + * modify it under the terms of the GNU Lesser General Public + * License as published by the Free Software Foundation; either + * version 2.1 of the License, or (at your option) any later version. + * + * GpgOL is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program; if not, see . + */ + +/* The event handler classes defined in this file follow the + general pattern that they implment the IDispatch interface + through the eventsink macros and handle event invocations + in their invoke methods. +*/ +#ifdef HAVE_CONFIG_H +#include +#endif + +#include "eventsink.h" +#include "eventsinks.h" +#include "ocidl.h" +#include "common.h" +#include "oomhelp.h" +#include "mail.h" +#include "gpgoladdin.h" + +/* Explorers Events */ +BEGIN_EVENT_SINK(ExplorersEvents, IDispatch) +EVENT_SINK_DEFAULT_CTOR(ExplorersEvents) +EVENT_SINK_DEFAULT_DTOR(ExplorersEvents) +typedef enum + { + NewExplorer = 0xF001, + } ExplorersEvent; + +/* Don't confuse with ExplorerEvents. ExplorerEvents is + the actual event sink for explorer events. This just + ensures that we create such a sink for each new explorer. */ +EVENT_SINK_INVOKE(ExplorersEvents) +{ + USE_INVOKE_ARGS + switch(dispid) + { + case NewExplorer: + { + if (parms->cArgs != 1 || !(parms->rgvarg[0].vt & VT_DISPATCH)) + { + log_debug ("%s:%s: No explorer in new Explorer.", + SRCNAME, __func__); + break; + } + if (!install_ExplorerEvents_sink (parms->rgvarg[0].pdispVal)) + { + log_error ("%s:%s: Failed to install Explorer event sink.", + SRCNAME, __func__); + break; + + } + gpgoladdin_invalidate_ui (); + } + default: + break; + } + return S_OK; +} +END_EVENT_SINK(ExplorersEvents, IID_ExplorersEvents) diff --git a/src/gpgoladdin.cpp b/src/gpgoladdin.cpp index a9623cd..7c0c4e9 100644 --- a/src/gpgoladdin.cpp +++ b/src/gpgoladdin.cpp @@ -171,8 +171,12 @@ STDMETHODIMP GpgolAddinFactory::CreateInstance (LPUNKNOWN punk, REFIID riid, The ref count is set by the factory after creation. */ -GpgolAddin::GpgolAddin (void) : m_lRef(0), m_application(0), - m_addin(0), m_applicationEventSink(0), m_disabled(false) +GpgolAddin::GpgolAddin (void) : m_lRef(0), + m_application(nullptr), + m_addin(nullptr), + m_applicationEventSink(nullptr), + m_explorersEventSink(nullptr), + m_disabled(false) { read_options (); use_mime_ui = opt.mime_ui; @@ -190,6 +194,7 @@ GpgolAddin::~GpgolAddin (void) } log_debug ("%s:%s: Releasing Application Event Sink;", SRCNAME, __func__); + gpgol_release (m_explorersEventSink); gpgol_release (m_applicationEventSink); engine_deinit (); @@ -361,6 +366,50 @@ check_html_preferred() } } +static LPDISPATCH +install_explorer_sinks (LPDISPATCH application) +{ + + LPDISPATCH explorers = get_oom_object (application, "Explorers"); + + if (!explorers) + { + log_error ("%s:%s: No explorers object", + SRCNAME, __func__); + return nullptr; + } + int count = get_oom_int (explorers, "Count"); + + for (int i = 1; i <= count; i++) + { + std::string item = "Item("; + item += std::to_string (i) + ")"; + LPDISPATCH explorer = get_oom_object (explorers, item.c_str()); + if (!explorer) + { + log_error ("%s:%s: failed to get explorer %i", + SRCNAME, __func__, i); + continue; + } + /* Explorers delete themself in the close event of the explorer. */ + LPDISPATCH sink = install_ExplorerEvents_sink (explorer); + if (!sink) + { + log_error ("%s:%s: failed to create eventsink for explorer %i", + SRCNAME, __func__, i); + + } + else + { + log_oom_extra ("%s:%s: created sink %p for explorer %i", + SRCNAME, __func__, sink, i); + } + gpgol_release (explorer); + } + /* Now install the event sink to handle new explorers */ + return install_ExplorersEvents_sink (explorers); +} + STDMETHODIMP GpgolAddin::OnStartupComplete (SAFEARRAY** custom) { @@ -386,7 +435,8 @@ GpgolAddin::OnStartupComplete (SAFEARRAY** custom) ensure_category_exists (m_application, decCategory, 8); ensure_category_exists (m_application, verifyCategory, 5); install_forms (); - m_applicationEventSink = install_ApplicationEvents_sink(m_application); + m_applicationEventSink = install_ApplicationEvents_sink (m_application); + m_explorersEventSink = install_explorer_sinks (m_application); check_html_preferred (); return S_OK; } diff --git a/src/gpgoladdin.h b/src/gpgoladdin.h index d201b75..a871348 100644 --- a/src/gpgoladdin.h +++ b/src/gpgoladdin.h @@ -210,6 +210,7 @@ private: LPDISPATCH m_application; LPDISPATCH m_addin; LPDISPATCH m_applicationEventSink; + LPDISPATCH m_explorersEventSink; LPDISPATCH m_ribbon_control; bool m_disabled; commit 51e12dd2dddcdf91031b4f7eee0cfafbbd5a68ef Author: Andre Heinecke Date: Thu Nov 3 13:39:54 2016 +0100 Add mapi helpers for uuid retrieval * src/mapihelp.cpp, src/mapihelp.h: (get_gpgoluid_tag) (mapi_get_uid): New. -- Used in some experiments regarding UUID structures. diff --git a/src/mapihelp.cpp b/src/mapihelp.cpp index d4407e4..2ebe333 100644 --- a/src/mapihelp.cpp +++ b/src/mapihelp.cpp @@ -281,6 +281,61 @@ get_internetcharsetbody_tag (LPMESSAGE message, ULONG *r_tag) return result; } +/* Return the property tag for GpgOL UUID Info. */ +static int +get_gpgoluid_tag (LPMESSAGE message, ULONG *r_tag) +{ + if (!(*r_tag = create_gpgol_tag (message, L"GpgOL UID", __func__))) + return -1; + *r_tag |= PT_UNICODE; + return 0; +} + +char * +mapi_get_uid (LPDISPATCH mail) +{ + /* If the UUID is not in OOM maybe we find it in mapi. */ + LPMESSAGE msg = get_oom_base_message (mail); + if (!msg) + { + log_debug ("%s:%s: Failed to get message for '%p'", + SRCNAME, __func__, mail); + gpgol_release (msg); + } + ULONG tag; + if (get_gpgoluid_tag (msg, &tag)) + { + log_debug ("%s:%s: Failed to get tag for '%p'", + SRCNAME, __func__, mail); + gpgol_release (msg); + return NULL; + } + LPSPropValue propval = NULL; + HRESULT hr = HrGetOneProp ((LPMAPIPROP)msg, tag, &propval); + gpgol_release (msg); + if (hr) + { + log_debug ("%s:%s: Failed to get prop for '%p'", + SRCNAME, __func__, mail); + return NULL; + } + char *ret = NULL; + if (PROP_TYPE (propval->ulPropTag) == PT_UNICODE) + { + ret = wchar_to_utf8 (propval->Value.lpszW); + log_debug ("%s:%s: Fund uuid in MAPI for %p", + SRCNAME, __func__, mail); + } + else if (PROP_TYPE (propval->ulPropTag) == PT_STRING8) + { + ret = strdup (propval->Value.lpszA); + log_debug ("%s:%s: Fund uuid in MAPI for %p", + SRCNAME, __func__, mail); + } + MAPIFreeBuffer (propval); + return ret; +} + /* A Wrapper around the SaveChanges method. This function should be called indirect through the mapi_save_changes macro. Returns 0 on diff --git a/src/mapihelp.h b/src/mapihelp.h index 63b9d57..9bcd58f 100644 --- a/src/mapihelp.h +++ b/src/mapihelp.h @@ -130,6 +130,8 @@ int mapi_mark_or_create_moss_attach (LPMESSAGE message, msgtype_t msgtype); /* Copy the MAPI body to a PGPBODY type attachment. */ int mapi_body_to_attachment (LPMESSAGE message); + +char * mapi_get_uid (LPDISPATCH mail); #ifdef __cplusplus } #endif commit 86b7dcc999038425993dd0ed6b45df50d20a6831 Author: Andre Heinecke Date: Thu Nov 3 10:50:49 2016 +0100 Allow to reset uuid * src/mail.cpp (Mail::set_uuid): Set uuid even if the mail object already tracks a uuid. * src/oomhelp.cpp (get_unique_id): Extend with uuid param. * src/oomhelp.h: Update accordingly -- This is important if we close with discard changes to set our uuid again after the close. diff --git a/src/mail.cpp b/src/mail.cpp index 2cc7acf..3e2aa88 100644 --- a/src/mail.cpp +++ b/src/mail.cpp @@ -1186,21 +1186,38 @@ Mail::is_signed() int Mail::set_uuid() { + char *uuid; if (!m_uuid.empty()) { - return 0; + /* This codepath is reached by decrypt again after a + close with discard changes. The close discarded + the uuid on the OOM object so we have to set + it again. */ + log_debug ("%s:%s: Resetting uuid for %p to %s", + SRCNAME, __func__, this, + m_uuid.c_str()); + uuid = get_unique_id (m_mailitem, 1, m_uuid.c_str()); + } + else + { + uuid = get_unique_id (m_mailitem, 1, nullptr); } - char *uuid = get_unique_id (m_mailitem, 1); if (!uuid) { - log_debug ("%s:%s: Failed to get uuid for %p", + log_debug ("%s:%s: Failed to get/set uuid for %p", SRCNAME, __func__, m_mailitem); return -1; } - m_uuid = uuid; + if (m_uuid.empty()) + { + m_uuid = uuid; + g_uid_map.insert (std::pair (m_uuid, this)); + log_debug ("%s:%s: uuid for %p is now %s", + SRCNAME, __func__, this, + m_uuid.c_str()); + } xfree (uuid); - g_uid_map.insert (std::pair (m_uuid, this)); return 0; } diff --git a/src/oomhelp.cpp b/src/oomhelp.cpp index 9591f97..bb8df36 100644 --- a/src/oomhelp.cpp +++ b/src/oomhelp.cpp @@ -1603,7 +1603,7 @@ generate_uid () } char * -get_unique_id (LPDISPATCH mail, int create) +get_unique_id (LPDISPATCH mail, int create, const char *uuid) { if (!mail) { @@ -1614,8 +1614,9 @@ get_unique_id (LPDISPATCH mail, int create) char *uid = get_pa_string (mail, GPGOL_UID_DASL); if (!uid) { - log_debug ("%s:%s: No uuid found for '%p'", + log_debug ("%s:%s: No uuid found in oom for '%p'", SRCNAME, __func__, mail); + if (!create) { return NULL; @@ -1627,7 +1628,15 @@ get_unique_id (LPDISPATCH mail, int create) SRCNAME, __func__, uid, mail); return uid; } - char *newuid = generate_uid (); + char *newuid; + if (!uuid) + { + newuid = generate_uid (); + } + else + { + newuid = strdup (uuid); + } int ret = put_pa_string (mail, GPGOL_UID_DASL, newuid); if (ret) diff --git a/src/oomhelp.h b/src/oomhelp.h index f04487b..74e7faf 100644 --- a/src/oomhelp.h +++ b/src/oomhelp.h @@ -290,10 +290,13 @@ remove_category (LPDISPATCH mail, const char *category); a new uuid will be added if none exists and the value of that uuid returned. + The optinal uuid value can be set to be used + as uuid instead of a generated one. + Return value has to be freed by the caller. */ char * -get_unique_id (LPDISPATCH mail, int create); +get_unique_id (LPDISPATCH mail, int create, const char* uuid); #ifdef __cplusplus } commit 4f2b76c0e1d4bb84e477dbf3fea1f6d23873e3de Author: Andre Heinecke Date: Thu Nov 3 10:48:52 2016 +0100 Add close function to Mails * src/mail.cpp (Mail::close): New, close a mail. -- Closing a Mail with discard changes prevents the Save Changes popup without the requirement for a revert. diff --git a/src/mail.cpp b/src/mail.cpp index bc7a985..2cc7acf 100644 --- a/src/mail.cpp +++ b/src/mail.cpp @@ -978,6 +978,35 @@ Mail::close_inspector () return 0; } +int +Mail::close (bool discard) +{ + VARIANT aVariant[1]; + DISPPARAMS dispparams; + + dispparams.rgvarg = aVariant; + dispparams.rgvarg[0].vt = VT_INT; + dispparams.rgvarg[0].intVal = discard ? 1 : 0; + dispparams.cArgs = 1; + dispparams.cNamedArgs = 0; + + int rc = invoke_oom_method_with_parms (m_mailitem, "Close", + NULL, &dispparams); + + /* Reset the uuid after discarding all changes in the oom + so that we can still find ourself. */ + set_uuid (); + + /* Now that we have closed it with discard changes we no + longer need to wipe the mail because the plaintext was + discarded. */ + if (!rc) + { + m_needs_wipe = false; + } + return rc; +} + static const UserID get_uid_for_sender (const Key k, const char *sender) { diff --git a/src/mail.h b/src/mail.h index d150acc..0385fbd 100644 --- a/src/mail.h +++ b/src/mail.h @@ -254,6 +254,10 @@ public: by the caller. */ char ** get_recipients () const; + /** Call close with discard changes true or false + returns the value of the oom call. */ + int close (bool discard); + private: void update_categories (); void update_body (); commit 9a2ef44b0e36537cb91a35a107809a80f46bf499 Author: Andre Heinecke Date: Thu Nov 3 10:47:49 2016 +0100 Add extra debug output for mail destruction * src/mail.cpp (Mail::~Mail): Print uuid in dtor diff --git a/src/mail.cpp b/src/mail.cpp index c03cb3b..bc7a985 100644 --- a/src/mail.cpp +++ b/src/mail.cpp @@ -142,6 +142,8 @@ Mail::~Mail() xfree (m_sender); gpgol_release(m_mailitem); + log_oom_extra ("%s:%s: destroyed: %p uuid: %s", + SRCNAME, __func__, this, m_uuid.c_str()); } Mail * commit 80e972f8b4260c619c9eaea8c1762917a20c7a33 Author: Andre Heinecke Date: Wed Nov 2 11:34:16 2016 +0100 Disable revert all mails on quit * src/application-events.cpp (EVENT_SINK_INVOKE): Disable revert_all_mails. -- Reverting all mails in quit brings outlook into a buggy state in that it syncs the mail endlessly after the next start. diff --git a/src/application-events.cpp b/src/application-events.cpp index dbce53d..f70c44a 100644 --- a/src/application-events.cpp +++ b/src/application-events.cpp @@ -97,7 +97,11 @@ EVENT_SINK_INVOKE(ApplicationEvents) case Quit: { log_debug ("%s:%s: Quit event", SRCNAME, __func__); - Mail::revert_all_mails(); + /* Reverting all mails here can cause outlook to go + into an endless sync state after the next start. + So we can't do it. Needs handling. + Mail::revert_all_mails(); + */ } default: log_oom_extra ("%s:%s: Unhandled Event: %lx \n", commit 920a9c0d1a29a3d73b902d15ff6bd061ae414052 Author: Andre Heinecke Date: Mon Oct 31 12:36:01 2016 +0100 Install forms for InfoPath msg classes. * forms/gpgol-form-encrypted.cfg, forms/gpgol-form-signed.cfg: New. * src/olflange.cpp (install_forms): Install new forms. * src/mimemaker.cpp (finalize_message): Use InfoPath msg classes. -- This fixes that Outlook shows all our Mails as S/MIME signed because we set the S/MIME message class when sending to enable the behavior that it takes the MIME structure from the first attachment. It also fixes the display of reverted mails which was previously wrong. diff --git a/forms/gpgol-form-encrypted.cfg b/forms/gpgol-form-encrypted.cfg new file mode 100644 index 0000000..12f7140 --- /dev/null +++ b/forms/gpgol-form-encrypted.cfg @@ -0,0 +1,34 @@ +[Description] +MessageClass=IPM.Note.InfoPathForm.GpgOL.SMIME.MultipartSigned +DesignerRuntimeGuid={0006F020-0000-0000-C000-000000000046} +CLSID={00061033-0000-0000-C000-000000000046} +DisplayName=Form for GpgOL sent encrypted Mails +Category=Standard +Subcategory=Formular +Comment= +LargeIcon=encr-l.ico +SmallIcon=encr-s.ico +VersionMajor=1 +VersionMinor=0 +Hidden=1 +Owner=Public Domain + +[Properties] + +[Verbs] +Verb1=1 + +[Verb.1] +DisplayName=&Open +Code=0 +Flags=0 +Attribs=2 + +[Extensions] +Extensions1=1 + +[Extension.1] +Type=30 +NmidPropset={00020D0C-0000-0000-C000-000000000046} +NmidInteger=1 +Value=1011111111111111 diff --git a/forms/gpgol-form-signed.cfg b/forms/gpgol-form-signed.cfg new file mode 100644 index 0000000..acb562d --- /dev/null +++ b/forms/gpgol-form-signed.cfg @@ -0,0 +1,34 @@ +[Description] +MessageClass=IPM.Note.InfoPathForm.GpgOLS.SMIME.MultipartSigned +DesignerRuntimeGuid={0006F020-0000-0000-C000-000000000046} +CLSID={00061033-0000-0000-C000-000000000046} +DisplayName=Form for GpgOL sent signed Mails +Category=Standard +Subcategory=Formular +Comment= +LargeIcon=sign-l.ico +SmallIcon=sign-s.ico +VersionMajor=1 +VersionMinor=0 +Hidden=1 +Owner=Public Domain + +[Properties] + +[Verbs] +Verb1=1 + +[Verb.1] +DisplayName=&Open +Code=0 +Flags=0 +Attribs=2 + +[Extensions] +Extensions1=1 + +[Extension.1] +Type=30 +NmidPropset={00020D0C-0000-0000-C000-000000000046} +NmidInteger=1 +Value=1011111111111111 diff --git a/src/mimemaker.cpp b/src/mimemaker.cpp index 39a6a38..edb9980 100644 --- a/src/mimemaker.cpp +++ b/src/mimemaker.cpp @@ -1098,7 +1098,14 @@ finalize_message (LPMESSAGE message, mapi_attach_item_t *att_table, /* Set the message class. */ prop.ulPropTag = PR_MESSAGE_CLASS_A; - prop.Value.lpszA = GpgOLStr ("IPM.Note.SMIME.MultipartSigned"); + if (encrypt) + { + prop.Value.lpszA = GpgOLStr ("IPM.Note.InfoPathForm.GpgOL.SMIME.MultipartSigned"); + } + else + { + prop.Value.lpszA = GpgOLStr ("IPM.Note.InfoPathForm.GpgOLS.SMIME.MultipartSigned"); + } hr = message->SetProps(1, &prop, NULL); if (hr) { diff --git a/src/olflange.cpp b/src/olflange.cpp index 66b5b68..9f51182 100644 --- a/src/olflange.cpp +++ b/src/olflange.cpp @@ -795,6 +795,10 @@ install_forms (void) "gpgol", "gpgol-ms", "gpgol-cs", + /* The InfoPath we use for sending, to get outlook + to do the S/MIME handling. */ + "gpgol-form-signed", + "gpgol-form-encrypted", NULL, }; int formidx; ----------------------------------------------------------------------- Summary of changes: forms/{gpgol.cfg => gpgol-form-encrypted.cfg} | 4 +- forms/{gpgol-cs.cfg => gpgol-form-signed.cfg} | 4 +- src/application-events.cpp | 6 +- src/explorer-events.cpp | 91 +++++++++++++++++++++++++++ src/explorers-events.cpp | 76 ++++++++++++++++++++++ src/gpgoladdin.cpp | 56 ++++++++++++++++- src/gpgoladdin.h | 1 + src/mail.cpp | 58 +++++++++++++++-- src/mail.h | 4 ++ src/mapihelp.cpp | 55 ++++++++++++++++ src/mapihelp.h | 2 + src/mimemaker.cpp | 9 ++- src/olflange.cpp | 4 ++ src/oomhelp.cpp | 15 ++++- src/oomhelp.h | 5 +- 15 files changed, 372 insertions(+), 18 deletions(-) copy forms/{gpgol.cfg => gpgol-form-encrypted.cfg} (81%) copy forms/{gpgol-cs.cfg => gpgol-form-signed.cfg} (81%) create mode 100644 src/explorer-events.cpp create mode 100644 src/explorers-events.cpp hooks/post-receive -- GnuPG extension for MS Outlook http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 15:08:27 2016 From: cvs at cvs.gnupg.org (by Justus Winter) Date: Thu, 03 Nov 2016 15:08:27 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-317-gab89164 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via ab89164be02012f1bf159c971853b8610e966301 (commit) via 1ec07cbc209f247fd85704f5701564e31aa56d0b (commit) from d10b67b9bc32e8feff1be86e6646fc23e58fe45d (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit ab89164be02012f1bf159c971853b8610e966301 Author: Justus Winter Date: Thu Oct 27 18:48:51 2016 +0200 g10: Improve and unify key selection for -r and --locate-keys. * g10/getkey.c (struct pubkey_cmp_cookie): New type. (key_is_ok, uid_is_ok, subkey_is_ok): New functions. (pubkey_cmp): Likewise. (get_best_pubkey_byname): Likewise. * g10/keydb.h (get_best_pubkey_byname): New prototype. * g10/keylist.c (locate_one): Use the new function. * g10/pkclist.c (find_and_check_key): Likewise. * tests/openpgp/Makefile.am (XTESTS): Add new test. (TEST_FILES): Add new files. * tests/openpgp/key-selection.scm: New file. * tests/openpgp/key-selection/0.asc: Likewise. * tests/openpgp/key-selection/1.asc: Likewise. * tests/openpgp/key-selection/2.asc: Likewise. * tests/openpgp/key-selection/3.asc: Likewise. * tests/openpgp/key-selection/4.asc: Likewise. -- When a name resembling a mail address is given to either --locate-keys or --recipient, rank the search results and use only the most relevant key. This also lets us query which key will be used for encryption using --locate-keys. However, note that --locate-keys may also return keys incapable of encryption, though it will prefer keys that have an encryption subkey. GnuPG-bug-id: 2359 Signed-off-by: Justus Winter diff --git a/g10/getkey.c b/g10/getkey.c index 5ef5fc3..926575d 100644 --- a/g10/getkey.c +++ b/g10/getkey.c @@ -1461,6 +1461,211 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, return rc; } + + +/* Comparison machinery for get_best_pubkey_byname. */ + +/* First we have a struct to cache computed information about the key + * in question. */ +struct pubkey_cmp_cookie +{ + int valid; /* Is this cookie valid? */ + PKT_public_key key; /* The key. */ + PKT_user_id *uid; /* The matching UID packet. */ + unsigned int validity; /* Computed validity of (KEY, UID). */ + u32 creation_time; /* Creation time of the newest subkey + capable of encryption. */ +}; + +/* Then we have a series of helper functions. */ +static int +key_is_ok (const PKT_public_key *key) +{ + return ! key->has_expired && ! key->flags.revoked + && key->flags.valid && ! key->flags.disabled; +} + +static int +uid_is_ok (const PKT_public_key *key, const PKT_user_id *uid) +{ + return key_is_ok (key) && ! uid->is_revoked; +} + +static int +subkey_is_ok (const PKT_public_key *sub) +{ + return ! sub->flags.revoked && sub->flags.valid && ! sub->flags.disabled; +} + +/* Finally this function compares a NEW key to the former candidate + * OLD. Returns < 0 if the old key is worse, > 0 if the old key is + * better, == 0 if it is a tie. */ +static int +pubkey_cmp (ctrl_t ctrl, const char *name, struct pubkey_cmp_cookie *old, + struct pubkey_cmp_cookie *new, KBNODE new_keyblock) +{ + KBNODE n; + + new->creation_time = 0; + for (n = find_next_kbnode (new_keyblock, PKT_PUBLIC_SUBKEY); + n; n = find_next_kbnode (n, PKT_PUBLIC_SUBKEY)) + { + PKT_public_key *sub = n->pkt->pkt.public_key; + + if ((sub->pubkey_usage & PUBKEY_USAGE_ENC) == 0) + continue; + + if (! subkey_is_ok (sub)) + continue; + + if (sub->timestamp > new->creation_time) + new->creation_time = sub->timestamp; + } + + for (n = find_next_kbnode (new_keyblock, PKT_USER_ID); + n; n = find_next_kbnode (n, PKT_USER_ID)) + { + PKT_user_id *uid = n->pkt->pkt.user_id; + char *mbox = mailbox_from_userid (uid->name); + int match = mbox ? strcasecmp (name, mbox) == 0 : 0; + + xfree (mbox); + if (! match) + continue; + + new->uid = uid; + new->validity = + get_validity (ctrl, &new->key, uid, NULL, 0) & TRUST_MASK; + new->valid = 1; + + if (! old->valid) + return -1; /* No OLD key. */ + + if (! uid_is_ok (&old->key, old->uid) && uid_is_ok (&new->key, uid)) + return -1; /* Validity of the NEW key is better. */ + + if (old->validity < new->validity) + return -1; /* Validity of the NEW key is better. */ + + if (old->validity == new->validity && uid_is_ok (&new->key, uid) + && old->creation_time < new->creation_time) + return -1; /* Both keys are of the same validity, but the + NEW key is newer. */ + } + + /* Stick with the OLD key. */ + return 1; +} + + +/* This function works like get_pubkey_byname, but if the name + * resembles a mail address, the results are ranked and only the best + * result is returned. */ +int +get_best_pubkey_byname (ctrl_t ctrl, GETKEY_CTX *retctx, PKT_public_key *pk, + const char *name, KBNODE *ret_keyblock, + int include_unusable, int no_akl) +{ + int rc; + struct getkey_ctx_s *ctx = NULL; + + rc = get_pubkey_byname (ctrl, &ctx, pk, name, ret_keyblock, + NULL, include_unusable, no_akl); + if (rc) + { + if (ctx) + getkey_end (ctx); + if (retctx) + *retctx = NULL; + return rc; + } + + if (is_valid_mailbox (name)) + { + /* Rank results and return only the most relevant key. */ + struct pubkey_cmp_cookie best = { 0 }, new; + while (getkey_next (ctx, &new.key, NULL) == 0) + { + KBNODE new_keyblock = get_pubkeyblock (pk_keyid (&new.key)); + int diff = pubkey_cmp (ctrl, name, &best, &new, new_keyblock); + release_kbnode (new_keyblock); + if (diff < 0) + { + /* New key is better. */ + release_public_key_parts (&best.key); + best = new; + } + else if (diff > 0) + { + /* Old key is better. */ + release_public_key_parts (&new.key); + } + else + { + /* A tie. Keep the old key. */ + release_public_key_parts (&new.key); + } + } + getkey_end (ctx); + ctx = NULL; + + if (best.valid) + { + if (retctx || ret_keyblock) + { + ctx = xtrycalloc (1, sizeof **retctx); + if (! ctx) + rc = gpg_error_from_syserror (); + else + { + ctx->kr_handle = keydb_new (); + if (! ctx->kr_handle) + { + xfree (ctx); + *retctx = NULL; + rc = gpg_error_from_syserror (); + } + else + { + u32 *keyid = pk_keyid (&best.key); + ctx->exact = 1; + ctx->nitems = 1; + ctx->items[0].mode = KEYDB_SEARCH_MODE_LONG_KID; + ctx->items[0].u.kid[0] = keyid[0]; + ctx->items[0].u.kid[1] = keyid[1]; + + if (ret_keyblock) + { + release_kbnode (*ret_keyblock); + *ret_keyblock = NULL; + rc = getkey_next (ctx, NULL, ret_keyblock); + } + } + } + } + + if (pk) + *pk = best.key; + else + release_public_key_parts (&best.key); + } + } + + if (rc && ctx) + { + getkey_end (ctx); + ctx = NULL; + } + + if (retctx && ctx) + *retctx = ctx; + else + getkey_end (ctx); + + return rc; +} + + /* Get a public key from a file. * diff --git a/g10/keydb.h b/g10/keydb.h index 35512bb..6133202 100644 --- a/g10/keydb.h +++ b/g10/keydb.h @@ -324,6 +324,13 @@ int get_pubkey_byname (ctrl_t ctrl, KBNODE *ret_keyblock, KEYDB_HANDLE *ret_kdbhd, int include_unusable, int no_akl ); +/* Likewise, but only return the best match if NAME resembles a mail + * address. */ +int get_best_pubkey_byname (ctrl_t ctrl, + GETKEY_CTX *retctx, PKT_public_key *pk, + const char *name, KBNODE *ret_keyblock, + int include_unusable, int no_akl); + /* Get a public key directly from file FNAME. */ gpg_error_t get_pubkey_fromfile (ctrl_t ctrl, PKT_public_key *pk, const char *fname); diff --git a/g10/keylist.c b/g10/keylist.c index 212d77e..51dc409 100644 --- a/g10/keylist.c +++ b/g10/keylist.c @@ -650,7 +650,7 @@ locate_one (ctrl_t ctrl, strlist_t names) for (sl = names; sl; sl = sl->next) { - rc = get_pubkey_byname (ctrl, &ctx, NULL, sl->d, &keyblock, NULL, 1, 0); + rc = get_best_pubkey_byname (ctrl, &ctx, NULL, sl->d, &keyblock, 1, 0); if (rc) { if (gpg_err_code (rc) != GPG_ERR_NO_PUBKEY) diff --git a/g10/pkclist.c b/g10/pkclist.c index da4cc06..eef3437 100644 --- a/g10/pkclist.c +++ b/g10/pkclist.c @@ -838,7 +838,7 @@ find_and_check_key (ctrl_t ctrl, const char *name, unsigned int use, if (from_file) rc = get_pubkey_fromfile (ctrl, pk, name); else - rc = get_pubkey_byname (ctrl, NULL, pk, name, NULL, NULL, 0, 0); + rc = get_best_pubkey_byname (ctrl, NULL, pk, name, NULL, 0, 0); if (rc) { int code; diff --git a/tests/openpgp/Makefile.am b/tests/openpgp/Makefile.am index 5725e11..75e2fd4 100644 --- a/tests/openpgp/Makefile.am +++ b/tests/openpgp/Makefile.am @@ -83,6 +83,7 @@ XTESTS = \ export.scm \ ssh.scm \ quick-key-manipulation.scm \ + key-selection.scm \ issue2015.scm \ issue2346.scm \ issue2417.scm \ @@ -124,7 +125,12 @@ TEST_FILES = pubring.asc secring.asc plain-1o.asc plain-2o.asc plain-3o.asc \ tofu/cross-sigs/871C2247-3.gpg \ tofu/cross-sigs/871C2247-3.txt \ tofu/cross-sigs/871C2247-4.gpg \ - tofu/cross-sigs/README + tofu/cross-sigs/README \ + key-selection/0.asc \ + key-selection/1.asc \ + key-selection/2.asc \ + key-selection/3.asc \ + key-selection/4.asc data_files = data-500 data-9000 data-32000 data-80000 plain-large diff --git a/tests/openpgp/key-selection.scm b/tests/openpgp/key-selection.scm new file mode 100644 index 0000000..536f607 --- /dev/null +++ b/tests/openpgp/key-selection.scm @@ -0,0 +1,82 @@ +#!/usr/bin/env gpgscm + +;; Copyright (C) 2016 g10 Code GmbH +;; +;; This file is part of GnuPG. +;; +;; GnuPG is free software; you can redistribute it and/or modify +;; it under the terms of the GNU General Public License as published by +;; the Free Software Foundation; either version 3 of the License, or +;; (at your option) any later version. +;; +;; GnuPG is distributed in the hope that it will be useful, +;; but WITHOUT ANY WARRANTY; without even the implied warranty of +;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +;; GNU General Public License for more details. +;; +;; You should have received a copy of the GNU General Public License +;; along with this program; if not, see . + +(load (with-path "defs.scm")) + +;; This test assumes a fixed time of 2004-01-01. + + ;; Redefine gpg with a fixed time. +(define gpg `(, at gpg --faked-system-time=1072911600)) + +;; We have a number of keys for Mr. Acejlnu Acdipr . +(define mailbox "acdipr at example.org") + +;; The keys are sorted, from the least relevant to the most relevant +;; key. +(define keys + '(("ED087E9D3394340738E20A244892A3CF8F65EBAC" + "no encryption-capable subkey, created: 2003-11-30, expires: 2006-11-29" + 4) + ("D7388651A1B7466D03B538428178E04B0BAA385B" + "encryption-capable subkey, created: 2000-12-31, expired: 2001-12-31" + 0) + ("DDEF1BEC66C8BAC8D69CED2AEABED840EC98B024" + "encryption-capable subkey, created: 2001-12-31, expires: 2006-12-30" + 1) + ("03FCFEDE014027DD897AD2F23D32670A96A9C2BF" + "encryption-capable subkey, created: 2002-12-31, expires: 2005-12-30" + 2) + ("B95BD6175CB6339244355BA160B8117E6119CED6" + "encryption-capable subkeys, last created: 2003-05-31, expires: 2005-05-30" + 3))) + +;; Accessors for the elements of KEYS. +(define :fpr car) +(define :comment cadr) +(define :number caddr) +(define (:filename key) + (in-srcdir "key-selection" + (string-append (number->string (:number key)) ".asc"))) + +(define (delete-keys which) + (call-check `(, at gpg --delete-keys ,@(map :fpr which)))) + +(define (import-keys which) + (call-check `(, at gpg --import ,@(map :filename which)))) + +(for-each-p' + "Checking key selection" + (lambda (set) + (import-keys set) + (let ((fpr (list-ref (assoc "fpr" + (gpg-with-colons `(--locate-key ,mailbox))) + 9)) + (expected (:fpr (last set)))) + (unless (equal? fpr expected) + (display "Given keys ") + (apply echo (map :fpr set)) + (echo "This is what --locate-key says:") + (display (call-popen `(, at gpg --locate-key ,mailbox) "")) + (echo "This is the key we expected:") + (display (call-popen `(, at gpg --list-keys ,expected) "")) + (error "Expected" expected "but got" fpr))) + (delete-keys set)) + (lambda (set) + (length set)) + (filter (lambda (x) (not (null? x))) (powerset keys))) diff --git a/tests/openpgp/key-selection/0.asc b/tests/openpgp/key-selection/0.asc new file mode 100644 index 0000000..d40a98b --- /dev/null +++ b/tests/openpgp/key-selection/0.asc @@ -0,0 +1,30 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQENBDpPvC8BCACqDbU+2znCURAocNMmcwCSYVl5l4Zbx6jcy9ON7y12Ai7CRSbX +8Nb8kggit02pNFtb1l2NKad7DqR1f/WPqkQjZ6rvFHKEOsupqrUhpQ6dU3H94wuO +g4M2PGsaxKAcw24qIoKkTotecLgUFMhduIq7u8kTnalTOW1o/18moVuoVNkDdO4Y +I7n/dloVNv5Xkm5bS4VBdvUzJ9gvbqkynud/L6pSFeng0vVJQMN3tVbApcNzhLBs +G5Fvf9Rve4V8xTeBYQ+VRO7H9nvaS8YFf07kTwUDS69Vs8qIaLKOQJL3F75CileN +K7fb9OC3J4PNF0CDz+e2KkRRF6Q/xS8KXF9rABEBAAG0I0FjZWpsbnUgQWNkaXBy +IDxhY2RpcHJAZXhhbXBsZS5vcmc+iQFUBBMBCAA+FiEE1ziGUaG3Rm0DtThCgXjg +SwuqOFsFAjpPvC8CGwMFCQHhM4AFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ +gXjgSwuqOFt7Lgf8DFDVQ4JykT8njX0+JkemSL2UUDH2iVRWkU6tKZPGneEnQGMm +iRfSX0im0pFHWxJ0vZsmUNq33Vr2sbvppT8Ti1rBx4TrdZ7PSEIEi1KTVSx6GKjr +2ObCax2u1p+u+tC35GfhV1Y1pUcSZXc45C1o259ivekRJY/fw9DrvR7154S3ygjp +lkEM4PC33216XMTqUG1sAWw40aDtKaiyp5J8zqLKXXjCnZsTWdj4uxB7E5WPjaEF +ylON/h+Hfw2RMzlYRGTbUu2G/Ma0TiycGJvT78myCpnc5akcKVZu1Wu4VDBqBC1N +dVcTzhJ5T4gwFCWHif3/MYqTVBnZSAVURtI3V7kBDQQ6T7wvAQgAuF5JaVAE9/Vv +K1U+VSAAhWMGSp6fwezgWdj0rn1GBx3DtqQkYXoLRjTrlBf1qOO6NPbBUi1gz8R+ +IQTHsesIXiUSlMige3/HxdSOsbzKipm1SGJedqUz3H03+yfr82NT+QvQmlEGX9k6 +goPY9t3r+O3F6ab4mc5NxFKhj2XvbRyf8I9J+3w6zXBWwsgLHacTCa13zGz6B0NH +dCk/2B6HTJeIJWpHdALQXp0/JcKWksw0Hsihpdu0QploUSPihZostRUKszOkugeu +W0t3fmt6on4fIFWveh9NSVDYIHKVMRU8cl5vRXNNRTsYQOarIvjmoUHv5u+UpZcc +iE/7wILNhQARAQABiQE8BBgBCAAmFiEE1ziGUaG3Rm0DtThCgXjgSwuqOFsFAjpP +vC8CGwwFCQHhM4AACgkQgXjgSwuqOFv9GAgAkACyK3Km4jFBqw7ah2xMxWCkdpgu +DdTi64ra6GyMQk/Lem8DzBO/ER/cavV9lg61qCOy7ecCNs7MhPiWZIod2bcV3JDZ +AglnGgTQ+lSpPXFCk3eoRktRsXesgQ1dE30uR9pypEqZ0BYNZZ2G2hRqAnRgUOOI +7THmf/X5w5KPKLlm3zOlGQomFy6lfOR9Zd5/QoKRNmuD9gNfSE+3vBvr+ISQPIev +Ch2qeC/N0BP5EoVE4SXp8l2oaaVJLi/Yx2J6vfximeeaBPxsKjuA+GJu6IIhegnY +X4kCxWStla+KuN0p0iNUh002pKybISuqyI9vgImH9Nh22Nf7mcRQWflR6A== +=nyjX +-----END PGP PUBLIC KEY BLOCK----- diff --git a/tests/openpgp/key-selection/1.asc b/tests/openpgp/key-selection/1.asc new file mode 100644 index 0000000..fea379c --- /dev/null +++ b/tests/openpgp/key-selection/1.asc @@ -0,0 +1,30 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQENBDww7w4BCADCvhkDDCAAtDpLCUa2ryPqWxlSSVKdyY9ecqjgEswijsZ+2T6O +Xr/50POpLbW9IWvHdvcifXUk1YZg8wLcnVIMwiZsdNSDM3MycoPoNc7pL5MaPGL6 +e9u+8HWX6aowOo5st6Y57HUeaKReH1Peb0avoEUIE9l4xqVx41AYrKViS7Zp5p9A +67thNKMisZ8aYutlhmVQB/uDO7XiKal07vjftf6aZazNBC5ZBOj4G+/TLcKMox8h +AaUJTkqsJcSCZTc7cMVjikmWItgKm6wIceGTpUGSvvZ3TnWUtgq3ivaMQrpyN3RT +tVM5uO2Mh8Uzkq9YWh2V7IT+jGKztrpdPKu3ABEBAAG0I0FjZWpsbnUgQWNkaXBy +IDxhY2RpcHJAZXhhbXBsZS5vcmc+iQFUBBMBCAA+FiEE3e8b7GbIusjWnO0q6r7Y +QOyYsCQFAjww7w4CGwMFCQlmAYAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ +6r7YQOyYsCT0awf+NENO1grzmRfsyl8ODREmUlnnUAaRiZGQ0h+JkooXiwcm/p5O +DupjRc5OLluDtnjTLMBwNk5ysX6yqSNTni9qCCpm62PaIopG+r8RyFPp4aRjR1Q3 +mbwHkKifLRBxDxeCDKdrqFs7hkVCYOxjyiaEZ2BYogqFDwHFoiE6UwQvwZfpNWex +4Zx8nhoGpcegMMEiGREWCTi0H+zJrYOiVzV2jPQF5lkFkwYMQKNaNQv3L5v2/5AC +Nu6Kej+oYcw/EA+o3OXYLxwa+tijfKqUxtndFsQS/lYSUNszxrcm7dOAx52DCMpC +8MNHmwe3qmofO6G9svqG02bIZTdyJBob5nNBD7kBDQQ8MO8OAQgAttn9ru3Ou6+A +lAqbV7fAbpdeIF5bHy/QZtLxa2dpG8BTOXDcoMp9MUyKjafHbNr+z5unqqTfduXy +oRdJ1D/iXbSpcRkMKRJz4fa+uPNN5SiGzrjxHTcALPG8ctTUvdNrV+Z5VkssU+FW +LQD+s5SQWn848kYTacrDL22JshIpekmz3ztDoNGOZxVj2DwF/QXDeaRhXT9ngB3c +PY8x7e8yIvmAcg8olt9rKTpkGXZHWAyBpyGzBJkxM+wfiNreGMNUkv41G/R4d1Lv +xMlGF05xrBJX9YrV1pRM+EdS4WOs2gvFT3qnBzFAQBZ9nqaLAFVxw0Sl7C+wSQPk +7ZPIKYANFwARAQABiQE8BBgBCAAmFiEE3e8b7GbIusjWnO0q6r7YQOyYsCQFAjww +7w4CGwwFCQlmAYAACgkQ6r7YQOyYsCSDdwf/an06WTTAIwHj8PfXIkywnq3SWfSZ +yuRaFaDan9en8xAfyw2smNnrHnTk86CZWL6yPTij6JZYynv4OxtSafIoT9LxT7uX +VpEtSBpTnnojlHFivfRYMGJ9k/EXGgb941W2DTbvQqzafc2u4K3u8KnFOgzfEj5B +qjYzbt/L2uR2PLOAfYIUYzqTKjdzvSIX2DRvkepHhTwRbCjJrkF/zx0IXFoJeU/k +6tYK6cNNCFTWT0uLJCflAZMtGpf4KDvjlccNts3mZQbEov+Dymj/nZ9JRgjc2heH +Pxi5muPMQ8jAc2i4V8vTybozlZ5O/+JkOOOH0ciLpD3buhgYBY309DIVmA== +=zVE+ +-----END PGP PUBLIC KEY BLOCK----- diff --git a/tests/openpgp/key-selection/2.asc b/tests/openpgp/key-selection/2.asc new file mode 100644 index 0000000..4b697f7 --- /dev/null +++ b/tests/openpgp/key-selection/2.asc @@ -0,0 +1,30 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQENBD4SIdsBCACqRRWUd9mwgRzVzaDbVLRdNOdyswPYuBKWlHI6Yx0lpfiQK6/X +rnRoR18lYJ0wBqImd/BJbjNE4bYaMUd+p7HzYIKzv8/DuvZQgovt9VIBn+a3YyCa +hdAaWEz994fjl8U5IGbrrGuV4XXlFATA6S7KX7CgxgiK/jVnRl1NVcTjOSnasU2J +LIbh0lawUe0b3HlwT8uFGg/MK3vHGGIalOJRlgeTBAF7zcaTfqoDiAXbbsfaxT4a +zB1OTRut1VOGBLWCsr09VCAMyz8awQqF81uG6cuv9swo76SuTiMcMMBfdNw3etVa +kLgL4JnsnMGM7c1fx/mfMUIUHYndDVT5LzQjABEBAAG0I0FjZWpsbnUgQWNkaXBy +IDxhY2RpcHJAZXhhbXBsZS5vcmc+iQFUBBMBCAA+FiEEA/z+3gFAJ92JetLyPTJn +Cpapwr8FAj4SIdsCGwMFCQWjmoAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ +PTJnCpapwr/bGAgAjGWQ3F9RUpeI3ogLLhGMsXmsOxZX1ptNtjL9HiDsrUY5XCS1 +7vZUpRz0/2nscbu7or6Xy8yZtG0vLXwfzeOvHQz/F8tnzruIWBFSAU8WBidxKxmC +AUlQWg6bAp0aTxyyVi/r719J6k/G/ZOhjgXM243Ck9HNnY2a0h0ArKzPo56N8Cks +caXshdWxIh3M9uJKSxBCxfDTtqPcU7LjNApaUOFphpAPT9ypE/Zw9BZNTVN6vILr +I7upnG5PNXybMCDh2XhpXS2E5/rY9Y3/aFKthBws16JMAzBRKMQqWTTC9a8X+4pa +KcNtQih3X9eRzj4JBAh6cl5qXIbz+32EzXA8drkBDQQ+EiHbAQgAz017pYsm9Sf0 +z5HqOQLx1dwCclzVE5RhvI+qplPT5e9sLG+trbOVpGM6fjWAK/yuxaUJibm/44UX +cxsTuR7gpAwc+gvwrF3cG6kmT+g4kZ7/I4EyBMZjM9lhlIk77MCTLXcT9ONr7Pm4 +flQO+vM6ZYRFm7DtSHzP2z2Uu9USqgLJumn+V61xQXYj3E2ORczOV3blPVUoI7gl +aRnVdveEqrucw+miRWq3clykTdbuP39H2nRgY0KXGbOefWh5dRe2okxL5nlhINGL +lOyj9n4jM6fNp9K8jWeg8YJ7tKRsffrrNnIovslNlkXucYAzM2OveP+JxDdtosSK +fzWtUSzrmQARAQABiQE8BBgBCAAmFiEEA/z+3gFAJ92JetLyPTJnCpapwr8FAj4S +IdsCGwwFCQWjmoAACgkQPTJnCpapwr+p6wf/cO8apRVlpRrI2q92j5DJ0IQsBdUv +Srvp3w8UHZad0VkhgT+edbYHN8VS245ckyWoUBB78XEvxayMF1/Mx0N+u1MOM1dY +MrAiwbaQnE99yjifwVzZz6wJuJ94MMzWw38j22ZTbIBHPh/4nzSl84sN+KuEcP4f +C2h7mat4NDO/VRTf7xWuLInS5yGdDOACwROd85ua4YNxo54s5mcd6BVr4upHd1Hj +0TULgmWvqz49N40VY4GF+38OAC7+DSsdamHVNdTb0fT+KaxTQ0K5BCl+7Oe66CqH +RWxaXRUD4YMRh1jdgc+j4D3Sj4xhevu0Kd6+7BWxmxWZKdOCiu9TEDBjrg== +=YqE5 +-----END PGP PUBLIC KEY BLOCK----- diff --git a/tests/openpgp/key-selection/3.asc b/tests/openpgp/key-selection/3.asc new file mode 100644 index 0000000..ab2ff73 --- /dev/null +++ b/tests/openpgp/key-selection/3.asc @@ -0,0 +1,43 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQENBD4SIZsBCADMR5w2TF16C1WaP+EIq+pg3InbyKr3VlGgxl2t/+PcRUmxhOh4 +zAs+k/FaKqH+h8JLGT6VlUMqKDqBrHhwVNz5nEYO/HeqaSsHjyNoIr4tS3oJMQWI +0QsRV8cPhlPHXQBS8K2KC7MfTyHIbfagjqakegY9ysZ2N6Qt3I3QSqO0khRHoNtZ +x8l/NHA9u8lRJD1OhfOg8gcY9800LPJbdzmyeOK5ezwyvjp6dXKNgXnwkrHQw7pD +hGITTRtNsRb0xF9e+1X6KRifk/ppJZjk3Lu8AJEyj6AfHZru6lYfv4LP77IW9Lw2 +x7pRwrMNtvffAOGGa4KYiVstgIaPmEm9v2UjABEBAAG0I0FjZWpsbnUgQWNkaXBy +IDxhY2RpcHJAZXhhbXBsZS5vcmc+iQFUBBMBCAA+FiEEuVvWF1y2M5JENVuhYLgR +fmEZztYFAj4SIZsCGwMFCQWjmoAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ +YLgRfmEZztapKAf/US2OkiyDX4D7cRrifnbkMj5YdHjiirqgd5Q9nhWIC/Pk494u +WDMt0XBeHk8aPp6NjQCMpWu8d9TxLCn43dI2eFRLKSk/9nUb3nPzIrtT8/dPEsvG +HEAJKxGMpZLu2UIDIpn2XY+9pS8CB03xVfuAfYrGOmVJS5rr6a592WfCB6XosHO1 +S2iKnMWgmo5C2WJaOq0AL5fzI6w1TAYN10KHFdNdimWJZ85WKk3iRXDUF4PJusWt +PLPHOgbvAMBHtJHu+09DlcoBRyWRvEzXHoBsgm76kvkLpkP23FhuWexfK6qJ+pZG +Ygaw2fGACGi9W7aASaiR5+PcD5WSPaOT2PuyRLkBDQQ+EiGbAQgA0Zt9F5Xhv1wf +zdvuXZeEaX/0uq3T/5IXcP0cjMzylWS3caRd8AB6S6+0NZDrAuO8jbzKuBdVb3so +zhq2g4uPkzCq9QkLwSJDURAstA/w6yV/h83DhEvmhE5MceY57Ev1g+cF3ec9Sshv +MQBPicXw6Umv8fyjmW6LIEXpNeXjz52hyjVk39EzEYFf8+ozC1Ifn5H1NWOnCiBc +5Q4Ud4W26xItyW1bBXWaMR520fotj6wSAX1Al2ynzvZ31RQUgBmm9aiwRKKXC4CW +6E6uDCBKL/Gpebc2Ty8fpJmCFtTByh0M7eeBfCDPTODPS39WjxwxbgIIHMDyXogW +D+Por5jYiQARAQABiQE8BBgBCAAmFiEEuVvWF1y2M5JENVuhYLgRfmEZztYFAj4S +IZsCGwwFCQWjmoAACgkQYLgRfmEZztbhGAf9GHVPYO7qsZkM5RnPRYAZLQGY9ygP +Wac2hX10UVOVFMgd8XVdoRMqj8LHyaf6UrdI6/3lNza2cnleskjxzaNbk9ENhyYs +/KSAyL6JbuZhEZ9Cx77RKRfbG+Z5EIrymgG0+HZuS8XZbJTze0kvQc90Avn78rNa +ta4VB7U6ID0BwbBq4ikeJFJ2si87ZUiVUbFihVCk39HyJMXdDeUJPELi6Z2Rkmov +0fwB1/QaSCvr41zQ1gCLpWC9x6tbas/4DsI0O2XG5W7XGIBt1NnaHMwgHr1Rw2JU +Df6q+bEEiXP4ZsnoeUYi7Q7LU55fn5zsLj8DF2eACSiN+f5emZkZT4wV2bkBDQQ+ +2SXpAQgArTgU5baUzto+s/aEp/z87F7jxeFXTUTgIglHUHvc5oAj59TgZf+6C4t2 +uY6DGST3u2XCRs7FK3iZjvzfEVyDYQd8V/Iew8oeHy2aGmWFbDuZa+8RWWGJ8wfv +V3pCm+86HIzfbqgJ3B3WnIhMqrBvGSlT0oYDVYIDZDbYYnIYNhF5xo/hH1WB9Ul6 +7Mx/KPUTqa2O1Pio7mFy0xFb12+5y5g3PruEG+mM3RLqZug3Z5M3E7gEG2HCnNjQ +CzjICJe9wwOzkoKJLogCEZ2iYhl2DcThxWtOu/EaU3b+iothX0HdO3azMc3v3tcX +t4q/fLUqmJ+P/HVlJtuPKSwnCHHVzwARAQABiQE8BBgBCAAmFiEEuVvWF1y2M5JE +NVuhYLgRfmEZztYFAj7ZJekCGwwFCQPCZwAACgkQYLgRfmEZztZv9wf/Q8HacUDx +AUJXfx/BfK/4zgogDfotz9yaFMmJYob2Mx/ny1Gteh551U5byuyoJW3gENg8Ql6v +s7uSfLAbk2qXYAdApbo1pcYmb5Rd2oDU3+1JONNHs096ZjJLD2WHxTnzWVLMDsPV +cUka+trg8Z1hqw6uGJmu6InggNjZ++1B6aa63Zdu7BudJB/3oWpjXyV7FqU4RtYa +sYN/lmGcir0704yfqRbVcP9fU5kYB17qiNJRtblDjImiiFHJ0PSxpmYU3lDIf1Rf +AC/HXoUetx9PKV1J8EKMQhV/GFa5FbmBCwXcIEj/Z9YEjSK2t9Pw0k0EuKhl7eHp +vlWlPNIJSTq1Bg== +=rf5l +-----END PGP PUBLIC KEY BLOCK----- diff --git a/tests/openpgp/key-selection/4.asc b/tests/openpgp/key-selection/4.asc new file mode 100644 index 0000000..6a0ab9b --- /dev/null +++ b/tests/openpgp/key-selection/4.asc @@ -0,0 +1,18 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- + +mQENBD/KdpABCAD2wlP1kYHldknjyGTnMOUq9r+3/fJR8n4qVt5TRRlDdyfK3ZxM +KWStsmkZuK9dMxo4VSOjVeiXdZlHeQU7RlzVPsCNiJ1Qc2HDgHFdmT7eUgOILA12 +36bueRUwVPGmrBEecs0TpNRQ5CVFbO7mC6cTLhT9nRMd+W+BSuuZ8Zm98ebaVh3I +ml3nPEVhs1UFmIop48RGCt45MZ2mYp77kuAmk8NBJjHy9J4H5UK19r0hla2WY4a3 +Z59hh7kFnNFCM/MhPxd6GwkeXzUF7WSnhzRVIkdv81u2AnIHbo1zD0BUp8Rf64Ns +3iFAeB1VuR6ZJpEypHiHUJtYPmr9okEmg8EDABEBAAG0I0FjZWpsbnUgQWNkaXBy +IDxhY2RpcHJAZXhhbXBsZS5vcmc+iQFUBBMBCAA+FiEE7Qh+nTOUNAc44gokSJKj +z49l66wFAj/KdpACGwMFCQWjmoAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQ +SJKjz49l66xZ7QgA7dBJsQP09LhkYDIu8cJzRU6tqa2Y8dx0iFaCU8nqD/0q6xJf +fs2euwMEPsHWmA1WwGwxZpE/NGEksMSQ8TZSQUwCsURxBIiGww5MBtIGeO3ZzreR +Dn0Qhivbiup8ZPtPfFFomoK7ZtWjtGjZ8I5zyYbjT0eEB7P348dkpOtReWDiqGVd +taMnVau4OTDqTRo6fvAiVb37zoaWETsPWtq/TymgkqO/LEhzClzG8xJgpSl98cQW +BoHz5GDVYeVxPEKAN4DdS7gt0KTUC9ZQUcZP+1wTzFohDd/CeUAl4kTeP0QSJVJ3 +QC/WnHk4Y56q8/nngIY6w/wID/R/Cp+plw6F5w== +=BA1F +-----END PGP PUBLIC KEY BLOCK----- commit 1ec07cbc209f247fd85704f5701564e31aa56d0b Author: Justus Winter Date: Thu Nov 3 14:37:15 2016 +0100 gpgscm,tests: Add new functions to the test environment. * tests/gpgscm/lib.scm (first, last, powerset): New functions. * tests/gpgscm/tests.scm (interactive-shell): New function. * tests/openpgp/Makefile.am (EXTRA_DIST): Add new file. * tests/openpgp/README: Document 'interactive-shell'. * tests/openpgp/shell.scm: New file. Signed-off-by: Justus Winter diff --git a/tests/gpgscm/lib.scm b/tests/gpgscm/lib.scm index e4ab483..316eacf 100644 --- a/tests/gpgscm/lib.scm +++ b/tests/gpgscm/lib.scm @@ -42,6 +42,24 @@ ((not (p (car l))) #f) (else (all p (cdr l))))) +;; Return the first element of a list. +(define first car) + +;; Return the last element of a list. +(define (last lst) + (if (null? (cdr lst)) + (car lst) + (last (cdr lst)))) + +;; Compute the powerset of a list. +(define (powerset set) + (if (null? set) + '(()) + (let ((rst (powerset (cdr set)))) + (append (map (lambda (x) (cons (car set) x)) + rst) + rst)))) + ;; Is PREFIX a prefix of S? (define (string-prefix? s prefix) (and (>= (string-length s) (string-length prefix)) diff --git a/tests/gpgscm/tests.scm b/tests/gpgscm/tests.scm index 8986a70..d89a96f 100644 --- a/tests/gpgscm/tests.scm +++ b/tests/gpgscm/tests.scm @@ -481,3 +481,11 @@ (catch (list tmpfiles source *error*) (apply function `(,(call-with-input-file source read-all) , at args))) (list tmpfiles source #f))) + +;; +;; Developing and debugging tests. +;; + +;; Spawn an os shell. +(define (interactive-shell) + (call-with-fds `(,(getenv "SHELL")) 0 1 2)) diff --git a/tests/openpgp/Makefile.am b/tests/openpgp/Makefile.am index bb9b2f4..5725e11 100644 --- a/tests/openpgp/Makefile.am +++ b/tests/openpgp/Makefile.am @@ -188,7 +188,7 @@ sample_msgs = samplemsgs/issue2419.asc EXTRA_DIST = defs.scm $(XTESTS) $(TEST_FILES) \ mkdemodirs signdemokey $(priv_keys) $(sample_keys) \ $(sample_msgs) ChangeLog-2011 run-tests.scm \ - setup.scm finish.scm + setup.scm finish.scm shell.scm CLEANFILES = prepared.stamp x y yy z out err $(data_files) \ plain-1 plain-2 plain-3 trustdb.gpg *.lock .\#lk* \ diff --git a/tests/openpgp/README b/tests/openpgp/README index 8845afd..75d818e 100644 --- a/tests/openpgp/README +++ b/tests/openpgp/README @@ -110,7 +110,10 @@ You can also get an interactive repl by dropping (interactive-repl (current-environment)) -anywhere you like. +anywhere you like. Or, if you want to examine the environment from an +operating system shell, use + + (interactive-shell) ** Interfacing with gpg diff --git a/tests/openpgp/shell.scm b/tests/openpgp/shell.scm new file mode 100644 index 0000000..dadafff --- /dev/null +++ b/tests/openpgp/shell.scm @@ -0,0 +1,32 @@ +#!/usr/bin/env gpgscm + +;; Copyright (C) 2016 g10 Code GmbH +;; +;; This file is part of GnuPG. +;; +;; GnuPG is free software; you can redistribute it and/or modify +;; it under the terms of the GNU General Public License as published by +;; the Free Software Foundation; either version 3 of the License, or +;; (at your option) any later version. +;; +;; GnuPG is distributed in the hope that it will be useful, +;; but WITHOUT ANY WARRANTY; without even the implied warranty of +;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +;; GNU General Public License for more details. +;; +;; You should have received a copy of the GNU General Public License +;; along with this program; if not, see . + +(load (with-path "defs.scm")) + +;; This is not a test, but can be used to inspect the test +;; environment. Simply execute +;; +;; make -Ctests/openpgp check XTESTS=shell.scm +;; +;; to run it. + +(echo "Note that gpg.conf includes 'batch'. If you want to use gpg") +(echo "interactively you should drop that.") +(echo) +(interactive-shell) ----------------------------------------------------------------------- Summary of changes: g10/getkey.c | 205 ++++++++++++++++++++++++++++ g10/keydb.h | 7 + g10/keylist.c | 2 +- g10/pkclist.c | 2 +- tests/gpgscm/lib.scm | 18 +++ tests/gpgscm/tests.scm | 8 ++ tests/openpgp/Makefile.am | 10 +- tests/openpgp/README | 5 +- tests/openpgp/key-selection.scm | 82 +++++++++++ tests/openpgp/key-selection/0.asc | 30 ++++ tests/openpgp/key-selection/1.asc | 30 ++++ tests/openpgp/key-selection/2.asc | 30 ++++ tests/openpgp/key-selection/3.asc | 43 ++++++ tests/openpgp/key-selection/4.asc | 18 +++ tests/openpgp/{4gb-packet.scm => shell.scm} | 17 ++- 15 files changed, 496 insertions(+), 11 deletions(-) create mode 100644 tests/openpgp/key-selection.scm create mode 100644 tests/openpgp/key-selection/0.asc create mode 100644 tests/openpgp/key-selection/1.asc create mode 100644 tests/openpgp/key-selection/2.asc create mode 100644 tests/openpgp/key-selection/3.asc create mode 100644 tests/openpgp/key-selection/4.asc copy tests/openpgp/{4gb-packet.scm => shell.scm} (71%) mode change 100755 => 100644 hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 17:35:12 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Thu, 03 Nov 2016 17:35:12 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-17-gaad94cb Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via aad94cb7c313d4501bed748f48830cbb93c67e20 (commit) from 34a4e8017be452e8ead6b9c2da84be1ec7929cae (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit aad94cb7c313d4501bed748f48830cbb93c67e20 Author: Werner Koch Date: Thu Nov 3 16:29:45 2016 +0100 core: Add gpgme_op_query_swdb and helper. * src/gpgme.h.in (gpgme_query_swdb_result_t): New. (gpgme_op_query_swdb): New. (gpgme_op_query_swdb_result): New. * src/libgpgme.vers, src/gpgme.def: Add the two new functions. * src/queryswdb.c: New. * src/Makefile.am (main_sources): Add new file. * src/context.h (OPDATA_QUERY_SWDB): New. * src/engine-backend.h (struct engine_ops): Add field 'query_swdb'. Adjust all initializer. * src/engine.c (_gpgme_engine_op_query_swdb): New. * src/engine-gpgconf.c (parse_swdb_line): New. (gpgconf_query_swdb): New. (_gpgme_engine_ops_gpgconf): Register that function. * src/util.h (GPG_ERR_TOO_OLD): Define for older libgpg-error. (GPG_ERR_ENGINE_TOO_OLD): Ditto. * tests/run-swdb.c: New. * tests/Makefile.am (noinst_PROGRAMS): Add new debug tool. Signed-off-by: Werner Koch diff --git a/NEWS b/NEWS index 0274f9c..e43aa30 100644 --- a/NEWS +++ b/NEWS @@ -9,6 +9,9 @@ Noteworthy changes in version 1.7.2 (unreleased) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ gpgme_set_sender NEW. gpgme_get_sender NEW. + gpgme_op_query_swdb NEW. + gpgme_op_query_swdb_result NEW. + gpgme_query_swdb_result_t NEW. qt: DN NEW. qt: DN::Attribute NEW. diff --git a/doc/gpgme.texi b/doc/gpgme.texi index 9fae9aa..a70418d 100644 --- a/doc/gpgme.texi +++ b/doc/gpgme.texi @@ -237,7 +237,9 @@ Encrypt Miscellaneous -* Running other Programs:: Running other Programs +* Running other Programs:: Running other Programs. +* Using the Assuan protocol:: Using the Assuan protocol. +* Checking for updates:: How to check for software updates. Run Control @@ -5561,6 +5563,7 @@ Here are some support functions which are sometimes useful. @menu * Running other Programs:: Running other Programs * Using the Assuan protocol:: Using the Assuan protocol +* Checking for updates:: How to check for software updates @end menu @@ -5692,6 +5695,142 @@ Synchronous variant. @end deftypefun + at node Checking for updates + at subsection How to check for software updates + +The GnuPG Project operates a server to query the current versions of +software packages related to GnuPG. GPGME can be used to +access this online database and check whether a new version of a +software package is available. + + at deftp {Data type} {gpgme_query_swdb_result_t} +This is a pointer to a structure used to store the result of a + at code{gpgme_op_query_swdb} operation. After success full call to that +function, you can retrieve the pointer to the result with + at code{gpgme_op_query_swdb_result}. The structure contains the +following member: + + at table @code + at item name +This is the name of the package. + + at item iversion +The currently installed version or an empty string. This value is +either a copy of the argument given to @code{gpgme_op_query_swdb} or +the version of the installed software as figured out by GPGME or GnuPG. + + at item created +This gives the date the file with the list of version numbers has +originally be created by the GnuPG project. + + at item retrieved +This gives the date the file was downloaded. + + at item warning +If this flag is set either an error has occurred or some of the +information in this structure are not properly set. For example if +the version number of the installed software could not be figured out, +the @code{update} flag may not reflect a required update status. + + at item update +If this flag is set an update of the software is available. + + at item urgent +If this flag is set an available update is important. + + at item noinfo +If this flag is set, no valid information could be retrieved. + + at item unknown +If this flag is set the given @code{name} is not known. + + at item tooold +If this flag is set the available information is not fresh enough. + + at item error +If this flag is set some other error has occured. + + at item version +The version string of the latest released version. + + at item reldate +The release date of the latest released version. + + at end table + at end deftp + + at deftypefun gpgme_error_t gpgme_op_query_swdb @ + (@w{gpgme_ctx_t @var{ctx}}, @ + @w{const char *@var{name}}, @ + @w{const char *@var{iversion}}, @ + @w{gpgme_data_t @var{reserved}}) + +Query the software version database for software package @var{name} +and check against the installed version given by @var{iversion}. If + at var{iversion} is given as @code{NULL} a check is only done if GPGME +can figure out the version by itself (for example when using +"gpgme" or "gnupg"). If @code{NULL} is used for @var{name} the +current gpgme version is checked. @var{reserved} must be set to 0. + + at end deftypefun + + at deftypefun gpgme_query_swdb_result_t gpgme_op_query_swdb_result @ + (@w{gpgme_ctx_t @var{ctx}}) + +The function @code{gpgme_op_query_swdb_result} returns a + at code{gpgme_query_swdb_result_t} pointer to a structure holding the +result of a @code{gpgme_op_query_swdb} operation. The pointer is only +valid if the last operation on the context was a sucessful call to + at code{gpgme_op_query_swdb}. If that call failed, the result might +be a @code{NULL} pointer. The returned pointer is only valid until +the next operation is started on the context @var{ctx}. + at end deftypefun + + at noindent +Here is an example on how to check whether GnuPG is current: + + at example +#include + +int +main (void) +@{ + gpg_error_t err; + gpgme_ctx_t ctx; + gpgme_query_swdb_result_t result; + + gpgme_check_version (NULL); + err = gpgme_new (&ctx); + if (err) + fprintf (stderr, "error creating context: %s\n", gpg_strerror (err)); + else + @{ + gpgme_set_protocol (ctx, GPGME_PROTOCOL_GPGCONF); + + err = gpgme_op_query_swdb (ctx, "gnupg", NULL, 0); + if (err) + fprintf (stderr, "error querying swdb: %s\n", gpg_strerror (err)); + else + @{ + result = gpgme_op_query_swdb_result (ctx); + if (!result) + fprintf (stderr, "error querying swdb\n"); + if (!result->warning && !result->update) + printf ("GnuPG version %s is current\n", + result->iversion); + else if (!result->warning && result->update) + printf ("GnuPG version %s can be updated to %s\n", + result->iversion, result->version); + else + fprintf (stderr, "error finding the update status\n"); + @} + gpgme_release (ctx); + @} + return 0; +@} + at end example + + @node Run Control @section Run Control @cindex run control diff --git a/src/Makefile.am b/src/Makefile.am index f166f3b..eddd192 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -91,7 +91,7 @@ main_sources = \ $(uiserver_components) \ engine-g13.c vfs-mount.c vfs-create.c \ engine-spawn.c \ - gpgconf.c \ + gpgconf.c queryswdb.c \ sema.h priv-io.h $(system_components) sys-util.h dirinfo.c \ debug.c debug.h gpgme.c version.c error.c diff --git a/src/context.h b/src/context.h index f6c1ad1..00e2e77 100644 --- a/src/context.h +++ b/src/context.h @@ -38,7 +38,8 @@ typedef enum OPDATA_DECRYPT, OPDATA_SIGN, OPDATA_ENCRYPT, OPDATA_PASSPHRASE, OPDATA_IMPORT, OPDATA_GENKEY, OPDATA_KEYLIST, OPDATA_EDIT, OPDATA_VERIFY, OPDATA_TRUSTLIST, OPDATA_ASSUAN, OPDATA_VFS_MOUNT, - OPDATA_PASSWD, OPDATA_EXPORT, OPDATA_KEYSIGN, OPDATA_TOFU_POLICY + OPDATA_PASSWD, OPDATA_EXPORT, OPDATA_KEYSIGN, OPDATA_TOFU_POLICY, + OPDATA_QUERY_SWDB } ctx_op_data_id_t; diff --git a/src/engine-assuan.c b/src/engine-assuan.c index 65924eb..4c7fe28 100644 --- a/src/engine-assuan.c +++ b/src/engine-assuan.c @@ -796,6 +796,7 @@ struct engine_ops _gpgme_engine_ops_assuan = llass_transact, /* opassuan_transact */ NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ llass_set_io_cbs, llass_io_event, llass_cancel, diff --git a/src/engine-backend.h b/src/engine-backend.h index e02c715..a8b1ac6 100644 --- a/src/engine-backend.h +++ b/src/engine-backend.h @@ -127,6 +127,10 @@ struct engine_ops gpgme_error_t (*conf_load) (void *engine, gpgme_conf_comp_t *conf_p); gpgme_error_t (*conf_save) (void *engine, gpgme_conf_comp_t conf); + gpgme_error_t (*query_swdb) (void *engine, + const char *name, const char *iversion, + gpgme_query_swdb_result_t result); + void (*set_io_cbs) (void *engine, gpgme_io_cbs_t io_cbs); void (*io_event) (void *engine, gpgme_event_io_t type, void *type_data); diff --git a/src/engine-g13.c b/src/engine-g13.c index d34db82..972c3a8 100644 --- a/src/engine-g13.c +++ b/src/engine-g13.c @@ -811,6 +811,7 @@ struct engine_ops _gpgme_engine_ops_g13 = g13_transact, NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ g13_set_io_cbs, g13_io_event, g13_cancel, diff --git a/src/engine-gpg.c b/src/engine-gpg.c index cb52dea..7725a00 100644 --- a/src/engine-gpg.c +++ b/src/engine-gpg.c @@ -2969,6 +2969,7 @@ struct engine_ops _gpgme_engine_ops_gpg = NULL, /* opassuan_transact */ NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ gpg_set_io_cbs, gpg_io_event, gpg_cancel, diff --git a/src/engine-gpgconf.c b/src/engine-gpgconf.c index 271a4dd..25c798e 100644 --- a/src/engine-gpgconf.c +++ b/src/engine-gpgconf.c @@ -47,6 +47,7 @@ #include "engine-backend.h" + struct engine_gpgconf { @@ -941,6 +942,217 @@ gpgconf_conf_save (void *engine, gpgme_conf_comp_t comp) } +/* Parse a line received from gpgconf --query-swdb. This function may + * modify LINE. The result is stored at RESUL. */ +static gpg_error_t +parse_swdb_line (char *line, gpgme_query_swdb_result_t result) +{ + char *field[9]; + int fields = 0; + gpg_err_code_t ec; + + while (line && fields < DIM (field)) + { + field[fields++] = line; + line = strchr (line, ':'); + if (line) + *line++ = 0; + } + /* We require that all fields exists - gpgme emits all these fields + * even on error. They might be empty, though. */ + if (fields < 9) + return gpg_error (GPG_ERR_INV_ENGINE); + + free (result->name); + result->name = strdup (field[0]); + if (!result->name) + return gpg_error_from_syserror (); + + free (result->iversion); + result->iversion = strdup (field[1]); + if (!result->iversion) + return gpg_error_from_syserror (); + + result->urgent = (strtol (field[3], NULL, 10) > 0); + + ec = gpg_err_code (strtoul (field[4], NULL, 10)); + + result->created = _gpgme_parse_timestamp (field[5], NULL); + result->retrieved= _gpgme_parse_timestamp (field[6], NULL); + + free (result->version); + result->version = strdup (field[7]); + if (!result->version) + return gpg_error_from_syserror (); + + result->reldate = _gpgme_parse_timestamp (field[8], NULL); + + /* Set other flags. */ + result->warning = !!ec; + result->update = 0; + result->noinfo = 0; + result->unknown = 0; + result->tooold = 0; + result->error = 0; + + switch (*field[2]) + { + case '-': result->warning = 1; break; + case '?': result->unknown = result->warning = 1; break; + case 'u': result->update = 1; break; + case 'c': break; + case 'n': break; + default: + result->warning = 1; + if (!ec) + ec = GPG_ERR_INV_ENGINE; + break; + } + + if (ec == GPG_ERR_TOO_OLD) + result->tooold = 1; + else if (ec == GPG_ERR_ENOENT) + result->noinfo = 1; + else if (ec) + result->error = 1; + + + return 0; +} + + +static gpgme_error_t +gpgconf_query_swdb (void *engine, + const char *name, const char *iversion, + gpgme_query_swdb_result_t result) +{ + struct engine_gpgconf *gpgconf = engine; + gpgme_error_t err = 0; + char *linebuf; + size_t linebufsize; + int linelen; + char *argv[7]; + int argc = 0; + int rp[2]; + struct spawn_fd_item_s cfd[] = { {-1, 1 /* STDOUT_FILENO */, -1, 0}, + {-1, -1} }; + int status; + int nread; + char *mark = NULL; + + if (!have_gpgconf_version (gpgconf, "2.1.16")) + return gpg_error (GPG_ERR_ENGINE_TOO_OLD); + + /* _gpgme_engine_new guarantees that this is not NULL. */ + argv[argc++] = gpgconf->file_name; + + if (gpgconf->home_dir) + { + argv[argc++] = (char*)"--homedir"; + argv[argc++] = gpgconf->home_dir; + } + + argv[argc++] = (char*)"--query-swdb"; + argv[argc++] = (char*)name; + argv[argc++] = (char*)iversion; + argv[argc] = NULL; + assert (argc < DIM (argv)); + + if (_gpgme_io_pipe (rp, 1) < 0) + return gpg_error_from_syserror (); + + cfd[0].fd = rp[1]; + + status = _gpgme_io_spawn (gpgconf->file_name, argv, + IOSPAWN_FLAG_DETACHED, cfd, NULL, NULL, NULL); + if (status < 0) + { + _gpgme_io_close (rp[0]); + _gpgme_io_close (rp[1]); + return gpg_error_from_syserror (); + } + + linebufsize = 2048; /* Same as used by gpgconf. */ + linebuf = malloc (linebufsize); + if (!linebuf) + { + err = gpg_error_from_syserror (); + goto leave; + } + linelen = 0; + + while ((nread = _gpgme_io_read (rp[0], linebuf + linelen, + linebufsize - linelen - 1))) + { + char *line; + const char *lastmark = NULL; + size_t nused; + + if (nread < 0) + { + err = gpg_error_from_syserror (); + goto leave; + } + + linelen += nread; + linebuf[linelen] = '\0'; + + for (line=linebuf; (mark = strchr (line, '\n')); line = mark+1 ) + { + lastmark = mark; + if (mark > line && mark[-1] == '\r') + mark[-1] = '\0'; + else + mark[0] = '\0'; + + /* Got a full line. Due to the CR removal code (which + occurs only on Windows) we might be one-off and thus + would see empty lines. */ + if (*line) + { + err = parse_swdb_line (line, result); + goto leave; /* Ready. */ + } + else /* empty line. */ + err = 0; + } + + nused = lastmark? (lastmark + 1 - linebuf) : 0; + memmove (linebuf, linebuf + nused, linelen - nused); + linelen -= nused; + + if (!(linelen < linebufsize - 1)) + { + char *newlinebuf; + + if (linelen < 8 * 1024 - 1) + linebufsize = 8 * 1024; + else if (linelen < 64 * 1024 - 1) + linebufsize = 64 * 1024; + else + { + /* We reached our limit - give up. */ + err = gpg_error (GPG_ERR_LINE_TOO_LONG); + goto leave; + } + + newlinebuf = realloc (linebuf, linebufsize); + if (!newlinebuf) + { + err = gpg_error_from_syserror (); + goto leave; + } + linebuf = newlinebuf; + } + } + + leave: + free (linebuf); + _gpgme_io_close (rp[0]); + return err; +} + + static void gpgconf_set_io_cbs (void *engine, gpgme_io_cbs_t io_cbs) { @@ -998,6 +1210,7 @@ struct engine_ops _gpgme_engine_ops_gpgconf = NULL, /* opassuan_transact */ gpgconf_conf_load, gpgconf_conf_save, + gpgconf_query_swdb, gpgconf_set_io_cbs, NULL, /* io_event */ NULL, /* cancel */ diff --git a/src/engine-gpgsm.c b/src/engine-gpgsm.c index 0ce4a6d..a815cf0 100644 --- a/src/engine-gpgsm.c +++ b/src/engine-gpgsm.c @@ -2101,6 +2101,7 @@ struct engine_ops _gpgme_engine_ops_gpgsm = NULL, /* opassuan_transact */ NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ gpgsm_set_io_cbs, gpgsm_io_event, gpgsm_cancel, diff --git a/src/engine-spawn.c b/src/engine-spawn.c index df90cb2..d2c7dd6 100644 --- a/src/engine-spawn.c +++ b/src/engine-spawn.c @@ -469,6 +469,7 @@ struct engine_ops _gpgme_engine_ops_spawn = NULL, /* opassuan_transact */ NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ engspawn_set_io_cbs, engspawn_io_event, /* io_event */ engspawn_cancel, /* cancel */ diff --git a/src/engine-uiserver.c b/src/engine-uiserver.c index 76fa4d7..47b7dc3 100644 --- a/src/engine-uiserver.c +++ b/src/engine-uiserver.c @@ -1393,6 +1393,7 @@ struct engine_ops _gpgme_engine_ops_uiserver = NULL, /* opassuan_transact */ NULL, /* conf_load */ NULL, /* conf_save */ + NULL, /* query_swdb */ uiserver_set_io_cbs, uiserver_io_event, uiserver_cancel, diff --git a/src/engine.c b/src/engine.c index f5dfe51..4e513b6 100644 --- a/src/engine.c +++ b/src/engine.c @@ -980,6 +980,21 @@ _gpgme_engine_op_conf_save (engine_t engine, gpgme_conf_comp_t conf) } +gpgme_error_t +_gpgme_engine_op_query_swdb (engine_t engine, + const char *name, const char *iversion, + gpgme_query_swdb_result_t result) +{ + if (!engine) + return gpg_error (GPG_ERR_INV_VALUE); + + if (!engine->ops->query_swdb) + return gpg_error (GPG_ERR_NOT_IMPLEMENTED); + + return (*engine->ops->query_swdb) (engine->engine, name, iversion, result); +} + + void _gpgme_engine_set_io_cbs (engine_t engine, gpgme_io_cbs_t io_cbs) { diff --git a/src/engine.h b/src/engine.h index 2999ab6..15b0b5d 100644 --- a/src/engine.h +++ b/src/engine.h @@ -173,6 +173,12 @@ gpgme_error_t _gpgme_engine_op_conf_load (engine_t engine, gpgme_error_t _gpgme_engine_op_conf_save (engine_t engine, gpgme_conf_comp_t conf); +gpgme_error_t _gpgme_engine_op_query_swdb (engine_t engine, + const char *name, + const char *iversion, + gpgme_query_swdb_result_t result); + + void _gpgme_engine_set_io_cbs (engine_t engine, gpgme_io_cbs_t io_cbs); void _gpgme_engine_io_event (engine_t engine, diff --git a/src/gpgconf.c b/src/gpgconf.c index 6591452..b1b84a6 100644 --- a/src/gpgconf.c +++ b/src/gpgconf.c @@ -65,7 +65,7 @@ gpgme_conf_release (gpgme_conf_comp_t conf) } -/* Public function to release load a configuration list. No +/* Public function to load a configuration list. No asynchronous interface for now. */ gpgme_error_t gpgme_op_conf_load (gpgme_ctx_t ctx, gpgme_conf_comp_t *conf_p) @@ -108,5 +108,3 @@ gpgme_op_conf_save (gpgme_ctx_t ctx, gpgme_conf_comp_t comp) ctx->protocol = proto; return err; } - - diff --git a/src/gpgme.def b/src/gpgme.def index d633df5..2f6837d 100644 --- a/src/gpgme.def +++ b/src/gpgme.def @@ -249,5 +249,8 @@ EXPORTS gpgme_set_sender @187 gpgme_get_sender @188 + gpgme_op_query_swdb @189 + gpgme_op_query_swdb_result @190 + ; END diff --git a/src/gpgme.h.in b/src/gpgme.h.in index 94ef51d..4f470a0 100644 --- a/src/gpgme.h.in +++ b/src/gpgme.h.in @@ -2418,6 +2418,67 @@ gpgme_error_t gpgme_op_conf_load (gpgme_ctx_t ctx, gpgme_conf_comp_t *conf_p); gpgme_error_t gpgme_op_conf_save (gpgme_ctx_t ctx, gpgme_conf_comp_t comp); +/* Information about software versions. */ +typedef struct _gpgme_op_query_swdb_result +{ + /* RFU */ + struct _gpgme_op_query_swdb_result *next; + + /* The name of the package (e.g. "gpgme", "gnupg") */ + char *name; + + /* The version number of the installed version. */ + char *iversion; + + /* The time the online info was created. */ + unsigned long created; + + /* The time the online info was retrieved. */ + unsigned long retrieved; + + /* This bit is set if an error occured or some of the information + * in this structure may not be set. */ + unsigned int warning : 1; + + /* An update is available. */ + unsigned int update : 1; + + /* The update is important. */ + unsigned int urgent : 1; + + /* No information at all available. */ + unsigned int noinfo : 1; + + /* The package name is not known. */ + unsigned int unknown : 1; + + /* The information here is too old. */ + unsigned int tooold : 1; + + /* Other error. */ + unsigned int error : 1; + + unsigned int _reserved : 25; + + /* The version number of the latest released version. */ + char *version; + + /* The release date of that version. */ + unsigned long reldate; + +} *gpgme_query_swdb_result_t; + + +/* Run the gpgconf --query-swdb command. */ +gpgme_error_t gpgme_op_query_swdb (gpgme_ctx_t ctx, + const char *name, const char *iversion, + unsigned int reserved); + +/* Return the result from the last query_swdb operation. */ +gpgme_query_swdb_result_t gpgme_op_query_swdb_result (gpgme_ctx_t ctx); + + + /* * Various functions. diff --git a/src/libgpgme.vers b/src/libgpgme.vers index 42f00d5..5457daa 100644 --- a/src/libgpgme.vers +++ b/src/libgpgme.vers @@ -122,6 +122,9 @@ GPGME_1.1 { gpgme_set_sender; gpgme_get_sender; + + gpgme_op_query_swdb; + gpgme_op_query_swdb_result; }; diff --git a/src/queryswdb.c b/src/queryswdb.c new file mode 100644 index 0000000..ce50b1e --- /dev/null +++ b/src/queryswdb.c @@ -0,0 +1,121 @@ +/* queryswdb.c - Access to the SWDB file + * Copyright (C) 2016 g10 Code GmbH + * + * This file is part of GPGME. + * + * GPGME is free software; you can redistribute it and/or modify it + * under the terms of the GNU Lesser General Public License as + * published by the Free Software Foundation; either version 2.1 of + * the License, or (at your option) any later version. + * + * GPGME is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public + * License along with this program; if not, see . + */ + +#if HAVE_CONFIG_H +#include +#endif +#include +#include + +#include "gpgme.h" +#include "debug.h" +#include "context.h" +#include "ops.h" + + +typedef struct +{ + struct _gpgme_op_query_swdb_result result; + +} *op_data_t; + + + +static void +release_op_data (void *hook) +{ + op_data_t opd = (op_data_t) hook; + gpgme_query_swdb_result_t result = &opd->result; + + assert (!result->next); + free (result->name); + free (result->iversion); + free (result->version); +} + + +gpgme_query_swdb_result_t +gpgme_op_query_swdb_result (gpgme_ctx_t ctx) +{ + void *hook; + op_data_t opd; + gpgme_error_t err; + + TRACE_BEG (DEBUG_CTX, "gpgme_op_query_swdb_result", ctx); + + err = _gpgme_op_data_lookup (ctx, OPDATA_QUERY_SWDB, &hook, -1, NULL); + opd = hook; + + if (err || !opd) + { + TRACE_SUC0 ("result=(null)"); + return NULL; + } + + TRACE_SUC1 ("result=%p", &opd->result); + return &opd->result; +} + + + +/* Query the swdb for software package NAME and check against the + * installed version given by IVERSION. If IVERSION is NULL a check + * is only done if GPGME can figure out the version by itself + * (e.g. for "gpgme" or "gnupg"). RESERVED should be 0. + * + * Note that we only implemented the synchronous variant of this + * function but the API is prepared for an asynchronous variant. + */ +gpgme_error_t +gpgme_op_query_swdb (gpgme_ctx_t ctx, const char *name, const char *iversion, + unsigned int reserved) +{ + gpgme_error_t err; + void *hook; + op_data_t opd; + + TRACE_BEG2 (DEBUG_CTX, "gpgme_op_query_swdb", ctx, + "name=%s, iversion=%a", name, iversion); + + if (!ctx || reserved) + return TRACE_ERR (gpg_error (GPG_ERR_INV_VALUE)); + + if (ctx->protocol != GPGME_PROTOCOL_GPGCONF) + return TRACE_ERR (gpg_error (GPG_ERR_UNSUPPORTED_PROTOCOL)); + + if (!name) + name = "gpgme"; + + if (!iversion && !strcmp (name, "gpgme")) + iversion = VERSION; + + err = _gpgme_op_reset (ctx, 1); + if (err) + return err; + + err = _gpgme_op_data_lookup (ctx, OPDATA_QUERY_SWDB, &hook, + sizeof (*opd), release_op_data); + opd = hook; + if (err) + return TRACE_ERR (err); + + err = _gpgme_engine_op_query_swdb (ctx->engine, name, iversion, + &opd->result); + return TRACE_ERR (err); +} diff --git a/src/util.h b/src/util.h index 1474b41..a1be6e7 100644 --- a/src/util.h +++ b/src/util.h @@ -49,6 +49,11 @@ # define GPG_ERR_FALSE 256 #endif +#if GPG_ERROR_VERSION_NUMBER < 0x011900 /* 1.25 */ +# define GPG_ERR_ENGINE_TOO_OLD 300 +# define GPG_ERR_TOO_OLD 308 +#endif + #ifndef GPGRT_ATTR_SENTINEL # define GPGRT_ATTR_SENTINEL(a) /* */ #endif diff --git a/tests/Makefile.am b/tests/Makefile.am index c71914f..e8c7c56 100644 --- a/tests/Makefile.am +++ b/tests/Makefile.am @@ -33,7 +33,7 @@ noinst_HEADERS = run-support.h noinst_PROGRAMS = $(TESTS) run-keylist run-export run-import run-sign \ run-verify run-encrypt run-identify run-decrypt run-genkey \ - run-keysign run-tofu + run-keysign run-tofu run-swdb if RUN_GPG_TESTS diff --git a/tests/run-swdb.c b/tests/run-swdb.c new file mode 100644 index 0000000..91ed22f --- /dev/null +++ b/tests/run-swdb.c @@ -0,0 +1,151 @@ +/* run-swdb.c - Test tool for SWDB function + * Copyright (C) 2016 g10 Code GmbH + * + * This file is part of GPGME. + * + * GPGME is free software; you can redistribute it and/or modify it + * under the terms of the GNU Lesser General Public License as + * published by the Free Software Foundation; either version 2.1 of + * the License, or (at your option) any later version. + * + * GPGME is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public + * License along with this program; if not, see . + */ + +/* We need to include config.h so that we know whether we are building + with large file system (LFS) support. */ +#ifdef HAVE_CONFIG_H +#include +#endif + +#include +#include +#include +#include + +#include + +#define PGM "run-swdb" + +#include "run-support.h" + + +static int verbose; + + +static const char * +isotimestr (unsigned long value) +{ + time_t t; + static char buffer[25+5]; + struct tm *tp; + + if (!value) + return "none"; + t = value; + + tp = gmtime (&t); + snprintf (buffer, sizeof buffer, "%04d-%02d-%02d %02d:%02d:%02d", + 1900+tp->tm_year, tp->tm_mon+1, tp->tm_mday, + tp->tm_hour, tp->tm_min, tp->tm_sec); + return buffer; +} + + +static int +show_usage (int ex) +{ + fputs ("usage: " PGM " [options] NAME [VERSION]\n\n" + "Options:\n" + " --verbose run in verbose mode\n" + " --status print status lines from the backend\n" + , stderr); + exit (ex); +} + + +int +main (int argc, char **argv) +{ + int last_argc = -1; + gpgme_error_t err; + gpgme_ctx_t ctx; + gpgme_protocol_t protocol = GPGME_PROTOCOL_GPGCONF; + const char *name; + const char *iversion; + gpgme_query_swdb_result_t result; + + if (argc) + { argc--; argv++; } + + while (argc && last_argc != argc ) + { + last_argc = argc; + if (!strcmp (*argv, "--")) + { + argc--; argv++; + break; + } + else if (!strcmp (*argv, "--help")) + show_usage (0); + else if (!strcmp (*argv, "--verbose")) + { + verbose = 1; + argc--; argv++; + } + else if (!strncmp (*argv, "--", 2)) + show_usage (1); + } + + if (argc < 1 || argc > 2) + show_usage (1); + name = argv[0]; + iversion = argc > 1? argv[1] : NULL; + + init_gpgme (protocol); + + err = gpgme_new (&ctx); + fail_if_err (err); + gpgme_set_protocol (ctx, protocol); + + err = gpgme_op_query_swdb (ctx, name, iversion, 0); + if (err) + { + fprintf (stderr, PGM ": error querying swdb: %s\n", gpg_strerror (err)); + exit (1); + } + + result = gpgme_op_query_swdb_result (ctx); + if (!result) + { + fprintf (stderr, PGM ": error querying swdb: %s\n", "no result"); + exit (1); + } + + printf ("package ...: %s\n" + "iversion ..: %s\n" + "version ...: %s\n", + nonnull (result->name), + nonnull (result->iversion), + nonnull (result->version)); + printf ("reldate ...: %s\n", isotimestr (result->reldate)); + printf ("created ...: %s\n", isotimestr (result->created)); + printf ("retrieved .: %s\n", isotimestr (result->retrieved)); + printf ("flags .....:%s%s%s%s%s%s%s\n", + result->warning? " warning" : "", + result->update? " update" : "", + result->urgent? " urgent" : "", + result->unknown? " unknown" : "", + result->tooold? " tooold" : "", + result->noinfo? " noinfo" : "", + result->error? " error" : "" ); + + + gpgme_release (ctx); + return 0; +} ----------------------------------------------------------------------- Summary of changes: NEWS | 3 + doc/gpgme.texi | 141 ++++++++++++++++++++++++++++++++- src/Makefile.am | 2 +- src/context.h | 3 +- src/engine-assuan.c | 1 + src/engine-backend.h | 4 + src/engine-g13.c | 1 + src/engine-gpg.c | 1 + src/engine-gpgconf.c | 213 ++++++++++++++++++++++++++++++++++++++++++++++++++ src/engine-gpgsm.c | 1 + src/engine-spawn.c | 1 + src/engine-uiserver.c | 1 + src/engine.c | 15 ++++ src/engine.h | 6 ++ src/gpgconf.c | 4 +- src/gpgme.def | 3 + src/gpgme.h.in | 61 +++++++++++++++ src/libgpgme.vers | 3 + src/queryswdb.c | 121 ++++++++++++++++++++++++++++ src/util.h | 5 ++ tests/Makefile.am | 2 +- tests/run-swdb.c | 151 +++++++++++++++++++++++++++++++++++ 22 files changed, 736 insertions(+), 7 deletions(-) create mode 100644 src/queryswdb.c create mode 100644 tests/run-swdb.c hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 19:01:54 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Thu, 03 Nov 2016 19:01:54 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-35-g7b0a822 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via 7b0a822460eb6f4bf28f85f38c64a86bb8f80d3d (commit) via b0f17edadeefaafd2707a384b77e45a0bf573c3a (commit) from a383ddeb76463ddcf5aca2fb38847ea3158c42a7 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 7b0a822460eb6f4bf28f85f38c64a86bb8f80d3d Author: Daniel Kahn Gillmor Date: Thu Nov 3 12:59:18 2016 -0400 Convert to UTF-8. Signed-off-by: Daniel Kahn Gillmor diff --git a/AUTHORS b/AUTHORS index 695d0ba..d74004a 100644 --- a/AUTHORS +++ b/AUTHORS @@ -5,7 +5,7 @@ License: GPLv2+ Robert Bihlmeyer Werner Koch, g10 Code GmbH -Steffen Hansen, Klar?lvdalens Datakonsult AB +Steffen Hansen, Klar??lvdalens Datakonsult AB Marcus Brinkmann, g10 Code GmbH Timo Schulz, g10 Code GmbH Neal Walfied, g10 Code GmbH diff --git a/doc/pinentry.texi b/doc/pinentry.texi index e9da4ee..feef4f0 100644 --- a/doc/pinentry.texi +++ b/doc/pinentry.texi @@ -64,7 +64,7 @@ This is edition @value{EDITION}, last updated @value{UPDATED}, of @cite{The `PINEntry' Manual}, for version @value{VERSION}. @sp 1 Published by g10 Code GmbH@* -H?ttenstr. 