head 1.21; access; symbols pkgsrc-2017Q2:1.18.0.2 pkgsrc-2017Q2-base:1.18 pkgsrc-2017Q1:1.14.0.2 pkgsrc-2017Q1-base:1.14 pkgsrc-2016Q4:1.13.0.2 pkgsrc-2016Q4-base:1.13 pkgsrc-2016Q3:1.11.0.2 pkgsrc-2016Q3-base:1.11 pkgsrc-2016Q2:1.8.0.2 pkgsrc-2016Q2-base:1.8 pkgsrc-2016Q1:1.6.0.2 pkgsrc-2016Q1-base:1.6 pkgsrc-2015Q4:1.5.0.2 pkgsrc-2015Q4-base:1.5 pkgsrc-2015Q3:1.1.0.2 pkgsrc-2015Q3-base:1.1; locks; strict; comment @# @; 1.21 date 2017.08.29.12.12.54; author wiz; state dead; branches; next 1.20; commitid JpmTPT6oXWzOw65A; 1.20 date 2017.08.11.01.12.43; author ryoon; state Exp; branches; next 1.19; commitid zORwOYuR881osJ2A; 1.19 date 2017.07.28.19.33.24; author wiz; state Exp; branches; next 1.18; commitid 9vcTJhq9EruQZ11A; 1.18 date 2017.05.16.12.08.01; author wiz; state Exp; branches; next 1.17; commitid N2TouQbys0lzSBRz; 1.17 date 2017.04.20.09.55.28; author wiz; state Exp; branches; next 1.16; commitid MFmu0ZWkQA8WYfOz; 1.16 date 2017.04.20.09.50.37; author wiz; state Exp; branches; next 1.15; commitid cxnCaa1QDPlgXfOz; 1.15 date 2017.04.16.07.21.48; author wiz; state Exp; branches; next 1.14; commitid kDtYQqo9ngP2gJNz; 1.14 date 2017.02.04.07.12.35; author maya; state Exp; branches; next 1.13; commitid H7weWPNTybvfuBEz; 1.13 date 2016.12.18.21.58.23; author tnn; state Exp; branches; next 1.12; commitid V0Iyezw5x9LmVvyz; 1.12 date 2016.12.16.16.21.54; author hans; state Exp; branches; next 1.11; commitid DqmHm519G2Az8eyz; 1.11 date 2016.08.20.16.18.03; author wiz; state Exp; branches; next 1.10; commitid jpyW5hqelhWqU3jz; 1.10 date 2016.08.20.13.40.30; author bsiegert; state Exp; branches; next 1.9; commitid GUOoD38XnsoX13jz; 1.9 date 2016.07.16.08.32.05; author wiz; state Exp; branches; next 1.8; commitid j6Ttixxpq5jlswez; 1.8 date 2016.06.17.11.56.24; author wiz; state Exp; branches; next 1.7; commitid XArMBdihwLX3wOaz; 1.7 date 2016.05.05.12.09.31; author wiz; state Exp; branches; next 1.6; commitid q1PZF0wVafMoYh5z; 1.6 date 2016.01.27.06.31.20; author wiz; state Exp; branches; next 1.5; commitid PmAk5HhwKPYvhxSy; 1.5 date 2015.12.14.14.09.05; author ryoon; state Exp; branches; next 1.4; commitid kGcFYIm7u9jqeVMy; 1.4 date 2015.11.04.15.05.52; author tnn; state Exp; branches; next 1.3; commitid biEjchu8gR1APMHy; 1.3 date 2015.11.04.01.17.45; author agc; state Exp; branches; next 1.2; commitid agUNgZr58GM2fIHy; 1.2 date 2015.09.30.12.56.47; author fhajny; state Exp; branches; next 1.1; commitid YKyjvIa5QskNehDy; 1.1 date 2015.07.04.05.26.21; author ryoon; state Exp; branches; next ; commitid mnj1gAsu2SAXzVry; desc @@ 1.21 log @Remove gnupg21, successor gnupg2. @ text @$NetBSD: distinfo,v 1.20 2017/08/11 01:12:43 ryoon Exp $ SHA1 (gnupg-2.1.23.tar.bz2) = c470777eaa9657ef3258068507065c9a7caef9eb RMD160 (gnupg-2.1.23.tar.bz2) = 622eef6554d77c2e0a2c04bd16dcebfbee2265ad SHA512 (gnupg-2.1.23.tar.bz2) = 8b8be0784129f5aa0ccde32a413a68c36e0e4131abe70c3eb186958c60f3df1023deb2db2db84d63ad30a3408a75c7622b430aff1a524ff28a24be511c952412 Size (gnupg-2.1.23.tar.bz2) = 6526734 bytes @ 1.20 log @Update to 2.1.23 Changelog: Noteworthy changes in version 2.1.23 ==================================== * gpg: "gpg" is now installed as "gpg" and not anymore as "gpg2". If needed, the new configure option --enable-gpg-is-gpg2 can be used to revert this. * gpg: Options --auto-key-retrieve and --auto-key-locate "local,wkd" are now used by default. Note: this enables keyserver and Web Key Directory operators to notice when a signature from a locally non-available key is being verified for the first time or when you intend to encrypt to a mail address without having the key locally. This new behaviour will eventually make key discovery much easier and mostly automatic. Disable this by adding no-auto-key-retrieve auto-key-locate local to your gpg.conf. * agent: Option --no-grab is now the default. The new option --grab allows to revert this. * gpg: New import option "show-only". * gpg: New option --disable-dirmngr to entirely disable network access for gpg. * gpg,gpgsm: Tweaked DE-VS compliance behaviour. * New configure flag --enable-all-tests to run more extensive tests during "make check". * gpgsm: The keygrip is now always printed in colon mode as documented in the man page. * Fixed connection timeout problem under Windows. