pool/dkgpg
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Accepting request 706876 from home:kbabioch:branches:security:privacy

Browse Source 
- Update to version 1.1.2:
    This release adds a lot of features to some programs: two new options
    ("-K" and "-f") allow dkg-keysign to read the certification key from a
    keyring instead of a single key block file. Moreover, with option "-a"
    an interactive confirmation by the user is required for each signature.
    Passive support of V5 keys (cf. draft RFC 4880bis) has been added for
    all programs, however, dkg-generate still generates V4 keys only,
    because this new feature of the draft is not widely spread. There is
    also a new encryption capability: an empty KEYSPEC tells dkg-encrypt to
    create a symmetric-key encrypted session key, i.e., the user has to
    supply a passphrase for encryption and decryption without any public-key
    cryptography involved. Last but not least, two bugs have been fixed:
    First, dkg-decrypt failed on many ZIP-compressed OpenPGP messages with 
    "ZLIB ERROR: -3 invalid block type" due to a bug in decompression logic.
    Second, dkg-decrypt failed in a special case of symmetric-key encrypted
    session keys. Finally, the non-installing program dkg-fuzzer (generates
    fuzzy samples of somehow corrupted OpenPGP stuctures) has been added.

OBS-URL: https://build.opensuse.org/request/show/706876
OBS-URL: https://build.opensuse.org/package/show/security:privacy/dkgpg?expand=0&rev=19
This commit is contained in:
Karol Babioch 2019-06-02 08:40:24 +00:00 committed by Git OBS Bridge
parent 1d09e0e18d
commit dc02f01798
6 changed files with 32 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
dkgpg-1.1.1.tar.gz
View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:3396c4554b01edc7004e14c1792b294ebefcd0045f3fab09ae9cc2002a903eb8
size 749594

6
dkgpg-1.1.1.tar.gz.sig
View File

@ -1,6 +0,0 @@
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQR29zARMp0n2418P5dPWE64+yvhTwUCXMSvGwAKCRBPWE64+yvh
T+BbAJ9K7WvpilcH18gkHF18UVp5tzeFxwCfWEN+jAOZn/YaVlYUfQqdoKWBC4Y=
=Uaxd
-----END PGP SIGNATURE-----

3
dkgpg-1.1.2.tar.gz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:83f0f8fa061106a3062fc2536cdb5861cb9fed56920ffdf6f061b7eeca83936f
size 769856

6
dkgpg-1.1.2.tar.gz.sig Normal file
View File

@ -0,0 +1,6 @@
-----BEGIN PGP SIGNATURE-----
iF0EABECAB0WIQR29zARMp0n2418P5dPWE64+yvhTwUCXPJyywAKCRBPWE64+yvh
T/CNAJ9m8/2HemHS4Yk4MXylGRfHGrO05ACdGE0UQur+UAxQ9vpFRMiXvTEajic=
=Y491
-----END PGP SIGNATURE-----

21
dkgpg.changes
View File

@ -1,3 +1,24 @@
-------------------------------------------------------------------
Sun Jun 2 08:25:15 UTC 2019 - Karol Babioch <kbabioch@suse.de>
- Update to version 1.1.2:
This release adds a lot of features to some programs: two new options
("-K" and "-f") allow dkg-keysign to read the certification key from a
keyring instead of a single key block file. Moreover, with option "-a"
an interactive confirmation by the user is required for each signature.
Passive support of V5 keys (cf. draft RFC 4880bis) has been added for
all programs, however, dkg-generate still generates V4 keys only,
because this new feature of the draft is not widely spread. There is
also a new encryption capability: an empty KEYSPEC tells dkg-encrypt to
create a symmetric-key encrypted session key, i.e., the user has to
supply a passphrase for encryption and decryption without any public-key
cryptography involved. Last but not least, two bugs have been fixed:
First, dkg-decrypt failed on many ZIP-compressed OpenPGP messages with
"ZLIB ERROR: -3 invalid block type" due to a bug in decompression logic.
Second, dkg-decrypt failed in a special case of symmetric-key encrypted
session keys. Finally, the non-installing program dkg-fuzzer (generates
fuzzy samples of somehow corrupted OpenPGP stuctures) has been added.
-------------------------------------------------------------------
Sun Apr 28 13:14:20 UTC 2019 - Karol Babioch <kbabioch@suse.de>

4
dkgpg.spec
View File

@ -17,7 +17,7 @@
Name: dkgpg
Version: 1.1.1
Version: 1.1.2
Release: 0
Summary: Distributed Key Generation (DKG) and Threshold Cryptography for OpenPGP
License: GPL-2.0-or-later
@ -28,7 +28,7 @@ Source2: https://download.savannah.gnu.org/releases/dkgpg/%{name}-%{versi
Source3: %{name}.keyring
BuildRequires: gcc-c++
BuildRequires: gmp-devel >= 4.2
BuildRequires: libTMCG-devel >= 1.3.15
BuildRequires: libTMCG-devel >= 1.3.18
BuildRequires: libbz2-devel
BuildRequires: libgcrypt-devel >= 1.6
BuildRequires: libgpg-error-devel >= 1.12