?????????? ?????????

?????????? ????????? - ??????????????? - /home/agenciai/public_html/cd38d8/gnupg2.zip

???????
PK��\7!\ �"��examples/systemd-user/READMEnu��[��Socket-activated dirmngr and gpg-agent with systemd =================================================== When used on a GNU/Linux system supervised by systemd, you can ensure that the GnuPG daemons dirmngr and gpg-agent are launched automatically the first time they're needed, and shut down cleanly at session logout. This is done by enabling user services via socket-activation. System distributors ------------------- The .service and .socket files (from this directory) should be placed in /usr/lib/systemd/user/ alongside other user-session services and sockets. To enable socket-activated dirmngr for all accounts on the system, use: systemctl --user --global enable dirmngr.socket To enable socket-activated gpg-agent for all accounts on the system, use: systemctl --user --global enable gpg-agent.socket Additionally, you can enable socket-activated gpg-agent ssh-agent emulation for all accounts on the system with: systemctl --user --global enable gpg-agent-ssh.socket You can also enable restricted ("--extra-socket"-style) gpg-agent sockets for all accounts on the system with: systemctl --user --global enable gpg-agent-extra.socket Individual users ---------------- A user on a system with systemd where this has not been installed system-wide can place these files in ~/.config/systemd/user/ to make them available. If a given service isn't installed system-wide, or if it's installed system-wide but not globally enabled, individual users will still need to enable them. For example, to enable socket-activated dirmngr for all future sessions: systemctl --user enable dirmngr.socket To enable socket-activated gpg-agent with ssh support, do: systemctl --user enable gpg-agent.socket gpg-agent-ssh.socket These changes won't take effect until your next login after you've fully logged out (be sure to terminate any running daemons before logging out). If you'd rather try a socket-activated GnuPG daemon in an already-running session without logging out (with or without enabling it for all future sessions), kill any existing daemon and start the user socket directly. For example, to set up socket-activated dirmgnr in the current session: gpgconf --kill dirmngr systemctl --user start dirmngr.socket PK��\7!\BH;��;��examples/debug.prfnu��[��# debug.prf - Configure options for easier debugging -- conf -- # # Note that the actual debug options for each component need to be set # manually. Running the component with "--debug help" shows a list of # supported values. To watch the logs this command can be used: # # watchgnupg --time-only --force $(gpgconf --list-dirs socketdir)/S.log # [gpg] log-file socket:// verbose #debug ipc [gpgsm] log-file socket:// verbose #debug ipc [gpg-agent] log-file socket:// verbose #debug ipc #debug-pinentry [dirmngr] log-file socket:// verbose #debug ipc,dns PK��\7!\"��/��examples/pwpattern.listnu��[��# pwpattern.list -- default-generic -- # # This is an example for a pattern file as used by gpg-check-pattern. # The file is line based with comment lines beginning on the first # position with a '#'. Empty lines and lines with just spaces are # ignored. The other lines may be verbatim patterns and match as they # are (trailing spaces are ignored) or extended regular expressions # indicated by a / in the first column and terminated by another / or # end of line. All comparisons are case insensitive. # Reject the usual metavariables. Usual not required because # gpg-agent can be used to reject all passphrases shorter than 8 # characters. foo bar baz # As well as very common passwords. Note that gpg-agent can be used # to reject them due to missing non-alpha characters. password passwort passphrase mantra test abc egal # German number plates. /^[A-Z]{1,3}[ ]-[ ][A-Z]{1,2}[ ][0-9]+/ # Dates (very limited, only ISO dates). / /^[012][0-9][0-9][0-9]-[012][0-9]-[0123][0-9]$/ # Arbitrary strings the quick brown fox jumps over the lazy dogs back no-password no password 12345678 123456789 1234567890 87654321 987654321 0987654321 qwertyuiop qwertzuiop asdfghjkl zxcvbnm PK��\7!\əe��examples/Automatic.prfnu��[��# Automatic.prf - Configure options for a more automatic mode -- conf -- # # The options for each tool are configured in a section ("[TOOL]"); # see the respective man page for a description of these options and # the gpgconf manpage for a description of this file's syntax. [gpg] auto-key-locate local,wkd,dane auto-key-retrieve trust-model tofu+pgp$\r$\n' [gpg-agent] default-cache-ttl 900 max-cache-ttl 3600 min-passphrase-nonalpha 0 PK��\7!\��Ȣ6��6��examples/scd-eventnu��[��#!/bin/sh # Sample script for scdaemon event mechanism. #exec >>/tmp/scd-event.log PGM=scd-event reader_port= old_code=0x0000 new_code=0x0000 status= tick='`' prev= while [ $# -gt 0 ]; do arg="$1" case $arg in -=) optarg=$(echo "X$arg" \| sed -e '1s/^X//' -e 's/[-_a-zA-Z0-9]=//') ;; ) optarg= ;; esac if [ -n "$prev" ]; then eval "$prev=\$arg" prev= shift continue fi case $arg in --help\|-h) cat <<EOF Usage: $PGM [options] $PGM is called by scdaemon on card reader status changes Options: --reader-port N Reports change for port N --old-code 0xNNNN Previous status code --old-code 0xNNNN Current status code --status USABLE\|ACTIVE\|PRESENT\|NOCARD Human readable status code Environment: GNUPGHOME=DIR Set to the active homedir EOF exit 0 ;; --reader-port) prev=reader_port ;; --reader-port=) reader_port="$optarg" ;; --old-code) prev=old_code ;; --old-code=) old_code="$optarg" ;; --new-code) prev=new_code ;; --new-code=) new_code="$optarg" ;; --status) prev=status ;; --new-code=) status="$optarg" ;; -) echo "$PGM: invalid option $tick$arg'" >&2 exit 1 ;; ) break ;; esac shift done if [ -n "$prev" ]; then echo "$PGM: argument missing for option $tick$prev'" >&2 exit 1 fi cat <<EOF ======================== port: $reader_port old-code: $old_code new-code: $new_code status: $status EOF if [ x$status = xUSABLE ]; then gpg --batch --card-status 2>&1 fi PK��\7!\�Q�"��"��examples/VS-NfD.prfnu��[��# VS-NfD.prf - Configure options for the VS-NfD mode -- conf -- # # The options for each tool are configured in a section ("[TOOL]"); # see the respective man page for a description of these options and # the gpgconf manpage for a description of this file's syntax. [gpg] compliance de-vs [gpgsm] compliance de-vs enable-crl-checks [gpg-agent] default-cache-ttl 900 max-cache-ttl 3600 no-allow-mark-trusted no-allow-external-cache enforce-passphrase-constraints min-passphrase-len 9 min-passphrase-nonalpha 0 [dirmngr] allow-ocsp PK��\7!\2�ē �� examples/trustlist.txtnu��[��# This is the global list of trusted keys. Comment lines, like this # one, as well as empty lines are ignored. Lines have a length limit # but this is not serious limitation as the format of the entries is # fixed and checked by gpg-agent. A non-comment line starts with # optional white space, followed by the SHA-1 fingerpint in hex, # optionally followed by a flag character which my either be 'P', 'S' # or ''. This file will be read by gpg-agent if no local trustlist # is available or if the statement "include-default" is used in the # local list. You should give the gpg-agent(s) a HUP after editing # this file. #Serial number: 32D18D # Issuer: /CN=6R-Ca 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE EA:8D:99:DD:36:AA:2D:07:1A:3C:7B:69:00:9E:51:B9:4A:2E:E7:60 S #Serial number: 00C48C8D # Issuer: /CN=7R-CA 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE DB:45:3D:1B:B0:1A:F3:23:10:6B:DE:D0:09:61:57:AA:F4:25:E0:5B S #Serial number: 01 # Issuer: /CN=8R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE 42:6A:F6:78:30:E9:CE:24:5B:EF:41:A2:C1:A8:51:DA:C5:0A:6D:F5 S #Serial number: 02 # Issuer: /CN=9R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE 75:9A:4A:CE:7C:DA:7E:89:1B:B2:72:4B:E3:76:EA:47:3A:96:97:24 S #Serial number: 2A # Issuer: /CN=10R-CA 1:PN/O=Bundesnetzagentur/C=DE 31:C9:D2:E6:31:4D:0B:CC:2C:1A:45:00:A6:6B:97:98:27:18:8E:CD S #Serial number: 2D # Issuer: /CN=11R-CA 1:PN/O=Bundesnetzagentur/C=DE A0:8B:DF:3B:AA:EE:3F:9D:64:6C:47:81:23:21:D4:A6:18:81:67:1D S # S/N: 0139 # Issuer: /CN=12R-CA 1:PN/O=Bundesnetzagentur/C=DE 44:7E:D4:E3:9A:D7:92:E2:07:FA:53:1A:2E:F5:B8:02:5B:47:57:B0 de # S/N: 013C # Issuer: /CN=13R-CA 1:PN/O=Bundesnetzagentur/C=DE AC:A7:BE:45:1F:A6:BF:09:F2:D1:3F:08:7B:BC:EB:7F:46:A2:CC:8A de # S/N: 00B3963E0E6C2D65125853E970665402E5 # Issuer: /CN=S-TRUST Qualified Root CA 2008-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE C9:2F:E6:50:DB:32:59:E0:CE:65:55:F3:8C:76:E0:B8:A8:FE:A3:CA S # S/N: 00C4216083F35C54F67B09A80C3C55FE7D # Issuer: /CN=S-TRUST Qualified Root CA 2008-002:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE D5:C7:50:F2:FE:4E:EE:D7:C7:B1:E4:13:7B:FB:54:84:3A:7D:97:9B S #Serial number: 00 # Issuer: /CN=CA Cert Signing Authority/OU=http:\x2f\x2fwww. # cacert.org/O=Root CA/EMail=support@cacert.org 13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33 S PK��\7!\Z�&B�%��%��examples/qualified.txtnu��[��# This is the list of root certificates used for qualified # certificates. They are defined as certificates capable of creating # legally binding signatures in the same way as a handwritten # signatures are. Comments like this one and empty lines are allowed # Lines do have a length limit but this is not a serious limitation as # the format of the entries is fixed and checked by gpgsm: A # non-comment line starts with optional whitespaces, followed by # exactly 40 hex character, whitespace and a lowercased 2 letter # country code. Additional data delimited with by a whitespace is # current ignored but might late be used for other purposes. # # Note: The subversion copy of this file carries a gpg:signature # property with its OpenPGP signature. Check this signature before # adding entries: # svn pg gpg:signature qualified.txt \| gpg --verify - qualified.txt # to create a new signature: # f=qualified.txt; gpg -sba $f && svn ps gpg:signature -F $f.asc $f #**************************************** # # Belgium # # Need to figure out a reliable source. #*************************************** #*************************************** # # Germany # # The information for Germany is available # at http://www.bundesnetzagentur.de #*************************************** #Serial number: 32D18D # Issuer: /CN=6R-Ca 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE # Subject: /CN=6R-Ca 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE # validity: 2001-02-01 09:52:17 through 2005-06-01 09:52:17 # key type: 1024 bit RSA # key usage: certSign crlSign #[checked: 2005-11-14] EA:8D:99:DD:36:AA:2D:07:1A:3C:7B:69:00:9E:51:B9:4A:2E:E7:60 de #Serial number: 00C48C8D # Issuer: /CN=7R-CA 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE # Subject: /CN=7R-CA 1:PN/NameDistinguisher=1/O=RegulierungsbehÈorde # fÈur Telekommunikation und Post/C=DE # validity: 2001-10-15 11:15:15 through 2006-02-15 11:15:15 # key type: 1024 bit RSA # key usage: certSign crlSign #[checked: 2005-11-14] DB:45:3D:1B:B0:1A:F3:23:10:6B:DE:D0:09:61:57:AA:F4:25:E0:5B de #Serial number: 01 # Issuer: /CN=8R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE # Subject: /CN=8R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE # validity: 2004-11-25 14:10:37 through 2007-12-31 14:04:03 # key type: 1024 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited #[checked: 2005-11-14] 42:6A:F6:78:30:E9:CE:24:5B:EF:41:A2:C1:A8:51:DA:C5:0A:6D:F5 de #Serial number: 02 # Issuer: /CN=9R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE # Subject: /CN=9R-CA 1:PN/O=Regulierungsbehörde für # Telekommunikation und Post/C=DE # validity: 2004-11-25 14:59:11 through 2007-12-31 14:56:59 # key type: 1024 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited #[checked: 2005-11-14] 75:9A:4A:CE:7C:DA:7E:89:1B:B2:72:4B:E3:76:EA:47:3A:96:97:24 de #Serial number: 2A # Issuer: /CN=10R-CA 1:PN/O=Bundesnetzagentur/C=DE # Subject: /CN=10R-CA 1:PN/O=Bundesnetzagentur/C=DE # validity: 2005-08-03 15:30:36 through 2007-12-31 15:09:23 # key type: 1024 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited #[checked: 2005-11-14] 31:C9:D2:E6:31:4D:0B:CC:2C:1A:45:00:A6:6B:97:98:27:18:8E:CD de #Serial number: 2D # Issuer: /CN=11R-CA 1:PN/O=Bundesnetzagentur/C=DE # Subject: /CN=11R-CA 1:PN/O=Bundesnetzagentur/C=DE # validity: 2005-08-03 18:09:49 through 2007-12-31 18:04:28 # key type: 1024 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited #[checked: 2005-11-14] A0:8B:DF:3B:AA:EE:3F:9D:64:6C:47:81:23:21:D4:A6:18:81:67:1D de # ID: 0x5B4757B0 # S/N: 0139 # Issuer: /CN=12R-CA 1:PN/O=Bundesnetzagentur/C=DE # Subject: /CN=12R-CA 1:PN/O=Bundesnetzagentur/C=DE # validity: 2007-05-25 11:01:44 through 2012-05-25 10:56:07 # key type: 2048 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited # [checked: 2008-06-25] 44:7E:D4:E3:9A:D7:92:E2:07:FA:53:1A:2E:F5:B8:02:5B:47:57:B0 de # ID: 0x46A2CC8A # S/N: 013C # Issuer: /CN=13R-CA 1:PN/O=Bundesnetzagentur/C=DE # Subject: /CN=13R-CA 1:PN/O=Bundesnetzagentur/C=DE # validity: 2007-05-29 11:02:37 through 2012-05-29 10:55:54 # key type: 2048 bit RSA # key usage: certSign # policies: 1.3.36.8.1.1:N: # chain length: unlimited # [checked: 2008-06-25] AC:A7:BE:45:1F:A6:BF:09:F2:D1:3F:08:7B:BC:EB:7F:46:A2:CC:8A de # # D-Trust root certificates. Probably by shifting a lot of Euros to # laywer companies, German CAs achieved to get the permission to # create their own legally binding root certificates - independent of # the Bundesnetzagentur. The main problem with this is that it is # hard to figure out what qualified root certificates are actually # active. There is now no way to be sure whether a signature is a # qualified one. A pettifogger's way of validating certificates. # #Serial number: 00B95F # Issuer: /CN=D-TRUST Qualified Root CA 1 2006:PN/O=D-Trust GmbH/C=DE # Subject: /CN=D-TRUST Qualified Root CA 1 2006:PN/O=D-Trust GmbH/C=DE # aka: info@d-trust.net # aka: (uri http://www.d-trust.net) # validity: 2006-04-27 12:40:54 through 2011-04-27 12:40:54 # key type: 2048 bit RSA # key usage: certSign crlSign # policies: 1.3.6.1.4.1.4788.2.30.1:N: # chain length: unlimited #[checked: 2007-01-31 by phone 030-259391-0 and callback by Mrs. Enke] E0:BF:1B:91:91:6B:88:E4:F1:15:92:22:CE:37:23:96:B1:4A:2E:5C de #Serial number: 00B960 # Issuer: /CN=D-TRUST Qualified Root CA 2 2006:PN/O=D-Trust GmbH/C=DE # Subject: /CN=D-TRUST Qualified Root CA 2 2006:PN/O=D-Trust GmbH/C=DE # aka: info@d-trust.net # aka: (uri http://www.d-trust.net) # validity: 2006-04-27 12:40:54 through 2011-04-27 12:40:54 # key type: 2048 bit RSA # key usage: certSign crlSign # policies: 1.3.6.1.4.1.4788.2.30.1:N: # chain length: unlimited #[checked: 2007-01-31 by phone 030-259391-0 and callback by Mrs. Enke] 98:2A:75:67:0F:F8:28:4A:94:E0:9D:23:D8:E7:62:C8:BD:A4:54:04 de # # S-Trust root certificates. # #Serial number: 00DF749F80AA51F0EDC0CB1FC183E97EE2 # Issuer: /CN=S-TRUST Qualified Root CA 2006-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart # /ST=Baden-Wuerttemberg (BW)/C=DE # Subject: /CN=S-TRUST Qualified Root CA 2006-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart # /ST=Baden-Wuerttemberg (BW)/C=DE # validity: 2006-01-01 00:00:00 through 2010-12-30 23:59:59 # key type: 2048 bit RSA # key usage: certSign crlSign # chain length: 1 #[checked: 2007-01-31 by phone 0711-782-0 Mr. Brommer] 7D:DC:76:1C:FD:AF:4C:E0:3A:B5:3A:DD:C9:FA:13:35:19:A3:DE:C9 de #Serial number: 00BC098E0402E92956B8D7DE74977E26F7 # Issuer: /CN=S-TRUST Qualified Root CA 2007-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart # /ST=Baden-Wuerttemberg (BW)/C=DE # Subject: /CN=S-TRUST Qualified Root CA 2007-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart # /ST=Baden-Wuerttemberg (BW)/C=DE # validity: 2007-01-01 00:00:00 through 2011-12-30 23:59:59 # key type: 2048 bit RSA # key usage: certSign crlSign # chain length: 1 #[checked: 2007-01-31 by phone 0711-782-0 Mr. Brommer] 7A:3C:1B:60:2E:BD:A4:A1:E0:EB:AD:7A:BA:4F:D1:43:69:A9:39:FC de # ID: 0xA8FEA3CA # S/N: 00B3963E0E6C2D65125853E970665402E5 # Issuer: /CN=S-TRUST Qualified Root CA 2008-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE # Subject: /CN=S-TRUST Qualified Root CA 2008-001:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE # validity: 2008-01-01 00:00:00 through 2012-12-30 23:59:59 # key type: 2048 bit RSA # key usage: certSign crlSign # chain length: 1 #[checked: 2007-12-13 via received ZIP file with qualified signature from # /CN=Dr. Matthias Stehle/O=Deutscher Sparkassenverlag # /C=DE/SerialNumber=DSV0000000008/SN=Stehle/GN=Matthias Georg] C9:2F:E6:50:DB:32:59:E0:CE:65:55:F3:8C:76:E0:B8:A8:FE:A3:CA de # ID: 0x3A7D979B # S/N: 00C4216083F35C54F67B09A80C3C55FE7D # Issuer: /CN=S-TRUST Qualified Root CA 2008-002:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE # Subject: /CN=S-TRUST Qualified Root CA 2008-002:PN # /O=Deutscher Sparkassen Verlag GmbH/L=Stuttgart/C=DE # validity: 2008-01-01 00:00:00 through 2012-12-30 23:59:59 # key type: 2048 bit RSA # key usage: certSign crlSign # chain length: 1 #[checked: 2007-12-13 via received ZIP file with qualified signature from # /CN=Dr. Matthias Stehle/O=Deutscher Sparkassenverlag # /C=DE/SerialNumber=DSV0000000008/SN=Stehle/GN=Matthias Georg"] D5:C7:50:F2:FE:4E:EE:D7:C7:B1:E4:13:7B:FB:54:84:3A:7D:97:9B de #*************************************** # # End of file # #***************************************** PK��\7!\a/ �t��t��examples/common.confnu��[��# common.conf - common defaults for all components. # # This file may provide defaults as well as options which needs to be # synchronized between components. As usual this file is read from # the system wide config directory (e.g. /etc/gnupg/common.conf) as # well as from the home directory (e.g. ~/.gnupg.common.conf). # Uncomment to enable the use if the keybox daemon (keyboxd) by gpg # and gpgsm. #use-keyboxd # For testing ist is somethimes useful to use a different binary # of keybox. This option can be used to speicify this. #keyboxd-program /foo/bar/keyboxd # For the daemons (gpg-agent, scdaemon, dirmngr, keyboxd) it is often # useful to define a shared logging destination. This is either the # standard logging socket (socket://) or a tcp server (tcp://ip:port). # If a file name is given the name of the component is internally # appended. #log-file socket:// PK��\7!\��Cl� �� examples/gpgconf.confnu��[��# gpgconf.conf - configuration for gpgconf #---------------------------------------------------------------------- # This file is read by gpgconf(1) to setup defaults for all or # specified users and groups. It may be used to change the hardwired # defaults in gpgconf and to enforce certain values for the various # GnuPG related configuration files. # # Empty lines and comment lines, indicated by a hash mark as first non # white space character, are ignored. The line is separated by white # space into fields. The first field is used to match the user or # group and must start at the first column, the file is processed # sequential until a matching rule is found. A rule may contain # several lines; continuation lines are indicated by a indenting them. # # Syntax of a line: # <key>\|WS <component> <option> ["["<flag>"]"] [<value>] # # Examples for the <key> field: # foo - Matches the user "foo". # foo: - Matches the user "foo". # foo:staff - Matches the user "foo" or the group "staff". # :staff - Matches the group "staff". # * - Matches any user. # All other variants are not defined and reserved for future use. # # <component> and <option> are as specified by gpgconf. # <flag> may be one of: # default - Delete the option so that the default is used. # no-change - Mark the field as non changeable by gpgconf. # change - Mark the field as changeable by gpgconf. # # Example file: #========== # :staff gpg-agent min-passphrase-len 6 [change] # # * gpg-agent min-passphrase-len [no-change] 8 # gpg-agent min-passphrase-nonalpha [no-change] 1 # gpg-agent max-passphrase-days [no-change] 700 # gpg-agent enable-passphrase-history [no-change] # gpg-agent enforce-passphrase-constraints [default] # gpg-agent enforce-passphrase-constraints [no-change] # gpg-agent max-cache-ttl [no-change] 10800 # gpg-agent max-cache-ttl-ssh [no-change] 10800 # gpgsm enable-ocsp # gpg compliance [no-change] # gpgsm compliance [no-change] #=========== # All users in the group "staff" are allowed to change the value for # --allow-mark-trusted; gpgconf's default is not to allow a change # through its interface. When "gpgconf --apply-defaults" is used, # "allow-mark-trusted" will get enabled and "min-passphrase-len" set # to 6. All other users are not allowed to change # "min-passphrase-len" and "allow-mark-trusted". When "gpgconf # --apply-defaults" is used for them, "min-passphrase-len" is set to # 8, "allow-mark-trusted" deleted from the config file and # "enable-ocsp" is put into the config file of gpgsm. The latter may # be changed by any user. #------------------------------------------------------------------- PK��\7!\��ȧ��examples/READMEnu��[��Files in this directory: scd-event A handler script used with scdaemon trustlist.txt A list of trustworthy root certificates (Please check yourself whether you actually trust them) gpgconf.conf A sample configuration file for gpgconf. systemd-user Sample files for a Linux-only init system. qualified.txt Sample file for qualified.txt. common.conf Sample file for common options. PK��\7!\I`~��FAQnu��[��GnuPG Frequently Asked Questions A FAQ is a fast moving target and thus we don't distribute it anymore with GnuPG. You may retrieve the current FAQ in HTML format at https://gnupg.org/faq/gnupg-faq.html or in plain text format at https://gnupg.org/faq/gnupg-faq.txt PK��\7!\=QI"�� KEYSERVERnu��[��Format of keyserver colon listings ================================== David Shaw <dshaw@jabberwocky.com> The machine readable response begins with an optional information line: info:<version>:<count> <version> = this is the version of this protocol. Currently, this is the number 1. <count> = the number of keys returned in this response. Note this is the number of keys, and not the number of lines returned. It should match the number of "pub:" lines returned. If this optional line is not included, or the version information is not supplied, the version number is assumed to be 1. The key listings are made up of several lines per key. The first line is for the primary key: pub:<fingerprint>:<algo>:<keylen>:<creationdate>:<expirationdate>:<flags> <fingerprint> = this is either the fingerprint or the keyid of the key. Either the 16-digit or 8-digit keyids are acceptable, but obviously the fingerprint is best. Since it is not possible to calculate the keyid from a V3 key fingerprint, for V3 keys this should be either the 16-digit or 8-digit keyid only. <algo> = the algorithm number from RFC-2440. (i.e. 1==RSA, 17==DSA, etc). <keylen> = the key length (i.e. 1024, 2048, 4096, etc.) <creationdate> = creation date of the key in standard RFC-2440 form (i.e. number of seconds since 1/1/1970 UTC time) <expirationdate> = expiration date of the key in standard RFC-2440 form (i.e. number of seconds since 1/1/1970 UTC time) <flags> = letter codes to indicate details of the key, if any. Flags may be in any order. r == revoked d == disabled e == expired Following the "pub" line are one or more "uid" lines to indicate user IDs on the key: uid:<escaped uid string>:<creationdate>:<expirationdate>:<flags> <escaped uid string> == the user ID string, with HTTP %-escaping for anything that isn't 7-bit safe as well as for the ":" character. Any other characters may be escaped, as desired. creationdate, expirationdate, and flags mean the same here as before. The information is taken from the self-sig, if any, and applies to the user ID in question, and not to the key as a whole. Details: * All characters except for the <escaped uid string> are case-insensitive. * Obviously, on a keyserver without integrated crypto, many of the items given here are not fully trustworthy until the key is downloaded and signatures checked. For example, the information that a key is flagged "r" for revoked should be treated as untrustworthy information until the key is checked on the client side. * Empty fields are allowed. For example, a key with no expiration date would have the <expirationdate> field empty. Also, a keyserver that does not track a particular piece of information may leave that field empty as well. I expect that the creation and expiration dates for user IDs will be left empty in current keyservers. Colons for empty fields on the end of each line may be left off, if desired. PK��\7!\��H��H��HACKINGnu��[��# HACKING -- org -- #+TITLE: A Hacker's Guide to GnuPG #+TEXT: Some notes on GnuPG internals #+STARTUP: showall #+OPTIONS: ^:{} # Note: This might be a copy; the original lives in gnupg/doc/HACKING. * How to contribute The following stuff explains some basic procedures you need to follow if you want to contribute code or documentation. No more ChangeLog files Do not modify any of the ChangeLog files in GnuPG. Starting on December 1st, 2011 we put change information only in the GIT commit log, and generate a top-level ChangeLog file from logs at "make dist" time. As such, there are strict requirements on the form of the commit log messages. The old ChangeLog files have all be renamed to ChangeLog-2011 Commit log requirements Your commit log should always start with a one-line summary, the second line should be blank, and the remaining lines are usually ChangeLog-style entries for all affected files. However, it's fine --- even recommended --- to write a few lines of prose describing the change, when the summary and ChangeLog entries don't give enough of the big picture. Omit the leading TABs that you are seeing in a "real" ChangeLog file, but keep the maximum line length at 72 or smaller, so that the generated ChangeLog lines, each with its leading TAB, will not exceed 80 columns. If you want to add text which shall not be copied to the ChangeLog, separate it by a line consisting of two dashes at the begin of a line. The one-line summary usually starts with a keyword to identify the mainly affected subsystem (that is not the directory). If more than one keyword is required they are delimited by a comma (e.g. =scd,w32:=). Commonly found keywords are - agent :: The gpg-agent component - build :: Changes to the build system - ccid :: The CCID driver in scdaemon - common :: Code in common - dirmngr :: The dirmngr component - doc :: Documentation changes - gpg :: The gpg or gpgv components - sm :: The gpgsm component (also "gpgsm") - gpgscm :: The regression test driver - indent :: Indentation and similar changes - iobuf :: The IOBUF system in common - po :: Translations - scd :: The scdaemon component - speedo :: Speedo build system specific changes - ssh :: The ssh-agent part of the agent - tests :: The regressions tests - tools :: Other code in tools - w32 :: Windows related code - wks :: The web key service tools - yat2m :: The yat2m tool. Typo fixes and documentation updates don't need a ChangeLog entry; thus you would use a commit message like #+begin_example doc: Fix typo in a comment -- #+end_example The marker line here is important; without it the first line would appear in the ChangeLog. If you exceptionally need to have longer lines in a commit log you may do this after this scissor line: #+begin_example # ------------------------ >8 ------------------------ #+end_example (hash, blank, 24 dashes, blank, scissor, blank, 24 dashes). Note that such a comment will be removed if the git commit option =--cleanup=scissor= is used. License policy GnuPG is licensed under the GPLv3+ with some files under a mixed LGPLv3+/GPLv2+ license. It is thus important, that all contributed code allows for an update of the license; for example we can't accept code under the GPLv2(only). GnuPG used to have a strict policy of requiring copyright assignments to the FSF. To avoid this major organizational overhead and to allow inclusion of code, not copyrighted by the FSF, this policy has been relaxed on 2013-03-29. It is now also possible to contribute code by asserting that the contribution is in accordance to the "Libgcrypt Developer's Certificate of Origin" as found in the file "DCO". (Except for a slight wording change, this DCO is identical to the one used by the Linux kernel.) If you want to contribute code or documentation to GnuPG and you didn't sign a copyright assignment with the FSF in the past, you need to take these simple steps: - Decide which mail address you want to use. Please have your real name in the address and not a pseudonym. Anonymous contributions can only be done if you find a proxy who certifies for you. - If your employer or school might claim ownership of code written by you; you need to talk to them to make sure that you have the right to contribute under the DCO. - Send an OpenPGP signed mail to the gnupg-devel@gnupg.org mailing list from your mail address. Include a copy of the DCO as found in the official master branch. Insert your name and email address into the DCO in the same way you want to use it later. Example: Signed-off-by: Joe R. Hacker <joe@example.org> (If you really need it, you may perform simple transformations of the mail address: Replacing "@" by " at " or "." by " dot ".) - That's it. From now on you only need to add a "Signed-off-by:" line with your name and mail address to the commit message. It is recommended to send the patches using a PGP/MIME signed mail. See below on how to send patches. Coding standards Please follow the GNU coding standards. If you are in doubt consult the existing code as an example. Do no re-indent code without a need. If you really need to do it, use a separate commit for such a change. - Only certain C99 features may be used (see below); in general stick to C90. - Please do not use C++ =//= style comments. - Do not use comments like: #+begin_src if (foo) /* Now that we know that foo is true we can call bar. / bar (); #+end_src instead write the comment on the if line or before it. You may also use a block and put the comment inside. - Please use asterisks on the left of longer comments. This makes it easier to read without syntax highlighting, on printouts, and for blind people. - Try to fit lines into 80 columns. - Ignore signed/unsigned pointer mismatches - No arithmetic on void pointers; cast to char first. - Do not use #+begin_src if ( 42 == foo ) #+end_src this is harder to read and modern compilers are pretty good in detecing accidental assignments. It is also suggested not to compare to 0 or NULL but to test the value direct or with a '!'; this makes it easier to see that a boolean test is done. - We use our own printf style functions like =es_printf=, and =gpgrt_asprintf= (or the =es_asprintf= macro) which implement most C99 features with the exception of =wchar_t= (which should anyway not be used). Please use them always and do not resort to those provided by libc. The rationale for using them is that we know that the format specifiers work on all platforms and that we do not need to chase platform dependent bugs. Note also that in gnupg asprintf is a macro already evaluating to gpgrt_asprintf. - It is common to have a label named "leave" for a function's cleanup and return code. This helps with freeing memory and is a convenient location to set a breakpoint for debugging. - Always use xfree() instead of free(). If it is not easy to see that the freed variable is not anymore used, explicitly set the variable to NULL. - New code shall in general use xtrymalloc or xtrycalloc and check for an error (use gpg_error_from_syserror()). - Init function local variables only if needed so that the compiler can do a better job in detecting uninitialized variables which may indicate a problem with the code. - Never init static or file local variables to 0 to make sure they end up in BSS. - Put extra parenthesis around terms with binary operators to make it clear that the binary operator was indeed intended. - Use --enable-maintainer-mode with configure so that all suitable warnings are enabled. Variable names Follow the GNU standards. Here are some conventions you may want to stick to (do not rename existing "wrong" uses without a good reason). - err :: This conveys an error code of type =gpg_error_t= which is compatible to an =int=. To compare such a variable to a GPG_ERR_ constant, it is necessary to access the value like this: =gpg_err_code(err)=. - ec :: This is used for a gpg-error code which has no source part (=gpg_err_code_t=) and will eventually be used as input to =gpg_err_make=. - rc :: Used for all kind of other errors; for example system calls. The value is not compatible with gpg-error. * C99 language features In GnuPG 2.x, but not in 1.4 and not in most libraries, a limited set of C99 features may be used: - Variadic macros: : #define foo(a,...) bar(a, __VA_ARGS__) - The predefined macro =__func__=: : log_debug ("%s: Problem with foo\n", __func__); Although we usually make use of the =u16=, =u32=, and =u64= types, it is also possible to include =<stdint.h>= and use =int16_t=, =int32_t=, =int64_t=, =uint16_t=, =uint32_t=, and =uint64_t=. But do not use =int8_t= or =uint8_t=. Commit log keywords - GnuPG-bug-id :: Values are comma or space delimited bug numbers from bug.gnupg.org pertaining to this commit. - Debian-bug-id :: Same as above but from the Debian bug tracker. - CVE-id :: CVE id number pertaining to this commit. - Regression-due-to :: Commit id of the regression fixed by this commit. - Fixes-commit :: Commit id this commit fixes. - Updates-commit :: Commit id this commit updates. - See-commit :: Commit id of a related commit. - Reported-by :: Value is a name or mail address of a bug reporte. - Suggested-by :: Value is a name or mail address of someone how suggested this change. - Co-authored-by :: Name or mail address of a co-author - Some-comments-by :: Name or mail address of the author of additional comments (commit log or code). - Proofread-by :: Sometimes used by translation commits. - Signed-off-by :: Name or mail address of the developer. - Backported-from-master :: Value is the commit id of the original patch. - Ported-from-stable :: Value is the commit id of the original patch. Sending patches Submitting patches, and subsequent discussions around them, happens via the gnupg-devel@gnupg.org public mailing list. Send your patches to that list, preferably PGP/MIME signed. Make sure to include a mention of 'gnupg' (or gpgme, libassuan, etc) in the subject line; the list is used for several different projects. In general you should send patches only for the master branch; we may later decide to backport to another branch. Please ask first before sending pacthes for another branch. If you're working from the Git repo, here's a suggested workflow: - Configure git send-email defaults: : git config format.subjectPrefix 'PATCH gnupg' : git config sendemail.to gnupg-devel@gnupg.org (For other sub-projects adjust accordingly) - hack hack hack - Commit your changes; group changes into easily-reviewable commit units, feel free to submit several patches at once. e.g. if you want to submit a single patch on top of master, do: : git send-email --annotate -1 e.g. if you have two commits on top of master, do: : git send-email --annotate --cover-letter -2 (that prompts you for a summary mail to precede your actual patch mails) - use Git's --dry-run option to test your setup * Windows ** How to build an installer for Windows Your best bet is to use a decent Debian System for development. You need to install a long list of tools for building. This list still needs to be compiled. However, the build process will stop if a tool is missing. GNU make is required (on non GNU systems often installed as "gmake"). The installer requires a couple of extra software to be available either as tarballs or as local git repositories. In case this file here is part of a gnupg-w32-2..xz complete tarball as distributed from the same place as a binary installer, all such tarballs are already included. Cd to the GnuPG source directory and use one of one of these command: - If sources are included (gnupg-w32-.tar.xz) make -f build-aux/speedo.mk WHAT=this installer - To build from tarballs make -f build-aux/speedo.mk WHAT=release TARBALLS=TARDIR installer - To build from local GIT repos make -f build-aux/speedo.mk WHAT=git TARBALLS=TARDIR installer Note that also you need to supply tarballs with supporting libraries even if you build from git. The makefile expects only the core GnuPG software to be available as local GIT repositories. speedo.mk has the versions of the tarballs and the branch names of the git repositories. In case of problems, don't hesitate to ask on the gnupg-devel mailing for help. * Debug hints See the manual for some hints. * Standards ** RFCs 1423 Privacy Enhancement for Internet Electronic Mail: Part III: Algorithms, Modes, and Identifiers. 1489 Registration of a Cyrillic Character Set. 1750 Randomness Recommendations for Security. 1991 PGP Message Exchange Formats (obsolete) 2144 The CAST-128 Encryption Algorithm. 