61@* +H??ttenstr. 61@* 40699 Erkrath, Germany @sp 1 @copyrightnotice{} diff --git a/qt/Makefile.am b/qt/Makefile.am index 96d0880..6659007 100644 --- a/qt/Makefile.am +++ b/qt/Makefile.am @@ -1,5 +1,5 @@ # Makefile.am -# Copyright (C) 2002 g10 Code GmbH, Klar?lvdalens Datakonsult AB +# Copyright (C) 2002 g10 Code GmbH, Klar??lvdalens Datakonsult AB # Copyright (C) 2008, 2015 g10 Code GmbH # # This file is part of PINENTRY. commit b0f17edadeefaafd2707a384b77e45a0bf573c3a Author: Daniel Kahn Gillmor Date: Thu Nov 3 12:59:17 2016 -0400 Fix spelling errors. -- Signed-off-by: Daniel Kahn Gillmor Note that this also updates \texinfoversion to 2016-11-03.12 Signed-off-by: Werner Koch diff --git a/ChangeLog-old b/ChangeLog-old index cad8c1a..02a8010 100644 --- a/ChangeLog-old +++ b/ChangeLog-old @@ -999,7 +999,7 @@ * configure.ac: Version 0.6.9 * qt/Makefile.am: Added moc files to DISTCLEANFILES - * qt/pinentrycontroller.cpp: Dont spew assuan debug stuff out on stderr. + * qt/pinentrycontroller.cpp: Don't spew assuan debug stuff out on stderr. 2003-03-26 Steffen Hansen @@ -1619,7 +1619,7 @@ 2000-04-23 Robert Bihlmeyer * secret-query.c (constrain_size): Lower window max_width to - accomodate bugs in GTK and Scwm. + accommodate bugs in GTK and Scwm. * agent.c (main): Set x_enabled if X appears to be available. Use it to selectively make FLAGS_INSURE supported. @@ -1861,7 +1861,7 @@ * agent.c (main): Moved secmem_init() after the fork, since that seemingly munlock's all pages. - Drop priviledges just in case somebody wants to install this + Drop privileges just in case somebody wants to install this suid-root. Flush stdout. @@ -1953,7 +1953,7 @@ * Thoughts: Removed discussion of other names. Added indication of which things already work. - * agent.c (make_tmpdir): Removed occurance of "gpg-agent." + * agent.c (make_tmpdir): Removed occurrence of "gpg-agent." * README: First proper version. diff --git a/NEWS b/NEWS index 4278865..7a7ca76 100644 --- a/NEWS +++ b/NEWS @@ -217,7 +217,7 @@ Noteworthy changes in version 0.7.3 (2007-07-06) * New option --colors=FG,BG,SO to set the colors for the curses pinentry. - * Pinentry-w32 does now basicaly work. It needs some finishing + * Pinentry-w32 does now basically work. It needs some finishing though. For example the buttons should resize themself according to the size of the text. diff --git a/build-aux/texinfo.tex b/build-aux/texinfo.tex index a181898..5552e50 100644 --- a/build-aux/texinfo.tex +++ b/build-aux/texinfo.tex @@ -3,7 +3,7 @@ % Load plain if necessary, i.e., if running under initex. \expandafter\ifx\csname fmtname\endcsname\relax\input plain\fi % -\def\texinfoversion{2007-05-03.09} +\def\texinfoversion{2016-11-03.12} % % Copyright (C) 1985, 1986, 1988, 1990, 1991, 1992, 1993, 1994, 1995, % 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, @@ -415,7 +415,7 @@ \def\argremovecomment#1\comment#2\ArgTerm{\argremovec #1\c\ArgTerm} \def\argremovec#1\c#2\ArgTerm{\argcheckspaces#1\^^M\ArgTerm} -% Each occurence of `\^^M' or `\^^M' is replaced by a single space. +% Each occurrence of `\^^M' or `\^^M' is replaced by a single space. % % \argremovec might leave us with trailing space, e.g., % @end itemize @c foo @@ -440,7 +440,7 @@ % to get _exactly_ the rest of the line, we had to prevent such situation. % We prepended an \empty token at the very beginning and we expand it now, % just before passing the control to \argtorun. -% (Similarily, we have to think about #3 of \argcheckspacesY above: it is +% (Similarly, we have to think about #3 of \argcheckspacesY above: it is % either the null string, or it ends with \^^M---thus there is no danger % that a pair of braces would be stripped. % @@ -497,7 +497,7 @@ % used to check whether the current environment is the one expected. % % Non-false conditionals (@iftex, @ifset) don't fit into this, so they -% are not treated as enviroments; they don't open a group. (The +% are not treated as environments; they don't open a group. (The % implementation of @end takes care not to call \endgroup in this % special case.) @@ -4598,7 +4598,7 @@ end \chardef\maxseclevel = 3 % % A numbered section within an unnumbered changes to unnumbered too. -% To achive this, remember the "biggest" unnum. sec. we are currently in: +% To achieve this, remember the "biggest" unnum. sec. we are currently in: \chardef\unmlevel = \maxseclevel % % Trace whether the current chapter is an appendix or not: @@ -7034,7 +7034,7 @@ end % In case a @footnote appears in a vbox, save the footnote text and create % the real \insert just after the vbox finished. Otherwise, the insertion % would be lost. -% Similarily, if a @footnote appears inside an alignment, save the footnote +% Similarly, if a @footnote appears inside an alignment, save the footnote % text to a box and make the \insert when a row of the table is finished. % And the same can be done for other insert classes. --kasal, 16nov03. diff --git a/doc/pinentry.texi b/doc/pinentry.texi index dcff886..e9da4ee 100644 --- a/doc/pinentry.texi +++ b/doc/pinentry.texi @@ -711,14 +711,14 @@ The actual return code is dependent on whether the dialog is in message mode or in passphrase mode. If the dialog is in message mode and the user pressed ok, return 1. -Otherwise, return 0. If an error occured, indicate this by setting it +Otherwise, return 0. If an error occurred, indicate this by setting it in @code{specific_err} or setting @code{locale_err} to @code{1} (for locale specific errors). If the dialog was canceled, then the handler should set the @code{canceled} variable to @code{1}. If the not ok button was pressed, don't do anything else. If the dialog is in passphrase mode return @code{1} if the user -entered a password and pressed ok. If an error occured, return +entered a password and pressed ok. If an error occurred, return @code{-1} and set @code{specific_err} or @code{locale_err}, as above. If the user canceled the dialog box, return @code{-1}. diff --git a/doc/texinfo.tex b/doc/texinfo.tex index 5063065..919d85d 100644 --- a/doc/texinfo.tex +++ b/doc/texinfo.tex @@ -3,7 +3,7 @@ % Load plain if necessary, i.e., if running under initex. \expandafter\ifx\csname fmtname\endcsname\relax\input plain\fi % -\def\texinfoversion{2007-05-03.09} +\def\texinfoversion{2016-11-03.12} % % Copyright (C) 1985, 1986, 1988, 1990, 1991, 1992, 1993, 1994, 1995, % 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, @@ -415,7 +415,7 @@ \def\argremovecomment#1\comment#2\ArgTerm{\argremovec #1\c\ArgTerm} \def\argremovec#1\c#2\ArgTerm{\argcheckspaces#1\^^M\ArgTerm} -% Each occurence of `\^^M' or `\^^M' is replaced by a single space. +% Each occurrence of `\^^M' or `\^^M' is replaced by a single space. % % \argremovec might leave us with trailing space, e.g., % @end itemize @c foo @@ -440,7 +440,7 @@ % to get _exactly_ the rest of the line, we had to prevent such situation. % We prepended an \empty token at the very beginning and we expand it now, % just before passing the control to \argtorun. -% (Similarily, we have to think about #3 of \argcheckspacesY above: it is +% (Similarly, we have to think about #3 of \argcheckspacesY above: it is % either the null string, or it ends with \^^M---thus there is no danger % that a pair of braces would be stripped. % @@ -497,7 +497,7 @@ % used to check whether the current environment is the one expected. % % Non-false conditionals (@iftex, @ifset) don't fit into this, so they -% are not treated as enviroments; they don't open a group. (The +% are not treated as environments; they don't open a group. (The % implementation of @end takes care not to call \endgroup in this % special case.) @@ -4598,7 +4598,7 @@ end \chardef\maxseclevel = 3 % % A numbered section within an unnumbered changes to unnumbered too. -% To achive this, remember the "biggest" unnum. sec. we are currently in: +% To achieve this, remember the "biggest" unnum. sec. we are currently in: \chardef\unmlevel = \maxseclevel % % Trace whether the current chapter is an appendix or not: @@ -7034,7 +7034,7 @@ end % In case a @footnote appears in a vbox, save the footnote text and create % the real \insert just after the vbox finished. Otherwise, the insertion % would be lost. -% Similarily, if a @footnote appears inside an alignment, save the footnote +% Similarly, if a @footnote appears inside an alignment, save the footnote % text to a box and make the \insert when a row of the table is finished. % And the same can be done for other insert classes. --kasal, 16nov03. diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index d6d7d16..90ff60f 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -104,7 +104,7 @@ create_prompt (pinentry_t pe, int confirm) g_free (msg); } - /* An error occured during the last prompt. */ + /* An error occurred during the last prompt. */ if (pe->error) { msg = pinentry_utf8_validate (pe->error); diff --git a/m4/glib.m4 b/m4/glib.m4 index b3c632b..7338acb 100644 --- a/m4/glib.m4 +++ b/m4/glib.m4 @@ -95,7 +95,7 @@ main () glib_major_version, glib_minor_version, glib_micro_version); printf ("*** was found! If glib-config was correct, then it is best\n"); printf ("*** to remove the old version of GLIB. You may also be able to fix the error\n"); - printf("*** by modifying your LD_LIBRARY_PATH enviroment variable, or by editing\n"); + printf("*** by modifying your LD_LIBRARY_PATH environment variable, or by editing\n"); printf("*** /etc/ld.so.conf. Make sure you have run ldconfig if that is\n"); printf("*** required on your system.\n"); printf("*** If glib-config was wrong, set the environment variable GLIB_CONFIG\n"); @@ -132,7 +132,7 @@ main () printf("*** being found. The easiest way to fix this is to remove the old version\n"); printf("*** of GLIB, but you can also set the GLIB_CONFIG environment to point to the\n"); printf("*** correct copy of glib-config. (In this case, you will have to\n"); - printf("*** modify your LD_LIBRARY_PATH enviroment variable, or edit /etc/ld.so.conf\n"); + printf("*** modify your LD_LIBRARY_PATH environment variable, or edit /etc/ld.so.conf\n"); printf("*** so that the correct libraries are found at run-time))\n"); } } @@ -179,7 +179,7 @@ main () echo "***" echo "*** rpm --erase --nodeps gtk gtk-devel" ], [ echo "*** The test program failed to compile or link. See the file config.log for the" - echo "*** exact error that occured. This usually means GLIB was incorrectly installed" + echo "*** exact error that occurred. This usually means GLIB was incorrectly installed" echo "*** or that you have moved GLIB since it was installed. In the latter case, you" echo "*** may want to edit the glib-config script: $GLIB_CONFIG" ]) CFLAGS="$ac_save_CFLAGS" diff --git a/m4/gtk.m4 b/m4/gtk.m4 index f2dd472..6f6a422 100644 --- a/m4/gtk.m4 +++ b/m4/gtk.m4 @@ -91,7 +91,7 @@ main () gtk_major_version, gtk_minor_version, gtk_micro_version); printf ("*** was found! If gtk-config was correct, then it is best\n"); printf ("*** to remove the old version of GTK+. You may also be able to fix the error\n"); - printf("*** by modifying your LD_LIBRARY_PATH enviroment variable, or by editing\n"); + printf("*** by modifying your LD_LIBRARY_PATH environment variable, or by editing\n"); printf("*** /etc/ld.so.conf. Make sure you have run ldconfig if that is\n"); printf("*** required on your system.\n"); printf("*** If gtk-config was wrong, set the environment variable GTK_CONFIG\n"); @@ -130,7 +130,7 @@ main () printf("*** being found. The easiest way to fix this is to remove the old version\n"); printf("*** of GTK+, but you can also set the GTK_CONFIG environment to point to the\n"); printf("*** correct copy of gtk-config. (In this case, you will have to\n"); - printf("*** modify your LD_LIBRARY_PATH enviroment variable, or edit /etc/ld.so.conf\n"); + printf("*** modify your LD_LIBRARY_PATH environment variable, or edit /etc/ld.so.conf\n"); printf("*** so that the correct libraries are found at run-time))\n"); } } @@ -177,7 +177,7 @@ main () echo "***" echo "*** rpm --erase --nodeps gtk gtk-devel" ], [ echo "*** The test program failed to compile or link. See the file config.log for the" - echo "*** exact error that occured. This usually means GTK was incorrectly installed" + echo "*** exact error that occurred. This usually means GTK was incorrectly installed" echo "*** or that you have moved GTK since it was installed. In the latter case, you" echo "*** may want to edit the gtk-config script: $GTK_CONFIG" ]) CFLAGS="$ac_save_CFLAGS" diff --git a/pinentry/argparse.c b/pinentry/argparse.c index e31b67e..4f586d4 100644 --- a/pinentry/argparse.c +++ b/pinentry/argparse.c @@ -845,7 +845,7 @@ find_long_option( ARGPARSE_ARGS *arg, /* Would be better if we can do a binary search, but it is not possible to reorder our option table because we would mess up our help strings - What we can do is: Build a nice option - lookup table wehn this function is first invoked */ + lookup table when this function is first invoked */ if( !*keyword ) return -1; for(i=0; opts[i].short_opt; i++ ) diff --git a/pinentry/pinentry.c b/pinentry/pinentry.c index 3131b1e..4a0f859 100644 --- a/pinentry/pinentry.c +++ b/pinentry/pinentry.c @@ -96,7 +96,7 @@ pinentry_reset (int use_defaults) pinentry_color_t color_so = pinentry.color_so; int color_so_bright = pinentry.color_so_bright; - int timout = pinentry.timeout; + int timeout = pinentry.timeout; char *invisible_char = pinentry.invisible_char; @@ -184,7 +184,7 @@ pinentry_reset (int use_defaults) pinentry.color_so = color_so; pinentry.color_so_bright = color_so_bright; - pinentry.timeout = timout; + pinentry.timeout = timeout; } } diff --git a/pinentry/pinentry.h b/pinentry/pinentry.h index 50d5f98..c6e12e4 100644 --- a/pinentry/pinentry.h +++ b/pinentry/pinentry.h @@ -109,7 +109,7 @@ struct pinentry int canceled; /* The frontend should set this to true if an error with the local - conversion occured. */ + conversion occurred. */ int locale_err; /* The frontend should set this to a gpg-error so that commands are @@ -222,7 +222,7 @@ typedef struct pinentry *pinentry_t; PIN. If PIN->pin is zero, request a confirmation, otherwise a PIN entry. On confirmation, the function should return TRUE if confirmed, and FALSE otherwise. On PIN entry, the function should - return -1 if an error occured or the user cancelled the operation + return -1 if an error occurred or the user cancelled the operation and 1 otherwise. */ typedef int (*pinentry_cmd_handler_t) (pinentry_t pin); diff --git a/qt/pinentrydialog.cpp b/qt/pinentrydialog.cpp index 12f7718..f9dd700 100644 --- a/qt/pinentrydialog.cpp +++ b/qt/pinentrydialog.cpp @@ -75,7 +75,7 @@ WINBOOL SetForegroundWindowEx(HWND hWnd) void raiseWindow(QWidget *w) { - /* Maybe Qt will become agressive enough one day that + /* Maybe Qt will become aggressive enough one day that * this is enough on windows too*/ w->raise(); #ifdef Q_OS_WIN ----------------------------------------------------------------------- Summary of changes: AUTHORS | 2 +- ChangeLog-old | 8 ++++---- NEWS | 2 +- build-aux/texinfo.tex | 12 ++++++------ doc/pinentry.texi | 6 +++--- doc/texinfo.tex | 12 ++++++------ gnome3/pinentry-gnome3.c | 2 +- m4/glib.m4 | 6 +++--- m4/gtk.m4 | 6 +++--- pinentry/argparse.c | 2 +- pinentry/pinentry.c | 4 ++-- pinentry/pinentry.h | 4 ++-- qt/Makefile.am | 2 +- qt/pinentrydialog.cpp | 2 +- 14 files changed, 35 insertions(+), 35 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Thu Nov 3 20:14:36 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Thu, 03 Nov 2016 20:14:36 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-318-gc1ea0b5 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via c1ea0b577a468030d2b006317ba27fc1746c4b14 (commit) from ab89164be02012f1bf159c971853b8610e966301 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit c1ea0b577a468030d2b006317ba27fc1746c4b14 Author: Werner Koch Date: Thu Nov 3 20:07:56 2016 +0100 agent: Extend the PINENTRY_LAUNCHED inquiry and status. * agent/call-pinentry.c (start_pinentry): Get flavor and version and pass it to agent_inq_pinentry_launched. * agent/command.c (agent_inq_pinentry_launched): Add arg EXTRA. * g10/server.c (gpg_proxy_pinentry_notify): Print a new diagnostic. Signed-off-by: Werner Koch diff --git a/agent/agent.h b/agent/agent.h index 1d40386..2775c84 100644 --- a/agent/agent.h +++ b/agent/agent.h @@ -349,7 +349,8 @@ void agent_sighup_action (void); int map_pk_openpgp_to_gcry (int openpgp_algo); /*-- command.c --*/ -gpg_error_t agent_inq_pinentry_launched (ctrl_t ctrl, unsigned long pid); +gpg_error_t agent_inq_pinentry_launched (ctrl_t ctrl, unsigned long pid, + const char *extra); gpg_error_t agent_write_status (ctrl_t ctrl, const char *keyword, ...) GPGRT_ATTR_SENTINEL(0); gpg_error_t agent_print_status (ctrl_t ctrl, const char *keyword, diff --git a/agent/call-pinentry.c b/agent/call-pinentry.c index 813df9a..f83778e 100644 --- a/agent/call-pinentry.c +++ b/agent/call-pinentry.c @@ -225,6 +225,7 @@ getinfo_pid_cb (void *opaque, const void *buffer, size_t length) return 0; } + /* Fork off the pin entry if this has not already been done. Note, that this function must always be used to acquire the lock for the pinentry - we will serialize _all_ pinentry calls. @@ -243,6 +244,7 @@ start_pinentry (ctrl_t ctrl) unsigned long pinentry_pid; const char *value; struct timespec abstime; + char *flavor_version; int err; npth_clock_gettime (&abstime); @@ -539,6 +541,25 @@ start_pinentry (ctrl_t ctrl) } + /* Ask the pinentry for its version and flavor and streo that as a + * string in MB. This information is useful for helping users to + * figure out Pinentry problems. */ + { + membuf_t mb; + + init_membuf (&mb, 256); + if (assuan_transact (entry_ctx, "GETINFO flavor", + put_membuf_cb, &mb, NULL, NULL, NULL, NULL)) + put_membuf_str (&mb, "unknown"); + put_membuf_str (&mb, " "); + if (assuan_transact (entry_ctx, "GETINFO version", + put_membuf_cb, &mb, NULL, NULL, NULL, NULL)) + put_membuf_str (&mb, "unknown"); + put_membuf (&mb, "", 1); + flavor_version = get_membuf (&mb, NULL); + } + + /* Now ask the Pinentry for its PID. If the Pinentry is new enough it will send the pid back and we will use an inquire to notify our client. The client may answer the inquiry either with END or @@ -555,7 +576,7 @@ start_pinentry (ctrl_t ctrl) log_error ("pinentry did not return a PID\n"); else { - rc = agent_inq_pinentry_launched (ctrl, pinentry_pid); + rc = agent_inq_pinentry_launched (ctrl, pinentry_pid, flavor_version); if (gpg_err_code (rc) == GPG_ERR_CANCELED || gpg_err_code (rc) == GPG_ERR_FULLY_CANCELED) return unlock_pinentry (gpg_err_make (GPG_ERR_SOURCE_DEFAULT, @@ -563,6 +584,8 @@ start_pinentry (ctrl_t ctrl) rc = 0; } + xfree (flavor_version); + return 0; } diff --git a/agent/command.c b/agent/command.c index 999f608..4db2834 100644 --- a/agent/command.c +++ b/agent/command.c @@ -362,14 +362,15 @@ agent_print_status (ctrl_t ctrl, const char *keyword, const char *format, ...) that might disturb some older clients, this is only done if enabled via an option. Returns an gpg error code. */ gpg_error_t -agent_inq_pinentry_launched (ctrl_t ctrl, unsigned long pid) +agent_inq_pinentry_launched (ctrl_t ctrl, unsigned long pid, const char *extra) { - char line[100]; + char line[256]; if (!ctrl || !ctrl->server_local || !ctrl->server_local->allow_pinentry_notify) return 0; - snprintf (line, DIM(line), "PINENTRY_LAUNCHED %lu", pid); + snprintf (line, DIM(line), "PINENTRY_LAUNCHED %lu%s%s", + pid, extra?" ":"", extra? extra:""); return assuan_inquire (ctrl->server_local->assuan_ctx, line, NULL, NULL, 0); } diff --git a/g10/server.c b/g10/server.c index 258f08a..0e15176 100644 --- a/g10/server.c +++ b/g10/server.c @@ -770,6 +770,20 @@ gpg_server (ctrl_t ctrl) gpg_error_t gpg_proxy_pinentry_notify (ctrl_t ctrl, const unsigned char *line) { + if (opt.verbose) + { + char *linecopy = xtrystrdup (line); + char *fields[4]; + + if (linecopy + && split_fields (linecopy, fields, DIM (fields)) >= 4 + && !strcmp (fields[0], "PINENTRY_LAUNCHED")) + log_info (_("pinentry launched (pid %s, flavor %s, version %s)\n"), + fields[1], fields[2], fields[3]); + + xfree (linecopy); + } + if (!ctrl || !ctrl->server_local || !ctrl->server_local->allow_pinentry_notify) { ----------------------------------------------------------------------- Summary of changes: agent/agent.h | 3 ++- agent/call-pinentry.c | 25 ++++++++++++++++++++++++- agent/command.c | 7 ++++--- g10/server.c | 14 ++++++++++++++ 4 files changed, 44 insertions(+), 5 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 05:52:41 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Fri, 04 Nov 2016 05:52:41 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-319-gf9da935 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via f9da935c3eb302e75a80def51128fb6f669661d7 (commit) from c1ea0b577a468030d2b006317ba27fc1746c4b14 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit f9da935c3eb302e75a80def51128fb6f669661d7 Author: NIIBE Yutaka Date: Fri Nov 4 13:45:57 2016 +0900 scd: Add --advanced option for READKEY. * scd/command.c (cmd_readkey) : Support ADVANCED arg. * scd/app.c (app_readcert): Add ADVANCED arg. * scd/app-openpgp.c (do_readkey): Implement ADVANCED arg. * scd/app-nks.c (do_readkey): Error return with GPG_ERR_NOT_SUPPORTED. -- "SCD READKEY --advanced OPENPGP.3" returns key in advanced format. With this suport, poldi-ctrl will be no longer needed. Signed-off-by: NIIBE Yutaka diff --git a/scd/app-common.h b/scd/app-common.h index b4bb55b..cda657f 100644 --- a/scd/app-common.h +++ b/scd/app-common.h @@ -72,7 +72,7 @@ struct app_ctx_s { gpg_error_t (*learn_status) (app_t app, ctrl_t ctrl, unsigned int flags); gpg_error_t (*readcert) (app_t app, const char *certid, unsigned char **cert, size_t *certlen); - gpg_error_t (*readkey) (app_t app, const char *certid, + gpg_error_t (*readkey) (app_t app, int advanced, const char *certid, unsigned char **pk, size_t *pklen); gpg_error_t (*getattr) (app_t app, ctrl_t ctrl, const char *name); gpg_error_t (*setattr) (app_t app, const char *name, @@ -154,7 +154,7 @@ gpg_error_t app_write_learn_status (app_t app, ctrl_t ctrl, unsigned int flags); gpg_error_t app_readcert (app_t app, const char *certid, unsigned char **cert, size_t *certlen); -gpg_error_t app_readkey (app_t app, const char *keyid, +gpg_error_t app_readkey (app_t app, int advanced, const char *keyid, unsigned char **pk, size_t *pklen); gpg_error_t app_getattr (app_t app, ctrl_t ctrl, const char *name); gpg_error_t app_setattr (app_t app, const char *name, diff --git a/scd/app-nks.c b/scd/app-nks.c index 458516b..598dee1 100644 --- a/scd/app-nks.c +++ b/scd/app-nks.c @@ -618,13 +618,17 @@ do_readcert (app_t app, const char *certid, certificate parsing code in commands.c:cmd_readkey. For internal use PK and PKLEN may be NULL to just check for an existing key. */ static gpg_error_t -do_readkey (app_t app, const char *keyid, unsigned char **pk, size_t *pklen) +do_readkey (app_t app, int advanced, const char *keyid, + unsigned char **pk, size_t *pklen) { gpg_error_t err; unsigned char *buffer[2]; size_t buflen[2]; unsigned short path[1] = { 0x4500 }; + if (advanced) + return GPG_ERR_NOT_SUPPORTED; + /* We use a generic name to retrieve PK.AUT.IFD-SPK. */ if (!strcmp (keyid, "$IFDAUTHKEY") && app->app_local->nks_version >= 3) ; @@ -698,7 +702,7 @@ do_writekey (app_t app, ctrl_t ctrl, else return gpg_error (GPG_ERR_INV_ID); - if (!force && !do_readkey (app, keyid, NULL, NULL)) + if (!force && !do_readkey (app, 0, keyid, NULL, NULL)) return gpg_error (GPG_ERR_EEXIST); /* Parse the S-expression. */ diff --git a/scd/app-openpgp.c b/scd/app-openpgp.c index d75721f..4bf99ad 100644 --- a/scd/app-openpgp.c +++ b/scd/app-openpgp.c @@ -1115,8 +1115,8 @@ retrieve_fpr_from_card (app_t app, int keyno, char *fpr) #if GNUPG_MAJOR_VERSION > 1 static gpg_error_t retrieve_key_material (FILE *fp, const char *hexkeyid, - const unsigned char **m, size_t *mlen, - const unsigned char **e, size_t *elen) + const unsigned char **m, size_t *mlen, + const unsigned char **e, size_t *elen) { gcry_error_t err = 0; char *line = NULL; /* read_line() buffer. */ @@ -1146,10 +1146,10 @@ retrieve_key_material (FILE *fp, const char *hexkeyid, if (!i) break; /* EOF. */ if (i < 0) - { - err = gpg_error_from_syserror (); - goto leave; /* Error. */ - } + { + err = gpg_error_from_syserror (); + goto leave; /* Error. */ + } if (!max_length) { err = gpg_error (GPG_ERR_TRUNCATED); @@ -1173,7 +1173,7 @@ retrieve_key_material (FILE *fp, const char *hexkeyid, && nfields > 4 && !strcmp (fields[4], hexkeyid)) found_key = 1; continue; - } + } if ( !strcmp (fields[0], "sub") || !strcmp (fields[0], "pub") ) break; /* Next key - stop. */ @@ -1561,8 +1561,8 @@ get_public_key (app_t app, int keyno) Clearly that is not an option and thus we try to locate the key using an external helper. - The helper we use here is gpg itself, which should know about - the key in any case. */ + The helper we use here is gpg itself, which should know about + the key in any case. */ char fpr[41]; char *hexkeyid; @@ -1574,38 +1574,38 @@ get_public_key (app_t app, int keyno) err = retrieve_fpr_from_card (app, keyno, fpr); if (err) - { - log_error ("error while retrieving fpr from card: %s\n", - gpg_strerror (err)); - goto leave; - } + { + log_error ("error while retrieving fpr from card: %s\n", + gpg_strerror (err)); + goto leave; + } hexkeyid = fpr + 24; ret = gpgrt_asprintf (&command, "gpg --list-keys --with-colons --with-key-data '%s'", fpr); if (ret < 0) - { - err = gpg_error_from_syserror (); - goto leave; - } + { + err = gpg_error_from_syserror (); + goto leave; + } fp = popen (command, "r"); xfree (command); if (!fp) - { - err = gpg_error_from_syserror (); - log_error ("running gpg failed: %s\n", gpg_strerror (err)); - goto leave; - } + { + err = gpg_error_from_syserror (); + log_error ("running gpg failed: %s\n", gpg_strerror (err)); + goto leave; + } err = retrieve_key_material (fp, hexkeyid, &m, &mlen, &e, &elen); pclose (fp); if (err) - { - log_error ("error while retrieving key material through pipe: %s\n", + { + log_error ("error while retrieving key material through pipe: %s\n", gpg_strerror (err)); - goto leave; - } + goto leave; + } err = gcry_sexp_build (&s_pkey, NULL, "(public-key(rsa(n%b)(e%b)))", (int)mlen, m, (int)elen, e); @@ -1726,7 +1726,8 @@ do_learn_status (app_t app, ctrl_t ctrl, unsigned int flags) buffer. On error PK and PKLEN are not changed and an error code is returned. */ static gpg_error_t -do_readkey (app_t app, const char *keyid, unsigned char **pk, size_t *pklen) +do_readkey (app_t app, int advanced, const char *keyid, + unsigned char **pk, size_t *pklen) { #if GNUPG_MAJOR_VERSION > 1 gpg_error_t err; @@ -1749,15 +1750,40 @@ do_readkey (app_t app, const char *keyid, unsigned char **pk, size_t *pklen) buf = app->app_local->pk[keyno].key; if (!buf) return gpg_error (GPG_ERR_NO_PUBKEY); - *pklen = app->app_local->pk[keyno].keylen;; - *pk = xtrymalloc (*pklen); - if (!*pk) + + if (advanced) { - err = gpg_error_from_syserror (); - *pklen = 0; - return err; + gcry_sexp_t s_key; + + err = gcry_sexp_new (&s_key, buf, app->app_local->pk[keyno].keylen, 0); + if (err) + return err; + + *pklen = gcry_sexp_sprint (s_key, GCRYSEXP_FMT_ADVANCED, NULL, 0); + *pk = xtrymalloc (*pklen); + if (!*pk) + { + err = gpg_error_from_syserror (); + *pklen = 0; + return err; + } + + gcry_sexp_sprint (s_key, GCRYSEXP_FMT_ADVANCED, *pk, *pklen); + gcry_sexp_release (s_key); + } + else + { + *pklen = app->app_local->pk[keyno].keylen; + *pk = xtrymalloc (*pklen); + if (!*pk) + { + err = gpg_error_from_syserror (); + *pklen = 0; + return err; + } + memcpy (*pk, buf, *pklen); } - memcpy (*pk, buf, *pklen); + return 0; #else return gpg_error (GPG_ERR_NOT_IMPLEMENTED); @@ -2366,7 +2392,7 @@ do_change_pin (app_t app, ctrl_t ctrl, const char *chvnostr, } else if (chvno == 1 || chvno == 3) { - if (!use_pinpad) + if (!use_pinpad) { char *promptbuf = NULL; const char *prompt; @@ -3990,23 +4016,23 @@ do_sign (app_t app, const char *keyidstr, int hashalgo, else { for (s=keyidstr, n=0; hexdigitp (s); s++, n++) - ; + ; if (n != 32) - return gpg_error (GPG_ERR_INV_ID); + return gpg_error (GPG_ERR_INV_ID); else if (!*s) - ; /* no fingerprint given: we allow this for now. */ + ; /* no fingerprint given: we allow this for now. */ else if (*s == '/') - fpr = s + 1; + fpr = s + 1; else - return gpg_error (GPG_ERR_INV_ID); + return gpg_error (GPG_ERR_INV_ID); for (s=keyidstr, n=0; n < 16; s += 2, n++) - tmp_sn[n] = xtoi_2 (s); + tmp_sn[n] = xtoi_2 (s); if (app->serialnolen != 16) - return gpg_error (GPG_ERR_INV_CARD); + return gpg_error (GPG_ERR_INV_CARD); if (memcmp (app->serialno, tmp_sn, 16)) - return gpg_error (GPG_ERR_WRONG_CARD); + return gpg_error (GPG_ERR_WRONG_CARD); } /* If a fingerprint has been specified check it against the one on @@ -4244,23 +4270,23 @@ do_decipher (app_t app, const char *keyidstr, else { for (s=keyidstr, n=0; hexdigitp (s); s++, n++) - ; + ; if (n != 32) - return gpg_error (GPG_ERR_INV_ID); + return gpg_error (GPG_ERR_INV_ID); else if (!*s) - ; /* no fingerprint given: we allow this for now. */ + ; /* no fingerprint given: we allow this for now. */ else if (*s == '/') - fpr = s + 1; + fpr = s + 1; else - return gpg_error (GPG_ERR_INV_ID); + return gpg_error (GPG_ERR_INV_ID); for (s=keyidstr, n=0; n < 16; s += 2, n++) - tmp_sn[n] = xtoi_2 (s); + tmp_sn[n] = xtoi_2 (s); if (app->serialnolen != 16) - return gpg_error (GPG_ERR_INV_CARD); + return gpg_error (GPG_ERR_INV_CARD); if (memcmp (app->serialno, tmp_sn, 16)) - return gpg_error (GPG_ERR_WRONG_CARD); + return gpg_error (GPG_ERR_WRONG_CARD); } /* If a fingerprint has been specified check it against the one on diff --git a/scd/app.c b/scd/app.c index 55b8edd..1f21dc1 100644 --- a/scd/app.c +++ b/scd/app.c @@ -612,7 +612,8 @@ app_readcert (app_t app, const char *certid, This function might not be supported by all applications. */ gpg_error_t -app_readkey (app_t app, const char *keyid, unsigned char **pk, size_t *pklen) +app_readkey (app_t app, int advanced, const char *keyid, + unsigned char **pk, size_t *pklen) { gpg_error_t err; @@ -630,7 +631,7 @@ app_readkey (app_t app, const char *keyid, unsigned char **pk, size_t *pklen) err = lock_reader (app->slot, NULL /*FIXME*/); if (err) return err; - err= app->fnc.readkey (app, keyid, pk, pklen); + err= app->fnc.readkey (app, advanced, keyid, pk, pklen); unlock_reader (app->slot); return err; } diff --git a/scd/command.c b/scd/command.c index 9d978ab..edea01c 100644 --- a/scd/command.c +++ b/scd/command.c @@ -729,17 +729,19 @@ cmd_readcert (assuan_context_t ctx, char *line) static const char hlp_readkey[] = - "READKEY \n" + "READKEY [--advanced] \n" "\n" "Return the public key for the given cert or key ID as a standard\n" "S-expression.\n" + "In --advanced mode it returns the S-expression in advanced format.