Parent Directory | Revision Log
|Links to HEAD:||(view) (download) (annotate)|
Added closing comments for all #ifdef statements.
I've back-ported most of the important changes since 2.9b38 to the -STABLE branch. I've only applied the changes I think are unlikely to break anything. This needs to be tested (and the diff'd reviewed) before we proceed. If anyone feels I've left out anything that should really be in 2.9, please speak up.
Misc Install script fixes for 2.9beta37a.
Mixmaster now uses the OpenPGP MDC packets (as specified in RFC 2440-bis06). Mixmaster will use MDC packets if the MDC flag is found in the recipient's PGP key, or by default if it is encrypting with AES. New keys generated with Mixmaster will have the MDC flag placed in the key's preferences. Also, cipher preferences are now advertised as CAST5, AES128, 3DES.
Submitted By: Sami Farin (safari): Included correct header files. Src/main.c had incorrect param to buf_appendf. Added buf_write_sync() (used by Src/rem.c:mix_pool()). Should a mixmaster machine crash, pool file can contain any random data after reboot/journal recovery (at least when using reiserfs). Maybe not relevant, but strrchr should be used instead of strchr when looking for domain part. Src/pgpdata.c:pgp_elgdecrypt() passes uninitialized values to BN_free if BN_CTX_new fails. Src/pgpdata.c:pgp_elgencrypt() passes uninitialized value to BN_free if the third mpi_get(key, i) fails. Src/random.c does not check return value of read(). Src/rndseed.c does not check return value of read().
Added support for Sym. Encrypted Integrity Protected Data Packet (Tag 18) and Modification Detection Code Packet (Tag 19) in the OpenPGP code. See RFC2440bis-05:5.13 for more info. Mixmaster's PGP functionality and mpgp both need extensive compatibility and regression testing now.
Added support for AES in Type I messages. This should prevent lost mail if a user attempts to send OpenPGP messages encrypted with AES. Support for AES requires OpenSSL 0.9.7 (soon to be released.) The Install script needs to be updated to enable AES if 0.9.7 or later is present. Also, pgp_keylen now returns 0 instead of -1 for unknown symalgo. Output of pgp_keylen is used in buf_appendrnd and in other functions without checking, so they might be unhappy with -1. (We should really check for this.) Thanks to Disastry and Peter for working on this.
Added another test to ensure len > 0. Not currently necessary, since if partial > 0, then len must be > 0, however we add this to protect against possible future changes in pgp_packetpartial().
Ryan Lackey and Riot Admin reported errors in pgpget.c -- fixed by Ulf M.
This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.
|Powered by ViewVC 1.1.5|