From 8912df4de5058ce15739009c861218d32000254a8ad420f911e4e06563ccc475 Mon Sep 17 00:00:00 2001 From: Andreas Stieger Date: Mon, 28 Aug 2017 17:36:56 +0000 Subject: [PATCH] Accepting request 519191 from security:privacy GnuPG 2.2.0 bsc#1054088 OBS-URL: https://build.opensuse.org/request/show/519191 OBS-URL: https://build.opensuse.org/package/show/Base:System/gpg2?expand=0&rev=177 --- gnupg-2.0.18-files-are-digests.patch | 30 +++++++++++------------ gnupg-2.1.22.tar.bz2 | 3 --- gnupg-2.1.22.tar.bz2.sig | Bin 310 -> 0 bytes gnupg-2.2.0.tar.bz2 | 3 +++ gnupg-2.2.0.tar.bz2.sig | Bin 0 -> 310 bytes gpg2.changes | 34 +++++++++++++++++++++++++++ gpg2.spec | 5 ++-- 7 files changed, 55 insertions(+), 20 deletions(-) delete mode 100644 gnupg-2.1.22.tar.bz2 delete mode 100644 gnupg-2.1.22.tar.bz2.sig create mode 100644 gnupg-2.2.0.tar.bz2 create mode 100644 gnupg-2.2.0.tar.bz2.sig diff --git a/gnupg-2.0.18-files-are-digests.patch b/gnupg-2.0.18-files-are-digests.patch index 11dbac6..7035cc6 100644 --- a/gnupg-2.0.18-files-are-digests.patch +++ b/gnupg-2.0.18-files-are-digests.patch @@ -4,11 +4,11 @@ g10/sign.c | 68 ++++++++++++++++++++++++++++++++++++++++++++++++++++------ 3 files changed, 67 insertions(+), 6 deletions(-) -Index: gnupg-2.1.22/g10/gpg.c +Index: gnupg-2.1.23/g10/gpg.c =================================================================== ---- gnupg-2.1.22.orig/g10/gpg.c -+++ gnupg-2.1.22/g10/gpg.c -@@ -379,6 +379,7 @@ enum cmd_and_opt_values +--- gnupg-2.1.23.orig/g10/gpg.c 2017-08-09 15:46:17.000000000 +0200 ++++ gnupg-2.1.23/g10/gpg.c 2017-08-10 16:21:26.692847431 +0200 +@@ -380,6 +380,7 @@ enum cmd_and_opt_values oTTYtype, oLCctype, oLCmessages, @@ -16,7 +16,7 @@ Index: gnupg-2.1.22/g10/gpg.c oXauthority, oGroup, oUnGroup, -@@ -828,6 +829,7 @@ static ARGPARSE_OPTS opts[] = { +@@ -829,6 +830,7 @@ static ARGPARSE_OPTS opts[] = { ARGPARSE_s_s (oWeakDigest, "weak-digest","@"), ARGPARSE_s_n (oUnwrap, "unwrap", "@"), ARGPARSE_s_n (oOnlySignTextIDs, "only-sign-text-ids", "@"), @@ -24,15 +24,15 @@ Index: gnupg-2.1.22/g10/gpg.c /* Aliases. I constantly mistype these, and assume other people do as well. */ -@@ -2383,6 +2385,7 @@ main (int argc, char **argv) +@@ -2388,6 +2390,7 @@ main (int argc, char **argv) opt.def_cert_expire = "0"; gnupg_set_homedir (NULL); opt.passphrase_repeat = 1; + opt.files_are_digests=0; opt.emit_version = 0; opt.weak_digests = NULL; - additional_weak_digest("MD5"); -@@ -2944,6 +2947,7 @@ main (int argc, char **argv) + +@@ -2952,6 +2955,7 @@ main (int argc, char **argv) opt.verify_options&=~VERIFY_SHOW_PHOTOS; break; case oPhotoViewer: opt.photo_viewer = pargs.r.ret_str; break; @@ -40,11 +40,11 @@ Index: gnupg-2.1.22/g10/gpg.c case oForceMDC: opt.force_mdc = 1; break; case oNoForceMDC: opt.force_mdc = 0; break; -Index: gnupg-2.1.22/g10/options.h +Index: gnupg-2.1.23/g10/options.h =================================================================== ---- gnupg-2.1.22.orig/g10/options.h -+++ gnupg-2.1.22/g10/options.h -@@ -212,6 +212,7 @@ struct +--- gnupg-2.1.23.orig/g10/options.h 2017-08-09 15:46:17.000000000 +0200 ++++ gnupg-2.1.23/g10/options.h 2017-08-10 16:21:26.692847431 +0200 +@@ -213,6 +213,7 @@ struct int no_auto_check_trustdb; int preserve_permissions; int no_homedir_creation; @@ -52,10 +52,10 @@ Index: gnupg-2.1.22/g10/options.h struct groupitem *grouplist; int mangle_dos_filenames; int enable_progress_filter; -Index: gnupg-2.1.22/g10/sign.c +Index: gnupg-2.1.23/g10/sign.c =================================================================== ---- gnupg-2.1.22.orig/g10/sign.c -+++ gnupg-2.1.22/g10/sign.c +--- gnupg-2.1.23.orig/g10/sign.c 2017-07-28 19:39:06.000000000 +0200 ++++ gnupg-2.1.23/g10/sign.c 2017-08-10 16:21:26.692847431 +0200 @@ -43,6 +43,8 @@ #include "../common/mbox-util.h" #include "../common/compliance.h" diff --git a/gnupg-2.1.22.tar.bz2 b/gnupg-2.1.22.tar.bz2 deleted file mode 100644 index 182c69f..0000000 --- a/gnupg-2.1.22.