2279 UTF-8, a transformation format of ISO 10646. 2440 OpenPGP (obsolete). 3156 MIME Security with Pretty Good Privacy (PGP). 4880 Current OpenPGP specification. 6337 Elliptic Curve Cryptography (ECC) in OpenPGP * Various information Directory Layout - ./ :: Readme, configure - ./agent :: Gpg-agent and related tools - ./doc :: Documentation - ./g10 :: Gpg program here called gpg2 - ./sm :: Gpgsm program - ./jnlib :: Not used (formerly used utility functions) - ./common :: Utility functions - ./kbx :: Keybox library - ./scd :: Smartcard daemon - ./scripts :: Scripts needed by configure and others - ./dirmngr :: The directory manager Detailed Roadmap This list of files is not up to date! - g10/gpg.c :: Main module with option parsing and all the stuff you have to do on startup. Also has the exit handler and some helper functions. - g10/parse-packet.c :: - g10/build-packet.c :: - g10/free-packet.c :: Parsing and creating of OpenPGP message packets. - g10/getkey.c :: Key selection code - g10/pkclist.c :: Build a list of public keys - g10/skclist.c :: Build a list of secret keys - g10/keyring.c :: Keyring access functions - g10/keydb.h :: - g10/keyid.c :: Helper functions to get the keyid, fingerprint etc. - g10/trustdb.c :: Web-of-Trust computations - g10/trustdb.h :: - g10/tdbdump.c :: Export/import/list the trustdb.gpg - g10/tdbio.c :: I/O handling for the trustdb.gpg - g10/tdbio.h :: - g10/compress.c :: Filter to handle compression - g10/filter.h :: Declarations for all filter functions - g10/delkey.c :: Delete a key - g10/kbnode.c :: Helper for the kbnode_t linked list - g10/main.h :: Prototypes and some constants - g10/mainproc.c :: Message processing - g10/armor.c :: Ascii armor filter - g10/mdfilter.c :: Filter to calculate hashes - g10/textfilter.c :: Filter to handle CR/LF and trailing white space - g10/cipher.c :: En-/Decryption filter - g10/misc.c :: Utility functions - g10/options.h :: Structure with all the command line options and related constants - g10/openfile.c :: Create/Open Files - g10/keyserver.h :: Keyserver access dispatcher. - g10/packet.h :: Definition of OpenPGP structures. - g10/passphrase.c :: Passphrase handling code - g10/pubkey-enc.c :: Process a public key encoded packet. - g10/seckey-cert.c :: Not anymore used - g10/seskey.c :: Make session keys etc. - g10/import.c :: Import keys into our key storage. - g10/export.c :: Export keys to the OpenPGP format. - g10/sign.c :: Create signature and optionally encrypt. - g10/plaintext.c :: Process plaintext packets. - g10/decrypt-data.c :: Decrypt an encrypted data packet - g10/encrypt.c :: Main encryption driver - g10/revoke.c :: Create recovation certificates. - g10/keylist.c :: Print information about OpenPGP keys - g10/sig-check.c :: Check a signature - g10/helptext.c :: Show online help texts - g10/verify.c :: Verify signed data. - g10/decrypt.c :: Decrypt and verify data. - g10/keyedit.c :: Edit properties of a key. - g10/dearmor.c :: Armor utility. - g10/keygen.c :: Generate a key pair ** Memory allocation Use only the functions: - xmalloc - xmalloc_secure - xtrymalloc - xtrymalloc_secure - xcalloc - xcalloc_secure - xtrycalloc - xtrycalloc_secure - xrealloc - xtryrealloc - xstrdup - xtrystrdup - xfree The secure versions allocate memory in the secure memory. That is, swapping out of this memory is avoided and is gets overwritten on free. Use this for passphrases, session keys and other sensitive material. This memory set aside for secure memory is linited to a few k. In general the function don't print a memory message and terminate the process if there is not enough memory available. The "try" versions of the functions return NULL instead. * Logging TODO Option parsing GnuPG does not use getopt or GNU getopt but functions of it's own. See util/argparse.c for details. The advantage of these functions is that it is more easy to display and maintain the help texts for the options. The same option table is also used to parse resource files. What is an IOBUF This is the data structure used for most I/O of gnupg. It is similar to System V Streams but much simpler. Because OpenPGP messages are nested in different ways; the use of such a system has big advantages. Here is an example, how it works: If the parser sees a packet header with a partial length, it pushes the block_filter onto the IOBUF to handle these partial length packets: from now on you don't have to worry about this. When it sees a compressed packet it pushes the uncompress filter and the next read byte is one which has already been uncompressed by this filter. Same goes for enciphered packet, plaintext packets and so on. The file g10/encode.c might be a good starting point to see how it is used - actually this is the other way: constructing messages using pushed filters but it may be easier to understand. PK��\7!\�� TODOnu��[�� -- outline -- * src/base64 Make parsing more robust Currently we don't cope with overlong lines in the best way. Check that we really release the ksba reader/writer objects. * sm/call-agent.c Some code should go into import.c When we allow concurrent service request in gpgsm, we might want to have an agent context for each service request (i.e. Assuan context). * sm/certchain.c ** Try to keep certificate references somewhere This will help with some of our caching code. We also need to test that caching; in particular "regtp_ca_chainlen". * sm/decrypt.c ** replace leading zero in integer hack by a cleaner solution * sm/gpgsm.c Implement --default-key support the anyPolicy semantic ** Should we prefer nonRepudiation certs over plain signing certs? Also: Do we need a way to allow the selection of a qualSig cert over a plain one? The background is that the Telesec cards have 3 certs capable of signing all with the same subject name. * sm/keydb.c Check file permissions Check that all error code mapping is done. Remove the inter-module dependencies between gpgsm and keybox Add an source_of_key field * agent/ ** If we detect that a private key has been deleted Bump the key event counter. * agent/command.c ** Make sure that secure memory is used where appropriate * agent/pkdecrypt.c, agent/pksign.c ** Support DSA * Move pkcs-1 encoding into libgcrypt. * Use a MAC to protect sensitive files. The problem here is that we need yet another key and it is unlikely that users are willing to remember that key too. It is possible to do this with a smartcard, though. * sm/export.c ** Return an error code or a status info per user ID. * common/tlv.c The parse_sexp function should not go into this file. Check whether we can change all S-expression handling code to make use of this function. * scd Application context vs. reader slot We have 2 concurrent method of tracking whether a reader is in use: Using the session_list in command.c and the lock_table in app.c. It would be better to do this just at one place. First we need to see how we can support cards with multiple applications. Resolve fixme in do_sign of app-dinsig. ** Disconnect Card timeout is currently used as a boolean. Add disconnect support for the ccid driver. * Regression tests ** Add a regression test to check the extkeyusage. * Windows port (W32) ** Regex support is disabled We need to adjust the test to find the regex we have anyway in gpg4win. Is that regex compatible to the OpenPGP requirement? * sm/ ** check that we issue NO_SECKEY xxx if a -u key was not found We don't. The messages returned are also wrong (recipient vs. signer). * g10/ ** issue a NO_SECKEY xxxx if a -u key was not found. * Extend selinux support to other modules See also http://etbe.coker.com.au/2008/06/06/se-linux-support-gpg/ * UTF-8 specific TODOs None. * Manual ** Document all gpgsm options. * Pinpad Reader We do not yet support P15 applications. The trivial thing using ASCII characters will be easy to implement but the other cases need some more work. * Bugs * Howtos ** Migrate OpenPGP keys to another system * Gpg-Agent Locale Although we pass LC_MESSAGE from gpgsm et al. to Pinentry, this has only an effect on the stock GTK strings (e.g. "OK") and not on any strings gpg-agent generates and passes to Pinentry. This defeats our design goal to allow changing the locale without changing gpg-agent's default locale (e.g. by the command updatestartuptty). * RFC 4387: Operational Protocols: Certificate Store Access via HTTP Do we support this? PK��\7!\��?^�w��w��NEWSnu��[��Noteworthy changes in version 2.3.3 (2021-10-12) ------------------------------------------------ * agent: Fix segv in GET_PASSPHRASE (regression). [#5577] * dirmngr: Fix Let's Encrypt certificate chain validation. [#5639] * gpg: Change default and maximum AEAD chunk size to 4 MiB. [ad3dabc9fb] * gpg: Print a warning when importing a bad cv25519 secret key. [#5464] * gpg: Fix --list-packets for undecryptable AEAD packets. [#5584] * gpg: Verify backsigs for v5 keys correctly. [#5628] * keyboxd: Fix checksum computation for no UBID entry on disk. [#5573] * keyboxd: Fix "invalid object" error with cv448 keys. [#5609] * dirmngr: New option --ignore-cert. [4b3e9a44b5] * agent: Fix calibrate_get_time use of clock_gettime. [#5623] * Silence process spawning diagnostics on Windows. [f2b01025c3] * Support a gpgconf.ctl file under Unix and use this for the regression tests. [#5999] Release-info: https://dev.gnupg.org/T5565 See-also: gnupg-announce/2021q4/000466.html Noteworthy changes in version 2.3.2 (2021-08-24) ------------------------------------------------ * gpg: Allow fingerprint based lookup with --locate-external-key. [ec36eca08c] * gpg: Allow decryption w/o public key but with correct card inserted. [50293ec2eb] * gpg: Auto import keys specified with --trusted-keys. [100037ac0f] * gpg: Do not use import-clean for LDAP keyserver imports. [#5387] * gpg: Fix mailbox based search via AKL keyserver method. [4fcfac6feb] * gpg: Fix memory corruption with --clearsign introduced with 2.3.1. [#5430] * gpg: Use a more descriptive prompt for symmetric decryption. [6dfae2f402] * gpg: Improve speed of secret key listing. [40da61b89b] * gpg: Support keygrip search with traditional keyring. [#5469] * gpg: Let --fetch-key return an exit code on failure. [#5376] * gpg: Emit the NO_SECKEY status again for decryption. [#5562] * gpgsm: Support decryption of password based encryption (pwri). [eeb65d3bbd] * gpgsm: Support AES-GCM decryption. [4980fb3c6d] * gpgsm: Let --dump-cert --show-cert also print an OpenPGP fingerprint. [52bbdc731f] * gpgsm: Fix finding of issuer in use-keyboxd mode. [6b76693ff5] * gpgsm: New option --ldapserver as an alias for --keyserver. [89df86157e] * agent: Use SHA-256 for SSH fingerprint by default. [#5434] * agent: Fix calling handle_pincache_put. [#5436] * agent: Fix importing protected secret key. [#5122] * agent: Fix a regression in agent_get_shadow_info_type. [#5393] * agent: Add translatable text for Caps Lock hint. [#4950] * agent: New option --pinentry-formatted-passphrase. [#5517] * agent: Add checkpin inquiry for pinentry. [#5517,#5532] * agent: New option --check-sym-passphrase-pattern. [#5517] * agent: Use the sysconfdir for a pattern file. * agent: Make QT_QPA_PLATFORMTHEME=qt5ct work for the pinentry. [1305baf099] * dirmngr: LDAP search by a mailbox now ignores revoked keys. [1406f551f1] * dirmngr: For KS_SEARCH return the fingerprint also with LDAP. [#5441] * dirmngr: Allow for non-URL specified ldap keyservers. [#5405,#5452] * dirmngr: New option --ldapserver. [52cf32ce2f] * dirmngr: Fix regression in KS_GET for mail address pattern. [#5497] * card: New option --shadow for the list command. [2fce99d73a] * tests: Make sure the built keyboxd is used. [#5406] * scd: Fix computing shared secrets for 512 bit curves. [9e24f2a45c] * scd: Fix unblock PIN by a Reset Code with KDF. [#5413] * scd: Fix PC/SC removed card problem. [8d81fd7c01] * scd: Recover the partial match for PORTSTR for PC/SC. [53bdc6288f] * scd: Make sure to release the PC/SC context. [#5416] * scd: Fix zero-byte handling in ECC. [#5163] * scd: Fix serial number detection for Yubikey 5. [#5442] * scd: Add basic support for AET JCOP cards. [544ec7872a] * scd: Detect external interference when --pcsc-shared is in use. [#5484] * scd: Fix access to the list of cards. [#5524] * gpgconf: Do not list a disabled tpm2d. [#5408] * gpgconf: Make runtime changes with different homedir work. [31c0aa2ff3] * keyboxd: Fix searching for exact mail adddress. [f79e9540ca] * keyboxd: Fix searching with multiple patterns. [101ba4f18a] * gpgtar: Fix file size computation under Windows. [14e36bdbe1] * tools: Extend gpg-check-pattern. [73c03e0232] * wkd: Fix client issue with leading or trailing spaces in user-ids. [b4345f7521] * Under Windows add a fallback in case the console can't cope with Unicode. [#5491] * Under Windows use LOCAL_APPDATA for the socket directory. [#5537] * Pass XDG_SESSION_TYPE and QT_QPA_PLATFORM envvars to Pinentry. [#3659] * Change the default keyserver to keyserver.ubuntu.com. This is a temporary change due to the shutdown of the SKS keyserver pools. [55b5928099] Release-info: https://dev.gnupg.org/T5405 See-also: gnupg-announce/2021q3/000462.html Noteworthy changes in version 2.3.1 (2021-04-20) ------------------------------------------------ * The new configuration file common.conf is now used to enable the use of the key database daemon with "use-keyboxd". Using this option in gpg.conf and gpgsm.conf is supported for a transitional period. See doc/example/common.conf for more. * gpg: Force version 5 key creation for ed448 and cv448 algorithms. * gpg: By default do not use the self-sigs-only option when importing from an LDAP keyserver. [#5387] * gpg: Lookup a missing public key of the active card via LDAP. [d7e707170f] * gpgsm: New command --show-certs. [51419d6341] * scd: Fix CCID driver for SCM SPR332/SPR532. [#5297] * scd: Further improvements for PKCS#15 cards. * Fix build problems on Fedora. [#5389] * Fix build problems on macOS. [#5400] * New configure option --with-tss to allow the selection of the TSS library. [93c88d0af3] Release-info: https://dev.gnupg.org/T5386 See-also: gnupg-announce/2021q2/000459.html Noteworthy changes in version 2.3.0 (2021-04-07) ------------------------------------------------ * A new experimental key database daemon is provided. To enable it put "use-keyboxd" into gpg.conf and gpgsm.conf. Keys are stored in a SQLite database and make key lookup much faster. * New tool gpg-card as a flexible frontend for all types of supported smartcards. * New option --chuid for gpg, gpgsm, gpgconf, gpg-card, and gpg-connect-agent. * The gpg-wks-client tool is now installed under bin; a wrapper for its old location at libexec is also installed. * tpm2d: New daemon to physically bind keys to the local machine. * gpg: Switch to ed25519/cv25519 as default public key algorithms. * gpg: Verification results now depend on the --sender option and the signer's UID subpacket. [T4735] * gpg: Do not use any 64-bit block size cipher algorithm for encryption. Use AES as last resort cipher preference instead of 3DES. This can be reverted using --allow-old-cipher-algos. * gpg: Support AEAD encryption mode using OCB or EAX. * gpg: Support v5 keys and signatures. * gpg: Support curve X448 (ed448, cv448). * gpg: Allow use of group names in key listings. [e825aea2ba] * gpg: New option --full-timestrings to print date and time. * gpg: New option --force-sign-key. [#4584] * gpg: New option --no-auto-trust-new-key. * gpg: The legacy key discovery method PKA is no longer supported. The command --print-pka-records and the PKA related import and export options have been removed. * gpg: Support export of Ed448 Secure Shell keys. * gpgsm: Add basic ECC support. * gpgsm: Support creation of EdDSA certificates. [#4888] * agent: Allow the use of "Label:" in a key file to customize the pinentry prompt. [5388537806] * agent: Support ssh-agent extensions for environment variables. With a patched version of OpenSSH this avoids the need for the "updatestartuptty" kludge. [224e26cf7b] * scd: Improve support for multiple card readers and tokens. * scd: Support PIV cards. * scd: Support for Rohde&Schwarz Cybersecurity cards. * scd: Support Telesec Signature Cards v2.0 * scd: Support multiple application on certain smartcard. * scd: New option --application-priority. * scd: New option --pcsc-shared; see man page for important notes. * dirmngr: Support a gpgNtds parameter in LDAP keyserver URLs. * The symcryptrun tool, a wrapper for the now obsolete external Chiasmus tool, has been removed. * Full Unicode support for the command line. [#4398] Changes also found in 2.2.27: * gpg: Fix regression in 2.2.24 for gnupg_remove function under Windows. [#5230] * gpgconf: Fix case with neither local nor global gpg.conf. [9f37d3e6f3] * gpgconf: Fix description of two new options. [#5221] * Build Windows installer without timestamps. Note that the Authenticode signatures still carry a timestamp. Changes also found in 2.2.26: * gpg: New AKL method "ntds". [559efd23e9] * gpg: Fix --trusted-key with fingerprint arg. [8a2e5025eb] * scd: Fix writing of ECC keys to an OpenPGP card. [#5163] * scd: Make an USB error fix specific to SPR532 readers. [#5167] * dirmngr: With new LDAP keyservers store the new attributes. Never store the useless pgpSignerID. Fix a long standing bug storing some keys on an ldap server. [0e88c73bc9,e47de85382] * dirmngr: Support the new Active Direcory LDAP schema for keyservers. [ac8ece9266] * dirmngr: Allow LDAP OpenPGP searches via fingerprint. [c75fd75532] * dirmngr: Do not block other threads during keyserver LDAP calls. [15bfd189c0] * Support global configuration files. [#4788,a028f24136] * Fix the iconv fallback handling to UTF-8. [#5038] Changes also found in 2.2.25: * scd: Fix regression in 2.2.24 requiring gpg --card-status before signing or decrypting. [#5065] * gpgsm: Using Libksba 1.5.0 signatures with a rarely used combination of attributes can now be verified. [#5146] Changes also found in 2.2.24: * Allow Unicode file names on Windows almost everywhere. Note that it is still not possible to use Unicode strings on the command line. This change also fixes a regression in 2.2.22 related to non-ascii file names. [#5098] * Fix localized time printing on Windows. [#5073] * gpg: New command --quick-revoke-sig. [#5093] * gpg: Do not use weak digest algos if selected by recipient preference during sign+encrypt. [4c181d51a6] * gpg: Switch to AES256 for symmetric encryption in de-vs mode. [166e779634] * gpg: Silence weak digest warnings with --quiet. [#4893] * gpg: Print new status line CANCELED_BY_USER for a cancel during symmetric encryption. [f05d1772c4] * gpg: Fix the encrypt+sign hash algo preference selection for ECDSA. This is in particular needed for keys created from existing smartcard based keys. [aeed0b93ff] * agent: Keep some permissions of private-keys-v1.d. [#2312] * dirmngr: Align sks-keyservers.netCA.pem use between ntbtls and gnutls builds. [e4f3b74c91] * dirmngr: Fix the pool keyserver case for a single host in the pool. [72e04b03b1a7] * scd: Fix the use case of verify_chv2 by CHECKPIN. [61aea64b3c] * scd: Various improvements to the ccid-driver. [#4616,#5065] * scd: Minor fixes for Yubikey [25bec16d0b] * gpgconf: New option --show-versions. * w32: Install gpg-check-pattern and example profiles. Install Windows subsystem variant of gpgconf (gpgconf-w32). Changes also found in 2.2.23: * gpg: Fix a possible segv in the key cleaning code. * gpgsm: Fix a minor RFC2253 parser bug. [#5037] * scdaemon: Fix a PIN verify failure on certain OpenPGP card implementations. Regression in 2.2.22. [#5039] Changes also found in 2.2.22: * gpg: Change the default key algorithm to rsa3072. * gpg: Add regular expression support for Trust Signatures on all platforms. [#4843] * gpg: Fix regression in 2.2.21 with non-default --passphrase-repeat option. [#4991] * gpg: Ignore --personal-digest-prefs for ECDSA keys. [#5021] * gpgsm: Make rsaPSS a de-vs compliant scheme. * gpgsm: Show also the SHA256 fingerprint in key listings. * gpgsm: Do not require a default keyring for --gpgconf-list. [#4867] * gpg-agent: Default to extended key format and record the creation time of keys. Add new option --disable-extended-key-format. * gpg-agent: Support the WAYLAND_DISPLAY envvar. [#5016] * gpg-agent: Allow using --gpgconf-list even if HOME does not exist. [#4866] * gpg-agent: Make the Pinentry work even if the envvar TERM is set to the empty string. [#4137] * scdaemon: Add a workaround for Gnuk tokens <= 2.15 which wrongly incremented the error counter when using the "verify" command of "gpg --edit-key" with only the signature key being present. * dirmngr: Better handle systems with disabled IPv6. [#4977] * gpgpslit: Install tool. It was not installed in the past to avoid conflicts with the version installed by GnuPG 1.4. [#5023] * gpgtar: Handle Unicode file names on Windows correctly. [#4083] * gpgtar: Make --files-from and --null work as documented. [#5027] * Build the Windows installer with the new Ntbtls 0.2.0 so that TLS connections succeed for servers demanding GCM. Changes also found in 2.2.21: * gpg: Add option --no-include-key-block. [#4856] * gpg: Allow for extra padding in ECDH. [#4908] * gpg: Only a single pinentry is shown for symmetric encryption if the pinentry supports this. [#4971] * gpg: Print a note if no keys are given to --delete-key. [#4959] * gpg,gpgsm: The ridiculous passphrase quality bar is not anymore shown. [#2103] * gpgsm: Certificates without a CRL distribution point are now considered valid without looking up a CRL. The new option --enable-issuer-based-crl-check can be used to revert to the former behaviour. * gpgsm: Support rsaPSS signature verification. [#4538] * gpgsm: Unless CRL checking is disabled lookup a missing issuer certificate using the certificate's authorityInfoAccess. [#4898] * gpgsm: Print the certificate's serial number also in decimal notation. * gpgsm: Fix possible NULL-deref in messages of --gen-key. [#4895] * scd: Support the CardOS 5 based D-Trust Card 3.1. * dirmngr: Allow http URLs with "LOOKUP --url". * wkd: Take name of sendmail from configure. Fixes an OpenBSD specific bug. [#4886] * Support a command history file in gpg-card and gpg-connect-agent. Changes also found in 2.2.20: * In constrast to 2.2 no explicit protection against overflow of the error counter is needed because libgpg-error takes care of this. * gpg: Make really sure that --verify-files always returns an error. * gpg: Fix key listing --with-secret if a pattern is given. [#4061] * gpg: Fix detection of certain keys used as default-key. [#4810] * gpg: Fix default-key selection when a card is available. [#4850] * gpg: Fix key expiration and key usage for keys created with a creation date of zero. [4670] * gpgsm: Fix import of some CR,LF terminated certificates. [#4847] * gpg: New options --include-key-block and --auto-key-import to allow encrypted replies after an initial signed message. [#4856] * gpg: Allow the use of a fingerprint with --trusted-key. [#4855] * gpg: New property "fpr" for use by --export-filter. * scdaemon: Disable the pinpad if a KDF DO is used. [#4832] * dirmngr: Improve finding OCSP certificates. [#4536] * Avoid build problems with LTO or gcc-10. [#4831] Changes also found in 2.2.19: * gpg: Only in 2.2.19; not requird in master: Fix double free when decrypting for hidden recipients. Regression in 2.2.18. [#4762]. * gpg: Use auto-key-locate for encryption even for mail addresses given with angle brackets. [#4726] * gpgsm: Add special case for certain expired intermediate certificates. [#4696] Changes also found in 2.2.18: * gpg: Changed the way keys are detected on a smartcards; this allows the use of non-OpenPGP cards. In the case of a not very likely regression the new option --use-only-openpgp-card is available. [#4681] * gpg: The commands --full-gen-key and --quick-gen-key now allow direct key generation from supported cards. [#4681] * gpg: Prepare against chosen-prefix SHA-1 collisions in key signatures. This change removes all SHA-1 based key signature from the web-of-trust. Note that this includes all key signature created with dsa1024 keys. (Version 2.2.18 limits this to key signatures newer than 2019-01-19.) The new option --allow-weak-key-signatues can be used to override the new and safer behaviour. [#4755,CVE-2019-14855] * gpg: Improve performance for import of large keyblocks. [#4592] * gpg: Implement a keybox compression run. [#4644] * gpg: Show warnings from dirmngr about redirect and certificate problems (details require --verbose as usual). * gpg: Allow to pass the empty string for the passphrase if the '--passphase=' syntax is used. [#4633] * gpg: Fix printing of the KDF object attributes. * gpg: Avoid surprises with --locate-external-key and certain --auto-key-locate settings. [#4662] * gpg: Improve selection of best matching key. [#4713] * gpg: Delete key binding signature when deleting a subkey. [#4665,#4457] * gpg: Fix a potential loss of key signatures during import with self-sigs-only active. [#4628] * gpg: Silence "marked as ultimately trusted" diagnostics if option --quiet is used. [#4634] * gpg: Silence some diagnostics during in key listsing even with option --verbose. [#4627] * gpg, gpgsm: Change parsing of agent's pkdecrypt results. [#4652] * gpgsm: Support AES-256 keys. * gpgsm: Fix a bug in triggering a keybox compression run if --faked-system-time is used. * dirmngr: System CA certificates are no longer used for the SKS pool if GNUTLS instead of NTBTLS is used as TLS library. [#4594] * dirmngr: On Windows detect usability of IPv4 and IPv6 interfaces to avoid long timeouts. [#4165] * scd: Fix BWI value for APDU level transfers to make Gemalto Ezio Shield and Trustica Cryptoucan work. [#4654,#4566] * wkd: gpg-wks-client --install-key now installs the required policy file. Changes also found in 2.2.17: * gpg: Ignore all key-signatures received from keyservers. This change is required to mitigate a DoS due to keys flooded with faked key-signatures. The old behaviour can be achieved by adding keyserver-options no-self-sigs-only,no-import-clean to your gpg.conf. [#4607] * gpg: If an imported keyblocks is too large to be stored in the keybox (pubring.kbx) do not error out but fallback to an import using the options "self-sigs-only,import-clean". [#4591] * gpg: New command --locate-external-key which can be used to refresh keys from the Web Key Directory or via other methods configured with --auto-key-locate. * gpg: New import option "self-sigs-only". * gpg: In --auto-key-retrieve prefer WKD over keyservers. [#4595] * dirmngr: Support the "openpgpkey" subdomain feature from draft-koch-openpgp-webkey-service-07. [#4590]. * dirmngr: Add an exception for the "openpgpkey" subdomain to the CSRF protection. [#4603] * dirmngr: Fix endless loop due to http errors 503 and 504. [#4600] * dirmngr: Fix TLS bug during redirection of HKP requests. [#4566] * gpgconf: Fix a race condition when killing components. [#4577] Changes also found in 2.2.16: * gpg,gpgsm: Fix deadlock on Windows due to a keybox sharing violation. [#4505] * gpg: Allow deletion of subkeys with --delete-key. This finally makes the bang-suffix work as expected for that command. [#4457] * gpg: Replace SHA-1 by SHA-256 in self-signatures when updating them with --quick-set-expire or --quick-set-primary-uid. [#4508] * gpg: Improve the photo image viewer selection. [#4334] * gpg: Fix decryption with --use-embedded-filename. [#4500] * gpg: Remove hints on using the --keyserver option. [#4512] * gpg: Fix export of certain secret keys with comments. [#4490] * gpg: Reject too long user-ids in --quick-gen-key. [#4532] * gpg: Fix a double free in the best key selection code. [#4462] * gpg: Fix the key generation dialog for switching back from EdDSA to ECDSA. * gpg: Use AES-192 with SHA-384 to comply with RFC-6637. * gpg: Use only the addrspec from the Signer's UID subpacket to mitigate a problem with another implementation. * gpg: Skip invalid packets during a keyring listing and sync diagnostics with the output. * gpgsm: Avoid confusing diagnostic when signing with the default key. [#4535] * agent: Do not delete any secret key in --dry-run mode. * agent: Fix failures on 64 bit big-endian boxes related to URIs in a keyfile. [#4501] * agent: Stop scdaemon after a reload with disable-scdaemon newly configured. [#4326] * dirmngr: Improve caching algorithm for WKD domains. * dirmngr: Support other hash algorithms than SHA-1 for OCSP. [#3966] * gpgconf: Make --homedir work for --launch. [#4496] * gpgconf: Before --launch check for a valid config file. [#4497] * wkd: Do not import more than 5 keys from one WKD address. * wkd: Accept keys which are stored in armored format in the directory. * The installer for Windows now comes with signed binaries. Changes also found in 2.2.15: * sm: Fix --logger-fd and --status-fd on Windows for non-standard file descriptors. * sm: Allow decryption even if expired keys are configured. [#4431] * agent: Change command KEYINFO to print ssh fingerprints with other hash algos. * dirmngr: Fix build problems on Solaris due to the use of reserved symbol names. [#4420] * wkd: New commands --print-wkd-hash and --print-wkd-url for gpg-wks-client. Changes also found in 2.2.14: * gpg: Allow import of PGP desktop exported secret keys. Also avoid importing secret keys if the secret keyblock is not valid. [#4392] * gpg: Make invalid primary key algo obvious in key listings. * sm: Do not mark a certificate in a key listing as de-vs compliant if its use for a signature will not be possible. * sm: Fix certificate creation with key on card. * sm: Create rsa3072 bit certificates by default. * sm: Print Yubikey attestation extensions with --dump-cert. * agent: Fix cancellation handling for scdaemon. * agent: Support --mode=ssh option for CLEAR_PASSPHRASE. [#4340] * scd: Fix flushing of the CA-FPR DOs in app-openpgp. * scd: Avoid a conflict error with the "undefined" app. * dirmngr: Add CSRF protection exception for protonmail. * dirmngr: Fix build problems with gcc 9 in libdns. * gpgconf: New option --show-socket for use with --launch. * gpgtar: Make option -C work for archive creation. Changes also found in 2.2.13: * gpg: Implement key lookup via keygrip (using the & prefix). * gpg: Allow generating Ed25519 key from existing key. * gpg: Emit an ERROR status line if no key was found with -k. * gpg: Stop early when trying to create a primary Elgamal key. [#4329] * gpgsm: Print the card's key algorithms along with their keygrips in interactive key generation. * agent: Clear bogus pinentry cache in the error case. [#4348] * scd: Support "acknowledge button" feature. * scd: Fix for USB INTERRUPT transfer. [#4308] * wks: Do no use compression for the the encrypted challenge and response. Changes also found in 2.2.12: * tools: New commands --install-key and --remove-key for gpg-wks-client. This allows to prepare a Web Key Directory on a local file system for later upload to a web server. * gpg: New --list-option "show-only-fpr-mbox". This makes the use of the new gpg-wks-client --install-key command easier on Windows. * gpg: Improve processing speed when --skip-verify is used. * gpg: Fix a bug where a LF was accidentally written to the console. * gpg: --card-status now shows whether a card has the new KDF feature enabled. * agent: New runtime option --s2k-calibration=MSEC. New configure option --with-agent-s2k-calibration=MSEC. [#3399] * dirmngr: Try another keyserver from the pool on receiving a 502, 503, or 504 error. [#4175] * dirmngr: Avoid possible CSRF attacks via http redirects. A HTTP query will not anymore follow a 3xx redirect unless the Location header gives the same host. If the host is different only the host and port is taken from the Location header and the original path and query parts are kept. * dirmngr: New command FLUSHCRL to flush all CRLS from disk and memory. [#3967] * New simplified Chinese translation (zh_CN). Changes also found in 2.2.11: * gpgsm: Fix CRL loading when intermediate certificates are not yet trusted. * gpgsm: Fix an error message about the digest algo. [#4219] * gpg: Fix a wrong warning due to new sign usage check introduced with 2.2.9. [#4014] * gpg: Print the "data source" even for an unsuccessful keyserver query. * gpg: Do not store the TOFU trust model in the trustdb. This allows to enable or disable a TOFO model without triggering a trustdb rebuild. [#4134] * scd: Fix cases of "Bad PIN" after using "forcesig". [#4177] * agent: Fix possible hang in the ssh handler. [#4221] * dirmngr: Tack the unmodified mail address to a WKD request. See commit a2bd4a64e5b057f291a60a9499f881dd47745e2f for details. * dirmngr: Tweak diagnostic about missing LDAP server file. * dirmngr: In verbose mode print the OCSP responder id. * dirmngr: Fix parsing of the LDAP port. [#4230] * wks: Add option --directory/-C to the server. Always build the server on Unix systems. * wks: Add option --with-colons to the client. Support sites which use the policy file instead of the submission-address file. * Fix EBADF when gpg et al. are called by broken CGI scripts. * Fix some minor memory leaks and bugs. Changes also found in 2.2.10: * gpg: Refresh expired keys originating from the WKD. [#2917] * gpg: Use a 256 KiB limit for a WKD imported key. * gpg: New option --known-notation. [#4060] * scd: Add support for the Trustica Cryptoucan reader. * agent: Speed up starting during on-demand launching. [#3490] * dirmngr: Validate SRV records in WKD queries. Changes also found in 2.2.9: * dirmngr: Fix recursive resolver mode and other bugs in the libdns code. [#3374,#3803,#3610] * dirmngr: When using libgpg-error 1.32 or later a GnuPG build with NTBTLS support (e.g. the standard Windows installer) does not anymore block for dozens of seconds before returning data. * gpg: Fix bug in --show-keys which actually imported revocation certificates. [#4017] * gpg: Ignore too long user-ID and comment packets. [#4022] * gpg: Fix crash due to bad German translation. Improved printf format compile time check. * gpg: Handle missing ISSUER sub packet gracefully in the presence of the new ISSUER_FPR. [#4046] * gpg: Allow decryption using several passphrases in most cases. [#3795,#4050] * gpg: Command --show-keys now enables the list options show-unusable-uids, show-unusable-subkeys, show-notations and show-policy-urls by default. * gpg: Command --show-keys now prints revocation certificates. [#4018] * gpg: Add revocation reason to the "rev" and "rvs" records of the option --with-colons. [#1173] * gpg: Export option export-clean does now remove certain expired subkeys; export-minimal removes all expired subkeys. [#3622] * gpg: New "usage" property for the drop-subkey filters. [#4019] Changes also found in 2.2.8: * gpg: Decryption of messages not using the MDC mode will now lead to a hard failure even if a legacy cipher algorithm was used. The option --ignore-mdc-error can be used to turn this failure into a warning. Take care: Never use that option unconditionally or without a prior warning. * gpg: The MDC encryption mode is now always used regardless of the cipher algorithm or any preferences. For testing --rfc2440 can be used to create a message without an MDC. * gpg: Sanitize the diagnostic output of the original file name in verbose mode. [#4012,CVE-2018-12020] * gpg: Detect suspicious multiple plaintext packets in a more reliable way. [#4000] * gpg: Fix the duplicate key signature detection code. [#3994] * gpg: The options --no-mdc-warn, --force-mdc, --no-force-mdc, --disable-mdc and --no-disable-mdc have no more effect. * gpg: New command --show-keys. * agent: Add DBUS_SESSION_BUS_ADDRESS and a few other envvars to the list of startup environment variables. [#3947] Changes also found in 2.2.7: * gpg: New option --no-symkey-cache to disable the passphrase cache for symmetrical en- and decryption. * gpg: The ERRSIG status now prints the fingerprint if that is part of the signature. * gpg: Relax emitting of FAILURE status lines * gpg: Add a status flag to "sig" lines printed with --list-sigs. * gpg: Fix "Too many open files" when using --multifile. [#3951] * ssh: Return an error for unknown ssh-agent flags. [#3880] * dirmngr: Fix a regression since 2.1.16 which caused corrupted CRL caches under Windows. [#2448,#3923] * dirmngr: Fix a CNAME problem with pools and TLS. Also use a fixed mapping of keys.gnupg.net to sks-keyservers.net. [#3755] * dirmngr: Try resurrecting dead hosts earlier (from 3 to 1.5 hours). * dirmngr: Fallback to CRL if no default OCSP responder is configured. * dirmngr: Implement CRL fetching via https. Here a redirection to http is explicitly allowed. * dirmngr: Make LDAP searching and CRL fetching work under Windows. This stopped working with 2.1. [#3937] * agent,dirmngr: New sub-command "getenv" for "getinfo" to ease debugging. Changes also found in 2.2.6: * gpg,gpgsm: New option --request-origin to pretend requests coming from a browser or a remote site. * gpg: Fix race condition on trustdb.gpg updates due to too early released lock. [#3839] * gpg: Emit FAILURE status lines in almost all cases. [#3872] * gpg: Implement --dry-run for --passwd to make checking a key's passphrase straightforward. * gpg: Make sure to only accept a