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.19 2017/07/28 19:33:24 wiz Exp $ @ 1.19 log @Updated gnupg21 to 2.1.22. Noteworthy changes in version 2.1.22 (2017-07-28) ------------------------------------------------- * gpg: Extend command --quick-set-expire to allow for setting the expiration time of subkeys. * gpg: By default try to repair keys during import. New sub-option no-repair-keys for --import-options. * gpg,gpgsm: Improved checking and reporting of DE-VS compliance. * gpg: New options --key-origin and --with-key-origin. Store the time of the last key update from keyservers, WKD, or DANE. * agent: New option --ssh-fingerprint-digest. * dimngr: Lower timeouts on keyserver connection attempts and made it configurable. * dirmngr: Tor will now automatically be detected and used. The option --no-use-tor disables Tor detection. * dirmngr: Now detects a changed /etc/resolv.conf. * agent,dirmngr: Initiate shutdown on removal of the GnuPG home directory. * gpg: Avoid caching passphrase for failed symmetric encryption. * agent: Support for unprotected ssh keys. * dirmngr: Fixed name resolving on systems using only v6 nameservers. * dirmngr: Allow the use of TLS over http proxies. * w32: Change directory of the daemons after startup. * wks: New man pages for client and server. * Many other bug fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.18 2017/05/16 12:08:01 wiz Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.22.tar.bz2) = 706b806f7d8d328b4ffa67954c613fdd3dfed1b9 RMD160 (gnupg-2.1.22.tar.bz2) = 3318d4963ac8ed315fa7e5b46dd4f00b172f4d0d SHA512 (gnupg-2.1.22.tar.bz2) = d2ccbf32716a701df9e4ad5c19b682daf1a02b0bf8a1751a32af6db0c9284a4ee7df91310bed1a2087911a9964cb7b7f2ca9dad32a880ed1e1465d8048605e16 Size (gnupg-2.1.22.tar.bz2) = 6530433 bytes @ 1.18 log @Updated gnupg21 to 2.1.21. Noteworthy changes in version 2.1.21 (2017-05-15) ------------------------------------------------- * gpg,gpgsm: Fix corruption of old style keyring.gpg files. This bug was introduced with version 2.1.20. Note that the default pubring.kbx format was not affected. * gpg,dirmngr: Removed the skeleton config file support. The system's standard methods for providing default configuration files should be used instead. * w32: The Windows installer now allows installion of GnuPG without Administrator permissions. * gpg: Fixed import filter property match bug. * scd: Removed Linux support for Cardman 4040 PCMCIA reader. * scd: Fixed some corner case bugs in resume/suspend handling. * Many minor bug fixes and code cleanup. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.17 2017/04/20 09:55:28 wiz Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.21.tar.bz2) = 1852c066bc21893bc52026ead78edf50fdf15e13 RMD160 (gnupg-2.1.21.tar.bz2) = a414f5a86eea9243267e26525287a213208ddab2 SHA512 (gnupg-2.1.21.tar.bz2) = ddced44c37a220af8371ba36357fc0f23b22b57daec1cba6d4a1a015d345eac7f6060c88b22a5cd457ee364d0ec1f02175644aed1970a97abfa84a3d285bc512 Size (gnupg-2.1.21.tar.bz2) = 6472887 bytes @ 1.17 log @Add upstream bug report URL. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.16 2017/04/20 09:50:37 wiz Exp $ d3 4 a6 5 SHA1 (gnupg-2.1.20.tar.bz2) = 500ddae8e4225ae2e300934090f9b9a427b8def1 RMD160 (gnupg-2.1.20.tar.bz2) = 6f2448b16d69e81d0f6e82db5250f5acf0217b5f SHA512 (gnupg-2.1.20.tar.bz2) = 14a9890bc64e143f87cff121dd298d490d78dbd34e36883e0f25763ff9064e5706a7632893d7c5d0e8e9b8cf9cdb0d378b4ce1715348729f0fc080455b61eca9 Size (gnupg-2.1.20.tar.bz2) = 6456128 bytes SHA1 (patch-g13_sh-dmcrypt.c) = 0680c2a847e7fdf890697c9066a85ced7cdfb5f1 @ 1.16 log @Remove unneeded patch, confirmed by hans. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2017/04/16 07:21:48 wiz Exp $ d7 1 a7 1 SHA1 (patch-g13_sh-dmcrypt.c) = a2505039fff9e1e90ab81076776542fa83f55d5e @ 1.15 log @Updated gnupg21 to 2.1.20. Based on PR 52165 by Jonathan Schleifer. Noteworthy changes in version 2.1.20 (2017-04-03) ------------------------------------------------- * gpg: New properties 'expired', 'revoked', and 'disbaled' for the import and export filters. * gpg: New command --quick-set-primary-uid. * gpg: New compliance field for the --with-colon key listing. * gpg: Changed the key parser to generalize the processing of local meta data packets. * gpg: Fixed assertion failure in the TOFU trust model. * gpg: Fixed exporting of zero length user ID packets. * scd: Improved support for multiple readers. * scd: Fixed timeout handling for key generation. * agent: New option --enable-extended-key-format. * dirmngr: Do not add a keyserver to a new dirmngr.conf. Dirmngr uses a default keyserver. * dimngr: Do not treat TLS warning alerts as severe error when building with GNUTLS. * dirmngr: Actually take /etc/hosts in account. * wks: Fixed client problems on Windows. Published keys are now set to world-readable. * tests: Fixed creation of temporary directories. * A socket directory for a non standard GNUGHOME is now created on the fly under /run/user. Thus "gpgconf --create-socketdir" is now optional. The use of "gpgconf --remove-socketdir" to clean up obsolete socket directories is however recommended to avoid cluttering /run/user with useless directories. * Fixed build problems on some platforms. Noteworthy changes in version 2.1.19 (2017-03-01) ------------------------------------------------- * gpg: Print a warning if Tor mode is requested but the Tor daemon is not running. * gpg: New status code DECRYPTION_KEY to print the actual private key used for decryption. * gpgv: New options --log-file and --debug. * gpg-agent: Revamp the prompts to ask for card PINs. * scd: Support for multiple card readers. * scd: Removed option --debug-disable-ticker. Ticker is used only when it is required to watch removal of device/card. * scd: Improved detection of card inserting and removal. * dirmngr: New option --disable-ipv4. * dirmngr: New option --no-use-tor to explicitly disable the use of Tor. * dirmngr: The option --allow-version-check is now required even if the option --use-tor is also used. * dirmngr: Handle a missing nsswitch.conf gracefully. * dirmngr: Avoid PTR lookups for keyserver pools. The are only done for the debug command "keyserver --hosttable". * dirmngr: Rework the internal certificate cache to support classes of certificates. Load system provided certificates on startup. Add options --tls, --no-crl, and --systrust to the "VALIDATE" command. * dirmngr: Add support for the ntbtls library. * wks: Create mails with a "WKS-Phase" header. Fix detection of Draft-2 mode. * The Windows installer is now build with limited TLS support. * Many other bug fixes and new regression tests. See-also: gnupg-announce/2017q1/000402.html @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2017/02/04 07:12:35 maya Exp $ a6 1 SHA1 (patch-dirmngr_Makefile.in) = fa74bcf4ea214945c64d383dff039ab938ae1446 @ 1.14 log @gnupg21: update to 2.1.18. PR pkg/51942 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2016/12/18 21:58:23 