summaryrefslogtreecommitdiff
path: root/security/netpgp
diff options
context:
space:
mode:
authoragc <agc>2009-05-25 06:50:53 +0000
committeragc <agc>2009-05-25 06:50:53 +0000
commit4d656530aec57779a597a470bb95aa2f7740e2fd (patch)
tree39ac37e1f271e6e9c23990ab8985b4dd3846deb9 /security/netpgp
parent6a85d56316a23c9226865cbe8094da765978dc37 (diff)
downloadpkgsrc-4d656530aec57779a597a470bb95aa2f7740e2fd.tar.gz
Update the netpgp package from version 20090428 to 20090525:
Changes since previous version: CHANGES 1.99.3 -> 1.99.4 + get rid of some magic constants + revamped regression test script to count number of tests passed + made checkhash array in ops_seckey_t dynamic, rather than statically allocated + made mdc array dynamic, and added a length field to mdc for future use + revamped usage message to match reality + made portable version again for the autoconfed package sources + add separate netpgpdigest.h file so that separate digest sizes can be used without having to include "packet.h" in everything CHANGES 1.99.2 -> 1.99.3 + modified regression tests to make it easier to see status messages + modified --encrypt, --decrypt, --sign, and --clearsign as well as --cat to respect the --output argument for the output file. Default behaviour remains unchanged - if --output is not specified, standard file names and suffixes apply. Note that --verify has not been changed - this is for compatibility with gpg, POLA/POLS, and because --verify-cat/--cat provides this behaviour Get rid of a few TODO items that aren't needed. CHANGES 1.99.1 -> 1.99.2 + various minor cleanups + fix longstanding pasto where the key server preference packets are displayed with the correct ptag information + up until now, there has been an asymmetry in the command line options for netpgp(1) - whilst a file may have signature information added to it with the "--sign" command, there has been no way to retrieve the contents of the file without the signature. The new "--cat" option does this (there are synonyms of "--verify-show" and "--verify-cat") - the signature is verified, and if it matches, the original contents of the file are sent to the output file (which defaults to stdout, and can be set with the --output option on the command line). If the signature does not match, there is no output, and an EXIT_FAILURE code is returned. + revamped netpgp(1) to make it clear what commands are available, how these commands relate to each other, and which commands take custom options CHANGES 1.0.0 -> 1.99.1 + released and tagged version 1.0.0; development version now 1.99.1 + get rid of some fields which are no longer needed + minor name changes + add mmapped field to ops_data_t struct to denote that the array needs an munmap(2) and not a free(3) + add an __ops_mem_readfile() function, and use it for reading files. The function does mmap(2), and then falls back to read(2) if that fails. Retire unused __ops_fileread() which had an unusual interface + drop sign_detached() from netpgp.c down into signature.c as __ops_sign_detached() + got rid of "local" header files. These aren't necessary since the openpgpsdk code was modified to all be in the same directory + added netpgp_getvar() and netpgp_setvar(), and use them to get and set the user id and hash algorithm preference + get rid of <stdbool.h> usage - I'm still not sure this is the way we should be going long term, but the bool changes got integrated with the others, and are there in cvs history if we want to resurrect them. Correct autoconf accordingly. Bump netpgp minimus version, and autoconf-based date version. + updated documentation to reflect these changes Commit the weekend's changes: + minor name changes + remove duplicated code (commented out) in packet-print.c + original code contained abstraction violations for hash size - fix them + get rid of some magic constants related to length of hash arrays + allow a choice of hash algorithms for the signature digest (rather than hardcoding SHA1 - it is looking as though collisions are easier to manufacture based on recent findings) + move default signature RSA hash algorithm to SHA256 (from SHA1). This is passed as a string parameter from the high-level interface. We'll revisit this later after a good way to specify the algorithm has been found. + display the size of the keys in --list-packets + display the keydata prior to file decryption + add a --help option + if setrlimit exists, set the core dump size to be 0 (with thanks to mrg for the reference implementation) + get rid of __ops_start_cleartext_sig/__ops_start_msg_sig abstractions and just "export" the __ops_start_sig function - the function is not actually exported, just usable by other __ops functions + bump internal version number to 0.99.2, autoconf version to 20090506 + prettify usage message output Change some names to something a bit less obscure. e.g. For some unfathomable reason, I find "__ops_write_mem_from_file" a bit counterintuitive - replace that by "__ops_fileread" + __ops_packet_t -> __ops_subpacket_t + __ops_parser_content_t -> __ops_packet_t + rename some other long names 51 chars is the record function name length so far + preliminary moves to support detached signatures as yet, incomplete + add back command line option to list packets in a signed or encrypted file + make __ops_parse() take an argument whether to print errors, and kill the __ops_parse_and_print_errors() function + get rid of some assertions in the code - this is a library - about 100 to go Make this code WARNS=4 Add an option to the netpgp command to produce a detached signature.
Diffstat (limited to 'security/netpgp')
-rw-r--r--security/netpgp/Makefile4
-rw-r--r--security/netpgp/distinfo8
2 files changed, 6 insertions, 6 deletions
diff --git a/security/netpgp/Makefile b/security/netpgp/Makefile
index 07649e9bee5..fdcf74b8a69 100644
--- a/security/netpgp/Makefile
+++ b/security/netpgp/Makefile
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.1.1.1 2009/04/29 04:54:34 agc Exp $
+# $NetBSD: Makefile,v 1.2 2009/05/25 06:50:53 agc Exp $
-DISTNAME= netpgp-20090428
+DISTNAME= netpgp-20090525
CATEGORIES= security
MASTER_SITES= ${MASTER_SITE_LOCAL}
diff --git a/security/netpgp/distinfo b/security/netpgp/distinfo
index f95bf684c1d..5d2646cb4b0 100644
--- a/security/netpgp/distinfo
+++ b/security/netpgp/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.1.1.1 2009/04/29 04:54:34 agc Exp $
+$NetBSD: distinfo,v 1.2 2009/05/25 06:50:53 agc Exp $
-SHA1 (netpgp-20090428.tar.gz) = 9948633b57142b021d3b6b84b8b6d0dd3732fcb6
-RMD160 (netpgp-20090428.tar.gz) = 72faf03df8e16332a6ce576d55914fbd5b8cd138
-Size (netpgp-20090428.tar.gz) = 1153777 bytes
+SHA1 (netpgp-20090525.tar.gz) = ad685335d2fd4bbce01926633c45999b421c282a
+RMD160 (netpgp-20090525.tar.gz) = ef3f3f34059acc0c57d441feb5a1cab248d63e2d
+Size (netpgp-20090525.tar.gz) = 1103952 bytes