summaryrefslogtreecommitdiff
path: root/usr.bin/signify
AgeCommit message (Expand)Author
2020-01-21In -C mode, the public key is optional since it can be deduced fromTheo Buehler
2019-12-22have parseb64file be non-destructive, so we can write theMarc Espie
2019-12-09tweak -z mode verification to save the header and actually output it,Marc Espie
2019-09-09use PATH_MAX instead of 1024; ok teduTheo de Raadt
2019-08-10move to 6.6-betaTheo de Raadt
2019-07-03snprintf/vsnprintf return < 0 on error, rather than -1.Theo de Raadt
2019-05-08xr to sysupgradeTed Unangst
2019-03-23allow -n to zero the gzip header timestamp. suggestion from Andre Stoebe.Ted Unangst
2019-02-26crank to 6.5-betaTheo de Raadt
2019-01-17change an error message to be less misleading.Ted Unangst
2019-01-17clean up the user's password even after various errors.Ted Unangst
2018-08-10crank to 6.4-betaTheo de Raadt
2018-02-28move to 6.3-betaTheo de Raadt
2018-01-16g/c unused defines that were only used by nacl's SHA-512 implementationChristian Weisgerber
2017-08-20also crank for 6.2Theo de Raadt
2017-07-11adjust size to be one less than power of 2, so that doubling will neverTed Unangst
2017-07-11fix style compliance, in the keyname compliance function no lessTed Unangst
2017-05-28when copying curvy files from ssh, an extra one snuck in.Ted Unangst
2017-04-18use freezero() instead of explicit_bzero + freeTheo de Raadt
2017-03-09show how to verify the next release after 6.1Sebastian Benoit
2016-10-06- better check for seckeyname/pubkeyname "equality", remove the pathMarc Espie
2016-10-05when generating keys, make sure the names specified adhere to allTed Unangst
2016-10-05more properly check the secret key extension. from espieTed Unangst
2016-10-05document the previously hidden keyname detection. urged by espie.Ted Unangst
2016-10-05combining an assignment and *two* tests in one conditional is a bit much.Ted Unangst
2016-10-04typoMarc Espie
2016-09-27can make function static now that it's living in a separate file.Ted Unangst
2016-09-27the keytype checking is logically part of verify, and it's small, soTed Unangst
2016-09-27no need to copy keypath if we already have oneTed Unangst
2016-09-26have to advance pointer past the / to get basename.Ted Unangst
2016-09-26there's a hidden feature to infer the public key from the signatureTed Unangst
2016-09-19use a shell glob wildcard, that's clearer than an out of scope variableTed Unangst
2016-09-10spaces found during re-readTheo de Raadt
2016-09-08simplify the extra buffer size copyMarc Espie
2016-09-04well, adding the filename doesn't help... mostly used with pipes anyhowMarc Espie
2016-09-03add the keyname to meta-info that passes thruMarc Espie
2016-09-03switch back to SHA512/256 now that we have the official nist flavorTed Unangst
2016-09-03naddy@ pointed out that SHA512/256 is slightly differentMarc Espie
2016-09-03fix parameters checkingMarc Espie
2016-09-03MAJOR tweak: switch to SHA512/256Marc Espie
2016-09-03nitpicks. all header info is relative. make gzheader freeable.Marc Espie
2016-09-02style polishingTed Unangst
2016-09-02replace exit() with err() and errx() so user knows what happenedTed Unangst
2016-09-02use err() instead of errx when an errno is setTed Unangst
2016-09-02the old check for when verify needed to create files (affecting pledge)Ted Unangst
2016-09-02combine the pledge switch with the execution switch. no changes yet,Ted Unangst
2016-09-02-e and -z cannot be combinedTed Unangst
2016-09-02space out the exampleTed Unangst
2016-09-02finish the sentence;Jason McIntyre
2016-09-02more jmc tweaksMarc Espie