GitLab

Finalize the date in NEWS and README

Thanks to Fred Yontz <fred@ridersite.org> for the report.

This is mostly to be able to access it in the test suite following this
commit.
Signed-off-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Ian Goldberg <iang@cs.uwaterloo.ca>

Ref:
https://lists.cypherpunks.ca/pipermail/otr-dev/2014-September/002199.html



Fixes #53
Reported-by: k007k <k007k@wp.pl>
Signed-off-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Ian Goldberg <iang@cs.uwaterloo.ca>

Fixes #38

Acked-by: Matthew D. Green <matthewdgreen@gmail.com>
Signed-off-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Ian Goldberg <iang@cs.uwaterloo.ca>

Fixes #30
Signed-off-by: marshal <info@startplaza.nu>
Signed-off-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Ian Goldberg <iang@cs.uwaterloo.ca>

Make sure we free the old messagep value if the fragment_and_send call
successfully sets it to a new value.

(Repairs a problem introduced in c87b3fe6

)

Fixes #25
Reported-by: b42 <b42@srck.net>
Signed-off-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Ian Goldberg <iang@cs.uwaterloo.ca>

Acked-by: David Goulet <dgoulet@ev0ke.net>

Fixes #33

Using a convoluted while loop that changes the len variable is not
recommended.

Also, make the diff volatile so we are sure the compiler does not do
some unwanted optimization.
Acked-by: David Goulet <dgoulet@ev0ke.net>

Slightly tweaked by Ian Goldberg <ian@cypherpunks.ca>

Fixes #22

Related to #20 that submitted a wrong patch due to bad understanding
thus the reason of this commit.
Signed-off-by: David Goulet <dgoulet@ev0ke.net>

Fixes #20

Fixes #18

Acked-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Julien Voisin <julien.voisin@dustri.org>

The most important feature here is that the compilation is now silent
thus it's now much more easier to spot warnings/errors by the compiler.

To make it verbose, simply use "make V=1".

Fixes #11
Signed-off-by: David Goulet <dgoulet@ev0ke.net>

This is to initialize automatically the repository with autoreconf.
It's the common name to use for that script (also used is "autogen.sh").

Update INSTALL file with bootstrap script

Fixes #10

Signed-off-by: David Goulet <dgoulet@ev0ke.net>

Fixes #9

Signed-off-by: David Goulet <dgoulet@ev0ke.net>

Fixes #5
Acked-by: Nikita Borisov <me+otr.im@nikita.ca>
Acked-by: David Goulet <dgoulet@ev0ke.net>
Signed-off-by: Julien Voisin <julien.voisin@dustri.org>

Thanks to jvoisin <julien.voisin@dustri.org> for the suggestion.

Return 0 instead of crashing from otrl_proto_query_bestversion if passed
an illegal input.  Thanks to Conrad Hoffmann <ch@bitfehler.net> for the
report and the patch.

Mostly in the documentation, but also in the default OTR Query message.

Before, trying to fragment a message into more than 65535 pieces would
cause incorrect fragments to be output.

Now, it just returns an error (as that is disallowed by the spec).

Thanks to Teemu Huovila <thuovila@cs.helsinki.fi> for reporting the issue.

The spec (but not the code) incorrectly said "128 bits" before.

Passing a private key value of 0 to otr_sesskeys would cause libgcrypt
to crash in gcry_mpi_powm.  We reported this libgcrypt bug and it was
then fixed in
http://lists.gnupg.org/pipermail/gcrypt-devel/2013-July/002251.html
but the workaround is simply to use gcry_mpi_new(DH1536_MOD_LEN_BITS)
instead of gcry_mpi_new(0).

Note that this only affected the otr_sesskeys toolkit program, and not
libotr itself.

Thanks to the Mayhem Team at CMU (Alexandre Rebert, Thanassis Avgerinos,
Sang Kil Cha, David Brumley, Manuel Egele) for the report.

The inject_message callback was missing the opdata when sending message
fragments.
Signed-off-by: David Goulet <dgoulet@ev0ke.net>

This fixes a case where the first user message
gets lost when OTRL_POLICY_REQUIRE_ENCRYPTION
policy is set because after establishing the
encryption lastmessage remains with the master
context and will not be resent.

[Slightly modified by Ian Goldberg]

Thanks to Daniel Atallah <datallah@pidgin.im> for noticing that it
wasn't working before.

Don't have otrl_init call exit(1) if the application's requested version
number differs from libotr's.  Rather, return a non-zero error code, and
have the application clean up gracefully.  The OTRL_INIT macro now
checks the error code and does an exit(1) as the default behaviour, but
the application can do what it likes.

The new timer_control callback will instruct the application to call the
new otrl_message_poll function in order to actually clear out the above
stale committed keys.

This will be used to clear the committed key from the master context
once we don't expect any more instances of our buddy to respond with a
DHKEY message.

Thanks to Kjell Braden <kb@pentabarf.de> for noticing the omission.