\n" "\n" - "Note, that this function may even be used on a locked card."; + "Note that this function may even be used on a locked card."; static gpg_error_t cmd_readkey (assuan_context_t ctx, char *line) { ctrl_t ctrl = assuan_get_pointer (ctx); int rc; + int advanced = 0; unsigned char *cert = NULL; size_t ncert, n; ksba_cert_t kc = NULL; @@ -750,11 +752,16 @@ cmd_readkey (assuan_context_t ctx, char *line) if ((rc = open_card (ctrl, NULL))) return rc; + if (has_option (line, "--advanced")) + advanced = 1; + + line = skip_options (line); + line = xstrdup (line); /* Need a copy of the line. */ /* If the application supports the READKEY function we use that. Otherwise we use the old way by extracting it from the certificate. */ - rc = app_readkey (ctrl->app_ctx, line, &pk, &pklen); + rc = app_readkey (ctrl->app_ctx, advanced, line, &pk, &pklen); if (!rc) { /* Yeah, got that key - send it back. */ rc = assuan_send_data (ctx, pk, pklen); ----------------------------------------------------------------------- Summary of changes: scd/app-common.h | 4 +- scd/app-nks.c | 8 +++- scd/app-openpgp.c | 130 ++++++++++++++++++++++++++++++++---------------------- scd/app.c | 5 ++- scd/command.c | 13 ++++-- 5 files changed, 99 insertions(+), 61 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 07:35:41 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Fri, 04 Nov 2016 07:35:41 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-320-gcd00b07 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via cd00b07ec26c3408e6aee66957b08c6fd319b700 (commit) from f9da935c3eb302e75a80def51128fb6f669661d7 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit cd00b07ec26c3408e6aee66957b08c6fd319b700 Author: NIIBE Yutaka Date: Fri Nov 4 15:34:35 2016 +0900 scd: Fix length error for READKEY. * scd/app-openpgp.c (do_readkey): Decrement the length. -- Signed-off-by: NIIBE Yutaka diff --git a/scd/app-openpgp.c b/scd/app-openpgp.c index 4bf99ad..f8d9954 100644 --- a/scd/app-openpgp.c +++ b/scd/app-openpgp.c @@ -1770,6 +1770,8 @@ do_readkey (app_t app, int advanced, const char *keyid, gcry_sexp_sprint (s_key, GCRYSEXP_FMT_ADVANCED, *pk, *pklen); gcry_sexp_release (s_key); + /* Decrement for trailing '\0' */ + *pklen = *pklen - 1; } else { ----------------------------------------------------------------------- Summary of changes: scd/app-openpgp.c | 2 ++ 1 file changed, 2 insertions(+) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 08:15:54 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Fri, 04 Nov 2016 08:15:54 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-18-gdf08a0c Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via df08a0ca3f029b06b7e3a6bd63330df5cb96585a (commit) from aad94cb7c313d4501bed748f48830cbb93c67e20 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit df08a0ca3f029b06b7e3a6bd63330df5cb96585a Author: Werner Koch Date: Fri Nov 4 08:10:34 2016 +0100 w32: Fix locating gpgconf on 64 bit systems. * src/w32-util.c (find_program_at_standard_place): Use access to check whether the binary is at CSIDL_PROGRAM_FILES before testing CSIDL_PROGRAM_FILESX86. -- Suggested-by: ticho Fixes-commit: a82e9b182f62966207cad0972be6fa284329a5a1 GnuPG-bug-id: 2814 Signed-off-by: Werner Koch diff --git a/src/w32-util.c b/src/w32-util.c index 21de6dc..0dc1288 100644 --- a/src/w32-util.c +++ b/src/w32-util.c @@ -415,8 +415,17 @@ find_program_at_standard_place (const char *name) We First try the generic place and then fallback to the x86 (i.e. 32 bit) place. This will prefer a 64 bit of the program over a 32 bit version on 64 bit Windows if installed. */ - if (SHGetSpecialFolderPathA (NULL, path, CSIDL_PROGRAM_FILES, 0) - || SHGetSpecialFolderPathA (NULL, path, CSIDL_PROGRAM_FILESX86, 0)) + if (SHGetSpecialFolderPathA (NULL, path, CSIDL_PROGRAM_FILES, 0)) + { + result = _gpgme_strconcat (path, "\\", name, NULL); + if (result && access (result, F_OK)) + { + free (result); + result = NULL; + } + } + if (!result + && SHGetSpecialFolderPathA (NULL, path, CSIDL_PROGRAM_FILESX86, 0)) { result = _gpgme_strconcat (path, "\\", name, NULL); if (result && access (result, F_OK)) ----------------------------------------------------------------------- Summary of changes: src/w32-util.c | 13 +++++++++++-- 1 file changed, 11 insertions(+), 2 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 08:50:05 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Fri, 04 Nov 2016 08:50:05 +0100 Subject: [git] Poldi - branch, master, updated. release-0.4.1-35-gb428097 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PAM for the OpenPGP card". The branch, master has been updated via b4280978f83971103bf54470d7084e98d125aca2 (commit) via 88e2fe393b465d6ac3def5c786608f98bd53fae7 (commit) via a9763b5f203ab5ebd09a87d8d251bc00eb25ed4c (commit) from ee253ccb14aa1edb15fc19306d13c226900d2800 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b4280978f83971103bf54470d7084e98d125aca2 Author: NIIBE Yutaka Date: Fri Nov 4 16:46:11 2016 +0900 Only support forking off scdaemon. * src/scd/scd.c (scd_serialno_internal): Cleanup API with no AGENT. (agent_connect_from_infostr): Remove. (agent_scd_getinfo_socket_name): Remove. (get_scd_socket_from_agent): Remove. (scd_connect): Change API to only support forking off scdaemon. * src/pam/pam_poldi.c (pam_sm_authenticate): Follow the change of API. -- Signed-off-by: NIIBE Yutaka diff --git a/src/pam/pam_poldi.c b/src/pam/pam_poldi.c index 0448819..6ed3cc4 100644 --- a/src/pam/pam_poldi.c +++ b/src/pam/pam_poldi.c @@ -549,10 +549,8 @@ pam_sm_authenticate (pam_handle_t *pam_handle, /*** Connect to Scdaemon. ***/ - err = scd_connect (&scd_ctx, - NULL, getenv ("GPG_AGENT_INFO"), - ctx->scdaemon_program, ctx->scdaemon_options, - 0, ctx->loghandle); + err = scd_connect (&scd_ctx, ctx->scdaemon_program, ctx->scdaemon_options, + ctx->loghandle); if (err) goto out; diff --git a/src/scd/scd.c b/src/scd/scd.c index 52a64f4..9f60026 100644 --- a/src/scd/scd.c +++ b/src/scd/scd.c @@ -91,155 +91,9 @@ static assuan_error_t membuf_data_cb (void *opaque, static gpg_error_t scd_serialno_internal (assuan_context_t ctx, - int agent, char **r_serialno); + char **r_serialno); - -/* Helper function for get_scd_socket_from_agent(), which is used by - scd_connect(). - - Try to connect to gpg-agent, which is to be found through the - info-string contained in AGENT_INFOSTR. On success, *AGENT_CTX is - filled with an assuan context. Return proper error code or zero on - success. */ -static int -agent_connect_from_infostr (const char *agent_infostr, - assuan_context_t *agent_ctx, - log_handle_t loghandle) -{ - char *infostr; - int prot; - int pid; - int rc; - char *p; - - *agent_ctx = NULL; - rc = 0; - - infostr = xtrystrdup (agent_infostr); - if (!infostr) - { - rc = gpg_error_from_syserror (); - log_msg_error (loghandle, - _("failed to duplicate %s: %s"), - "agent infostring", gpg_strerror (rc)); - goto out; - } - - p = strchr (infostr, ':'); - if (!p || p == infostr) - { - log_msg_info (loghandle, - _("malformed GPG_AGENT_INFO environment variable")); - /* FIXME: what error code is more appropriate here? -mo */ - rc = gpg_error (GPG_ERR_ASS_CONNECT_FAILED); - goto out; - } - *p++ = 0; - pid = atoi (p); - while (*p && *p != ':') - p++; - prot = *p? atoi (p+1) : 0; - if (prot != 1) - { - log_msg_error (loghandle, - _("agent protocol version %d is not supported"), - prot); - /* FIXME: what error code is more appropriate here? -mo */ - rc = gpg_error (GPG_ERR_ASS_CONNECT_FAILED); - goto out; - - } - - /* Connect! */ - rc = assuan_socket_connect (agent_ctx, infostr, pid); - - out: - - xfree (infostr); - - return rc; -} - -/* Helper function for get_scd_socket_from_agent(), which is used by - scd_connect(). - - Try to retrieve the SCDaemons socket naem from the gpg-agent - context CTX. On success, *SOCKET_NAME is filled with a copy ot the - socket name. Return proper error code or zero on success. */ -static int -agent_scd_getinfo_socket_name (assuan_context_t ctx, char **socket_name, - log_handle_t loghandle) -{ - unsigned char *databuf; - size_t datalen; - membuf_t data; - char *res; - int rc; - - init_membuf (&data, 256); - *socket_name = NULL; - res = NULL; - rc = 0; - - rc = assuan_transact (ctx, "SCD GETINFO socket_name", membuf_data_cb, &data, - NULL, NULL, NULL, NULL); - if (rc) - goto out; - - databuf = get_membuf (&data, &datalen); - if (databuf && datalen) - { - res = xtrymalloc (datalen + 1); - if (!res) - { - log_msg_error (loghandle, - _("warning: can't store getinfo data: %s"), - strerror (errno)); - } - else - { - memcpy (res, databuf, datalen); - res[datalen] = 0; - *socket_name = res; - } - } - - out: - - xfree (get_membuf (&data, &datalen)); - - return rc; -} - -/* Retrieve SCDaemons socket name through a running gpg-agent, which - is to be found through the info-string AGENT_INFOSTR. On Success, - *SOCKET_NAME contains a copy of the socket name. Returns proper - error code or zero on success. */ -static int -get_scd_socket_from_agent (const char *agent_infostr, char **socket_name, - log_handle_t loghandle) -{ - assuan_context_t ctx; - int rc; - - *socket_name = NULL; - ctx = NULL; - rc = 0; - - rc = agent_connect_from_infostr (agent_infostr, &ctx, loghandle); - if (rc) - goto out; - - rc = agent_scd_getinfo_socket_name (ctx, socket_name, loghandle); - - out: - - assuan_disconnect (ctx); - - return rc; -} - /* Send a RESTART to SCDaemon. */ static void restart_scd (scd_context_t ctx) @@ -250,19 +104,11 @@ restart_scd (scd_context_t ctx) -/* Try to connect to scdaemon. We support three methods to access - scdaemon. First: connect to a specified socket, second: connect to - a running gpg-agent, retrieve scdaemon socket name through the - agent and connect to that socket, third: fork of a new scdaemon. - Returns proper error code or zero on success. */ +/* Fork off scdaemon and work by pipes. Returns proper error code or + zero on success. */ gpg_error_t -scd_connect (scd_context_t *scd_ctx, - const char *scdaemon_socket, - const char *agent_infostr, - const char *scd_path, - const char *scd_options, - unsigned int flags, - log_handle_t loghandle) +scd_connect (scd_context_t *scd_ctx, const char *scd_path, + const char *scd_options, log_handle_t loghandle) { assuan_context_t assuan_ctx; scd_context_t ctx; @@ -280,60 +126,17 @@ scd_connect (scd_context_t *scd_ctx, ctx->assuan_ctx = NULL; ctx->flags = 0; -#if 0 - /* Scdaemon is not yet able to run as a system daemon, thus this - code is disabled. */ - - if (scdaemon_socket) - { - /* This has the highest priority; connect to system scdaemon. */ - - rc = assuan_socket_connect (&assuan_ctx, scdaemon_socket, 0); - if (!rc) - { - log_msg_debug (loghandle, - _("connected to system scdaemon through socket '%s'"), - scdaemon_socket); - goto out; - } - } -#endif - - if (agent_infostr && *agent_infostr) - { - /* Somehow connecting to a system scdaemon didn't work. Try to - retrieve a scdaemon socket name from gpg-agent. */ - - char *scd_socket; - - rc = get_scd_socket_from_agent (agent_infostr, &scd_socket, loghandle); - if (!rc) - rc = assuan_socket_connect (&assuan_ctx, scd_socket, 0); - - if (!rc) - log_msg_debug (loghandle, - _("got scdaemon socket name from gpg-agent, " - "connected to socket '%s'"), scd_socket); - - xfree (scd_socket); - - if (!rc) - goto out; - } - if (1) { - /* Neither of the above scdaemon connect methods worked, - fallback: spawn a new scdaemon. */ - const char *pgmname; const char *argv[5]; int no_close_list[3]; int i; - if (flags & SCD_FLAG_VERBOSE) +#if 0 log_msg_debug (loghandle, _("no running scdaemon - starting one")); +#endif if (fflush (NULL)) { @@ -376,7 +179,7 @@ scd_connect (scd_context_t *scd_ctx, no_close_list[i++] = fileno (stderr); no_close_list[i] = -1; - /* connect to the agent and perform initial handshaking */ + /* connect to the scdaemon and perform initial handshaking */ rc = assuan_pipe_connect (&assuan_ctx, scd_path, argv, no_close_list); if (!rc) @@ -404,15 +207,16 @@ scd_connect (scd_context_t *scd_ctx, { /* FIXME: is this the best way? -mo */ //reset_scd (assuan_ctx); - scd_serialno_internal (assuan_ctx, 0, NULL); + scd_serialno_internal (assuan_ctx, NULL); ctx->assuan_ctx = assuan_ctx; - ctx->flags = flags; + ctx->flags = 0; ctx->loghandle = loghandle; *scd_ctx = ctx; - if (flags & SCD_FLAG_VERBOSE) +#if 0 log_msg_debug (loghandle, _("connection to scdaemon established")); +#endif } return rc; @@ -642,7 +446,7 @@ get_serialno_cb (void *opaque, const char *line) } static gpg_error_t -scd_serialno_internal (assuan_context_t ctx, int agent, char **r_serialno) +scd_serialno_internal (assuan_context_t ctx, char **r_serialno) { char *serialno; int rc; @@ -672,7 +476,7 @@ scd_serialno (scd_context_t ctx, char **r_serialno) { gpg_error_t err; - err = scd_serialno_internal (ctx->assuan_ctx, 0, r_serialno); + err = scd_serialno_internal (ctx->assuan_ctx, r_serialno); return err; } diff --git a/src/scd/scd.h b/src/scd/scd.h index 2df7ae7..25680f8 100644 --- a/src/scd/scd.h +++ b/src/scd/scd.h @@ -47,15 +47,10 @@ typedef struct scd_cardinfo scd_cardinfo_t; #define SCD_FLAG_VERBOSE (1 << 0) -/* Try to connect to the agent via socket or fork it off and work by - pipes. Returns proper error code or zero on success. */ -gpg_error_t scd_connect (scd_context_t *scd_ctx, - const char *scdaemon_socket, - const char *agent_infostr, - const char *scd_path, - const char *scd_options, - unsigned int flags, - log_handle_t loghandle); +/* Fork it off and work by pipes. Returns proper error code or zero + on success. */ +gpg_error_t scd_connect (scd_context_t *scd_ctx, const char *scd_path, + const char *scd_options, log_handle_t loghandle); /* Disconnect from SCDaemon; destroy the context SCD_CTX. */ void scd_disconnect (scd_context_t scd_ctx); commit 88e2fe393b465d6ac3def5c786608f98bd53fae7 Author: NIIBE Yutaka Date: Fri Nov 4 15:55:59 2016 +0900 Modify document for removal of poldi-ctrl. -- Signed-off-by: NIIBE Yutaka diff --git a/conf/users.skel b/conf/users.skel index 7ca3913..c2ba6f0 100644 --- a/conf/users.skel +++ b/conf/users.skel @@ -5,9 +5,9 @@ # Entries are of the form: "\n" # (without quotation marks and without angle brackets. Allowed # whitespaces are spaces and tabs. is the serial number -# of an OpenPGP smartcard as reported by poldi-ctrl -# --print-serialno. is a valid username on the system. -# Comments are opened with "#" and terminated by a newline. +# of an OpenPGP smartcard. It can be obtained by "gpg --card-status" +# command as ``Application ID''. is a valid username on +# the system. Comments are opened with "#" and terminated by a newline. # # So, a valid entry would look like: # "D2760001240101010001000006550000 moritz" diff --git a/doc/poldi.texi b/doc/poldi.texi index d098186..191a44a 100644 --- a/doc/poldi.texi +++ b/doc/poldi.texi @@ -142,9 +142,9 @@ associated with many users and one user can be associated with many smartcards. The public keys are stored in files in a subdirectory named -``keys''. The files are named after the card serial numbers and must +``keys''. The files are named after the card serial numbers and must contain the public key as a single S-Expression as it is printed out -by poldi-ctrl. +by gpg-connect-agent (See below). The mapping between keys and Unix accounts is to be established by adding appropriate entries to the user database file named ``users''. @@ -288,9 +288,10 @@ local usernames. Syntax: this file consists of entries - one entry per line. Entries are of the form: "\n" (without quotation marks and without angle brackets. Allowed whitespaces are spaces and tabs. - is the serial number of an OpenPGP smartcard as reported by -poldi-ctrl --print-serialno. is a valid username on the -system. Comments are opened with "#" and terminated by a newline. + is the serial number of an OpenPGP smartcard. It can be +obtained by "gpg --card-status" command as ``Application ID''. + is a valid username on the system. Comments are opened +with "#" and terminated by a newline. @item Directory: keys @@ -354,7 +355,7 @@ card-specific key file. Therefore he inserts Moritz' smartcard and executes: @example -$ poldi-ctrl --print-key > /etc/poldi/localdb/keys/D2760001240101010001000006550000 +$ gpg-connect-agent "/datafile /etc/poldi/localdb/keys/D2760001240101010001000006550000" "SCD READKEY --advanced OPENPGP.3" /bye @end example The administrator wants to allow Moritz to update his card's key diff --git a/po/POTFILES.in b/po/POTFILES.in index abda8f7..b631da8 100644 --- a/po/POTFILES.in +++ b/po/POTFILES.in @@ -1,6 +1,5 @@ # List of source files which contain translatable strings. -./src/ctrl/poldi-ctrl.c ./src/pam/auth-method-localdb/usersdb.c ./src/pam/auth-method-localdb/auth-localdb.c ./src/pam/auth-method-localdb/key-lookup.h diff --git a/po/de.po b/po/de.po index b24a46b..932bd1e 100644 --- a/po/de.po +++ b/po/de.po @@ -16,55 +16,6 @@ msgstr "" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" -#: src/ctrl/poldi-ctrl.c:85 -msgid "Dump certain card information" -msgstr "Informationen der Smartcard ausgeben" - -#: src/ctrl/poldi-ctrl.c:87 -msgid "Print authentication key from card" -msgstr "Zeige Authentifikationsschl?ssel der Karte an" - -#: src/ctrl/poldi-ctrl.c:89 -msgid "Print serial number from card" -msgstr "Zeige Seriennummer der Karte an" - -#: src/ctrl/poldi-ctrl.c:93 -msgid "Enable debugging mode" -msgstr "Aktiviere Debugging-Modus" - -#: src/ctrl/poldi-ctrl.c:269 -#, c-format -msgid "failed to initialize logging: %s\n" -msgstr "konnte Protokollierung nicht initialisieren: %s\n" - -#: src/ctrl/poldi-ctrl.c:277 -#, c-format -msgid "failed to set logging backend: %s\n" -msgstr "konnte Protokollierungs-Backend nicht aktivieren: %s\n" - -#: src/ctrl/poldi-ctrl.c:316 -#, c-format -msgid "parsing argument vector failed: %s" -msgstr "Auswerten des Argumentvektors fehlgeschlagen: %s" - -#: src/ctrl/poldi-ctrl.c:328 -msgid "more than one command specified (try --help)" -msgstr "mehr als ein Kommando angegeben (versuche --help)" - -#: src/ctrl/poldi-ctrl.c:333 -msgid "no command specified (try --help)" -msgstr "kein Kommando angegeben (versuche --help)" - -#: src/ctrl/poldi-ctrl.c:343 -#, c-format -msgid "failed to connect to scdaemon: %s" -msgstr "Verbinden zum Scdaemon fehlgeschlagen: %s" - -#: src/ctrl/poldi-ctrl.c:352 -#, c-format -msgid "failed to retrieve smartcard data: %s" -msgstr "konnte Daten der Smartcard nicht empfangen: %s" - #: src/pam/auth-method-localdb/auth-localdb.c:109 msgid "Please enter username: " msgstr "Bitte Benutzername eingeben: " diff --git a/po/poldi.pot b/po/poldi.pot index b822d06..241e5bc 100644 --- a/po/poldi.pot +++ b/po/poldi.pot @@ -17,55 +17,6 @@ msgstr "" "Content-Type: text/plain; charset=CHARSET\n" "Content-Transfer-Encoding: 8bit\n" -#: src/ctrl/poldi-ctrl.c:85 -msgid "Dump certain card information" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:87 -msgid "Print authentication key from card" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:89 -msgid "Print serial number from card" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:93 -msgid "Enable debugging mode" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:269 -#, c-format -msgid "failed to initialize logging: %s\n" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:277 -#, c-format -msgid "failed to set logging backend: %s\n" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:316 -#, c-format -msgid "parsing argument vector failed: %s" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:328 -msgid "more than one command specified (try --help)" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:333 -msgid "no command specified (try --help)" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:343 -#, c-format -msgid "failed to connect to scdaemon: %s" -msgstr "" - -#: src/ctrl/poldi-ctrl.c:352 -#, c-format -msgid "failed to retrieve smartcard data: %s" -msgstr "" - #: src/pam/auth-method-localdb/auth-localdb.c:109 msgid "Please enter username: " msgstr "" commit a9763b5f203ab5ebd09a87d8d251bc00eb25ed4c Author: NIIBE Yutaka Date: Fri Nov 4 14:10:10 2016 +0900 Remove poldi-ctrl. * src/Makefile.am (SUBDIRS): Remove ctrl. * src/ctrl: Remove. -- Signed-off-by: NIIBE Yutaka diff --git a/src/Makefile.am b/src/Makefile.am index 8715d19..70cce5b 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -17,6 +17,6 @@ # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA # 02111-1307, USA -SUBDIRS = assuan util scd pam ctrl +SUBDIRS = assuan util scd pam EXTRA_DIST = README poldi.h diff --git a/src/ctrl/ChangeLog b/src/ctrl/ChangeLog deleted file mode 100644 index 6a23053..0000000 --- a/src/ctrl/ChangeLog +++ /dev/null @@ -1,310 +0,0 @@ -2009-08-08 Moritz - - * poldi-ctrl.c (main): Pass NULL as scd_connect's new scd_options - parameter. - -2008-08-07 Moritz - - * poldi-ctrl.c (cmd_dump): Removed (disabled) workaround for older - cards for now. - -2008-08-04 Moritz - - * poldi-ctrl.c: Mark strings for i18n. - -2008-08-03 Moritz - - * poldi-ctrl.c (i18n_cb): New function. - (main): call simpleparse_set_i18n_cb. - -2008-07-20 Moritz - - * Makefile.am: removed jnlib. - - * poldi-ctrl.c: New static variables: loghandle, scd_ctx, - scd_cardinfo. Setup loghandle and scdaemon context in main(), thus - the cmd implementation functions don't need to it anymore. - Now uses simplelog API. - -2008-07-14 Moritz - - * poldi-ctrl.c: Don't include pwd.h and util/optparse.h. Include: - util/simpleparse.h. - (struct poldi_ctrl_opt): Remove member cmd_print_config. Replace - enum_arg_opt_ids list with enum opt_ids. Replace ARGPARSE_OPTS - definitions with simpleparse_opt_spec_t opt_specs[]. - (my_strusage): Dropped functions. - (poldi_ctrl_options_cb): Adjust to new simpleparse interface. - Throughout: adjust calls to scd_connect() to new API (providing - logging callback). - (cmd_print_config): Dropped function. I don't think this - functionality is required. Instead do: cat poldi.conf. - (main): use new simpleparse subsystem, not jnlibs ARGPARSE, do not - use jnlib logging interface. - -2008-04-05 Moritz - - * poldi-ctrl.c (cmd_dump): Use bin2hex instead of convert_to_hex. - Removed usersdb manipulating functions. - -2007-11-10 Moritz - - * poldi-ctrl.c (conversation): Removed unused function. - -2007-11-04 Moritz - - * poldi-ctrl.c (main): Adjust to new options_parse_argv API. - -2007-10-28 Moritz - - * poldi-ctrl.c: Do not include scd-support.h; include - common/support.h. - * Makefile.am (poldi_ctrl_LDADD): Removed reference to - libscd-support.a - -2007-10-27 Moritz - - * poldi-ctrl.c: Removed "test" command completely. It's rationale - was to test authentication through Poldi. But since poldi-ctrl - didn't use the PAM module (instead it duplicated some - authentication code), it's not suitable for testing Poldi through - *PAM*. Removing this command simplifies the Poldi package. There - are more reliable ways of testing authentication through Poldi: - e.g. the "pamtester" program (not included in PAM Poldi), which - uses the PAM API. - -2007-08-25 Moritz - - * poldi-ctrl.c (my_strusage): Handle copyright line. - Implemented new CLI argument: --serialno-inserted. - (struct poldi_ctrl_opt): New member: serialno_inserted. - (enum arg_opt_ids): New: arg_serialno_inserted. - (ARGPARSE_OPTS arg_opts): Specify arg_serialno_inserted. - (poldi_ctrl_options_cb): Handle arg_serialno_inserted. - (serialno_from_inserted_card): New function. - (cmd_register_card): New variable: use_inserted; use - serialno_from_inserted_card. - (cmd_unregister_card): New variables: serialno, use_inserted; use - serialno_from_inserted_card. - (cmd_associate): New variables: serialno, account, use_inserted; - use serialno_from_inserted_card(). - (cmd_disassociate): Likewise. Allow disassociate if serialno AND - account is given (removed wildcard mechanism with one of these two - being NULL). - -2007-08-17 Moritz - - * poldi-ctrl.c (cmd_test): Call wait_for_card(). - (cmd_dump): Unused variable key_nbits; do not pretend to dump key - sizes; cleanup. - -2007-08-16 Moritz - - * poldi-ctrl.c (cmd_test): Lookup GPG_AGENT_INFO, not - SCDAEMON_INFO. - (cmd_dump): Likewise. - (cmd_set_key): Likewise. - -2007-08-10 Moritz - - * poldi-ctrl.c (cmd_test): Call scd_reset. - (cmd_dump): Likewise. - (cmd_set_key): Likewise. - -2007-06-29 Moritz - - * poldi-ctrl.c: Removed includes: , , - ; new includes: , - , . - (struct poldi_ctrl_opt): Removed members: debug_sc, ctapi_driver, - pcsc_driver, reader_port, disable_opensc, disable_ccid, - debug_ccid_driver. - (enum arg_opt_ids): Removed: arg_ctapi_driver, arg_pcsc_driver, - arg_reader_port, arg_disable_ccid, arg_disable_opensc, - arg_debug_ccid_driver, arg_require_card_switch. - (arg_opts[]): Adjusted to arg_opt_ids changes. - (poldi_ctrl_options_cb): Likewise. - (cardinfo_NULL): New variable. - (cmd_test, cmd_dump, cmd_set_key): Slightly rewritte, use new scd - interface. - (main): Initialize libgcrypt secure memory, removed call to - scd_init. - - * Makefile.am: Adjusted CFLAGS/LDADD, include cmacros.am. - (poldi_ctrl_LDADD): Removed $(GPG_ERR_LDFLAGS),$(LIBUSB_LIBS); - added: $(LIBASSUAN_LIBS). - -2005-12-11 Moritz Schulte - - * poldi-ctrl.c: Removed some FIXMEs. - -2005-12-10 Moritz Schulte - - * poldi-ctrl.c (ask_user): Return ERR_NO_DATA in case of EOF while - reading username, return ERR_INV_NAME in case an empty line was - read. - (key_file_create): Print warning instead of error message in case - the key file does already exist; only change file owner in case - PWENT is non-NULL. - (main): Include new commands, removed old commands. - - (key_file_create): Open key file with O_EXCL flag set, better - error handling. - - (struct poldi_ctrl_opt): New members: cmd_register_card, - cmd_unregister_card, cmd_list_cards, cmd_associate, - cmd_disassociate; removed members: cmd_add_user, cmd_remove_user. - Implemented new commands. - - (cmd_register_card, cmd_unregister_card, cmd_list_cards, - cmd_associate, cmd_disassociate, directory_process_cb): New - functions. - (cmd_add_user, cmd_remove_user): Removed functions. - (enum arg_opt_ids): Add new symbols for new command arguments. - -2005-12-03 Moritz Schulte - - * poldi-ctrl.c: Include , . - (ask_user): New function. - (cmd_test): Mostly rewritten. - (cmd_list): Removed function body; add call to usersdb_list. - (cmd_add, cmd_remove): Stripped. - Adjusted to new usersdb API. - - * poldi-ctrl.c (cmd_add_user): Removed exit calls. - (cmd_remove_user): Likewise. - -2005-11-19 Moritz Schulte - - * poldi-ctrl.c (cmd_dump): Retrive key size information through - card_read_key, print key size. - (cmd_set_key): Adjust to card_read_key API. - -2005-11-12 Moritz Schulte - - * poldi-ctrl.c (cmd_test): Adjust to new wait_for_card() API. - (cmd_set_key, cmd_dump): Adjust to new card_info() API. - - * Makefile.am (poldi_ctrl_CFLAGS): Added include path: - $(top_srcdir)/src/common. - -2005-10-31 Moritz Schulte - - * poldi-ctrl.c (cmd_test): Adjusted to new wait_for_card() API. - (conversation): New function. - Use authenticate() instead of duplicating the authentication - mechanism. - (cmd_dump): Retrieve and print signing key fingerprint. - -2005-10-29 Moritz Schulte - - * poldi-ctrl.c (cmd_remove_user): Print a warning instead of an - error in case the serial number could not be looked up; set ERR to - 0 in this case and only try to remove key file in case SERIALNO is - non-zero. - (cmd_remove_user): Make sure to lookup the serial number before - removing the user from the user database. - -2005-10-26 Moritz Schulte - - * poldi-ctrl.c (poldi_ctrl_options_cb): Use gpg_error_t instead of - gpg_err_code_t. - (cmd_test): Do not call card_close() before "out" label, only - after "out" label. - (cmd_add_user): Recognize situations of adding duplicates much - better; new local variable: skip_userdb. Added plenty of log - messages and comments. - (cmd_set_key): Do not call card_close() before "out" label, only - after "out" label. - (cmd_show_key): New local variable: KEY_SEXP; convert key from - string into s-expression representation and back, so that the user - sees the key in a standard format. - (cmd_remove_user): New local variable; NENTRIES_REMOVED; adjust to - new usersdb_remove_entry() interface. - (main): New local variable: NCOMMANDS; differentiate case of no - command being given from that of too many commands being given; be - more verbose. - (arg_opts): Include special codes in order to seperate commands - from options. - -2005-10-23 Moritz Schulte - - * poldi-ctrl.c (cmd_remove_user): Be more verbose (through jnlib - logging). - Removed dump-shadowed-key command. - (key_file_create): Replaced parameter ACCOUNT with PWENT. - (cmd_add_user): Pass PWENT to key_file_create instead of ACCOUNT. - (cmd_list_users): New local variable LINE_NUMBERS, use it for - error reporting, do not bail out on corrupt lines. - -2005-10-16 Moritz Schulte - - * poldi-ctrl.c (key_file_create, key_file_remove): Re-ordered functions. - (key_file_create, key_file_remove, cmd_test, cmd_set_key) - (cmd_show_key): Use key_filename_construct() instead of - make_filename() directly. - -2005-10-08 Moritz Schulte - - * poldi-ctrl.c: Remove `fake-wait-for-card'-feature. - -2005-10-01 Moritz Schulte - - * poldi-ctrl.c (struct poldi_ctrl_opt): New member: WAIT_TIMEOUT. - (poldi_ctrl_opt): Exten struct initialization. - (arg_opt_ids): New entry: ARG_WAIT_TIMEOUT. - (arg_opts): New entry for ARG_WAIT_TIMEOUT. - (poldi_ctrl_options_cb): Handle ARG_WAIT_TIMEOUT. - (cmd_test): Pass WAIT_TIMEOUT to card_init. - -2005-09-30 Moritz Schulte - - * poldi-ctrl.c (struct poldi_ctrl_opt): Remove unnecessary, rather - annoying const attributes. - (cmd_add_user): Likewise. - -2005-09-27 Moritz Schulte - - * poldi-ctrl.c: Adjust to new card_init API; pass zero timeout. - -2005-07-26 Moritz Schulte - - * poldi-ctrl.c (cmd_test): Remove unnecessary const attributes and - cast. - (cmd_dump): Likewise. - (cmd_remove_user): Likewise. - (cmd_set_key): Likewise. - Updated to use new support.h API. - (cmd_add_user): Fail, if specified serial number does already - exist in database. - (cmd_add_user): Fail, if specified user does not exist on system. - (poldi_ctrl_options_cb): Better interaction with jnlib in respect - to error propagation. - (key_file_remove): Do not return error in case of ENOENT. - -2005-07-13 Moritz Schulte - - * poldi-ctrl.c: Adjust to new card_info() API, use version - information in order to figure out if CHV3 is necessary for public - key retrival. - -2005-07-12 Moritz Schulte - - * poldi-ctrl.c (cmd_show_key): Only print KEY_STRING, if non-NULL. - -2005-01-30 Moritz Schulte - - * poldi-ctrl.c (sexp_to_string): New function. - -2004-11-29 Moritz Schulte - - * poldi-ctrl.c: Fix contact address. - -2004-11-27 Moritz Schulte - - * poldi-ctrl.c (cmd_test): Adjust card_init caller. - (cmd_dump): Likewise. - (cmd_set_key): Likewise. - Implement require-card-switch option. - (cmd_test): Do not require that the uid of the current process is - equal to the one of the user to test authentication for. diff --git a/src/ctrl/Makefile.am b/src/ctrl/Makefile.am deleted file mode 100644 index 776c781..0000000 --- a/src/ctrl/Makefile.am +++ /dev/null @@ -1,40 +0,0 @@ -# Copyright (C) 2005, 2007, 2008 g10 Code GmbH -# -# This file is part of Poldi. -# -# Poldi is free software; you can redistribute it and/or modify it -# under the terms of the GNU General Public License as published by -# the Free Software Foundation; either version 2 of the License, or -# (at your option) any later version. -# -# Poldi is distributed in the hope that it will be useful, but WITHOUT -# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY -# or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public -# License for more details. -# -# You should have received a copy of the GNU General Public License -# along with this program; if not, write to the Free Software -# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA -# 02111-1307, USA - -AM_CPPFLAGS = -include $(top_srcdir)/am/cmacros.am - -bin_PROGRAMS = poldi-ctrl - -poldi_ctrl_SOURCES = poldi-ctrl.c -poldi_ctrl_CFLAGS = \ - -Wall \ - -I$(top_builddir) \ - -I$(top_srcdir)/src \ - -I$(top_builddir)/src \ - -I$(top_srcdir)/util \ - -I$(top_srcdir)/src/assuan \ - $(GPG_ERROR_CFLAGS) \ - $(LIBGCRYPT_CFLAGS) - -poldi_ctrl_LDADD = \ - ../scd/libscd.a ../util/libpoldi-util.a ../assuan/libassuan.a \ - $(LIBGCRYPT_LDFLAGS) \ - $(LIBGCRYPT_LIBS) \ - $(GPG_ERROR_LIBS) diff --git a/src/ctrl/poldi-ctrl.c b/src/ctrl/poldi-ctrl.c deleted file mode 100644 index 3dc22f5..0000000 --- a/src/ctrl/poldi-ctrl.c +++ /dev/null @@ -1,375 +0,0 @@ -/* poldi-ctrl.c - Poldi maintaince tool - Copyright (C) 2004, 2005, 2007, 2008 g10 Code GmbH. - - This file is part of Poldi. - - Poldi is free software; you can redistribute it and/or modify it - under the terms of the GNU general Public License as published by - the Free Software Foundation; either version 2 of the License, or - (at your option) any later version. - - Poldi is distributed in the hope that it will be useful, but - WITHOUT ANY WARRANTY; without even the implied warranty of - MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU - Lesser General Public License for more details. - - You should have received a copy of the GNU Lesser General Public - License along with this program; if not, write to the Free Software - Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA - 02111-1307, USA. */ - -#include - -#include -#include -#include -#include -#include - -#include - -#include "util/simpleparse.h" -#include "util/simplelog.h" -#include "util/support.h" -#include "util/defs.h" -#include "util/util.h" -#include "scd/scd.h" - -/* We use the Libgcrypt memory allocator. */ -#define xtrymalloc(n) gcry_malloc(n) -#define xtrymalloc_secure(n) gcry_malloc_secure(n) -#define xtrystrdup(p) gcry_strdup(p) -#define xtryrealloc(p,n) gcry_realloc(p,n) -#define xfree(p) gcry_free(p) - - - -/* Global flags. */ -struct poldi_ctrl_opt -{ - int cmd_dump; - int cmd_print_key; - int cmd_print_serialno; -} poldi_ctrl_opt; - -/* Handle for simplelog subsystem. */ -static log_handle_t loghandle; - -/* Handle for scd access subsystem. */ -static scd_context_t scd_ctx; - -/* Struct holding card info. */ -static struct scd_cardinfo scd_cardinfo; - -/* Set defaults. */ -struct poldi_ctrl_opt poldi_ctrl_opt = - { - 0, - 0, - 0 - }; - -enum opt_ids - { - opt_none, - opt_dump, - opt_print_key, - opt_print_serialno, - opt_debug - }; - -static simpleparse_opt_spec_t opt_specs[] = - { - /* Commands: */ - { opt_dump, "dump", - 'd', SIMPLEPARSE_ARG_NONE, 0, N_("Dump certain card information") }, - { opt_print_key, "print-key", - 'k', SIMPLEPARSE_ARG_NONE, 0, N_("Print authentication key from card") }, - { opt_print_serialno, "print-serialno", - 's', SIMPLEPARSE_ARG_NONE, 0, N_("Print serial number from card") }, - - /* Options: */ - { opt_debug, "debug", - 0, SIMPLEPARSE_ARG_NONE, 0, N_("Enable debugging mode") }, - { 0 } - }; - - - -/* Callback for parsing of command-line arguments. */ -static gpg_error_t -poldi_ctrl_options_cb (void *cookie, - simpleparse_opt_spec_t spec, const char *arg) -{ - if (spec.id == opt_dump) - poldi_ctrl_opt.cmd_dump = 1; - else if (spec.id == opt_print_key) - poldi_ctrl_opt.cmd_print_key = 1; - else if (spec.id == opt_print_serialno) - poldi_ctrl_opt.cmd_print_serialno = 1; - else if (spec.id == opt_debug) - log_set_min_level (loghandle, LOG_LEVEL_DEBUG); - - return 0; -} - - - -/* - * Command functions. - */ - - - - -/* Retrieve authentication key from card through the SCDaemon context - CTX and store it as a S-Expression c-string in *KEY_STRING. - Returns proper error code. */ -static gpg_error_t -retrieve_key (scd_context_t ctx, char **key_string) -{ - gcry_sexp_t key; - char *key_s; - gpg_error_t err; - - *key_string = NULL; - key = NULL; - key_s = NULL; - - /* Retrieve key from card. */ - err = scd_readkey (ctx, "OPENPGP.3", &key); - if (err) - { - log_msg_error (loghandle, - "failed to retrieve key from card: %s", - gpg_strerror (err)); - goto out; - } - - /* Convert key into a string. */ - err = sexp_to_string (key, &key_s); - if (err) - { - log_msg_error (loghandle, - "failed to convert key S-Expression " - "into C-String: %s", - gpg_strerror (err)); - goto out; - } - - *key_string = key_s; - - out: - - gcry_sexp_release (key); - - return err; -} - -/* Implementation of `dump' command; dumps information from card. */ -static gpg_error_t -cmd_dump (void) -{ - char *key_s; - gpg_error_t err; - char fpr[41]; - - key_s = NULL; - - /* Retrieve key from card. */ - - err = retrieve_key (scd_ctx, &key_s); - if (err) - { - log_msg_error (loghandle, "failed to retrieve key from card: %s", - gpg_strerror (err)); - goto out; - } - - bin2hex (scd_cardinfo.fpr3, 20, fpr); - - printf ("Serial number: %s\n" - "Signing key fingerprint: %s\n" - "Key:\n%s\n", - scd_cardinfo.serialno, fpr, key_s); - - out: - - gcry_free (key_s); - - return err; -} - -/* Implementation of `print-key' command; dumps information from card. */ -static gpg_error_t -cmd_print_key (void) -{ - char *key_s; - gpg_error_t err; - - key_s = NULL; - - /* Retrieve key from card. */ - - err = retrieve_key (scd_ctx, &key_s); - if (err) - { - log_msg_error (loghandle, "failed to retrieve key from card: %s", - gpg_strerror (err)); - goto out; - } - - printf ("%s", key_s); - - out: - - gcry_free (key_s); - - return err; -} - -/* Implementation of `print-serialno' command. */ -static gpg_error_t -cmd_print_serialno (void) -{ - printf ("%s\n", scd_cardinfo.serialno); - return 0; -} - -static const char * -i18n_cb (void *cookie, const char *msg) -{ - return _(msg); -} - -/* Main. */ -int -main (int argc, const char **argv) -{ - simpleparse_handle_t parsehandle; - unsigned int ncommands; - gpg_error_t err; - - /** Initialize. **/ - - assert (argc > 0); - - /* I18n. */ - setlocale (LC_ALL, ""); - bindtextdomain (PACKAGE, LOCALEDIR); - textdomain (PACKAGE); - - gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0); - - /* Initialize logging. */ - - err = log_create (&loghandle); - if (err) - { - fprintf (stderr, _("failed to initialize logging: %s\n"), - gpg_strerror (err)); - exit (1); - } - - err = log_set_backend_stream (loghandle, stderr); - if (err) - { - fprintf (stderr, _("failed to set logging backend: %s\n"), - gpg_strerror (err)); - exit (1); - } - - log_set_prefix (loghandle, "poldi-ctrl:"); - log_set_flags (loghandle, LOG_FLAG_WITH_PREFIX); - - /* Parse arguments. */ - - err = simpleparse_create (&parsehandle); - if (err) - goto out; - - simpleparse_set_loghandle (parsehandle, loghandle); - simpleparse_set_streams (parsehandle, stdout, stderr); - simpleparse_set_parse_cb (parsehandle, poldi_ctrl_options_cb, NULL); - simpleparse_set_i18n_cb (parsehandle, i18n_cb, NULL); - err = simpleparse_set_specs (parsehandle, opt_specs); - if (err) - goto out; - - simpleparse_set_name (parsehandle, "poldi-ctrl"); - simpleparse_set_package (parsehandle, "Poldi"); - simpleparse_set_version (parsehandle, PACKAGE_VERSION); - simpleparse_set_bugaddress (parsehandle, PACKAGE_BUGREPORT); - simpleparse_set_description (parsehandle, "Command line utility for Poldi"); - simpleparse_set_copyright (parsehandle, - "Copyright (C) 2008 g10 Code GmbH\n" - "License GPLv3+: GNU GPL version 3 or later \n" - "This is free software: you are free to change and redistribute it.