Commit Graph

1037 Commits

Author SHA1 Message Date
Justus Winter
5620da1a10
Fix documentation. 2024-10-07 15:45:10 +02:00
Justus Winter
b767f1f445
Fix capitalization of example section in help texts. 2024-10-07 15:45:06 +02:00
Justus Winter
55b3d988ff
Port cert lint examples to the example framework. 2024-10-07 15:41:19 +02:00
Justus Winter
e0ec6de2e2
Port keyring examples to the example framework. 2024-10-07 15:27:28 +02:00
Justus Winter
d6a69aca72
Implement examples containing pipelines. 2024-10-07 15:27:28 +02:00
Justus Winter
43edb2c190
Add missing example data file bob.pgp.
- The README mentions it, but it is missing.
2024-10-07 15:27:28 +02:00
Justus Winter
f35af0c9b2
Port dearmor examples to the example framework. 2024-10-07 15:27:28 +02:00
Justus Winter
834b5afe86
Port armor examples to the example framework. 2024-10-07 15:27:28 +02:00
Justus Winter
842f708e8a
Port extract-cert examples to the example framework. 2024-10-07 15:27:27 +02:00
Justus Winter
c3b2e86223
Port link examples to the example framework. 2024-10-07 15:27:27 +02:00
Justus Winter
16eb8aef3a
Fix line wrapping when printing examples. 2024-10-07 15:27:27 +02:00
Neal H. Walfield
43885a05b5
Update futures-util (and related packages).
- `futures-util` 0.3.30 was yanked.  Update to the latest version.
2024-10-07 14:07:29 +02:00
Neal H. Walfield
fd35509784
Don't call exit, just return an error.
- Never call `exit`.  If there is an error, propagate the error to
    the caller.  This ensures that any clean up handlers (like
    flushing state to disk) are run.
2024-10-07 13:28:24 +02:00
Neal H. Walfield
fd37c3d675
Fix example.
- Make the example match the description.
2024-10-07 13:28:24 +02:00
Justus Winter
4f1ecb61a2
Use cert designators for sq network keyserver publish.
- Fixes #272.
2024-10-04 17:52:56 +02:00
Justus Winter
7bab5aeafb
Use cert designators for sq network wkd publish.
- See #272.
2024-10-04 17:43:28 +02:00
Justus Winter
08c19ed924
Use cert designators for sq network dane generate.
- See #272.
2024-10-04 17:35:57 +02:00
Justus Winter
3b27efa629
Prevent cert designators from over-eagerly grabbing other options. 2024-10-04 17:34:54 +02:00
Justus Winter
8afc4a264c
Fix composing cert designators. 2024-10-04 17:34:33 +02:00
Justus Winter
00e70148e3
Make the domain argument a long argument like in wkd publish. 2024-10-04 16:45:13 +02:00
Justus Winter
c27988f586
Improve listing of secret keys.
- Changes the format to a certificate-centric view.  I believe we
    should present the data aligned with the OpenPGP concepts, and the
    device tree structure, or where the secret key material resides,
    is an implementation detail.

  - Where the secret key material resides is an important detail that
    we should still show, of course, but it shouldn't be the basis of
    the structure we show.

  - Incidentally, this greatly improves how user IDs are related to
    certificates, and what happens if a subkey is bound to two
    certificates.  Hence, it fixes #334.

  - In addition to the best user ID, we show key creation times to
    help users differentiate between old and new keys.

  - We print the fingerprints on a line on their own in preparation
    for the considerably longer RFC 9580 fingerprints.

  - We use data structures that naturally order their items, resulting
    in a predictable output order.

  - Fixes #292.
2024-10-04 16:22:10 +02:00
Justus Winter
7ed26a805d
Fix argument name computation.
- Fixes ba121b2339.
2024-10-04 11:54:55 +02:00
Justus Winter
20df76538e
Rename sq encrypt --recipient to sq encrypt --for`.
- Fixes #356.
2024-10-04 11:54:53 +02:00
Justus Winter
ba121b2339
Rename --recipient-cert to --recipient.
- Fixes #355.
2024-10-04 11:16:33 +02:00
Justus Winter
20fb370de7
Rename --signer-key to --signer.
- See #355.
2024-10-04 11:16:24 +02:00
Justus Winter
dff6664f47
Rename the global --force flag to --overwrite.
- This flag now only controls whether existing files are
    overwritten.

  - Fixes #31.
2024-10-02 18:42:31 +02:00
Justus Winter
80d51a9a87
New flag sq pki link add --recreate instead of --force.
- Likewise for `sq pki link retract --recreate`.

