Changes:
- src/sexp.c (do_vsexp_sscan): Return error for invalid args.
- cipher/md.c (_gcry_md_info): Fix a segv in case of calling
with wrong parameters.
- cipher/primegen.c (_gcry_generate_elg_prime): Change to return an
error code, possible NULL deref in call to prime generator.
- cipher/dsa.c (generate): Take care of new return code.
- cipher/elgamal.c (generate): Change to return an error code. Take
care of _gcry_generate_elg_prime return code.
- ecc: Support the non-standard 0x40 compression flag for EdDSA.
- mpi: Extend the internal mpi_get_buffer.
- mpi: Fix regression for powerpc-apple-darwin detection.
- Fix bug inhibiting the use of the sentinel attribute in src/gcrypt.h.in
- Fix building for the x32 target without asm modules in
mpi/generic/mpi-asm-defs.h: Use a fixed value for the x32 ABI.
- Fix ARM assembly when building __PIC__
- mpi: Fix a subtle bug setting spurious bits with in mpi_set_bit.
* mpi/mpi-bit.c (_gcry_mpi_set_bit, _gcry_mpi_set_highbit): Clear
allocated but not used bits before resizing.
* tests/t-mpi-bits.c (set_bit_with_resize): New.
- Use internal malloc function in fips.c.
* src/fips.c (check_binary_integrity): s/gcry_malloc/xtrymalloc/.
- pubkey: Re-map all deprecated RSA algo numbers.
- cipher: Fix possible NULL dereference in cipher/md.c for being NULL.
- Fix ARMv6 detection when CFLAGS modify target CPU architecture.
PR: 193264
Approved by: cpm@fbsd.es (maintainer)
Sorry for mess at introducing 2.1.0. This branch is *modern* release,
and please use security/gnupg{1,20} for stable gpg. Patches are welcome
to use DEFAULT_VERSIONS. :-)
PR: ports/195489, ports/195931, ports/195459, ports/196301
Submitted by: rakuco, Matthew West <freebsd@r.zeeb.org>, Phil Pennock <freebsd@phil.spodhuis.org>, tijl
in r363436 and remove the UPDATING entry because it did not guarantee
that all ports were updated nor that they were updated in the right order.
Also remove libgcrypt.la again.
PR: 192342
Approved by: portmgr (implicit, bump unstaged ports)
- Explicitly depends on libgpg-error>=1.11 [1]
- Turn on PINENTRY option by default [2]
(I don't like this, but by popular demand for years...)
Submitted by: dereckson@gmail.com [1], sbruno [2]
PR: ports/138424 [1], ports/189394 [2]
- add man pages to the plist
- remove pkg-install and pkg-message from post-install
(the gpg symlink creation was violating stage)
- re-add INFO to Makefile
- use @mode instead of chmod to allow packaging setuid as user
While here, USE_GMAKE->USES=gmake, use OPTIONS_SUB instead of PLIST_SUB
and use %%PORTDOCS%% for help files as they do not exist with --disable-doc
Approved by: Jun Kuriyama (maintainer)
- Pet portlint about pkg-plist.
- Use $STAGEDIR.
- Turn setuid knob to OptionsNG [1]
PR: ports/181495 [1]
Submitted by: Matthew Luckie <mjl@luckie.org.nz> [1]
from these ports.
Other changes:
- convert Makefile header
- convert to optionsNG
- remove indefinite article from comment
- drop support for FreeBSD < 8.0
- pet portlint (leave library ABI versions in LIB_DEPENDS)
- net-mgmt/spectools: change option name from GTK to GTK2 to use default
description from bsd.options.desc.mk
Approved by: portmgr (bapt)
I'd like to keep this port (and package built on pointyhat) having
simple dependencies. So this knob is off by default.
PR: ports/156287, ports/164333
Submitted by: Joseph Olatt <joji@eskimo.com>, Oliver Herold <oh@fixmbr.de>
- Support the SSH confirm flag and show SSH fingerprints in ssh
related pinentries.
- Improved dirmngr/gpgsm interaction for OCSP.
- Allow generation of card keys up to 4096 bit.
- Improve for port:
- Remove patch that was incorporated into this release.
- Remove redundant BUILD_DEPENDS.
- Patching should be done in a -patch target. Silence the REINPLACE.
Submitted by: dougb
PR: ports/159520
The patch also adds a verify target for the PGP signature
of the distfile.
Noteworthy changes in version 1.2.0 (2011-03-01)
------------------------------------------------
* New functions to allow the creation of X.509 certificates.
This release adds features required by the GnuPG 2.1 development
version.
PR: ports/155506
Submitted by: me
Approved by: maintainer timeout
What's New
===========
* Allow more hash algorithms with the OpenPGP v2 card.
* The gpg-agent now tests for a new gpg-agent.conf on a HUP.
* Fixed output of "gpgconf --check-options".
* Fixed a bug where Scdaemon sends a signal to Gpg-agent running in
non-daemon mode.
* Fixed TTY management for pinentries and session variable update
problem.
* Minor bug fixes.
For the port:
Camellia stopped being a configure option in 2.0.12
Fix minor typo for GPGSM OPTION
Minor plist update for 2.0.17
files/patch-keybox-blob.c seems to be no longer needed [2]
PR: ports/153984
Submitted by: me
Submitted by: Hirohisa Yamaguchi <umq@ueo.co.jp> [2]
Approved by: maintainer timeout (24 days)
Feature safe: yes
the authors intended by adding:
USE_AUTOTOOLS= libtool
USE_GNOME= ltverhack
to security/libassuan/Makefile.
Update the libassuan shared library version number and/or bump
PORTREVISION in the dependent ports.
Requested by: ale
Feature safe: yes
* Input and output notification handler can now really access the
parsed fd as stated in the manual.
* Cleaned up the logging.
Bump PORTREVISION and libassuan version number in related ports
* New command --passwd for GPG.
* Fixes a regression in 2.0.14 which prevented unprotection of new
or changed gpg-agent passphrases.
* Make use of libassuan 2.0 which is available as a DSO.
For the port:
* Since libassuan is now a shared lib, move it LIB_DEPENDS
* Remove now-spurious CONFLICTS
Approved by: maintainer
