summaryrefslogtreecommitdiff
path: root/usr.bin/signify
AgeCommit message (Expand)Author
2019-05-08xr to sysupgradeTed Unangst
2019-03-23allow -n to zero the gzip header timestamp. suggestion from Andre Stoebe.Ted Unangst
2019-02-26crank to 6.5-betaTheo de Raadt
2019-01-17change an error message to be less misleading.Ted Unangst
2019-01-17clean up the user's password even after various errors.Ted Unangst
2018-08-10crank to 6.4-betaTheo de Raadt
2018-02-28move to 6.3-betaTheo de Raadt
2018-01-16g/c unused defines that were only used by nacl's SHA-512 implementationChristian Weisgerber
2017-08-20also crank for 6.2Theo de Raadt
2017-07-11adjust size to be one less than power of 2, so that doubling will neverTed Unangst
2017-07-11fix style compliance, in the keyname compliance function no lessTed Unangst
2017-05-28when copying curvy files from ssh, an extra one snuck in.Ted Unangst
2017-04-18use freezero() instead of explicit_bzero + freeTheo de Raadt
2017-03-09show how to verify the next release after 6.1Sebastian Benoit
2016-10-06- better check for seckeyname/pubkeyname "equality", remove the pathMarc Espie
2016-10-05when generating keys, make sure the names specified adhere to allTed Unangst
2016-10-05more properly check the secret key extension. from espieTed Unangst
2016-10-05document the previously hidden keyname detection. urged by espie.Ted Unangst
2016-10-05combining an assignment and *two* tests in one conditional is a bit much.Ted Unangst
2016-10-04typoMarc Espie
2016-09-27can make function static now that it's living in a separate file.Ted Unangst
2016-09-27the keytype checking is logically part of verify, and it's small, soTed Unangst
2016-09-27no need to copy keypath if we already have oneTed Unangst
2016-09-26have to advance pointer past the / to get basename.Ted Unangst
2016-09-26there's a hidden feature to infer the public key from the signatureTed Unangst
2016-09-19use a shell glob wildcard, that's clearer than an out of scope variableTed Unangst
2016-09-10spaces found during re-readTheo de Raadt
2016-09-08simplify the extra buffer size copyMarc Espie
2016-09-04well, adding the filename doesn't help... mostly used with pipes anyhowMarc Espie
2016-09-03add the keyname to meta-info that passes thruMarc Espie
2016-09-03switch back to SHA512/256 now that we have the official nist flavorTed Unangst
2016-09-03naddy@ pointed out that SHA512/256 is slightly differentMarc Espie
2016-09-03fix parameters checkingMarc Espie
2016-09-03MAJOR tweak: switch to SHA512/256Marc Espie
2016-09-03nitpicks. all header info is relative. make gzheader freeable.Marc Espie
2016-09-02style polishingTed Unangst
2016-09-02replace exit() with err() and errx() so user knows what happenedTed Unangst
2016-09-02use err() instead of errx when an errno is setTed Unangst
2016-09-02the old check for when verify needed to create files (affecting pledge)Ted Unangst
2016-09-02combine the pledge switch with the execution switch. no changes yet,Ted Unangst
2016-09-02-e and -z cannot be combinedTed Unangst
2016-09-02space out the exampleTed Unangst
2016-09-02finish the sentence;Jason McIntyre
2016-09-02more jmc tweaksMarc Espie
2016-09-02document the new stuff, usage nits.Marc Espie
2016-09-02duplicate varMarc Espie
2016-09-02add a new option (-z) for signing gzip archives.Marc Espie
2016-09-02move more code into createsig. callers just pass seckey filename.Ted Unangst
2016-09-02split the sign() function into two, with a pure memory core madeTed Unangst
2016-09-01don't initialize variables with functionsTed Unangst