certification capable key for key signatures. [#3844] * gpg: Better user interaction in --card-edit for the factory-reset sub-command. * gpg: Improve changing key attributes in --card-edit by adding an explicit "key-attr" sub-command. [#3781] * gpg: Print the keygrips in the --card-status. * scd: Support KDF DO setup. [#3823] * scd: Fix some issues with PC/SC on Windows. [#3825] * scd: Fix suspend/resume handling in the CCID driver. * agent: Evict cached passphrases also via a timer. [#3829] * agent: Use separate passphrase caches depending on the request origin. [#3858] * ssh: Support signature flags. [#3880] * dirmngr: Handle failures related to missing IPv6 support gracefully. [#3331] * Fix corner cases related to specified home directory with drive letter on Windows. [#3720] * Allow the use of UNC directory names as homedir. [#3818] Changes also found in 2.2.5: * gpg: Allow the use of the "cv25519" and "ed25519" short names in addition to the canonical curve names in --batch --gen-key. * gpg: Make sure to print all secret keys with option --list-only and --decrypt. [#3718] * gpg: Fix the use of future-default with --quick-add-key for signing keys. [#3747] * gpg: Select a secret key by checking availability under gpg-agent. [#1967] * gpg: Fix reversed prompt texts for --only-sign-text-ids. [#3787] * gpg,gpgsm: Fix detection of bogus keybox blobs on 32 bit systems. [#3770] * gpgsm: Fix regression since 2.1 in --export-secret-key-raw which got $d mod (q-1)$ wrong. Note that most tools automatically fixup that parameter anyway. * ssh: Fix a regression in getting the client'd PID on BSD and macOS. scd: Support the KDF Data Object of the OpenPGP card 3.3. [#3152] * scd: Fix a regression in the internal CCID driver for certain card readers. [#3508] * scd: Fix a problem on NetBSD killing scdaemon on gpg-agent shutdown. [#3778] * dirmngr: Improve returned error description on failure of DNS resolving. [#3756] * wks: Implement command --install-key for gpg-wks-server. * Add option STATIC=1 to the Speedo build system to allow a build with statically linked versions of the core GnuPG libraries. Also use --enable-wks-tools by default by Speedo builds for Unix. Changes also found in 2.2.4: * gpg: Change default preferences to prefer SHA512. * gpg: Print a warning when more than 150 MiB are encrypted using a cipher with 64 bit block size. * gpg: Print a warning if the MDC feature has not been used for a message. * gpg: Fix regular expression of domain addresses in trust signatures. [#2923] * agent: New option --auto-expand-secmem to help with high numbers of concurrent connections. Requires libgcrypt 1.8.2 for having an effect. [#3530] * dirmngr: Cache responses of WKD queries. * gpgconf: Add option --status-fd. * wks: Add commands --check and --remove-key to gpg-wks-server. * Increase the backlog parameter of the daemons to 64 and add option --listen-backlog. * New configure option --enable-run-gnupg-user-socket to first try a socket directory which is not removed by systemd at session end. Changes also found in 2.2.3: * gpgsm: Fix initial keybox creation on Windows. [#3507] * dirmngr: Fix crash in case of a CRL loading error. [#3510] * Fix the name of the Windows registry key. [Git#4f5afaf1fd] * gpgtar: Fix wrong behaviour of --set-filename. [#3500] * gpg: Silence AKL retrieval messages. [#3504] * agent: Use clock or clock_gettime for calibration. [#3056] * agent: Improve robustness of the shutdown pending state. [Git#7ffedfab89] Changes also found in 2.2.2: * gpg: Avoid duplicate key imports by concurrently running gpg processes. [#3446] * gpg: Fix creating on-disk subkey with on-card primary key. [#3280] * gpg: Fix validity retrieval for multiple keyrings. [Debian#878812] * gpg: Fix --dry-run and import option show-only for secret keys. * gpg: Print "sec" or "sbb" for secret keys with import option import-show. [#3431] * gpg: Make import less verbose. [#3397] * gpg: Add alias "Key-Grip" for parameter "Keygrip" and new parameter "Subkey-Grip" to unattended key generation. [#3478] * gpg: Improve "factory-reset" command for OpenPGP cards. [#3286] * gpg: Ease switching Gnuk tokens into ECC mode by using the magic keysize value 25519. * gpgsm: Fix --with-colon listing in crt records for fields > 12. * gpgsm: Do not expect X.509 keyids to be unique. [#1644] * agent: Fix stuck Pinentry when using --max-passphrase-days. [#3190] * agent: New option --s2k-count. [#3276 (workaround)] * dirmngr: Do not follow https-to-http redirects. [#3436] * dirmngr: Reduce default LDAP timeout from 100 to 15 seconds. [#3487] * gpgconf: Ignore non-installed components for commands --apply-profile and --apply-defaults. [#3313] * Add configure option --enable-werror. [#2423] Changes also found in 2.2.1: * gpg: Fix formatting of the user id in batch mode key generation if only "name-email" is given. * gpgv: Fix annoying "not suitable for" warnings. * wks: Convey only the newest user id to the provider. This is the case if different names are used with the same addr-spec. * wks: Create a complying user id for provider policy mailbox-only. * wks: Add workaround for posteo.de. * scd: Fix the use of large ECC keys with an OpenPGP card. * dirmngr: Use system provided root certificates if no specific HKP certificates are configured. If build with GNUTLS, this was already the case. Release-info: https://dev.gnupg.org/T5343 See-also: gnupg-announce/2021q2/000458.html Release dates of 2.2 versions ----------------------------- Version 2.2.29 (2021-07-04) https://dev.gnupg.org/T5498 Version 2.2.28 (2021-06-10) https://dev.gnupg.org/T5482 Version 2.2.27 (2021-01-11) https://dev.gnupg.org/T5234 Version 2.2.26 (2020-12-21) https://dev.gnupg.org/T5153 Version 2.2.25 (2020-11-23) https://dev.gnupg.org/T5140 Version 2.2.24 (2020-11-17) https://dev.gnupg.org/T5052 Version 2.2.23 (2020-09-03) https://dev.gnupg.org/T5045 Version 2.2.22 (2020-08-27) https://dev.gnupg.org/T5030 Version 2.2.21 (2020-07-09) https://dev.gnupg.org/T4897 Version 2.2.20 (2020-03-20) https://dev.gnupg.org/T4860 Version 2.2.19 (2019-12-07) https://dev.gnupg.org/T4768 Version 2.2.18 (2019-11-25) https://dev.gnupg.org/T4684 Version 2.2.17 (2019-07-09) https://dev.gnupg.org/T4606 Version 2.2.16 (2019-05-28) https://dev.gnupg.org/T4509 Version 2.2.15 (2019-03-26) https://dev.gnupg.org/T4434 Version 2.2.14 (2019-03-19) https://dev.gnupg.org/T4412 Version 2.2.13 (2019-02-12) https://dev.gnupg.org/T4290 Version 2.2.12 (2018-12-14) https://dev.gnupg.org/T4289 Version 2.2.11 (2018-11-06) https://dev.gnupg.org/T4233 Version 2.2.10 (2018-08-30) https://dev.gnupg.org/T4112 Version 2.2.9 (2018-07-12) https://dev.gnupg.org/T4036 Version 2.2.8 (2018-06-08) Version 2.2.7 (2018-05-02) Version 2.2.6 (2018-04-09) Version 2.2.5 (2018-02-22) Version 2.2.4 (2017-12-20) Version 2.2.3 (2017-11-20) Version 2.2.2 (2017-11-07) Version 2.2.1 (2017-09-19) Noteworthy changes in version 2.2.0 (2017-08-28) ------------------------------------------------ This is the new long term stable branch. This branch will only see bug fixes and no new features. * gpg: Reverted change in 2.1.23 so that --no-auto-key-retrieve is again the default. * Fixed a few minor bugs. See-also: gnupg-announce/2017q3/000413.html Noteworthy changes in version 2.1.23 (2017-08-09) ------------------------------------------------- * gpg: "gpg" is now installed as "gpg" and not anymore as "gpg2". If needed, the new configure option --enable-gpg-is-gpg2 can be used to revert this. * gpg: Options --auto-key-retrieve and --auto-key-locate "local,wkd" are now used by default. Note: this enables keyserver and Web Key Directory operators to notice when a signature from a locally non-available key is being verified for the first time or when you intend to encrypt to a mail address without having the key locally. This new behaviour will eventually make key discovery much easier and mostly automatic. Disable this by adding no-auto-key-retrieve auto-key-locate local to your gpg.conf. * agent: Option --no-grab is now the default. The new option --grab allows to revert this. * gpg: New import option "show-only". * gpg: New option --disable-dirmngr to entirely disable network access for gpg. * gpg,gpgsm: Tweaked DE-VS compliance behaviour. * New configure flag --enable-all-tests to run more extensive tests during "make check". * gpgsm: The keygrip is now always printed in colon mode as documented in the man page. * Fixed connection timeout problem under Windows. See-also: gnupg-announce/2017q3/000412.html Noteworthy changes in version 2.1.22 (2017-07-28) ------------------------------------------------- * gpg: Extend command --quick-set-expire to allow for setting the expiration time of subkeys. * gpg: By default try to repair keys during import. New sub-option no-repair-keys for --import-options. * gpg,gpgsm: Improved checking and reporting of DE-VS compliance. * gpg: New options --key-origin and --with-key-origin. Store the time of the last key update from keyservers, WKD, or DANE. * agent: New option --ssh-fingerprint-digest. * dimngr: Lower timeouts on keyserver connection attempts and made it configurable. * dirmngr: Tor will now automatically be detected and used. The option --no-use-tor disables Tor detection. * dirmngr: Now detects a changed /etc/resolv.conf. * agent,dirmngr: Initiate shutdown on removal of the GnuPG home directory. * gpg: Avoid caching passphrase for failed symmetric encryption. * agent: Support for unprotected ssh keys. * dirmngr: Fixed name resolving on systems using only v6 nameservers. * dirmngr: Allow the use of TLS over http proxies. * w32: Change directory of the daemons after startup. * wks: New man pages for client and server. * Many other bug fixes. See-also: gnupg-announce/2017q3/000411.html Noteworthy changes in version 2.1.21 (2017-05-15) ------------------------------------------------- * gpg,gpgsm: Fix corruption of old style keyring.gpg files. This bug was introduced with version 2.1.20. Note that the default pubring.kbx format was not affected. * gpg,dirmngr: Removed the skeleton config file support. The system's standard methods for providing default configuration files should be used instead. * w32: The Windows installer now allows installation of GnuPG without Administrator permissions. * gpg: Fixed import filter property match bug. * scd: Removed Linux support for Cardman 4040 PCMCIA reader. * scd: Fixed some corner case bugs in resume/suspend handling. * Many minor bug fixes and code cleanup. See-also: gnupg-announce/2017q2/000405.html Noteworthy changes in version 2.1.20 (2017-04-03) ------------------------------------------------- * gpg: New properties 'expired', 'revoked', and 'disabled' for the import and export filters. * gpg: New command --quick-set-primary-uid. * gpg: New compliance field for the --with-colon key listing. * gpg: Changed the key parser to generalize the processing of local meta data packets. * gpg: Fixed assertion failure in the TOFU trust model. * gpg: Fixed exporting of zero length user ID packets. * scd: Improved support for multiple readers. * scd: Fixed timeout handling for key generation. * agent: New option --enable-extended-key-format. * dirmngr: Do not add a keyserver to a new dirmngr.conf. Dirmngr uses a default keyserver. * dimngr: Do not treat TLS warning alerts as severe error when building with GNUTLS. * dirmngr: Actually take /etc/hosts in account. * wks: Fixed client problems on Windows. Published keys are now set to world-readable. * tests: Fixed creation of temporary directories. * A socket directory for a non standard GNUGHOME is now created on the fly under /run/user. Thus "gpgconf --create-socketdir" is now optional. The use of "gpgconf --remove-socketdir" to clean up obsolete socket directories is however recommended to avoid cluttering /run/user with useless directories. * Fixed build problems on some platforms. See-also: gnupg-announce/2017q2/000404.html Noteworthy changes in version 2.1.19 (2017-03-01) ------------------------------------------------- * gpg: Print a warning if Tor mode is requested but the Tor daemon is not running. * gpg: New status code DECRYPTION_KEY to print the actual private key used for decryption. * gpgv: New options --log-file and --debug. * gpg-agent: Revamp the prompts to ask for card PINs. * scd: Support for multiple card readers. * scd: Removed option --debug-disable-ticker. Ticker is used only when it is required to watch removal of device/card. * scd: Improved detection of card inserting and removal. * dirmngr: New option --disable-ipv4. * dirmngr: New option --no-use-tor to explicitly disable the use of Tor. * dirmngr: The option --allow-version-check is now required even if the option --use-tor is also used. * dirmngr: Handle a missing nsswitch.conf gracefully. * dirmngr: Avoid PTR lookups for keyserver pools. The are only done for the debug command "keyserver --hosttable". * dirmngr: Rework the internal certificate cache to support classes of certificates. Load system provided certificates on startup. Add options --tls, --no-crl, and --systrust to the "VALIDATE" command. * dirmngr: Add support for the ntbtls library. * wks: Create mails with a "WKS-Phase" header. Fix detection of Draft-2 mode. * The Windows installer is now build with limited TLS support. * Many other bug fixes and new regression tests. See-also: gnupg-announce/2017q1/000402.html Noteworthy changes in version 2.1.18 (2017-01-23) ------------------------------------------------- * gpg: Remove bogus subkey signature while cleaning a key (with export-clean, import-clean, or --edit-key's sub-command clean) * gpg: Allow freezing the clock with --faked-system-time. * gpg: New --export-option flag "backup", new --import-option flag "restore". * gpg-agent: Fixed long delay due to a regression in the progress callback code. * scd: Lots of code cleanup and internal changes. * scd: Improved the internal CCID driver. * dirmngr: Fixed problem with the DNS glue code (removal of the trailing dot in domain names). * dirmngr: Make sure that Tor is actually enabled after changing the conf file and sending SIGHUP or "gpgconf --reload dirmngr". * dirmngr: Fixed Tor access to IPv6 addresses. Note that current versions of Tor may require that the flag "IPv6Traffic" is used with the option "SocksPort" in torrc to actually allow IPv6 traffic. * dirmngr: Fixed HKP for literally given IPv6 addresses. * dirmngr: Enabled reverse DNS lookups via Tor. * dirmngr: Added experimental SRV record lookup for WKD. See commit 88dc3af3d4ae1afe1d5e136bc4c38bc4e7d4cd10 for details. * dirmngr: For HKP use "pgpkey-hkps" and "pgpkey-hkp" in SRV record lookups. Avoid SRV record lookup when a port is explicitly specified. This fixes a regression from the 1.4 and 2.0 behavior. * dirmngr: Gracefully handle a missing /etc/nsswitch.conf. Ignore negation terms (e.g. "[!UNAVAIL=return]" instead of bailing out. * dirmngr: Better debug output for flags "dns" and "network". * dirmngr: On reload mark all known HKP servers alive. * gpgconf: Allow keyword "all" for --launch, --kill, and --reload. * tools: gpg-wks-client now ignores a missing policy file on the server. * Avoid unnecessary ambiguity error message in the option parsing. * Further improvements of the regression test suite. * Fixed building with --disable-libdns configure option. * Fixed a crash running the tests on 32 bit architectures. * Fixed spurious failures on BSD system in the spawn functions. This affected for example gpg-wks-client and gpgconf. See-also: gnupg-announce/2017q1/000401.html Noteworthy changes in version 2.1.17 (2016-12-20) ------------------------------------------------- * gpg: By default new keys expire after 2 years. * gpg: New command --quick-set-expire to conveniently change the expiration date of keys. * gpg: Option and command names have been changed for easier comprehension. The old names are still available as aliases. * gpg: Improved the TOFU trust model. * gpg: New option --default-new-key-algo. * scd: Support OpenPGP card V3 for RSA. * dirmngr: Support for the ADNS library has been removed. Instead William Ahern's Libdns is now source included and used on all platforms. This enables Tor support on all platforms. The new option --standard-resolver can be used to disable this code at runtime. In case of build problems the new configure option --disable-libdns can be used to build without Libdns. * dirmngr: Lazily launch ldap reaper thread. * tools: New options --check and --status-fd for gpg-wks-client. * The UTF-8 byte order mark is now skipped when reading conf files. * Fixed many bugs and regressions. * Major improvements to the test suite. For example it is possible to run the external test suite of GPGME. See-also: gnupg-announce/2016q4/000400.html Noteworthy changes in version 2.1.16 (2016-11-18) ------------------------------------------------- * gpg: New algorithm for selecting the best ranked public key when using a mail address with -r, -R, or --locate-key. * gpg: New option --with-tofu-info to print a new "tfs" record in colon formatted key listings. * gpg: New option --compliance as an alternative way to specify options like --rfc2440, --rfc4880, et al. * gpg: Many changes to the TOFU implementation. * gpg: Improve usability of --quick-gen-key. * gpg: In --verbose mode print a diagnostic when a pinentry is launched. * gpg: Remove code which warns for old versions of gnome-keyring. * gpg: New option --override-session-key-fd. * gpg: Option --output does now work with --verify. * gpgv: New option --output to allow saving the verified data. * gpgv: New option --enable-special-filenames. * agent, dirmngr: New --supervised mode for use by systemd and alike. * agent: By default listen on all available sockets using standard names. * agent: Invoke scdaemon with --homedir. * dirmngr: On Linux now detects the removal of its own socket and terminates. * scd: Support ECC key generation. * scd: Support more card readers. * dirmngr: New option --allow-version-check to download a software version database in the background. * dirmngr: Use system provided CAs if no --hkp-cacert is given. * dirmngr: Use a default keyserver if none is explicitly set * gpgconf: New command --query-swdb to check software versions against an copy of an online database. * gpgconf: Print the socket directory with --list-dirs. * tools: The WKS tools now support draft version -02. * tools: Always build gpg-wks-client and install under libexec. * tools: New option --supported for gpg-wks-client. * The log-file option now accepts a value "socket://" to log to the socket named "S.log" in the standard socket directory. * Provide fake pinentries for use by tests cases of downstream developers. * Fixed many bugs and regressions. * Many changes and improvements for the test suite. See-also: gnupg-announce/2016q4/000398.html Noteworthy changes in version 2.1.15 (2016-08-18) ------------------------------------------------- * gpg: Remove the --tofu-db-format option and support for the split TOFU database. * gpg: Add option --sender to prepare for coming features. * gpg: Add option --input-size-hint to help progress indicators. * gpg: Extend the PROGRESS status line with the counted unit. * gpg: Avoid publishing the GnuPG version by default with --armor. * gpg: Properly ignore legacy keys in the keyring cache. * gpg: Always print fingerprint records in --with-colons mode. * gpg: Make sure that keygrips are printed for each subkey in --with-colons mode. * gpg: New import filter "drop-sig". * gpgsm: Fix a bug in the machine-readable key listing. * gpg,gpgsm: Block signals during keyring updates to limits the effects of a Ctrl-C at the wrong time. * g13: Add command --umount and other fixes for dm-crypt. * agent: Fix regression in SIGTERM handling. * agent: Cleanup of the ssh-agent code. * agent: Allow import of overly long keys. * scd: Fix problems with card removal. * dirmngr: Remove all code for running as a system service. * tools: Make gpg-wks-client conforming to the specs. * tests: Improve the output of the new regression test tool. * tests: Distribute the standalone test runner. * tests: Run each test in a clean environment. * Spelling and grammar fixes. See-also: gnupg-announce/2016q3/000396.html Noteworthy changes in version 2.1.14 (2016-07-14) ------------------------------------------------- * gpg: Removed options --print-dane-records and --print-pka-records. The new export options "export-pka" and "export-dane" can instead be used with the export command. * gpg: New options --import-filter and --export-filter. * gpg: New import options "import-show" and "import-export". * gpg: New option --no-keyring. * gpg: New command --quick-revuid. * gpg: New options -f/--recipient-file and -F/--hidden-recipient-file to directly specify encryption keys. * gpg: New option --mimemode to indicate that the content is a MIME part. Does only enable --textmode right now. * gpg: New option --rfc4880bis to allow experiments with proposed changes to the current OpenPGP specs. * gpg: Fix regression in the "fetch" sub-command of --card-edit. * gpg: Fix regression since 2.1 in option --try-all-secrets. * gpgv: Change default options for extra security. * gpgsm: No more root certificates are installed by default. * agent: "updatestartuptty" does now affect more environment variables. * scd: The option --homedir does now work with scdaemon. * scd: Support some more GEMPlus card readers. * gpgtar: Fix handling of '-' as file name. * gpgtar: New commands --create and --extract. * gpgconf: Tweak for --list-dirs to better support shell scripts. * tools: Add programs gpg-wks-client and gpg-wks-server to implement a Web Key Service. The configure option --enable-wks-tools is required to build them; they should be considered Beta software. * tests: Complete rework of the openpgp part of the test suite. The test scripts have been changed from Bourne shell scripts to Scheme programs. A customized scheme interpreter (gpgscm) is included. This change was triggered by the need to run the test suite on non-Unix platforms. * The rendering of the man pages has been improved. See-also: gnupg-announce/2016q3/000393.html Noteworthy changes in version 2.1.13 (2016-06-16) ------------------------------------------------- * gpg: New command --quick-addkey. Extend the --quick-gen-key command. * gpg: New --keyid-format "none" which is now also the default. * gpg: New option --with-subkey-fingerprint. * gpg: Include Signer's UID subpacket in signatures if the secret key has been specified using a mail address and the new option --disable-signer-uid is not used. * gpg: Allow unattended deletion of a secret key. * gpg: Allow export of non-passphrase protected secret keys. * gpg: New status lines KEY_CONSIDERED and NOTATION_FLAGS. * gpg: Change status line TOFU_STATS_LONG to use '~' as a non-breaking-space character. * gpg: Speedup key listings in Tofu mode. * gpg: Make sure that the current and total values of a PROGRESS status line are small enough. * gpgsm: Allow the use of AES192 and SERPENT ciphers. * dirmngr: Adjust WKD lookup to current specs. * dirmngr: Fallback to LDAP v3 if v2 is is not supported. * gpgconf: New commands --create-socketdir and --remove-socketdir, new option --homedir. * If a /run/user/$UID directory exists, that directory is now used for IPC sockets instead of the GNUPGHOME directory. This fixes problems with NFS and too long socket names and thus avoids the need for redirection files. * The Speedo build systems now uses the new versions.gnupg.org server to retrieve the default package versions. * Fix detection of libusb on FreeBSD. * Speedup fd closing after a fork. See-also: gnupg-announce/2016q2/000390.html Noteworthy changes in version 2.1.12 (2016-05-04) ------------------------------------------------- * gpg: New --edit-key sub-command "change-usage" for testing purposes. * gpg: Out of order key-signatures are now systematically detected and fixed by --edit-key. * gpg: Improved detection of non-armored messages. * gpg: Removed the extra prompt needed to create Curve25519 keys. * gpg: Improved user ID selection for --quick-sign-key. * gpg: Use the root CAs provided by the system with --fetch-key. * gpg: Add support for the experimental Web Key Directory key location service. * gpg: Improve formatting of Tofu messages and emit new Tofu specific status lines. * gpgsm: Add option --pinentry-mode to support a loopback pinentry. * gpgsm: A new pubring.kbx is now created with the header blob so that gpg can detect that the keybox format needs to be used. * agent: Add read support for the new private key protection format openpgp-s2k-ocb-aes. * agent: Add read support for the new extended private key format. * agent: Default to --allow-loopback-pinentry and add option --no-allow-loopback-pinentry. * scd: Changed to use the new libusb 1.0 API for the internal CCID driver. * dirmngr: The dirmngr-client does now auto-detect the PEM format. * g13: Add experimental support for dm-crypt. * w32: Tofu support is now available with the Speedo build method. * w32: Removed the need for libiconv.dll. * The man pages for gpg and gpgv are now installed under the correct name (gpg2 or gpg - depending on a configure option). * Lots of internal cleanups and bug fixes. See-also: gnupg-announce/2016q2/000387.html Noteworthy changes in version 2.1.11 (2016-01-26) ------------------------------------------------- * gpg: New command --export-ssh-key to replace the gpgkey2ssh tool. * gpg: Allow to generate mail address only keys with --gen-key. * gpg: "--list-options show-usage" is now the default. * gpg: Make lookup of DNS CERT records holding an URL work. * gpg: Emit PROGRESS status lines during key generation. * gpg: Don't check for ambiguous or non-matching key specification in the config file or given to --encrypt-to. This feature will return in 2.3.x. * gpg: Lock keybox files while updating them. * gpg: Solve rare error on Windows during keyring and Keybox updates. * gpg: Fix possible keyring corruption. (bug#2193) * gpg: Fix regression of "bkuptocard" sub-command in --edit-key and remove "checkbkupkey" sub-command introduced with 2.1. (bug#2169) * gpg: Fix internal error in gpgv when using default keyid-format. * gpg: Fix --auto-key-retrieve to work with dirmngr.conf configured keyservers. (bug#2147). * agent: New option --pinentry-timeout. * scd: Improve unplugging of USB readers under Windows. * scd: Fix regression for generating RSA keys on card. * dirmmgr: All configured keyservers are now searched. * dirmngr: Install CA certificate for hkps.pool.sks-keyservers.net. Use this certificate even if --hkp-cacert is not used. * gpgtar: Add actual encryption code. gpgtar does now fully replace gpg-zip. * gpgtar: Fix filename encoding problem on Windows. * Print a warning if a GnuPG component is using an older version of gpg-agent, dirmngr, or scdaemon. See-also: gnupg-announce/2016q1/000383.html Noteworthy changes in version 2.1.10 (2015-12-04) ------------------------------------------------- * gpg: New trust models "tofu" and "tofu+pgp". * gpg: New command --tofu-policy. New options --tofu-default-policy and --tofu-db-format. * gpg: New option --weak-digest to specify hash algorithms which should be considered weak. * gpg: Allow the use of multiple --default-key options; take the last available key. * gpg: New option --encrypt-to-default-key. * gpg: New option --unwrap to only strip the encryption layer. * gpg: New option --only-sign-text-ids to exclude photo IDs from key signing. * gpg: Check for ambiguous or non-matching key specification in the config file or given to --encrypt-to. * gpg: Show the used card reader with --card-status. * gpg: Print export statistics and an EXPORTED status line. * gpg: Allow selecting subkeys by keyid in --edit-key. * gpg: Allow updating the expiration time of multiple subkeys at once. * dirmngr: New option --use-tor. For full support this requires libassuan version 2.4.2 and a patched version of libadns (e.g. adns-1.4-g10-7 as used by the standard Windows installer). * dirmngr: New option --nameserver to specify the nameserver used in Tor mode. * dirmngr: Keyservers may again be specified by IP address. * dirmngr: Fixed problems in resolving keyserver pools. * dirmngr: Fixed handling of premature termination of TLS streams so that large numbers of keys can be refreshed via hkps. * gpg: Fixed a regression in --locate-key [since 2.1.9]. * gpg: Fixed another bug for keyrings with legacy keys. * gpgsm: Allow combinations of usage flags in --gen-key. * Make tilde expansion work with most options. * Many other cleanups and bug fixes. See-also: gnupg-announce/2015q4/000381.html Noteworthy changes in version 2.1.9 (2015-10-09) ------------------------------------------------ * gpg: Allow fetching keys via OpenPGP DANE (--auto-key-locate). New option --print-dane-records. [Update: --print-dane-records replaced in 2.1.4.] * gpg: Fix for a problem with PGP-2 keys in a keyring. * gpg: Fail with an error instead of a warning if a modern cipher algorithm is used without a MDC. * agent: New option --pinentry-invisible-char. * agent: Always do a RSA signature verification after creation. * agent: Fix a regression in ssh-add-ing Ed25519 keys. * agent: Fix ssh fingerprint computation for nistp384 and EdDSA. * agent: Fix crash during passphrase entry on some platforms. * scd: Change timeout to fix problems with some 2.1 cards. * dirmngr: Displayed name is now Key Acquirer. * dirmngr: Add option --keyserver. Deprecate that option for gpg. Install a dirmngr.conf file from a skeleton for new installations. See-also: gnupg-announce/2015q4/000380.html Noteworthy changes in version 2.1.8 (2015-09-10) ------------------------------------------------ * gpg: Sending very large keys to the keyservers works again. * gpg: Validity strings in key listings are now again translatable. * gpg: Emit FAILURE status lines to help GPGME. * gpg: Does not anymore link to Libksba to reduce dependencies. * gpgsm: Export of secret keys via Assuan is now possible. * agent: Raise the maximum passphrase length from 100 to 255 bytes. * agent: Fix regression using EdDSA keys with ssh. * Does not anymore use a build timestamp by default. * The fallback encoding for broken locale settings changed from Latin-1 to UTF-8. * Many code cleanups and improved internal documentation. * Various minor bug fixes. See-also: gnupg-announce/2015q3/000379.html Noteworthy changes in version 2.1.7 (2015-08-11) ------------------------------------------------ * gpg: Support encryption with Curve25519 if Libgcrypt 1.7 is used. * gpg: In the --edit-key menu: Removed the need for "toggle", changed how secret keys are indicated, new commands "fpr " and "grip". gpg: More fixes related to legacy keys in a keyring. * gpgv: Does now also work with a "trustedkeys.kbx" file. * scd: Support some feature from the OpenPGP card 3.0 specs. * scd: Improved ECC support * agent: New option --force for the DELETE_KEY command. * w32: Look for the Pinentry at more places. * Dropped deprecated gpgsm-gencert.sh * Various other bug fixes. See-also: gnupg-announce/2015q3/000371.html Noteworthy changes in version 2.1.6 (2015-07-01) ------------------------------------------------ * agent: New option --verify for the PASSWD command. * gpgsm: Add command option "offline" as an alternative to --disable-dirmngr. * gpg: Do not prompt multiple times for a password in pinentry loopback mode. * Allow the use of debug category names with --debug. * Using gpg-agent and gpg/gpgsm with different locales will now show the correct translations in Pinentry. * gpg: Improve speed of --list-sigs and --check-sigs. * gpg: Make --list-options show-sig-subpackets work again. * gpg: Fix an export problem for old keyrings with PGP-2 keys. * scd: Support PIN-pads on more readers. * dirmngr: Properly cleanup zombie LDAP helper processes and avoid hangs on dirmngr shutdown. * Various other bug fixes. See-also: gnupg-announce/2015q3/000370.html Noteworthy changes in version 2.1.5 (2015-06-11) ------------------------------------------------ * Support for an external passphrase cache. * Support for the forthcoming version 3 OpenPGP smartcard. * Manuals now show the actual used file names. * Prepared for improved integration with Emacs. * Code cleanups and minor bug fixes. See-also: gnupg-announce/2015q2/000369.html Noteworthy changes in version 2.1.4 (2015-05-12) ------------------------------------------------ * gpg: Add command --quick-adduid to non-interactively add a new user id to an existing key. * gpg: Do no enable honor-keyserver-url by default. Make it work if enabled. * gpg: Display the serial number in the --card-status output again. * agent: Support for external password managers. Add option --no-allow-external-cache. * scdaemon: Improved handling of extended APDUs. * Make HTTP proxies work again. * All network access including DNS as been moved to Dirmngr. * Allow building without LDAP support. * Fixed lots of smaller bugs. See-also: gnupg-announce/2015q2/000366.html Noteworthy changes in version 2.1.3 (2015-04-11) ------------------------------------------------ * gpg: LDAP keyservers are now supported by 2.1. * gpg: New option --with-icao-spelling. * gpg: New option --print-pka-records. Changed the PKA method to use CERT records and hashed names. [Update: --print-pka-records replaced in 2.1.14.] * gpg: New command --list-gcrypt-config. New parameter "curve" for --list-config. * gpg: Print a NEWSIG status line like gpgsm always did. * gpg: Print MPI values with --list-packets and --verbose. * gpg: Write correct MPI lengths with ECC keys. * gpg: Skip legacy PGP-2 keys while searching. * gpg: Improved searching for mail addresses when using a keybox. * gpgsm: Changed default algos to AES-128 and SHA-256. * gpgtar: Fixed extracting files with sizes of a multiple of 512. * dirmngr: Fixed SNI handling for hkps pools. * dirmngr: extra-certs and trusted-certs are now always loaded from the sysconfig dir instead of the homedir. * Fixed possible problems due to compiler optimization, two minor regressions, and other bugs. See-also: gnupg-announce/2015q2/000365.html Noteworthy changes in version 2.1.2 (2015-02-11) ------------------------------------------------ * gpg: The parameter 'Passphrase' for batch key generation works again. * gpg: Using a passphrase option in batch mode now has the expected effect on --quick-gen-key. * gpg: Improved reporting of unsupported PGP-2 keys. * gpg: Added support for algo names when generating keys using --command-fd. * gpg: Fixed DoS based on bogus and overlong key packets. * agent: When setting --default-cache-ttl the value for --max-cache-ttl is adjusted to be not lower than the former. * agent: Fixed problems with the new --extra-socket. * agent: Made --allow-loopback-pinentry changeable with gpgconf. * agent: Fixed importing of unprotected openpgp keys. * agent: Now tries to use a fallback pinentry if the standard pinentry is not installed. * scd: Added support for ECDH. * Fixed several bugs related to bogus keyrings and improved some other code. See-also: gnupg-announce/2015q1/000361.html Noteworthy changes in version 2.1.1 (2014-12-16) ------------------------------------------------ * gpg: Detect faulty use of --verify on detached signatures. * gpg: New import option "keep-ownertrust". * gpg: New sub-command "factory-reset" for --card-edit. * gpg: A stub key for smartcards is now created by --card-status. * gpg: Fixed regression in --refresh-keys. * gpg: Fixed regression in %g and %p codes for --sig-notation. * gpg: Fixed best matching hash algo detection for ECDSA and EdDSA. * gpg: Improved perceived speed of secret key listisngs. * gpg: Print number of skipped PGP-2 keys on import. * gpg: Removed the option aliases --throw-keyid and --notation-data; use --throw-keyids and --set-notation instead. * gpg: New import option "keep-ownertrust". * gpg: Skip too large keys during import. * gpg,gpgsm: New option --no-autostart to avoid starting gpg-agent or dirmngr. * gpg-agent: New option --extra-socket to provide a restricted command set for use with remote clients. * gpgconf --kill does not anymore start a service only to kill it. * gpg-pconnect-agent: Add convenience option --uiserver. * Fixed keyserver access for Windows. * Fixed build problems on Mac OS X * The Windows installer does now install development files * More translations (but most of them are not complete). * To support remotely mounted home directories, the IPC sockets may now be redirected. This feature requires Libassuan 2.2.0. * Improved portability and the usual bunch of bug fixes. See-also: gnupg-announce/2014q4/000360.html Noteworthy changes in version 2.1.0 (2014-11-06) ------------------------------------------------ This release introduces a lot of changes. Most of them are internal and thus not user visible. However, some long standing behavior has slightly changed and it is strongly suggested that an existing "~/.gnupg" directory is backed up before this version is used. A verbose description of the major new features and changes can be found in the file doc/whats-new-in-2.1.txt. * gpg: All support for v3 (PGP 2) keys has been dropped. All signatures are now created as v4 signatures. v3 keys will be removed from the keyring. * gpg: With