Commit Graph

60 Commits

Author SHA1 Message Date
espie
caf501cd02 new plists.
gnutls depends on lzo.
2004-09-15 18:35:58 +00:00
xsa
ef57ea61fd new-style MODULES. 2004-08-10 09:26:13 +00:00
naddy
c57363e8fb fix up MODGNU_CONFIG_GUESS_DIRS 2004-08-04 14:51:31 +00:00
naddy
bd873807a9 remove workaround for gcc2.95/sparc64 optimizer bug: sha1.c compiles fine now 2004-02-24 19:48:16 +00:00
naddy
12b2fb8b20 @dirrm shared directories 2003-12-16 19:52:23 +00:00
naddy
112339c1d4 remove WWW lines 2003-12-15 21:54:59 +00:00
margarida
39cbe2af30 Security fix:
Add workaround for GnuPG's ElGamal signing keys bug.
URL: http://lists.gnupg.org/pipermail/gnupg-announce/2003q4/000276.html
2003-12-13 03:22:16 +00:00
brad
9f40457b1b run these tests as part of the regression target. 2003-06-09 17:24:47 +00:00
markus
0ea60760b9 re-add IDEA flavor; ok sturm@ 2003-06-03 10:21:33 +00:00
brad
2bbfff1f3a upgrade to gnupg 1.2.2
A bug was discovered in the key validation code.  This bug causes keys
with more than one user ID to give all user IDs on the key the amount
of validity given to the most-valid key.

http://marc.theaimsgroup.com/?l=bugtraq&m=105215110111174&w=2
--
MAINTAINER ok
2003-05-27 14:54:43 +00:00
pvalchev
826d00d2e7 adapt to new gas syntax for i386's switch to ELF 2003-04-17 08:24:03 +00:00
reinhard
10eeb924d6 no longer used idea flavour patches 2003-02-14 12:25:32 +00:00
reinhard
40deb6feb3 update MASTER_SITES; inspired by Xavier Santolaria <xsa@ucmb.ulb.ac.be> 2003-02-05 18:35:03 +00:00
pvalchev
de5a1ce02c cast NULL sentinel to void * so it is 64bit on alpha & sparc64 2002-12-28 23:29:13 +00:00
mark
e05b6552dc gnupg-1.2.1 update
tested on macppc, i386

ok reinhard@
2002-11-16 05:02:21 +00:00
drahn
2218d43562 powerpc does require pic flags when building shared library, do not remove
them during config. ok pvalchev@
2002-09-30 00:31:30 +00:00
naddy
1c61fd68ae Fix idea flavor: Revive patch to cipher/Makefile.am because configure
extracts the list of modules to build from there.  Sic.
2002-07-28 15:01:26 +00:00
fgsch
9ce3618d95 - use in tree gas, thus removing binutils dependency.
- move idea patches to patches directory.
- remove unneeded patch-cipher_Makefile_am.
- remove deprecated NEED_VERSION.

you need an updated gas for this to work on i386.
discussed with reinhard@.
2002-07-19 19:27:42 +00:00
reinhard
1a9bf6a6cb update to gnupg-1.0.7; thx Nikolay Sturm
* use 'as' of new binutils on non elf-toolchain archs

see http://lists.gnupg.org/pipermail/gnupg-announce/2002q2/000251.html
for a list of changes
2002-07-05 07:13:00 +00:00
reinhard
94080bca6f sysctl; Jacob Meuser <jakemsr@jakemsr.com> 2002-01-28 11:34:56 +00:00
reinhard
c9564112ae - pkg/MESSAGE from Sebastian Stark <seb@todesplanet.de>
- distinfo, NEED_VERSION
- REGRESS_TARGET
- maintainer; markus@
2001-12-09 12:51:40 +00:00
pvalchev
be54d47d8c CONFIGURE_STYLE=gnu w/ proper MODGNU_CONFIG_GUESS_DIRS
needed for the powerpc -> macppc name change
2001-09-28 06:02:12 +00:00
lebel
33f764e47a Removed patch-g10_mainproc.c mostly because this patch was related to
the 1.0.4 release and because the problem was later fixed in 1.0.5 (and
later versions).  Here is a quote from the NEWS file about this issue:

--cut--
* WARNING: The semantics of --verify have changed to address a
problem with detached signature detection. --verify now ignores signed
material given on stdin unless this is requested by using a "-" as the
name for the file with the signed material.  Please check all your
detached signature handling applications and make sure that they don't
pipe the signed material to stdin without using a filename together with
"-" on the the command line.
--cut--

The patch introduce a problem in the way verifying a signature returned
a value of 2 instead of 0 (when the signature was properly verified).
The symptom showed itself in mutt for example.