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:46716faf9e1b92cfca86609f3bfffbf5bb4b6804df90dc853ff7061cfcfb4ad7 -size 6530433 diff --git a/gnupg-2.1.22.tar.bz2.sig b/gnupg-2.1.22.tar.bz2.sig deleted file mode 100644 index 1f26f4f042d0e603b9dd6dfc7e6c2e4d94d4691e8bfbd017f18bf664a1e14d81..0000000000000000000000000000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 310 zcmV-60m=S}0W$;u0SEvc79j-KX(1!T23_i24?49Zn>o@?CF8aQ0$F=>e*g*z5G0#9 z(oZGhwiIp%0H(dV|5(j{Rmgs+PRY{3J^n3dGZ7%KAF8HwuP&?NVttqCkT@E>%c-9c zhv$^b&>@%=H_B8nt$5Ov3JiqU#nrMXTHVJk?Aio-nP?NIuLd&yb^5}e$0CM=k-n6A zH@ot*{^a8An?%Vz&^Pm+(*U*NT>dB?4fE^{4_N89(Up(AU6M-83_Hd9F5l*29s?gM ziEsWZ&M!ZkIyltOh^3lQ;X#6(mY%Q2awTZ_@wA0s^LGTE<5PuB5%cgwm;!1m0l(0o z#KqiqXezbEAa?fSEMrv4xUA*)IHr1Thi@dHKJnI>In}W3YwnRkP$Cq(Y4^C(N`SiR IpJwOo@?CF8aQ0$HQtF8~S&5G0#9 z(oZGhwxH7p0GH|?WBHVf4zSBF>LObKwhy5uR4`=5{HO5wI0=N58ULiK4>X2i)#P9~ zo+mdH_5`E{{ZR}S8^tIb>;H1h0+i*>2ENbeNF`eOR|XNgHtMgy28HLF>;;qWCHV-N zf^#I;GkrBgmFwwTotV+EXPOD09Lw1 zrS;d{ewn@evTXTg9=|rC*ZtW8z6~5Y^o=>a!V?lW2FceMU-JpMo^af8I=c@2Kq}hB Ic0U_fF?aQnX8-^I literal 0 HcmV?d00001 diff --git a/gpg2.changes b/gpg2.changes index f1836f6..88636e6 100644 --- a/gpg2.changes +++ b/gpg2.changes @@ -1,3 +1,37 @@ +------------------------------------------------------------------- +Mon Aug 28 17:21:30 UTC 2017 - astieger@suse.com + +- GnuPG 2.2.0: + * New long term stable branch, replacing the 2.0.x series + * gpg: Reverted change in 2.1.23 so that --no-auto-key-retrieve + is again the default boo#1054088 + * Fixed a few minor bugs + +------------------------------------------------------------------- +Sat Aug 12 16:56:26 UTC 2017 - astieger@suse.com + +- GnuPG 2.1.23: + * gpg: Options --auto-key-retrieve and --auto-key-locate "local,wkd" + are now used by default. Note: this enables keyserver and Web Key + Directory operators to notice when a signature from a locally + non-available key is being verified for the first time or when + you intend to encrypt to a mail address without having the key + locally. This new behaviour will eventually make key discovery + much easier and mostly automatic. Disable this by adding + no-auto-key-retrieve + auto-key-locate local + to your gpg.conf. + * agent: Option --no-grab is now the default. The new option --grab + allows to revert this. + * gpg: New import option "show-only". + * gpg: New option --disable-dirmngr to entirely disable network + access for gpg. + * gpg,gpgsm: Tweaked DE-VS compliance behaviour. + * New configure flag --enable-all-tests to run more extensive tests + during "make check". + * gpgsm: The keygrip is now always printed in colon mode as + documented in the man page. + ------------------------------------------------------------------- Fri Jul 28 19:29:52 UTC 2017 - astieger@suse.com diff --git a/gpg2.spec b/gpg2.spec index 2c9e9c8..5b77867 100644 --- a/gpg2.spec +++ b/gpg2.spec @@ -17,7 +17,7 @@ Name: gpg2 -Version: 2.1.22 +Version: 2.2.0 Release: 0 Summary: File encryption, decryption, signature creation and verification utility License: GPL-3.0+ @@ -103,8 +103,9 @@ date=$(date -u +%%Y-%%m-%%dT%%H:%%M+0000 -r %{SOURCE99}) --enable-large-secmem \ --enable-wks-tools \ --with-gnu-ld \ - --with-default-trust-store=%{_sysconfdir}/ssl/ca-bundle.pem \ + --with-default-trust-store-file=%{_sysconfdir}/ssl/ca-bundle.pem \ --enable-build-timestamp=$date \ + --enable-gpg-is-gpg2 \ make %{?_smp_mflags}