pinentry-0.9.0 the passphrase "enter again" prompt shows up in the same window as the "new passphrase" prompt. * gpg: Allow importing keys with duplicated long key ids. * dirmngr: May now be build without support for LDAP. * For a complete list of changes see the lists of changes for the 2.1.0 beta versions below. Note that all relevant fixes from versions 2.0.14 to 2.0.26 are also applied to this version. [Noteworthy changes in version 2.1.0-beta864 (2014-10-03)] * gpg: Removed the GPG_AGENT_INFO related code. GnuPG does now always use a fixed socket name in its home directory. * gpg: Renamed --gen-key to --full-gen-key and re-added a --gen-key command with less choices. * gpg: Use SHA-256 for all signature types also on RSA keys. * gpg: Default keyring is now created with a .kbx suffix. * gpg: Add a shortcut to the key capabilities menu (e.g. "=e" sets the encryption capabilities). * gpg: Fixed obsolete options parsing. * Further improvements for the alternative speedo build system. [Noteworthy changes in version 2.1.0-beta834 (2014-09-18)] * gpg: Improved passphrase caching. * gpg: Switched to algorithm number 22 for EdDSA. * gpg: Removed CAST5 from the default preferences. * gpg: Order SHA-1 last in the hash preferences. * gpg: Changed default cipher for --symmetric to AES-128. * gpg: Fixed export of ECC keys and import of EdDSA keys. * dirmngr: Fixed the KS_FETCH command. * The speedo build system now downloads related packages and works for non-Windows platforms. [Noteworthy changes in version 2.1.0-beta783 (2014-08-14)] * gpg: Add command --quick-gen-key. * gpg: Make --quick-sign-key promote local key signatures. * gpg: Added "show-usage" sub-option to --list-options. * gpg: Screen keyserver responses to avoid importing unwanted keys from rogue servers. * gpg: Removed the option --pgp2 and --rfc1991 and the ability to create PGP-2 compatible messages. * gpg: Removed options --compress-keys and --compress-sigs. * gpg: Cap attribute packets at 16MB. * gpg: Improved output of --list-packets. * gpg: Make with-colons output of --search-keys work again. * gpgsm: Auto-create the ".gnupg" directory like gpg does. * agent: Fold new passphrase warning prompts into one. * scdaemon: Add support for the Smartcard-HSM card. * scdaemon: Remove the use of the pcsc-wrapper. [Noteworthy changes in version 2.1.0-beta751 (2014-07-03)] * gpg: Create revocation certificates during key generation. * gpg: Create exported secret keys and revocation certifciates with mode 0700 * gpg: The validity of user ids is now shown by default. To revert this add "list-options no-show-uid-validity" to gpg.conf. * gpg: Make export of secret keys work again. * gpg: The output of --list-packets does now print the offset of the packet and information about the packet header. * gpg: Avoid DoS due to garbled compressed data packets. [CVE-2014-4617] * gpg: Print more specific reason codes with the INV_RECP status. * gpg: Cap RSA and Elgamal keysize at 4096 bit also for unattended key generation. * scdaemon: Support reader Gemalto IDBridge CT30 and pinpad of SCT cyberJack go. * The speedo build system has been improved. It is now also possible to build a partly working installer for Windows. [Noteworthy changes in version 2.1.0-beta442 (2014-06-05)] * gpg: Changed the format of key listings. To revert to the old format the option --legacy-list-mode is available. * gpg: Add experimental signature support using curve Ed25519 and with a patched Libgcrypt also encryption support with Curve25519. [Update: this encryption support has been removed from 2.1.0 until we have agreed on a suitable format.] * gpg: Allow use of Brainpool curves. * gpg: Accepts a space separated fingerprint as user ID. This allows to copy and paste the fingerprint from the key listing. * gpg: The hash algorithm is now printed for signature records in key listings. * gpg: Reject signatures made using the MD5 hash algorithm unless the new option --allow-weak-digest-algos or --pgp2 are given. * gpg: Print a warning if the Gnome-Keyring-Daemon intercepts the communication with the gpg-agent. * gpg: New option --pinentry-mode. * gpg: Fixed decryption using an OpenPGP card. * gpg: Fixed bug with deeply nested compressed packets. * gpg: Only the major version number is by default included in the armored output. * gpg: Do not create a trustdb file if --trust-model=always is used. * gpg: Protect against rogue keyservers sending secret keys. * gpg: The format of the fallback key listing ("gpg KEYFILE") is now more aligned to the regular key listing ("gpg -k"). * gpg: The option--show-session-key prints its output now before the decryption of the bulk message starts. * gpg: New %U expando for the photo viewer. * gpg,gpgsm: New option --with-secret. * gpgsm: By default the users are now asked via the Pinentry whether they trust an X.509 root key. To prohibit interactive marking of such keys, the new option --no-allow-mark-trusted may be used. * gpgsm: New commands to export a secret RSA key in PKCS#1 or PKCS#8 format. * gpgsm: Improved handling of re-issued CA certificates. * agent: The included ssh agent does now support ECDSA keys. * agent: New option --enable-putty-support to allow gpg-agent on Windows to act as a Pageant replacement with full smartcard support. * scdaemon: New option --enable-pinpad-varlen. * scdaemon: Various fixes for pinpad equipped card readers. * scdaemon: Rename option --disable-pinpad (was --disable-keypad). * scdaemon: Better support for CCID readers. Now, internal CCID driver supports readers with no auto configuration feature. * dirmngr: Removed support for the original HKP keyserver which is not anymore used by any site. * dirmngr: Improved support for keyserver pools. * tools: New option --dirmngr for gpg-connect-agent. * The GNU Pth library has been replaced by the new nPth library. * Support installation as portable application under Windows. * All kind of other improvements - see the git log. [Noteworthy changes in version 2.1.0beta3 (2011-12-20)] * gpg: Fixed regression in the secret key export function. * gpg: Allow generation of card keys up to 4096 bit. * gpgsm: Preliminary support for the validation model "steed". * gpgsm: Improved certificate creation. * agent: Support the SSH confirm flag. * agent: New option to select a passphrase mode. The loopback mode may be used to bypass Pinentry. * agent: The Assuan commands KILLAGENT and KILLSCD are working again. * scdaemon: Does not anymore block after changing a card (regression fix). * tools: gpg-connect-agent does now properly display the help output for "SCD HELP" commands. [Noteworthy changes in version 2.1.0beta2 (2011-03-08)] * gpg: ECC support as described by draft-jivsov-openpgp-ecc-06.txt [Update: now known as RFC-6637]. * gpg: Print "AES128" instead of "AES". This change introduces a little incompatibility for tools using "gpg --list-config". We hope that these tools are written robust enough to accept this new algorithm name as well. * gpgsm: New feature to create certificates from a parameter file. Add prompt to the --gen-key UI to create self-signed certificates. * agent: TMPDIR is now also honored when creating a socket using the --no-standard-socket option and with symcryptrun's temp files. * scdaemon: Fixed a bug where scdaemon sends a signal to gpg-agent running in non-daemon mode. * dirmngr: Fixed CRL loading under W32 (bug#1010). * Dirmngr has taken over the function of the keyserver helpers. Thus we now have a specified direct interface to keyservers via Dirmngr. LDAP, DNS and mail backends are not yet implemented. * Fixed TTY management for pinentries and session variable update problem. [Noteworthy changes in version 2.1.0beta1 (2010-10-26)] * gpg: secring.gpg is not anymore used but all secret key operations are delegated to gpg-agent. The import command moves secret keys to the agent. * gpg: The OpenPGP import command is now able to merge secret keys. * gpg: Encrypted OpenPGP messages with trailing data (e.g. other OpenPGP packets) are now correctly parsed. * gpg: Given sufficient permissions Dirmngr is started automagically. * gpg: Fixed output of "gpgconf --check-options". * gpg: Removed options --export-options(export-secret-subkey-passwd) and --simple-sk-checksum. * gpg: New options --try-secret-key. * gpg: Support DNS lookups for SRV, PKA and CERT on W32. * gpgsm: The --audit-log feature is now more complete. * gpgsm: The default for --include-cert is now to include all certificates in the chain except for the root certificate. * gpgsm: New option --ignore-cert-extension. * g13: The G13 tool for disk encryption key management has been added. * agent: If the agent's --use-standard-socket option is active, all tools try to start and daemonize the agent on the fly. In the past this was only supported on W32; on non-W32 systems the new configure option --disable-standard-socket may now be used to disable this new default. * agent: New and changed passphrases are now created with an iteration count requiring about 100ms of CPU work. * dirmngr: Dirmngr is now a part of this package. It is now also expected to run as a system service and the configuration directories are changed to the GnuPG name space. [Update: 2.1.0 starts dirmngr on demand as user daemon.] * Support for Windows CE. [Update: This has not been tested for the 2.1.0 release] * Numerical values may now be used as an alternative to the debug-level keywords. See-also: gnupg-announce/2014q4/000358.html Version 2.0.28 (2015-06-02) Version 2.0.27 (2015-02-18) Version 2.0.26 (2014-08-12) Version 2.0.25 (2014-06-30) Version 2.0.24 (2014-06-24) Version 2.0.23 (2014-06-03) Version 2.0.22 (2013-10-04) Version 2.0.21 (2013-08-19) Version 2.0.20 (2013-05-10) Version 2.0.19 (2012-03-27) Version 2.0.18 (2011-08-04) Version 2.0.17 (2011-01-13) Version 2.0.16 (2010-07-19) Version 2.0.15 (2010-03-09) Version 2.0.14 (2009-12-21) Noteworthy changes in version 2.0.13 (2009-09-04) ------------------------------------------------- * GPG now generates 2048 bit RSA keys by default. The default hash algorithm preferences has changed to prefer SHA-256 over SHA-1. 2048 bit DSA keys are now generated to use a 256 bit hash algorithm * The envvars XMODIFIERS, GTK_IM_MODULE and QT_IM_MODULE are now passed to the Pinentry to make SCIM work. * The GPGSM command --gen-key features a --batch mode and implements all features of gpgsm-gencert.sh in standard mode. * New option --re-import for GPGSM's IMPORT server command. * Enhanced writing of existing keys to OpenPGP v2 cards. * Add hack to the internal CCID driver to allow the use of some Omnikey based card readers with 2048 bit keys. * GPG now repeatedly asks the user to insert the requested OpenPGP card. This can be disabled with --limit-card-insert-tries=1. * Minor bug fixes. See-also: gnupg-announce/2009q3/000294.html Noteworthy changes in version 2.0.12 (2009-06-17) ------------------------------------------------- * GPGSM now always lists ephemeral certificates if specified by fingerprint or keygrip. * New command "KEYINFO" for GPG_AGENT. GPGSM now also returns information about smartcards. * Made sure not to leak file descriptors if running gpg-agent with a command. Restore the signal mask to solve a problem in Mono. * Changed order of the confirmation questions for root certificates and store negative answers in trustlist.txt. * Better synchronization of concurrent smartcard sessions. * Support 2048 bit OpenPGP cards. * Support Telesec Netkey 3 cards. * The gpg-protect-tool now uses gpg-agent via libassuan. Under Windows the Pinentry will now be put into the foreground. * Changed code to avoid a possible Mac OS X system freeze. See-also: gnupg-announce/2009q2/000288.html Noteworthy changes in version 2.0.11 (2009-03-03) ------------------------------------------------- * Fixed a problem in SCDAEMON which caused unexpected card resets. * SCDAEMON is now aware of the Geldkarte. * The SCDAEMON option --allow-admin is now used by default. * GPGCONF now restarts SCdaemon if necessary. * The default cipher algorithm in GPGSM is now again 3DES. This is due to interoperability problems with Outlook 2003 which still can't cope with AES. See-also: gnupg-announce/2009q1/000287.html Noteworthy changes in version 2.0.10 (2009-01-12) ------------------------------------------------- * [gpg] New keyserver helper gpg2keys_kdns as generic DNS CERT lookup. Run with --help for a short description. Requires the ADNS library. * [gpg] New mechanisms "local" and "nodefault" for --auto-key-locate. Fixed a few problems with this option. * [gpg] New command --locate-keys. * [gpg] New options --with-sig-list and --with-sig-check. * [gpg] The option "-sat" is no longer an alias for --clearsign. * [gpg] The option --fixed-list-mode is now implicitly used and obsolete. * [gpg] New control statement %ask-passphrase for the unattended key generation. * [gpg] The algorithm to compute the SIG_ID status has been changed. * [gpgsm] Now uses AES by default. * [gpgsm] Made --output option work with --export-secret-key-p12. * [gpg-agent] Terminate process if the own listening socket is not anymore served by ourself. * [scdaemon] Made it more robust on W32. * [gpg-connect-agent] Accept commands given as command line arguments. * [w32] Initialized the socket subsystem for all keyserver helpers. * [w32] The sysconf directory has been moved from a subdirectory of the installation directory to %CSIDL_COMMON_APPDATA%/GNU/etc/gnupg. * [w32] The gnupg2.nls directory is not anymore used. The standard locale directory is now used. * [w32] Fixed a race condition between gpg and gpgsm in the use of temporary file names. * The gpg-preset-passphrase mechanism works again. An arbitrary string may now be used for a custom cache ID. * Admin PINs are cached again (bug in 2.0.9). * Support for version 2 OpenPGP cards. * Libgcrypt 1.4 is now required. See-also: gnupg-announce/2009q1/000284.html Noteworthy changes in version 2.0.9 (2008-03-26) ------------------------------------------------ * Gpgsm always tries to locate missing certificates from a running Dirmngr's cache. * Tweaks for Windows. * The Admin PIN for OpenPGP cards may now be entered with the pinpad. * Improved certificate chain construction. * Extended the PKITS framework. * Fixed a bug in the ambiguous name detection. * Fixed possible memory corruption while importing OpenPGP keys (bug introduced with 2.0.8). [CVE-2008-1530] * Minor bug fixes. Noteworthy changes in version 2.0.8 (2007-12-20) ------------------------------------------------ * Enhanced gpg-connect-agent with a small scripting language. * New option --list-config for gpgconf. * Fixed a crash in gpgconf. * Gpg-agent now supports the passphrase quality bar of the latest Pinentry. * The envvars XAUTHORITY and PINENTRY_USER_DATA are now passed to the Pinentry. * Fixed the auto creation of the key stub for smartcards. * Fixed a rare bug in decryption using the OpenPGP card. * Creating DSA2 keys is now possible. * New option --extra-digest-algo for gpgsm to allow verification of broken signatures. * Allow encryption with legacy Elgamal sign+encrypt keys with option --rfc2440. * Windows is now a supported platform. * Made sure that under Windows the file permissions of the socket are taken into account. This required a change of our socket emulation code and changed the IPC protocol under Windows. See-also: gnupg-announce/2007q4/000267.html Noteworthy changes in version 2.0.7 (2007-09-10) ------------------------------------------------ * Fixed encryption problem if duplicate certificates are in the keybox. * Made it work on Windows Vista. Note that the entire Windows port is still considered Beta. * Add new options min-passphrase-nonalpha, check-passphrase-pattern, enforce-passphrase-constraints and max-passphrase-days to gpg-agent. * Add command --check-components to gpgconf. Gpgconf now uses the installed versions of the programs and does not anymore search via PATH for them. See-also: gnupg-announce/2007q3/000259.html Noteworthy changes in version 2.0.6 (2007-08-16) ------------------------------------------------ * GPGSM does now grok --default-key. * GPGCONF is now aware of --default-key and --encrypt-to. * GPGSM does again correctly print the serial number as well the the various keyids. This was broken since 2.0.4. * New option --validation-model and support for the chain-model. * Improved Windows support. See-also: gnupg-announce/2007q3/000258.html Noteworthy changes in version 2.0.5 (2007-07-05) ------------------------------------------------ * Switched license to GPLv3. * Basic support for Windows. Run "./autogen.sh --build-w32" to build it. As usual the mingw cross compiling toolchain is required. * Fixed bug when using the --p12-charset without --armor. * The command --gen-key may now be used instead of the gpgsm-gencert.sh script. * Changed key generation to reveal less information about the machine. Bug fixes for gpg2's card key generation. See-also: gnupg-announce/2007q3/000255.html Noteworthy changes in version 2.0.4 (2007-05-09) ------------------------------------------------ * The server mode key listing commands are now also working for systems without the funopen/fopencookie API. * PKCS#12 import now tries several encodings in case the passphrase was not utf-8 encoded. New option --p12-charset for gpgsm. * Improved the libgcrypt logging support in all modules. See-also: gnupg-announce/2007q2/000254.html Noteworthy changes in version 2.0.3 (2007-03-08) ------------------------------------------------ * By default, do not allow processing multiple plaintexts in a single stream. Many programs that called GnuPG were assuming that GnuPG did not permit this, and were thus not using the plaintext boundary status tags that GnuPG provides. This change makes GnuPG reject such messages by default which makes those programs safe again. --allow-multiple-messages returns to the old behavior. [CVE-2007-1263]. * New --verify-option show-primary-uid-only. * gpgconf may now reads a global configuration file to select which options are changeable by a frontend. The new applygnupgdefaults tool may be used by an admin to set default options for all users. * The PIN pad of the Cherry XX44 keyboard is now supported. The DINSIG and the NKS applications are now also aware of PIN pads. See-also: gnupg-announce/2007q1/000252.html Noteworthy changes in version 2.0.2 (2007-01-31) ------------------------------------------------ * Fixed a serious and exploitable bug in processing encrypted packages. [CVE-2006-6235]. * Added --passphrase-repeat to set the number of times GPG will prompt for a new passphrase to be repeated. This is useful to help memorize a new passphrase. The default is 1 repetition. * Using a PIN pad does now also work for the signing key. * A warning is displayed by gpg-agent if a new passphrase is too short. New option --min-passphrase-len defaults to 8. * The status code BEGIN_SIGNING now shows the used hash algorithms. See-also: gnupg-announce/2007q1/000249.html Noteworthy changes in version 2.0.1 (2006-11-28) ------------------------------------------------ * Experimental support for the PIN pads of the SPR 532 and the Kaan Advanced card readers. Add "disable-keypad" scdaemon.conf if you don't want it. Does currently only work for the OpenPGP card and its authentication and decrypt keys. * Fixed build problems on some some platforms and crashes on amd64. * Fixed a buffer overflow in gpg2. [bug#728,CVE-2006-6169] See-also: gnupg-announce/2006q4/000242.html Noteworthy changes in version 2.0.0 (2006-11-11) ------------------------------------------------ * First stable version of a GnuPG integrating OpenPGP and S/MIME. See-also: gnupg-announce/2006q4/000239.html Noteworthy changes in version 1.9.95 (2006-11-06) ------------------------------------------------- * Minor bug fixes. Noteworthy changes in version 1.9.94 (2006-10-24) ------------------------------------------------- * Keys for gpgsm may now be specified using a keygrip. A keygrip is indicated by a prefixing it with an ampersand. * gpgconf now supports switching the CMS cipher algo (e.g. to AES). * New command --gpgconf-test for all major tools. This may be used to check whether the configuration file is sane. Noteworthy changes in version 1.9.93 (2006-10-18) ------------------------------------------------- * In --with-validation mode gpgsm will now also ask whether a root certificate should be trusted. * Link to Pth only if really necessary. * Fixed a pubring corruption bug in gpg2 occurring when importing signatures or keys with insane lengths. * Fixed v3 keyID calculation bug in gpg2. * More tweaks for certificates without extensions. Noteworthy changes in version 1.9.92 (2006-10-11) ------------------------------------------------- * Bug fixes. See-also: gnupg-announce/2006q4/000236.html Noteworthy changes in version 1.9.91 (2006-10-04) ------------------------------------------------- * New "relax" flag for trustlist.txt to allow root CA certificates without BasicContraints. * [gpg2] Removed the -k PGP 2 compatibility hack. -k is now an alias for --list-keys. * [gpg2] Print a warning if "-sat" is used instead of "--clearsign". Noteworthy changes in version 1.9.90 (2006-09-25) ------------------------------------------------- * Made readline work for gpg. * Cleanups und minor bug fixes. * Included translations from gnupg 1.4.5. Noteworthy changes in version 1.9.23 (2006-09-18) ------------------------------------------------- * Regular man pages for most tools are now build directly from the Texinfo source. * The gpg code from 1.4.5 has been fully merged into this release. The configure option --enable-gpg is still required to build this gpg part. For production use of OpenPGP the gpg version 1.4.5 is still recommended. Note, that gpg will be installed under the name gpg2 to allow coexisting with an 1.4.x gpg. * API change in gpg-agent's pkdecrypt command. Thus an older gpgsm may not be used with the current gpg-agent. * The scdaemon will now call a script on reader status changes. * gpgsm now allows file descriptor passing for "INPUT", "OUTPUT" and "MESSAGE". * The gpgsm server may now output a key listing to the output file handle. This needs to be enabled using "OPTION list-to-output=1". * The --output option of gpgsm has now an effect on list-keys. * New gpgsm commands --dump-chain and list-chain. * gpg-connect-agent has new options to utilize descriptor passing. * A global trustlist may now be used. See doc/examples/trustlist.txt. * When creating a new pubring.kbx keybox common certificates are imported. Noteworthy changes in version 1.9.22 (2006-07-27) ------------------------------------------------- * Enhanced pkcs#12 support to allow import from simple keyBags. * Exporting to pkcs#12 now create bag attributes so that Mozilla is able to import the files. * Fixed uploading of certain keys to the smart card. Noteworthy changes in version 1.9.21 (2006-06-20) ------------------------------------------------- * New command APDU for scdaemon to allow using it for general card access. Might be used through gpg-connect-agent by using the SCD prefix command. * Support for the CardMan 4040 PCMCIA reader (Linux 2.6.15 required). * Scdaemon does not anymore reset cards at the end of a connection. * Kludge to allow use of Bundesnetzagentur issued X.509 certificates. * Added --hash=xxx option to scdaemon's PKSIGN command. * Pkcs#12 files are now created with a MAC. This is for better interoperability. * Collected bug fixes and minor other changes. Noteworthy changes in version 1.9.20 (2005-12-20) ------------------------------------------------- * Importing pkcs#12 files created be recent versions of Mozilla works again. * Basic support for qualified signatures. * New debug tool gpgparsemail. Noteworthy changes in version 1.9.19 (2005-09-12) ------------------------------------------------- * The Belgian eID card is now supported for signatures and ssh. Other pkcs#15 cards should work as well. * Fixed bug in --export-secret-key-p12 so that certificates are again included. Noteworthy changes in version 1.9.18 (2005-08-01) ------------------------------------------------- * [gpgsm] Now allows for more than one email address as well as URIs and dnsNames in certificate request generation. A keygrip may be given to create a request from an existing key. * A couple of minor bug fixes. Noteworthy changes in version 1.9.17 (2005-06-20) ------------------------------------------------- * gpg-connect-agent has now features to handle Assuan INQUIRE commands. * Internal changes for OpenPGP cards. New Assuan command WRITEKEY. * GNU Pth is now a hard requirement. * [scdaemon] Support for OpenSC has been removed. Instead a new and straightforward pkcs#15 modules has been written. As of now it does allows only signing using TCOS cards but we are going to enhance it to match all the old capabilities. * [gpg-agent] New option --write-env-file and Assuan command UPDATESTARTUPTTY. * [gpg-agent] New option --default-cache-ttl-ssh to set the TTL for SSH passphrase caching independent from the other passphrases. Noteworthy changes in version 1.9.16 (2005-04-21) ------------------------------------------------- * gpg-agent does now support the ssh-agent protocol and thus allows to use the pinentry as well as the OpenPGP smartcard with ssh. * New tool gpg-connect-agent as a general client for the gpg-agent. * New tool symcryptrun as a wrapper for certain encryption tools. * The gpg tool is not anymore build by default because those gpg versions available in the gnupg 1.4 series are far more matured. Noteworthy changes in version 1.9.15 (2005-01-13) ------------------------------------------------- * Fixed passphrase caching bug. * Better support for CCID readers; the reader from Cherry RS 6700 USB does now work. Noteworthy changes in version 1.9.14 (2004-12-22) ------------------------------------------------- * [gpg-agent] New option --use-standard-socket to allow the use of a fixed socket. gpgsm falls back to this socket if GPG_AGENT_INFO has not been set. * Ported to MS Windows with some functional limitations. * New tool gpg-preset-passphrase. Noteworthy changes in version 1.9.13 (2004-12-03) ------------------------------------------------- * [gpgsm] New option --prefer-system-dirmngr. * Minor cleanups and debugging aids. Noteworthy changes in version 1.9.12 (2004-10-22) ------------------------------------------------- * [scdaemon] Partly rewrote the PC/SC code. * Removed the sc-investigate tool. It is now in a separate package available at ftp://ftp.g10code.com/g10code/gscutils/ . * [gpg-agent] Fixed logging problem. Noteworthy changes in version 1.9.11 (2004-10-01) ------------------------------------------------- * When using --import along with --with-validation, the imported certificates are validated and only imported if they are fully valid. * [gpg-agent] New option --max-cache-ttl. * [gpg-agent] When used without --daemon or --server, gpg-agent now check whether a agent is already running and usable. * Fixed some i18n problems. Noteworthy changes in version 1.9.10 (2004-07-22) ------------------------------------------------- * Fixed a serious bug in the checking of trusted root certificates. * New configure option --enable-agent-pnly allows to build and install just the agent. * Fixed a problem with the log file handling. Noteworthy changes in version 1.9.9 (2004-06-08) ------------------------------------------------ * [gpg-agent] The new option --allow-mark-trusted is now required to allow gpg-agent to add a key to the trustlist.txt after user confirmation. * Creating PKCS#10 requests does now honor the key usage. Noteworthy changes in version 1.9.8 (2004-04-29) ------------------------------------------------ * [scdaemon] Overhauled the internal CCID driver. * [scdaemon] Status files named ~/.gnupg/reader_<n>.status are now written when using the internal CCID driver. * [gpgsm] New commands --dump-{,secret,external}-keys to show a very detailed view of the certificates. * The keybox gets now compressed after 3 hours and ephemeral stored certificates are deleted after about a day. * [gpg] Usability fixes for --card-edit. Note, that this has already been ported back to gnupg-1.3 Noteworthy changes in version 1.9.7 (2004-04-06) ------------------------------------------------ * Instrumented the modules for gpgconf. * Added support for DINSIG card applications. * Include the smimeCapabilities attribute with signed messages. * Now uses the gettext domain "gnupg2" to avoid conflicts with gnupg versions < 1.9. Noteworthy changes in version 1.9.6 (2004-03-06) ------------------------------------------------ * Code cleanups and bug fixes. Noteworthy changes in version 1.9.5 (2004-02-21) ------------------------------------------------ * gpg-protect-tool gets now installed into libexec as it ought to be. Cleaned up the build system to better comply with the coding standards. * [gpgsm] The --import command is now able to autodetect pkcs#12 files and import secret and private keys from this file format. A new command --export-secret-key-p12 is provided to allow exporting of secret keys in PKCS\#12 format. * [gpgsm] The pinentry will now present a description of the key for whom the passphrase is requested. * [gpgsm] New option --with-validation to check the validity of key while listing it. * New option --debug-level={none,basic,advanced,expert,guru} to map the debug flags to sensitive levels on a per program base. Noteworthy changes in version 1.9.4 (2004-01-30) ------------------------------------------------ * Added support for the Telesec NKS 2.0 card application. * Added simple tool addgnupghome to create .gnupg directories from /etc/skel/.gnupg. * Various minor bug fixes and cleanups; mainly gpgsm and gpg-agent related. Noteworthy changes in version 1.9.3 (2003-12-23) ------------------------------------------------ * New gpgsm options --{enable,disable}-ocsp to validate keys using OCSP. This option requires a not yet released DirMngr version. Default is disabled. * The --log-file option may now be used to print logs to a socket. Prefix the socket name with "socket://" to enable this. This does not work on all systems and falls back to stderr if there is a problem with the socket. * The options --encrypt-to and --no-encrypt-to now work the same in gpgsm as in gpg. Note, they are also used in server mode. * Duplicated recipients are now silently removed in gpgsm. Noteworthy changes in version 1.9.2 (2003-11-17) ------------------------------------------------ * On card key generation is no longer done using the --gen-key command but from the menu provided by the new --card-edit command. * PINs are now properly cached and there are only 2 PINs visible. The 3rd PIN (CHV2) is internally synchronized with the regular PIN. * All kind of other internal stuff. Noteworthy changes in version 1.9.1 (2003-09-06) ------------------------------------------------ * Support for OpenSC is back. scdaemon supports a --disable-opensc to disable OpenSC use at runtime, so that PC/SC or ct-API can still be used directly. * Rudimentary support for the SCR335 smartcard reader using an internal driver. Requires current libusb from CVS. * Bug fixes. Noteworthy changes in version 1.9.0 (2003-08-05) ------------------------------------------------ ====== PLEASE SEE README-alpha ======= * gpg has been renamed to gpg2 and gpgv to gpgv2. This is a temporary change to allow co-existing with stable gpg versions. * ~/.gnupg/gpg.conf-1.9.0 is fist tried as config file before the usual gpg.conf. * Removed the -k, -kv and -kvv commands. -k is now an alias to --list-keys. New command -K as alias for --list-secret-keys. * Removed --run-as-shm-coprocess feature. * gpg does now also use libgcrypt, libgpg-error is required. * New gpgsm commands --call-dirmngr and --call-protect-tool. * Changing a passphrase is now possible using "gpgsm --passwd" * The content-type attribute is now recognized and created. * The agent does now reread certain options on receiving a HUP. * The pinentry is now forked for each request so that clients with different environments are supported. When running in daemon mode and --keep-display is not used the DISPLAY variable is ignored. * Merged stuff from the newpg branch and started this new development branch. Version 1.4.19 (2015-02-27) Version 1.4.18 (2014-06-30) Version 1.4.17 (2014-06-23) Version 1.4.16 (2013-12-18) Version 1.4.15 (2013-10-04) Version 1.4.14 (2013-07-25) Version 1.4.13 (2012-12-20) Version 1.4.12 (2012-01-30) Version 1.4.11 (2010-10-18) Version 1.4.10 (2009-09-02) Version 1.4.9 (2008-03-26) Version 1.4.8 (2007-12-20) Version 1.4.7 (2007-03-05) Version 1.4.6 (2006-12-06) Version 1.4.5 (2006-08-01) Version 1.4.4 (2006-06-25) Version 1.4.3 (2006-04-03) Version 1.4.2 (2005-07-26) Version 1.4.1 (2005-03-15) Version 1.4.0 (2004-12-16) Noteworthy changes in version 1.3.2 (2003-05-27) ------------------------------------------------ * New "--gnupg" option (set by default) that disables --openpgp, and the various --pgpX emulation options. This replaces --no-openpgp, and --no-pgpX, and also means that GnuPG has finally grown a --gnupg option to make GnuPG act like GnuPG. * A bug in key validation has been fixed. This bug only affects keys with more than one user ID (photo IDs do not count here), and results in all user IDs on a given key being treated with the validity of the most-valid user ID on that key. * Notation names that do not contain a '@' are no longer allowed unless --expert is set. This is to help prevent pollution of the (as yet unused) IETF notation namespace. * Multiple trust models are now supported via the --trust-model option. The options are "pgp" (web-of-trust plus trust signatures), "classic" (web-of-trust only), and "always" (identical to the --always-trust option). * The --personal-{cipher\|digest\|compression}-preferences are now consulted to get default algorithms before resorting to the last-ditch defaults of --s2k-cipher-algo, SHA1, and ZIP respectively. This allows a user to set algorithms to use in a safe manner so they are used when legal to do so, without forcing them on for all messages. * New --primary-keyring option to designate the keyring that the user wants new keys imported into. * --s2k-digest-algo is now used for all password mangling. Earlier versions used both --s2k-digest-algo and --digest-algo for passphrase mangling. * Handling of --hidden-recipient or --throw-keyid messages is now easier - the user only needs to give their passphrase once, and GnuPG will try it against all of the available secret keys. * Care is taken to prevent compiler optimization from removing memory wiping code. * New option --no-mangle-dos-filenames so that filenames are not truncated in the W32 version. * A "convert-from-106" script has been added. This is a simple script that automates the conversion from a 1.0.6 or earlier version of GnuPG to a 1.0.7 or later version. * Disabled keys are now skipped when selecting keys for encryption. If you are using the --with-colons key listings to detect disabled keys, please see doc/DETAILS for a minor format change in this release. * Minor trustdb changes to make the trust calculations match common usage. * New command "revuid" in the --edit-key menu to revoke a user ID. This is a simpler interface to the old method (which still works) of revoking the user ID self-signature. * Status VALIDSIG does now also print the primary key's fingerprint, as well as the signature version, pubkey algorithm, hash algorithm, and signature class. * Add read-only support for the SHA-256 hash, and optional read-only support for the SHA-384 and SHA-512 hashes. * New option --enable-progress-filter for use with frontends. * DNS SRV records are used in HKP keyserver lookups to allow administrators to load balance and select keyserver ports automatically. This is as specified in draft-shaw-openpgp-hkp-00.txt. * When using the "keyid!" syntax during a key export, only that specified key is exported. If the key in question is a subkey, the primary key plus only that subkey is exported. * configure --disable-xxx options to disable individual algorithms at build time. This can be used to build a smaller gpg binary for embedded uses where space is tight. See the README file for the algorithms that can be used with this option, or use --enable-minimal to build the smallest gpg possible (disables all optional algorithms, disables keyserver access, and disables photo IDs). * The keyserver no-modify flag on a key can now be displayed and modified. * Note that the TIGER/192 digest algorithm is in the process of being dropped from the OpenPGP standard. While this release of GnuPG still contains it, it is disabled by default. To ensure you will still be able to use your messages with future versions of GnuPG and other OpenPGP programs, please do not use this algorithm. See-also: gnupg-announce/2003q2/000153.html Noteworthy changes in version 1.3.1 (2002-11-12) ------------------------------------------------ * Trust signature support. This is based on the Maurer trust model where a user can specify the trust level along with the signature with multiple levels so users can delegate certification ability to