commit gpg2.1687 for openSUSE:12.3:Update
Hello community,
here is the log from the commit of package gpg2.1687 for openSUSE:12.3:Update checked in at 2013-05-31 17:38:11
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.3:Update/gpg2.1687 (Old)
and /work/SRC/openSUSE:12.3:Update/.gpg2.1687.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "gpg2.1687"
Changes:
--------
New Changes file:
--- /dev/null 2013-05-23 01:40:31.032032505 +0200
+++ /work/SRC/openSUSE:12.3:Update/.gpg2.1687.new/gpg2.changes 2013-05-31 17:38:12.000000000 +0200
@@ -0,0 +1,615 @@
+-------------------------------------------------------------------
+Mon May 13 13:08:03 UTC 2013 - vcizek@suse.com
+
+- security fixes:
+ * fix for CVE-2012-6085 (bnc#798465)
+ added gpg2-CVE-2012-6085.patch
+ * fix for bnc#780943
+ added gpg2-set_umask_before_open_outfile.patch
+
+-------------------------------------------------------------------
+Fri Jan 11 20:26:50 UTC 2013 - lazy.kent@opensuse.org
+
+- BuildRequires: libbz2-devel (support BZIP2 compression
+ algorithm) (bnc#798175).
+
+-------------------------------------------------------------------
+Wed Apr 18 10:55:34 UTC 2012 - vcizek@suse.com
+
+- Mention some of the changes in Greg's version update
+
+-------------------------------------------------------------------
+Tue Mar 27 20:38:27 UTC 2012 - gregkh@opensuse.org
+
+- update to upstream 2.0.19
+ * GPG now accepts a space separated fingerprint as a user ID. This
+ allows to copy and paste the fingerprint from the key listing.
+ * GPG now uses the longest key ID available. Removed support for the
+ original HKP keyserver which is not anymore used by any site.
+ * Rebuild the trustdb after changing the option --min-cert-level.
+ * Ukrainian translation.
+ * Honor option --cert-digest-algo when creating a cert.
+ * Emit a DECRYPTION_INFO status line.
+ * Improved detection of JPEG files.
+
+-------------------------------------------------------------------
+Tue Dec 6 10:58:36 UTC 2011 - vcizek@suse.com
+
+- fixed licence to GPL-3.0+ (bnc#734878)
+
+-------------------------------------------------------------------
+Wed Nov 30 09:55:47 UTC 2011 - coolo@suse.com
+
+- add automake as buildrequire to avoid implicit dependency
+
+-------------------------------------------------------------------
+Sat Oct 1 15:53:04 UTC 2011 - crrodriguez@opensuse.org
+
+- Test suite hangs in qemu-arm, workaround.
+
+-------------------------------------------------------------------
+Wed Aug 31 10:00:35 UTC 2011 - puzel@suse.com
+
+- link with -pie
+
+-------------------------------------------------------------------
+Fri Aug 19 01:11:42 UTC 2011 - crrodriguez@opensuse.org
+
+- libcurl.m4 tests were broken, resulting in the usage
+ of a "fake" internal libcurl.
+
+-------------------------------------------------------------------
+Sat Aug 6 20:19:09 UTC 2011 - andreas.stieger@gmx.de
+
+- update to upstream 2.0.18
+ * Bug fix for newer versions of Libgcrypt.
+ * Support the SSH confirm flag and show SSH fingerprints in ssh
+ related pinentries.
+ * Improved dirmngr/gpgsm interaction for OCSP.
+ * Allow generation of card keys up to 4096 bit.
+- refresh patch gnupg-2.0.10-tmpdir.diff -> gnupg-2.0.18-tmpdir.diff
+- refresh patch gnupg-files-are-digests.patch -> gnupg-2.0.18-files-are-digests.patch
+
+-------------------------------------------------------------------
+Tue Mar 15 09:29:42 UTC 2011 - puzel@novell.com
+
+- update to gnupg-2.0.17
+ * Allow more hash algorithms with the OpenPGP v2 card.
+ * The gpg-agent now tests for a new gpg-agent.conf on a HUP.
+ * Fixed output of "gpgconf --check-options".
+ * Fixed a bug where Scdaemon sends a signal to Gpg-agent running
+ in non-daemon mode.
+ * Fixed TTY management for pinentries and session variable update
+ problem.
+- drop gnupg-CVE-2010-2547.patch (in upstream)
+
+-------------------------------------------------------------------
+Fri Jan 7 13:24:17 CET 2011 - sbrabec@suse.cz
+
+- Removed obsolete BuildRequires of opensc-devel.