\n" - "There is NO WARRANTY, to the extent permitted by law."); - - /* Parse command-line arguments. */ - err = simpleparse_parse (parsehandle, 0, argc - 1, argv + 1, NULL); - /* This causes compiler warning, who is correct? */ - if (err) - { - log_msg_error (loghandle, - _("parsing argument vector failed: %s"), - gpg_strerror (err)); - goto out; - } - - ncommands = (0 - + poldi_ctrl_opt.cmd_print_key - + poldi_ctrl_opt.cmd_print_serialno - + poldi_ctrl_opt.cmd_dump); - if (ncommands > 1) - { - log_msg_error (loghandle, - _("more than one command specified (try --help)")); - goto out; - } - else if (! ncommands) - { - log_msg_error (loghandle, _("no command specified (try --help)")); - goto out; - } - - /* Connect to scdaemon. */ - - err = scd_connect (&scd_ctx, NULL, getenv ("GPG_AGENT_INFO"), - NULL, NULL, 0, loghandle); - if (err) - { - log_msg_error (loghandle, _("failed to connect to scdaemon: %s"), - gpg_strerror (err)); - goto out; - } - - err = scd_learn (scd_ctx, &scd_cardinfo); - if (err) - { - log_msg_error (loghandle, - _("failed to retrieve smartcard data: %s"), - gpg_strerror (err)); - goto out; - } - - if (poldi_ctrl_opt.cmd_dump) - err = cmd_dump (); - else if (poldi_ctrl_opt.cmd_print_key) - err = cmd_print_key (); - else if (poldi_ctrl_opt.cmd_print_serialno) - err = cmd_print_serialno (); - - out: - - if (parsehandle) - simpleparse_destroy (parsehandle); - if (scd_ctx) - scd_disconnect (scd_ctx); - scd_release_cardinfo (scd_cardinfo); - - return err ? EXIT_FAILURE : EXIT_SUCCESS; -} - -/* END */ ----------------------------------------------------------------------- Summary of changes: conf/users.skel | 6 +- doc/poldi.texi | 13 +- po/POTFILES.in | 1 - po/de.po | 49 ------- po/poldi.pot | 49 ------- src/Makefile.am | 2 +- src/ctrl/ChangeLog | 310 ----------------------------------------- src/ctrl/Makefile.am | 40 ------ src/ctrl/poldi-ctrl.c | 375 -------------------------------------------------- src/pam/pam_poldi.c | 6 +- src/scd/scd.c | 224 ++---------------------------- src/scd/scd.h | 13 +- 12 files changed, 31 insertions(+), 1057 deletions(-) delete mode 100644 src/ctrl/ChangeLog delete mode 100644 src/ctrl/Makefile.am delete mode 100644 src/ctrl/poldi-ctrl.c hooks/post-receive -- PAM for the OpenPGP card http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 12:42:16 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Fri, 04 Nov 2016 12:42:16 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.7.1-22-g3509cf2 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via 3509cf2f9846360848b6c08d36cbca18373c935e (commit) via 512de91f9a8da8f491e09653eb4b5bdd0a027198 (commit) via 4d3f33d0e9d960df2c34fb4d215987ab4d36111c (commit) via 23979b9be5a6028e3e9cafc3aff632bc720b81f2 (commit) from df08a0ca3f029b06b7e3a6bd63330df5cb96585a (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 3509cf2f9846360848b6c08d36cbca18373c935e Author: Andre Heinecke Date: Fri Nov 4 12:33:57 2016 +0100 cpp: Add API for swdb queries * lang/cpp/src/swdbresult.cpp, lang/cpp/src/swdbresult.h (SwdbResult): New. * lang/cpp/src/Makefile.am: Update accordingly. diff --git a/NEWS b/NEWS index 4d2a110..1cf401e 100644 --- a/NEWS +++ b/NEWS @@ -16,6 +16,7 @@ Noteworthy changes in version 1.7.2 (unreleased) qt: DN::Attribute NEW. cpp: EngineInfo::Version::Version(const char*) NEW. cpp: EngineInfo::Version::Version() NEW. + cpp: SwdbResult NEW. Noteworthy changes in version 1.7.1 (2016-10-18) diff --git a/lang/cpp/src/Makefile.am b/lang/cpp/src/Makefile.am index 8ea99f5..608d2d9 100644 --- a/lang/cpp/src/Makefile.am +++ b/lang/cpp/src/Makefile.am @@ -33,7 +33,7 @@ main_sources = \ gpgsetownertrusteditinteractor.cpp gpgsignkeyeditinteractor.cpp \ gpgadduserideditinteractor.cpp defaultassuantransaction.cpp \ scdgetinfoassuantransaction.cpp gpgagentgetinfoassuantransaction.cpp \ - vfsmountresult.cpp configuration.cpp tofuinfo.cpp + vfsmountresult.cpp configuration.cpp tofuinfo.cpp swdbresult.cpp gpgmepp_headers = \ configuration.h context.h data.h decryptionresult.h \ @@ -45,7 +45,7 @@ gpgmepp_headers = \ importresult.h keygenerationresult.h key.h keylistresult.h \ notation.h result.h scdgetinfoassuantransaction.h signingresult.h \ trustitem.h verificationresult.h vfsmountresult.h gpgmepp_export.h \ - tofuinfo.h + tofuinfo.h swdbresult.h private_gpgmepp_headers = \ result_p.h context_p.h util.h callbacks.h data_p.h diff --git a/lang/cpp/src/swdbresult.cpp b/lang/cpp/src/swdbresult.cpp new file mode 100644 index 0000000..3afa8b5 --- /dev/null +++ b/lang/cpp/src/swdbresult.cpp @@ -0,0 +1,231 @@ +/* swdbresult.cpp - wraps gpgme swdb result / query + Copyright (C) 2016 Intevation GmbH + + This file is part of GPGME++. + + GPGME++ is free software; you can redistribute it and/or + modify it under the terms of the GNU Library General Public + License as published by the Free Software Foundation; either + version 2 of the License, or (at your option) any later version. + + GPGME++ is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU Library General Public License for more details. + + You should have received a copy of the GNU Library General Public License + along with GPGME++; see the file COPYING.LIB. If not, write to the + Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, + Boston, MA 02110-1301, USA. +*/ + +#ifdef HAVE_CONFIG_H + #include "config.h" +#endif + +#include "swdbresult.h" + +#include + +#include "error.h" + +#include "gpgme.h" + +class GpgME::SwdbResult::Private +{ +public: + Private() {} + Private(gpgme_query_swdb_result_t result) + : mResult(result ? new _gpgme_op_query_swdb_result (*result) : nullptr) + { + if (!result) { + mResult->name = nullptr; + return; + } + if (result->name) { + mResult->name = strdup(result->name); + } + if (result->version) { + mVersion = result->version; + } + if (result->iversion) { + mIVersion = result->iversion; + } + } + + Private(const Private &other) + : mResult(other.mResult) + { + if (mResult && mResult->name) { + mResult->name = strdup(mResult->name); + } + mVersion = other.mVersion; + mIVersion = other.mIVersion; + } + + ~Private() + { + if (mResult) { + std::free(mResult->name); + delete mResult; + } + } + + GpgME::EngineInfo::Version mVersion; + GpgME::EngineInfo::Version mIVersion; + gpgme_query_swdb_result_t mResult; +}; + +GpgME::SwdbResult::SwdbResult(gpgme_query_swdb_result_t result) + : d(new Private(result)) +{ +} + +GpgME::SwdbResult::SwdbResult() : d() +{ +} + +bool GpgME::SwdbResult::isNull() const +{ + return !d || !d->mResult; +} + +std::string GpgME::SwdbResult::name() const +{ + if (isNull() || !d->mResult->name) { + return std::string(); + } + return d->mResult->name; +} + +GpgME::EngineInfo::Version GpgME::SwdbResult::version() const +{ + if (isNull()) { + return GpgME::EngineInfo::Version(); + } + return d->mVersion; +} + +GpgME::EngineInfo::Version GpgME::SwdbResult::installedVersion() const +{ + if (isNull()) { + return GpgME::EngineInfo::Version(); + } + return d->mIVersion; +} + +unsigned long GpgME::SwdbResult::created() const +{ + return isNull() ? 0 : d->mResult->created; +} + +unsigned long GpgME::SwdbResult::retrieved() const +{ + return isNull() ? 0 : d->mResult->retrieved; +} + +unsigned long GpgME::SwdbResult::releaseDate() const +{ + return isNull() ? 0 : d->mResult->reldate; +} + +bool GpgME::SwdbResult::warning() const +{ + return isNull() ? 0 : d->mResult->warning; +} + +bool GpgME::SwdbResult::update() const +{ + return isNull() ? 0 : d->mResult->update; +} + +bool GpgME::SwdbResult::noinfo() const +{ + return isNull() ? 0 : d->mResult->noinfo; +} + +bool GpgME::SwdbResult::unknown() const +{ + return isNull() ? 0 : d->mResult->unknown; +} + +bool GpgME::SwdbResult::error() const +{ + return isNull() ? 0 : d->mResult->error; +} + +bool GpgME::SwdbResult::tooOld() const +{ + return isNull() ? 0 : d->mResult->tooold; +} + +bool GpgME::SwdbResult::urgent() const +{ + return isNull() ? 0 : d->mResult->urgent; +} + +std::vector GpgME::SwdbResult::query(const char *name, + const char *iversion, + Error *err) +{ + std::vector ret; + gpgme_ctx_t ctx; + gpgme_error_t gpgerr = gpgme_new(&ctx); + + if (gpgerr) { + if (err) { + *err = Error (gpgerr); + } + return ret; + } + + gpgerr = gpgme_set_protocol(ctx, GPGME_PROTOCOL_GPGCONF); + + if (gpgerr) { + if (err) { + *err = Error(gpgerr); + } + gpgme_release(ctx); + return ret; + } + + gpgerr = gpgme_op_query_swdb(ctx, name, iversion, 0); + + if (gpgerr) { + if (err) { + *err = Error(gpgerr); + } + gpgme_release(ctx); + return ret; + } + gpgme_query_swdb_result_t result = gpgme_op_query_swdb_result(ctx); + while (result) { + ret.push_back(SwdbResult(result)); + result = result->next; + } + + gpgme_release(ctx); + return ret; +} + +std::ostream &GpgME::operator<<(std::ostream &os, const GpgME::SwdbResult &result) +{ + os << "GpgME::SwdbResult("; + if (!result.isNull()) { + os << "\n name: " << result.name() + << "\n version: " << result.version() + << "\n installed: "<< result.installedVersion() + << "\n created: " << result.created() + << "\n retrieved: "<< result.retrieved() + << "\n warning: " << result.warning() + << "\n update: " << result.update() + << "\n urgent: " << result.urgent() + << "\n noinfo: " << result.noinfo() + << "\n unknown: " << result.unknown() + << "\n tooOld: " << result.tooOld() + << "\n error: " << result.error() + << "\n reldate: " << result.releaseDate() + << '\n'; + } + return os << ")\n"; +} diff --git a/lang/cpp/src/swdbresult.h b/lang/cpp/src/swdbresult.h new file mode 100644 index 0000000..e15954d --- /dev/null +++ b/lang/cpp/src/swdbresult.h @@ -0,0 +1,128 @@ +/* + swdbresult.h - wraps a gpgme swdb query / rsult + Copyright (C) 2016 Intevation GmbH + + This file is part of GPGME++. + + GPGME++ is free software; you can redistribute it and/or + modify it under the terms of the GNU Library General Public + License as published by the Free Software Foundation; either + version 2 of the License, or (at your option) any later version. + + GPGME++ is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU Library General Public License for more details. + + You should have received a copy of the GNU Library General Public License + along with GPGME++; see the file COPYING.LIB. If not, write to the + Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, + Boston, MA 02110-1301, USA. +*/ +#ifndef __GPGMEPP_SWDB_H__ +#define __GPGMEPP_SWDB_H__ + +#include "gpgmepp_export.h" + +#include "global.h" +#include "engineinfo.h" + +#include +#include +#include +#include + +namespace GpgME +{ + +class GPGMEPP_EXPORT SwdbResult +{ +public: + /* Obtain swdb results through query() */ + SwdbResult(); + explicit SwdbResult(gpgme_query_swdb_result_t result); + + /** Query the swdb to get information about updates. + * + * Runs gpgconf --query-swdb through gpgme and + * returns a list of results. + * If iversion is given as NULL a check is only done if GPGME + * can figure out the version by itself (for example when using + * "gpgme" or "gnupg"). + * + * If NULL is used for name the current gpgme version is + * checked. + * + * @param name: Name of the component to query. + * @param iversion: Optionally the installed version. + * @param err: Optional error. + */ + static std::vector query(const char *name, + const char *iversion = NULL, + Error *err = NULL); + + const SwdbResult &operator=(SwdbResult other) + { + swap(other); + return *this; + } + + void swap(SwdbResult &other) + { + using std::swap; + swap(this->d, other.d); + } + bool isNull() const; + + /* The name of the package (e.g. "gpgme", "gnupg") */ + std::string name() const; + + /* The version of the installed version. */ + EngineInfo::Version installedVersion() const; + + /* The time the online info was created. */ + unsigned long created() const; + + /* The time the online info was retrieved. */ + unsigned long retrieved() const; + + /* This bit is set if an error occured or some of the information + * in this structure may not be set. */ + bool warning() const; + + /* An update is available. */ + bool update() const; + + /* The update is important. */ + bool urgent() const; + + /* No information at all available. */ + bool noinfo() const; + + /* The package name is not known. */ + bool unknown() const; + + /* The information here is too old. */ + bool tooOld() const; + + /* Other error. */ + bool error() const; + + /* The version of the latest released version. */ + EngineInfo::Version version() const; + + /* The release date of that version. */ + unsigned long releaseDate() const; + +private: + class Private; + std::shared_ptr d; +}; + +GPGMEPP_EXPORT std::ostream &operator<<(std::ostream &os, const SwdbResult &info); + +} // namespace GpgME + +GPGMEPP_MAKE_STD_SWAP_SPECIALIZATION(SwdbResult) + +#endif commit 512de91f9a8da8f491e09653eb4b5bdd0a027198 Author: Andre Heinecke Date: Fri Nov 4 12:29:32 2016 +0100 cpp: Add more EngineInfo::Version ctors * lang/cpp/src/engineinfo.h (EngineInfo::Version::Version(const char*)), (EngineInfo::Version::Version()): New. diff --git a/NEWS b/NEWS index e43aa30..4d2a110 100644 --- a/NEWS +++ b/NEWS @@ -14,6 +14,8 @@ Noteworthy changes in version 1.7.2 (unreleased) gpgme_query_swdb_result_t NEW. qt: DN NEW. qt: DN::Attribute NEW. + cpp: EngineInfo::Version::Version(const char*) NEW. + cpp: EngineInfo::Version::Version() NEW. Noteworthy changes in version 1.7.1 (2016-10-18) diff --git a/lang/cpp/src/engineinfo.h b/lang/cpp/src/engineinfo.h index 72e125c..aa6fcca 100644 --- a/lang/cpp/src/engineinfo.h +++ b/lang/cpp/src/engineinfo.h @@ -40,6 +40,12 @@ public: struct Version { int major, minor, patch; + Version() + { + major = 0; + minor = 0; + patch = 0; + } Version(const std::string& version) { @@ -51,6 +57,16 @@ public: } } + Version(const char *version) + { + if (!version || + std::sscanf(version, "%d.%d.%d", &major, &minor, &patch) != 3) { + major = 0; + minor = 0; + patch = 0; + } + } + bool operator < (const Version& other) { if (major < other.major) commit 4d3f33d0e9d960df2c34fb4d215987ab4d36111c Author: Andre Heinecke Date: Fri Nov 4 12:26:46 2016 +0100 cpp: Don't include gpgme.h in tofuinfo header * lang/cpp/src/tofuinfo.h: Don't include gpgme.h -- No public header should include gpgme.h diff --git a/lang/cpp/src/tofuinfo.h b/lang/cpp/src/tofuinfo.h index c09c82a..7165d05 100644 --- a/lang/cpp/src/tofuinfo.h +++ b/lang/cpp/src/tofuinfo.h @@ -25,8 +25,6 @@ #include "gpgmepp_export.h" -#include "gpgme.h" - #include "global.h" #include commit 23979b9be5a6028e3e9cafc3aff632bc720b81f2 Author: Andre Heinecke Date: Fri Nov 4 12:24:34 2016 +0100 cpp: Extend gpgmefw for tofuinfo and swdb query * lang/cpp/src/gpgmefw.h (gpgme_tofu_info_t) (gpgme_query_swdb_result_t): New forwards. diff --git a/lang/cpp/src/gpgmefw.h b/lang/cpp/src/gpgmefw.h index cbdd444..e3c9b18 100644 --- a/lang/cpp/src/gpgmefw.h +++ b/lang/cpp/src/gpgmefw.h @@ -67,4 +67,10 @@ typedef struct gpgme_conf_comp *gpgme_conf_comp_t; struct gpgme_conf_arg; typedef struct gpgme_conf_arg *gpgme_conf_arg_t; +struct _gpgme_tofu_info; +typedef struct _gpgme_tofu_info *gpgme_tofu_info_t; + +struct _gpgme_op_query_swdb_result; +typedef struct _gpgme_op_query_swdb_result *gpgme_query_swdb_result_t; + #endif // __GPGMEPP_GPGMEFW_H__ ----------------------------------------------------------------------- Summary of changes: NEWS | 3 + lang/cpp/src/Makefile.am | 4 +- lang/cpp/src/engineinfo.h | 16 +++ lang/cpp/src/gpgmefw.h | 6 ++ lang/cpp/src/swdbresult.cpp | 231 ++++++++++++++++++++++++++++++++++++++++++++ lang/cpp/src/swdbresult.h | 128 ++++++++++++++++++++++++ lang/cpp/src/tofuinfo.h | 2 - 7 files changed, 386 insertions(+), 4 deletions(-) create mode 100644 lang/cpp/src/swdbresult.cpp create mode 100644 lang/cpp/src/swdbresult.h hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 13:51:36 2016 From: cvs at cvs.gnupg.org (by Justus Winter) Date: Fri, 04 Nov 2016 13:51:36 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-322-g1f45878 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 1f45878a72f23d4bae08d73b614096b485f35274 (commit) via 43f8006f5c75e3d15fe200e2fa41587a73bfb07b (commit) from cd00b07ec26c3408e6aee66957b08c6fd319b700 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 1f45878a72f23d4bae08d73b614096b485f35274 Author: Justus Winter Date: Fri Nov 4 13:45:30 2016 +0100 gpgscm: Fix printing strings containing zero bytes. * tests/gpgscm/scheme.c (atom2str): Fix computing the length of Scheme strings. Scheme strings can contain zero bytes. Signed-off-by: Justus Winter diff --git a/tests/gpgscm/scheme.c b/tests/gpgscm/scheme.c index 0e31dc5..44dd165 100644 --- a/tests/gpgscm/scheme.c +++ b/tests/gpgscm/scheme.c @@ -2041,7 +2041,9 @@ static void atom2str(scheme *sc, pointer l, int f, char **pp, int *plen) { } } else if (is_string(l)) { if (!f) { - p = strvalue(l); + *pp = strvalue(l); + *plen = strlength(l); + return; } else { /* Hack, uses the fact that printing is needed */ *pp=sc->strbuff; *plen=0; commit 43f8006f5c75e3d15fe200e2fa41587a73bfb07b Author: Justus Winter Date: Fri Nov 4 12:08:20 2016 +0100 gpgscm: Implement 'atexit'. * tests/gpgscm/ffi.scm (throw): Run *run-atexit-handlers* when terminating the interpreter. (*atexit-handlers*): New variable. (*run-atexit-handlers*): New function. (atexit): Likewise. * tests/gpgscm/main.c (main): Run *run-atexit-handlers* at normal interpreter shutdown. Signed-off-by: Justus Winter diff --git a/tests/gpgscm/ffi.scm b/tests/gpgscm/ffi.scm index 72a2a8f..fb18538 100644 --- a/tests/gpgscm/ffi.scm +++ b/tests/gpgscm/ffi.scm @@ -57,6 +57,7 @@ ((more-handlers?) (apply (pop-handler) x)) ((and (= 2 (length x)) (equal? *interpreter-exit* (car x))) + (*run-atexit-handlers*) (_exit (cadr x))) (else (apply error x)))) @@ -64,3 +65,20 @@ ;; Terminate the process returning STATUS to the parent. (define (exit status) (throw *interpreter-exit* status)) + +;; A list of functions run at interpreter shutdown. +(define *atexit-handlers* (list)) + +;; Execute all these functions. +(define (*run-atexit-handlers*) + (unless (null? *atexit-handlers*) + (let ((proc (car *atexit-handlers*))) + ;; Drop proc from the list so that it will not get + ;; executed again even if it raises an exception. + (set! *atexit-handlers* (cdr *atexit-handlers*)) + (proc) + (*run-atexit-handlers*)))) + +;; Register a function to be run at interpreter shutdown. +(define (atexit proc) + (set! *atexit-handlers* (cons proc *atexit-handlers*))) diff --git a/tests/gpgscm/main.c b/tests/gpgscm/main.c index f7c6b0d..70ce855 100644 --- a/tests/gpgscm/main.c +++ b/tests/gpgscm/main.c @@ -291,6 +291,7 @@ main (int argc, char **argv) log_fatal ("%s: %s", script, gpg_strerror (err)); } + scheme_load_string (sc, "(*run-atexit-handlers*)"); scheme_deinit (sc); xfree (sc); return EXIT_SUCCESS; ----------------------------------------------------------------------- Summary of changes: tests/gpgscm/ffi.scm | 18 ++++++++++++++++++ tests/gpgscm/main.c | 1 + tests/gpgscm/scheme.c | 4 +++- 3 files changed, 22 insertions(+), 1 deletion(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Nov 4 14:54:49 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Fri, 04 Nov 2016 14:54:49 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-323-g2312a7f Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 2312a7f836b89b812298f25cf50ba56c6ce1806c (commit) from 1f45878a72f23d4bae08d73b614096b485f35274 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 2312a7f836b89b812298f25cf50ba56c6ce1806c Author: Werner Koch Date: Fri Nov 4 14:51:19 2016 +0100 indent: Move comments inside the block. -- This fixes a few if (foo) /* A comment with several lines. */ { } Which has the problem that the block is visually not related to the "if" and might thus falsely be considered a standalone block. Also adds a asterisk on the left side of longer comments. Signed-off-by: Werner Koch diff --git a/g10/getkey.c b/g10/getkey.c index 926575d..b844c16 100644 --- a/g10/getkey.c +++ b/g10/getkey.c @@ -1213,25 +1213,26 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, is_mbox = is_valid_mailbox (name); /* The auto-key-locate feature works as follows: there are a number - of methods to look up keys. By default, the local keyring is - tried first. Then, each method listed in the --auto-key-locate is - tried in the order it appears. - - This can be changed as follows: - - - if nodefault appears anywhere in the list of options, then - the local keyring is not tried first, or, - - - if local appears anywhere in the list of options, then the - local keyring is not tried first, but in the order in which - it was listed in the --auto-key-locate option. - - Note: we only save the search context in RETCTX if the local - method is the first method tried (either explicitly or - implicitly). */ + * of methods to look up keys. By default, the local keyring is + * tried first. Then, each method listed in the --auto-key-locate is + * tried in the order it appears. + * + * This can be changed as follows: + * + * - if nodefault appears anywhere in the list of options, then + * the local keyring is not tried first, or, + * + * - if local appears anywhere in the list of options, then the + * local keyring is not tried first, but in the order in which + * it was listed in the --auto-key-locate option. + * + * Note: we only save the search context in RETCTX if the local + * method is the first method tried (either explicitly or + * implicitly). */ if (!no_akl) - /* auto-key-locate is enabled. */ { + /* auto-key-locate is enabled. */ + /* nodefault is true if "nodefault" or "local" appear. */ for (akl = opt.auto_key_locate; akl; akl = akl->next) if (akl->type == AKL_NODEFAULT || akl->type == AKL_LOCAL) @@ -1251,24 +1252,26 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, } if (!nodefault) - /* "nodefault" didn't occur. Thus, "local" is implicitly the - first method to try. */ - anylocalfirst = 1; + { + /* "nodefault" didn't occur. Thus, "local" is implicitly the + * first method to try. */ + anylocalfirst = 1; + } if (nodefault && is_mbox) - /* Either "nodefault" or "local" (explicitly) appeared in the auto - key locate list and NAME appears to be an email address. Don't - try the local keyring. */ { + /* Either "nodefault" or "local" (explicitly) appeared in the + * auto key locate list and NAME appears to be an email address. + * Don't try the local keyring. */ rc = GPG_ERR_NO_PUBKEY; } else - /* Either "nodefault" and "local" don't appear in the auto key - locate list (in which case we try the local keyring first) or - NAME does not appear to be an email address (in which case we - only try the local keyring). In this case, lookup NAME in the - local keyring. */ { + /* Either "nodefault" and "local" don't appear in the auto key + * locate list (in which case we try the local keyring first) or + * NAME does not appear to be an email address (in which case we + * only try the local keyring). In this case, lookup NAME in + * the local keyring. */ add_to_strlist (&namelist, name); rc = key_byname (retctx, namelist, pk, 0, include_unusable, ret_keyblock, ret_kdbhd); @@ -1277,11 +1280,11 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, /* If the requested name resembles a valid mailbox and automatic retrieval has been enabled, we try to import the key. */ if (gpg_err_code (rc) == GPG_ERR_NO_PUBKEY && !no_akl && is_mbox) - /* NAME wasn't present in the local keyring (or we didn't try the - local keyring). Since the auto key locate feature is enabled - and NAME appears to be an email address, try the auto locate - feature. */ { + /* NAME wasn't present in the local keyring (or we didn't try + * the local keyring). Since the auto key locate feature is + * enabled and NAME appears to be an email address, try the auto + * locate feature. */ for (akl = opt.auto_key_locate; akl; akl = akl->next) { unsigned char *fpr = NULL; @@ -1349,9 +1352,9 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, case AKL_KEYSERVER: /* Strictly speaking, we don't need to only use a valid - mailbox for the getname search, but it helps cut down - on the problem of searching for something like "john" - and getting a whole lot of keys back. */ + * mailbox for the getname search, but it helps cut down + * on the problem of searching for something like "john" + * and getting a whole lot of keys back. */ if (keyserver_any_configured (ctrl)) { mechanism = "keyserver"; @@ -1382,12 +1385,12 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, } /* Use the fingerprint of the key that we actually fetched. - This helps prevent problems where the key that we fetched - doesn't have the same name that we used to fetch it. In - the case of CERT and PKA, this is an actual security - requirement as the URL might point to a key put in by an - attacker. By forcing the use of the fingerprint, we - won't use the attacker's key here. */ + * This helps prevent problems where the key that we fetched + * doesn't have the same name that we used to fetch it. In + * the case of CERT and PKA, this is an actual security + * requirement as the URL might point to a key put in by an + * attacker. By forcing the use of the fingerprint, we + * won't use the attacker's key here. */ if (!rc && fpr) { char fpr_string[MAX_FINGERPRINT_LEN * 2 + 1]; @@ -1407,7 +1410,7 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, } else if (!rc && !fpr && !did_akl_local) { /* The acquisition method said no failure occurred, but - it didn't return a fingerprint. That's a failure. */ + * it didn't return a fingerprint. That's a failure. */ no_fingerprint = 1; rc = GPG_ERR_NO_PUBKEY; } @@ -1416,9 +1419,9 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, if (!rc && !did_akl_local) { /* There was no error and we didn't do a local lookup. - This means that we imported a key into the local - keyring. Try to read the imported key from the - keyring. */ + * This means that we imported a key into the local + * keyring. Try to read the imported key from the + * keyring. */ if (retctx) { getkey_end (*retctx); @@ -1461,6 +1464,7 @@ get_pubkey_byname (ctrl_t ctrl, GETKEY_CTX * retctx, PKT_public_key * pk, return rc; } + /* Comparison machinery for get_best_pubkey_byname. */ @@ -1477,26 +1481,30 @@ struct pubkey_cmp_cookie capable of encryption. */ }; + /* Then we have a series of helper functions. */ static int key_is_ok (const PKT_public_key *key) { - return ! key->has_expired && ! key->flags.revoked - && key->flags.valid && ! key->flags.disabled; + return (! key->has_expired && ! key->flags.revoked + && key->flags.valid && ! key->flags.disabled); } + static int uid_is_ok (const PKT_public_key *key, const PKT_user_id *uid) { return key_is_ok (key) && ! uid->is_revoked; } + static int subkey_is_ok (const PKT_public_key *sub) { return ! sub->flags.revoked && sub->flags.valid && ! sub->flags.disabled; } + /* Finally this function compares a NEW key to the former candidate * OLD. Returns < 0 if the old key is worse, > 0 if the old key is * better, == 0 if it is a tie. */ @@ -1504,7 +1512,7 @@ static int pubkey_cmp (ctrl_t ctrl, const char *name, struct pubkey_cmp_cookie *old, struct pubkey_cmp_cookie *new, KBNODE new_keyblock) { - KBNODE n; + kbnode_t n; new->creation_time = 0; for (n = find_next_kbnode (new_keyblock, PKT_PUBLIC_SUBKEY); ----------------------------------------------------------------------- Summary of changes: g10/getkey.c | 104 ++++++++++++++++++++++++++++++++--------------------------- 1 file changed, 56 insertions(+), 48 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 03:14:44 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Sat, 05 Nov 2016 03:14:44 +0100 Subject: [git] Poldi - branch, master, updated. release-0.4.1-36-g448ca0e Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PAM for the OpenPGP card". The branch, master has been updated via 448ca0ee59007691e223f7054fb6eec2336d41df (commit) from b4280978f83971103bf54470d7084e98d125aca2 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 448ca0ee59007691e223f7054fb6eec2336d41df Author: NIIBE Yutaka Date: Sat Nov 5 11:13:32 2016 +0900 Remove src/ctrl from configure. * configure.ac: Remove src/ctrl. -- Signed-off-by: NIIBE Yutaka diff --git a/configure.ac b/configure.ac index 4e0b53a..5e87907 100644 --- a/configure.ac +++ b/configure.ac @@ -231,7 +231,6 @@ AC_CONFIG_FILES([Makefile src/util/Makefile src/util/configure-stamp src/scd/Makefile - src/ctrl/Makefile src/pam/Makefile src/pam/auth-support/Makefile src/pam/auth-method-localdb/Makefile ----------------------------------------------------------------------- Summary of changes: configure.ac | 1 - 1 file changed, 1 deletion(-) hooks/post-receive -- PAM for the OpenPGP card http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 10:58:13 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Sat, 05 Nov 2016 10:58:13 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-36-g553af04 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via 553af04cf9c103c2e2cd5085b0d5fb647a608d51 (commit) from 7b0a822460eb6f4bf28f85f38c64a86bb8f80d3d (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 553af04cf9c103c2e2cd5085b0d5fb647a608d51 Author: Werner Koch Date: Sat Nov 5 10:55:46 2016 +0100 core: Add command getinfo/flavor. * pinentry/pinentry.c: Inlcude pinentry-curses.h. (cmd_getinfo): Add sub-command "flavor" Signed-off-by: Werner Koch diff --git a/pinentry/pinentry.c b/pinentry/pinentry.c index 4a0f859..d2f4229 100644 --- a/pinentry/pinentry.c +++ b/pinentry/pinentry.c @@ -52,7 +52,10 @@ #include "password-cache.h" #ifdef INSIDE_EMACS -#include "pinentry-emacs.h" +# include "pinentry-emacs.h" +#endif +#ifdef FALLBACK_CURSES +# include "pinentry-curses.h" #endif #ifdef HAVE_W32CE_SYSTEM @@ -1414,23 +1417,50 @@ cmd_message (assuan_context_t ctx, char *line) version - Return the version of the program. pid - Return the process id of the server. + flavor - Return information about the used pinentry flavor */ static gpg_error_t cmd_getinfo (assuan_context_t ctx, char *line) { int rc; + const char *s; + char buffer[100]; if (!strcmp (line, "version")) { - const char *s = VERSION; + s = VERSION; rc = assuan_send_data (ctx, s, strlen (s)); } else if (!strcmp (line, "pid")) { - char numbuf[50]; - snprintf (numbuf, sizeof numbuf, "%lu", (unsigned long)getpid ()); - rc = assuan_send_data (ctx, numbuf, strlen (numbuf)); + snprintf (buffer, sizeof buffer, "%lu", (unsigned long)getpid ()); + rc = assuan_send_data (ctx, buffer, strlen (buffer)); + } + else if (!strcmp (line, "flavor")) + { + const char *flags; + + if (!strncmp (this_pgmname, "pinentry-", 9) && this_pgmname[9]) + s = this_pgmname + 9; + else + s = this_pgmname; + + if (0) + ; +#ifdef INSIDE_EMACS + else if (pinentry_cmd_handler == emacs_cmd_handler) + flags = ":emacs"; +#endif +#ifdef FALLBACK_CURSES + else if (pinentry_cmd_handler == curses_cmd_handler) + flags = ":curses"; +#endif + else + flags = ""; + + snprintf (buffer, sizeof buffer, "%s%s", s, flags); + rc = assuan_send_data (ctx, buffer, strlen (buffer)); } else rc = gpg_error (GPG_ERR_ASS_PARAMETER); ----------------------------------------------------------------------- Summary of changes: pinentry/pinentry.c | 40 +++++++++++++++++++++++++++++++++++----- 1 file changed, 35 insertions(+), 5 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 11:49:34 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Sat, 05 Nov 2016 11:49:34 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-47-gb945576 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via b945576fe906ffcd5bcc50b4322ef2f34d8fb89f (commit) via aa5b7bb42d5324e6f5494faaf85b24c2e161f810 (commit) via 799116010a57aec9a86c5529388111d54aff3c55 (commit) via f7b99ff5f7f78db45350308bf409ea4a9e94f161 (commit) via d0fe54d592a8d2be6fc82b26290a644bb3629214 (commit) via 102832a2c1f3ffa432e2a169791611bb3ca13a04 (commit) via 784c4e0a3acace39a4a632bf443c794752297d54 (commit) via 93b4454f4fe4d97dd89efccd64dbdd02bd002f77 (commit) via 3be5b4fabaabf86f085b0b5303a1312abb7d0617 (commit) via 19c2110557d0504c1b406bde24e86cb5eb552fc7 (commit) via 96e3c5fcf210e971fe1ba66b9127ad51144fcc49 (commit) from 553af04cf9c103c2e2cd5085b0d5fb647a608d51 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b945576fe906ffcd5bcc50b4322ef2f34d8fb89f Author: Daniel Kahn Gillmor Date: Sat Nov 5 00:44:53 2016 -0400 build: Avoid unnecessary dependency on gtk+-2 for GNOME3 development. * configure.ac: There is no reason to reject building the GNOME3 pinentry if GTK+-2 development libraries are not present. GNOME3 does not require GTK+-2. Signed-off-by: Daniel Kahn Gillmor diff --git a/configure.ac b/configure.ac index 1dfdf17..2a96ccd 100644 --- a/configure.ac +++ b/configure.ac @@ -438,14 +438,13 @@ if test "$pinentry_gtk_2" != "no" -o "$pinentry_gnome_3" != "no"; then fi dnl check if the module gtk+-2.0 exists -if test "$pinentry_gtk_2" != "no" -o "$pinentry_gnome_3" != "no"; then +if test "$pinentry_gtk_2" != "no"; then AC_MSG_CHECKING([for gtk+-2]) "${PKG_CONFIG}" --exists gtk+-2.0 if test $? -ne 0 ; then AC_MSG_RESULT([no]) AC_MSG_WARN([pkg-config could not find the module gtk+-2.0]) pinentry_gtk_2=no - pinentry_gnome_3=no else AC_MSG_RESULT([yes]) AC_MSG_CHECKING([gtk+-2 version >= 2.4.0]) @@ -455,7 +454,6 @@ if test "$pinentry_gtk_2" != "no" -o "$pinentry_gnome_3" != "no"; then if test $? -ne 0 ; then AC_MSG_WARN([building GTK+-2 pinentry disabled]) pinentry_gtk_2=no - pinentry_gnome_3=no else GTK2CFLAGS=`"${PKG_CONFIG}" --cflags gtk+-2.0` GTK2LIBS=`"${PKG_CONFIG}" --libs gtk+-2.0` @@ -465,10 +463,6 @@ if test "$pinentry_gtk_2" != "no" -o "$pinentry_gnome_3" != "no"; then then pinentry_gtk_2=yes fi - if test "$pinentry_gnome_3" != "no" - then - pinentry_gnome_3=yes - fi fi fi fi commit aa5b7bb42d5324e6f5494faaf85b24c2e161f810 Author: Daniel Kahn Gillmor Date: Sat Nov 5 00:25:12 2016 -0400 all: Prefer https:// over http:// in source where possible. -- This change cleans up as many internal web references as possible, to make them use https. In some cases, the canonical references had slightly different URLs in addition to the change in schema. Sadly, git.savannah.gnu.org is still http-only. Signed-off-by: Daniel Kahn Gillmor diff --git a/README b/README index b80d466..33f0ab4 100644 --- a/README +++ b/README @@ -3,7 +3,7 @@ PIN Entry This is a collection of simple PIN or passphrase entry dialogs which utilize the Assuan protocol as described by the aegypten project; see -http://www.gnupg.org/aegypten/ for details. +https://www.gnupg.org/aegypten/ for details. There are programs for different toolkits available. For all GUIs it is automatically detected which modules can be built, but it can also diff --git a/autogen.sh b/autogen.sh index 7effd56..37edfc6 100755 --- a/autogen.sh +++ b/autogen.sh @@ -422,7 +422,7 @@ if [ -d .git ]; then [ -z "${SILENT}" ] && cat <. +# along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a diff --git a/build-aux/config.guess b/build-aux/config.guess index dbfb978..7adf147 100755 --- a/build-aux/config.guess +++ b/build-aux/config.guess @@ -15,7 +15,7 @@ timestamp='2015-01-01' # General Public License for more details. # # You should have received a copy of the GNU General Public License -# along with this program; if not, see . +# along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a diff --git a/build-aux/config.sub b/build-aux/config.sub index 6d2e94c..0b2d816 100755 --- a/build-aux/config.sub +++ b/build-aux/config.sub @@ -15,7 +15,7 @@ timestamp='2015-01-01' # General Public License for more details. # # You should have received a copy of the GNU General Public License -# along with this program; if not, see . +# along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a diff --git a/build-aux/depcomp b/build-aux/depcomp index 4ebd5b3..f0a474c 100755 --- a/build-aux/depcomp +++ b/build-aux/depcomp @@ -16,7 +16,7 @@ scriptversion=2013-05-30.07; # UTC # GNU General Public License for more details. # You should have received a copy of the GNU General Public License -# along with this program. If not, see . +# along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a diff --git a/build-aux/gitlog-to-changelog b/build-aux/gitlog-to-changelog index 5cf071f..81a0431 100755 --- a/build-aux/gitlog-to-changelog +++ b/build-aux/gitlog-to-changelog @@ -22,7 +22,7 @@ my $VERSION = '2012-01-24 15:58 (wk)'; # UTC # GNU General Public License for more details. # You should have received a copy of the GNU General Public License -# along with this program. If not, see . +# along with this program. If not, see . # Written by Jim Meyering # Custom bugs bred by Werner Koch diff --git a/build-aux/mdate-sh b/build-aux/mdate-sh index b3719cf..39f48bb 100755 --- a/build-aux/mdate-sh +++ b/build-aux/mdate-sh @@ -17,7 +17,7 @@ scriptversion=2010-08-21.06; # UTC # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License -# along with this program. If not, see . +# along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a diff --git a/build-aux/missing b/build-aux/missing index db98974..528c6c4 100755 --- a/build-aux/missing +++ b/build-aux/missing @@ -1,7 +1,7 @@ #! /bin/sh # Common wrapper for a few potentially missing GNU programs. -scriptversion=2013-10-28.13; # UTC +scriptversion=2016-11-05.04; # UTC # Copyright (C) 1996-2013 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. @@ -17,7 +17,7 @@ scriptversion=2013-10-28.13; # UTC # GNU General Public License for more details. # You should have received a copy of the GNU General Public License -# along with this program. If not, see . +# along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a @@ -101,9 +101,9 @@ else exit $st fi -perl_URL=http://www.perl.org/ -flex_URL=http://flex.sourceforge.net/ -gnu_software_URL=http://www.gnu.org/software +perl_URL=https://www.perl.org/ +flex_URL=https://github.com/westes/flex +gnu_software_URL=https://www.gnu.org/software program_details () { diff --git a/build-aux/texinfo.tex b/build-aux/texinfo.tex index 5552e50..1e6de89 100644 --- a/build-aux/texinfo.tex +++ b/build-aux/texinfo.tex @@ -3,7 +3,7 @@ % Load plain if necessary, i.e., if running under initex. \expandafter\ifx\csname fmtname\endcsname\relax\input plain\fi % -\def\texinfoversion{2016-11-03.12} +\def\texinfoversion{2016-11-05.00} % % Copyright (C) 1985, 1986, 1988, 1990, 1991, 1992, 1993, 1994, 1995, % 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, @@ -21,7 +21,7 @@ % % You should have received a copy of the GNU General Public License % along with this texinfo.tex file; see the file COPYING. If not, -% see . +% see . % % As a special exception, when this file is read by TeX when processing % a Texinfo source document, you may use the result without @@ -29,9 +29,9 @@ % % Please try the latest version of texinfo.tex before submitting bug % reports; you can get the latest version from: -% http://www.gnu.org/software/texinfo/ (the Texinfo home page), or +% https://www.gnu.org/software/texinfo/ (the Texinfo home page), or % ftp://tug.org/tex/texinfo.tex -% (and all CTAN mirrors, see http://www.ctan.org). +% (and all CTAN mirrors, see https://www.ctan.org). % The texinfo.tex in any given distribution could well be out % of date, so if that's what you're using, please check. % @@ -55,7 +55,7 @@ % extent. You can get the existing language-specific files from the % full Texinfo distribution. % -% The GNU Texinfo home page is http://www.gnu.org/software/texinfo. +% The GNU Texinfo home page is https://www.gnu.org/software/texinfo. \message{Loading texinfo [version \texinfoversion]:} @@ -1209,7 +1209,7 @@ where each line of input produces a line of output.} % for display in the outlines, and in other places. Thus, we have to % double any backslashes. Otherwise, a name like "\node" will be % interpreted as a newline (\n), followed by o, d, e. Not good. -% http://www.ntg.nl/pipermail/ntg-pdftex/2004-July/000654.html +% https://mailman.ntg.nl/pipermail/ntg-pdftex/2004-July/000654.html % (and related messages, the final outcome is that it is up to the TeX % user to double the backslashes and otherwise make the string valid, so % that's what we do). @@ -2560,7 +2560,7 @@ end % We use the free feym* fonts from the eurosym package by Henrik % Theiling, which support regular, slanted, bold and bold slanted (and % "outlined" (blackboard board, sort of) versions, which we don't need). -% It is available from http://www.ctan.org/tex-archive/fonts/eurosym. +% It is available from https://www.ctan.org/tex-archive/fonts/eurosym. % % Although only regular is the truly official Euro symbol, we ignore % that. The Euro is designed to be slightly taller than the regular diff --git a/configure.ac b/configure.ac index 1620ebd..1dfdf17 100644 --- a/configure.ac +++ b/configure.ac @@ -42,7 +42,7 @@ m4_define([mym4_betastring], m4_define([mym4_isgit],m4_if(mym4_betastring,[],[no],[yes])) m4_define([mym4_full_version],[mym4_version[]mym4_betastring]) -AC_INIT([pinentry],[mym4_full_version], [http://bugs.gnupg.org]) +AC_INIT([pinentry],[mym4_full_version], [https://bugs.gnupg.org]) AC_CONFIG_AUX_DIR([build-aux]) AM_CONFIG_HEADER(config.h) diff --git a/doc/texinfo.tex b/doc/texinfo.tex index 919d85d..3f81058 100644 --- a/doc/texinfo.tex +++ b/doc/texinfo.tex @@ -3,7 +3,7 @@ % Load plain if necessary, i.e., if running under initex. \expandafter\ifx\csname fmtname\endcsname\relax\input plain\fi % -\def\texinfoversion{2016-11-03.12} +\def\texinfoversion{2016-11-05.00} % % Copyright (C) 1985, 1986, 1988, 1990, 1991, 1992, 1993, 1994, 1995, % 1996, 1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, @@ -21,7 +21,7 @@ % % You should have received a copy of the GNU General Public License % along with this texinfo.tex file; see the file COPYING. If not, -% see . +% see . % % As a special exception, when this file is read by TeX when processing % a Texinfo source document, you may use the result without @@ -29,9 +29,9 @@ % % Please try the latest version of texinfo.tex before submitting bug % reports; you can get the latest version from: -% http://www.gnu.org/software/texinfo/ (the Texinfo home page), or +% https://www.gnu.org/software/texinfo/ (the Texinfo home page), or % ftp://tug.org/tex/texinfo.tex -% (and all CTAN mirrors, see http://www.ctan.org). +% (and all CTAN mirrors, see https://www.ctan.org). % The texinfo.tex in any given distribution could well be out % of date, so if that's what you're using, please check. % @@ -55,7 +55,7 @@ % extent. You can get the existing language-specific files from the % full Texinfo distribution. % -% The GNU Texinfo home page is http://www.gnu.org/software/texinfo. +% The GNU Texinfo home page is https://www.gnu.org/software/texinfo. \message{Loading texinfo [version \texinfoversion]:} @@ -1209,7 +1209,7 @@ where each line of input produces a line of output.} % for display in the outlines, and in other places. Thus, we have to % double any backslashes. Otherwise, a name like "\node" will be % interpreted as a newline (\n), followed by o, d, e. Not good. -% http://www.ntg.nl/pipermail/ntg-pdftex/2004-July/000654.html +% https://mailman.ntg.nl/pipermail/ntg-pdftex/2004-July/000654.html % (and related messages, the final outcome is that it is up to the TeX % user to double the backslashes and otherwise make the string valid, so % that's what we do). @@ -2560,7 +2560,7 @@ end % We use the free feym* fonts from the eurosym package by Henrik % Theiling, which support regular, slanted, bold and bold slanted (and % "outlined" (blackboard board, sort of) versions, which we don't need). -% It is available from http://www.ctan.org/tex-archive/fonts/eurosym. +% It is available from https://www.ctan.org/tex-archive/fonts/eurosym. % % Although only regular is the truly official Euro symbol, we ignore % that. The Euro is designed to be slightly taller than the regular diff --git a/emacs/pinentry-emacs.c b/emacs/pinentry-emacs.c index de4ca05..da96985 100644 --- a/emacs/pinentry-emacs.c +++ b/emacs/pinentry-emacs.c @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifdef HAVE_CONFIG_H diff --git a/gtk+-2/pinentry-gtk-2.c b/gtk+-2/pinentry-gtk-2.c index 9d29d90..a7ac91e 100644 --- a/gtk+-2/pinentry-gtk-2.c +++ b/gtk+-2/pinentry-gtk-2.c @@ -116,7 +116,7 @@ constrain_size (GtkWidget *win, GtkRequisition *req, gpointer data) /* Realize the window as transient if we grab the keyboard. This makes the window a modal dialog to the root window, which helps the window manager. See the following quote from: - http://standards.freedesktop.org/wm-spec/wm-spec-1.4.html#id2512420 + https://standards.freedesktop.org/wm-spec/wm-spec-1.4.html#id2512420 Implementing enhanced support for application transient windows diff --git a/m4/pkg.m4 b/m4/pkg.m4 index e602e5b..5acff96 100644 --- a/m4/pkg.m4 +++ b/m4/pkg.m4 @@ -146,7 +146,7 @@ path to pkg-config. _PKG_TEXT -To get pkg-config, see .])], +To get pkg-config, see .])], [$4]) else $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS diff --git a/pinentry/argparse.c b/pinentry/argparse.c index 4f586d4..f6c160c 100644 --- a/pinentry/argparse.c +++ b/pinentry/argparse.c @@ -26,7 +26,7 @@ * * You should have received a copies of the GNU General Public License * and the GNU Lesser General Public License along with this program; - * if not, see . + * if not, see . */ /* This file may be used as part of GnuPG or standalone. A GnuPG @@ -1490,10 +1490,10 @@ strusage( int level ) case 10: #if ARGPARSE_GPL_VERSION == 3 p = ("License GPLv3+: GNU GPL version 3 or later " - ""); + ""); #else p = ("License GPLv2+: GNU GPL version 2 or later " - ""); + ""); #endif break; case 11: p = "foo"; break; @@ -1515,7 +1515,7 @@ ARGPARSE_STR2(ARGPARSE_GPL_VERSION) "MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n" "GNU General Public License for more details.\n\n" "You should have received a copy of the GNU General Public License\n" -"along with this software. If not, see .\n"; +"along with this software. If not, see .\n"; break; case 40: /* short and long usage */ case 41: p = ""; break; diff --git a/pinentry/argparse.h b/pinentry/argparse.h index b4dc253..54d9c5b 100644 --- a/pinentry/argparse.h +++ b/pinentry/argparse.h @@ -25,7 +25,7 @@ * * You should have received a copies of the GNU General Public License * and the GNU Lesser General Public License along with this program; - * if not, see . + * if not, see . */ #ifndef LIBJNLIB_ARGPARSE_H diff --git a/pinentry/password-cache.c b/pinentry/password-cache.c index c98c4c5..903c013 100644 --- a/pinentry/password-cache.c +++ b/pinentry/password-cache.c @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifdef HAVE_CONFIG_H diff --git a/pinentry/password-cache.h b/pinentry/password-cache.h index 0bc8788..77e82e1 100644 --- a/pinentry/password-cache.h +++ b/pinentry/password-cache.h @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifndef PASSWORD_CACHE_H diff --git a/pinentry/pinentry-emacs.c b/pinentry/pinentry-emacs.c index 9ced8da..df12f1b 100644 --- a/pinentry/pinentry-emacs.c +++ b/pinentry/pinentry-emacs.c @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifdef HAVE_CONFIG_H diff --git a/pinentry/pinentry-emacs.h b/pinentry/pinentry-emacs.h index 61d04cc..24dabb9 100644 --- a/pinentry/pinentry-emacs.h +++ b/pinentry/pinentry-emacs.h @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifndef PINENTRY_EMACS_H diff --git a/pinentry/pinentry.c b/pinentry/pinentry.c index d2f4229..0023ebe 100644 --- a/pinentry/pinentry.c +++ b/pinentry/pinentry.c @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifdef HAVE_CONFIG_H diff --git a/pinentry/pinentry.h b/pinentry/pinentry.h index c6e12e4..01fb373 100644 --- a/pinentry/pinentry.h +++ b/pinentry/pinentry.h @@ -14,7 +14,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifndef PINENTRY_H diff --git a/tty/Makefile.am b/tty/Makefile.am index e232473..7168342 100644 --- a/tty/Makefile.am +++ b/tty/Makefile.am @@ -14,7 +14,7 @@ # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License -# along with this program; if not, see . +# along with this program; if not, see . ## Process this file with automake to produce Makefile.in diff --git a/tty/pinentry-tty.c b/tty/pinentry-tty.c index 183b7a5..bd82fad 100644 --- a/tty/pinentry-tty.c +++ b/tty/pinentry-tty.c @@ -16,7 +16,7 @@ General Public License for more details. You should have received a copy of the GNU General Public License - along with this program; if not, see . + along with this program; if not, see . */ #ifdef HAVE_CONFIG_H commit 799116010a57aec9a86c5529388111d54aff3c55 Author: Werner Koch Date: Sat Nov 5 11:42:24 2016 +0100 gnome3: Avoid using gnome and gcr symbol namespace. * gnome3/pinentry-gnome3.c (struct _gnome3_run): Rename to pe_gnome3_run_s. (_gcr_prompt_password_done): Rename to pe_gcr_prompt_password_done. (_gcr_prompt_confirm_done): Rename to pe_gcr_prompt_confirm_done. (_gcr_timeout_done): Rename to pe_gcr_timeout_done. Signed-off-by: Werner Koch diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index c8d8fcf..afa95b7 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -44,6 +44,25 @@ # define VERSION #endif + +struct pe_gnome3_run_s { + pinentry_t pinentry; + GcrPrompt *prompt; + GMainLoop *main_loop; + int ret; + guint timeout_id; + int timed_out; +}; + +static void pe_gcr_prompt_password_done (GObject *source_object, + GAsyncResult *res, gpointer user_data); + +static void pe_gcr_prompt_confirm_done (GObject *source_object, + GAsyncResult *res, gpointer user_data); +static gboolean pe_gcr_timeout_done (gpointer user_data); + + + static gchar * pinentry_utf8_validate (gchar *text) { @@ -69,23 +88,6 @@ pinentry_utf8_validate (gchar *text) return result; } -struct _gnome3_run { - pinentry_t pinentry; - GcrPrompt *prompt; - GMainLoop *main_loop; - int ret; - guint timeout_id; - int timed_out; -}; - -static void -_gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer user_data); - -static void -_gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, gpointer user_data); - -static gboolean -_gcr_timeout_done (gpointer user_data); static void _propagate_g_error_to_pinentry (pinentry_t pe, GError *error, @@ -217,7 +219,7 @@ create_prompt (pinentry_t pe, int confirm) static int gnome3_cmd_handler (pinentry_t pe) { - struct _gnome3_run state; + struct pe_gnome3_run_s state; state.main_loop = g_main_loop_new (NULL, FALSE); if (!state.main_loop) @@ -239,19 +241,22 @@ gnome3_cmd_handler (pinentry_t pe) return -1; } if (pe->pin) - gcr_prompt_password_async (state.prompt, NULL, _gcr_prompt_password_done, + gcr_prompt_password_async (state.prompt, NULL, pe_gcr_prompt_password_done, &state); else - gcr_prompt_confirm_async (state.prompt, NULL, _gcr_prompt_confirm_done, + gcr_prompt_confirm_async (state.prompt, NULL, pe_gcr_prompt_confirm_done, &state); if (pe->timeout) - state.timeout_id = g_timeout_add_seconds (pe->timeout, _gcr_timeout_done, &state); + state.timeout_id = g_timeout_add_seconds (pe->timeout, + pe_gcr_timeout_done, &state); g_main_loop_run (state.main_loop); /* clean up state: */ if (state.timeout_id && !state.timed_out) - g_source_destroy (g_main_context_find_source_by_id (NULL, state.timeout_id)); + g_source_destroy + (g_main_context_find_source_by_id (NULL, state.timeout_id)); + g_clear_object (&state.prompt); g_main_loop_unref (state.main_loop); return state.ret; @@ -259,9 +264,10 @@ gnome3_cmd_handler (pinentry_t pe) static void -_gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer user_data) +pe_gcr_prompt_password_done (GObject *source_object, + GAsyncResult *res, gpointer user_data) { - struct _gnome3_run *state = (struct _gnome3_run *) user_data; + struct pe_gnome3_run_s *state = user_data; GcrPrompt *prompt = GCR_PROMPT (source_object); if (state && prompt && state->prompt == prompt) @@ -316,10 +322,10 @@ _gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer u } static void -_gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, - gpointer user_data) +pe_gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, + gpointer user_data) { - struct _gnome3_run *state = (struct _gnome3_run *) user_data; + struct pe_gnome3_run_s *state = user_data; GcrPrompt *prompt = GCR_PROMPT (source_object); if (state && prompt && state->prompt == prompt) @@ -369,9 +375,9 @@ _gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, } static gboolean -_gcr_timeout_done (gpointer user_data) +pe_gcr_timeout_done (gpointer user_data) { - struct _gnome3_run *state = (struct _gnome3_run *) user_data; + struct pe_gnome3_run_s *state = user_data; if (!state) return FALSE; commit f7b99ff5f7f78db45350308bf409ea4a9e94f161 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:52 2016 -0400 gnome3: Honor timeout. * gnome3/pinentry-gnome3.c (create_prompt): Use timeout to determine how long to wait for Gcr to provide a system prompt before giving up. (_gcr_timeout_done): New. Record that a timeout has elapsed. (gnome3_cmd_handler): Set up a timeout before launching the prompt, and tear it down afterward. (_gcr_prompt_password_done): Report timeout differently from normal cancellation. (_gcr_prompt_confirm_done): Report timeout differently from normal cancellation. -- Without this change, pinentry-gnome3 does not respect the timeout parameter at all, and can hang indefinitely in the event that the system prompter is locked or the user is ignoring the session. Signed-off-by: Daniel Kahn Gillmor diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index 85142b9..c8d8fcf 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -74,6 +74,8 @@ struct _gnome3_run { GcrPrompt *prompt; GMainLoop *main_loop; int ret; + guint timeout_id; + int timed_out; }; static void @@ -82,6 +84,9 @@ _gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer u static void _gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, gpointer user_data); +static gboolean +_gcr_timeout_done (gpointer user_data); + static void _propagate_g_error_to_pinentry (pinentry_t pe, GError *error, gpg_err_code_t code, const char *loc) @@ -105,11 +110,25 @@ create_prompt (pinentry_t pe, int confirm) char window_id[32]; /* Create the prompt. */ - prompt = GCR_PROMPT (gcr_system_prompt_open (-1, NULL, &error)); + prompt = GCR_PROMPT (gcr_system_prompt_open (pe->timeout ? pe->timeout : -1, NULL, &error)); if (! prompt) { - _propagate_g_error_to_pinentry (pe, error, GPG_ERR_CONFIGURATION, - "gcr_system_prompt_open"); + /* this means the timeout elapsed, but no prompt was ever shown. */ + if (error->code == GCR_SYSTEM_PROMPT_IN_PROGRESS) + { + fprintf (stderr, "Timeout: the Gcr system prompter was already in use.\n"); + pe->specific_err_info = strdup ("Timeout: the Gcr system prompter was already in use."); + /* not using GPG_ERR_TIMEOUT here because the user never saw + a prompt: */ + pe->specific_err = gpg_error (GPG_ERR_PIN_ENTRY); + } + else + { + fprintf (stderr, "couldn't create prompt for gnupg passphrase: %s\n", + error->message); + _propagate_g_error_to_pinentry (pe, error, GPG_ERR_CONFIGURATION, + "gcr_system_prompt_open"); + } g_error_free (error); return NULL; } @@ -211,6 +230,8 @@ gnome3_cmd_handler (pinentry_t pe) } state.pinentry = pe; state.ret = 0; + state.timeout_id = 0; + state.timed_out = 0; state.prompt = create_prompt (pe, !!(pe->pin)); if (!state.prompt) { @@ -224,9 +245,13 @@ gnome3_cmd_handler (pinentry_t pe) gcr_prompt_confirm_async (state.prompt, NULL, _gcr_prompt_confirm_done, &state); + if (pe->timeout) + state.timeout_id = g_timeout_add_seconds (pe->timeout, _gcr_timeout_done, &state); g_main_loop_run (state.main_loop); /* clean up state: */ + if (state.timeout_id && !state.timed_out) + g_source_destroy (g_main_context_find_source_by_id (NULL, state.timeout_id)); g_clear_object (&state.prompt); g_main_loop_unref (state.main_loop); return state.ret; @@ -249,7 +274,17 @@ _gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer u /* "The returned password is valid until the next time a method is called to display another prompt." */ password = gcr_prompt_password_finish (prompt, res, &error); - if (error) + if ((! password && ! error) + || (error && error->code == G_IO_ERROR_CANCELLED)) + { + /* operation was cancelled or timed out. */ + ret = -1; + if (state->timed_out) + state->pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); + if (error) + g_error_free (error); + } + else if (error) { _propagate_g_error_to_pinentry (pe, error, GPG_ERR_PIN_ENTRY, @@ -257,8 +292,6 @@ _gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer u g_error_free (error); ret = -1; } - else if (! password && ! error) /* User cancelled the operation. */ - ret = -1; else { pinentry_setbufferlen (pe, strlen (password) + 1); @@ -301,8 +334,16 @@ _gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, reply = gcr_prompt_confirm_finish (prompt, res, &error); if (error) { - _propagate_g_error_to_pinentry (pe, error, GPG_ERR_PIN_ENTRY, - "gcr_system_confirm_finish"); + if (error->code == G_IO_ERROR_CANCELLED) + { + pe->canceled = 1; + if (state->timed_out) + state->pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); + } + else + _propagate_g_error_to_pinentry (state->pinentry, error, GPG_ERR_PIN_ENTRY, + "gcr_system_confirm_finish"); + g_error_free (error); ret = 0; } else if (reply == GCR_PROMPT_REPLY_CONTINUE @@ -316,6 +357,8 @@ _gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, else /* GCR_PROMPT_REPLY_CANCEL */ { pe->canceled = 1; + if (state->timed_out) + state->pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); ret = 0; } state->ret = ret; @@ -325,6 +368,20 @@ _gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, g_main_loop_quit (state->main_loop); } +static gboolean +_gcr_timeout_done (gpointer user_data) +{ + struct _gnome3_run *state = (struct _gnome3_run *) user_data; + + if (!state) + return FALSE; + + state->timed_out = 1; + gcr_prompt_close (state->prompt); + + return FALSE; +} + pinentry_cmd_handler_t pinentry_cmd_handler = gnome3_cmd_handler; int commit d0fe54d592a8d2be6fc82b26290a644bb3629214 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:51 2016 -0400 gnome3: Convert password/confirmation to asynchronous model. * gnome3/pinentry-gnome3.c (gnome3_cmd_handler): Convert main part of password or confirmation fetching into asynchronous code by moving completion into... (_gcr_prompt_password_done): ... here and... (_gcr_prompt_confirm_done): ... here. -- The async programming interface to gcr is necessary if we want to be able to enforce a timeout, which will happen in the next patch in this series. Signed-off-by: Daniel Kahn Gillmor Did not apply cleanluy due to me comment reformatting in a former patch. Fixed. -wk diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index f24ac4a..85142b9 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -69,6 +69,19 @@ pinentry_utf8_validate (gchar *text) return result; } +struct _gnome3_run { + pinentry_t pinentry; + GcrPrompt *prompt; + GMainLoop *main_loop; + int ret; +}; + +static void +_gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer user_data); + +static void +_gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, gpointer user_data); + static void _propagate_g_error_to_pinentry (pinentry_t pe, GError *error, gpg_err_code_t code, const char *loc) @@ -185,24 +198,57 @@ create_prompt (pinentry_t pe, int confirm) static int gnome3_cmd_handler (pinentry_t pe) { - GcrPrompt *prompt = NULL; - GError *error = NULL; - int ret = -1; + struct _gnome3_run state; - if (pe->pin) /* Passphrase mode. */ + state.main_loop = g_main_loop_new (NULL, FALSE); + if (!state.main_loop) { - const char *password; + pe->specific_err_info = strdup ("Failed to create GMainLoop"); + pe->specific_err = gpg_error (GPG_ERR_PIN_ENTRY); + pe->specific_err_loc = "g_main_loop_new"; + pe->canceled = 1; + return -1; + } + state.pinentry = pe; + state.ret = 0; + state.prompt = create_prompt (pe, !!(pe->pin)); + if (!state.prompt) + { + pe->canceled = 1; + return -1; + } + if (pe->pin) + gcr_prompt_password_async (state.prompt, NULL, _gcr_prompt_password_done, + &state); + else + gcr_prompt_confirm_async (state.prompt, NULL, _gcr_prompt_confirm_done, + &state); + + g_main_loop_run (state.main_loop); + + /* clean up state: */ + g_clear_object (&state.prompt); + g_main_loop_unref (state.main_loop); + return state.ret; +}; - prompt = create_prompt (pe, 0); - if (! prompt) /* Something went wrong. */ - { - pe->canceled = 1; - return -1; - } + +static void +_gcr_prompt_password_done (GObject *source_object, GAsyncResult *res, gpointer user_data) +{ + struct _gnome3_run *state = (struct _gnome3_run *) user_data; + GcrPrompt *prompt = GCR_PROMPT (source_object); + + if (state && prompt && state->prompt == prompt) + { + const char *password; + GError *error = NULL; + pinentry_t pe = state->pinentry; + int ret = -1; /* "The returned password is valid until the next time a method is called to display another prompt." */ - password = gcr_prompt_password (prompt, NULL, &error); + password = gcr_prompt_password_finish (prompt, res, &error); if (error) { _propagate_g_error_to_pinentry (pe, error, @@ -229,21 +275,30 @@ gnome3_cmd_handler (pinentry_t pe) ret = 1; } + state->ret = ret; } - else /* Message box mode. */ + + if (state) + g_main_loop_quit (state->main_loop); +} + +static void +_gcr_prompt_confirm_done (GObject *source_object, GAsyncResult *res, + gpointer user_data) +{ + struct _gnome3_run *state = (struct _gnome3_run *) user_data; + GcrPrompt *prompt = GCR_PROMPT (source_object); + + if (state && prompt && state->prompt == prompt) { GcrPromptReply reply; - - prompt = create_prompt (pe, 1); - if (! prompt) /* Something went wrong. */ - { - pe->canceled = 1; - return -1; - } + GError *error = NULL; + pinentry_t pe = state->pinentry; + int ret = -1; /* XXX: We don't support a third button! */ - reply = gcr_prompt_confirm_run (prompt, NULL, &error); + reply = gcr_prompt_confirm_finish (prompt, res, &error); if (error) { _propagate_g_error_to_pinentry (pe, error, GPG_ERR_PIN_ENTRY, @@ -263,11 +318,11 @@ gnome3_cmd_handler (pinentry_t pe) pe->canceled = 1; ret = 0; } + state->ret = ret; } - if (prompt) - g_clear_object (&prompt); - return ret; + if (state) + g_main_loop_quit (state->main_loop); } pinentry_cmd_handler_t pinentry_cmd_handler = gnome3_cmd_handler; commit 102832a2c1f3ffa432e2a169791611bb3ca13a04 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:50 2016 -0400 qt: Report timeout. * qt/pinentryconfirm.h (PinentryConfirm): Add _timed_out, timedOut(). * qt/pinentrydialog.h (PinentryDialog): Add _timed_out, timedOut(). * qt/pinentryconfirm.cpp (slotTimeout): Record elapsed timeout. (PinentryConfirm): Initialize _timed_out to false. (timedOut): New. Returns value of _timed_out. * qt/pinentryDialog.cpp (slotTimeout): Record elapsed timeout. (PinentryDialog): Initialize _timed_out to false. (timedOut): New. Returns value of _timed_out. * qt/main.cpp (qt_cmd_handler): Report if canceled due to timeout. Signed-off-by: Daniel Kahn Gillmor diff --git a/qt/main.cpp b/qt/main.cpp index d5da4a8..8284960 100644 --- a/qt/main.cpp +++ b/qt/main.cpp @@ -44,6 +44,7 @@ #include #include +#include #ifdef FALLBACK_CURSES #include @@ -205,6 +206,8 @@ qt_cmd_handler(pinentry_t pe) } bool ret = pinentry.exec(); if (!ret) { + if (pinentry.timedOut()) + pe->specific_err = gpg_error (GPG_ERR_TIMEOUT); return -1; } @@ -270,6 +273,9 @@ qt_cmd_handler(pinentry_t pe) if (rc == QMessageBox::Cancel) { pe->canceled = true; } + if (box.timedOut()) { + pe->specific_err = gpg_error (GPG_ERR_TIMEOUT); + } return rc == QMessageBox::Ok || rc == QMessageBox::Yes ; diff --git a/qt/pinentryconfirm.cpp b/qt/pinentryconfirm.cpp index e81b188..8b59d9d 100644 --- a/qt/pinentryconfirm.cpp +++ b/qt/pinentryconfirm.cpp @@ -24,6 +24,7 @@ PinentryConfirm::PinentryConfirm(Icon icon, int timeout, const QString &title, const QString &desc, StandardButtons buttons, QWidget *parent) : QMessageBox(icon, title, desc, buttons, parent) { + _timed_out = false; if (timeout > 0) { _timer = new QTimer(this); connect(_timer, SIGNAL(timeout()), this, SLOT(slotTimeout())); @@ -36,6 +37,11 @@ PinentryConfirm::PinentryConfirm(Icon icon, int timeout, const QString &title, raiseWindow(this); } +bool PinentryConfirm::timedOut() const +{ + return _timed_out; +} + void PinentryConfirm::showEvent(QShowEvent *event) { QDialog::showEvent(event); @@ -45,6 +51,7 @@ void PinentryConfirm::showEvent(QShowEvent *event) void PinentryConfirm::slotTimeout() { QAbstractButton *b = button(QMessageBox::Cancel); + _timed_out = true; if (b) { b->animateClick(0); diff --git a/qt/pinentryconfirm.h b/qt/pinentryconfirm.h index 23e05dc..21b91c5 100644 --- a/qt/pinentryconfirm.h +++ b/qt/pinentryconfirm.h @@ -29,12 +29,14 @@ public: PinentryConfirm(Icon, int timeout, const QString &title, const QString &desc, StandardButtons buttons, QWidget *parent); + bool timedOut() const; private slots: void slotTimeout(); private: QTimer *_timer; + bool _timed_out; protected: /* reimp */ void showEvent(QShowEvent *event); diff --git a/qt/pinentrydialog.cpp b/qt/pinentrydialog.cpp index f9dd700..92cf19e 100644 --- a/qt/pinentrydialog.cpp +++ b/qt/pinentrydialog.cpp @@ -121,6 +121,7 @@ QPixmap icon(QStyle::StandardPixmap which) void PinEntryDialog::slotTimeout() { + _timed_out = true; reject(); } @@ -137,6 +138,7 @@ PinEntryDialog::PinEntryDialog(QWidget *parent, const char *name, mVisiActionEdit(NULL), mVisiCB(NULL) { + _timed_out = false; setWindowFlags(windowFlags() & ~Qt::WindowContextHelpButtonHint); if (modal) { @@ -463,6 +465,11 @@ QString PinEntryDialog::repeatedPin() const return QString(); } +bool PinEntryDialog::timedOut() const +{ + return _timed_out; +} + void PinEntryDialog::setRepeatErrorText(const QString &err) { mRepeatError = err; diff --git a/qt/pinentrydialog.h b/qt/pinentrydialog.h index c302f95..905be0f 100644 --- a/qt/pinentrydialog.h +++ b/qt/pinentrydialog.h @@ -82,6 +82,8 @@ public: void setPinentryInfo(pinentry_t); + bool timedOut() const; + protected slots: void updateQuality(const QString &); void slotTimeout(); @@ -105,6 +107,7 @@ private: QPushButton *_cancel; bool _grabbed; bool _have_quality_bar; + bool _timed_out; pinentry_t _pinentry_info; QTimer *_timer; QString mRepeatError, commit 784c4e0a3acace39a4a632bf443c794752297d54 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:49 2016 -0400 curses: Report timeout. * pinentry/pinentry-curses.c (dialog_run): Report if canceled due to timeout. Signed-off-by: Daniel Kahn Gillmor diff --git a/pinentry/pinentry-curses.c b/pinentry/pinentry-curses.c index 9882cbf..a6dbb69 100644 --- a/pinentry/pinentry-curses.c +++ b/pinentry/pinentry-curses.c @@ -941,6 +941,7 @@ dialog_run (pinentry_t pinentry, const char *tty_name, const char *tty_type) if (timed_out && no_input) { done = -2; + pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); break; } #endif commit 93b4454f4fe4d97dd89efccd64dbdd02bd002f77 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:48 2016 -0400 gtk2: Report timeout. * gtk+-2/pinentry-gtk-2.c (create_window): Send pointer to pinentry into timeout_cb. (timeout_cb): Report if canceled due to timeout. -- Signed-off-by: Daniel Kahn Gillmor Fixed a shadowed variable in timeout_cb. Signed-off-by: Werner Koch diff --git a/gtk+-2/pinentry-gtk-2.c b/gtk+-2/pinentry-gtk-2.c index cd6270f..9d29d90 100644 --- a/gtk+-2/pinentry-gtk-2.c +++ b/gtk+-2/pinentry-gtk-2.c @@ -38,6 +38,7 @@ #include #include #include +#include #ifdef HAVE_GETOPT_H #include @@ -515,9 +516,13 @@ show_hide_button_toggled (GtkWidget *widget, gpointer data) static gboolean timeout_cb (gpointer data) { - (void)data; + pinentry_t pe = (pinentry_t)data; if (!got_input) - gtk_main_quit (); + { + gtk_main_quit (); + if (pe) + pe->specific_err = gpg_error (GPG_ERR_TIMEOUT); + } /* Don't run again. */ timeout_source = 0; @@ -873,7 +878,7 @@ create_window (pinentry_t ctx) gtk_window_present (GTK_WINDOW (win)); /* Make sure it