From 27c21db91cf432c229ffe00db86474762aaf2bcb9b7dd50638d91ca23a5b3112 Mon Sep 17 00:00:00 2001 From: Andreas Stieger Date: Sat, 9 Mar 2013 12:35:17 +0000 Subject: [PATCH] Accepting request 158107 from home:AndreasStieger:branches:network:utilities add verfication of source signatures OBS-URL: https://build.opensuse.org/request/show/158107 OBS-URL: https://build.opensuse.org/package/show/network:utilities/wireshark?expand=0&rev=84 --- SIGNATURES-1.8.6.txt | 54 ++++++++++++++++++++++++++++++++++++++++++++ wireshark.changes | 5 ++++ wireshark.keyring | 40 ++++++++++++++++++++++++++++++++ wireshark.spec | 16 +++++++++++-- 4 files changed, 113 insertions(+), 2 deletions(-) create mode 100644 SIGNATURES-1.8.6.txt create mode 100644 wireshark.keyring diff --git a/SIGNATURES-1.8.6.txt b/SIGNATURES-1.8.6.txt new file mode 100644 index 0000000..21033b1 --- /dev/null +++ b/SIGNATURES-1.8.6.txt @@ -0,0 +1,54 @@ +-----BEGIN PGP SIGNED MESSAGE----- +Hash: SHA1 + +wireshark-1.8.6.tar.bz2: 24250787 bytes +MD5(wireshark-1.8.6.tar.bz2)=317361e701936c72f7f18f857059b944 +SHA1(wireshark-1.8.6.tar.bz2)=0f51ed901b5e07cceb1373f3368f739be8f1e827 +RIPEMD160(wireshark-1.8.6.tar.bz2)=21688bef39816cc81d596205eefc5a067e5d6c25 + +Wireshark-win64-1.8.6.exe: 26847472 bytes +MD5(Wireshark-win64-1.8.6.exe)=ddd3d98096538e357e2dd0d6cd04ed6b +SHA1(Wireshark-win64-1.8.6.exe)=0d042dce029072dfcb8f52f49aa0c84bfb6d8a69 +RIPEMD160(Wireshark-win64-1.8.6.exe)=2656bf18e3131da2b64feeb4d91c687768fe6f1f + +Wireshark-win32-1.8.6.exe: 21173600 bytes +MD5(Wireshark-win32-1.8.6.exe)=3a0de374fc4979001727bfa5fc19d3c5 +SHA1(Wireshark-win32-1.8.6.exe)=bed78fb3c51cfec9914bf46f6257da2541407d5c +RIPEMD160(Wireshark-win32-1.8.6.exe)=e6cb0e40236093f5bf45909d1c306b64b0b99264 + +Wireshark-1.8.6.u3p: 28607931 bytes +MD5(Wireshark-1.8.6.u3p)=fa19996f6c69f68d011565b2c49c27b3 +SHA1(Wireshark-1.8.6.u3p)=e29efab380c4da61b25678c764403719b0088875 +RIPEMD160(Wireshark-1.8.6.u3p)=01cb4634b95e8b08387711fab79f674d1dcae4b4 + +WiresharkPortable-1.8.6.paf.exe: 22184584 bytes +MD5(WiresharkPortable-1.8.6.paf.exe)=a09a4ab23ffff08685d0ef42a0dc0f09 +SHA1(WiresharkPortable-1.8.6.paf.exe)=f6f39ee3b202488ce3c48521692599a458c024e0 +RIPEMD160(WiresharkPortable-1.8.6.paf.exe)=68a2dcf651c661499717a0f6c2abacabca48d94e + +Wireshark 1.8.6 Intel 32.dmg: 22122012 bytes +MD5(Wireshark 1.8.6 Intel 32.dmg)=41b1249c0e0bdf0d851a816d20e01c12 +SHA1(Wireshark 1.8.6 Intel 32.dmg)=d8eaf89fd2fdf13f47aaa9a25c1587a760534635 +RIPEMD160(Wireshark 1.8.6 Intel 32.dmg)=ccadbdadddfd19991a6c7af9d2643a343fb3db75 + +Wireshark 1.8.6 PPC 32.dmg: 22934708 bytes +MD5(Wireshark 1.8.6 PPC 32.dmg)=e9556eeacd50ddb4e70c9e5f98c442fa +SHA1(Wireshark 1.8.6 PPC 32.dmg)=a8c8b2f6fb659b20ef2ae7785a2b5646f33c7ff5 +RIPEMD160(Wireshark 1.8.6 PPC 32.dmg)=7b6a0e6161c1fb1d31caf7a6b5007cd38fce62f6 + +Wireshark 1.8.6 Intel 64.dmg: 21799059 bytes +MD5(Wireshark 1.8.6 Intel 64.dmg)=265318dd55f4fd3dca228d9afc9348fe +SHA1(Wireshark 1.8.6 Intel 64.dmg)=475ae0f50e65399a9a16c8266e505e8d9b27d308 +RIPEMD160(Wireshark 1.8.6 Intel 64.dmg)=281386411018db57322e04c6c24927e9a7a774e7 + +patch-wireshark-1.8.5-to-1.8.6.diff.bz2: 385614 bytes +MD5(patch-wireshark-1.8.5-to-1.8.6.diff.bz2)=1a61fcdfaf6d17d40cbe961951c1133e +SHA1(patch-wireshark-1.8.5-to-1.8.6.diff.bz2)=18d53194b13de978d950394734ab7302f6d0394a +RIPEMD160(patch-wireshark-1.8.5-to-1.8.6.diff.bz2)=b542539170925e88b52940ca41b65be1d0167a7c +-----BEGIN PGP SIGNATURE----- +Version: GnuPG v1.4.12 (Darwin) + +iEYEARECAAYFAlE3xcUACgkQpw8IXSHylJrbBQCfZNtcBR0tbayTH4LSikKn/tVY +3/kAoK21Cq19K4bhkOcEnHHEyelZWFOm +=arCK +-----END PGP SIGNATURE----- diff --git a/wireshark.changes b/wireshark.changes index 4f3c9e5..9489e6e 100644 --- a/wireshark.changes +++ b/wireshark.changes @@ -1,3 +1,8 @@ +------------------------------------------------------------------- +Sat Mar 9 11:24:29 UTC 2013 - andreas.stieger@gmx.de + +- add verfication of source signatures + ------------------------------------------------------------------- Thu Mar 7 00:01:15 UTC 2013 - andreas.stieger@gmx.de diff --git a/wireshark.keyring b/wireshark.keyring new file mode 100644 index 0000000..6c08867 --- /dev/null +++ b/wireshark.keyring @@ -0,0 +1,40 @@ +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1.4.3 (Darwin) + +mQGiBER/M8sRBACiHBRHH1EM7kO3r9W1c/n2rLl/YnOJ06da5hXfGtdh3g13B1nK +JguwboIzR4ecW18APFvVh8sxXKrIVkZfrd7P+gr8tahk6oUycPeCVxAEXBKZbj3V +HKuPcUZwPnVQSXT1PJkzUfTbMXt1ME0COzRLuXqyjAv61VdfYdWX/hpD6wCg29vF +9Z0h/vgMhC9mz1ohaYPYUIMEAI9IE/5s2UtQsNchelfLybVsOd3q/4SEFtI8GfAl +BM7lfZlXKlytTBB7UkqpvEJ17E1Xut3Re+Ar3ryYIBY56DjHWKynNJXZuLvx+5VU +DhKHQ4azDB2Tho7K1PPzK1D3Fwo/Zq9l/aVAZYR6bIWXaE12P+ONxgcpohfnjEpL +o9l4A/9vNcu9Oldee4aflvJwt5XCuY3CmM2+hWj+BC6af8CRWjVHHK9hduzpeaI1 +1jtaIz3wRHCSAPy2a/44xQWoFTogFb84cfpQgdrlrXe/XVbCsvEKWvEpuYDQnCqs +IqRgnqBXwh9MFYX1vyR5gZejW1FS9cTQARtlkLNcyWZfOGhATrQjR2VyYWxkIENv +bWJzIDxnZXJhbGRAd2lyZXNoYXJrLm9yZz6IYAQTEQIAIAUCRH8zywIbAwYLCQgH +AwIEFQIIAwQWAgMBAh4BAheAAAoJEKcPCF0h8pSamQ0Anjh5qcgLZskeA+P6DtPx +bNcxNwdzAJ9zgolGLM+S4AT2cplF/upcm+xxbrkEDQREfzQOEBAAkWyaZQnfbg9d +QaVkOeBBWNLe3X8wPXHsntuDXeHv2lOL0IhAbgQi6lf3fmlaG/ImsQFt3eoPnsnS +V93xL4YsK6wQtIpsmhHODZ2ebXj7MthGXwBZgL72FB0DT9Uy8Y+8TdDPy5LhTpzI +HI5DvWbhiUoEbga1X+AvER2fpWU2zymNa0vn94Q/UnrCro0JjDOmweyzwYtR+wIP +uaI2H2BrRF2kuK5Neu4+ck0mpqs8J1cGzmUQO2X2N6y+JVAya8/xNgoAxrI8bY4q +lMzPY08cEbjUd2DA9nZCCs/aHLwGDRAbdv+3+9rMq9znzx4+KulJGffBlv6BdCAW +fHGcF3TzbPTlprPZvHkVN4GyKOqv++pdxoncO/p1XuyilOieW0D4BFTmiGTV1bnF +T/StFMuxrLyI7WM/Jrtm+A6yYLVoC+BRHWToiV71LDsreoUqoEO3SwFOm9G44XlO +5EXj13Tm4STsX3uMDr+szAIkiDDgb0nDUx2W14RwbDIvOtOczt5NCcCgsTmiCOP/ +KOMOI9B4BGJBO3UEPhw9/2SMyZtn1F+sU2uyjcR4Kv5iTqacI+SavZgj7/a/Yrm1 +OocDTwcopCMP7EvrZqEutsf8MD6tqI1+fdPVHU1QguakZN0A9TYftVpleKAB6KZu +QzLbfU4lBzQb7P89p8OgIunqioDMP1cAAwUP+gOPRf93iqFjSPn7e7uqD3cNJI55 +kGe7QGtlMVIqKHOF5VmrRvjlKRK6Q7BXKJyQAeLn5Zjetbc17CdBjJYsmblYNeAw +PNIENohEVYCSLbapxlF4CKHMilCqH+iymUoY0jq7u5+jTxFpRW2mPA8TSgR0lJfZ +Cp8he4+E0VGB0RJrzdI4pDhJ+c8t5AZpUgd9Gm9vwxBPRDt5YGfnEnlwCz6ZJjCA +dj9+jfLFboQoNqxAC9eg6YKtBVbtSf+F2USThFImKJb2tVjOXtXOyxus9z38flWn +QN1eDxwDYj3MZ+c52xMK54e89fc8UYTSmq1xD4PB9//Cv+0Rr1tUnenRYKWHg0HN +N2c7V4TwD9QVDGnxc2p1RSFviaxu9OPkSoxyU26AAxxPcRcnoj7fxv265zmOGFZJ +KLL7Iu+JfcezZz2pOSfuXiTGjAfhGIAwSCBKhIb4PInR2PzCAezo6e09zOfnG9WR +XpxOsm9Z1VZsrNBWA9Cj1Is5djAedAJDiQZkkP+uLo+wwgz9RrO6iKGVUyNoC7qZ +S9LmHg9nxc6daSba4cJD+ZUIx1m3+EKGlzqMKKIqvuvYFfXQRgaS0U/xDc+kmI43 +40uA+i1U5EbtREc93M+RfEDTNb28PDTSqU+6tjBEWM/QcAtWosAGwM/mswDxnrti +rKtM9li0661KdFTQiEkEGBECAAkFAkR/NA4CGwwACgkQpw8IXSHylJpj3wCcC6Ix +94g5dcshAl507KQN+cdBWK0Anjf5k+1VQnCaWl3k56Od146oBlOB +=EAj0 +-----END PGP PUBLIC KEY BLOCK----- diff --git a/wireshark.spec b/wireshark.spec index acf045c..ac620a7 100644 --- a/wireshark.spec +++ b/wireshark.spec @@ -25,9 +25,12 @@ Release: 0 Summary: A Network Traffic Analyser License: GPL-2.0+ and GPL-3.0+ Group: Productivity/Networking/Diagnostic -Url: http://www.wireshark.org/ -Source: http://www.wireshark.org/download/src/%{name}-%{version}.tar.bz2 +Url: https://www.wireshark.org/ +Source: https://www.wireshark.org/download/src/%{name}-%{version}.tar.bz2 Source1: include.filelist +Source2: https://www.wireshark.org/download/SIGNATURES-%{version}.txt +# https://www.wireshark.org/download/gerald_at_wireshark_dot_org.gpg +Source3: wireshark.keyring # PATCH-FIX-OPENSUSE wireshark-1.6.3-disable-warning-dialog.patch bnc#349782 prusnak@suse.cz -- don't show warning when running as root Patch1: %{name}-1.2.0-disable-warning-dialog.patch # PATCH-FEATURE-OPENSUSE wireshark-1.2.0-geoip.patch prusnak@suse.cz -- search in /var/lib/GeoIP if user hasn't set any GeoIP folders @@ -78,6 +81,9 @@ BuildRequires: libGeoIP-devel BuildRequires: update-desktop-files Recommends: GeoIP %endif +%if 0%{?suse_version} >= 1230 +BuildRequires: gpg-offline +%endif %description Wireshark is a free network protocol analyzer for Unix and Windows. It @@ -105,6 +111,12 @@ features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. %prep +%{?gpg_verify: %gpg_verify %{S:2}} +# The publisher doesn't sign the source tarball, but a signatures file containing multiple hashes. +# Verify hashes in that file against source tarball. +echo "`grep %{name}-%{version}.tar.bz2 %{S:2} | grep MD5 | head -n1 | cut -d= -f2` %{S:0}" | md5sum -c +echo "`grep %{name}-%{version}.tar.bz2 %{S:2} | grep SHA1 | head -n1 | cut -d= -f2` %{S:0}" | sha1sum -c + %setup -q %patch2 %patch4