other users, possibly restricted by a regular expression on the user ID. Note that full trust signature support requires a regular expression parsing library. The regexp code from glibc 2.3.1 is included for those platforms that don't have working regexp functions available. The configure option --disable-regex may be used to disable any regular expression code, which will make GnuPG ignore any trust signature with a regular expression included. * Two new commands --hidden-recipient (-R) and --hidden-encrypt-to encrypt to a user, but hide the identity of that user. This is the same functionality as --throw-keyid, but can be used on a per-user basis. * Full algorithm names (e.g. "3DES", "SHA1", "ZIP") can now be used interchangeably with the short algorithm names (e.g. "S2", "H2", "Z1") anywhere algorithm names are used in GnuPG. Noteworthy changes in version 1.3.0 (2002-10-18) ------------------------------------------------ * The last piece of internal keyserver support has been removed, and now all keyserver access is done via the keyserver plugins. There is also a newer keyserver protocol used between GnuPG and the plugins, so plugins from earlier versions of GnuPG may not work properly. * The HKP keyserver plugin supports the new machine-readable key listing format for those keyservers that provide it. * When using a HKP keyserver with multiple DNS records (such as wwwkeys.pgp.net which has the addresses of multiple servers around the world), try all records until one succeeds. Note that it depends on the LDAP library used whether the LDAP keyserver plugin does this as well. * The library dependencies for OpenLDAP seem to change fairly frequently, and GnuPG's configure script cannot guess all the combinations. Use ./configure LDAPLIBS="-L libdir -l libs" to override the script and use the libraries selected. * Secret keys generated with --export-secret-subkeys are now indicated in key listings with a '#' after the "sec", and in --with-colons listings by showing no capabilities (no lowercase characters). * --trusted-key has been un-obsoleted, as it is useful for adding ultimately trusted keys from the config file. It is identical to using --edit and "trust" to change a key to ultimately trusted. * Translations other than de are no longer distributed with the development branch. This is due to the frequent text changes during development, which cause the translations to rapidly go out of date. Version 1.2.8 (2006-12-07) Version 1.2.7 (2004-12-27) Version 1.2.6 (2004-08-25) Version 1.2.5 (2004-07-26) Version 1.2.4 (2003-12-23) Version 1.2.3 (2003-08-21) Version 1.2.2 (2003-05-01) Version 1.2.1 (2002-10-25) Version 1.2.0 (2002-09-21) Noteworthy changes in version 1.1.92 (2002-09-11) ------------------------------------------------- * [IMPORTANT] The default configuration file is now ~/.gnupg/gpg.conf. If an old ~/.gnupg/options is found it will still be used. This change is required to have a more consistent naming scheme with forthcoming tools. * The use of MDCs have increased. A MDC will be used if the recipients directly request it, if the recipients have AES, AES192, AES256, or TWOFISH in their cipher preferences, or if the chosen cipher has a blocksize not equal to 64 bits (currently this is also AES, AES192, AES256, and TWOFISH). * GnuPG will no longer automatically disable compression when processing an already-compressed file unless a MDC is being used. This is to give the message a certain amount of resistance to the chosen-ciphertext attack while communicating with other programs (most commonly PGP earlier than version 7.x) that do not support MDCs. * The option --interactive now has the desired effect when importing keys. * The file permission and ownership checks on files have been clarified. Specifically, the homedir (usually ~/.gnupg) is checked to protect everything within it. If the user specifies keyrings outside this homedir, they are presumed to be shared keyrings and therefore not checked. Configuration files specified with the --options option and the IDEA cipher extension specified with --load-extension are checked, along with their enclosing directories. * The configure option --with-static-rnd=auto allows to build gpg with all available entropy gathering modules included. At runtime the best usable one will be selected from the list linux, egd, unix. This is also the default for systems lacking a /dev/random device. * The default character set is now taken from the current locale; it can still be overridden by the --charset option. Using the option -vvv shows the used character set. * [REMOVED] --emulate-checksum-bug and --emulate-3des-s2k-bug have been removed. Noteworthy changes in version 1.1.91 (2002-08-04) ------------------------------------------------- * All modules are now linked statically; the --load-extension option is in general not useful anymore. The only exception is to specify the deprecated idea cipher. * The IDEA plugin has changed. Previous versions of the IDEA plugin will no longer work with GnuPG. However, the current version of the plugin will work with earlier GnuPG versions. * When using --batch with one of the --delete-key commands, the key must be specified by fingerprint. See the man page for details. * There are now various ways to restrict the ability GnuPG has to exec external programs (for the keyserver helpers or photo ID viewers). Read the README file for the complete list. * New export option to leave off attribute packets (photo IDs) during export. This is useful when exporting to HKP keyservers which do not understand attribute packets. * New import option to repair during import the HKP keyserver mangling multiple subkeys bug. Note that this cannot completely repair the damaged key as some crucial data is removed by the keyserver, but it does at least give you back one subkey. This is on by default for keyserver --recv-keys, and off by default for regular --import. * The keyserver helper programs now live in /usr/[local/]libexec/gnupg by default. If you are upgrading from 1.0.7, you might want to delete your old copies in /usr/[local/]bin. If you use an OS that does not use libexec for whatever reason, use configure --libexecdir=/usr/local/lib to place the keyserver helpers there. * The LDAP keyserver handler now works properly with very old (version 1) LDAP keyservers. Noteworthy changes in version 1.1.90 (2002-07-01) ------------------------------------------------- * New commands: --personal-cipher-preferences, --personal-digest-preferences, and --personal-compress-preferences allow the user to specify which algorithms are to be preferred. Note that this does not permit using an algorithm that is not present in the recipient's preferences (which would violate the OpenPGP standard). This just allows sorting the preferences differently. * New "group" command to refer to several keys with one name. * A warning is issued if the user forces the use of an algorithm that is not listed in the recipient's preferences. * Full revocation key (aka "designated revoker") support. * The preferred hash algorithms on a key are consulted when encrypting a signed message to that key. Note that this is disabled by default by a SHA1 preference in --personal-digest-preferences. * --cert-digest-algo allows the user to specify the hash algorithm to use when signing a key rather than the default SHA1 (or MD5 for PGP2 keys). Do not use this feature unless you fully understand the implications of this. * --pgp7 mode automatically sets all necessary options to ensure that the resulting message will be usable by a user of PGP 7.x. * New --attribute-fd command for frontends and scripts to get the contents of attribute packets (i.e. photos) * In expert mode, the user can now re-sign a v3 key with a v4 self-signature. This does not change the v3 key into a v4 key, but it does allow the user to use preferences, primary ID flags, etc. * Significantly improved photo ID support on non-unixlike platforms. * The version number has jumped ahead to 1.1.90 to skip over the old version 1.1 and to get ready for the upcoming 1.2. * ElGamal sign and encrypt is not anymore allowed in the key generation dialog unless in expert mode. RSA sign and encrypt has been added with the same restrictions. * [W32] Keyserver access does work with Windows NT. Noteworthy changes in version 1.0.7 (2002-04-29) ------------------------------------------------ * Secret keys are now stored and exported in a new format which uses SHA-1 for integrity checks. This format renders the Rosa/Klima attack useless. Other OpenPGP implementations might not yet support this, so the option --simple-sk-checksum creates the old vulnerable format. * The default cipher algorithm for encryption is now CAST5, default hash algorithm is SHA-1. This will give us better interoperability with other OpenPGP implementations. * Symmetric encrypted messages now use a fixed file size if possible. This is a tradeoff: it breaks PGP 5, but fixes PGP 2, 6, and 7. Note this was only an issue with RFC-1991 style symmetric messages. * Photographic user ID support. This uses an external program to view the images. * Enhanced keyserver support via keyserver "plugins". GnuPG comes with plugins for the NAI LDAP keyserver as well as the HKP email keyserver. It retains internal support for the HKP HTTP keyserver. * Nonrevocable signatures are now supported. If a user signs a key nonrevocably, this signature cannot be taken back so be careful! * Multiple signature classes are usable when signing a key to specify how carefully the key information (fingerprint, photo ID, etc) was checked. * --pgp2 mode automatically sets all necessary options to ensure that the resulting message will be usable by a user of PGP 2.x. * --pgp6 mode automatically sets all necessary options to ensure that the resulting message will be usable by a user of PGP 6.x. * Signatures may now be given an expiration date. When signing a key with an expiration date, the user is prompted whether they want their signature to expire at the same time. * Revocation keys (designated revokers) are now supported if present. There is currently no way to designate new keys as designated revokers. * Permissions on the .gnupg directory and its files are checked for safety. * --expert mode enables certain silly things such as signing a revoked user id, expired key, or revoked key. * Some fixes to build cleanly under Cygwin32. * New tool gpgsplit to split OpenPGP data formats into packets. * New option --preserve-permissions. * Subkeys created in the future are not used for encryption or signing unless the new option --ignore-valid-from is used. * Revoked user-IDs are not listed unless signatures are listed too or we are in verbose mode. * There is no default comment string with ascii armors anymore except for revocation certificates and --enarmor mode. * The command "primary" in the edit menu can be used to change the primary UID, "setpref" and "updpref" can be used to change the preferences. * Fixed the preference handling; since 1.0.5 they were erroneously matched against against the latest user ID and not the given one. * RSA key generation. * Merged Stefan's patches for RISC OS in. See comments in scripts/build-riscos. * It is now possible to sign and conventional encrypt a message (-cs). * The MDC feature flag is supported and can be set by using the "updpref" edit command. * The status messages GOODSIG and BADSIG are now returning the primary UID, encoded using %XX escaping (but with spaces left as spaces, so that it should not break too much) * Support for GDBM based keyrings has been removed. * The entire keyring management has been revamped. * The way signature stati are store has changed so that v3 signatures can be supported. To increase the speed of many operations for existing keyrings you can use the new --rebuild-keydb-caches command. * The entire key validation process (trustdb) has been revamped. See the man page entries for --update-trustdb, --check-trustdb and --no-auto-check-trustdb. * --trusted-keys is again obsolete, --edit can be used to set the ownertrust of any key to ultimately trusted. * A subkey is never used to sign keys. * Read only keyrings are now handled as expected. See-also: gnupg-announce/2002q2/000135.html Noteworthy changes in version 1.0.6 (2001-05-29) ------------------------------------------------ * Security fix for a format string bug in the tty code. * Fixed format string bugs in all PO files. * Removed Russian translation due to too many bugs. The FTP server has an unofficial but better translation in the contrib directory. * Fixed expire time calculation and keyserver access. * The usual set of minor bug fixes and enhancements. * non-writable keyrings are now correctly handled. See-also: gnupg-announce/2001q2/000123.html Noteworthy changes in version 1.0.5 (2001-04-29) ------------------------------------------------ * WARNING: The semantics of --verify have changed to address a problem with detached signature detection. --verify now ignores signed material given on stdin unless this is requested by using a "-" as the name for the file with the signed material. Please check all your detached signature handling applications and make sure that they don't pipe the signed material to stdin without using a filename together with "-" on the the command line. * WARNING: Corrected hash calculation for input data larger than 512M - it was just wrong, so you might notice bad signature in some very big files. It may be wise to keep an old copy of GnuPG around. * Secret keys are no longer imported unless you use the new option --allow-secret-key-import. This is a kludge and future versions will handle it in another way. * New command "showpref" in the --edit-key menu to show an easier to understand preference listing. * There is now the notation of a primary user ID. For example, it is printed with a signature verification as the first user ID; revoked user IDs are not printed there anymore. In general the primary user ID is the one with the latest self-signature. * New --charset=utf-8 to bypass all internal conversions. * Large File Support (LFS) is now working. * New options: --ignore-crc-error, --no-sig-create-check, --no-sig-cache, --fixed-list-mode, --no-expensive-trust-checks, --enable-special-filenames and --use-agent. See man page. * New command --pipemode, which can be used to run gpg as a co-process. Currently only the verification of detached signatures are working. See doc/DETAILS. * Keyserver support for the W32 version. * Rewritten key selection code so that GnuPG can better cope with multiple subkeys, expire dates and so. The drawback is that it is slower. * A whole lot of bug fixes. * The verification status of self-signatures are now cached. To increase the speed of key list operations for existing keys you can do the following in your GnuPG homedir (~/.gnupg): cp pubring.gpg pubring.gpg.save && gpg --export-all >x && \ rm pubring.gpg && gpg --import x Only v4 keys (i.e not the old RSA keys) benefit from this caching. * New translations: Estonian, Turkish. See-also: gnupg-announce/2001q2/000122.html Noteworthy changes in version 1.0.4 (2000-10-17) ------------------------------------------------ * Fixed a serious bug which could lead to false signature verification results when more than one signature is fed to gpg. This is the primary reason for releasing this version. * New utility gpgv which is a stripped down version of gpg to be used to verify signatures against a list of trusted keys. * Rijndael (AES) is now supported and listed with top preference. * --with-colons now works with --print-md[s]. See-also: gnupg-announce/2000q4/000082.html Noteworthy changes in version 1.0.3 (2000-09-18) ------------------------------------------------ * Fixed problems with piping to/from other MS-Windows software * Expiration time of the primary key can be changed again. * Revoked user IDs are now marked in the output of --list-key * New options --show-session-key and --override-session-key to help the British folks to somewhat minimize the danger of this Orwellian RIP bill. * New options --merge-only and --try-all-secrets. * New configuration option --with-egd-socket. * The --trusted-key option is back after it left us with 0.9.5 * RSA is supported. Key generation does not yet work but will come soon. * CAST5 and SHA-1 are now the default algorithms to protect the key and for symmetric-only encryption. This should solve a couple of compatibility problems because the old algorithms are optional according to RFC2440 * Twofish and MDC enhanced encryption is now used. PGP 7 supports this. Older versions of GnuPG don't support it, so they should be upgraded to at least 1.0.2 See-also: gnupg-announce/2000q3/000075.html Noteworthy changes in version 1.0.2 (2000-07-12) ---------------------------------------------- * Fixed expiration handling of encryption keys. * Add an experimental feature to do unattended key generation. * The user is now asked for the reason of revocation as required by the new OpenPGP draft. * There is a ~/.gnupg/random_seed file now which saves the state of the internal RNG and increases system performance somewhat. This way the full entropy source is only used in cases were it is really required. Use the option --no-random-seed-file to disable this feature. * New options --ignore-time-conflict and --lock-never. * Some fixes for the W32 version. * The entropy.dll is not anymore used by the W32 version but replaced by code derived from Cryptlib. * Encryption is now much faster: About 2 times for 1k bit keys and 8 times for 4k keys. * New encryption keys are generated in a way which allows a much faster decryption. * New command --export-secret-subkeys which outputs the the _primary_ key with it's secret parts deleted. This is useful for automated decryption/signature creation as it allows to keep the real secret primary key offline and thereby protecting the key certificates and allowing to create revocations for the subkeys. See the FAQ for a procedure to install such secret keys. * Keygeneration now writes to the first writeable keyring or as default to the one in the homedirectory. Prior versions ignored all --keyring options. * New option --command-fd to take user input from a file descriptor; to be used with --status-fd by software which uses GnuPG as a backend. * There is a new status PROGRESS which is used to show progress during key generation. * Support for the new MDC encryption packets. To create them either --force-mdc must be use or cipher algorithm with a blocksize other than 64 bits is to be used. --openpgp currently disables MDC packets entirely. This option should not yet be used. * New option --no-auto-key-retrieve to disable retrieving of a missing public key from a keyserver, when a keyserver has been set. * Danish translation See-also: gnupg-announce/2000q3/000069.html Noteworthy changes in version 1.0.1 (1999-12-16) ----------------------------------- * New command --verify-files. New option --fast-list-mode. * $http_proxy is now used when --honor-http-proxy is set. * Fixed some minor bugs and the problem with conventional encrypted packets which did use the gpg v3 partial length headers. * Add Indonesian and Portuguese translations. * Fixed a bug with symmetric-only encryption using the non-default 3DES. The option --emulate-3des-s2k-bug may be used to decrypt documents which have been encrypted this way; this should be done immediately as this workaround will be remove in 1.1 * Can now handle (but not display) PGP's photo IDs. I don't know the format of that packet but after stripping a few bytes from the start it looks like a JPEG (at least my test data). Handling of this package is required because otherwise it would mix up the self signatures and you can't import those keys. * Passing non-ascii user IDs on the commandline should now work in all cases. * New keys are now generated with an additional preference to Blowfish. * Removed the GNU Privacy Handbook from the distribution as it will go into a separate one. See-also: gnupg-announce/1999q4/000050.html Noteworthy changes in version 1.0.0 (1999-09-07) ----------------------------------- * Add a very preliminary version of the GNU Privacy Handbook to the distribution (lynx doc/gph/index.html). * Changed the version number to GnuPG 2001 ;-) See-also: gnupg-announce/1999q3/000037.html Noteworthy changes in version 0.9.11 (1999-09-03) ------------------------------------ * UTF-8 strings are now correctly printed (if --charset is set correctly). Output of --with-colons remains C-style escaped UTF-8. * Workaround for a problem with PGP 5 detached signature in textmode. * Fixed a problem when importing new subkeys (duplicated signatures). See-also: gnupg-announce/1999q3/000036.html Noteworthy changes in version 0.9.10 (1999-07-23) ------------------------------------ * Some strange new options to help pgpgpg * Cleaned up the dox a bit. See-also: gnupg-announce/1999q3/000034.html Noteworthy changes in version 0.9.9 ----------------------------------- * New options --[no-]utf8-strings. * New edit-menu commands "enable" and "disable" for entire keys. * You will be asked for a filename if gpg cannot deduce one. * Changes to support libtool which is needed for the development of libgcrypt. * New script tools/lspgpot to help transferring assigned trustvalues from PGP to GnuPG. * New commands --lsign-key and made --sign-key a shortcut for --edit and sign. * New options (#122--126 ;-) --[no-]default-recipient[-self], --disable-{cipher,pubkey}-algo. See the man page. * Enhanced info output in case of multiple recipients and fixed exit code. * New option --allow-non-selfsigned-uid to work around a problem with the German IN way of separating signing and encryption keys. See-also: gnupg-announce/1999q3/000028.html Noteworthy changes in version 0.9.8 (1999-06-26) ----------------------------------- * New subcommand "delsig" in the edit menu. * The name of the output file is not anymore the one which is embedded in the processed message, but the used filename with the extension stripped. To revert to the old behaviour you can use the option --use-embedded-filename. * Another hack to cope with pgp2 generated detached signatures. * latin-2 character set works (--charset=iso-8859-2). * New option --with-key-data to list the public key parameters. New option -N to insert notations and a --set-policy-url. A couple of other options to allow resetting of options. * Better support for HPUX. See-also: gnupg-announce/1999q2/000016.html Noteworthy changes in version 0.9.7 (1999-05-23) ----------------------------------- * Add some work arounds for a bugs in pgp 2 which led to bad signatures when used with canonical texts in some cases. * Enhanced some status outputs. See-also: gnupg-announce/1999q2/000000.html Noteworthy changes in version 0.9.6 (1999-05-06) ----------------------------------- * Twofish is now statically linked by default. The experimental 128 bit version is now disabled. Full support will be available as soon as the OpenPGP WG has decided on an interpretation of rfc2440. * Dropped support for the ancient Blowfish160 which is not OpenPGP. * Merged gpgm and gpg into one binary. * Add "revsig" and "revkey" commands to the edit menu. It is now possible to revoke signature and subkeys. Noteworthy changes in version 0.9.5 (1999-03-20) ----------------------------------- * New command "lsign" in the keyedit menu to create non-exportable signatures. Removed --trusted-keys option. * A bunch of changes to the key validation code. * --list-trust-path now has an optional --with-colons format. * New command --recv-keys to import keys from an keyserver. Noteworthy changes in version 0.9.4 (1999-03-08) ----------------------------------- * New configure option --enable-static-rnd=[egd\|linux\|unix\|none] to select a random gathering module for static linking. * The original text is now verbatim copied to a cleartext signed message. * Bugfixes but there are still a couple of bugs. Noteworthy changes in version 0.9.3 (1999-02-19) ----------------------------------- * Changed the internal design of getkey which now allows a efficient lookup of multiple keys and add a word match mode. * New options --[no-]encrypt-to. * Some changes to the configure stuff. Switched to automake 1.4. Removed intl/ from CVS, autogen.sh now uses gettextize. * Preferences now include Twofish. Removed preference to Blowfish with a special hack to suppress the "not listed in preferences" warning; this is to allow us to switch completely to Twofish in the near future. * Changed the locking stuff. * Print all user ids of a good signature. Noteworthy changes in version 0.9.2 (1999-01-01) ----------------------------------- * add some additional time warp checks. * Option --keyserver and command --send-keys to utilize HKP servers. * Upgraded to zlib 1.1.3 and fixed an inflate bug * More cleanup on the cleartext signatures. Noteworthy changes in version 0.9.1 (1999-01-01) ----------------------------------- * Polish language support. * When querying the passphrase, the key ID of the primary key is displayed along with the one of the used secondary key. * Fixed a bug occurring when decrypting pgp 5 encrypted messages, fixed an infinite loop bug in the 3DES code and in the code which looks for trusted signatures. * Fixed a bug in the mpi library which caused signatures not to compare okay. * Rewrote the handling of cleartext signatures; the code is now better maintainable (I hope so). * New status output VALIDSIG only for valid signatures together with the fingerprint of the signer's key. Noteworthy changes in version 0.9.0 (1998-12-23) ----------------------------------- * --export does now only exports rfc2440 compatible keys; the old behaviour is available with --export-all. Generation of v3 ElGamal (sign and encrypt) keys is not longer supported. * Fixed the uncompress bug. * Rewrote the rndunix module. There are two environment variables used for debugging now: GNUPG_RNDUNIX_DBG give the file to write debugging information (use "-" for stdout) and if GNUPG_RNDUNIX_DBGALL is set, all programs which are only tried are also printed. * New option --escape-from-lines to "dash-escape" "From " lines to prevent mailers to change them to ">From ". This is not enabled by default because it is not in compliance with rfc2440 - however, you should turn it on. Noteworthy changes in version 0.4.5 (1998-12-08) ----------------------------------- * The keyrings and the trustdb is now locked, so that other GnuPG processes won't damage these files. You may want to put the option --lock-once into your options file. * The latest self-signatures are now used; this enables --import to see updated preferences etc. * Import of subkeys should now work. * Random gathering modules may now be loaded as extensions. Add such a module for most Unices but it is very experimental! * Brazilian language support. Noteworthy changes in version 0.4.4 (1998-11-20) ----------------------------------- * Fixed the way the key expiration time is stored. If you have an expiration time on your key you should fix it with --edit-key and the command "expire". I apologize for this inconvenience. * Add option --charset to support "koi8-r" encoding of user ids. (Not yet tested). * Preferences should now work again. You should run "gpgm --check-trustdb \" to rebuild all preferences. Checking of certificates should now work but this needs a lot of testing. Key validation values are now cached in the trustdb; they should be recalculated as needed, but you may use --check-trustdb or --update-trustdb to do this. * Spanish translation by Urko Lusa. * Patch files are from now on signed. See the man page for the new option --not-dash-escaped. * New syntax: --edit-key <userID> [<commands>] If you run it without --batch the commands are executed and then you are put into normal mode unless you use "quit" or "save" as one of the commands. When in batch mode, the program quits after the last command, so you have to use "save" if you did some changes. It does not yet work completely, but may be used to list so the keys etc. Noteworthy changes in version 0.4.3 (1998-11-08) ----------------------------------- * Fixed the gettext configure bug. * Kludge for RSA keys: keyid and length of a RSA key are correctly reported, but you get an error if you try to use this key (If you do not have the non-US version). * Experimental support for keyrings stored in a GDBM database. This is much faster than a standard keyring. You will notice that the import gets slower with time; the reason is that all new keys are used to verify signatures of previous inserted keys. Use "--keyring gnupg-gdbm:<name-of-gdbm-file>". This is not (yet) supported for secret keys. * A Russian language file in the distribution (alternatives are in the contrib directory of the FTP servers) * commandline option processing now works as expected for GNU programs with the exception that you can't mix options and normal arguments. * Now --list-key lists all matching keys. This is needed in some other places too. Noteworthy changes in version 0.4.2 (1998-10-18) ----------------------------------- * This is only a snapshot: There are still a few bugs. * Fixed this huge memory leak. * Redesigned the trust database: You should run "gpgm --check-trustdb". New command --update-trustdb, which adds new key from the public keyring into your trustdb * Fixed a bug in the armor code, leading to invalid packet errors. (a workaround for this was to use --no-armor). The shorten line length (64 instead of 72) fixes a problem with pgp5 and keyservers. * comment packets are not anymore generated. "--export" filters them out. One Exception: The comment packets in a secret keyring are still used because they carry the factorization of the public prime product. * --import now only looks for KEYBLOCK headers, so you can now simply remove the "- " in front of such a header if someone accidentally signed such a message or the keyblock is part of a cleartext signed message. * --with-colons now lists the key expiration time and not anymore the valid period. * Some keyblocks created with old releases have a wrong sequence of packets, so that the keyservers don't accept these keys. Simply using "--edit-key" fixes the problem. * New option --force-v3-sigs to generate signed messages which are compatible to PGP 5. * Add some code to support DLD (for non ELF systems) - but this is not tested because my BSD box is currently broken. * New command "expire" in the edit-key menu. Noteworthy changes in version 0.4.1 (1998-10-07) ----------------------------------- * A secondary key is used when the primary key is specified but cannot be used for the operation (if it is a sign-only key). * GNUPG can now handle concatenated armored messages: There is still a bug if different kinds of messages are mixed. * Iterated+Salted passphrases now work. If want to be sure that PGP5 is able to handle them you may want to use the options "--s2k-mode 3 --s2k-cipher-algo cast5 --s2k-digest-algo sha1" when changing a passphrase. * doc/OpenPGP talks about OpenPGP compliance, doc/HACKING gives a few hints about the internal structure. * Checked gnupg against the August 1998 draft (07) and I believe it is in compliance with this document (except for one point). * Fixed some bugs in the import merging code and rewrote some code for the trustdb. Noteworthy changes in version 0.4.0 (1998-09-18) ----------------------------------- * Triple DES is now supported. Michael Roth did this piece of needed work. We have now all the coded needed to be OpenPGP compliant. * Added a simple rpm spec file (see INSTALL). * detached and armored signatures are now using "PGP SIGNATURE", except when --rfc1991 is used. * All times which are not in the yyyy-mm-dd format are now printed in local time. Noteworthy changes in version 0.3.5 (1998-09-14) ----------------------------------- * New option --throw-keyid to create anonymous enciphered messages. If gpg detects such a message it tires all available secret keys in turn so decode it. This is a gnupg extension and not in OpenPGP but it has been discussed there and afaik some products use this scheme too (Suggested by Nimrod Zimmerman). * Fixed a bug with 5 byte length headers. * --delete-[secret-]key is now also available in gpgm. * cleartext signatures are not anymore converted to LF only. * Fixed a trustdb problem. Run "gpgm --check-trustdb" to fix old trust dbs. * Building in another directory should now work. * Weak key detection mechanism (Niklas Hernaeus). Noteworthy changes in version 0.3.4 (1998-08-11) ----------------------------------- * New options --comment and --set-filename; see g10/OPTIONS * yes/no, y/n localized. * Fixed some bugs. Noteworthy changes in version 0.3.3 (1998-08-08) ----------------------------------- * IMPORTANT: I found yet another bug in the way the secret keys are encrypted - I did it the way pgp 2.x did it, but OpenPGP and pgp 5.x specify another (in some aspects simpler) method. To convert your secret keys you have to do this: 1. Build the new release but don't install it and keep a copy of the old program. 2. Disable the network, make sure that you are the only user, be sure that there are no Trojan horses etc .... 3. Use your old gpg (version 0.3.1 or 0.3.2) and set the passphrases of ALL your secret keys to empty! (gpg --change-passphrase your-user-id). 