Changelog

Unreleased
Released:
phil@ipom.com
- Fix crash in `-e` mode. Fixes #28.

2.2.2
Released: 1/17/15
phil@ipom.com
- Make output of -T clearer, add instructions to change default mail. Fixes #23.
- Update pius.spec to handle build changes. Fixes #18.
oleander@oleander.cc
- Handle PINENTRY_LAUNCHED & PROGRESS.
sebastian@karotte.org
- add --force-signer option to force specific keyid for signing

2.2.1
Released: 10/08/15
phil@ipom.com
- Fix gpg version matching on Mac
- Fix crashing when we don't match version
- Change debug logging of commands to strings instead of lists so users
  can copy/paste when debugging
- handle agent errors better on 2.1
- more clear errors for various agent issues
brian.andrew@brianandjenny.com
- fix command debug logging in libpius.signer
- fix output of keys in verbose mode (we were missing the first one)
- fix gpg2 interaction on Mac
- fix gpg2 for 2.0.x users

2.2.0
Released: 10/02/15
phil@ipom.com
[meta]
- significant refactoring of code into more classes
- add pius-report
- add support for gpg2
[pius]
- fix crash on lack of ~/.pius directory
- move README to MD format
- fix various holes where we can nuke the user's trust database
- massive lint/style cleanup
- change the default mode use a the gpg-agent
[pius-keyring-mgr]
- refactor to not use subshells
- massive lint/style cleanup
- fix various holes where we can nuke the user's trust database
- add new "raw" mode for organizers to do direct keyring manipulation

2.1.1
Released: 04/07/15
pmhahn@pmhahn.de
[pius]
- Fix crashing bug

2.1.0
Released: 03/09/15
phil@ipom.com
[pius]
- significant refactor into modules
- move to only using long keyids - short keyids are no longer safe
- fix interactive signing
- use .pius/piusrc instead of .pius
- fix various warnings/errors
- add tracking of signatures
git@cad.cx
[pius-party-worksheet]
- Fixes syntax error from use of deprecated unwrapped qw()
pmhahn@pmhahn.de
[pius]
- Better error on GnuPG card issues
- Remove use of various intermediate shells
- Clean up quoting
- Avoid a possible deadlock
- Fix help message
matt@mattb.net.nz
[pius]
- Support attaching policy URLs to signatures.
bex@Brians-MacBook-Pro.local
[pius]
- Fix count an pluralization of number of UIDs to sign (off by one error)

2.0.11
Released: 11/24/13
phil@ipom.com
[pius]
- improve various help and error messages
- add explanations of the cert-levels (closes #5)
- add signing key to output filename (closes #4)
- better handling of UID indexes (closes #13)

2.0.10
Released: 03/29/13
phil@ipom.com
[pius]
- Changed default email port to submission
- Changed TLS to default to on
- Skip expired UIDs
- Recognized old-style keys (Fixes regression #3286119)
[pius-keyring-mgr]
- fix typo/spacing in outgoing emails
- add ability to ignore certain emails/fps
- check for a key on the keyring before fetching it from the server
- ignore old-style keys now that keyservers don't support them anymore
- prune should print keys in sorted order
dougb@dougbarton.us
[pius]
- Don't expect PGP to create rings for us, since gpg2 doesn't.

2.0.9
Released: 03/12/11
phil@ipom.com
- Provide better error handling for bad mailserver data from users. Thanks to
  kc@kcbraunschweig.com for the reports and debugging.
- Provide option to not sort the keyring. Fixes #3182115.
- Added pius-keyring-mgr, a new utility for managing keyrings, mostly useful
  for party organizers
- Added pius-party-worksheet. Previously this was offered on the site, but not as
  part of this package. Generates party worksheets.
szamcsi@users.sourcforge.net:
- Fix passphrase checking for users who have 'armor' in their gpg configs. Fixes
  #3073359.
tomk@gentoo.org
- Fix reading of keyring with GPG >= 2.0.10. Fixes #3073359.
- Help and README updates. Fixes #3182019 and #3182028)

2.0.8
Released: 09/19/10
phil@ipom.com
- Don't lose keyids just because the UID string happens to be the same. Fixes
  #3067127.
- We need to remove the signed files while we still have the right state to do
  so. Additionally, don't remove keys if we haven't done anything with them.
  Fixes #3067157.

2.0.7
Released: 03/04/10
phil@ipom.com
- Don't attempt to delete things we didn't create. Fixes #2962342.
- Provide a useful error when we can't find the gpg binary. Fixes #2962341.

2.0.6
Released: 03/01/10
phil@ipom.com
- When signing all keys on a keyring, sort them first.
- Stop QP-encoding the key, as it prevents people from manually doing
    gpg -d <encrypted_file> | gpg --import
  since the decrypted payload is a MIME message with QP-encoding.  They need to
  use an intelligent MTA, or mime_dump, and this is confusing some users.  See
  the note in the code, but since this is armored in encrypted output, it
  should be safe.
- QP-encode the body... especially since we claim it's QP
- Remove the signed, but unencrypted files (potential security hole fixed here)
- Add a note to the emails that PIUS generated them, for clarity.
- Use application/pgp-keys for the signed key (more RFC complaint and provides
  Evolution compatibility). Thanks to daniel@gimpelevich.san-francisco.ca.us for
  point this out.