  - See #31.
2024-10-02 18:40:29 +02:00
Justus Winter
527e207067
New flag sq key userid revoke --add-userid instead of --force.
- See #31.
2024-10-02 18:37:28 +02:00
Justus Winter
fc76b99c55
Make the file creation utilities take a reference to Sq. 2024-10-02 18:05:40 +02:00
Justus Winter
7b05d6ad49
Move some file support code so that it can use Sq. 2024-10-02 17:58:31 +02:00
Justus Winter
63ae7dbb8c
Rename sq verify --detached to sq verify --signature-file.
- Fixes #255.
2024-10-02 17:37:35 +02:00
Justus Winter
535164b7af
Fix changing the expiration time on keys without direct key sig.
- Fixes #230.
2024-10-02 17:10:43 +02:00
Justus Winter
c079a350b4
Add missing NEWS entry. 2024-10-02 16:03:55 +02:00
Justus Winter
fe2a003c7d
Rename sq key subkey adopt to bind, improve documentation.
- This is to emphasize that the key is copied, not moved.

  - Fixes #332.
2024-10-02 15:51:07 +02:00
Justus Winter
cb664239bc
Move sq key adopt to sq key subkey adopt.
- Fixes #301.
2024-10-02 15:14:31 +02:00
Justus Winter
f17411ac2d
Improve warning message.
- Fixes #341.
2024-10-02 14:36:47 +02:00
Justus Winter
dabeccfd60
Port the examples of sq toolbox packet to the examples framework. 2024-10-02 14:28:26 +02:00
Justus Winter
aaa3732764
Improve and fix the documentation of sq toolbox packet split.
- Fixes #345.
2024-10-02 14:28:12 +02:00
Justus Winter
fa34d331e1
Fix splitting and joining packets with bodies, such as literals. 2024-10-02 13:22:37 +02:00
Justus Winter
6aff1a905c
Improve the file names when splitting packet streams.
- Fixes #346.
2024-10-02 12:47:40 +02:00
Justus Winter
19ed168dff
Emit a hint when trying to sq key import a certificate.
- Fixes #347.
2024-10-02 12:38:52 +02:00
Justus Winter
0710d4d2c7
Deduplicate subkey arguments when revoking subkeys.
- Fixes #348.
2024-10-02 12:17:30 +02:00
Justus Winter
a2440d7cf0
Introduce a switch to select the type of DNS resource records.
- Fixes #353.
2024-10-02 11:31:19 +02:00
Justus Winter
b4158f40de
Fix adopting subkeys backed by the softkeys backend into softkeys.
- Fixes #333.
2024-09-27 17:51:52 +02:00
Justus Winter
d4a6b09b45
Allow source certs to be ambiguous when adopting a key. 2024-09-27 17:32:26 +02:00
Justus Winter
f448fcb347
Avoid file descriptor exhaustion when fetching certificates.
- Previously, there was a chance of running out of file descriptors
    while or after fetching a large number of certificates using sq
    network fetch.

  - The root cause of that was the use of getaddrinfo(3) to resolve
    names, which is a blocking interface, which has to be executed on
    a special thread for blocking tasks on the tokio runtime.  The
    maximum number of these threads is capped at 512 by default, and
    these threads can tie up a significant number of file descriptors
    in sockets.  The threads do close their sockets and go away after
    a while, presumably after a timeout.  Further, blocking tasks can
    not be canceled.

  - Do release all thread pool resources after doing the fetch.

  - Also, switch to the hickory crate for doing name lookups.  This
    implements a non-blocking interface, and releases resources in a
    timely fashion.

  - Fixes #335.
2024-09-27 13:34:31 +02:00
Justus Winter
8468817010
Disregard bad information in the signers user ID subpacket.
- Fixes #148.
2024-09-26 17:59:17 +02:00
Justus Winter
fad2d75de2
Use the cert fingerprint in messages, not the signing subkeys keyID.
- Fixes #340.
2024-09-26 16:42:50 +02:00
Justus Winter
471e1c7c5a
Fix hints.
- Don't suggest to link the issuer (sub)key, always use the cert
    fingerprint.

  - Fixes #278.
2024-09-26 16:42:50 +02:00
Neal H. Walfield
6477009a78
Bump MSRV to 1.75.
- `rustc` version 1.75 has entered Debian Trixie.  Bump our MSRV
    accordingly.
2024-09-26 16:02:32 +02:00