4. Save your ownertrusts (see the next point) 5. rm ~/.gnupg/trustdb.gpg 6. install the new version of gpg (0.3.3) 7. For every secret key call "gpg --edit-key your-user-id", enter "passwd" at the prompt, follow the instructions and change your password back, enter "save" to store it. 8. Restore the ownertrust (see next point). * The format of the trust database has changed; you must delete the old one, so gnupg can create a new one. IMPORTANT: Use version 0.3.1 or .2 to save your assigned ownertrusts ("gpgm --list-ownertrust >saved-trust"); then build this new version and restore the ownertrust with this new version ("gpgm --import-ownertrust saved-trust"). Please note that --list-ownertrust has been renamed to --export-ownertrust in this release and it does now only export defined ownertrusts. * The command --edit-key now provides a commandline driven menu which can be used for various tasks. --sign-key is only an an alias to --edit-key and maybe removed in future: use the command "sign" of this new menu - you can select which user ids you want to sign. * Alternate user ids can now be created an signed. * Owner trust values can now be changed with --edit-key (trust) * GNUPG can now run as a coprocess; this enables sophisticated frontends. tools/shmtest.c is a simple sample implementation. This needs some more work: all tty_xxx() are to be replaced by cpr_xxx() and some changes in the display logics is needed. * Removed options --gen-prime and --gen-random. * Removed option --add-key; use --edit-key instead. * Removed option --change-passphrase; use --edit-key instead. * Signatures are now checked even if the output file could not be created. Command "--verify" tries to find the detached data. * gpg now disables core dumps. * compress and symmetric cipher preferences are now used. Because there is no 3DES yet, this is replaced by Blowfish. * We have added the Twofish as an experimental cipher algorithm. Many thanks to Matthew Skala for doing this work. Twofish is the AES submission from Schneier et al.; see "www.counterpane.com/twofish.html" for more information. * Started with a help system: If you enter a question mark at some prompt; you should get a specific help for this prompt. * There is no more backup copy of the secret keyring. * A lot of new bugs. I think this release is not as stable as the previous one. Noteworthy changes in version 0.3.2 (1998-07-09) ----------------------------------- * Fixed some bugs when using --textmode (-seat) * Now displays the trust status of a positive verified message. * Keyrings are now scanned in the sequence they are added with --[secret-]keyring. Note that the default keyring is implicitly added as the very first one unless --no-default-keyring is used. * Fixed setuid and dlopen bug. Noteworthy changes in version 0.3.1 (1998-07-06) ----------------------------------- * Partial headers are now written in the OpenPGP format if a key in a v4 packet is used. * Removed some unused options, removed the gnupg.sig stuff. * Key lookup by name now returns a key which can be used for the desired action. * New options --list-ownertrust (gpgm) to make a backup copy of the ownertrust values you assigned. * clear signature headers are now in compliance with OpenPGP. Noteworthy changes in version 0.3.0 (1998-06-25) ----------------------------------- * New option --emulate-checksum-bug. If your passphrase does not work anymore, use this option and --change-passphrase to rewrite your passphrase. * More complete v4 key support: Preferences and expiration time is set into the self signature. * Key generation defaults to DSA/ElGamal keys, so that new keys are interoperable with pgp5 * DSA key generation is faster and key generation does not anymore remove entropy from the random generator (the primes are public parameters, so there is really no need for a cryptographic secure prime number generator which we had used). * A complete new structure for representing the key parameters. * Removed most public key knowledge into the cipher library. * Support for dynamic loading of new algorithms. * Moved tiger to an extension module. Noteworthy changes in version 0.2.19 (1998-05-29) ------------------------------------ * Replaced /dev/urandom in checks with new tool mk-tdata. * Some assembler file cleanups; some more functions for the Alpha. * Tiger has now the OpenPGP assigned number 6. Because the OID has changed, old signatures using this algorithm can't be verified. * gnupg now encrypts the compressed packed and not any longer in the reverse order; anyway it can decrypt both versions. Thanks to Tom for telling me this (not security related) bug. * --add-key works and you are now able to generate subkeys. * It is now possible to generate ElGamal keys in v4 packets to create valid OpenPGP keys. * Some new features for better integration into MUAs. Noteworthy changes in version 0.2.18 (1998-05-15) ------------------------------------ * Split cipher/random.c, add new option "--disable-dev-random" to configure to support the development of a random source for other systems. Prepared sourcefiles rand-unix.c, rand-w32.c and rand-dummy.c (which is used to allow compilation on systems without a random source). * Fixed a small bug in the key generation (it was possible that 48 bits of a key were not taken from the random pool) * Add key generation for DSA and v4 signatures. * Add a function trap_unaligned(), so that a SIGBUS is issued on Alphas and not the slow emulation code is used. And success: rmd160 raised a SIGBUS. * Enhanced the formatting facility of argparse and changed the use of \r,\v to @ because gettext does not like it. * New option "--compress-algo 1" to allow the creation of compressed messages which are readable by PGP and "--print-md" (gpgm) to make speed measurement easier. Noteworthy changes in version 0.2.17 (1998-05-04) ------------------------------------ * Comment packets are now of private type 61. * Passphrase code still used a 160 bit blowfish key, added a silly workaround. Please change your passphrase again - sorry. * Conventional encryption now uses a type 3 packet to describe the used algorithms. * The new algorithm number for Blowfish is 20, 16 is still used for encryption only; for signing it is only used when it is in a v3 packet, so that GNUPG keys are still valid. Noteworthy changes in version 0.2.16 (1998-04-28) ------------------------------------ * Add experimental support for the TIGER/192 message digest algorithm. (But there is only a dummy ASN OID). * Standard cipher is now Blowfish with 128 bit key in OpenPGP's CFB mode. I renamed the old cipher to Blowfish160. Because the OpenPGP group refused to assign me a number for Blowfish160, I have to drop support for this in the future. You should use "--change-passphrase" to recode your current passphrase with 128 bit Blowfish. Noteworthy changes in version 0.2.15 (1998-04-09) ------------------------------------ * Fixed a bug with the old checksum calculation for secret keys. If you run the program without --batch, a warning does inform you if your secret key needs to be converted; simply use --change-passphrase to recalculate the checksum. Please do this soon, as the compatible mode will be removed sometime in the future. * CAST5 works (using the PGP's special CFB mode). * Again somewhat more PGP 5 compatible. * Some new test cases Noteworthy changes in version 0.2.14 (1998-04-02) ------------------------------------ * Changed the internal handling of keyrings. * Add support to list PGP 5 keyrings with subkeys * Timestamps of signatures are now verified. * A expiration time can now be specified during key generation. * Some speedups for Blowfish and SHA-1, rewrote SHA-1 transform. Reduced the amount of random bytes needed for key generation in some cases. Noteworthy changes in version 0.2.13 (1998-03-10) ------------------------------------ * Verify of DSA signatures works. * Re-implemented the slower random number generator. Noteworthy changes in version 0.2.12 (1998-03-07) ------------------------------------ * --delete-key checks that there is no secret key. The new option --delete-secret-key maybe used to delete a secret key. * "-kv" now works as expected. Options "--list-{keys,sigs]" and "--check-sigs" are now working. * New options "--verify" and "--decrypt" to better support integration into MUAs (partly done for Mutt). * New option "--with-colons" to make parsing of key lists easier. Noteworthy changes in version 0.2.11 (1998-03-02) ------------------------------------ * GPG now asks for a recipient's name if option "-r" is not used. * If there is no good trust path, the program asks whether to use the public keys anyway. * "--delete-key" works for public keys. What semantics shall I use when there is a secret key too? Delete the secret key or leave him and auto-regenerate the public key, next time the secret key is used? Noteworthy changes in version 0.2.10 (1998-02-27) ------------------------------------ * Code for the alpha is much faster (about 20 times); the data was misaligned and the kernel traps this, so nearly all time was used by system to trap the misalignments and to write syslog messages. Shame on me and thanks to Ralph for pointing me at this while drinking some beer yesterday. * Changed some configure options and add an option --disable-m-guard to remove the memory checking code and to compile everything with optimization on. * New environment variable GNUPGHOME, which can be used to set another homedir than ~/.gnupg. Changed default homedir for Windoze version to c:/gnupg. * Fixed detached signatures; detached PGP signatures caused a SEGV. * The Windoze version works (as usual w/o a strong RNG). Noteworthy changes in version 0.2.9 (1998-02-26) ----------------------------------- * Fixed FreeBSD bug. * Added a simple man page. * Switched to automake1.2f and a newer gettext. Noteworthy changes in version 0.2.8 (1998-02-24) ----------------------------------- * Changed the name to GNUPG, the binaries are called gpg and gpgm. You must rename rename the directory "~/.g10" to ~/.gnupg/, rename {pub,sec}ring.g10 to {pub,sec}ring.gpg, trustdb.g10 to trustdb.gpg and g10.sig to gnupg.sig. * New or changed passphrases are now salted. Noteworthy changes in version 0.2.7 (1998-02-18) ----------------------------------- * New command "gen-revoke" to create a key revocation certificate. * New option "homedir" to set the homedir (which defaults to "~/.g10"). This directory is created if it does not exists (only the last part of the name and not the complete hierarchy) * Command "import" works. (Try: "finger gcrypt@ftp.guug.de\|g10 --import") * New commands "dearmor/enarmor" for g10maint. These are mainly used for internal test purposes. * Option --version now conforming to the GNU standards and lists the available ciphers, message digests and public key algorithms. * Assembler code for m68k (not tested). * "make check" works. Noteworthy changes in version 0.2.6 (1998-02-13) ----------------------------------- * Option "--export" works. Noteworthy changes in version 0.2.5 (1998-02-12) ----------------------------------- * Added zlib for systems which don't have it. Use "./configure --with-zlib" to link with the static version. * Generalized some more functions and rewrote the encoding of message digests into MPIs. * Enhanced the checkit script Noteworthy changes in version 0.2.4 (1998-02-11) ----------------------------------- * nearly doubled the speed of the ElGamal signature verification. * backup copies of keyrings are created. * assembler stuff for Pentium; gives about 15% better performance. * fixed a lot of bugs. Noteworthy changes in version 0.2.3 (1998-02-09) ----------------------------------- * Found a bug in the calculation of ELG fingerprints. This is now fixed, but all existing fingerprints and keyids for ELG keys are not any more valid. * armor should now work; including clear signed text. * moved some options to the new program g10maint * It's now 64 bit clean and runs fine on an alpha--linux. * Key generation is much faster now. I fixed this by using not so strong random number for the primes (this was a bug because the ElGamal primes are public parameters and it does not make sense to generate them from strong random). The real secret is the x value which is still generated from strong (okay: /dev/random) random bits. * added option "--status-fd": see g10/OPTIONS * We have secure memory on systems which support mlock(). It is not complete yet, because we do not have signal handler which does a cleanup in very case. We should also check the ulimit for the user in the case that the admin does not have set a limit on locked pages. * started with internationalization support. * The logic to handle the web of trust is now implemented. It is has some bugs; but I'm going to change the algorithm anyway. It works by calculating the trustlevel on the fly. It may ask you to provide trust parameters if the calculated trust probability is too low. I will write a paper which discusses this new approach. * a couple of changes to the configure script. * New option "--quick-random" which uses a much quicker random number generator. Keys generated while this option is in effect are flags with "INSECURE!" in the user-id. This is a development only option. * Read support for new version packets (OpenPGP). * Comment packets are now of correct OpenPGP type 16. Old comment packets written by G10 are detected because they always start with a hash which is an invalid version byte. * The string "(INSECURE!)" is appended to a new user-id if this is generated on a system without a good random number generator. Version 0.2.2 (1998-02-09) Version 0.2.1 (1998-01-28) Version 0.2.0 (1998-01-25) Version 0.1.3 (1998-01-12) Version 0.1.2 (1998-01-07) Version 0.1.1 (1998-01-07) Version 0.1.0 (1998-01-05) Version 0.0.0 (1997-12-20) Copyright (C) 1998-2017 Free Software Foundation, Inc. Copyright (C) 1997-2017 Werner Koch This file is free software; as a special exception the author gives unlimited permission to copy and/or distribute it, with or without modifications, as long as this notice is preserved. This file is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY, to the extent permitted by law; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. PK��\7!\��{�� TRANSLATEnu��[��$Id$ Note for translators -------------------- Some strings in GnuPG are for matching user input against. These strings can accept multiple values that mean essentially the same thing. For example, the string "yes" in English is "sí" in Spanish. However, some users will type "si" (without the accent). To accommodate both users, you can translate the string "yes" as "sí\|si". You can have any number of alternate matches separated by the \| character like "sí\|si\|seguro". The strings that can be handled in this way are of the form "yes\|yes", (or "no\|no", etc.) There should also be a comment in the .po file directing you to this file. Help files ---------- GnuPG provides a little help feature (entering a ? on a prompt). This help used to be translated the usual way with gettext but it turned out that this is too inflexible and does for example not allow correcting little mistakes in the English text. For some newer features we require editable help files anyway and thus the existing help strings have been moved to plain text files names "help.LL.txt". We distribute these files and allow overriding them by files of that name in /etc/gnupg. The syntax of these files is documented in doc/help.txt. This is also the original we use to describe new possible online help keys. The source files are located in doc/ and need to be in encoded in UTF-8. Strings which require a translation are disabled like this .#gpgsm.some.help-item This string is not translated. After translation you should remove the hash mark so that the entry looks like. .gpgsm.some.help-item This string has been translated. The percent sign is not a special character and if there is something to watch out there will be a remark. Sending new or updated translations ----------------------------------- Please note that we do not use the TP Robot but require that translations are to be send by mail to translations@gnupg.org. We also strongly advise to get subscribed to i18n@gnupg.org and request assistance if it is not clear on how to translate certain strings. A wrongly translated string may lead to a security problem. A copyright disclaimer to the FSF is not anymore required since December 2012. PK��\7!\>�7��(��(��AUTHORSnu��[��Program: GnuPG Homepage: https://www.gnupg.org Download: https://gnupg.org/ftp/gcrypt/gnupg/ Repository: git://git.gnupg.org/gnupg.git Bug reports: https://bugs.gnupg.org Security related bug reports: <security@gnupg.org> Maintainer: Werner Koch <wk@gnupg.org> License: GPL-3.0-or-later GnuPG is free software. See the files COPYING for copying conditions. License copyright years may be listed using range notation, e.g., 2000-2013, indicating that every year in the range, inclusive, is a copyrightable year that would otherwise be listed individually. List of Copyright holders ========================= Copyright (C) 1997-2019 Werner Koch Copyright (C) 2003-2021 g10 Code GmbH Copyright (C) 1994-2021 Free Software Foundation, Inc. Copyright (C) 2002 Klarälvdalens Datakonsult AB Copyright (C) 1995-1997, 2000-2007 Ulrich Drepper <drepper@gnu.ai.mit.edu> Copyright (C) 1994 X Consortium Copyright (C) 1998 by The Internet Society. Copyright (C) 1998-2004 The OpenLDAP Foundation Copyright (C) 1998-2004 Kurt D. Zeilenga. Copyright (C) 1998-2004 Net Boolean Incorporated. Copyright (C) 2001-2004 IBM Corporation. Copyright (C) 1999-2003 Howard Y.H. Chu. Copyright (C) 1999-2003 Symas Corporation. Copyright (C) 1998-2003 Hallvard B. Furuseth. Copyright (C) 1992-1996 Regents of the University of Michigan. Copyright (C) 2000 Dimitrios Souflis Copyright (C) 2008,2009,2010,2012-2016 William Ahern Copyright (C) 2015-2019 IBM Corporation Copyright (C) 2017 Bundesamt für Sicherheit in der Informationstechnik Copyright (C) 2021 James Bottomley <James.Bottomley@HansenPartnership.com> Authors with a FSF copyright assignment ======================================= Ales Nyakhaychyk <nyakhaychyk@i1fn.linux.by> Translations [be] Andrey Jivsov <openpgp@brainhub.org> Assigns past and future changes for ECC. (g10/ecdh.c. other changes to support ECC) Ben Kibbey <bjk@luxsci.net> Assigns past and future changes. Birger Langkjer <birger.langkjer@image.dk> Translations [da] Maxim Britov <maxim.britov@gmail.com> Translations [ru] Daniel Resare <daniel@resare.com> Translations [sv] Per Tunedal <per@clipanish.com> Translations [sv] Daniel Nylander <po@danielnylander.se> Translations [sv] Daiki Ueno <ueno@unixuser.org> Assigns Past and Future Changes. (changed:passphrase.c and related code) David Shaw <dshaw@jabberwocky.com> Assigns past and future changes. (all in keyserver/, a lot of changes in g10/ see the ChangeLog, bug fixes here and there) Dokianakis Theofanis <madf@hellug.gr> Translations [el] Edmund GRIMLEY EVANS <edmundo@rano.org> Translations [eo] Florian Weimer <fw@deneb.enyo.de> Assigns past and future changes (changed:g10/parse-packet.c, include/iobuf.h, util/iobuf.c) g10 Code GmbH <info@g10code.com> Assigns past and future changes (all work since 2001 as indicated by mail addresses in ChangeLogs) Assignment for future changes terminated on 2012-12-04 (mail 87boe9x0e3.fsf@vigenere.g10code.de) Gaël Quéri <gael@lautre.net> Translations [fr] (fixed a lot of typos) Gregory Steuck <steuck@iname.com> Translations [ru] Nagy Ferenc László <nfl@nfllab.com> Translations [hu] Ivo Timmermans <itimmermans@bigfoot.com> Translations [nl] Jacobo Tarri'o Barreiro <jtarrio@iname.com> Translations [gl] Janusz Aleksander Urbanowicz <alex@bofh.torun.pl> Translations [pl] Jakub Bogusz <qboosh@pld-linux.org> Translations [pl] Jedi Lin <Jedi@idej.org> Translations [zh-tw] Jouni Hiltunen <jouni.hiltunen@kolumbus.fi> Translations [fi] Tommi Vainikainen <Tommi.Vainikainen@iki.fi> Translations [fi] Laurentiu Buzdugan <lbgnupg@rolix.org> Translations [ro] Magda Procha'zkova' <magda@math.muni.cz> Translations [cs] Michael Roth <mroth@nessie.de> Assigns changes. (wrote cipher/des.c., changes and bug fixes all over the place) Michal Majer <mmajer@econ.umb.sk> Translations [sk] Marco d'Itri <md@linux.it> Translations [it] Marcus Brinkmann <marcus@g10code.de> (gpgconf and fixes all over the place) Matthew Skala <mskala@ansuz.sooke.bc.ca> Disclaimer (wrote cipher/twofish.c) Moritz Schulte <moritz@g10code.com> (ssh support gpg-agent) Niklas Hernaeus <nh@df.lth.se> Disclaimer (weak key patches) Nilgun Belma Buguner <nilgun@technologist.com> Translations [tr] Nils Ellmenreich <nils 'at' infosun.fmi.uni-passau.de> Assigns past and future changes (configure.in, cipher/rndlinux.c, FAQ) Paul Eggert <eggert@twinsun.com> (configuration macros for LFS) Pavel I. Shajdo <pshajdo@gmail.com> Translations [ru] (man pages) Pedro Morais <morais@poli.org> Translations [pt_PT] Rémi Guyomarch <rguyom@mail.dotcom.fr> Assigns past and future changes. (g10/compress.c, g10/encr-data.c, g10/free-packet.c, g10/mdfilter.c, g10/plaintext.c, util/iobuf.c) Stefan Bellon <sbellon@sbellon.de> Assigns past and future changes. (All patches to support RISC OS) Timo Schulz <twoaday@freakmail.de> Assigns past and future changes. (util/w32reg.c, g10/passphrase.c, g10/hkp.c) Tedi Heriyanto <tedi_h@gmx.net> Translations [id] Thiago Jung Bauermann <jungmann@cwb.matrix.com.br> Translations [pt_BR] Rafael Caetano dos Santos <rcaetano@linux.ime.usp.br> Translations [pt_BR] Toomas Soome <tsoome@ut.ee> Translations [et] Urko Lusa <ulusa@euskalnet.net> Translations [es_ES] Walter Koch <koch@u32.de> Translations [de] Werner Koch <wk@gnupg.org> Assigns GNU Privacy Guard and future changes. (started the whole thing, wrote the S/MIME extensions, the smartcard daemon and the gpg-agent) Assignment for future changes terminated on 2013-03-29 (mail 878v6dbut0.fsf@vigenere.g10code.de dated 2013-02-24). Yosiaki IIDA <iida@ring.gr.jp> Translations [ja] Yuri Chornoivan, yurchor at ukr dot net: Translations [uk] Yutaka Niibe Assigns Past and Future Changes (scd/) Authors with a DCO ================== Andre Heinecke <aheinecke@intevation.de> 2014-09-19:4525694.FcpLvWDUFT@esus: Andreas Schwier <andreas.schwier@cardcontact.de> 2014-07-22:53CED1D8.1010306@cardcontact.de: Arnaud Fontaine <arnaud.fontaine at ssi.gouv.fr> 2016-10-17:580484F4.8040806@ssi.gouv.fr: Ben McGinnes <ben@adversary.org> 2017-12-16:20171216002102.l6aejk5xdp6xhtfi@adversary.org: Christian Aistleitner <christian@quelltextlich.at> 2013-05-26:20130626112332.GA2228@quelltextlich.at: Damien Goutte-Gattat <dgouttegattat@incenp.org> 2015-01-17:54BA49AA.2040708@incenp.org: Daniel Kahn Gillmor <dkg@fifthhorseman.net> 2014-09-24:87oau6w9q7.fsf@alice.fifthhorseman.net: Hans of Guardian <hans@guardianproject.info> 2013-06-26:D84473D7-F3F7-43D5-A9CE-16580B88D574@guardianproject.info: Ineiev <ineiev@gnu.org> 2017-05-09:20170509121611.GH25850@gnu.org: Jakub Jelen <jjelen@redhat.com> 2021-04-06:606c816b.3jWNtfUlv+V/i0eS%jjelen@REDHAT.COM: James Bottomley <James.Bottomley@HansenPartnership.com> 2018-02-01:1517501629.3145.9.camel@HansenPartnership.com: Jiri Kerestes <jiri.kerestes@trustica.cz> 2018-07-25:<d77cfcda-bbc3-0620-4e81-10dff33a94ca@trustica.cz>: Jonas Borgström <jonas@borgstrom.se> 2013-08-29:521F1E7A.5080602@borgstrom.se: Joshua Rogers <git@internot.info> 2014-12-22:5497FE75.7010503@internot.info: Jussi Kivilinna <jussi.kivilinna@iki.fi> 2018-02-11:2d8b7014-ff67-1e73-1152-9ff9fb8c10d7@iki.fi: Kyle Butt <kylebutt@gmail.com> 2013-05-29:CAAODAYLbCtqOG6msLLL0UTdASKWT6u2ptxsgUQ1JpusBESBoNQ@mail.gmail.com: Michael Haubenwallner <michael.haubenwallner@ssi-schaefer.com> 2018-07-13:c397e637-f1ce-34f0-7e6a-df04a76e1c35@ssi-schaefer.com: Phil Pennock <phil.pennock@spodhuis.org> Phil Pennock <phil@pennock-tech.com> 2017-01-19:20170119061225.GA26207@breadbox.private.spodhuis.org: Rainer Perske <rainer.perske@uni-muenster.de> 2017-10-24:permail-2017102014511105be2aed00002fc6-perske@message-id.uni-muenster.de: Stefan Tomanek <tomanek@internet-sicherheit.de> 2014-01-30:20140129234449.GY30808@zirkel.wertarbyte.de: Tobias Mueller <muelli@cryptobitch.de> 2016-11-23:1479937342.11180.3.camel@cryptobitch.de: Werner Koch <wk@gnupg.org> 2013-03-29:87620ahchj.fsf@vigenere.g10code.de: William L. Thomson Jr. <wlt@o-sinc.com> 2017-05-23:assp.0316398ca8.20170523093623.00a17d03@o-sinc.com: Yann E. MORIN <yann.morin.1998@free.fr> 2016-07-10:20160710093202.GA3688@free.fr: Other authors ============= The need for copyright assignments to the FSF has been waived on 2013-03-29; the need for copyright disclaimers for translations already in December 2012. The RPM specs file scripts/gnupg.spec has been contributed by several people. The function build_argv in agent/w32main.c is based on code from Alexandre Julliard. The gpg-zip documentation is based on the manpage for gpg-zip, written by Colin Tuckley and Daniel Leidert for the GNU/Debian distribution. The DNS resolver code is libdns by William Ahern; see COPYING.other. The test driver is based on TinySCHEME by Dimitrios Souflis and available under a permissive license; see COPYING.other. Regular expression implementation is taken from Jim Tcl, originally by Henry Spencer, and modified by others; see COPYING.other. License ======== GnuPG is distributed under the GNU General Public License, version 3 or later (see file COPYING). Note that some files are under a combination of the GNU Lesser General Public License, version 3 (see file COPYING.LGPL3) and the GNU General Public License, version 2 (see file COPYING.GPL2). Some files are under the GNU Lesser General Public License, version 2.1 (see file COPYING.LGPL21). A few files carry an all permissive license note as found at the bottom of this file. A few files are distributed under permissive licenses as listed in the file COPYING.other. Some other small files are distributed under the Creative Commons Zero license (see file COPYING.CC0) which basically puts them into the public domain. ========= Copyright 1998-2018 Free Software Foundation, Inc. Copyright 1997-2018 Werner Koch This file is free software; as a special exception the author gives unlimited permission to copy and/or distribute it, with or without modifications, as long as this notice is preserved. This file is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY, to the extent permitted by law; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. PK��\7!\l�ܣ��OpenPGPnu��[�� GnuPG and OpenPGP ================= See RFC-4880 for a description of OpenPGP. These notes are older than RFC-4880 and refer to the predecessor of the specs (RFC-2440). Compatibility Notes =================== GnuPG (>=1.0.3) is in compliance with RFC2440 despite these exceptions: * With GnuPG >= 2.1.0 all support for version 3 keys has been removed. Thus there is no more compatibility with PGP-2. Users who need to be able to decrypt old PGP 2 messages should use GnuPG 1.4.x along with the option --allow-weak-digest-algos. * With GnuPG >= 2.1.0 all signatures (on messages and keys) are created using version 4 signatures. Support for verifying version 3 signature is still available. * (9.2) states that IDEA SHOULD be implemented. This is not done due to patent problems. UPDATE: Since version 1.4.13 (or GnuPG 2.x with Libgcrypt 1.6) IDEA support has been added to allow decryption of old PGP-2 encrypted material. All MAY features are implemented with this exception: * multi-part armored messages are not supported. MIME (rfc2015) should be used instead. Most of the OPTIONAL stuff is implemented. There are a couple of options which can be used to override some RFC requirements. This is always mentioned with the description of that options. A special format of partial packet length exists for v3 packets which can be considered to be in compliance with RFC1991; this format is only created if a special option is active. UPDATE: This support has been removed with version 1.3.6. GnuPG uses a S2K mode of 101 for GNU extensions to the secret key protection algorithms. This number is not defined in OpenPGP, but given that this number is in a range which is used at many other places in OpenPGP for private/experimental algorithm identifiers, this should be not a too bad choice. The 3 bytes "GNU" are used to identify this as a GNU extension - see the file DETAILS for a definition of the used data formats. Some Notes on OpenPGP / PGP Compatibility: ========================================== * PGP 5.x does not accept V4 signatures for anything other than key material. The GnuPG option --force-v3-sigs mimics this behavior. * PGP 5.x does not recognize the "five-octet" lengths in new-format headers or in signature subpacket lengths. * PGP 5.0 rejects an encrypted session key if the keylength differs from the S2K symmetric algorithm. This is a bug in its validation function. * PGP 5.0 does not handle multiple one-pass signature headers and trailers. Signing one will compress the one-pass signed literal and prefix a V3 signature instead of doing a nested one-pass signature. * When exporting a private key, PGP 2.x generates the header "BEGIN PGP SECRET KEY BLOCK" instead of "BEGIN PGP PRIVATE KEY BLOCK". All previous versions ignore the implied data type, and look directly at the packet data type. * In a clear-signed signature, PGP 5.0 will figure out the correct hash algorithm if there is no "Hash:" header, but it will reject a mismatch between the header and the actual algorithm used. The "standard" (i.e. Zimmermann/Finney/et al.) version of PGP 2.x rejects the "Hash:" header and assumes MD5. There are a number of enhanced variants of PGP 2.6.x that have been modified for SHA-1 signatures. * PGP 5.0 can read an RSA key in V4 format, but can only recognize it with a V3 keyid, and can properly use only a V3 format RSA key. * Neither PGP 5.x nor PGP 6.0 recognize ElGamal Encrypt and Sign keys. They only handle ElGamal Encrypt-only keys. Parts of this document are taken from: ====================================== OpenPGP Message Format draft-ietf-openpgp-formats-07.txt Copyright 1998 by The Internet Society. All Rights Reserved. This document and translations of it may be copied and furnished to others, and derivative works that comment on or otherwise explain it or assist in its implementation may be prepared, copied, published and distributed, in whole or in part, without restriction of any kind, provided that the above copyright notice and this paragraph are included on all such copies and derivative works. However, this document itself may not be modified in any way, such as by removing the copyright notice or references to the Internet Society or other Internet organizations, except as needed for the purpose of developing Internet standards in which case the procedures for copyrights defined in the Internet Standards process must be followed, or as required to translate it into languages other than English. The limited permissions granted above are perpetual and will not be revoked by the Internet Society or its successors or assigns. PK��\7!\>��4��4��THANKSnu��[��GnuPG was originally written by Werner Koch. Other people contributed by reporting problems, suggesting various improvements or submitting actual code. Here is a list of those people. Help us keep it complete and free of errors. Adam Mitchell adam at cafe21.org Alain Guibert alguibert+gpd at free.fr Albert Chin china at thewrittenword.com Alec Habig habig at budoe2.bu.edu Alexander Belopolsky belopolsky at mac.com Allan Clark allanc at sco.com Anand Kumria wildfire at progsoc.uts.edu.au Andreas Haumer andreas at xss.co.at Andrew J. Schorr aschorr at telemetry-investments.com Anthony Carrico acarrico at memebeam.org Anthony Mulcahy anthony at kcn.ne.jp Ariel T Glenn ariel at columbia.edu ARIGA Seiji ariga at os.rim.or.jp Benjamin Donnachie benjamin at py-soft.co.uk Bernhard Herzog bh at intevation.de Bernard Leak thisisnotapipe.a-t.hotmail.com Bernhard Reiter bernhard at intevation.de Billy Halsey bshalsey at paxoo.com Bob Dunlop bob at xyzzy.org.uk Bob Mathews bobmathews at mindspring.com Bodo Moeller Bodo_Moeller at public.uni-hamburg.de Brendan O'Dea bod at debian.org Brenno de Winter brenno at dewinter.com Brian M. Carlson karlsson at hal-pc.org Brian Moore bem at cmc.net Brian Warner warner at lothar.com Bryan Fullerton bryanf at samurai.com Bryce Nichols bryce at bnichols.org Carl Meijer carlm at prism.co.za Caskey L. Dickson caskey at technocage.com Cees van de Griend cees-list at griend.xs4all.nl Charles Levert charles at comm.polymtl.ca Charly Avital shavital at mac.com Chip Salzenberg chip at valinux.com Chris Adams cmadams at hiwaay.net Christian Biere christianbiere at gmx.de Christian Kurz shorty at debian.org Christian von Roques roques at pond.sub.org Christopher Oliver oliver at fritz.traverse.net Christian Recktenwald chris at citecs.de Colin Tuckley colin at tuckley.org Daiki Ueno ueno at unixuser.org Dan Winship danw at helixcode.com Daniel Eisenbud eisenbud at cs.swarthmore.edu Daniel Kahn Gillmor dkg at fifthhorseman dot net Daniel Koening dan at chaosdorf.de Daniel Leidert daniel leidert at wgdd.de Daniel Resare daniel at resare.com Dany Nativel dany at natzo.com Dave Dykstra dwd at bell-labs.com David C Niemi niemi at tuxers.net David Champion dgc at uchicago.edu David D. Scribner dscribner at bigfoot.com David Ellement ellement at sdd.hp.com David Hallinan hallinan at rtd.com David Hollenberg dhollen at ISI.EDU David Mathog MATHOG at seqaxp.bio.caltech.edu David R. Bergstein dbergstein at home.com David Shaw dshaw at jabberwocky.com Detlef Lannert lannert at lannert.rz.uni-duesseldorf.de Dimitri dmitri at advantrix.com Dirk Lattermann dlatt at t-online.de Dirk Meyer dirk.meyer at dinoex.sub.org Disastry Disastry at saiknes.lv Douglas Calvert dfc at anize.org Ed Boraas ecxjo at esperanto.org Edmund GRIMLEY EVANS edmundo at rano.org Edwin Woudt edwin at woudt.nl Enzo Michelangeli em at MailAndNews.com Ernst Molitor ernst.molitor at uni-bonn.de Evgeny Legerov Fabian Keil fk at fabiankeil de Fabio Coatti cova at ferrara.linux.it Felix von Leitner leitner at amdiv.de fish stiqz fish at analog.org Florian Weimer Florian.Weimer at rus.uni-stuttgart.de Francesco Potorti pot at gnu.org Frank Donahoe fdonahoe at wilkes1.wilkes.edu Frank Heckenbach heckenb at mi.uni-erlangen.de Frank Stajano frank.stajano at cl.cam.ac.uk Frank Tobin ftobin at uiuc.edu Gabriel Rosenkoetter gr at eclipsed.net Gaël Quéri gael at lautre.net Gene Carter gcarter at lanier.com Geoff Keating geoffk at ozemail.com.au Georg Schwarz georg.schwarz at iname.com Giampaolo Tomassoni g.tomassoni at libero.it Gilbert Fernandes gilbert_fernandes at hotmail.com Grant Olson kgo at grant-olson net Greg Louis glouis at dynamicro.on.ca Greg Troxel gdt at ir.bbn.com Gregory Steuck steuck at iname.com Harald Denker harry at hal.westfalen.de Holger Baust Holger.Baust at freenet-ag.de Henrik Nordstrom henrik at henriknordstrom.net Hendrik Buschkamp buschkamp at rheumanet.org Holger Schurig holger at d.om.org Holger Smolinski smolinsk at de.ibm.com Holger Trapp Holger.Trapp at informatik.tu-chemnitz.de Hugh Daniel hugh at toad.com Huy Le huyle at ugcs.caltech.edu Ian Abbott abbotti at mev.co.uk Ian McKellar imckellar at harvestroad.com.au Ingo Klöcker kloecker at kde.org Ivo Timmermans itimmermans at bigfoot.com Jan Krueger max at physics.otago.ac.nz Jan Niehusmann jan at gondor.com Jan-0liver Wagner jan @ intevation.de Janusz A. Urbanowicz alex at bofh.torun.pl James Troup james at nocrew.org Jean-loup Gailly gzip at prep.ai.mit.edu Jeff Long long at kestrel.cc.ukans.edu Jeffery Von Ronne jronne at ics.uci.edu Jens Bachem bachem at rrz.uni-koeln.de Jens Seidel jensseidel at users.sf.net Jeroen C. van Gelderen jeroen at vangelderen.org Jeroen Schot schot at a-eskwadraat nl J Horacio MG homega at ciberia.es J. Michael Ashley jashley at acm.org Jim Bauer jfbauer at home.com Jim Small cavenewt at my-deja.com Joachim Backes backes at rhrk.uni-kl.de Joe Rhett jrhett at isite.net Joerg Honegger Joerg.Honegger at hp.com John A. Martin jam at jamux.com John Clizbe JPClizbe at comcast.net John R. Shannon john at johnrshannon.com Johnny Teveßen j.tevessen at gmx.de Jörg Schilling schilling at fokus.gmd.de Jos Backus Jos.Backus at nl.origin-it.com Joseph Walton joe at kafsemo.org Juan F. Codagnone juam at arnet.com.ar Jun Kuriyama kuriyama at sky.rim.or.jp Kahil D. Jallad kdj4 at cs.columbia.edu Karl Fogel kfogel at guanabana.onshore.com Karsten Thygesen karthy at kom.auc.dk Katsuhiro Kondou kondou at nec.co.jp Kazu Yamamoto kazu at iij.ad.jp Kazuyoshi Kakihara Keith Clayton keith at claytons.org Ken Takusagawa ken.takusagawa.2 at gmail.com Kevin Ryde user42 at zip.com.au Kiss Gabor kissg at ssg.ki.iif.hu Klaus Flittner klaus at flittner org Klaus Singvogel ks at caldera.de Kurt Garloff garloff at suse.de Lars Kellogg-Stedman lars at bu.edu L. Sassaman rabbi at quickie.net M Taylor mctaylor at privacy.nb.ca Marcel Waldvogel mwa at arl.wustl.edu Marco d'Itri md at linux.it Marco Parrone marc0 at autistici.org Marcus Brinkmann Marcus.Brinkmann at ruhr-uni-bochum.de Mark Adler madler at alumni.caltech.edu Mark Elbrecht snowball3 at bigfoot.com Mark Pettit pettit at yahoo-inc.com Markus Friedl Markus.Friedl at informatik.uni-erlangen.de Martin Kahlert martin.kahlert at provi.de Martin Hamilton Martin Schulte schulte at thp.uni-koeln.de Matt Kraai kraai at alumni.carnegiemellon.edu Matthew Skala mskala at ansuz.sooke.bc.ca Matthew Wilcox matthew at wil.cx Matthias-Christian Ott ott at mirix.org Matthias Urlichs smurf at noris.de Max Valianskiy maxcom at maxcom.ml.org Michael Engels michael.engels at uni-duesseldorf.de Michael Fischer v. Mollard mfvm at gmx.de Michael Nottebrock michaelnottebrock at gmx.net Michael Roth mroth at nessie.de Michael Sobolev mss at despair.transas.com Michael Tokarev mjt at tls.msk.ru Mike Dowling ML.Dowling at tu-bs.de Mike McEwan mike at lotusland.demon.co.uk Moritz Schulte moritz at chaosdorf.de Neal H Walfield neal at cs.uml.edu Nelson H. F. Beebe beebe at math.utah.edu Nicolas Graner Nicolas.Graner at cri.u-psud.fr NIIBE Yutaka gniibe at chroot.org Niklas Hernaeus Nimrod Zimerman zimerman at forfree.at Norihiko Murase skeleten at shillest.net N J Doye nic at niss.ac.uk Oliver Haakert haakert at hsp.de Oskari Jääskeläinen f33003a at cc.hut.fi Pascal Scheffers Pascal at scheffers.net Paul D. Smith psmith at baynetworks.com Per Cederqvist ceder at lysator.liu.se Petr Cerny pcerny at suse.cz Phil Blundell pb at debian.org Philippe Laliberte arsphl at oeil.qc.ca Peter Fales psfales at lucent.com Peter Gutmann pgut001 at cs.auckland.ac.nz Peter Marschall Peter.Marschall at gedos.de Peter Valchev pvalchev at openbsd.org Petr Uzel petr.uzel at suse cz Phong Nguyen Phong.Nguyen at ens.fr Piotr Krukowiecki piotr at pingu.ii.uj.edu.pl QingLong qinglong at bolizm.ihep.su Ralph Gillen gillen at theochem.uni-duesseldorf.de Rat ratinox at peorth.gweep.net Ray Link rlink at pitt.edu Reinhard Wobst R.Wobst at ifw-dresden.de Rémi Guyomarch rguyom at mail.dotcom.fr Reuben Sumner rasumner at wisdom.weizmann.ac.il Richard Lefebvre rick at cerca.umontreal.ca Richard Outerbridge outer at interlog.com Richard Patterson vectro at yahoo.com Robert Joop rj at rainbow.in-berlin.de Roddy Strachan roddy at satlink.com.au Roger Sondermann r.so at bigfoot.com Roland Rosenfeld roland at spinnaker.rhein.de Roman Pavlik rp at tns.cz Ross Golder rossigee at bigfoot.com Russell Coker russell at coker.com.au Ryan Malayter rmalayter at bai.org Sam Roberts sam at cogent.ca Sami Tolvanen sami at tolvanen.com Sascha Kiefer sk at intertivity.com Scott Worley sworley at chkno.net Sean MacLennan seanm at netwinder.org Sebastian Klemke packet at convergence.de Serge Munhoven munhoven at mema.ucl.ac.be SL Baur steve at xemacs.org Sten Lindgren ged at solace dot miun dot se Stefan Bellon sbellon at sbellon.de Dr.Stefan.Dalibor Dr.Stefan.Dalibor at bfa.de Stefan Karrmann S.Karrmann at gmx.net Stefan Keller dres at cs.tu-berlin.de Steffen Ullrich ccrlphr at xensei.com Steffen Zahn zahn at berlin.snafu.de Steven Bakker steven at icoe.att.com Steven Murdoch sjmurdoch at bigfoot.com Stoyan Angelov s_angelov at filibeto.org Susanne Schultz schultz at hsp.de Tavis Ormandy taviso at gentoo.org Ted Cabeen secabeen at pobox.com Thiago Jung Bauermann jungmann at cwb.matrix.com.br Thijmen Klok thijmen at xs4all.nl Thomas Roessler roessler at guug.de Tim Mooney mooney at dogbert.cc.ndsu.nodak.edu Timo Schulz twoaday at freakmail.de Tobias Winkler tobias.winkler at s1998.tu-chemnitz.de Todd Vierling tv at pobox.com TOGAWA Satoshi Satoshi.Togawa at jp.yokogawa.com Tom Duerbusch DuerbuschT at stlouiscity.com Tom Pegios tomp at idirect.com Tom Spindler dogcow at home.merit.edu Tom Zerucha tzeruch at ceddec.com Tomas Fasth tomas.fasth at twinspot.net Tommi Komulainen Tommi.Komulainen at iki.fi Thomas Klausner wiz at danbala.ifoer.tuwien.ac.at Tomasz Kozlowski tomek at rentec.com Thomas Mikkelsen tbm at image.dk Ulf Möller 3umoelle at informatik.uni-hamburg.de Urko Lusa ulusa at euskalnet.net Vincent P. Broman broman at spawar.navy.mil Volker Quetschke quetschke at scytek.de W Lewis wiml at hhhh.org Walter Hofmann Walter.Hofmann at physik.stud.uni-erlangen.de Walter Koch koch at hsp.de Wayne Chapeskie waynec at spinnaker.com Werner Koch wk at gnupg.org Wim Vandeputte bunbun at reptile.rug.ac.be Winona Brown win at huh.org Yosiaki IIDA iida at ring.gr.jp Yoshihiro Kajiki kajiki at ylug.org nbecker at hns.com Thanks to the German Unix User Group for sponsoring this project, Martin Hamilton for hosting the first mailing list and OpenIT for hosting the server. The development of this software has partly (i.e. the Windows port) been funded by the German Ministry for Economics and Technology under grant VIB3-68553.168-001/1999. Many thanks to my wife Gerlinde for having so much patience with me while hacking late in the evening. Copyright 1998, 1999, 2000, 2001, 2002, 2003, 2004 2006 Free Software Foundation, Inc. This file is free software; as a special exception the author gives unlimited permission to copy and/or distribute it, with or without modifications, as long as this notice is preserved. This file is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY, to the extent permitted by law; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. PK��\7!