has the focus. */ if (pinentry->timeout > 0) - timeout_source = g_timeout_add (pinentry->timeout*1000, timeout_cb, NULL); + timeout_source = g_timeout_add (pinentry->timeout*1000, timeout_cb, pinentry); return win; } commit 3be5b4fabaabf86f085b0b5303a1312abb7d0617 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:47 2016 -0400 tty: Report timeout. * tty/pinentry-tty.c (confirm): Report if canceled due to timeout. (password): Report if canceled due to timeout. Signed-off-by: Daniel Kahn Gillmor diff --git a/tty/pinentry-tty.c b/tty/pinentry-tty.c index cef6947..183b7a5 100644 --- a/tty/pinentry-tty.c +++ b/tty/pinentry-tty.c @@ -37,6 +37,7 @@ #include #include #include +#include #include "pinentry.h" #include "memory.h" @@ -283,6 +284,11 @@ confirm (pinentry_t pinentry, FILE *ttyfi, FILE *ttyfo) } } +#ifndef HAVE_DOSISH_SYSTEM + if (timed_out) + pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); +#endif + tcsetattr (fileno(ttyfi), TCSANOW, &o_term); return ret; @@ -447,6 +453,11 @@ password (pinentry_t pinentry, FILE *ttyfi, FILE *ttyfo) secmem_free (passphrase); } +#ifndef HAVE_DOSISH_SYSTEM + if (timed_out) + pinentry->specific_err = gpg_error (GPG_ERR_TIMEOUT); +#endif + return done; } commit 19c2110557d0504c1b406bde24e86cb5eb552fc7 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:46 2016 -0400 gnome3: Propagate GError messages to pinentry. * gnome3/pinentry-gnome3.c (_propagate_g_error_to_pinentry): New. Send GError messages back out to pinentry error reporting. (create_prompt): Use _propagate_g_error_to_pinentry on error. (gnome3_cmd_handler): Use _propagate_g_error_to_pinentry on error. -- Signed-off-by: Daniel Kahn Gillmor Modified to take care of malloc failure. Also fixed alignment of some old comments. Signed-off-by: Werner Koch diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index 1205300..f24ac4a 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -69,6 +69,20 @@ pinentry_utf8_validate (gchar *text) return result; } +static void +_propagate_g_error_to_pinentry (pinentry_t pe, GError *error, + gpg_err_code_t code, const char *loc) +{ + size_t infolen = strlen(error->message) + 20; + + pe->specific_err = gpg_error (code); + pe->specific_err_info = malloc (infolen); + if (pe->specific_err_info) + snprintf (pe->specific_err_info, infolen, + "%d: %s", error->code, error->message); + pe->specific_err_loc = loc; +} + static GcrPrompt * create_prompt (pinentry_t pe, int confirm) { @@ -81,11 +95,8 @@ create_prompt (pinentry_t pe, int confirm) prompt = GCR_PROMPT (gcr_system_prompt_open (-1, NULL, &error)); if (! prompt) { - fprintf (stderr, "couldn't create prompt for gnupg passphrase: %s\n", - error->message); - pe->specific_err_loc = "gcr_prompt"; - pe->specific_err_info = strdup (error->message); - pe->specific_err = gpg_error (GPG_ERR_CONFIGURATION); + _propagate_g_error_to_pinentry (pe, error, GPG_ERR_CONFIGURATION, + "gcr_system_prompt_open"); g_error_free (error); return NULL; } @@ -148,7 +159,8 @@ create_prompt (pinentry_t pe, int confirm) /* gcr expects a string; we have a int. see gcr's ui/frob-system-prompt.c for example conversion using %lu */ - snprintf(window_id, sizeof (window_id), "%lu", (long unsigned int)pe->parent_wid); + snprintf (window_id, sizeof (window_id), "%lu", + (long unsigned int)pe->parent_wid); window_id[sizeof (window_id) - 1] = '\0'; gcr_prompt_set_caller_window (prompt, window_id); @@ -177,14 +189,12 @@ gnome3_cmd_handler (pinentry_t pe) GError *error = NULL; int ret = -1; - if (pe->pin) - /* Passphrase mode. */ + if (pe->pin) /* Passphrase mode. */ { const char *password; prompt = create_prompt (pe, 0); - if (! prompt) - /* Something went wrong. */ + if (! prompt) /* Something went wrong. */ { pe->canceled = 1; return -1; @@ -194,14 +204,14 @@ gnome3_cmd_handler (pinentry_t pe) is called to display another prompt." */ password = gcr_prompt_password (prompt, NULL, &error); if (error) - /* Error. */ { - pe->specific_err = gpg_error (GPG_ERR_ASS_GENERAL); + _propagate_g_error_to_pinentry (pe, error, + GPG_ERR_PIN_ENTRY, + "gcr_system_password_finish"); g_error_free (error); ret = -1; } - else if (! password && ! error) - /* User cancelled the operation. */ + else if (! password && ! error) /* User cancelled the operation. */ ret = -1; else { @@ -220,14 +230,12 @@ gnome3_cmd_handler (pinentry_t pe) ret = 1; } } - else - /* Message box mode. */ + else /* Message box mode. */ { GcrPromptReply reply; prompt = create_prompt (pe, 1); - if (! prompt) - /* Something went wrong. */ + if (! prompt) /* Something went wrong. */ { pe->canceled = 1; return -1; @@ -238,17 +246,19 @@ gnome3_cmd_handler (pinentry_t pe) reply = gcr_prompt_confirm_run (prompt, NULL, &error); if (error) { - pe->specific_err = gpg_error (GPG_ERR_ASS_GENERAL); + _propagate_g_error_to_pinentry (pe, error, GPG_ERR_PIN_ENTRY, + "gcr_system_confirm_finish"); ret = 0; } else if (reply == GCR_PROMPT_REPLY_CONTINUE /* XXX: Hack since gcr doesn't yet support one button message boxes treat cancel the same as okay. */ || pe->one_button) - /* Confirmation. */ - ret = 1; - else - /* GCR_PROMPT_REPLY_CANCEL */ + { + /* Confirmation. */ + ret = 1; + } + else /* GCR_PROMPT_REPLY_CANCEL */ { pe->canceled = 1; ret = 0; commit 96e3c5fcf210e971fe1ba66b9127ad51144fcc49 Author: Daniel Kahn Gillmor Date: Fri Nov 4 18:57:45 2016 -0400 gnome3: Set parent window. * gnome3/pinentry-gnome3.c (create_prompt): Tell Gcr about the caller window, if we know it. Signed-off-by: Daniel Kahn Gillmor diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index 90ff60f..1205300 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -75,6 +75,7 @@ create_prompt (pinentry_t pe, int confirm) GcrPrompt *prompt; GError *error = NULL; char *msg; + char window_id[32]; /* Create the prompt. */ prompt = GCR_PROMPT (gcr_system_prompt_open (-1, NULL, &error)); @@ -145,8 +146,11 @@ create_prompt (pinentry_t pe, int confirm) /* XXX: Add support for the third option. */ } - /* XXX: gcr expects a string; we have a int. */ - // gcr_prompt_set_caller_window (prompt, pe->parent_wid); + /* gcr expects a string; we have a int. see gcr's + ui/frob-system-prompt.c for example conversion using %lu */ + snprintf(window_id, sizeof (window_id), "%lu", (long unsigned int)pe->parent_wid); + window_id[sizeof (window_id) - 1] = '\0'; + gcr_prompt_set_caller_window (prompt, window_id); #ifdef HAVE_LIBSECRET if (! confirm && pe->allow_external_password_cache && pe->keyinfo) ----------------------------------------------------------------------- Summary of changes: README | 2 +- autogen.sh | 2 +- build-aux/compile | 2 +- build-aux/config.guess | 2 +- build-aux/config.sub | 2 +- build-aux/depcomp | 2 +- build-aux/gitlog-to-changelog | 2 +- build-aux/mdate-sh | 2 +- build-aux/missing | 10 +- build-aux/texinfo.tex | 14 +-- configure.ac | 10 +- doc/texinfo.tex | 14 +-- emacs/pinentry-emacs.c | 2 +- gnome3/pinentry-gnome3.c | 224 +++++++++++++++++++++++++++++++++--------- gtk+-2/pinentry-gtk-2.c | 13 ++- m4/pkg.m4 | 2 +- pinentry/argparse.c | 8 +- pinentry/argparse.h | 2 +- pinentry/password-cache.c | 2 +- pinentry/password-cache.h | 2 +- pinentry/pinentry-curses.c | 1 + pinentry/pinentry-emacs.c | 2 +- pinentry/pinentry-emacs.h | 2 +- pinentry/pinentry.c | 2 +- pinentry/pinentry.h | 2 +- qt/main.cpp | 6 ++ qt/pinentryconfirm.cpp | 7 ++ qt/pinentryconfirm.h | 2 + qt/pinentrydialog.cpp | 7 ++ qt/pinentrydialog.h | 3 + tty/Makefile.am | 2 +- tty/pinentry-tty.c | 13 ++- 32 files changed, 268 insertions(+), 100 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 21:39:55 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Sat, 05 Nov 2016 21:39:55 +0100 Subject: [git] GPA - branch, master, updated. gpa-0.9.9-8-g059956d Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Assistant". The branch, master has been updated via 059956d3efce81a3bb22967335dadc72c027d883 (commit) from d8fd5f4a75668ce25d42af87959cee4b70d80603 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 059956d3efce81a3bb22967335dadc72c027d883 Author: Werner Koch Date: Sat Nov 5 21:28:59 2016 +0100 Add new tab to the key details with TOFU information. * src/gpa-tofu-list.c: New. * src/gpa-tofu-list.h: New. * src/Makefile.am (gpa_SOURCES): Add new files. * src/gpa.h (ENABLE_TOFU_INFO): Define depending on GPGME version. * src/keymanager.c (key_manager_selection_changed): List with tofu info. * src/convert.c (gpa_expiry_date_string): Factor code out to ... (gpa_date_string): new. * src/gpa-key-details.c: Include gpa-tofu-list.h. (struct _GpaKeyDetails): Add fields tofu_list and tofu_page. (gpa_key_details_finalize): Release tofu objects. (build_tofu_page): New. (ui_mode_changed): Call that. (gpa_key_details_update): Add TOFU notebook page. * src/gpa-key-details.c (details_page_fill_key): Move KeyID after the fingerprint. Signed-off-by: Werner Koch diff --git a/src/Makefile.am b/src/Makefile.am index 6a2ab71..67c8190 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -119,6 +119,7 @@ gpa_SOURCES = \ selectkeydlg.c selectkeydlg.h \ keymanager.c keymanager.h \ gpa-key-details.c gpa-key-details.h \ + gpa-tofu-list.c glag-tofu-list.h \ ownertrustdlg.c ownertrustdlg.h \ keysigndlg.c keysigndlg.h \ keygendlg.c keygendlg.h \ diff --git a/src/convert.c b/src/convert.c index 9a37ffa..280c5b8 100644 --- a/src/convert.c +++ b/src/convert.c @@ -72,32 +72,45 @@ gpa_time_unit_from_string (const char *string) char * -gpa_expiry_date_string (unsigned long expiry_time) +gpa_date_string (unsigned long t) { gchar *result; - GDate expiry_date; + GDate date; - if (sizeof (time_t) <= 4 && expiry_time == (time_t)2145914603) + if (sizeof (time_t) <= 4 && t == (time_t)2145914603) { /* 2145914603 (2037-12-31 23:23:23) is used by GPGME to indicate a time we can't represent. */ result = g_strdup (">= 2038"); } - else if ( expiry_time > 0 ) + else if ( t > 0 ) { - g_date_set_time_t (&expiry_date, (time_t) expiry_time); + g_date_set_time_t (&date, (time_t)t ); result = g_strdup_printf ("%04d-%02d-%02d", - g_date_get_year (&expiry_date), - g_date_get_month (&expiry_date), - g_date_get_day (&expiry_date)); + g_date_get_year (&date), + g_date_get_month (&date), + g_date_get_day (&date)); } else - result = g_strdup (_("never expires")); + result = g_strdup (""); return result; } char * +gpa_expiry_date_string (unsigned long expiry_time) +{ + char *p = gpa_date_string (expiry_time); + if (!*p) + { + g_free (p); + p = g_strdup (_("never expires")); + } + return p; +} + + +char * gpa_creation_date_string (unsigned long creation_time) { gchar *result; diff --git a/src/convert.h b/src/convert.h index da304e0..6373417 100644 --- a/src/convert.h +++ b/src/convert.h @@ -14,7 +14,7 @@ * License for more details. * * You should have received a copy of the GNU General Public License - * along with this program; if not, see . + * along with this program; if not, see . */ #ifndef CONVERT_H @@ -22,6 +22,7 @@ const char *gpa_unit_expiry_time_string (int idx); char gpa_time_unit_from_string (const char *string); +char *gpa_date_string (unsigned long t); char *gpa_expiry_date_string (unsigned long expiry_time); char *gpa_creation_date_string (unsigned long creation_time); const char *gpa_sex_char_to_string (char sex); diff --git a/src/gpa-key-details.c b/src/gpa-key-details.c index abb3b1a..d48e2b0 100644 --- a/src/gpa-key-details.c +++ b/src/gpa-key-details.c @@ -37,6 +37,7 @@ #include "siglist.h" #include "certchain.h" #include "gpasubkeylist.h" +#include "gpa-tofu-list.h" #include "gpa-key-details.h" #include "gtktools.h" @@ -73,10 +74,14 @@ struct _GpaKeyDetails GtkWidget *signatures_uids; GtkWidget *certchain_list; - /* The widgets in the subkeys list. */ + /* The widgets in the subkeys page. */ GtkWidget *subkeys_page; GtkWidget *subkeys_list; + /* The widgets in the TOFU page. */ + GtkWidget *tofu_page; + GtkWidget *tofu_list; + /* The key currently shown or NULL. */ gpgme_key_t current_key; @@ -159,13 +164,13 @@ details_page_fill_key (GpaKeyDetails *kdt, gpgme_key_t key) gtk_label_set_text (GTK_LABEL (kdt->detail_name), text); g_free (text); - text = (gchar*) gpa_gpgme_key_get_short_keyid (key); - gtk_label_set_text (GTK_LABEL (kdt->detail_key_id), text); - text = gpa_gpgme_key_format_fingerprint (key->subkeys->fpr); gtk_label_set_text (GTK_LABEL (kdt->detail_fingerprint), text); g_free (text); + text = (gchar*) gpa_gpgme_key_get_short_keyid (key); + gtk_label_set_text (GTK_LABEL (kdt->detail_key_id), text); + text = gpa_expiry_date_string (key->subkeys->expires); gtk_label_set_text (GTK_LABEL (kdt->detail_expiry), text); g_free (text); @@ -305,10 +310,10 @@ construct_details_page (GpaKeyDetails *kdt) (table, table_row++, "", TRUE); kdt->detail_name = add_details_row (table, table_row++, _("User name:"), TRUE); - kdt->detail_key_id = add_details_row - (table, table_row++, _("Key ID:"), TRUE); kdt->detail_fingerprint = add_details_row (table, table_row++, _("Fingerprint:"), TRUE); + kdt->detail_key_id = add_details_row + (table, table_row++, _("Key ID:"), TRUE); kdt->detail_expiry = add_details_row (table, table_row++, _("Expires at:"), FALSE); kdt->detail_owner_trust = add_details_row @@ -496,6 +501,57 @@ build_subkeys_page (GpaKeyDetails *kdt, gpgme_key_t key) } +/* Create and append new page with TOFU info for KEY. If KEY is NULL + remove an existing TOFU page. */ +static void +build_tofu_page (GpaKeyDetails *kdt, gpgme_key_t key) +{ +#ifdef ENABLE_TOFU_INFO + GtkWidget *vbox; + GtkWidget *scrolled; + GtkWidget *tofulist; + int pnum; + + /* First remove an existing page. */ + if (kdt->tofu_page) + { + pnum = gtk_notebook_page_num (GTK_NOTEBOOK (kdt), kdt->tofu_page); + if (pnum >= 0) + gtk_notebook_remove_page (GTK_NOTEBOOK (kdt), pnum); + kdt->tofu_page = NULL; + if (kdt->tofu_list) + { + g_object_unref (kdt->tofu_list); + kdt->tofu_list = NULL; + } + } + if (!key) + return; + + /* Create a new page. */ + vbox = gtk_vbox_new (FALSE, 5); + gtk_container_set_border_width (GTK_CONTAINER (vbox), 5); + scrolled = gtk_scrolled_window_new (NULL, NULL); + gtk_scrolled_window_set_shadow_type (GTK_SCROLLED_WINDOW (scrolled), + GTK_SHADOW_IN); + gtk_box_pack_start (GTK_BOX (vbox), scrolled, TRUE, TRUE, 0); + tofulist = gpa_tofu_list_new (); + gtk_container_add (GTK_CONTAINER (scrolled), tofulist); + gtk_scrolled_window_set_policy (GTK_SCROLLED_WINDOW (scrolled), + GTK_POLICY_AUTOMATIC, + GTK_POLICY_AUTOMATIC); + kdt->tofu_list = tofulist; + g_object_ref (kdt->tofu_list); + kdt->tofu_page = vbox; + gtk_notebook_append_page (GTK_NOTEBOOK (kdt), kdt->tofu_page, + gtk_label_new (_("Tofu"))); + + /* Fill this page. */ + gpa_tofu_list_set_key (kdt->tofu_list, key); +#endif /*ENABLE_TOFU_INFO*/ +} + + /* Signal handler for the "changed_ui_mode" signal. */ static void ui_mode_changed (GpaOptions *options, gpointer param) @@ -512,6 +568,7 @@ ui_mode_changed (GpaOptions *options, gpointer param) build_signatures_page (kdt, kdt->current_key); build_subkeys_page (kdt, kdt->current_key); } + build_tofu_page (kdt, kdt->current_key); gtk_notebook_set_show_tabs (GTK_NOTEBOOK (kdt), gtk_notebook_get_n_pages (GTK_NOTEBOOK (kdt)) > 1); gtk_widget_show_all (GTK_WIDGET (kdt)); @@ -583,6 +640,11 @@ gpa_key_details_finalize (GObject *object) g_object_unref (kdt->subkeys_list); kdt->subkeys_list = NULL; } + if (kdt->tofu_list) + { + g_object_unref (kdt->tofu_list); + kdt->tofu_list = NULL; + } parent_class->finalize (object); } @@ -651,6 +713,10 @@ gpa_key_details_update (GtkWidget *keydetails, gpgme_key_t key, int keycount) pnum = 1; else if (widget == kdt->subkeys_page) pnum = 2; +#ifdef ENABLE_TOFU_INFO + else if (widget == kdt->tofu_page) + pnum = 3; +#endif /*ENABLE_TOFU_INFO*/ else pnum = 0; } @@ -686,8 +752,9 @@ gpa_key_details_update (GtkWidget *keydetails, gpgme_key_t key, int keycount) { details_page_fill_num_keys (kdt, keycount); build_signatures_page (kdt, NULL); - build_subkeys_page (kdt, NULL); } + build_tofu_page (kdt, key); + gtk_notebook_set_show_tabs (GTK_NOTEBOOK (kdt), gtk_notebook_get_n_pages (GTK_NOTEBOOK (kdt)) > 1); @@ -698,6 +765,10 @@ gpa_key_details_update (GtkWidget *keydetails, gpgme_key_t key, int keycount) pnum = gtk_notebook_page_num (GTK_NOTEBOOK (kdt), kdt->signatures_page); else if (pnum == 2 && kdt->subkeys_page) pnum = gtk_notebook_page_num (GTK_NOTEBOOK (kdt), kdt->subkeys_page); +#ifdef ENABLE_TOFU_INFO + else if (pnum == 3 && kdt->tofu_page) + pnum = gtk_notebook_page_num (GTK_NOTEBOOK (kdt), kdt->tofu_page); +#endif /*ENABLE_TOFU_INFO*/ else pnum = 0; gtk_notebook_set_current_page (GTK_NOTEBOOK (kdt), pnum); diff --git a/src/gpa-tofu-list.c b/src/gpa-tofu-list.c new file mode 100644 index 0000000..0ac153d --- /dev/null +++ b/src/gpa-tofu-list.c @@ -0,0 +1,266 @@ +/* gpa-tofu-list.c - A list to show TOFU information. + * Copyright (C) 2016 g10 Code GmbH + * + * This file is part of GPA + * + * GPA is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 3 of the License, or + * (at your option) any later version. + * + * GPA is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, see . + */ + +#include + +#include "gpa.h" +#include "convert.h" +#include "gtktools.h" +#include "keytable.h" +#include "gpa-tofu-list.h" + +#ifdef ENABLE_TOFU_INFO + +static gboolean tofu_list_query_tooltip_cb (GtkWidget *wdiget, int x, int y, + gboolean keyboard_mode, + GtkTooltip *tooltip, + gpointer user_data); + + + +typedef enum +{ + TOFU_ADDRESS, + TOFU_VALIDITY, + TOFU_POLICY, + TOFU_COUNT, + TOFU_FIRSTSIGN, + TOFU_LASTSIGN, + TOFU_FIRSTENCR, + TOFU_LASTENCR, + TOFU_N_COLUMNS +} SubkeyListColumn; + + +/* Create a new subkey list. */ +GtkWidget * +gpa_tofu_list_new (void) +{ + GtkListStore *store; + GtkWidget *list; + GtkTreeViewColumn *column; + GtkCellRenderer *renderer; + + /* Init the model */ + store = gtk_list_store_new (TOFU_N_COLUMNS, + G_TYPE_STRING, /* address */ + G_TYPE_STRING, /* validity */ + G_TYPE_STRING, /* policy */ + G_TYPE_STRING, /* count */ + G_TYPE_STRING, /* firstsign */ + G_TYPE_STRING, /* lastsign */ + G_TYPE_STRING, /* firstencr */ + G_TYPE_STRING /* lastencr */ + ); + + /* The view */ + list = gtk_tree_view_new_with_model (GTK_TREE_MODEL (store)); + gtk_tree_view_set_rules_hint (GTK_TREE_VIEW (list), TRUE); + + /* Add the columns */ + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_ADDRESS, + NULL); + gpa_set_column_title (column, _("Address"), + _("The mail address.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_VALIDITY, + NULL); + gpa_set_column_title (column, _("Validity"), + _("The TOFU validity of the mail address:\n" + " Minimal = Only little history available\n")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_POLICY, + NULL); + gpa_set_column_title (column, _("Policy"), + _("The TOFU policy set for this mail address.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_COUNT, + NULL); + gpa_set_column_title (column, _("Count"), + _("The number of signatures seen for this address\n" + "and the number of encryption done to this address.") + ); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_FIRSTSIGN, + NULL); + gpa_set_column_title (column, _("First Sig"), + _("The date the first signature was verified.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_LASTSIGN, + NULL); + gpa_set_column_title (column, _("Last Sig"), + _("The most recent date a signature was verified.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_FIRSTENCR, + NULL); + gpa_set_column_title (column, _("First Enc"), + _("The date the first encrypted mail was sent.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + renderer = gtk_cell_renderer_text_new (); + column = gtk_tree_view_column_new_with_attributes (NULL, renderer, + "text", TOFU_LASTENCR, + NULL); + gpa_set_column_title (column, _("Last Enc"), + _("The most recent date an encrypted mail was sent.")); + gtk_tree_view_append_column (GTK_TREE_VIEW (list), column); + + g_object_set (list, "has-tooltip", TRUE, NULL); + g_signal_connect (list, "query-tooltip", + G_CALLBACK (tofu_list_query_tooltip_cb), list); + + return list; +} + + +static const gchar * +tofu_validity_str (gpgme_tofu_info_t tofu) +{ + switch (tofu->validity) + { + case 0: return _("Conflict"); + case 1: return _("Unknown"); + case 2: return _("Minimal"); + case 3: return _("Basic"); + case 4: return _("Full"); + default: return "?"; + } +} + + +static const gchar * +tofu_policy_str (gpgme_tofu_info_t tofu) +{ + switch (tofu->policy) + { + case GPGME_TOFU_POLICY_NONE: return _("None"); + case GPGME_TOFU_POLICY_AUTO: return _("Auto"); + case GPGME_TOFU_POLICY_GOOD: return _("Good"); + case GPGME_TOFU_POLICY_UNKNOWN: return _("Unknown"); + case GPGME_TOFU_POLICY_BAD: return _("Bad"); + case GPGME_TOFU_POLICY_ASK: return _("Ask"); + } + return "?"; +} + + +/* Set the key whose subkeys should be displayed. */ +void +gpa_tofu_list_set_key (GtkWidget *list, gpgme_key_t key) +{ + GtkListStore *store = GTK_LIST_STORE (gtk_tree_view_get_model + (GTK_TREE_VIEW (list))); + GtkTreeIter iter; + gpgme_user_id_t uid; + gpgme_tofu_info_t tofu; + char *countstr, *firstsign, *lastsign, *firstencr, *lastencr; + + /* Empty the list */ + gtk_list_store_clear (store); + + if (!key || !key->uids) + return; + + for (uid = key->uids; uid; uid = uid->next) + { + if (!uid->address || !uid->tofu) + continue; /* No address or tofu info. */ + tofu = uid->tofu; + + /* Note that we do not need to filter ADDRESS like we do with + * user ids because GPGME checked that it is a valid mail + * address. */ + countstr = g_strdup_printf ("%hu/%hu", tofu->signcount, tofu->encrcount); + firstsign = gpa_date_string (tofu->signfirst); + lastsign = gpa_date_string (tofu->signlast); + firstencr = gpa_date_string (tofu->encrfirst); + lastencr = gpa_date_string (tofu->encrlast); + + gtk_list_store_append (store, &iter); + gtk_list_store_set + (store, &iter, + TOFU_ADDRESS, uid->address, + TOFU_VALIDITY, tofu_validity_str (tofu), + TOFU_POLICY, tofu_policy_str (tofu), + TOFU_COUNT, countstr, + TOFU_FIRSTSIGN,firstsign, + TOFU_LASTSIGN, lastsign, + TOFU_FIRSTENCR,firstencr, + TOFU_LASTENCR, lastencr, + -1); + + g_free (countstr); + g_free (firstsign); + g_free (lastsign); + g_free (firstencr); + g_free (lastencr); + } + +} + + +/* Tooltip display callback. */ +static gboolean +tofu_list_query_tooltip_cb (GtkWidget *widget, int x, int y, + gboolean keyboard_tip, + GtkTooltip *tooltip, gpointer user_data) +{ + GtkTreeView *tv = GTK_TREE_VIEW (widget); + GtkTreeViewColumn *column; + char *text; + + (void)user_data; + + if (!gtk_tree_view_get_tooltip_context (tv, &x, &y, keyboard_tip, + NULL, NULL, NULL)) + return FALSE; /* Not at a row - do not show a tooltip. */ + if (!gtk_tree_view_get_path_at_pos (tv, x, y, NULL, &column, NULL, NULL)) + return FALSE; + + widget = gtk_tree_view_column_get_widget (column); + text = widget? gtk_widget_get_tooltip_text (widget) : NULL; + if (!text) + return FALSE; /* No tooltip desired. */ + + gtk_tooltip_set_text (tooltip, text); + g_free (text); + + return TRUE; /* Show tooltip. */ +} +#endif /*ENABLE_TOFU_INFO*/ diff --git a/src/gpa-tofu-list.h b/src/gpa-tofu-list.h new file mode 100644 index 0000000..f568eb7 --- /dev/null +++ b/src/gpa-tofu-list.h @@ -0,0 +1,31 @@ +/* gpa-tofu-list.h - A list to show TOFU information + * Copyright (C) 2016 g10 Code GmbH + * + * This file is part of GPA + * + * GPA is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 3 of the License, or + * (at your option) any later version. + * + * GPA is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, see . + */ + +#ifndef GPA_TOFU_LIST_H +#define GPA_TOFU_LIST_H + +#include + +/* Create a new TOFU list. */ +GtkWidget * gpa_tofu_list_new (void); + +/* Set the key for which TOFU information shall be shown. */ +void gpa_tofu_list_set_key (GtkWidget *list, gpgme_key_t key); + +#endif /* GPA_TOFU_LIST_H */ diff --git a/src/gpa.h b/src/gpa.h index deebed1..57bddb8 100644 --- a/src/gpa.h +++ b/src/gpa.h @@ -46,6 +46,10 @@ #include "options.h" /* ditto */ +#if GPGME_VERSION_NUMBER >= 0x010700 +# define ENABLE_TOFU_INFO 1 +#endif + /* Global constants. */ #define GPA_MAX_UID_WIDTH 50 /* # of chars after wich a user id is truncated in dialog boxes. */ diff --git a/src/gpafileencryptop.c b/src/gpafileencryptop.c index 4e22446..a76c4e0 100644 --- a/src/gpafileencryptop.c +++ b/src/gpafileencryptop.c @@ -581,6 +581,7 @@ expired_key (gpgme_key_t key, GtkWidget *parent) gtk_box_pack_start (GTK_BOX (hbox), vbox, TRUE, TRUE, 0); gtk_box_pack_start_defaults (GTK_BOX (GTK_DIALOG (dialog)->vbox), hbox); + /* Fixme: We leak the date string. */ message = g_strdup_printf (_("The following key expired on %s:"), gpa_expiry_date_string (key->subkeys->expires)); diff --git a/src/keymanager.c b/src/keymanager.c index 2cef4ab..d90fcc7 100644 --- a/src/keymanager.c +++ b/src/keymanager.c @@ -723,6 +723,9 @@ key_manager_selection_changed (GtkTreeSelection *treeselection, is okay. */ gpgme_set_keylist_mode (self->ctx->ctx, (old_mode +#ifdef GPGME_KEYLIST_MODE_WITH_TOFU + | GPGME_KEYLIST_MODE_WITH_TOFU +#endif | GPGME_KEYLIST_MODE_SIGS | GPGME_KEYLIST_MODE_VALIDATE)); gpgme_set_protocol (self->ctx->ctx, key->protocol); ----------------------------------------------------------------------- Summary of changes: src/Makefile.am | 1 + src/convert.c | 31 ++-- src/convert.h | 3 +- src/gpa-key-details.c | 85 +++++++++- src/gpa-tofu-list.c | 266 +++++++++++++++++++++++++++++++ src/{ownertrustdlg.h => gpa-tofu-list.h} | 23 +-- src/gpa.h | 4 + src/gpafileencryptop.c | 1 + src/keymanager.c | 3 + 9 files changed, 389 insertions(+), 28 deletions(-) create mode 100644 src/gpa-tofu-list.c copy src/{ownertrustdlg.h => gpa-tofu-list.h} (52%) hooks/post-receive -- The GNU Privacy Assistant http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 21:56:14 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Sat, 05 Nov 2016 21:56:14 +0100 Subject: [git] GPA - branch, master, updated. gpa-0.9.9-9-gc669156 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Assistant". The branch, master has been updated via c669156837d41cb0c051007dd863888bc13ef97f (commit) from 059956d3efce81a3bb22967335dadc72c027d883 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit c669156837d41cb0c051007dd863888bc13ef97f Author: Werner Koch Date: Sat Nov 5 21:53:45 2016 +0100 Fix make distcheck broken by last commit. -- diff --git a/src/Makefile.am b/src/Makefile.am index 67c8190..4957b66 100644 --- a/src/Makefile.am +++ b/src/Makefile.am @@ -119,7 +119,7 @@ gpa_SOURCES = \ selectkeydlg.c selectkeydlg.h \ keymanager.c keymanager.h \ gpa-key-details.c gpa-key-details.h \ - gpa-tofu-list.c glag-tofu-list.h \ + gpa-tofu-list.c gpa-tofu-list.h \ ownertrustdlg.c ownertrustdlg.h \ keysigndlg.c keysigndlg.h \ keygendlg.c keygendlg.h \ ----------------------------------------------------------------------- Summary of changes: src/Makefile.am | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) hooks/post-receive -- The GNU Privacy Assistant http://git.gnupg.org From cvs at cvs.gnupg.org Sat Nov 5 22:25:50 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Sat, 05 Nov 2016 22:25:50 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-48-g2e17565 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via 2e17565fd9cb94afe840050780d28db75e5c4053 (commit) from b945576fe906ffcd5bcc50b4322ef2f34d8fb89f (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 2e17565fd9cb94afe840050780d28db75e5c4053 Author: Daniel Kahn Gillmor Date: Thu Nov 3 12:31:40 2016 -0400 gnome3: Test if Gcr System Prompter is available at startup. * gnome3/pinentry-gnome3.c (gcr_system_prompt_available): New. Tests whether it is possible to create a GcrSystemPrompt. (main): Use gcr_system_prompt_available() to decide whether to fall back to curses or not. -- Debian-bug-id: 842015 Signed-off-by: Daniel Kahn Gillmor diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index afa95b7..ba6ab46 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -390,6 +390,41 @@ pe_gcr_timeout_done (gpointer user_data) pinentry_cmd_handler_t pinentry_cmd_handler = gnome3_cmd_handler; + +/* Test whether we can create a system prompt or not. This briefly + * does create a system prompt, which blocks other tools from making + * the same request concurrently, so we just create it to test if it is + * available, and quickly close it. */ +static int +pe_gcr_system_prompt_available (void) +{ + GcrSystemPrompt *prompt; + GError *error = NULL; + int ret = 0; + + prompt = GCR_SYSTEM_PROMPT (gcr_system_prompt_open (0, NULL, &error)); + if (prompt) + { + ret = 1; + if (!gcr_system_prompt_close (prompt, NULL, &error)) + fprintf (stderr, "failed to close test Gcr System Prompt (%d): %s\n", + error ? error->code : -1, + error ? error->message : ""); + g_clear_object (&prompt); + } + else if (error && error->code == GCR_SYSTEM_PROMPT_IN_PROGRESS) + { + /* This one particular failure is OK; we're clearly capable of + * making a system prompt, even though someone else has the + * system prompter right now: */ + ret = 1; + } + + if (error) + g_error_free (error); + return ret; +} + int main (int argc, char *argv[]) { @@ -402,6 +437,12 @@ main (int argc, char *argv[]) " falling back to curses\n"); pinentry_cmd_handler = curses_cmd_handler; } + else if (!pe_gcr_system_prompt_available ()) + { + fprintf (stderr, "No Gcr System Prompter available," + " falling back to curses\n"); + pinentry_cmd_handler = curses_cmd_handler; + } #endif pinentry_parse_opts (argc, argv); ----------------------------------------------------------------------- Summary of changes: gnome3/pinentry-gnome3.c | 41 +++++++++++++++++++++++++++++++++++++++++ 1 file changed, 41 insertions(+) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 01:06:32 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 07 Nov 2016 01:06:32 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-49-ge353f4d Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via e353f4d1ac31e58f46eeba29279adf809dfb96a9 (commit) from 2e17565fd9cb94afe840050780d28db75e5c4053 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit e353f4d1ac31e58f46eeba29279adf809dfb96a9 Author: Daniel Kahn Gillmor Date: Sun Nov 6 02:17:04 2016 -0500 gnome3: Fall back to curses if screensaver is locked. * gnome3/pinentry-gnome3.c (pe_gnome_screen_locked): New Function. Returns true only if we can talk to a GNOME screensaver over D-Bus and it assures us that it is locked. (main): If GNOME screensaver is locked, fall back to curses. -- We assume that if pinentry is triggered while the screensaver is locked, then it is likely being done by some sort of remote connection (e.g. ssh), and isn't being done directly from the graphical console. In that case, prompting at the graphical console won't be able to get the attention of the user, so we should fall back to curses if possible. GnuPG-bug-id: 2818 diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index ba6ab46..e06885e 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -390,6 +390,71 @@ pe_gcr_timeout_done (gpointer user_data) pinentry_cmd_handler_t pinentry_cmd_handler = gnome3_cmd_handler; +/* Test whether there is a GNOME screensaver running that happens to + * be locked. Note that if there is no GNOME screensaver running at + * all the answer is still FALSE. */ +static gboolean +pe_gnome_screen_locked (void) +{ + GDBusConnection *dbus; + GError *error = NULL; + GVariant *reply, *reply_bool; + gboolean ret; + + dbus = g_bus_get_sync (G_BUS_TYPE_SESSION, NULL, &error); + + if (!dbus) + { + fprintf (stderr, "failed to connect to user session D-Bus (%d): %s", + error ? error->code : -1, + error ? error->message : ""); + if (error) + g_error_free (error); + return FALSE; + } + + /* this is intended to be the equivalent of: + * dbus-send --print-reply=literal --session \ + * --dest=org.gnome.ScreenSaver \ + * /org/gnome/ScreenSaver \ + * org.gnome.ScreenSaver.GetActive + */ + reply = g_dbus_connection_call_sync (dbus, + "org.gnome.ScreenSaver", + "/org/gnome/ScreenSaver", + "org.gnome.ScreenSaver", + "GetActive", + NULL, + ((const GVariantType *) "(b)"), + G_DBUS_CALL_FLAGS_NO_AUTO_START, + 0, + NULL, + &error); + g_object_unref(dbus); + if (!reply) + { + fprintf (stderr, "failed to get reply (%d): %s", + error ? error->code : -1, + error ? error->message : ""); + if (error) + g_error_free (error); + return FALSE; + } + reply_bool = g_variant_get_child_value (reply, 0); + if (!reply_bool) + { + fprintf (stderr, "failed to get boolean from reply\n"); + ret = FALSE; + } + else + { + ret = g_variant_get_boolean (reply_bool); + g_variant_unref (reply_bool); + } + + g_variant_unref (reply); + return ret; +} /* Test whether we can create a system prompt or not. This briefly * does create a system prompt, which blocks other tools from making @@ -443,6 +508,12 @@ main (int argc, char *argv[]) " falling back to curses\n"); pinentry_cmd_handler = curses_cmd_handler; } + else if (pe_gnome_screen_locked ()) + { + fprintf (stderr, "GNOME screensaver is locked," + " falling back to curses\n"); + pinentry_cmd_handler = curses_cmd_handler; + } #endif pinentry_parse_opts (argc, argv); ----------------------------------------------------------------------- Summary of changes: gnome3/pinentry-gnome3.c | 71 ++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 71 insertions(+) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 01:27:17 2016 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 07 Nov 2016 01:27:17 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-51-g15a6fd9 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via 15a6fd9f1ee0e3bc62daf143546f5186ce947700 (commit) via e4e3a9cc88704dcffac660d0b92fd1ed8abecc11 (commit) from e353f4d1ac31e58f46eeba29279adf809dfb96a9 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 15a6fd9f1ee0e3bc62daf143546f5186ce947700 Author: Daniel Kahn Gillmor Date: Sat Nov 5 17:53:47 2016 -0400 gnome3: Avoid risk of uinitialized memory access. * gnome3/pinentry-gnome3.c (_propagate_g_error_to_pinentry): Ensure that pinentry->specific_err_info is null-terminated. -- It's possible that "%d: %s" ends up producing more than 20 additional characters. A 64-bit signed int at its minimum is "-9223372036854775808", which is 20 characters. On any platform where gint is 128-bit (i don't know whether they exist), it could be significantly more. snprintf doesn't write the final NUL byte if the string exceeds the buffer, so anyone reading specific_err_info as a NUL-terminated string in such a case would go on to read uninitialized memory after the buffer. So we should force there to always be a NUL char after the written buffer. It would be simpler to use asprintf, but i suspect that's not portable enough for use in pinentry. Signed-off-by: Daniel Kahn Gillmor Signed-off-by: Neal H. Walfield diff --git a/gnome3/pinentry-gnome3.c b/gnome3/pinentry-gnome3.c index e06885e..f9c9262 100644 --- a/gnome3/pinentry-gnome3.c +++ b/gnome3/pinentry-gnome3.c @@ -93,13 +93,26 @@ static void _propagate_g_error_to_pinentry (pinentry_t pe, GError *error, gpg_err_code_t code, const char *loc) { - size_t infolen = strlen(error->message) + 20; + char *t; + + /* We can't return the result of g_strdup_printf directly, because + * this needs to be g_free'd, but the users of PE (e.g., + * pinentry_reset in pinentry/pinentry.c) use free. */ + t = g_strdup_printf ("%d: %s", error->code, error->message); + if (t) + { + /* If strdup fails, then PE->SPECIFIC_ERR_INFO will be NULL, + * which is exactly what we want if strdup fails. So, there is + * no need to check for failure. */ + pe->specific_err_info = strdup (t); + g_free (t); + } + else + { + pe->specific_err_info = NULL; + } pe->specific_err = gpg_error (code); - pe->specific_err_info = malloc (infolen); - if (pe->specific_err_info) - snprintf (pe->specific_err_info, infolen, - "%d: %s", error->code, error->message); pe->specific_err_loc = loc; } commit e4e3a9cc88704dcffac660d0b92fd1ed8abecc11 Author: Daniel Kahn Gillmor Date: Sat Nov 5 23:26:35 2016 -0400 tty: Declare dummy curses_cmd_handler. * tty/pinentry-tty.c: Declare a dummy handler for the curses_cmd_handler for fallback. -- This is needed for building pinentry-tty, which links to a copy of the pinentry object which doesn't have curses (it makes no sense to fallback from tty to curses). But the new cmd_info in pinentry/pinentry.c needs some sort of value to test against when reporting the flavor. You can replicate this linker error from git with: ./autogen.sh ./configure --enable-maintainer-mode \ --enable-{fallback-curses,pinentry-tty} \ --disable-{inside-emacs,libsecret} && make Which produces: gcc -g -O2 -Wall -Wcast-align -Wshadow -Wstrict-prototypes -Wformat -Wno-format-y2k -Wformat-security -W -Wno-sign-compare -Wno-missing-field-initializers -Wdeclaration-after-statement -Wno-pointer-sign -Wpointer-arith -o pinentry-tty pinentry-tty.o ../pinentry/libpinentry.a ../secmem/libsecmem.a -lassuan -L/usr/lib/x86_64-linux-gnu -lgpg-error -L/usr/lib/x86_64-linux-gnu -lgpg-error -lcap ../pinentry/libpinentry.a(pinentry.o): In function `cmd_getinfo': ?BUILDDIR?