summaryrefslogtreecommitdiff
path: root/usr.bin/signify
AgeCommit message (Collapse)Author
2014-08-22don't need this file, only the mod versionTed Unangst
2014-08-07Bump example pubkey filenames to /etc/signify/openbsd-56-base.pub forLawrence Teo
5.6. ok deraadt@
2014-07-22Pull in all the parts. Let's face the facts -- .PATH from otherTheo de Raadt
parts of the tree is PAINFUL for basically everyone upstream, not just for us in our own tree.
2014-07-13compare snprintf return value with -1. this isn't really necessary becauseTed Unangst
int promotion rules guarantee the correct result when compared with sizeof, but it is perhaps easier for some people to understand it this way. from Doug Hogan.
2014-05-30don't assign variables in if() that's not error checkingTed Unangst
2014-05-30a little style consistency with error checkingTed Unangst
2014-05-16save up the failures for the end in the argc == 0.Ted Unangst
help ok espie
2014-05-16a few changes for new code to match local styleTed Unangst
2014-05-16checksum mode can use magic pubkey finder tooTed Unangst
2014-05-16rework -C (perfect candidate for using hash tables, really):Marc Espie
insert files we want to check into a hash, parse SHA256 message on the fly, delete entries whose checksum match, then display entries that failed. This completely avoids allocating temporary storage for file names and checksums and removes the quadratic match (argv[i] vs line[n]). okay tedu@
2014-05-15fix the band-aid error.Marc Espie
tedu was bitten by the RETARDED interface in sha2.h (who names string LENGTH things that are actually buffer SIZES) ? make -C mode work again. okay beck@
2014-05-14let cpp do some of the workTed Unangst
2014-05-14spell out base64 in error messagesTed Unangst
2014-05-14save some memory by reducing buffer sizesTed Unangst
2014-05-14recode base64 hashes if necessaryTed Unangst
2014-05-14realloc like a boss, so checksum verification doesn't take minutes.Ted Unangst
2014-05-06temp variable for a bit of clarityTed Unangst
2014-05-06remove unneeded variableTed Unangst
2014-05-06factor out the safepathTed Unangst
2014-05-06be more explicit about what's a stringTed Unangst
2014-05-06better alloc idiomTed Unangst
2014-05-06factor max message sizeTed Unangst
2014-04-22use reallocarrayTed Unangst
2014-04-22errx when errno won't be set.Ted Unangst
2014-04-14confirm passwords when generating keysTed Unangst
2014-03-17quiet time is overTed Unangst
2014-03-17clean up after ourselves.Marc Espie
okay tedu@
2014-03-17simplify readmsg loopTed Unangst
2014-03-17tweak a few messagesTed Unangst
2014-03-17check memcmp return explicitlyTed Unangst
2014-03-17pull out the pubkey reading bitsTed Unangst
2014-03-17refactor and recombine verify functions.Ted Unangst
2014-03-17move fingerprint check into verifymsgTed Unangst
(stop printing fingerprints here; probably not that helpful)
2014-03-17clarify a variable or two; ok teduTheo de Raadt
2014-03-17have to fill in comment before we can use it.Ted Unangst
2014-03-16do filename check in the other place too. needs a refactorTed Unangst
2014-03-16resolve espie's complaints about appendall (maybe) by folding it intoTed Unangst
writeb64file. idea from deraadt
2014-03-16secretly document the signature comment public key name stuffTed Unangst
2014-03-16oops, forgot the err function here. noticed by Henri KemppainenTed Unangst
2014-03-16we want strncmp here to be safer. spotted by halex.Ted Unangst
2014-03-16grow buffer fasterTed Unangst
2014-03-16tweak path checks. now you can create keys named ......pubTed Unangst
by deraadt
2014-03-16prevent common(?) mistake. can't use a directory as a fileTed Unangst
2014-03-16check the inferred path is in /etc/signifyTed Unangst
2014-03-16start trusting the untrusted comment. (a little)Ted Unangst
embed the name of the verification key to save some typing
2014-03-07if message file is stdin, don't read passphrase from stdin, it won't work.Ted Unangst
too many features; this circus needs a lion tamer
2014-03-07allow reading input messages on a pipe. use at your own peril.Ted Unangst
2014-03-06allow password on stdin if it's not a tty. commonly requested.Ted Unangst
2014-03-06tweak; from jmc@ and yours trulyChristian Weisgerber
ok jmc@ tedu@
2014-03-05consistently say buflen so i know what length it isTed Unangst