tnn Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.18.tar.bz2) = b698012cc2d77c2652afd168a15e679d1394fa89 RMD160 (gnupg-2.1.18.tar.bz2) = a11128b9228b5b990fd8fe52923ea348d6571ffd SHA512 (gnupg-2.1.18.tar.bz2) = b8357f0a883a33c2e4f6ab5a8f5ddb171c899b7a2899e8ce4cac232938fe1dffb789a54980dfc4b758c4cb47f11f1fc570fea905244735048dfc6f06b3353baf Size (gnupg-2.1.18.tar.bz2) = 6308666 bytes @ 1.13 log @Update to gnupg21-2.1.16. * gpg: New algorithm for selecting the best ranked public key when using a mail address with -r, -R, or --locate-key. * gpg: New option --with-tofu-info to print a new "tfs" record in colon formatted key listings. * gpg: New option --compliance as an alternative way to specify options like --rfc2440, --rfc4880, et al. * gpg: Many changes to the TOFU implementation. * gpg: Improve usability of --quick-gen-key. * gpg: In --verbose mode print a diagnostic when a pinentry is launched. * gpg: Remove code which warns for old versions of gnome-keyring. * gpg: New option --override-session-key-fd. * gpg: Option --output does now work with --verify. * gpgv: New option --output to allow saving the verified data. * gpgv: New option --enable-special-filenames. * agent, dirmngr: New --supervised mode for use by systemd and alike. * agent: By default listen on all available sockets using standard names. * agent: Invoke scdaemon with --homedir. * dirmngr: On Linux now detects the removal of its own socket and terminates. * scd: Support ECC key generation. * scd: Support more card readers. * dirmngr: New option --allow-version-check to download a software version database in the background. * dirmngr: Use system provided CAs if no --hkp-cacert is given. * dirmngr: Use a default keyserver if none is explicitly set * gpgconf: New command --query-swdb to check software versions against an copy of an online database. * gpgconf: Print the socket directory with --list-dirs. * tools: The WKS tools now support draft version -02. * tools: Always build gpg-wks-client and install under libexec. * tools: New option --supported for gpg-wks-client. * The log-file option now accepts a value "socket://" to log to the socket named "S.log" in the standard socket directory. * Provide fake pinentries for use by tests cases of downstream developers. * Fixed many bugs and regressions. * Many changes and improvements for the test suite. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2016/12/16 16:21:54 hans Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.16.tar.bz2) = 67540161c9fe289153c4a5ea60f7cdce0ef48897 RMD160 (gnupg-2.1.16.tar.bz2) = 39ed72f52bae352893da7da7b191e1fc6ba4e6df SHA512 (gnupg-2.1.16.tar.bz2) = dbac27106e7800e30f286c3fd83ffab85d2b0acf29d6715ce3e388bfbece2a7deb19ebfe897c445d7a3d6d63e01560b9461567566e936504bc5d6cabe1444af7 Size (gnupg-2.1.16.tar.bz2) = 5840687 bytes @ 1.12 log @Make this build on SunOS. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2016/08/20 16:18:03 wiz Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.14.tar.bz2) = bc7609a3a0daf0ed0efb22f77b43e82f28e20e34 RMD160 (gnupg-2.1.14.tar.bz2) = 22d1f1791133f48ab71e900617ad7fd13c8a4e0f SHA512 (gnupg-2.1.14.tar.bz2) = 9f098bf589ecb841eb65fccad3ffd72c6645c8e186ddababf93c657173c485ed103f8f8a7d8bfeb86cfb9e065a1211c7d48b116c86d6aa97ed1b8c8a85e0a840 Size (gnupg-2.1.14.tar.bz2) = 5706058 bytes a7 1 SHA1 (patch-dirmngr_ks-engine-ldap.c) = 3a7d96d877cd52bed66c481af83da99c517d3380 a8 2 SHA1 (patch-kbx_Makefile.in) = 58f7c3711744a42d40f580944fb768f7aaaf1b68 SHA1 (patch-tests_gpgscm_Makefile.in) = 1418ab0a3a93ae69b49db5198aa68fd3dd369548 @ 1.11 log @Add upstream bug report URL, thanks bsiegert! @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2016/08/20 13:40:30 bsiegert Exp $ d9 1 @ 1.10 log @Link gpgscm against libintl to fix build failures. Add required minimum versions of libcrypt and libksba. Reported by Andreas Kusalananda Kähäri in mail to pkgsrc-user. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2016/07/16 08:32:05 wiz Exp $ d10 1 a10 1 SHA1 (patch-tests_gpgscm_Makefile.in) = 9251e0b4a124812ff8d6c859519cb5c7faa6b712 @ 1.9 log @Updated gnupg21 to 2.1.14. Noteworthy changes in version 2.1.14 (2016-07-14) ------------------------------------------------- * gpg: Removed options --print-dane-records and --print-pka-records. The new export options "export-pka" and "export-dane" can instead be used with the export command. * gpg: New options --import-filter and --export-filter. * gpg: New import options "import-show" and "import-export". * gpg: New option --no-keyring. * gpg: New command --quick-revuid. * gpg: New options -f/--recipient-file and -F/--hidden-recipient-file to directly specify encryption keys. * gpg: New option --mimemode to indicate that the content is a MIME part. Does only enable --textmode right now. * gpg: New option --rfc4880bis to allow experiments with proposed changes to the current OpenPGP specs. * gpg: Fix regression in the "fetch" sub-command of --card-edit. * gpg: Fix regression since 2.1 in option --try-all-secrets. * gpgv: Change default options for extra security. * gpgsm: No more root certificates are installed by default. * agent: "updatestartuptty" does now affect more environment variables. * scd: The option --homedir does now work with scdaemon. * scd: Support some more GEMPlus card readers. * gpgtar: Fix handling of '-' as file name. * gpgtar: New commands --create and --extract. * gpgconf: Tweak for --list-dirs to better support shell scripts. * tools: Add programs gpg-wks-client and gpg-wks-server to implement a Web Key Service. The configure option --enable-wks-tools is required to build them; they should be considered Beta software. * tests: Complete rework of the openpgp part of the test suite. The test scripts have been changed from Bourne shell scripts to Scheme programs. A customized scheme interpreter (gpgscm) is included. This change was triggered by the need to run the test suite on non-Unix platforms. * The rendering of the man pages has been improved. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.8 2016/06/17 11:56:24 wiz Exp $ d10 1 @ 1.8 log @Updated gnupg21 to 2.1.13. Noteworthy changes in version 2.1.13 (2016-06-16) ------------------------------------------------- * gpg: New command --quick-addkey. Extend the --quick-gen-key command. * gpg: New --keyid-format "none" which is now also the default. * gpg: New option --with-subkey-fingerprint. * gpg: Include Signer's UID subpacket in signatures if the secret key has been specified using a mail address and the new option --disable-signer-uid is not used. * gpg: Allow unattended deletion of a secret key. * gpg: Allow export of non-passphrase protected secret keys. * gpg: New status lines KEY_CONSIDERED and NOTATION_FLAGS. * gpg: Change status line TOFU_STATS_LONG to use '~' as a non-breaking-space character. * gpg: Speedup key listings in Tofu mode. * gpg: Make sure that the current and total values of a PROGRESS status line are small enough. * gpgsm: Allow the use of AES192 and SERPENT ciphers. * dirmngr: Adjust WKD lookup to current specs. * dirmngr: Fallback to LDAP v3 if v2 is is not supported. * gpgconf: New commands --create-socketdir and --remove-socketdir, new option --homedir. * If a /run/user/$UID directory exists, that directory is now used for IPC sockets instead of the GNUPGHOME directory. This fixes problems with NFS and too long socket names and thus avoids the need for redirection files. * The Speedo build systems now uses the new versions.gnupg.org server to retrieve the default package versions. * Fix detection of libusb on FreeBSD. * Speedup fd closing after a fork. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.7 2016/05/05 12:09:31 wiz Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.13.tar.bz2) = 6ec1ae6db7815fdbd4151fb6b0b7197b65b05d1f RMD160 (gnupg-2.1.13.tar.bz2) = 77bd28c3ae30f22d0da3d4678b92e1d1e3247640 SHA512 (gnupg-2.1.13.tar.bz2) = 37b6271cdd68fc1d0ec848fa742932afbe8fc662597bcf20398585b51171e7abce40d99ab02f816160b34f7a8d1c60c6e43d8e0192ed107a521579b870b3ebd3 Size (gnupg-2.1.13.tar.bz2) = 5545361 bytes @ 1.7 log @Updated gnupg21 to 2.1.12. Noteworthy changes in version 2.1.12 (2016-05-04) ------------------------------------------------- * gpg: New --edit-key sub-command "change-usage" for testing purposes. * gpg: Out of order key-signatures are now systematically detected and fixed by --edit-key. * gpg: Improved detection of non-armored messages. * gpg: Removed the extra prompt needed to create Curve25519 keys. * gpg: Improved user ID selection for --quick-sign-key. * gpg: Use the root CAs provided by the system with --fetch-key. * gpg: Add support for the experimental Web Key Directory key location service. * gpg: Improve formatting of Tofu messages and emit new Tofu specific status lines. * gpgsm: Add option --pinentry-mode to support a loopback pinentry. * gpgsm: A new pubring.kbx is now created with the header blob so that gpg can detect that the keybox format needs to be used. * agent: Add read support for the new private key protection format openpgp-s2k-ocb-aes. * agent: Add read support for the new extended private key format. * agent: Default to --allow-loopback-pinentry and add option --no-allow-loopback-pinentry. * scd: Changed to use the new libusb 1.0 API for the internal CCID driver. * dirmngr: The dirmngr-client does now auto-detect the PEM format. * g13: Add experimental support for dm-crypt. * w32: Tofu support is now available with the Speedo build method. * w32: Removed the need for libiconv.dll. * The man pages for gpg and gpgv are now installed under the correct name (gpg2 or gpg - depending on a configure option). * Lots of internal cleanups and bug fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2016/01/27 06:31:20 wiz Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.12.tar.bz2) = 3b01a35ac04277ea31cc01b4ac4e230e54b5480c RMD160 (gnupg-2.1.12.tar.bz2) = 573b0e68882e6226daa0d34c4027a7078ce84f2e SHA512 (gnupg-2.1.12.tar.bz2) = fdf24d4980ba4011840fd2316a856db2bf50e531071c2bfb899af2b4f5580a9f2992f85a451670a7121d04b608bfb147cefdca1c6f6eb55bc23ecfe5052639e6 Size (gnupg-2.1.12.tar.bz2) = 5510723 bytes @ 1.6 log @Update gnupg21 to 2.1.11: Noteworthy changes in version 2.1.11 (2016-01-26) ------------------------------------------------- * gpg: New command --export-ssh-key to replace the gpgkey2ssh tool. * gpg: Allow to generate mail address only keys with --gen-key. * gpg: "--list-options show-usage" is now the default. * gpg: Make lookup of DNS CERT records holding an URL work. * gpg: Emit PROGRESS status lines during key generation. * gpg: Don't check for ambigious or non-matching key specification in the config file or given to --encrypt-to. This feature will return in 2.3.x. * gpg: Lock keybox files while updating them. * gpg: Solve rare error on Windows during keyring and Keybox updates. * gpg: Fix possible keyring corruption. (bug#2193) * gpg: Fix regression of "bkuptocard" sub-command in --edit-key and remove "checkbkupkey" sub-command introduced with 2.1. (bug#2169) * gpg: Fix internal error in gpgv when using default keyid-format. * gpg: Fix --auto-key-retrieve to work with dirmngr.conf configured keyservers. (bug#2147). * agent: New option --pinentry-timeout. * scd: Improve unplugging of USB readers under Windows. * scd: Fix regression for generating RSA keys on card. * dirmmgr: All configured keyservers are now searched. * dirmngr: Install CA certificate for hkps.pool.sks-keyservers.net. Use this certiticate even if --hkp-cacert is not used. * gpgtar: Add actual encryption code. gpgtar does now fully replace gpg-zip. * gpgtar: Fix filename encoding problem on Windows. * Print a warning if a GnuPG component is using an older version of gpg-agent, dirmngr, or scdaemon. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.5 2015/12/14 14:09:05 ryoon Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.11.tar.bz2) = 4af2032a60ff22e322b1c5b270d6d2228f59a3a3 RMD160 (gnupg-2.1.11.tar.bz2) = 41ceefd667ac7b2b5e66e8b534b614825d4319c2 SHA512 (gnupg-2.1.11.tar.bz2) = b39f3fb461ad879b1909808434c4b03dab4d1d79aa674fbc88e3d50960184c0c25a840206ff32b760672f1b2153253f4d7a88eb726d8662f629fa04b6739ad31 Size (gnupg-2.1.11.tar.bz2) = 5224007 bytes @ 1.5 log @Update to 2.1.10 Changelog: Noteworthy changes in version 2.1.10 (2015-12-04) ------------------------------------------------- * gpg: New trust models "tofu" and "tofu+pgp". * gpg: New command --tofu-policy. New options --tofu-default-policy and --tofu-db-format. * gpg: New option --weak-digest to specify hash algorithms which should be considered weak. * gpg: Allow the use of multiple --default-key options; take the last available key. * gpg: New option --encrypt-to-default-key. * gpg: New option --unwrap to only strip the encryption layer. * gpg: New option --only-sign-text-ids to exclude photo IDs from key signing. * gpg: Check for ambigious or non-matching key specification in the config file or given to --encrypt-to. * gpg: Show the used card reader with --card-status. * gpg: Print export statistics and an EXPORTED status line. * gpg: Allow selecting subkeys by keyid in --edit-key. * gpg: Allow updating the expiration time of multiple subkeys at once. * dirmngr: New option --use-tor. For full support this requires libassuan version 2.4.2 and a patched version of libadns (e.g. adns-1.4-g10-7 as used by the standard Windows installer). * dirmngr: New option --nameserver to specify the nameserver used in Tor mode. * dirmngr: Keyservers may again be specified by IP address. * dirmngr: Fixed problems in resolving keyserver pools. * dirmngr: Fixed handling of premature termination of TLS streams so that large numbers of keys can be refreshed via hkps. * gpg: Fixed a regression in --locate-key [since 2.1.9]. * gpg: Fixed another bug for keyrings with legacy keys. * gpgsm: Allow combinations of usage flags in --gen-key. * Make tilde expansion work with most options. * Many other cleanups and bug fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.4 2015/11/04 15:05:52 tnn Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.10.tar.bz2) = 4aa2594d2d364fe7708a9739ae7cebd251e536c4 RMD160 (gnupg-2.1.10.tar.bz2) = b29e086cb65bbe40b3a6021b3c4eb0083cd0a344 SHA512 (gnupg-2.1.10.tar.bz2) = ceea93a7e7d30e07839bcc52d4246fd5be1ec81a8c4d4d62059e2b0c0e58fab07a1531016f82bcc506340653d66c73541dd3f5897df7691abeb4068d94957003 Size (gnupg-2.1.10.tar.bz2) = 5173253 bytes @ 1.4 log @Update to gnupg-2.1.9. gnupg-2.1.9: * gpg: Allow fetching keys via OpenPGP DANE (--auto-key-locate). New option --print-dane-records. * gpg: Fix for a problem with PGP-2 keys in a keyring. * gpg: Fail with an error instead of a warning if a modern cipher algorithm is used without a MDC. * agent: New option --pinentry-invisible-char. * agent: Always do a RSA signature verification after creation. * agent: Fix a regression in ssh-add-ing Ed25519 keys. * agent: Fix ssh fingerprint computation for nistp384 and EdDSA. * agent: Fix crash during passprase entry on some platforms. * scd: Change timeout to fix problems with some 2.1 cards. * dirmngr: Displayed name is now