/pinentry/pinentry.c:1457: undefined reference to `curses_cmd_handler' collect2: error: ld returned 1 exit status Makefile:410: recipe for target 'pinentry-tty' failed make[2]: *** [pinentry-tty] Error 1 make[2]: Leaving directory '?BUILDDIR?/tty' One could argue that developers who --enable-tty then must also --disable-fallback-curses, but that would just mean that it's impossible to't build one of the graphical pinentries at the same time (with curses fallback) as you are actually building pinentry-tty. Arguably, though, the ./configure script should figure out the right thing to do in this case and the build each variant sensibly. This patch is a hack to ensure that pinentry-tty continues to link properly even when other pinentries are being built concurrently with a curses fallback. Signed-off-by: Daniel Kahn Gillmor diff --git a/tty/pinentry-tty.c b/tty/pinentry-tty.c index bd82fad..3d6cd5a 100644 --- a/tty/pinentry-tty.c +++ b/tty/pinentry-tty.c @@ -556,6 +556,10 @@ tty_cmd_handler(pinentry_t pinentry) pinentry_cmd_handler_t pinentry_cmd_handler = tty_cmd_handler; +/* needed to link cleanly; should never be used except for comparison + * in pinentry/pinentry.c's cmd_getinfo(): */ +pinentry_cmd_handler_t curses_cmd_handler = NULL; + int main (int argc, char *argv[]) ----------------------------------------------------------------------- Summary of changes: gnome3/pinentry-gnome3.c | 23 ++++++++++++++++++----- tty/pinentry-tty.c | 4 ++++ 2 files changed, 22 insertions(+), 5 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 02:17:24 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Mon, 07 Nov 2016 02:17:24 +0100 Subject: [git] Poldi - branch, master, updated. release-0.4.1-37-g201e9a6 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PAM for the OpenPGP card". The branch, master has been updated via 201e9a653ef887c060d68ed3e868312e47a20817 (commit) from 448ca0ee59007691e223f7054fb6eec2336d41df (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 201e9a653ef887c060d68ed3e868312e47a20817 Author: NIIBE Yutaka Date: Mon Nov 7 10:16:56 2016 +0900 spelling fixes of doc/poldi.texi. -- Signed-off-by: NIIBE Yutaka diff --git a/doc/poldi.texi b/doc/poldi.texi index 191a44a..17fe3b9 100644 --- a/doc/poldi.texi +++ b/doc/poldi.texi @@ -15,7 +15,7 @@ @dircategory GNU Utilities @direntry -* poldi: (poldi) PAM authenciation via OpenPGP smartcards. +* poldi: (poldi) PAM authentication via OpenPGP smartcards. @end direntry @include version.texi @@ -104,7 +104,7 @@ and currently supports two authentication methods: @table @asis @item ``local-database'' authentication method -This method establishs the mapping between user accounts and +This method establishes the mapping between user accounts and smartcards through a locally administered database. @item ``X509'' authentication @@ -158,10 +158,10 @@ Such an entry is of the following form: @section X509 authentication With X509 authentication smartcards need to be associated with X509 -certicates. This mapping is to be established through the ``url'' +certificates. This mapping is to be established through the ``url'' field on the OpenPGP smartcard. The url field is expected to hold either a valid LDAP url (``ldap://...'') or a file url -(``file:///...''). After a certificate has been successfuly looked +(``file:///...''). After a certificate has been successfully looked up, it is validated through Dirmngr and a challenge-response authentication is triggered against the smartcard. The mapping between smartcards and local accounts is established through the list @@ -172,12 +172,12 @@ addresses for the local username on the system. Note: semantics might change. To illustrate this with an example: lets assume a user is trying to -authenticate himself trough Poldi's X509 method. Poldi looks up the +authenticate himself through Poldi's X509 method. Poldi looks up the url field of the user's smartcard and retrieves his X509 certificate. The certificate contains two e-mail addresses: ``'' and ``''. Since the administrator set the ``X509 domain'' to ``gnupg.org'' in Poldi's configuration file, Poldi will -pick out the address ``fry@@gnupg.org'' and (after succesful +pick out the address ``fry@@gnupg.org'' and (after successful challenge-response authentication) will let the user login as ``fry''. @node Installation from Source @@ -190,7 +190,7 @@ dependencies may vary with the enabled authentication methods. Independent from enabled authentication methods, Poldi depends on Libgpg-error, Libgcrypt, Libassuan, Scdaemon and of course Libpam. -The ``X509'' authentication method additionaly has a build-time +The ``X509'' authentication method additionally has a build-time dependency on libksba and requires Dirmngr to be properly setup at runtime. The ``local database'' authentication method has no additional requirements. @@ -224,7 +224,7 @@ Poldi's main configuration file is ``@code{sysconfdir}/poldi/poldi.conf''. The syntax of Poldi's configuration file is identical to the one used by several other GnuPG components; options and their values are written next to each other, -seperated by a whitespace - one such configuration item per line. +separated by a white space - one such configuration item per line. Poldi supports the following authentication method independent options, which can be specified in the main configuration file and in @@ -405,7 +405,7 @@ settings: @item Organizational Unit: Testing @end table -The other options required are rather self-explanitory. After CA +The other options required are rather self-explanatory. After CA creation, we need to generate a signing request. For this, gpgsm --gen-key can be used (after inserting the users smartcard). Here is an example session (* at the beginning means user's input): @@ -540,7 +540,7 @@ Again, it's a very good idea to also add: @example debug -log-file /some/where/poldi.og +log-file /some/where/poldi.log @end example Add the following to ``poldi-x509.conf'': ----------------------------------------------------------------------- Summary of changes: doc/poldi.texi | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) hooks/post-receive -- PAM for the OpenPGP card http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 04:51:44 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Mon, 07 Nov 2016 04:51:44 +0100 Subject: [git] Poldi - branch, master, updated. release-0.4.1-39-g67d9216 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PAM for the OpenPGP card". The branch, master has been updated via 67d92164f5512d4b0ba5d7461085b7941d091bf8 (commit) via 9604dba2dadb77fe4dce2c536c44ceba56c3a05c (commit) from 201e9a653ef887c060d68ed3e868312e47a20817 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 67d92164f5512d4b0ba5d7461085b7941d091bf8 Author: NIIBE Yutaka Date: Mon Nov 7 12:51:16 2016 +0900 Add NEWS entries. -- Signed-off-by: NIIBE Yutaka diff --git a/NEWS b/NEWS index decdc2d..a52f269 100644 --- a/NEWS +++ b/NEWS @@ -2,6 +2,19 @@ Changes since version 0.4.1: +* poldi-ctrl is removed + Please use gpg-connect-agent instead. + +* Poldi always invokes scdaemon to connect it through pipe + Older Poldi has a feature of connecting to scdaemon with help of + gpg-agent using the GPG_AGENT_INFO enviornment variable. In GnuPG + 2.1, the GPG_AGENT_INFO is gone and scdaemon no longer keeps locking + the reader after card removal, it is good to always invoke scdaemon + for the authentication. If there is an existing scdaemon with card + inserted, a failure is expected and this is safer fallback. That's + because Poldi should not connect to a smartcard which is in use for + other purpose and possibly already authenticated. + * New option "scdaemon-options" Added a new option "scdaemon-options", which can be used to specify the scdaemon configuration file to use for newly spawned scdaemon commit 9604dba2dadb77fe4dce2c536c44ceba56c3a05c Author: NIIBE Yutaka Date: Mon Nov 7 11:49:08 2016 +0900 Fix path of scdaemon. * am/cmacros.am (AM_CPPFLAGS): Add GNUPG_LIBEXECDIR. * configure.ac (GNUPG_DEFAULT_SCD): Use GNUPG_LIBEXECDIR. -- Signed-off-by: NIIBE Yutaka diff --git a/am/cmacros.am b/am/cmacros.am index ca24616..7cfab3f 100644 --- a/am/cmacros.am +++ b/am/cmacros.am @@ -1,4 +1,5 @@ -AM_CPPFLAGS += -DGNUPG_BINDIR="\"$(bindir)\"" +AM_CPPFLAGS += -DGNUPG_BINDIR="\"$(bindir)\"" \ + -DGNUPG_LIBEXECDIR="\"$(libexecdir)\"" datadir = @datadir@ localedir = $(datadir)/locale DEFS = -DLOCALEDIR=\"$(localedir)\" @DEFS@ diff --git a/configure.ac b/configure.ac index 5e87907..1886e2c 100644 --- a/configure.ac +++ b/configure.ac @@ -69,7 +69,7 @@ AC_DEFINE_UNQUOTED(NEED_KSBA_VERSION, "$NEED_KSBA_VERSION", AH_BOTTOM([ /* Setup the hardwired names of modules. */ #ifndef GNUPG_DEFAULT_SCD -#define GNUPG_DEFAULT_SCD ( GNUPG_BINDIR "/scdaemon" ) +#define GNUPG_DEFAULT_SCD ( GNUPG_LIBEXECDIR "/scdaemon" ) #endif #ifndef GNUPG_DEFAULT_DIRMNGR #define GNUPG_DEFAULT_DIRMNGR ( GNUPG_BINDIR "/dirmngr" ) diff --git a/src/scd/scd.c b/src/scd/scd.c index 9f60026..abd63f9 100644 --- a/src/scd/scd.c +++ b/src/scd/scd.c @@ -180,8 +180,7 @@ scd_connect (scd_context_t *scd_ctx, const char *scd_path, no_close_list[i] = -1; /* connect to the scdaemon and perform initial handshaking */ - rc = assuan_pipe_connect (&assuan_ctx, scd_path, argv, - no_close_list); + rc = assuan_pipe_connect (&assuan_ctx, scd_path, argv, no_close_list); if (!rc) { log_msg_debug (loghandle, ----------------------------------------------------------------------- Summary of changes: NEWS | 13 +++++++++++++ am/cmacros.am | 3 ++- configure.ac | 2 +- src/scd/scd.c | 3 +-- 4 files changed, 17 insertions(+), 4 deletions(-) hooks/post-receive -- PAM for the OpenPGP card http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 06:02:43 2016 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Mon, 07 Nov 2016 06:02:43 +0100 Subject: [git] Poldi - branch, master, updated. release-0.4.1-40-g16912be Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "PAM for the OpenPGP card". The branch, master has been updated via 16912be8d2685e82a3fe40e94912e90cbb73e47b (commit) from 67d92164f5512d4b0ba5d7461085b7941d091bf8 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 16912be8d2685e82a3fe40e94912e90cbb73e47b Author: NIIBE Yutaka Date: Mon Nov 7 13:56:16 2016 +0900 Fix SERIALNO command. * src/scd/scd.c (scd_serialno_internal): No agent any more. -- Signed-off-by: NIIBE Yutaka diff --git a/src/scd/scd.c b/src/scd/scd.c index abd63f9..a565f78 100644 --- a/src/scd/scd.c +++ b/src/scd/scd.c @@ -452,8 +452,7 @@ scd_serialno_internal (assuan_context_t ctx, char **r_serialno) serialno = NULL; - rc = assuan_transact (ctx, agent ? "SCD SERIALNO" : "SERIALNO", - NULL, NULL, NULL, NULL, + rc = assuan_transact (ctx, "SERIALNO", NULL, NULL, NULL, NULL, get_serialno_cb, &serialno); if (rc) goto out; ----------------------------------------------------------------------- Summary of changes: src/scd/scd.c | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) hooks/post-receive -- PAM for the OpenPGP card http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 10:56:48 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 07 Nov 2016 10:56:48 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.7-52-g8f51108 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via 8f51108a17d0080c33fae182f1e4b9259f10a9e5 (commit) from 15a6fd9f1ee0e3bc62daf143546f5186ce947700 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 8f51108a17d0080c33fae182f1e4b9259f10a9e5 Author: Werner Koch Date: Mon Nov 7 08:37:11 2016 +0100 Add fail-safe string termination for snprintf. * gtk+-2/pinentry-gtk-2.c (changed_text_handler): Make sure an snprintf buffer is always ternminated. * pinentry/pinentry.c (my_strusage): Ditto. (write_status_error): Ditto. (cmd_getinfo): Ditto. * w32/main.c (w32_strerror): Ditto. -- This is to fix the surprising implementation of snprintf on Windows. Note that we don't need this in GnuPG because there we use our own snprintf. Signed-off-by: Werner Koch diff --git a/gtk+-2/pinentry-gtk-2.c b/gtk+-2/pinentry-gtk-2.c index a7ac91e..6037533 100644 --- a/gtk+-2/pinentry-gtk-2.c +++ b/gtk+-2/pinentry-gtk-2.c @@ -398,12 +398,14 @@ changed_text_handler (GtkWidget *widget) else if (percent < 0) { snprintf (textbuf, sizeof textbuf, "(%d%%)", -percent); + textbuf[sizeof textbuf -1] = 0; color.red = 0xffff; percent = -percent; } else { snprintf (textbuf, sizeof textbuf, "%d%%", percent); + textbuf[sizeof textbuf -1] = 0; color.green = 0xffff; } gtk_progress_bar_set_fraction (GTK_PROGRESS_BAR (qualitybar), diff --git a/pinentry/pinentry.c b/pinentry/pinentry.c index 0023ebe..46e6894 100644 --- a/pinentry/pinentry.c +++ b/pinentry/pinentry.c @@ -604,8 +604,11 @@ my_strusage( int level ) size_t n = 50 + strlen (this_pgmname); str = malloc (n); if (str) - snprintf (str, n, "Usage: %s [options] (-h for help)", - this_pgmname); + { + snprintf (str, n, "Usage: %s [options] (-h for help)", + this_pgmname); + str[n-1] = 0; + } } p = str; } @@ -966,6 +969,7 @@ write_status_error (assuan_context_t ctx, pinentry_t pe) pe->specific_err_loc? pe->specific_err_loc : "?", pe->specific_err, pe->specific_err_info? pe->specific_err_info : ""); + buf[sizeof buf -1] = 0; assuan_write_status (ctx, "ERROR", buf); } @@ -1435,6 +1439,7 @@ cmd_getinfo (assuan_context_t ctx, char *line) { snprintf (buffer, sizeof buffer, "%lu", (unsigned long)getpid ()); + buffer[sizeof buffer -1] = 0; rc = assuan_send_data (ctx, buffer, strlen (buffer)); } else if (!strcmp (line, "flavor")) @@ -1460,6 +1465,7 @@ cmd_getinfo (assuan_context_t ctx, char *line) flags = ""; snprintf (buffer, sizeof buffer, "%s%s", s, flags); + buffer[sizeof buffer -1] = 0; rc = assuan_send_data (ctx, buffer, strlen (buffer)); } else diff --git a/w32/main.c b/w32/main.c index 8c19cb2..b35879d 100644 --- a/w32/main.c +++ b/w32/main.c @@ -83,6 +83,7 @@ w32_strerror (int ec) /* There is only a wchar_t FormatMessage. It does not make much sense to play the conversion game; we print only the code. */ snprintf (strerr, sizeof strerr, "ec=%d", ec); + strerr[sizeof strerr -1] = 0; #else FormatMessage (FORMAT_MESSAGE_FROM_SYSTEM, NULL, ec, MAKELANGID (LANG_NEUTRAL, SUBLANG_DEFAULT), ----------------------------------------------------------------------- Summary of changes: gtk+-2/pinentry-gtk-2.c | 2 ++ pinentry/pinentry.c | 10 ++++++++-- w32/main.c | 1 + 3 files changed, 11 insertions(+), 2 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 13:31:59 2016 From: cvs at cvs.gnupg.org (by Justus Winter) Date: Mon, 07 Nov 2016 13:31:59 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-328-g70215ff Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 70215ff470c82d144e872057dfa5a478cc9195f2 (commit) via 413cc50345557e0a516f33b98e8aab19bbc8b4fe (commit) via 6e677f9b55fdb610e93134042ee41ee5c641cbdf (commit) via 5840353d8bbcd9e75374f3bdb2547ffa7bbea897 (commit) from 4d7dc432b598d7d28d6caba78a94d12034134b96 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 70215ff470c82d144e872057dfa5a478cc9195f2 Author: Justus Winter Date: Mon Nov 7 12:28:07 2016 +0100 tests,tools: Reimplement 'mk-tdata' in Scheme. * tests/openpgp/defs.scm (tools): Drop 'mk-tdata'. * tests/openpgp/setup.scm (make-test-data): New function. * tests/openpgp/verify.scm: Avoid 'mk-tdata'. * tools/Makefile.am (noinst_PROGRAMS): Drop 'mk-tdata'. * tools/mk-tdata.c: Drop file. Signed-off-by: Justus Winter diff --git a/tests/openpgp/defs.scm b/tests/openpgp/defs.scm index c911ea3..62bd1e2 100644 --- a/tests/openpgp/defs.scm +++ b/tests/openpgp/defs.scm @@ -59,7 +59,6 @@ (gpgconf "GPGCONF" "tools/gpgconf") (gpg-preset-passphrase "GPG_PRESET_PASSPHRASE" "agent/gpg-preset-passphrase") - (mktdata "MKTDATA" "tools/mk-tdata") (gpgtar "GPGTAR" "tools/gpgtar") (gpg-zip "GPGZIP" "tools/gpg-zip") (pinentry "PINENTRY" "tests/openpgp/fake-pinentry"))) diff --git a/tests/openpgp/setup.scm b/tests/openpgp/setup.scm index 99fbdea..d3ce0d6 100755 --- a/tests/openpgp/setup.scm +++ b/tests/openpgp/setup.scm @@ -19,11 +19,17 @@ (load (with-path "defs.scm")) +(define (make-test-data filename size) + (call-with-binary-output-file + filename + (lambda (port) + (display (make-random-string size) port)))) + (define (create-gpghome) (echo "Creating test environment...") - (letfd ((fd (open "random_seed" (logior O_WRONLY O_CREAT O_BINARY) #o600))) - (call-with-fds (list (tool 'mktdata) "600") CLOSED_FD fd STDERR_FILENO)) + (srandom (getpid)) + (make-test-data "random_seed" 600) (for-each-p "Creating configuration files" @@ -44,10 +50,8 @@ (for-each-p "Creating sample data files" (lambda (size) - (letfd ((fd (open (string-append "data-" (number->string size)) - (logior O_WRONLY O_CREAT O_BINARY) #o600))) - (call-with-fds (list (tool 'mktdata) (number->string size)) - CLOSED_FD fd STDERR_FILENO))) + (make-test-data (string-append "data-" (number->string size)) + size)) '(500 9000 32000 80000)) (for-each-p "Unpacking samples" diff --git a/tests/openpgp/verify.scm b/tests/openpgp/verify.scm index e8aa7df..eb984b1 100755 --- a/tests/openpgp/verify.scm +++ b/tests/openpgp/verify.scm @@ -26,12 +26,14 @@ "Checking bogus signature" (lambda (char) (lettmp (x) - (pipe:do - (pipe:spawn `(,(tool 'mktdata) --char ,char "64")) - (pipe:write-to x (logior O_WRONLY O_CREAT O_BINARY) #o600)) + (call-with-binary-output-file + x + (lambda (port) + (display (make-string 64 (integer->char (string->number char))) + port))) (if (= 0 (call `(, at GPG --verify ,x data-500))) (error "no error code from verify")))) - '("0x2d" "0xca")) + '("#x2d" "#xca")) ;; A plain signed message created using ;; echo abc | gpg --homedir . --passphrase-fd 0 -u Alpha -z0 -sa msg diff --git a/tools/Makefile.am b/tools/Makefile.am index c07a8b1..75750f7 100644 --- a/tools/Makefile.am +++ b/tools/Makefile.am @@ -66,7 +66,7 @@ libexec_PROGRAMS += gpg-check-pattern endif if !HAVE_W32CE_SYSTEM -noinst_PROGRAMS = clean-sat mk-tdata make-dns-cert gpgsplit +noinst_PROGRAMS = clean-sat make-dns-cert gpgsplit endif if !HAVE_W32CE_SYSTEM diff --git a/tools/mk-tdata.c b/tools/mk-tdata.c deleted file mode 100644 index 0aca035..0000000 --- a/tools/mk-tdata.c +++ /dev/null @@ -1,75 +0,0 @@ -/* mk-tdata.c - Create some simple random testdata - * Copyright (C) 1998, 1999, 2000, 2001, 2006 Free Software Foundation, Inc. - * - * This file is free software; as a special exception the author gives - * unlimited permission to copy and/or distribute it, with or without - * modifications, as long as this notice is preserved. - * - * This program is distributed in the hope that it will be useful, but - * WITHOUT ANY WARRANTY, to the extent permitted by law; without even the - * implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. - */ - -#ifdef HAVE_CONFIG_H -#include -#endif -#include -#include -#include -#include -#include - - -#ifndef RAND_MAX /* for SunOS */ -#define RAND_MAX 32767 -#endif - -int -main(int argc, char **argv) -{ - int i, c = 0; - int limit =0; - int char_mode = 0; - -#if HAVE_W32_SYSTEM - if (setmode (fileno (stdout), O_BINARY) == -1) - perror ("setmode"); -#endif - - if (argc) - { - argc--; - argv++; - } - - /* Check for option --char N */ - if (argc > 1 && !strcmp (argv[0], "--char")) - { - char_mode = 1; - c = strtol (argv[1], NULL, 0); - argc -= 2; - argv += 2; - } - - limit = argc ? atoi(argv[0]) : 0; - - srand(getpid()); - - for (i=0; !limit || i < limit; i++ ) - { - if (char_mode) - { - putchar (c); - } - else - { -#ifdef HAVE_RAND - c = ((unsigned)(1 + (int) (256.0*rand()/(RAND_MAX+1.0)))-1); -#else - c = ((unsigned)(1 + (int) (256.0*random()/(RAND_MAX+1.0)))-1); -#endif - putchar (c); - } - } - return 0; -} commit 413cc50345557e0a516f33b98e8aab19bbc8b4fe Author: Justus Winter Date: Mon Nov 7 13:12:01 2016 +0100 gpgscm,w32: Provide schemish file handling for binary files. * tests/gpgscm/lib.scm (call-with-binary-input-file): New function. (call-with-binary-output-file): Likewise. Signed-off-by: Justus Winter diff --git a/tests/gpgscm/lib.scm b/tests/gpgscm/lib.scm index 270189d..a8ae2f8 100644 --- a/tests/gpgscm/lib.scm +++ b/tests/gpgscm/lib.scm @@ -187,6 +187,20 @@ (loop acc)))))) ;; +;; Windows support. +;; + +;; Like call-with-input-file but opens the file in 'binary' mode. +(define (call-with-binary-input-file filename proc) + (letfd ((fd (open filename (logior O_RDONLY O_BINARY)))) + (proc (fdopen fd "rb")))) + +;; Like call-with-output-file but opens the file in 'binary' mode. +(define (call-with-binary-output-file filename proc) + (letfd ((fd (open filename (logior O_WRONLY O_CREAT O_BINARY) #o600))) + (proc (fdopen fd "wb")))) + +;; ;; Libc functions. ;; commit 6e677f9b55fdb610e93134042ee41ee5c641cbdf Author: Justus Winter Date: Mon Nov 7 12:21:26 2016 +0100 gpgscm: Add support for pseudo-random numbers. * tests/gpgscm/ffi.c (do_getpid): New function. (do_srandom): Likewise. (random_scaled): Likewise. (do_random): Likewise. (do_make_random_string): Likewise. (ffi_init): Expose the new functions. * tests/gpgscm/lib.scm: Document the new functions. Signed-off-by: Justus Winter diff --git a/tests/gpgscm/ffi.c b/tests/gpgscm/ffi.c index 49aeb97..8bb2652 100644 --- a/tests/gpgscm/ffi.c +++ b/tests/gpgscm/ffi.c @@ -472,6 +472,73 @@ do_get_isotime (scheme *sc, pointer args) FFI_RETURN_STRING (sc, timebuf); } +static pointer +do_getpid (scheme *sc, pointer args) +{ + FFI_PROLOG (); + FFI_ARGS_DONE_OR_RETURN (sc, args); + FFI_RETURN_INT (sc, getpid ()); +} + +static pointer +do_srandom (scheme *sc, pointer args) +{ + FFI_PROLOG (); + int seed; + FFI_ARG_OR_RETURN (sc, int, seed, number, args); + FFI_ARGS_DONE_OR_RETURN (sc, args); + srand (seed); + FFI_RETURN (sc); +} + +static int +random_scaled (int scale) +{ + int v; +#ifdef HAVE_RAND + v = rand (); +#else + v = random (); +#endif + +#ifndef RAND_MAX /* for SunOS */ +#define RAND_MAX 32767 +#endif + + return ((int) (1 + (int) ((float) scale * v / (RAND_MAX + 1.0))) - 1); +} + +static pointer +do_random (scheme *sc, pointer args) +{ + FFI_PROLOG (); + int scale; + FFI_ARG_OR_RETURN (sc, int, scale, number, args); + FFI_ARGS_DONE_OR_RETURN (sc, args); + FFI_RETURN_INT (sc, random_scaled (scale)); +} + +static pointer +do_make_random_string (scheme *sc, pointer args) +{ + FFI_PROLOG (); + int size; + pointer chunk; + char *p; + FFI_ARG_OR_RETURN (sc, int, size, number, args); + FFI_ARGS_DONE_OR_RETURN (sc, args); + if (size < 0) + return ffi_sprintf (sc, "size must be positive"); + + chunk = sc->vptr->mk_counted_string (sc, NULL, size); + if (sc->no_memory) + FFI_RETURN_ERR (sc, ENOMEM); + + for (p = sc->vptr->string_value (chunk); size; p++, size--) + *p = (char) random_scaled (256); + FFI_RETURN_POINTER (sc, chunk); +} + /* estream functions. */ @@ -1233,6 +1300,12 @@ ffi_init (scheme *sc, const char *argv0, const char *scriptname, ffi_define_function (sc, mkdir); ffi_define_function (sc, rmdir); ffi_define_function (sc, get_isotime); + ffi_define_function (sc, getpid); + + /* Random numbers. */ + ffi_define_function (sc, srandom); + ffi_define_function (sc, random); + ffi_define_function (sc, make_random_string); /* Process management. */ ffi_define_function (sc, spawn_process); diff --git a/tests/gpgscm/lib.scm b/tests/gpgscm/lib.scm index 316eacf..270189d 100644 --- a/tests/gpgscm/lib.scm +++ b/tests/gpgscm/lib.scm @@ -185,3 +185,24 @@ (else (write-char (apply read-char p) acc) (loop acc)))))) + +;; +;; Libc functions. +;; + +;; Get our process id. +(ffi-define (getpid)) + +;; +;; Random numbers. +;; + +;; Seed the random number generator. +(ffi-define (srandom seed)) + +;; Get a pseudo-random number between 0 (inclusive) and SCALE +;; (exclusive). +(ffi-define (random scale)) + +;; Create a string of the given SIZE containing pseudo-random data. +(ffi-define (make-random-string size)) commit 5840353d8bbcd9e75374f3bdb2547ffa7bbea897 Author: Justus Winter Date: Mon Nov 7 12:53:17 2016 +0100 g10: Fix crash. * g10/getkey.c (get_best_pubkey_byname): If 'get_pubkey_byname' does not return a getkey context, then it can return at most one key, therefore there is nothing to rank. Also, always initialize '*retctx' to be on the safe side. GnuPG-bug-id: 2828 Fixes: ab89164be02012f1bf159c971853b8610e966301 Signed-off-by: Justus Winter diff --git a/g10/getkey.c b/g10/getkey.c index 648c230..59625e7 100644 --- a/g10/getkey.c +++ b/g10/getkey.c @@ -1577,18 +1577,19 @@ get_best_pubkey_byname (ctrl_t ctrl, GETKEY_CTX *retctx, PKT_public_key *pk, int rc; struct getkey_ctx_s *ctx = NULL; + if (retctx) + *retctx = NULL; + rc = get_pubkey_byname (ctrl, &ctx, pk, name, ret_keyblock, NULL, include_unusable, no_akl); if (rc) { if (ctx) getkey_end (ctx); - if (retctx) - *retctx = NULL; return rc; } - if (is_valid_mailbox (name)) + if (is_valid_mailbox (name) && ctx) { /* Rank results and return only the most relevant key. */ struct pubkey_cmp_cookie best = { 0 }, new; ----------------------------------------------------------------------- Summary of changes: g10/getkey.c | 7 +++-- tests/gpgscm/ffi.c | 73 ++++++++++++++++++++++++++++++++++++++++++++++ tests/gpgscm/lib.scm | 35 ++++++++++++++++++++++ tests/openpgp/defs.scm | 1 - tests/openpgp/setup.scm | 16 +++++++---- tests/openpgp/verify.scm | 10 ++++--- tools/Makefile.am | 2 +- tools/mk-tdata.c | 75 ------------------------------------------------ 8 files changed, 129 insertions(+), 90 deletions(-) delete mode 100644 tools/mk-tdata.c hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 14:07:36 2016 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 07 Nov 2016 14:07:36 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-329-g56e1864 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 56e1864aa337f36317534db521fd4434d70e0784 (commit) from 70215ff470c82d144e872057dfa5a478cc9195f2 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 56e1864aa337f36317534db521fd4434d70e0784 Author: Werner Koch Date: Mon Nov 7 14:04:47 2016 +0100 wks: Encrypt all client mails also the target key, * tools/gpg-wks-client.c (encrypt_response): Add arg FINGERPRINT. (send_confirmation_response): Ditto. (process_confirmation_request): Parse out fingerprint and pass send_confirmation_response. -- This is useful for debugging the protocol and to avoid surprises when the sender tries to open a message from the Sent folder. Signed-off-by: Werner Koch diff --git a/tools/gpg-wks-client.c b/tools/gpg-wks-client.c index cc0c0a5..9bf5403 100644 --- a/tools/gpg-wks-client.c +++ b/tools/gpg-wks-client.c @@ -113,7 +113,8 @@ static void wrong_args (const char *text) GPGRT_ATTR_NORETURN; static gpg_error_t command_supported (char *userid); static gpg_error_t command_send (const char *fingerprint, char *userid); static gpg_error_t encrypt_response (estream_t *r_output, estream_t input, - const char *addrspec); + const char *addrspec, + const char *fingerprint); static gpg_error_t read_confirmation_request (estream_t msg); static gpg_error_t command_receive_cb (void *opaque, const char *mediatype, estream_t fp, @@ -604,7 +605,7 @@ command_send (const char *fingerprint, char *userid) /* Encrypt the key part. */ es_rewind (key); - err = encrypt_response (&keyenc, key, submission_to); + err = encrypt_response (&keyenc, key, submission_to, fingerprint); if (err) goto leave; es_fclose (key); @@ -688,14 +689,16 @@ encrypt_response_status_cb (void *opaque, const char *keyword, char *args) /* Encrypt the INPUT stream to a new stream which is stored at success - * at R_OUTPUT. Encryption is done for ADDRSPEC. We currently - * retrieve that key from the WKD, DANE, or from "local". "local" is - * last to prefer the latest key version but use a local copy in case - * we are working offline. It might be useful for the server to send - * the fingerprint of its encryption key - or even the entire key - * back. */ + * at R_OUTPUT. Encryption is done for ADDRSPEC and for FINGERPRINT + * (so that the sent message may later be inspected by the user). We + * currently retrieve that key from the WKD, DANE, or from "local". + * "local" is last to prefer the latest key version but use a local + * copy in case we are working offline. It might be useful for the + * server to send the fingerprint of its encryption key - or even the + * entire key back. */ static gpg_error_t -encrypt_response (estream_t *r_output, estream_t input, const char *addrspec) +encrypt_response (estream_t *r_output, estream_t input, const char *addrspec, + const char *fingerprint) { gpg_error_t err; ccparray_t ccp; @@ -730,6 +733,8 @@ encrypt_response (estream_t *r_output, estream_t input, const char *addrspec) ccparray_put (&ccp, "--auto-key-locate=clear,wkd,dane,local"); ccparray_put (&ccp, "--recipient"); ccparray_put (&ccp, addrspec); + ccparray_put (&ccp, "--recipient"); + ccparray_put (&ccp, fingerprint); ccparray_put (&ccp, "--encrypt"); ccparray_put (&ccp, "--"); @@ -764,7 +769,8 @@ encrypt_response (estream_t *r_output, estream_t input, const char *addrspec) static gpg_error_t send_confirmation_response (const char *sender, const char *address, - const char *nonce, int encrypt) + const char *nonce, int encrypt, + const char *fingerprint) { gpg_error_t err; estream_t body = NULL; @@ -800,7 +806,7 @@ send_confirmation_response (const char *sender, const char *address, es_rewind (body); if (encrypt) { - err = encrypt_response (&bodyenc, body, sender); + err = encrypt_response (&bodyenc, body, sender, fingerprint); if (err) goto leave; es_fclose (body); @@ -876,7 +882,7 @@ process_confirmation_request (estream_t msg) gpg_error_t err; nvc_t nvc; nve_t item; - const char *value, *sender, *address, *nonce; + const char *value, *sender, *address, *fingerprint, *nonce; err = nvc_parse (&nvc, NULL, msg); if (err) @@ -903,6 +909,18 @@ process_confirmation_request (estream_t msg) goto leave; } + /* Get the fingerprint. */ + if (!((item = nvc_lookup (nvc, "fingerprint:")) + && (value = nve_value (item)) + && strlen (value) >= 40)) + { + log_error ("received invalid wks message: %s\n", + "'fingerprint' missing or invalid"); + err = gpg_error (GPG_ERR_INV_DATA); + goto leave; + } + fingerprint = value; + /* FIXME: Check that the fingerprint matches the key used to decrypt the * message. */ @@ -947,11 +965,11 @@ process_confirmation_request (estream_t msg) /* Send the confirmation. If no key was found, try again without * encryption. */ - err = send_confirmation_response (sender, address, nonce, 1); + err = send_confirmation_response (sender, address, nonce, 1, fingerprint); if (gpg_err_code (err) == GPG_ERR_NO_PUBKEY) { log_info ("no encryption key found - sending response in the clear\n"); - err = send_confirmation_response (sender, address, nonce, 0); + err = send_confirmation_response (sender, address, nonce, 0, NULL); } leave: ----------------------------------------------------------------------- Summary of changes: tools/gpg-wks-client.c | 46 ++++++++++++++++++++++++++++++++-------------- 1 file changed, 32 insertions(+), 14 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 14:11:23 2016 From: cvs at cvs.gnupg.org (by Justus Winter) Date: Mon, 07 Nov 2016 14:11:23 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.15-330-g37751d2 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 37751d2b194bc33539f5b9ea0e02e9f209d2bcf6 (commit) from 56e1864aa337f36317534db521fd4434d70e0784 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 37751d2b194bc33539f5b9ea0e02e9f209d2bcf6 Author: Justus Winter Date: Mon Nov 7 14:09:07 2016 +0100 tests: Fix build. * tests/openpgp/Makefile.am: Drop dependency on 'mk-tdata'. Fixes: 70215ff470c82d144e872057dfa5a478cc9195f2 Signed-off-by: Justus Winter diff --git a/tests/openpgp/Makefile.am b/tests/openpgp/Makefile.am index 8df968c..acd2329 100644 --- a/tests/openpgp/Makefile.am +++ b/tests/openpgp/Makefile.am @@ -22,7 +22,6 @@ # Programs required before we can run these tests. required_pgms = ../../g10/gpg$(EXEEXT) ../../agent/gpg-agent$(EXEEXT) \ ../../tools/gpg-connect-agent$(EXEEXT) \ - ../../tools/mk-tdata$(EXEEXT) \ ../gpgscm/gpgscm$(EXEEXT) AM_CPPFLAGS = -I$(top_srcdir)/common ----------------------------------------------------------------------- Summary of changes: tests/openpgp/Makefile.am | 1 - 1 file changed, 1 deletion(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Nov 7 15:46:00 2016 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Mon, 07 Nov 2016 15:46:00 +0100 Subject: [git] GpgOL - branch, nomapi, updated. gpgol-1.4.0-144-gb6b1b43 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG extension for MS Outlook". The branch, nomapi has been updated via b6b1b43ca1f29bf3afebd53d8afb0b3d7b3e7f4d (commit) via 2d411103d6ce9ff3b69353a095ac862c15312783 (commit) via 68835bfc6096603361038b985e9a93a9b42eb850 (commit) via 7c002f5b713786022964df6eae09f6dd06ddb0e0 (commit) via c21454e49cff01b0200f02c58812a696f7127050 (commit) via aadd8026eca38983fa14e1045400e8e9c0f50508 (commit) via 765e04b5e0fb6ce3ebcf2374a6e09dc8e3005ca9 (commit) via b41e5bcfaeab4964c0609d755177f31ecb5e458c (commit) via 24e1932dc7c974ce18f8171a9e8c16bdc1a359a5 (commit) from ada53e40e5c3907e8ae9539bd3212b57b48aba43 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b6b1b43ca1f29bf3afebd53d8afb0b3d7b3e7f4d Author: Andre Heinecke