From a423e9b8bdab089678bed9289bb1331fa8d56b62b77fbfc508d30bc1fa51fdc2 Mon Sep 17 00:00:00 2001 From: Michal Vyskocil Date: Tue, 18 Dec 2012 10:10:02 +0000 Subject: [PATCH] Accepting request 143938 from home:sbrabec:gpg-offline-verify Verify GPG signature: Perform build-time offline GPG verification. Please verify that included keyring matches your needs. For manipulation with the offline keyring, please use gpg-offline tool from openSUSE:Factory, devel-tools-building or Base:System. See the man page and/or /usr/share/doc/packages/gpg-offline/PACKAGING.HOWTO. If you need to build your package for older products and don't want to mess spec file with ifs, please follow PACKAGING.HOWTO: you can link or aggregate gpg-offline from devel:tools:building or use following trick with "osc meta prjconf": --- Cut here ---- %if 0%{?suse_version} <= 1220 Substitute: gpg-offline %endif Macros: %gpg_verify(dnf) \ %if 0%{?suse_version} > 1220\ echo "WARNING: Using %%gpg_verify macro from prjconf, not from gpg-offline package."\ gpg-offline --directory="%{-d:%{-d*}}%{!-d:%{_sourcedir}}" --package="%{-n:%{-n*}}%{!-n:%{name}}""%{-f: %{-f*}}" --verify %{**}\ %else\ echo "WARNING: Dummy prjconf macro. gpg-offline is not available, skipping %{**} GPG signature verification!"\ %endif\ %nil ----------------- OBS-URL: https://build.opensuse.org/request/show/143938 OBS-URL: https://build.opensuse.org/package/show/network/vsftpd?expand=0&rev=49 --- vsftpd.changes | 5 +++++ vsftpd.keyring | 28 ++++++++++++++++++++++++++++ vsftpd.spec | 3 +++ 3 files changed, 36 insertions(+) create mode 100644 vsftpd.keyring diff --git a/vsftpd.changes b/vsftpd.changes index 29dfa6e..eed44d7 100644 --- a/vsftpd.changes +++ b/vsftpd.changes @@ -1,3 +1,8 @@ +------------------------------------------------------------------- +Tue Nov 20 17:19:03 CET 2012 - sbrabec@suse.cz + +- Verify GPG signature. + ------------------------------------------------------------------- Tue Nov 20 09:21:17 UTC 2012 - dimstar@opensuse.org diff --git a/vsftpd.keyring b/vsftpd.keyring new file mode 100644 index 0000000..8dd9720 --- /dev/null +++ b/vsftpd.keyring @@ -0,0 +1,28 @@ +pub 1024D/3C0E751C 2004-06-29 +uid Chris Evans +sub 1024g/0A9EB17D 2004-06-29 + +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v2.0.19 (GNU/Linux) + +mQGiBEDh9hcRBACkPpPw2Pm4v6i+dQccbPAmiGyf6Hn7hHyKx25lJD7sK5vQ/L/w +7sKDLBF1JO76+9xN9UQb4emgmRW5T+tll4KD4uaTP1+bopg+RlRSD2S8MqAoYBE/ +kUu1je49FNV3VyNHLvi77XkjHd4C0+hoZhnBK/OMo3FXo9vEWrFokXwCtwCgsgxn +USwXet4jojSt+//E7W6AYV8D/jUMh02PbxHhbCHYQnITB9aiaMQtCoeAlbj3HAQA ++ZgNxApZ6hbhE0I27i4MrGte3O/9l5j3V0rXltpNY9E6tm8HT2UeLc1m7aMCXy+0 +IUrtQtuEx50jD3oaKbqix6UcBpDAZh+aeqTGansCHUHvlOuQQFO4vAPSr6aHPDmS +1Dc7A/9JImvSvwq5xbDQWpWMMvpQXkDgCqjkRnvqBHqoXXy7R8xEaYAqcRYVHCo4 +hmVYyRXsdY7iPxQkugbLBAPTHq2ajWsZGmrJymVZP7FGz+Rn/j/XoGYrbdJ86fgs +XnydJY+/uBaS/A+P/+xeHByr4fqG2T60LUVXtwQP2oP/xYN8kbQkQ2hyaXMgRXZh +bnMgPGNocmlzQHNjYXJ5LmJlYXN0cy5vcmc+iF4EExECAB4FAkDh9hcCGwMGCwkI +BwMCAxUCAwMWAgECHgECF4AACgkQqmLsRjwOdRwHOACgp9BubQZNeDf+cbTyuhfo ++qEedNsAoJIde2sM6Waxd4utyNEGG4pQ3sKeuQENBEDh9h0QBACTJBc/TYG3jVRL +4dI0R1M42DqyaTpm+qDgIgZ6YoXMzw9Z7NiHZaVVrnxYN98mCsNvvevaVT6Jy8Rr +FWMf4jx82ulH6NWZ9rKu3V9CXK9VXxt03VAWK2mGaKWlb7QKuiAuxSSrWTFO9neL +wWAixHsL0w9l19grtn1eKW9e61wIawADBgP/ab8QxketqpzecJhsIr/XM3k2oeKH +mj2BhegIaZzMAqrdvqGIj0cVGpun0tcoB2w4J1S8PyhM0/1PDaTKT+U83Ewljghw +Z+J5KUzG8T5xz9Qi3MyG4GnDqCSwZ9gKN8gt354tVd1qioX+ur5rovfVw+21iciW +IENPG81Z/P+DJzSISQQYEQIACQUCQOH2HQIbDAAKCRCqYuxGPA51HJUGAJ9ynmOj +Hu3p4DUdukkZfSuqyJaAXgCbBxgmdB7hOfSIGyou31PfdaIeFqU= +=BKUG +-----END PGP PUBLIC KEY BLOCK----- diff --git a/vsftpd.spec b/vsftpd.spec index 72cc934..6c29f54 100644 --- a/vsftpd.spec +++ b/vsftpd.spec @@ -17,6 +17,7 @@ Name: vsftpd +BuildRequires: gpg-offline BuildRequires: openssl-devel BuildRequires: pam-devel %if 0%{?suse_version} < 1001 @@ -41,6 +42,7 @@ Source4: README.SUSE Source5: %name.xml Source6: %name.firewall Source7: vsftpd.service +Source9: %name.keyring Source1000: https://security.appspot.com/downloads/%{name}-%{version}.tar.gz.asc Patch1: vsftpd-2.0.4-lib64.diff Patch3: vsftpd-2.0.4-xinetd.diff @@ -70,6 +72,7 @@ vsftpd was always faster, supporting over twice as many users in some tests. %prep +%gpg_verify %{S:1000} %setup -q %patch1 %patch3