+
+-------------------------------------------------------------------
+Sun Oct 31 12:37:02 UTC 2010 - jengelh@medozas.de
+
+- Use %_smp_mflags
+
+-------------------------------------------------------------------
+Wed Jul 28 09:39:00 UTC 2010 - puzel@novell.com
+
+- gnupg-CVE-2010-2547.patch (bnc#625947)
+- renumber patches
+
+-------------------------------------------------------------------
+Mon Jul 19 21:49:40 UTC 2010 - puzel@novell.com
+
+- update to gnupg-2.0.16
+ * If the agent's --use-standard-socket option is active, all tools
+ try to start and daemonize the agent on the fly. In the past this
+ was only supported on W32; on non-W32 systems the new configure
+ option --use-standard-socket may now be used to use this feature by
+ default.
+ * The gpg-agent commands KILLAGENT and RELOADAGENT are now available
+ on all platforms.
+ * Minor bug fixes.
+- drop gnupg-2.0.14-s2kcount.patch (builds fine without it now)
+
+-------------------------------------------------------------------
+Mon Jun 7 09:40:32 UTC 2010 - adrian@suse.de
+
+- add special provides to make sure that obs signd gets correct gpg version
+
+-------------------------------------------------------------------
+Fri Apr 9 12:47:11 UTC 2010 - chris@computersalat.de
+
+- fix deps
+ o libassuan-devel >= 2.0.0
+ o pth / libpth-devel >= 1.3.7
+- added BuildReq libcurl-devel >= 7.10
+- removed BuildReq openldap2
+ is already solved by openldap2-devel
+- removed unrecognized configure options
+ --enable-external-hkp, --enable-shared, --enable-static-rnd
+
+-------------------------------------------------------------------
+Wed Apr 7 14:19:11 UTC 2010 - puzel@novell.com
+
+- add gnupg-dont-fail-with-seahorse-agent.patch (bnc#589994)
+
+-------------------------------------------------------------------
+Wed Mar 31 13:47:00 UTC 2010 - puzel@novell.com
+
+- update to gnupg-2.0.15
+ * New command --passwd for GPG.
+ * Fixes a regression in 2.0.14 which prevented unprotection of new
+ or changed gpg-agent passphrases.
+ * Make use of libassuan 2.0 which is available as a DSO.
+
+-------------------------------------------------------------------
+Mon Mar 22 15:09:24 UTC 2010 - puzel@novell.com
+
+- fix files-are-digests patch (bnc#469229)
+
+-------------------------------------------------------------------
+Wed Feb 17 13:29:18 CET 2010 - dimstar@opensuse.org
+
+- Update to version 2.0.14:
+ + The default for --include-cert is now to include all
+ certificates in the chain except for the root certificate.
+ + Numerical values may now be used as an alternative to the
+ debug-level keywords.
+ + The GPGSM --audit-log feature is now more complete.
+ + GPG now supports DNS lookups for SRV, PKA and CERT on W32.
+ + New GPGSM option --ignore-cert-extension.
+ + New and changed passphrases are now created with an iteration
+ count requiring about 100ms of CPU work.
+- Add gnupg-2.0.14-s2kcount.patch: use fixed s2k-count number
+ otherwise the gpg2 would want to consult gpg-agent which is not
+ yet installed in the mock chroot (Patch shamelessly stolen from
+ Fedora).
+
+-------------------------------------------------------------------
+Thu Jan 28 14:15:24 UTC 2010 - puzel@novell.com
+
+- fix build for older distributions
+
+-------------------------------------------------------------------
+Wed Jan 27 16:30:41 UTC 2010 - puzel@novell.com
+
+- port files-are-digests patch from gpg1 (bnc#469229)
+
+-------------------------------------------------------------------
+Tue Dec 15 20:56:35 CET 2009 - jengelh@medozas.de
+
+- enable parallel building
+- SPARC needs large PIE model
+
+-------------------------------------------------------------------
+Sun Dec 6 08:52:32 UTC 2009 - coolo@novell.com
+
+- change -lang require to recommended
+
+-------------------------------------------------------------------
+Fri Nov 13 14:37:58 UTC 2009 - puzel@novell.com
+
+- update to gnupg-2.0.13
+ * GPG now generates 2048 bit RSA keys by default. The default hash
+ algorithm preferences has changed to prefer SHA-256 over SHA-1.