\F�f��DETAILSnu��[��# doc/DETAILS -- org -- #+TITLE: GnuPG Details # Globally disable superscripts and subscripts: #+OPTIONS: ^:{} #+STARTUP: showall # Note: This file uses org-mode; it should be easy to read as plain # text but be aware of some markup peculiarities: Verbatim code is # enclosed in #+begin-example, #+end-example blocks or marked by a # colon as the first non-white-space character, words bracketed with # equal signs indicate a monospace font, and the usual /italics/, # bold, and _underline_ conventions are recognized. This is the DETAILS file for GnuPG which specifies some internals and parts of the external API for GPG and GPGSM. * Format of the colon listings The format is a based on colon separated record, each recods starts with a tag string and extends to the end of the line. Here is an example: #+begin_example $ gpg --with-colons --list-keys \ --with-fingerprint --with-fingerprint wk@gnupg.org pub:f:1024:17:6C7EE1B8621CC013:899817715:1055898235::m:::scESC: fpr:::::::::ECAF7590EB3443B5C7CF3ACB6C7EE1B8621CC013: uid:f::::::::Werner Koch <wk@g10code.com>: uid:f::::::::Werner Koch <wk@gnupg.org>: sub:f:1536:16:06AD222CADF6A6E1:919537416:1036177416:::::e: fpr:::::::::CF8BCC4B18DE08FCD8A1615906AD222CADF6A6E1: sub:r:1536:20:5CE086B5B5A18FF4:899817788:1025961788:::::esc: fpr:::::::::AB059359A3B81F410FCFF97F5CE086B5B5A18FF4: #+end_example Note that new version of GnuPG or the use of certain options may add new fields to the output. Parsers should not assume a limit on the number of fields per line. Some fields are not yet used or only used with certain record types; parsers should ignore fields they are not aware of. New versions of GnuPG or the use of certain options may add new types of records as well. Parsers should ignore any record whose type they do not recognize for forward-compatibility. The double =--with-fingerprint= prints the fingerprint for the subkeys too. Old versions of gpg used a slightly different format and required the use of the option =--fixed-list-mode= to conform to the format described here. Description of the fields * Field 1 - Type of record - pub :: Public key - crt :: X.509 certificate - crs :: X.509 certificate and private key available - sub :: Subkey (secondary key) - sec :: Secret key - ssb :: Secret subkey (secondary key) - uid :: User id - uat :: User attribute (same as user id except for field 10). - sig :: Signature - rev :: Revocation signature - rvs :: Revocation signature (standalone) [since 2.2.9] - fpr :: Fingerprint (fingerprint is in field 10) - fp2 :: SHA-256 fingerprint (fingerprint is in field 10) - pkd :: Public key data [] - grp :: Keygrip - rvk :: Revocation key - tfs :: TOFU statistics [] - tru :: Trust database information [] - spk :: Signature subpacket [] - cfg :: Configuration data [] Records marked with an asterisk are described at [[Special%20field%20formats][Special fields]]. Field 2 - Validity This is a letter describing the computed validity of a key. Currently this is a single letter, but be prepared that additional information may follow in some future versions. Note that GnuPG < 2.1 does not set this field for secret key listings. - o :: Unknown (this key is new to the system) - i :: The key is invalid (e.g. due to a missing self-signature) - d :: The key has been disabled (deprecated - use the 'D' in field 12 instead) - r :: The key has been revoked - e :: The key has expired - - :: Unknown validity (i.e. no value assigned) - q :: Undefined validity. '-' and 'q' may safely be treated as the same value for most purposes - n :: The key is not valid - m :: The key is marginal valid. - f :: The key is fully valid - u :: The key is ultimately valid. This often means that the secret key is available, but any key may be marked as ultimately valid. - w :: The key has a well known private part. - s :: The key has special validity. This means that it might be self-signed and expected to be used in the STEED system. If the validity information is given for a UID or UAT record, it describes the validity calculated based on this user ID. If given for a key record it describes the validity taken from the best rated user ID. For X.509 certificates a 'u' is used for a trusted root certificate (i.e. for the trust anchor) and an 'f' for all other valid certificates. In "sig" records, this field may have one of these values as first character: - ! :: Signature is good. - - :: Signature is bad. - ? :: No public key to verify signature or public key is not usable. - % :: Other error verifying a signature More values may be added later. The field may also be empty if gpg has been invoked in a non-checking mode (--list-sigs) or in a fast checking mode. Since 2.2.7 '?' will also be printed by the command --list-sigs if the key is not in the local keyring. * Field 3 - Key length The length of key in bits. * Field 4 - Public key algorithm The values here are those from the OpenPGP specs or if they are greater than 255 the algorithm ids as used by Libgcrypt. * Field 5 - KeyID This is the 64 bit keyid as specified by OpenPGP and the last 64 bit of the SHA-1 fingerprint of an X.509 certifciate. * Field 6 - Creation date The creation date of the key is given in UTC. For UID and UAT records, this is used for the self-signature date. Note that the date is usually printed in seconds since epoch, however, we are migrating to an ISO 8601 format (e.g. "19660205T091500"). This is currently only relevant for X.509. A simple way to detect the new format is to scan for the 'T'. Note that old versions of gpg without using the =--fixed-list-mode= option used a "yyyy-mm-tt" format. * Field 7 - Expiration date Key or UID/UAT expiration date or empty if it does not expire. * Field 8 - Certificate S/N, UID hash, trust signature info Used for serial number in crt records. For UID and UAT records, this is a hash of the user ID contents used to represent that exact user ID. For trust signatures, this is the trust depth separated by the trust value by a space. * Field 9 - Ownertrust This is only used on primary keys. This is a single letter, but be prepared that additional information may follow in future versions. For trust signatures with a regular expression, this is the regular expression value, quoted as in field 10. * Field 10 - User-ID The value is quoted like a C string to avoid control characters (the colon is quoted =\x3a=). For a "pub" record this field is not used on --fixed-list-mode. A UAT record puts the attribute subpacket count here, a space, and then the total attribute subpacket size. In gpgsm the issuer name comes here. The FPR and FP2 records store the fingerprints here. The fingerprint of a revocation key is stored here. * Field 11 - Signature class Signature class as per RFC-4880. This is a 2 digit hexnumber followed by either the letter 'x' for an exportable signature or the letter 'l' for a local-only signature. The class byte of an revocation key is also given here, by a 2 digit hexnumber and optionally followed by the letter 's' for the "sensitive" flag. This field is not used for X.509. "rev" and "rvs" may be followed by a comma and a 2 digit hexnumber with the revocation reason. * Field 12 - Key capabilities The defined capabilities are: - e :: Encrypt - s :: Sign - c :: Certify - a :: Authentication - ? :: Unknown capability A key may have any combination of them in any order. In addition to these letters, the primary key has uppercase versions of the letters to denote the _usable_ capabilities of the entire key, and a potential letter 'D' to indicate a disabled key. * Field 13 - Issuer certificate fingerprint or other info Used in FPR records for S/MIME keys to store the fingerprint of the issuer certificate. This is useful to build the certificate path based on certificates stored in the local key database it is only filled if the issuer certificate is available. The root has been reached if this is the same string as the fingerprint. The advantage of using this value is that it is guaranteed to have been built by the same lookup algorithm as gpgsm uses. For "uid" records this field lists the preferences in the same way gpg's --edit-key menu does. For "sig", "rev" and "rvs" records, this is the fingerprint of the key that issued the signature. Note that this may only be filled if the signature verified correctly. Note also that for various technical reasons, this fingerprint is only available if --no-sig-cache is used. Since 2.2.7 this field will also be set if the key is missing but the signature carries an issuer fingerprint as meta data. * Field 14 - Flag field Flag field used in the --edit-key menu output * Field 15 - S/N of a token Used in sec/ssb to print the serial number of a token (internal protect mode 1002) or a '#' if that key is a simple stub (internal protect mode 1001). If the option --with-secret is used and a secret key is available for the public key, a '+' indicates this. * Field 16 - Hash algorithm For sig records, this is the used hash algorithm. For example: 2 = SHA-1, 8 = SHA-256. * Field 17 - Curve name For pub, sub, sec, ssb, crt, and crs records this field is used for the ECC curve name. * Field 18 - Compliance flags Space separated list of asserted compliance modes and screening result for this key. Valid values are: - 8 :: The key is compliant with RFC4880bis - 23 :: The key is compliant with compliance mode "de-vs". - 6001 :: Screening hit on the ROCA vulnerability. * Field 19 - Last update The timestamp of the last update of a key or user ID. The update time of a key is defined a lookup of the key via its unique identifier (fingerprint); the field is empty if not known. The update time of a user ID is defined by a lookup of the key using a trusted mapping from mail address to key. * Field 20 - Origin The origin of the key or the user ID. This is an integer optionally followed by a space and an URL. This goes along with the previous field. The URL is quoted in C style. * Field 21 - Comment This is currently only used in "rev" and "rvs" records to carry the the comment field of the recocation reason. The value is quoted in C style. Special fields * PKD - Public key data If field 1 has the tag "pkd", a listing looks like this: #+begin_example pkd:0:1024:B665B1435F4C2 .... FF26ABB: ! ! !-- the value ! !------ for information number of bits in the value !--------- index (eg. DSA goes from 0 to 3: p,q,g,y) #+end_example * TFS - TOFU statistics This field may follows a UID record to convey information about the TOFU database. The information is similar to a TOFU_STATS status line. - Field 2 :: tfs record version (must be 1) - Field 3 :: validity - A number with validity code. - Field 4 :: signcount - The number of signatures seen. - Field 5 :: encrcount - The number of encryptions done. - Field 6 :: policy - A string with the policy - Field 7 :: signture-first-seen - a timestamp or 0 if not known. - Field 8 :: signature-most-recent-seen - a timestamp or 0 if not known. - Field 9 :: encryption-first-done - a timestamp or 0 if not known. - Field 10 :: encryption-most-recent-done - a timestamp or 0 if not known. * TRU - Trust database information Example for a "tru" trust base record: #+begin_example tru:o:0:1166697654:1:3:1:5 #+end_example - Field 2 :: Reason for staleness of trust. If this field is empty, then the trustdb is not stale. This field may have multiple flags in it: - o :: Trustdb is old - t :: Trustdb was built with a different trust model than the one we are using now. - Field 3 :: Trust model - 0 :: Classic trust model, as used in PGP 2.x. - 1 :: PGP trust model, as used in PGP 6 and later. This is the same as the classic trust model, except for the addition of trust signatures. GnuPG before version 1.4 used the classic trust model by default. GnuPG 1.4 and later uses the PGP trust model by default. - Field 4 :: Date trustdb was created in seconds since Epoch. - Field 5 :: Date trustdb will expire in seconds since Epoch. - Field 6 :: Number of marginally trusted users to introduce a new key signer (gpg's option --marginals-needed). - Field 7 :: Number of completely trusted users to introduce a new key signer. (gpg's option --completes-needed) - Field 8 :: Maximum depth of a certification chain. (gpg's option --max-cert-depth) * SPK - Signature subpacket records - Field 2 :: Subpacket number as per RFC-4880 and later. - Field 3 :: Flags in hex. Currently the only two bits assigned are 1, to indicate that the subpacket came from the hashed part of the signature, and 2, to indicate the subpacket was marked critical. - Field 4 :: Length of the subpacket. Note that this is the length of the subpacket, and not the length of field 5 below. Due to the need for %-encoding, the length of field 5 may be up to 3x this value. - Field 5 :: The subpacket data. Printable ASCII is shown as ASCII, but other values are rendered as %XX where XX is the hex value for the byte. * CFG - Configuration data --list-config outputs information about the GnuPG configuration for the benefit of frontends or other programs that call GnuPG. There are several list-config items, all colon delimited like the rest of the --with-colons output. The first field is always "cfg" to indicate configuration information. The second field is one of (with examples): - version :: The third field contains the version of GnuPG. : cfg:version:1.3.5 - pubkey :: The third field contains the public key algorithms this version of GnuPG supports, separated by semicolons. The algorithm numbers are as specified in RFC-4880. Note that in contrast to the --status-fd interface these are _not_ the Libgcrypt identifiers. Using =pubkeyname= prints names instead of numbers. : cfg:pubkey:1;2;3;16;17 - cipher :: The third field contains the symmetric ciphers this version of GnuPG supports, separated by semicolons. The cipher numbers are as specified in RFC-4880. Using =ciphername= prints names instead of numbers. : cfg:cipher:2;3;4;7;8;9;10 - digest :: The third field contains the digest (hash) algorithms this version of GnuPG supports, separated by semicolons. The digest numbers are as specified in RFC-4880. Using =digestname= prints names instead of numbers. : cfg:digest:1;2;3;8;9;10 - compress :: The third field contains the compression algorithms this version of GnuPG supports, separated by semicolons. The algorithm numbers are as specified in RFC-4880. : cfg:compress:0;1;2;3 - group :: The third field contains the name of the group, and the fourth field contains the values that the group expands to, separated by semicolons. For example, a group of: : group mynames = paige 0x12345678 joe patti would result in: : cfg:group:mynames:patti;joe;0x12345678;paige - curve :: The third field contains the curve names this version of GnuPG supports, separated by semicolons. Using =curveoid= prints OIDs instead of numbers. : cfg:curve:ed25519;nistp256;nistp384;nistp521 * Format of the --status-fd output Every line is prefixed with "[GNUPG:] ", followed by a keyword with the type of the status line and some arguments depending on the type (maybe none); an application should always be willing to ignore unknown keywords that may be emitted by future versions of GnuPG. Also, new versions of GnuPG may add arguments to existing keywords. Any additional arguments should be ignored for forward-compatibility. General status codes * NEWSIG [<signers_uid>] Is issued right before a signature verification starts. This is useful to define a context for parsing ERROR status messages. If SIGNERS_UID is given and is not "-" this is the percent-escaped value of the OpenPGP Signer's User ID signature sub-packet. * GOODSIG <long_keyid_or_fpr> <username> The signature with the keyid is good. For each signature only one of the codes GOODSIG, BADSIG, EXPSIG, EXPKEYSIG, REVKEYSIG or ERRSIG will be emitted. In the past they were used as a marker for a new signature; new code should use the NEWSIG status instead. The username is the primary one encoded in UTF-8 and %XX escaped. The fingerprint may be used instead of the long keyid if it is available. This is the case with CMS and might eventually also be available for OpenPGP. * EXPSIG <long_keyid_or_fpr> <username> The signature with the keyid is good, but the signature is expired. The username is the primary one encoded in UTF-8 and %XX escaped. The fingerprint may be used instead of the long keyid if it is available. This is the case with CMS and might eventually also be available for OpenPGP. * EXPKEYSIG <long_keyid_or_fpr> <username> The signature with the keyid is good, but the signature was made by an expired key. The username is the primary one encoded in UTF-8 and %XX escaped. The fingerprint may be used instead of the long keyid if it is available. This is the case with CMS and might eventually also be available for OpenPGP. * REVKEYSIG <long_keyid_or_fpr> <username> The signature with the keyid is good, but the signature was made by a revoked key. The username is the primary one encoded in UTF-8 and %XX escaped. The fingerprint may be used instead of the long keyid if it is available. This is the case with CMS and might eventually also beñ available for OpenPGP. * BADSIG <long_keyid_or_fpr> <username> The signature with the keyid has not been verified okay. The username is the primary one encoded in UTF-8 and %XX escaped. The fingerprint may be used instead of the long keyid if it is available. This is the case with CMS and might eventually also be available for OpenPGP. * ERRSIG <keyid> <pkalgo> <hashalgo> <sig_class> <time> <rc> <fpr> It was not possible to check the signature. This may be caused by a missing public key or an unsupported algorithm. A RC of 4 indicates unknown algorithm, a 9 indicates a missing public key. The other fields give more information about this signature. sig_class is a 2 byte hex-value. The fingerprint may be used instead of the long_keyid_or_fpr if it is available. This is the case with gpgsm and might eventually also be available for OpenPGP. The ERRSIG line has FPR filed which is only available since 2.2.7; that FPR may either be missing or - if the signature has no fingerprint as meta data. Note, that TIME may either be the number of seconds since Epoch or an ISO 8601 string. The latter can be detected by the presence of the letter 'T'. *** VALIDSIG <args> The args are: - <fingerprint_in_hex> - <sig_creation_date> - <sig-timestamp> - <expire-timestamp> - <sig-version> - <reserved> - <pubkey-algo> - <hash-algo> - <sig-class> - [ <primary-key-fpr> ] This status indicates that the signature is cryptographically valid. This is similar to GOODSIG, EXPSIG, EXPKEYSIG, or REVKEYSIG (depending on the date and the state of the signature and signing key) but has the fingerprint as the argument. Multiple status lines (VALIDSIG and the other appropriate SIG status) are emitted for a valid signature. All arguments here are on one long line. sig-timestamp is the signature creation time in seconds after the epoch. expire-timestamp is the signature expiration time in seconds after the epoch (zero means "does not expire"). sig-version, pubkey-algo, hash-algo, and sig-class (a 2-byte hex value) are all straight from the signature packet. PRIMARY-KEY-FPR is the fingerprint of the primary key or identical to the first argument. This is useful to get back to the primary key without running gpg again for this purpose. The primary-key-fpr parameter is used for OpenPGP and not available for CMS signatures. The sig-version as well as the sig class is not defined for CMS and currently set to 0 and 00. Note, that -TIMESTAMP may either be a number of seconds since Epoch or an ISO 8601 string which can be detected by the presence of the letter 'T'. * SIG_ID <radix64_string> <sig_creation_date> <sig-timestamp> This is emitted only for signatures of class 0 or 1 which have been verified okay. The string is a signature id and may be used in applications to detect replay attacks of signed messages. Note that only DLP algorithms give unique ids - others may yield duplicated ones when they have been created in the same second. Note, that SIG-TIMESTAMP may either be a number of seconds since Epoch or an ISO 8601 string which can be detected by the presence of the letter 'T'. * ENC_TO <long_keyid> <keytype> <keylength> The message is encrypted to this LONG_KEYID. KEYTYPE is the numerical value of the public key algorithm or 0 if it is not known, KEYLENGTH is the length of the key or 0 if it is not known (which is currently always the case). Gpg prints this line always; Gpgsm only if it knows the certificate. * BEGIN_DECRYPTION Mark the start of the actual decryption process. This is also emitted when in --list-only mode. * END_DECRYPTION Mark the end of the actual decryption process. This is also emitted when in --list-only mode. * DECRYPTION_KEY <fpr> <fpr2> <otrust> This line is emitted when a public key decryption succeeded in providing a session key. <fpr> is the hexified fingerprint of the actual key used for decryption. <fpr2> is the fingerprint of the primary key. <otrust> is the letter with the ownertrust; this is in general a 'u' which stands for ultimately trusted. * DECRYPTION_INFO <mdc_method> <sym_algo> [<aead_algo>] Print information about the symmetric encryption algorithm and the MDC method. This will be emitted even if the decryption fails. For an AEAD algorithm AEAD_ALGO is not 0. GPGSM currently does not print such a status. * DECRYPTION_FAILED The symmetric decryption failed - one reason could be a wrong passphrase for a symmetrical encrypted message. * DECRYPTION_OKAY The decryption process succeeded. This means, that either the correct secret key has been used or the correct passphrase for a symmetric encrypted message was given. The program itself may return an errorcode because it may not be possible to verify a signature for some reasons. * SESSION_KEY <algo>:<hexdigits> The session key used to decrypt the message. This message will only be emitted if the option --show-session-key is used. The format is suitable to be passed as value for the option --override-session-key. It is not an indication that the decryption will or has succeeded. * BEGIN_ENCRYPTION <mdc_method> <sym_algo> [<aead_algo>] Mark the start of the actual encryption process. MDC_METHOD shall be 0 if an AEAD_ALGO is not 0. Users should however ignore MDC_METHOD if AEAD_ALGO is not 0. * END_ENCRYPTION Mark the end of the actual encryption process. * FILE_START <what> <filename> Start processing a file <filename>. <what> indicates the performed operation: - 1 :: verify - 2 :: encrypt - 3 :: decrypt * FILE_DONE Marks the end of a file processing which has been started by FILE_START. * BEGIN_SIGNING Mark the start of the actual signing process. This may be used as an indication that all requested secret keys are ready for use. * ALREADY_SIGNED <long-keyid> Warning: This is experimental and might be removed at any time. * SIG_CREATED <type> <pk_algo> <hash_algo> <class> <timestamp> <keyfpr> A signature has been created using these parameters. Values for type <type> are: - D :: detached - C :: cleartext - S :: standard (only the first character should be checked) <class> are 2 hex digits with the OpenPGP signature class. Note, that TIMESTAMP may either be a number of seconds since Epoch or an ISO 8601 string which can be detected by the presence of the letter 'T'. * NOTATION_ There are actually three related status codes to convey notation data: - NOTATION_NAME <name> - NOTATION_FLAGS <critical> <human_readable> - NOTATION_DATA <string> <name> and <string> are %XX escaped. The data may be split among several NOTATION_DATA lines. NOTATION_FLAGS is emitted after NOTATION_NAME and gives the critical and human readable flags; the flag values are either 0 or 1. * POLICY_URL <string> Note that URL in <string> is %XX escaped. * PLAINTEXT <format> <timestamp> <filename> This indicates the format of the plaintext that is about to be written. The format is a 1 byte hex code that shows the format of the plaintext: 62 ('b') is binary data, 74 ('t') is text data with no character set specified, and 75 ('u') is text data encoded in the UTF-8 character set. The timestamp is in seconds since the epoch. If a filename is available it gets printed as the third argument, percent-escaped as usual. * PLAINTEXT_LENGTH <length> This indicates the length of the plaintext that is about to be written. Note that if the plaintext packet has partial length encoding it is not possible to know the length ahead of time. In that case, this status tag does not appear. The length is only exact for binary formats; other formats ('t', 'u') may do post processing like line ending conversion so that the actual number of bytes written may be differ. * ATTRIBUTE <arguments> The list or arguments are: - <fpr> - <octets> - <type> - <index> - <count> - <timestamp> - <expiredate> - <flags> This is one long line issued for each attribute subpacket when an attribute packet is seen during key listing. <fpr> is the fingerprint of the key. <octets> is the length of the attribute subpacket. <type> is the attribute type (e.g. 1 for an image). <index> and <count> indicate that this is the N-th indexed subpacket of count total subpackets in this attribute packet. <timestamp> and <expiredate> are from the self-signature on the attribute packet. If the attribute packet does not have a valid self-signature, then the timestamp is 0. <flags> are a bitwise OR of: - 0x01 :: this attribute packet is a primary uid - 0x02 :: this attribute packet is revoked - 0x04 :: this attribute packet is expired * SIG_SUBPACKET <type> <flags> <len> <data> This indicates that a signature subpacket was seen. The format is the same as the "spk" record above. * ENCRYPTION_COMPLIANCE_MODE <flags> Indicates that the current encryption operation was in compliance with the given set of modes for all recipients. "flags" is a space separated list of numerical flags, see "Field 18 - Compliance flags" above. * DECRYPTION_COMPLIANCE_MODE <flags> Indicates that the current decryption operation is in compliance with the given set of modes. "flags" is a space separated list of numerical flags, see "Field 18 - Compliance flags" above. * VERIFICATION_COMPLIANCE_MODE <flags> Indicates that the current signature verification operation is in compliance with the given set of modes. "flags" is a space separated list of numerical flags, see "Field 18 - Compliance flags" above. Key related * INV_RECP, INV_SGNR The two similar status codes: - INV_RECP <reason> <requested_recipient> - INV_SGNR <reason> <requested_sender> are issued for each unusable recipient/sender. The reasons codes currently in use are: - 0 :: No specific reason given - 1 :: Not Found - 2 :: Ambiguous specification - 3 :: Wrong key usage - 4 :: Key revoked - 5 :: Key expired - 6 :: No CRL known - 7 :: CRL too old - 8 :: Policy mismatch - 9 :: Not a secret key - 10 :: Key not trusted - 11 :: Missing certificate - 12 :: Missing issuer certificate - 13 :: Key disabled - 14 :: Syntax error in specification If no specific reason was given a previously emitted status code KEY_CONSIDERED may be used to analyzed the problem. Note that for historical reasons the INV_RECP status is also used for gpgsm's SIGNER command where it relates to signer's of course. Newer GnuPG versions are using INV_SGNR; applications should ignore the INV_RECP during the sender's command processing once they have seen an INV_SGNR. Different codes are used so that they can be distinguish while doing an encrypt+sign operation. * NO_RECP <reserved> Issued if no recipients are usable. * NO_SGNR <reserved> Issued if no senders are usable. * KEY_CONSIDERED <fpr> <flags> Issued to explain the lookup of a key. FPR is the hexified fingerprint of the primary key. The bit values for FLAGS are: - 1 :: The key has not been selected. - 2 :: All subkeys of the key are expired or have been revoked. * KEYEXPIRED <expire-timestamp> The key has expired. expire-timestamp is the expiration time in seconds since Epoch. This status line is not very useful because it will also be emitted for expired subkeys even if this subkey is not used. To check whether a key used to sign a message has expired, the EXPKEYSIG status line is to be used. Note, that the TIMESTAMP may either be a number of seconds since Epoch or an ISO 8601 string which can be detected by the presence of the letter 'T'. * KEYREVOKED The used key has been revoked by its owner. No arguments yet. * NO_PUBKEY <long keyid> The public key is not available. Note the arg should in general not be used because it is better to take it from the ERRSIG status line which is printed right before this one. * NO_SECKEY <long keyid> The secret key is not available * KEY_CREATED <type> <fingerprint> [<handle>] A key has been created. Values for <type> are: - B :: primary and subkey - P :: primary - S :: subkey The fingerprint is one of the primary key for type B and P and the one of the subkey for S. Handle is an arbitrary non-whitespace string used to match key parameters from batch key creation run. * KEY_NOT_CREATED [<handle>] The key from batch run has not been created due to errors. * TRUST_ These are several similar status codes: #+begin_src - TRUST_UNDEFINED <error_token> [<validation_model> [<mbox>]] - TRUST_NEVER <error_token> [<validation_model> [<mbox>]] - TRUST_MARGINAL 0 [<validation_model> [<mbox>]] - TRUST_FULLY 0 [<validation_model> [<mbox>]] - TRUST_ULTIMATE 0 [<validation_model> [<mbox>]] #+end_src For good signatures one of these status lines are emitted to indicate the validity of the key used to create the signature. <error_token> values other that a literal zero are currently only emitted by gpgsm. VALIDATION_MODEL describes the algorithm used to check the validity of the key. The defaults are the standard Web of Trust model for gpg and the standard X.509 model for gpgsm. The defined values are - classic :: The classic PGP WoT model. - pgp :: The standard PGP WoT. - external :: The external PGP trust model. - tofu :: The GPG Trust-On-First-Use model. - tofu+pgp :: Ditto but combined with mopdel "pgp". - always :: The Always trust model. - direct :: The Direct Trust model. - shell :: The Standard X.509 model. - chain :: The Chain model. - steed :: The STEED model. - unknown :: An unknown trust model. Note that the term =TRUST_= in the status names is used for historic reasons; we now speak of validity. MBOX is the UTF-8 encoded and percent escaped addr-spec of the User ID used to compute the validity of a signature. If this is not known the validity is computed on the key with no specific User ID. Note that MBOX is always the addr-spec of the User ID; for User IDs without a proper addr-spec a dash is used to distinguish this from the case that no User ID at all is known. The MBOX is either taken from the Signer's User ID signature sub-packet or from the addr-spec passed to gpg using the --sender option. If both are available and they don't match TRUST_UNDEFINED along with an error code is emitted. MBOX is not used by gpgsm. * TOFU_USER <fingerprint_in_hex> <mbox> This status identifies the key and the userid for all following Tofu information. The fingerprint is the fingerprint of the primary key and the mbox is in general the addr-spec part of the userid encoded in UTF-8 and percent escaped. The fingerprint is identical for all TOFU_USER lines up to a NEWSIG line. * TOFU_STATS <MANY_ARGS> Statistics for the current user id. The <MANY_ARGS> are the usual space delimited arguments. Here we have too many of them to fit on one printed line and thus they are given on 3 printed lines: : <summary> <sign-count> <encryption-count> : [<policy> [<tm1> <tm2> <tm3> <tm4> : [<validity> [<sign-days> <encrypt-days>]]]] Values for SUMMARY are: - 0 :: attention, an interaction with the user is required (conflict) - 1 :: key with no verification/encryption history - 2 :: key with little history - 3 :: key with enough history for basic trust - 4 :: key with a lot of history Values for POLICY are: - none :: No Policy set - auto :: Policy is "auto" - good :: Policy is "good" - bad :: Policy is "bad" - ask :: Policy is "ask" - unknown :: Policy is "unknown" (TOFU information does not contribute to the key's validity) TM1 is the time the first message was verified. TM2 is the time the most recent message was verified. TM3 is the time the first message was encrypted. TM4 is the most recent encryption. All may either be seconds since Epoch or an ISO time string (yyyymmddThhmmss). VALIDITY is the same as SUMMARY with the exception that VALIDITY doesn't reflect whether the key needs attention. That is it never takes on value 0. Instead, if there is a conflict, VALIDITY still reflects the key's validity (values: 1-4). SUMMARY values use the euclidean distance (m = sqrt(a² + b²)) rather then the sum of the magnitudes (m = a + b) to ensure a balance between verified signatures and encrypted messages. Values are calculated based on the number of days where a key was used for verifying a signature or to encrypt to it. The ranges for the values are: - 1 :: signature_days + encryption_days == 0 - 2 :: 1 <= sqrt(signature_days² + encryption_days²) < 8 - 3 :: 8 <= sqrt(signature_days² + encryption_days²) < 42 - 4 :: sqrt(signature_days² + encryption_days²) >= 42 SIGN-COUNT and ENCRYPTION-COUNT are the number of messages that we have seen that have been signed by this key / encryption to this key. SIGN-DAYS and ENCRYPTION-DAYS are similar, but the number of days (in UTC) on which we have seen messages signed by this key / encrypted to this key. * TOFU_STATS_SHORT <long_string> Information about the TOFU binding for the signature. Example: "15 signatures verified. 