Module::Signature adds cryptographic authentications to CPAN

distributions, via the special SIGNATURE file.
2008-07-19 12:12:53 +00:00 · 2008-07-19 12:12:53 +00:00 · 0dff7e38e8
commit 0dff7e38e8
parent 7c39318b90
5 changed files with 77 additions and 0 deletions
--- a/security/p5-Module-Signature/Makefile
+++ b/security/p5-Module-Signature/Makefile
@ -0,0 +1,27 @@
+# $OpenBSD: Makefile,v 1.1.1.1 2008/07/19 12:12:53 bluhm Exp $
+
+COMMENT =		module signature file manipulation
+
+DISTNAME =		Module-Signature-0.55
+
+CATEGORIES =		security
+
+MAINTAINER =		Alexander Bluhm <bluhm@openbsd.org>
+
+# MIT
+PERMIT_PACKAGE_CDROM =	Yes
+PERMIT_PACKAGE_FTP =	Yes
+PERMIT_DISTFILES_CDROM =Yes
+PERMIT_DISTFILES_FTP =	Yes
+
+MODULES =		cpan
+BUILD_DEPENDS =		${RUN_DEPENDS}
+RUN_DEPENDS =		::security/gnupg ::security/p5-Digest-SHA
+
+post-install:
+	${INSTALL_DATA_DIR} ${PREFIX}/share/p5-Module-Signature
+.for f in *.pub
+	${INSTALL_DATA} ${WRKDIST}/${f} ${PREFIX}/share/p5-Module-Signature
+.endfor
+
+.include <bsd.port.mk>
--- a/security/p5-Module-Signature/distinfo
+++ b/security/p5-Module-Signature/distinfo
@ -0,0 +1,5 @@
+MD5 (Module-Signature-0.55.tar.gz) = DiVxp2xL831h2fJNca+9dw==
+RMD160 (Module-Signature-0.55.tar.gz) = Bu2IRyWIlP1fSbWo86Hxq1jedUo=
+SHA1 (Module-Signature-0.55.tar.gz) = zaGFu/TCYauY3D5UnbOu8m8G0nY=
+SHA256 (Module-Signature-0.55.tar.gz) = m1P4uzR0bPDp4kbF8c8q8F6xt+IBeyTcNr4ojTTkWcE=
+SIZE (Module-Signature-0.55.tar.gz) = 69226
--- a/security/p5-Module-Signature/patches/patch-Makefile_PL
+++ b/security/p5-Module-Signature/patches/patch-Makefile_PL
@ -0,0 +1,29 @@
+$OpenBSD: patch-Makefile_PL,v 1.1.1.1 2008/07/19 12:12:53 bluhm Exp $
+--- Makefile.PL.orig	Sun Jul 30 03:11:14 2006
+++ Makefile.PL	Thu Jul 17 23:40:31 2008
+@@ -58,23 +58,8 @@ my @OPEN_PGP = qw{
+      Crypt::OpenPGP           1.00
+ };
+ 
+-# Is openpgp currently installed
+-if ( can_use('Crypt::OpenPGP') ) {
+-	# If OpenPGP is already installed, so relist all the
+-	# dependencies so they will upgrade as needed.
+-	requires( @OPEN_PGP );
+-
+-} elsif ( locate_gpg() ) {
+-	# We SHOULD have gpg, double-check formally
+-	requires_external_bin 'gpg';
+-
+-} elsif ( can_cc() and $ENV{AUTOMATED_TESTING} ) {
+-	# Dive headlong into a full Crypt::OpenPGP install.
+-	requires( @OPEN_PGP );
+-} else {
+-	# Ask the user what to do
+-	ask_user();
+-}
+# We SHOULD have gpg, double-check formally
+requires_external_bin 'gpg';
+ 
+ unless ( can_run('diff') ) {
+ 	# We know Text::Diff fails on Cygwin (for now)
--- a/security/p5-Module-Signature/pkg/DESCR
+++ b/security/p5-Module-Signature/pkg/DESCR
@ -0,0 +1,7 @@
+Module::Signature adds cryptographic authentications to CPAN
+distributions, via the special SIGNATURE file.
+
+You should add the module signature keys to your public keyring:
+gpg --import ${PREFIX}/share/p5-Module-Signature/*.pub
+
+Use cpansign -v to verify a module's signature before you build it.
--- a/security/p5-Module-Signature/pkg/PLIST
+++ b/security/p5-Module-Signature/pkg/PLIST
@ -0,0 +1,9 @@
+@comment $OpenBSD: PLIST,v 1.1.1.1 2008/07/19 12:12:53 bluhm Exp $
+bin/cpansign
+${P5SITE}/Module/
+${P5SITE}/Module/Signature.pm
+@man man/man1/cpansign.1
+@man man/man3p/Module::Signature.3p
+share/p5-Module-Signature/
+share/p5-Module-Signature/AUDREY2006.pub
+share/p5-Module-Signature/PAUSE2003.pub