+ 2048 bit DSA keys are now generated to use a 256 bit hash algorithm
++++ 418 more lines (skipped)
++++ between /dev/null
++++ and /work/SRC/openSUSE:12.3:Update/.gpg2.1687.new/gpg2.changes
New:
----
gnupg-2.0.18-files-are-digests.patch
gnupg-2.0.18-tmpdir.diff
gnupg-2.0.19.tar.bz2
gnupg-2.0.4-install_tools.diff
gnupg-2.0.9-RSA_ES.patch
gnupg-2.0.9-langinfo.patch
gnupg-broken-curl-test.patch
gnupg-dont-fail-with-seahorse-agent.patch
gpg2-CVE-2012-6085.patch
gpg2-set_umask_before_open_outfile.patch
gpg2.changes
gpg2.spec
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ gpg2.spec ++++++
#
# spec file for package gpg2
#
# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
Name: gpg2
Version: 2.0.19
Release: 0
BuildRequires: automake
BuildRequires: expect
BuildRequires: fdupes
BuildRequires: libadns-devel
BuildRequires: libassuan-devel >= 2.0.0
BuildRequires: libbz2-devel
BuildRequires: libcurl-devel >= 7.10
BuildRequires: libgcrypt-devel >= 1.4.0
BuildRequires: libgpg-error-devel >= 1.7
BuildRequires: libksba-devel >= 1.0.7
BuildRequires: libusb-devel
BuildRequires: openldap2-devel
BuildRequires: readline-devel
BuildRequires: zlib-devel
%if 0%{?suse_version} >= 1120
BuildRequires: libpth-devel >= 1.3.7
%else
BuildRequires: pth >= 1.3.7
%endif
Url: http://www.gnupg.org/aegypten2/
PreReq: %install_info_prereq
Requires: dirmngr
Requires: pinentry
Recommends: %name-lang = %{version}
Provides: gnupg = %{version}
Provides: gpg = 1.4.9
Provides: newpg
# special feature needed for OBS signd
Provides: gpg2_signd_support
Obsoletes: gpg < 1.4.9
Summary: GnuPG 2
License: GPL-3.0+
Group: Productivity/Networking/Security
Source: gnupg-%{version}.tar.bz2
Patch1: gnupg-2.0.18-tmpdir.diff
Patch2: gnupg-2.0.4-install_tools.diff
Patch3: gnupg-2.0.9-RSA_ES.patch
Patch4: gnupg-2.0.9-langinfo.patch
Patch5: gnupg-2.0.18-files-are-digests.patch
Patch6: gnupg-dont-fail-with-seahorse-agent.patch
Patch7: gnupg-broken-curl-test.patch
Patch8: gpg2-CVE-2012-6085.patch
Patch9: gpg2-set_umask_before_open_outfile.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
GnuPG 2 is the successor of "GnuPG" or GPG. It provides: GPGSM,
gpg-agent, and a keybox library.
%lang_package
%prep
%setup -q -n gnupg-%version
%patch1 -p1
%patch2
%patch3 -p1
%patch4
%patch5 -p1
%patch6 -p1
%patch7 -p1
%patch8 -p1
%patch9 -p1
%build
autoreconf -fi
# build PIEs (position independent executables) for address space randomisation:
%ifarch s390x %sparc
# s390x needs to use the large PIE model (at least for gpg.c):
PIE="-fPIE"
%else
PIE="-fpie"
%endif
export CFLAGS="%{optflags} ${PIE}"
export LDFLAGS=-pie
%configure \
--libexecdir=%{_libdir} \
--docdir=%{_docdir}/%{name} \
--with-agent-pgm=%{_prefix}/bin/gpg-agent \
--with-pinentry-pgm=%{_prefix}/bin/pinentry \
--with-dirmngr-pgm=%{_prefix}/bin/dirmngr \
--with-scdaemon-pgm=%{_prefix}/bin/scdaemon \
--enable-ldap \
--enable-gpgsm=yes \
--enable-gpg \
--with-gnu-ld
make %{?_smp_mflags}
%install
%makeinstall
mkdir -p $RPM_BUILD_ROOT/etc/gnupg/
# bnc#391347
install -m 644 doc/examples/gpgconf.conf $RPM_BUILD_ROOT/etc/gnupg
# delete to prevent fdupes from creating cross-partition hardlink
rm -rf $RPM_BUILD_ROOT/usr/share/doc/packages/gpg2/examples/gpgconf.conf
rm $RPM_BUILD_ROOT/usr/share/info/dir
# compat symlinks
ln -sf gpg2 $RPM_BUILD_ROOT/usr/bin/gpg
ln -sf gpgv2 $RPM_BUILD_ROOT/usr/bin/gpgv
ln -sf gpg2.1 $RPM_BUILD_ROOT/usr/share/man/man1/gpg.1
ln -sf gpgv2.1 $RPM_BUILD_ROOT/usr/share/man/man1/gpgv.1
# fix rpmlint invalid-lc-messages-dir:
rm -rf $RPM_BUILD_ROOT/%_datadir/locale/en@{bold,}quot
# additional files to documentation directory
install -m 644 AUTHORS COPYING ChangeLog NEWS THANKS TODO doc/FAQ $RPM_BUILD_ROOT/%{_docdir}/%{name}
%find_lang gnupg2
%if 0%{?suse_version} > 1020
%fdupes %buildroot
%endif
%check
%if ! 0%{?qemu_user_space_build}
make check
$RPM_BUILD_ROOT/usr/bin/gpgsplit -v -p pubsplit- --uncompress
participants (1)
-
root@hilbert.suse.de