10 messages encrypted" * TOFU_STATS_LONG <long_string> Information about the TOFU binding for the signature in verbose format. The LONG_STRING is percent escaped. Example: 'Verified 9 messages signed by "Werner Koch (dist sig)" in the past 3 minutes, 40 seconds. The most recent message was verified 4 seconds ago.' * PKA_TRUST_ This is one of: - PKA_TRUST_GOOD <addr-spec> - PKA_TRUST_BAD <addr-spec> Depending on the outcome of the PKA check one of the above status codes is emitted in addition to a =TRUST_= status. * Remote control * GET_BOOL, GET_LINE, GET_HIDDEN, GOT_IT These status line are used with --command-fd for interactive control of the process. * USERID_HINT <long main keyid> <string> Give a hint about the user ID for a certain keyID. * NEED_PASSPHRASE <long keyid> <long main keyid> <keytype> <keylength> Issued whenever a passphrase is needed. KEYTYPE is the numerical value of the public key algorithm or 0 if this is not applicable, KEYLENGTH is the length of the key or 0 if it is not known (this is currently always the case). * NEED_PASSPHRASE_SYM <cipher_algo> <s2k_mode> <s2k_hash> Issued whenever a passphrase for symmetric encryption is needed. * NEED_PASSPHRASE_PIN <card_type> <chvno> [<serialno>] Issued whenever a PIN is requested to unlock a card. * MISSING_PASSPHRASE No passphrase was supplied. An application which encounters this message may want to stop parsing immediately because the next message will probably be a BAD_PASSPHRASE. However, if the application is a wrapper around the key edit menu functionality it might not make sense to stop parsing but simply ignoring the following BAD_PASSPHRASE. * BAD_PASSPHRASE <long keyid> The supplied passphrase was wrong or not given. In the latter case you may have seen a MISSING_PASSPHRASE. * GOOD_PASSPHRASE The supplied passphrase was good and the secret key material is therefore usable. Import/Export * IMPORT_CHECK <long keyid> <fingerprint> <user ID> This status is emitted in interactive mode right before the "import.okay" prompt. * IMPORTED <long keyid> <username> The keyid and name of the signature just imported * IMPORT_OK <reason> [<fingerprint>] The key with the primary key's FINGERPRINT has been imported. REASON flags are: - 0 :: Not actually changed - 1 :: Entirely new key. - 2 :: New user IDs - 4 :: New signatures - 8 :: New subkeys - 16 :: Contains private key. The flags may be ORed. * IMPORT_PROBLEM <reason> [<fingerprint>] Issued for each import failure. Reason codes are: - 0 :: No specific reason given. - 1 :: Invalid Certificate. - 2 :: Issuer Certificate missing. - 3 :: Certificate Chain too long. - 4 :: Error storing certificate. * IMPORT_RES <args> Final statistics on import process (this is one long line). The args are a list of unsigned numbers separated by white space: - <count> - <no_user_id> - <imported> - always 0 (formerly used for the number of RSA keys) - <unchanged> - <n_uids> - <n_subk> - <n_sigs> - <n_revoc> - <sec_read> - <sec_imported> - <sec_dups> - <skipped_new_keys> - <not_imported> - <skipped_v3_keys> * EXPORTED <fingerprint> The key with <fingerprint> has been exported. The fingerprint is the fingerprint of the primary key even if the primary key has been replaced by a stub key during secret key export. * EXPORT_RES <args> Final statistics on export process (this is one long line). The args are a list of unsigned numbers separated by white space: - <count> - <secret_count> - <exported> Smartcard related * CARDCTRL <what> [<serialno>] This is used to control smartcard operations. Defined values for WHAT are: - 1 :: Request insertion of a card. Serialnumber may be given to request a specific card. Used by gpg 1.4 w/o scdaemon - 2 :: Request removal of a card. Used by gpg 1.4 w/o scdaemon. - 3 :: Card with serialnumber detected - 4 :: No card available - 5 :: No card reader available - 6 :: No card support available - 7 :: Card is in termination state * SC_OP_FAILURE [<code>] An operation on a smartcard definitely failed. Currently there is no indication of the actual error code, but application should be prepared to later accept more arguments. Defined values for <code> are: - 0 :: unspecified error (identically to a missing CODE) - 1 :: canceled - 2 :: bad PIN * SC_OP_SUCCESS A smart card operation succeeded. This status is only printed for certain operation and is mostly useful to check whether a PIN change really worked. Miscellaneous status codes * NODATA <what> No data has been found. Codes for WHAT are: - 1 :: No armored data. - 2 :: Expected a packet but did not found one. - 3 :: Invalid packet found, this may indicate a non OpenPGP message. - 4 :: Signature expected but not found You may see more than one of these status lines. * UNEXPECTED <what> Unexpected data has been encountered. Codes for WHAT are: - 0 :: Not further specified - 1 :: Corrupted message structure * TRUNCATED <maxno> The output was truncated to MAXNO items. This status code is issued for certain external requests. * ERROR <error location> <error code> [<more>] This is a generic error status message, it might be followed by error location specific data. <error code> and <error_location> should not contain spaces. The error code is a either a string commencing with a letter or such a string prefixed with a numerical error code and an underscore; e.g.: "151011327_EOF". Some of the error locations are: - decryption.early_plaintext :: The OpenPGP message contains more than one plaintext. - genkey :: Problem generating a key. The error code further describes the problem. - get_passphrase :: Problem getting the passphrase from the gpg-agent. - keyedit.passwd :: Changing the password failed. - nomdc_with_legacy_cipher :: The message was not MDC protected. Use the command line to lern about a workaround. - random-compliance :: The random number generator or the used version of Libgcrypt do not fulfill the requirements of the current compliance setting. The error code is often GPG_ERR_FORBIDDEN. - set_expire :: Changing the expiration time failed. * WARNING <location> <error code> [<text>] This is a generic warning status message, it might be followed by error location specific data. <location> and <error code> may not contain spaces. The <location> may be used to indicate a class of warnings. The error code is a either a string commencing with a letter or such a string prefixed with a numerical error code and an underscore; e.g.: "151011327_EOF". * NOTE <location> <error code> [<text>] This is a generic info status message the same syntax as for WARNING messages is used. * SUCCESS [<location>] Positive confirmation that an operation succeeded. It is used similar to ISO-C's EXIT_SUCCESS. <location> is optional but if given should not contain spaces. Used only with a few commands. * FAILURE <location> <error_code> This is the counterpart to SUCCESS and used to indicate a program failure. It is used similar to ISO-C's EXIT_FAILURE but allows conveying more information, in particular a gpg-error error code. That numerical error code may optionally have a suffix made of an underscore and a string with an error symbol like "151011327_EOF". A dash may be used instead of <location>. * BADARMOR The ASCII armor is corrupted. No arguments yet. * DELETE_PROBLEM <reason_code> Deleting a key failed. Reason codes are: - 1 :: No such key - 2 :: Must delete secret key first - 3 :: Ambiguous specification - 4 :: Key is stored on a smartcard. * PROGRESS <what> <char> <cur> <total> [<units>] Used by the primegen and public key functions to indicate progress. <char> is the character displayed with no --status-fd enabled, with the linefeed replaced by an 'X'. <cur> is the current amount done and <total> is amount to be done; a <total> of 0 indicates that the total amount is not known. Both are non-negative integers. The condition : TOTAL && CUR == TOTAL may be used to detect the end of an operation. Well known values for <what> are: - pk_dsa :: DSA key generation - pk_elg :: Elgamal key generation - primegen :: Prime generation - need_entropy :: Waiting for new entropy in the RNG - tick :: Generic tick without any special meaning - useful for letting clients know that the server is still working. - starting_agent :: A gpg-agent was started because it is not running as a daemon. - learncard :: Send by the agent and gpgsm while learing the data of a smartcard. - card_busy :: A smartcard is still working - scd_locked :: Waiting for other clients to unlock the scdaemon When <what> refers to a file path, it may be truncated. <units> is sometimes used to describe the units for <current> and <total>. For example "B", "KiB", or "MiB". * BACKUP_KEY_CREATED <fingerprint> <fname> A backup of a key identified by <fingerprint> has been writte to the file <fname>; <fname> is percent-escaped. * MOUNTPOINT <name> <name> is a percent-plus escaped filename describing the mountpoint for the current operation (e.g. used by "g13 --mount"). This may either be the specified mountpoint or one randomly chosen by g13. * PINENTRY_LAUNCHED <pid>[:<extra>] This status line is emitted by gpg to notify a client that a Pinentry has been launched. <pid> is the PID of the Pinentry. It may be used to display a hint to the user but can't be used to synchronize with Pinentry. Note that there is also an Assuan inquiry line with the same name used internally or, if enabled, send to the client instead of this status line. Such an inquiry may be used to sync with Pinentry Obsolete status codes * SIGEXPIRED Removed on 2011-02-04. This is deprecated in favor of KEYEXPIRED. * RSA_OR_IDEA Obsolete. This status message used to be emitted for requests to use the IDEA or RSA algorithms. It has been dropped from GnuPG 2.1 after the respective patents expired. * SHM_INFO, SHM_GET, SHM_GET_BOOL, SHM_GET_HIDDEN These were used for the ancient shared memory based co-processing. * BEGIN_STREAM, END_STREAM Used to issued by the experimental pipemode. * GOODMDC This is not anymore needed. Checking the DECRYPTION_OKAY status is sufficient. * BADMDC This is not anymore needed. Inter-component codes Status codes are also used between the components of the GnuPG system via the Assuan S lines. Some of them are documented here: * PUBKEY_INFO <n> <ubid> <flags> <uidno> <pkno> The type of the public key in the following D-lines or communicated via a pipe. <n> is the value of =enum pubkey_types= and <ubid> the Unique Blob ID (UBID) which is the fingerprint of the primary key truncated to 20 octets and formatted in hex. Note that the keyboxd SEARCH command can be used to lookup the public key using the <ubid> prefixed with a caret (^). <flags> is a string extra information about the blob. The first byte is either '-' for standard key or 'e' for an ephemeral key. The second byte is either '-' or 'r' for a known revoked key. <uidno> and <pkno> are the ordinal numbers for the the user id or public key which matches the search criteria. A value of 0 means not known. * KEYPAIRINFO <grip> <keyref> [<usage>] [<keytime>] [<algostr>] This status is emitted by scdaemon and gpg-agent to convey brief information about keypairs stored on tokens. <grip> is the hexified keygrip of the key or, if no key is stored, an "X". <keyref> is the ID of a card's key; for example "OPENPGP.2" for the second key slot of an OpenPGP card. <usage> is optional and returns technically possible key usages, this is a string of single letters describing the usage ('c' for certify, 'e' for encryption, 's' for signing, 'a' for authentication). A '-' can be used to tell that usage flags are not conveyed. <keytime> is used by OpenPGP cards for the stored key creation time. A '-' means no info available. The format is the usual ISO string or a number with the seconds since Epoch. <algostr> is the algorithm or curve this key uses (e.g. "rsa2048") or a "-" if not known. * CERTINFO <certtype> <certref> [<label>] This status is emitted for X.509 certifcates. CERTTYPE is a number indicating the type of the certificate: 0 := Unknown 100 := Regular X.509 cert 101 := Trusted X.509 cert 102 := Useful X.509 cert 110 := Root CA cert in a special format (e.g. DINSIG) 111 := Root CA cert as standard X509 cert CERTREF identifies the certificate uniquely on the card and may be used to match it with a key's KEYREF. LABEL is an optional human readable decription of the certificate; it won't have any space in it and is percent encoded. * MANUFACTURER <n> [<string>] This status returns the Manufactorer ID as the unsigned number N. For OpenPGP this is well defined; for other cards this is 0. The name of the manufacturer is also given as <string>; spaces are not escaped. For PKCS#15 cards <string> is TokenInfo.manufactorerID; a string in brackets describing GnuPG's own card product name may be appended to <string>. * KEY-STATUS <keyref> <status> This is the response from scdaemon on GETATTR KEY-STATUS for OpenPGP cards. <keyref> is the usual keyref (e.g. OPENPGP.1 or OPENPGP.129) and <status> is an integer describing the status of the key: 0 = key is not present, 1 = key generated on card, 2 = key imported. See section 4.4.3.8 of the OpenPGP Smart Card Application V3.4. * KEY-ATTR-INFO <keyref> <string> This is the response from scdaemon on GETATTR KEY-ATTR-INFO for OpenPGP cards. <keyref> is the usual keyref (e.g. OPENPGP.1 or OPENPGP.129) and <string> is the algoritm or curve name, which is available for the key. * KEY-TIME <n> <timestamp> This is a response from scdaemon on GETATTR KEY-TIME. A keyref N of 1 gives the timestamp for the standard OpenPGP signing key, 2 for the encryption key, and 3 for an authentication key. Note that a KEYPAIRINFO status lines carries the same information and should be preferred. *** KEY-LABEL <keyref> <label> This returns the human readbable label for the keys given by KEYREF. LABEL won't have any space in it and is percent encoded. This info shall only be used for dispaly purposes. * Format of the --attribute-fd output When --attribute-fd is set, during key listings (--list-keys, --list-secret-keys) GnuPG dumps each attribute packet to the file descriptor specified. --attribute-fd is intended for use with --status-fd as part of the required information is carried on the ATTRIBUTE status tag (see above). The contents of the attribute data is specified by RFC 4880. For convenience, here is the Photo ID format, as it is currently the only attribute defined: - Byte 0-1 :: The length of the image header. Due to a historical accident (i.e. oops!) back in the NAI PGP days, this is a little-endian number. Currently 16 (0x10 0x00). - Byte 2 :: The image header version. Currently 0x01. - Byte 3 :: Encoding format. 0x01 == JPEG. - Byte 4-15 :: Reserved, and currently unused. All other data after this header is raw image (JPEG) data. * Layout of the TrustDB The TrustDB is built from fixed length records, where the first byte describes the record type. All numeric values are stored in network byte order. The length of each record is 40 bytes. The first record of the DB is always of type 1 and this is the only record of this type. The record types: directory(2), key(3), uid(4), pref(5), sigrec(6), and shadow directory(8) are not anymore used by version 2 of the TrustDB. Record type 0 Unused record or deleted, can be reused for any purpose. Such records should in general not exist because deleted records are of type 254 and kept in a linked list. Version info (RECTYPE_VER, 1) Version information for this TrustDB. This is always the first record of the DB and the only one of this type. - 1 u8 :: Record type (value: 1). - 3 byte :: Magic value ("gpg") - 1 u8 :: TrustDB version (value: 2). - 1 u8 :: =marginals=. How many marginal trusted keys are required. - 1 u8 :: =completes=. How many completely trusted keys are required. - 1 u8 :: =max_cert_depth=. How deep is the WoT evaluated. Along with =marginals= and =completes=, this value is used to check whether the cached validity value from a [FIXME dir] record can be used. - 1 u8 :: =trust_model= - 1 u8 :: =min_cert_level= - 2 byte :: Not used - 1 u32 :: =created=. Timestamp of trustdb creation. - 1 u32 :: =nextcheck=. Timestamp of last modification which may affect the validity of keys in the trustdb. This value is checked against the validity timestamp in the dir records. - 1 u32 :: =reserved=. Not used. - 1 u32 :: =reserved2=. Not used. - 1 u32 :: =firstfree=. Number of the record with the head record of the RECTYPE_FREE linked list. - 1 u32 :: =reserved3=. Not used. - 1 u32 :: =trusthashtbl=. Record number of the trusthashtable. Hash table (RECTYPE_HTBL, 10) Due to the fact that we use fingerprints to lookup keys, we can implement quick access by some simple hash methods, and avoid the overhead of gdbm. A property of fingerprints is that they can be used directly as hash values. What we use is a dynamic multilevel architecture, which combines hash tables, record lists, and linked lists. This record is a hash table of 256 entries with the property that all these records are stored consecutively to make one big table. The hash value is simple the 1st, 2nd, ... byte of the fingerprint (depending on the indirection level). - 1 u8 :: Record type (value: 10). - 1 u8 :: Reserved - n u32 :: =recnum=. A table with the hash table items fitting into this record. =n= depends on the record length: $n=(reclen-2)/4$ which yields 9 for oure current record length of 40 bytes. The total number of hash table records to form the table is: $m=(256+n-1)/n$. This is 29 for our record length of 40. To look up a key we use the first byte of the fingerprint to get the recnum from this hash table and then look up the addressed record: - If that record is another hash table, we use 2nd byte to index that hash table and so on; - if that record is a hash list, we walk all entries until we find a matching one; or - if that record is a key record, we compare the fingerprint to decide whether it is the requested key; Hash list (RECTYPE_HLST, 11) See hash table above on how it is used. It may also be used for other purposes. - 1 u8 :: Record type (value: 11). - 1 u8 :: Reserved. - 1 u32 :: =next=. Record number of the next hash list record or 0 if none. - n u32 :: =rnum=. Array with record numbers to values. With $n=(reclen-5)/5$ and our record length of 40, n is 7. Trust record (RECTYPE_TRUST, 12) - 1 u8 :: Record type (value: 12). - 1 u8 :: Reserved. - 20 byte :: =fingerprint=. - 1 u8 :: =ownertrust=. - 1 u8 :: =depth=. - 1 u8 :: =min_ownertrust=. - 1 byte :: Not used. - 1 u32 :: =validlist=. - 10 byte :: Not used. Validity record (RECTYPE_VALID, 13) - 1 u8 :: Record type (value: 13). - 1 u8 :: Reserved. - 20 byte :: =namehash=. - 1 u8 :: =validity= - 1 u32 :: =next=. - 1 u8 :: =full_count=. - 1 u8 :: =marginal_count=. - 11 byte :: Not used. ** Free record (RECTYPE_FREE, 254) All these records form a linked list of unused records in the TrustDB. - 1 u8 :: Record type (value: 254) - 1 u8 :: Reserved. - 1 u32 :: =next=. Record number of the next rcord of this type. The record number to the head of this linked list is stored in the version info record. * Database scheme for the TOFU info #+begin_src sql -- -- The VERSION table holds the version of our TOFU data structures. -- CREATE TABLE version ( version integer -- As of now this is always 1 ); -- -- The BINDINGS table associates mail addresses with keys. -- CREATE TABLE bindings ( oid integer primary key autoincrement, fingerprint text, -- The key's fingerprint in hex email text, -- The normalized mail address destilled from user_id user_id text, -- The unmodified user id time integer, -- The time this binding was first observed. policy boolean check (policy in (1, 2, 3, 4, 5)), -- The trust policy with the values: -- 1 := Auto -- 2 := Good -- 3 := Unknown -- 4 := Bad -- 5 := Ask conflict string, -- NULL or a hex formatted fingerprint. unique (fingerprint, email) ); CREATE INDEX bindings_fingerprint_email on bindings (fingerprint, email); CREATE INDEX bindings_email on bindings (email); -- -- The SIGNATURES table records all data signatures we verified -- CREATE TABLE signatures ( binding integer not null, -- Link to bindings table, -- references bindings.oid. sig_digest text, -- The digest of the signed message. origin text, -- String describing who initially fed -- the signature to gpg (e.g. "email:claws"). sig_time integer, -- Timestamp from the signature. time integer, -- Time this record was created. primary key (binding, sig_digest, origin) ); #+end_src * GNU extensions to the S2K algorithm 1 octet - S2K Usage: either 254 or 255. 1 octet - S2K Cipher Algo: 0 1 octet - S2K Specifier: 101 3 octets - "GNU" 1 octet - GNU S2K Extension Number. If such a GNU extension is used neither an IV nor any kind of checksum is used. The defined GNU S2K Extension Numbers are: - 1 :: Do not store the secret part at all. No specific data follows. - 2 :: A stub to access smartcards. This data follows: - One octet with the length of the following serial number. - The serial number. Regardless of what the length octet indicates no more than 16 octets are stored. Note that gpg stores the GNU S2K Extension Number internally as an S2K Specifier with an offset of 1000. * Format of the OpenPGP TRUST packet According to RFC4880 (5.10), the trust packet (aka ring trust) is only used within keyrings and contains data that records the user's specifications of which key holds trusted introducers. The RFC also states that the format of this packet is implementation defined and SHOULD NOT be emitted to output streams or should be ignored on import. GnuPG uses this packet in several additional ways: - 1 octet :: Trust-Value (only used by Subtype SIG) - 1 octet :: Signature-Cache (only used by Subtype SIG; value must be less than 128) - 3 octets :: Fixed value: "gpg" - 1 octet :: Subtype - 0 :: Signature cache (SIG) - 1 :: Key source on the primary key (KEY) - 2 :: Key source on a user id (UID) - 1 octet :: Key Source; i.e. the origin of the key: - 0 :: Unknown source. - 1 :: Public keyserver. - 2 :: Preferred keyserver. - 3 :: OpenPGP DANE. - 4 :: Web Key Directory. - 5 :: Import from a trusted URL. - 6 :: Import from a trusted file. - 7 :: Self generated. - 4 octets :: Time of last update. This is a four-octet scalar with the seconds since Epoch. - 1 octet :: Scalar with the length of the following field. - N octets :: String with the URL of the source. This may be a zero-length string. If the packets contains only two octets a Subtype of 0 is assumed; this is the only format recognized by GnuPG versions < 2.1.18. Trust-Value and Signature-Cache must be zero for all subtypes other than SIG. * Keyserver helper message format This information is obsolete (Keyserver helpers have been replaced by dirmngr) The keyserver may be contacted by a Unix Domain socket or via TCP. The format of a request is: #+begin_example command-tag "Content-length:" digits CRLF #+end_example Where command-tag is #+begin_example NOOP GET <user-name> PUT DELETE <user-name> #+end_example The format of a response is: #+begin_example "GNUPG/1.0" status-code status-text "Content-length:" digits CRLF #+end_example followed by <digits> bytes of data Status codes are: - 1xx :: Informational - Request received, continuing process - 2xx :: Success - The action was successfully received, understood, and accepted - 4xx :: Client Error - The request contains bad syntax or cannot be fulfilled - 5xx :: Server Error - The server failed to fulfill an apparently valid request * Object identifiers OIDs below the GnuPG arc: #+begin_example 1.3.6.1.4.1.11591.2 GnuPG 1.3.6.1.4.1.11591.2.1 notation 1.3.6.1.4.1.11591.2.1.1 pkaAddress 1.3.6.1.4.1.11591.2.2 X.509 extensions 1.3.6.1.4.1.11591.2.2.1 standaloneCertificate 1.3.6.1.4.1.11591.2.2.2 wellKnownPrivateKey 1.3.6.1.4.1.11591.2.2.10 OpenPGP KDF/KEK parameter 1.3.6.1.4.1.11591.2.3 CMS contentType 1.3.6.1.4.1.11591.2.3.1 OpenPGP keyblock (as octet string) 1.3.6.1.4.1.11591.2.4 LDAP stuff 1.3.6.1.4.1.11591.2.4.1 attributes 1.3.6.1.4.1.11591.2.4.1.1 gpgFingerprint attribute 1.3.6.1.4.1.11591.2.4.1.2 gpgSubFingerprint attribute 1.3.6.1.4.1.11591.2.4.1.3 gpgMailbox attribute 1.3.6.1.4.1.11591.2.4.1.4 gpgSubCertID attribute 1.3.6.1.4.1.11591.2.5 LDAP URL extensions 1.3.6.1.4.1.11591.2.5.1 gpgNtds=1 (auth. with current AD user) 1.3.6.1.4.1.11591.2.6 GnuPG extended key usage 1.3.6.1.4.1.11591.2.6.1 use for certification key 1.3.6.1.4.1.11591.2.6.2 use for signing key 1.3.6.1.4.1.11591.2.6.3 use for encryption key 1.3.6.1.4.1.11591.2.6.4 use for authentication key 1.3.6.1.4.1.11591.2.12242973 invalid encoded OID #+end_example The OpenPGP KDF/KEK parameter extension is used to convey additional info for OpenPGP keys as an X.509 extensions. * Debug flags This tables gives the flag values for the --debug option along with the alternative names used by the components. \| \| gpg \| gpgsm \| agent \| scd \| dirmngr \| g13 \| wks \| \|-------+---------+---------+---------+---------+---------+---------+---------\| \| 1 \| packet \| x509 \| \| \| x509 \| mount \| mime \| \| 2 \| mpi \| mpi \| mpi \| mpi \| \| \| parser \| \| 4 \| crypto \| crypto \| crypto \| crypto \| crypto \| crypto \| crypto \| \| 8 \| filter \| \| \| \| \| \| \| \| 16 \| iobuf \| \| \| \| dns \| \| \| \| 32 \| memory \| memory \| memory \| memory \| memory \| memory \| memory \| \| 64 \| cache \| cache \| cache \| cache \| cache \| \| \| \| 128 \| memstat \| memstat \| memstat \| memstat \| memstat \| memstat \| memstat \| \| 256 \| trust \| \| \| \| \| \| \| \| 512 \| hashing \| hashing \| hashing \| hashing \| hashing \| \| \| \| 1024 \| ipc \| ipc \| ipc \| ipc \| ipc \| ipc \| ipc \| \| 2048 \| \| \| \| cardio \| network \| \| \| \| 4096 \| clock \| \| \| reader \| \| \| \| \| 8192 \| lookup \| \| \| \| lookup \| \| \| \| 16384 \| extprog \| \| \| \| \| \| extprog \| Description of some debug flags: - cardio :: Used by scdaemon to trace the APDUs exchange with the card. - clock :: Show execution times of certain functions. - crypto :: Trace crypto operations. - hashing :: Create files with the hashed data. - ipc :: Trace the Assuan commands. - mpi :: Show the values of the MPIs. - reader :: Used by scdaemon to trace card reader related code. For example: Open and close reader. * Miscellaneous notes List of useful RFCs - RFC-3447 :: PKCS #1: RSA Cryptography Specifications Version 2.1 - RFC-4880 :: OpenPGP - RFC-5083 :: CMS - Authenticated-Enveloped-Data - RFC-5084 :: CMS - AES-GCM - RFC-5280 :: X.509 PKI Certificate and CRL Profile - RFC-5652 :: CMS (STD0070) - RFC-6818 :: Updates to the X.509 PKI Certificate and CRL Profile - RFC-8398 :: Internationalized Email Addresses in X.509 Certificates. - RFC-8399 :: Internationalization Updates to RFC 5280 - RFC-5480 :: ECC Subject Public Key Information - RFC-8813 :: Clarifications for ECC Subject Public Key - RFC-5915 :: Elliptic Curve Private Key Structure - RFC-5958 :: Asymmetric Key Packages - RFC-7292 :: PKCS #12: Personal Information Exchange Syntax v1.1 - RFC-8351 :: The PKCS #8 EncryptedPrivateKeyInfo Media Type v3 fingerprints For packet version 3 we calculate the keyids this way: - RSA :: Low 64 bits of n - ELGAMAL :: Build a v3 pubkey packet (with CTB 0x99) and calculate a RMD160 hash value from it. This is used as the fingerprint and the low 64 bits are the keyid. Simplified revocation certificates Revocation certificates consist only of the signature packet; "--import" knows how to handle this. The rationale behind it is to keep them small. Documentation on HKP (the http keyserver protocol): A minimalistic HTTP server on port 11371 recognizes a GET for /pks/lookup. The standard http URL encoded query parameters are this (always key=value): - op=index (like pgp -kv), op=vindex (like pgp -kvv) and op=get (like pgp -kxa) - search=<stringlist>. This is a list of words that must occur in the key. The words are delimited with space, points, @ and so on. The delimiters are not searched for and the order of the words doesn't matter (but see next option). - exact=on. This switch tells the hkp server to only report exact matching keys back. In this case the order and the "delimiters" are important. - fingerprint=on. Also reports the fingerprints when used with 'index' or 'vindex' The keyserver also recognizes http-POSTs to /pks/add. Use this to upload keys. A better way to do this would be a request like: /pks/lookup/<gnupg_formatierte_user_id>?op=<operation> This can be implemented using Hurd's translator mechanism. However, I think the whole keyserver stuff has to be re-thought; I have some ideas and probably create a white paper. ** Algorithm names for the "keygen.algo" prompt When using a --command-fd controlled key generation or "addkey" there is way to know the number to enter on the "keygen.algo" prompt. The displayed numbers are for human reception and may change with releases. To provide a stable way to enter a desired algorithm choice the prompt also accepts predefined names for the algorithms, which will not change. \| Name \| No \| Description \| \|---------+----+---------------------------------\| \| rsa+rsa \| 1 \| RSA and RSA (default) \| \| dsa+elg \| 2 \| DSA and Elgamal \| \| dsa \| 3 \| DSA (sign only) \| \| rsa/s \| 4 \| RSA (sign only) \| \| elg \| 5 \| Elgamal (encrypt only) \| \| rsa/e \| 6 \| RSA (encrypt only) \| \| dsa/* \| 7 \| DSA (set your own capabilities) \| \| rsa/* \| 8 \| RSA (set your own capabilities) \| \| ecc+ecc \| 9 \| ECC and ECC \| \| ecc/s \| 10 \| ECC (sign only) \| \| ecc/* \| 11 \| ECC (set your own capabilities) \| \| ecc/e \| 12 \| ECC (encrypt only) \| \| keygrip \| 13 \| Existing key \| \| cardkey \| 14 \| Existing key from card \| If one of the "foo/" names are used a "keygen.flags" prompt needs to be answered as well. Instead of toggling the predefined flags, it is also possible to set them direct: Use a "=" character directly followed by a combination of "a" (for authentication), "s" (for signing), or "c" (for certification). PK��\7!\�q6��DCOnu��[��GnuPG Developer's Certificate of Origin. Version 1.0 ===================================================== By making a contribution to the GnuPG project, I certify that: (a) The contribution was created in whole or in part by me and I have the right to submit it under the free software license indicated in the file; or (b) The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate free software license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same free software license (unless I am permitted to submit under a different license), as indicated in the file; or (c) The contribution was provided directly to me by some other person who certified (a), (b) or (c) and I have not modified it. (d) I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the free software license(s) involved. Signed-off-by: [Your name and mail address] PK��\7!\dӮ!��!��READMEnu��[�� The GNU Privacy Guard 2 ========================= Version 2.3 Copyright 1997-2019 Werner Koch Copyright 1998-2021 Free Software Foundation, Inc. Copyright 2003-2021 g10 Code GmbH INTRODUCTION GnuPG is a complete and free implementation of the OpenPGP standard as defined by RFC4880 (also known as PGP). GnuPG enables encryption and signing of data and communication, and features a versatile key management system as well as access modules for public key directories. GnuPG, also known as GPG, is a command line tool with features for easy integration with other applications. A wealth of frontend applications and libraries are available that make use of GnuPG. Starting with version 2 GnuPG provides support for S/MIME and Secure Shell in addition to OpenPGP. GnuPG is Free Software (meaning that it respects your freedom). It can be freely used, modified and distributed under the terms of the GNU General Public License. * BUILD INSTRUCTIONS GnuPG 2.3 depends on the following GnuPG related packages: npth (https://gnupg.org/ftp/gcrypt/npth/) libgpg-error (https://gnupg.org/ftp/gcrypt/libgpg-error/) libgcrypt (https://gnupg.org/ftp/gcrypt/libgcrypt/) libksba (https://gnupg.org/ftp/gcrypt/libksba/) libassuan (https://gnupg.org/ftp/gcrypt/libassuan/) You should get the latest versions of course, the GnuPG configure script complains if a version is not sufficient. Several other standard libraries are also required. The configure script prints diagnostic messages if one of these libraries is not available and a feature will not be available.. You also need the Pinentry package for most functions of GnuPG; however it is not a build requirement. Pinentry is available at https://gnupg.org/ftp/gcrypt/pinentry/ . After building and installing the above packages in the order as given above, you may continue with GnuPG installation (you may also just try to build GnuPG to see whether your already installed versions are sufficient). As with all packages, you just have to do ./configure make make check make install The "make check" is optional but highly recommended. To run even more tests you may add "--enable-all-tests" to the configure run. Before running the "make install" you might need to become root. If everything succeeds, you have a working GnuPG with support for OpenPGP, S/MIME, ssh-agent, and smartcards. In case of problem please ask on the gnupg-users@gnupg.org mailing list for advise. Instruction on how to build for Windows can be found in the file doc/HACKING in the section "How to build an installer for Windows". This requires some experience as developer. You may run gpgconf --list-dirs to view the directories used by GnuPG. To quickly build all required software without installing it, the Speedo method may be used: make -f build-aux/speedo.mk native This method downloads all required libraries and does a native build of GnuPG to PLAY/inst/. GNU make is required and you need to set LD_LIBRARY_PATH to $(pwd)/PLAY/inst/lib to test the binaries. Specific build problems on some machines: * Apple OSX 10.x using XCode On some versions the correct location of a header file can't be detected by configure. To fix that you should run configure like this ./configure gl_cv_absolute_stdint_h=/usr/include/stdint.h Add other options as needed. *** Systems without a full C99 compiler If you run into problems with your compiler complaining about dns.c you may use ./configure --disable-libdns Add other options as needed. * RECOMMENDATIONS ** Socket directory GnuPG uses Unix domain sockets to connect its components (on Windows an emulation of these sockets is used). Depending on the type of the file system, it is sometimes not possible to use the GnuPG home directory (i.e. ~/.gnupg) as the location for the sockets. To solve this problem GnuPG prefers the use of a per-user directory below the the /run (or /var/run) hierarchy for the sockets. It is thus suggested to create per-user directories on system or session startup. For example, the following snippet can be used in /etc/rc.local to create these directories: [ ! -d /run/user ] && mkdir /run/user awk -F: </etc/passwd '$3 >= 1000 && $3 < 65000 {print $3}' \ \| ( while read uid rest; do if [ ! -d "/run/user/$uid" ]; then mkdir /run/user/$uid chown $uid /run/user/$uid chmod 700 /run/user/$uid fi done ) * DOCUMENTATION The complete documentation is in the texinfo manual named `gnupg.info'. Run "info gnupg" to read it. If you want a a printable copy of the manual, change to the "doc" directory and enter "make pdf" For a HTML version enter "make html" and point your browser to gnupg.html/index.html. Standard man pages for all components are provided as well. An online version of the manual is available at [[https://gnupg.org/documentation/manuals/gnupg/]] . A version of the manual pertaining to the current development snapshot is at [[https://gnupg.org/documentation/manuals/gnupg-devel/]] . * Using the legacy version GnuPG 1.4 The 1.4 version of GnuPG is only intended to allow decryption of old data material using legacy keys which are not anymore supported by GnuPG 2.x. To install both versions alongside, it is suggested to rename the 1.4 version of "gpg" to "gpg1" as well as the corresponding man page. Newer releases of the 1.4 branch will likely do this by default. * HOW TO GET MORE INFORMATION A description of new features and changes since version 2.1 can be found in the file "doc/whats-new-in-2.1.txt" and online at "https://gnupg.org/faq/whats-new-in-2.1.html" . The primary WWW page is "https://gnupg.org" The primary FTP site is "https://gnupg.org/ftp/gcrypt/" See [[https://gnupg.org/download/mirrors.html]] for a list of mirrors and use them if possible. You may also find GnuPG mirrored on some of the regular GNU mirrors. We have some mailing lists dedicated to GnuPG: gnupg-announce@gnupg.org For important announcements like new versions and such stuff. This is a moderated list and has very low traffic. Do not post to this list. gnupg-users@gnupg.org For general user discussion and help. gnupg-devel@gnupg.org GnuPG developers main forum. You subscribe to one of the list by sending mail with a subject of "subscribe" to x-request@gnupg.org, where x is the name of the mailing list (gnupg-announce, gnupg-users, etc.). See https://gnupg.org/documentation/mailing-lists.html for archives of the mailing lists. Please direct bug reports to [[https://bugs.gnupg.org]] or post them direct to the mailing list <gnupg-devel@gnupg.org>. Please direct questions about GnuPG to the users mailing list or one of the PGP newsgroups; please do not direct questions to one of the authors directly as we are busy working on improvements and bug fixes. The English and German mailing lists are watched by the authors and we try to answer questions when time allows us. Commercial grade support for GnuPG is available; for a listing of offers see https://gnupg.org/service.html . Maintaining and improving GnuPG requires a lot of time. Since 2001, g10 Code GmbH, a German company owned and headed by GnuPG's principal author Werner Koch, is bearing the majority of these costs. To keep GnuPG in a healthy state, they need your support. Please consider to donate at https://gnupg.org/donate/ . # This file is Free Software; as a special exception the authors gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. For conditions # of the whole package, please see the file COPYING. This file is # distributed in the hope that it will be useful, but WITHOUT ANY # WARRANTY, to the extent permitted by law; without even the implied # warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # # Local Variables: # mode:org # End: PK��\7!\ �"��examples/systemd-user/READMEnu��[��PK��\7!\BH;��;��. ��examples/debug.prfnu��[��PK��\7!\"��/��examples/pwpattern.listnu��[��PK��\7!\əe��examples/Automatic.prfnu��[��PK��\7!\��Ȣ6��6��examples/scd-eventnu��[��PK��\7!\�Q�"��"��9��examples/VS-NfD.prfnu��[��PK��\7!\2�ē �� examples/trustlist.txtnu��[��PK��\7!\Z�&B�%��%��w'��examples/qualified.txtnu��[��PK��\7!\a/ �t��t��=M��examples/common.confnu��[��PK��\7!\��Cl� �� P��examples/gpgconf.confnu��[��PK��\7!\��ȧ��%\��examples/READMEnu��[��PK��\7!\I`~��^��FAQnu��[��PK��\7!\=QI"�� T_��KEYSERVERnu��[��PK��\7!\��H��H��k��HACKINGnu��[��PK��\7!\�� \|��TODOnu��[��PK��\7!\��?^�w��w��NEWSnu��[��PK��\7!\��{�� ;�TRANSLATEnu��[��PK��\7!\>�7��(��(��D�AUTHORSnu��[��PK��\7!\l�ܣ��bm�OpenPGPnu��[��PK��\7!\>��4��4��T��THANKSnu��[��PK��\7!\F�f��b��DETAILSnu��[��PK��\7!\�q6��DCOnu��[��PK��\7!\dӮ!��!��READMEnu��[��PK��

| ver. 1.6 | Github | . | PHP 8.2.30 | ??????????? ?????????: 0.06 | proxy | phpinfo | ???????????