Key Acquirer. * dirmngr: Add option --keyserver. Deprecate that option for gpg. Install a dirmngr.conf file from a skeleton for new installations. gnupg-2.1.8: * gpg: Sending very large keys to the keyservers works again. * gpg: Validity strings in key listings are now again translatable. * gpg: Emit FAILURE status lines to help GPGME. * gpg: Does not anymore link to Libksba to reduce dependencies. * gpgsm: Export of secret keys via Assuan is now possible. * agent: Raise the maximum passphrase length from 100 to 255 bytes. * agent: Fix regression using EdDSA keys with ssh. * Does not anymore use a build timestamp by default. * The fallback encoding for broken locale settings changed from Latin-1 to UTF-8. * Many code cleanups and improved internal documentation. * Various minor bug fixes. gnupg-2.1.7: * gpg: Support encryption with Curve25519 if Libgcrypt 1.7 is used. * gpg: In the --edit-key menu: Removed the need for "toggle", changed how secret keys are indicated, new commands "fpr *" and "grip". * gpg: More fixes related to legacy keys in a keyring. * gpgv: Does now also work with a "trustedkeys.kbx" file. * scd: Support some feature from the OpenPGP card 3.0 specs. * scd: Improved ECC support * agent: New option --force for the DELETE_KEY command. * w32: Look for the Pinentry at more places. * Dropped deprecated gpgsm-gencert.sh * Various other bug fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.3 2015/11/04 01:17:45 agc Exp $ d3 5 a7 5 SHA1 (gnupg-2.1.9.tar.bz2) = 119bab38d2ff3a849be62914be9bf7333da68883 RMD160 (gnupg-2.1.9.tar.bz2) = 4fcc251aa7da95e647984469277a49153533d1e8 SHA512 (gnupg-2.1.9.tar.bz2) = c19b8cac42b7060caada230b77f36a0b0ed0a05efd519818c5b4057ef0fcb16602f2f3ade2409de2ef353a9e2acc3e5fa106a4449c6929a36a599a82194c0ee0 Size (gnupg-2.1.9.tar.bz2) = 4925167 bytes SHA1 (patch-dirmngr_Makefile.in) = 4287bfd66eab7918e98cf9b4e50a2f7f9e18ab09 a8 1 SHA1 (patch-doc_Makefile.in) = bcd467d0fad08198b74892b240d3adeb72b5c52f @ 1.3 log @Add SHA512 digests for distfiles for security category Problems found locating distfiles: Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz Package libidea: missing distfile libidea-0.8.2b.tar.gz Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2 Package uvscan: missing distfile vlp4510e.tar.Z Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.2 2015/09/30 12:56:47 fhajny Exp $ d3 4 a6 4 SHA1 (gnupg-2.1.6.tar.bz2) = 9e8157b3386da04760657ce3117fc4dc570c57c5 RMD160 (gnupg-2.1.6.tar.bz2) = 42db712fe0669caf246dbf46aca429b392614e2b SHA512 (gnupg-2.1.6.tar.bz2) = ae8aafe770336c83badf5610fe37f4ddc488786e3604780627893b636161d8407f3fd782538799e2b2a02e31c97468464372017fa52b5d9ed1bd31c85d9b3763 Size (gnupg-2.1.6.tar.bz2) = 4917722 bytes d9 2 a10 2 SHA1 (patch-doc_Makefile.in) = 1f5dc55c6751322e2a5436b0a66a530d231b4a75 SHA1 (patch-kbx_Makefile.in) = f4b06a913fe86dca1170eb78ed767b8889a43dd9 @ 1.2 log @Fix build on SunOS. May unlock code on some platforms, PKGREVISION+ @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.1 2015/07/04 05:26:21 ryoon Exp $ d5 1 @ 1.1 log @Import gnupg2-2.1.6 as security/gnupg21. GnuPG-2 provides several utilities that are used by mail clients, such as Kmail and Balsa, including OpenPGP and S/MIME support. GnuPG-2 has a different architecture than GnuPG-1 (e.g. 1.4.5) in that it splits up functionality into several modules. However, both versions may be installed alongside without any conflict. In fact, the gpg version from GnuPG-1 is able to make use of the gpg-agent as included in GnuPG-2 and allows for seamless passphrase caching. The advantage of GnuPG-1 is its smaller size and the lack of dependency on other modules at run and build time. Packaged by adanbsd as pkgsrc/wip/gnupg21. @ text @d1 1 a1 1 $NetBSD$ d6 2 d9 1 @