Fri, 27 Mar 2020 09:24:14 +0100... generate_api tip
Volker Birk <vb@pep-project.org> [Fri, 27 Mar 2020 09:24:14 +0100] rev 4509
...

Fri, 27 Mar 2020 04:19:59 +0100... generate_api
Volker Birk <vb@pep-project.org> [Fri, 27 Mar 2020 04:19:59 +0100] rev 4508
...

Fri, 27 Mar 2020 03:59:28 +0100... generate_api
Volker Birk <vb@pep-project.org> [Fri, 27 Mar 2020 03:59:28 +0100] rev 4507
...

Thu, 26 Mar 2020 23:24:53 +0100merging in actual sync branch generate_api
Volker Birk <vb@pep-project.org> [Thu, 26 Mar 2020 23:24:53 +0100] rev 4506
merging in actual sync branch

Wed, 25 Mar 2020 11:47:20 +0100removed accidental exposure of internal function to API (was used for testing). Also, previous commit should be ENGINE-709. Not just merge. Oops. sync
Krista 'DarthMama' Bennett <krista@pep.foundation> [Wed, 25 Mar 2020 11:47:20 +0100] rev 4505
removed accidental exposure of internal function to API (was used for testing). Also, previous commit should be ENGINE-709. Not just merge. Oops.

Wed, 25 Mar 2020 11:40:22 +0100merge sync
Krista 'DarthMama' Bennett <krista@pep.foundation> [Wed, 25 Mar 2020 11:40:22 +0100] rev 4504
merge

Mon, 23 Mar 2020 22:35:57 +0100Fix type. sync
Neal H. Walfield <neal@pep.foundation> [Mon, 23 Mar 2020 22:35:57 +0100] rev 4503
Fix type.

- An sq_status_t is different from a PEP_STATUS.

- Thanks Volker.

Mon, 23 Mar 2020 21:52:34 +0100we don't need this sync
Volker Birk <vb@pep-project.org> [Mon, 23 Mar 2020 21:52:34 +0100] rev 4502
we don't need this

Fri, 20 Mar 2020 22:10:23 +0100Return more nuanced return codes. nuanced_return_codes
Neal H. Walfield <neal@pep.foundation> [Fri, 20 Mar 2020 22:10:23 +0100] rev 4501
Return more nuanced return codes.

- Introduce PEP_VERIFY_SIGNER_KEY_EXPIRED and
PEP_VERIFY_SIGNER_KEY_INVALID.

- Have pgp_decrypt_and_verify and pgp_verify_text returns them, when
appropriate.

Fri, 20 Mar 2020 21:44:34 +0100Detect more ways that keys can be broken. b0rken_crypto
Neal H. Walfield <neal@pep.foundation> [Fri, 20 Mar 2020 21:44:34 +0100] rev 4500
Detect more ways that keys can be broken.

- Sequoia provides a standard policy that will reject keys that are
weak. This could be because they use RSA with a 1024 bit key, or
because a weak hash of the binding signatures is signed.

- Instead of returning PEP_ct_OpenPGP_weak_unconfirmed or
PEP_ct_key_too_short, we now just return PEP_ct_b0rken_crypto in
all these cases.

- Unfortunately, this changes the semantics a bit.