Parent Directory | Revision Log
|Links to HEAD:||(view) (download) (annotate)|
Updated copyright dates, doc issues, misc fixes.
Set keyword expansion for Id on all files that already have $Id$ tags.
Do away with the conditional use of RSA, always using it. Without RSA we aren't much good anyway.
Added closing comments for all #ifdef statements. All #endif's, as well as nested braces, should be commented to reference their start. We need to provide comments before every function as well.
Mixmaster keys now have creation and expiration date. It is not secured by any crypto voodoo, it's only informational for clients to decide which keys to use should they have more. - on the client side we do not show remailers (and therefore not use them) if their key is expired. - the remailer refuses to decrypt messages to keys that expired one month ago or earlier. - the remailer automatically creates new mixmaster keys if the current one are about to expire or already are expired. - the latest key from secring.mix is written to key.txt. It used to be the first one. Since creation of new mix key appends the key, this seemed sensible.
Submitted By: Sami Farin (safari): Included correct header files. Src/main.c had incorrect param to buf_appendf. Added buf_write_sync() (used by Src/rem.c:mix_pool()). Should a mixmaster machine crash, pool file can contain any random data after reboot/journal recovery (at least when using reiserfs). Maybe not relevant, but strrchr should be used instead of strchr when looking for domain part. Src/pgpdata.c:pgp_elgdecrypt() passes uninitialized values to BN_free if BN_CTX_new fails. Src/pgpdata.c:pgp_elgencrypt() passes uninitialized value to BN_free if the third mpi_get(key, i) fails. Src/random.c does not check return value of read(). Src/rndseed.c does not check return value of read().
We have changed the compile-time option PASSPHRASE to be named COMPILEDPASS. We have changed the configuration file option PASS_PHRASE to be named PASSPHRASE. We have added documentation for the new configuration file option and made changes in the man page to reflect the name change. This was done to avoid confusion due to the similarity in names of the options.
Added support for AES in Type I messages. This should prevent lost mail if a user attempts to send OpenPGP messages encrypted with AES. Support for AES requires OpenSSL 0.9.7 (soon to be released.) The Install script needs to be updated to enable AES if 0.9.7 or later is present. Also, pgp_keylen now returns 0 instead of -1 for unknown symalgo. Output of pgp_keylen is used in buf_appendrnd and in other functions without checking, so they might be unhappy with -1. (We should really check for this.) Thanks to Disastry and Peter for working on this.
Added the ability to store the key passphrase in the mix.cfg file instead of having it compiled into the binary. This offers a number of advantages over the compiled-in method and still allows for encrypted remote storage of keys. In order to take advantage of the new changes, the Install script will need to be modified. As this is being replaced with a proper autoconf system, we're defering that until later. The changes we're committing replace PASSPHRASE with PASS_PHRASE, which is read from the config. If the compiled-in passphrase, PASSPHRASE, is set, that is used instead. (This is how Mixmaster will function if you use the Install script.)
This form allows you to request diffs between any two revisions of this file. For each of the two "sides" of the diff, enter a numeric revision.
|Powered by ViewVC 1.1.5|