2.0.5
Released: 02/27/10
phil@ipom.com
- Encode keys for quoted-printable before sending them that way.
  (closes #2960095)
- Prompt for a sign-level rather than 'y' or 'n', allowing for different levels
  per key. (closes #2960103)
- Remove help text that claimed a local mail server is required for mailing off
  keys - this hasn't been true for a while (thanks to kcbraunschweig@gmail.com)

2.0.4
Released: 02/13/10
matt@mattb.net.nz
- Make pius respect the GNUPGHOME environment variable
phil@ipom.com
- Add support for a config file. Based heavily on a patch by matt@mattb.net.nz
- Fix default GNUPGHOME to use $HOME rather than ~/

2.0.3
Released: 04/26/09
- Fix typo in exception name
- Add newline between keys

2.0.2
Released: 04/22/09
phil@ipom.com
- Catch the case where a users' public key isn't on the keyring and report it
  to the user instead of just failing (reported by phil.pennock at spodhuis.org)
- Handle expired subkeys on the _signers'_ key (reported by phil.pennock at
  spodhuis.org)
- Specify the key to sign with incase there are two private keys and both of
  them happen to be on the public ring as well. (reported by phil.pennock at
  spodhuis.org)
- Catch the case when the key we're signing doesn't have an encryption subkey
  but we're doing PGP/Mime

2.0.1
Released: 02/28/09
phil@ipom.com
- Fix bug where pius would occasionally report a good key as bad

2.0.0
Released: 02/07/09
phil@ipom.com
- Add support for PGP/Mime, make it default
- Significant improvement to error checking and handling of gpg calls
- Minimize keys in import
- Better input checking
- Various code cleanups
- Support named interpolation in email templates
- Use proper extension for our tmp keyring
- Change default tmp/out directories to something more sane
- Fix handling of mode (-p, -i, -a)
- Make cache_passphrase mode default
- Add prompt about sending email if user didn't specify
- Move import of keyring to end
- Only import pexpect if we need it
- Add support for STARTTLS and SMTPAUTH when sending email
- Guard main() in an if __name__ == '__main__' to allow pydoc to work on pius
- Added a spec file
- Add notes to the README on how to write custom emails

1.7
Released: 02/06/09
phil@ipom.com
- Adjust regex for email address to be much less restrictive

1.6
Released: 02/02/09
phil@ipom.com
- fix a debug line
- fix a bug where we think a key is bad just because it has one expired subkey.

1.5
Released: 02/01/09
phil@ipom.com
- don't include full file path in mime headers, just filename
- add configuration for specifying mail server host/port
- clean up some error messages
- add some hints to the option parser
- use parser.error instead of print/exit for option issues
- Significantly better checking on commandline options
- Handle bad UIDs passed by the user smoothly
- Some code refactoring

1.4
Released: 01/28/09
phil@ipom.com
- don't try to email if encryption failed.

1.3
Released: 01/28/09
phil@ipom.com
- add propfer filename to mime headers -phil
- fix a warning
- add some spacing and comments
- adding support for utf8/paryn/whatever in comments
- More fixes for UTF-8/special chars
- handle expired subkeys nicely
- When using override_email, make sure we put that in the headers not just the envelope
- some helpful info in help

1.2
Released: 11/22/08
phil@ipom.com
- encrypt to ascii-armored
- add option to import keyring
- add todo
- Handle UIDs without email addresses
- Add option to try signing all keys on a keyring (-A)
- Add 'quit' option to the "Have you verified this user/key?" prompt
- Significantly improve parsing in get_uids()
- Name files for conflicting emails *much* better (foo_2.asc, foo_3.asc, instead of foo.asc_2, foo.asc_2_2)
- Name encrypted files MUCH better (foo_ENCRYPTED.asc instead of foo.asc.asc)
- Better error handling on encryption errors
- When getting all keys from the keyring (-A) use short keyid
- a few additional fixes for UIDs without email addresses
- much better help messages for options
- fix buggy error message on keyring not existing
- Add abaility to email off signed keys to respective emails
- allow users to use tilde-expansion in keyring paths
- update TODO list
- alphabetize imports
- update TODO
- Put default email text in a variable
- Add ability to override email text
- Add ability to print default email text
- Add ability to override email To
- Add doc strings
- Abstract commonly used gpg options into variables
- minor cleanups in sign_all_uids()
- remove unused code
- separate printing of filenames into --verbose option

1.1
Released 11/20/08
phil@ipom.com
- get FD stuff working for -p
- start working on FD stuff for -a
- fix a variety of pathing bugs
- make sign_uid_expect return the right vals
- fix output to use --no-tty where necessary
- tons of cleanups
- add new use-agent mode (-a)
- tmpdir is now configurable (-t)
- outdir is now configurable (-o)
- gpg bin is now configurable (-b)
- sig level is now configurable (-l)
- pius can now optionally encrypt the files for you (-e)
- stop using the special word 'file' as a variable
- better debugging
- handle PGP2 keys better
- cleanup all tmp files and keyrings
- fix usage info

1.0
phil@ipom.com
- Original version... floating around in various forms for a long time