This problem was found by Anders Arnholm <anders@arnholm.nu>

markus@ asked me to commit this.
2001-08-22 15:22:40 +00:00
pvalchev
db891178f7 correct asm-syntax for powerpc. pointed by drahn, ok markus 2001-08-09 16:48:35 +00:00
reinhard
0ee577796d add new MASTER_SITES for idea flavor 2001-07-12 16:07:17 +00:00
naddy
11533c99b9 fix plist: remove @dirrm's for directories not under exclusive control
of this package
2001-06-05 16:02:32 +00:00
reinhard
9879992112 update to gnupg-1.0.6; SECURITY FIX
*) Fixed a format string bug which is exploitable if --batch is not used.
*) Checked all translations for format strings bugs.
*) Removed the Russian translation due to too many bugs.
*) Fixed keyserver access and expire time calculation.

ok maintainer
2001-06-05 09:19:05 +00:00
jakob
436c5ffef5 update to v1.0.5. ok markus@. 2001-05-23 15:28:49 +00:00
reinhard
cbf72a17e0 better fetch target for idea flavor 2001-04-17 20:53:04 +00:00
reinhard
fb98f9a8d8 kill pkg/COMMENT 2001-03-23 16:30:16 +00:00
reinhard
36bdf033ff SECURITY UPDATE (Klima-Rosa attack)
patch from:
Florian Weimer <Florian.Weimer@RUS.UNI-STUTTGART.DE>
# http://cert.uni-stuttgart.de/files/fw/gnupg-klima-rosa.diff
# http://cert.uni-stuttgart.de/files/fw/gnupg-klima-rosa.diff.asc

It introduces additional consistency checks, as suggested by the
authors of the paper.  The checks are slightly different, but they
make the two additional attacks infeasible, I think.  In the future,
it might be a good idea to add a check the generated signature for
validity, this will detect bugs in the MPI implementation which could
result in a revealed secret key, too.


ok markus@
2001-03-23 13:10:20 +00:00
brad
c7494118eb fixup Makefile 2001-03-05 18:54:06 +00:00
brad
a184931e0b - trim out unnecessary mention of additional modules
- better entry for FLAVORs
2001-03-05 18:53:10 +00:00
reinhard
3a4405288e patches for idea flavor 2001-03-03 17:20:26 +00:00
reinhard
f4aa1ff9a5 o) minor fix for one of the MASTER_SITES; Pete Fritchman <petef@databits.net>
o) use /dev/arandom; suggested by markus@
o) add idea FLAVOR; suggested by markus@
o) add another MASTER_SITE
o) bump NEED_VERSION
2001-03-03 17:17:28 +00:00
reinhard
64f02cb85e increment PKGNAME; thx naddy@ for pointing out 2000-12-23 16:48:06 +00:00
reinhard
5e2899097a Security update, from the original patch:
It has been pointed out that there is another bug in the signature
verification code of GnuPG.

         * This can easily lead to false positives *

All versions of GnuPG released before today are vulnerable!

To check a detached singature you normally do this:

  gpg --verify foo.sig foo.txt

The problem here is that someone may replace foo.sig with a standard
signature containing some arbitrary signed text and its signature,
and then modify foo.txt - GnuPG does not detect this - Ooops.

The solution for this problem ist not easy and needs a change in the
semantics of the --verify command: It will not any longer be
possible to do this:

  gpg --verify foo.sig <foo.txt

Instead you have to use this

  gpg --verify foo.sig - <foo.txt

The difference here is that gpg sees 2 files on the command lines
and thereby knows that it should check a detached signature.  We
really need this information and there is no way to avoid that
change, sorry.  You should make sure that you never use the first
form, because this will lead to false positives when foo.sig is not
a detached signature - gnupg does detect the other case and warns
you, but this is not sufficient.  If you use GnuPG from other
applications, please change it.

ok markus@
2000-12-23 15:20:59 +00:00
markus
07aae00303 security update, since 1.0.3 does not detect modifications of files with multiple signatures 2000-10-30 12:52:32 +00:00
espie
aff2e05260 Maintainer 2000-10-22 17:02:40 +00:00
aaron
41a5d86f80 Fix some pkg/COMMENT formatting:
- Decapitalize first letter of comment if appropriate.
- Remove trailing blank lines.
- Remove punctuation.
- Remove version numbers which are often overlooked when updating.
- espie@ ok
2000-09-22 14:55:55 +00:00
brad
1ea6743d0d upgrade to gnupg 1.0.3 2000-09-19 13:18:50 +00:00
brad
da9686bef0 remove old man page; pointed out by Fabian Kroenner <escher@spoiled.org> 2000-08-12 18:21:45 +00:00
brad
144aeba379 upgrade to gnupg 1.0.2 2000-07-13 19:39:24 +00:00
brad
1f8afbaa3d - add HOMEPAGE
- GNU_CONFIGURE -> CONFIGURE_STYLE
- remove license type
- mkdir -> ${INSTALL_DATA_DIR}
- add @comment with RCS id to PLIST
2000-06-29 06:06:31 +00:00
espie
0fd05ef2ce Move all NEED_VERSION right after CATEGORY 2000-03-24 22:11:32 +00:00
espie
6f43c05443 Fake. Leave gnu-make along for now, it suspiciously looks like an OpenBSD
make bug.
2000-03-11 02:54:18 +00:00
turan
504f314d16 espie will not shut up about this, DISTF -> DISTFILES, PKG -> PACKAGE 2000-02-15 05:03:51 +00:00
turan
1574b9aa2e gpl licenses 2000-02-12 08:02:07 +00:00
brad
2cddf37962 upgrade to gnupg 1.0.1 (minus the html documentation which does not come
with the distribution anymore it seems)
1999-12-23 02:54:24 +00:00
brad
e0d38f42fe remove unnecessary CONFIGURE_ENV tag; ok'd by markus@ 1999-11-30 23:13:52 +00:00