notbugAs an Amazon Associate I earn from qualifying purchases.
Want a good read? Try FreeBSD Mastery: Jails (IT Mastery Book 15)
Ukraine
NOTE: There is a known problem on production with searching pkg-plist - it returns no results. This problem is not present on stage.freshports.org
non port: security/gnupg/distinfo
SVNWeb

Number of commits found: 102 (showing only 100 on this page)

1 | 2  »  

Sun, 6 Nov 2022
[ 10:46 Daniel Engberg (diizzy) search for other commits by this committer Author: Herbert J. Skuhra ]    commit hash:142c06a26e0fb9293c1614890a1bb5fe04072240  commit hash:142c06a26e0fb9293c1614890a1bb5fe04072240  commit hash:142c06a26e0fb9293c1614890a1bb5fe04072240  142c06a 
security/gnupg: Update to 2.3.8

Changelog:
https://lists.gnupg.org/pipermail/gnupg-announce/2022q4/000476.html

Some additional changes to submitted patch:
- Change PORTVERSION to DISTVERSION
- Generate patch using "make makepatch"
- Remove obsolete configure switch

PR:		267152
Reviewed by:	adridg (maintainer)
Tested by:	Dennis Clarke <dclarke@blastwave.org>
Wed, 13 Oct 2021
[ 14:55 Adam Weinberger (adamw) search for other commits by this committer ]    commit hash:b57a65540fdf5e618b006621f2ab6b946ddfe62c  commit hash:b57a65540fdf5e618b006621f2ab6b946ddfe62c  commit hash:b57a65540fdf5e618b006621f2ab6b946ddfe62c  b57a655 
security/gnupg: Update to 2.3.3

Changes:
 * agent: Fix segv in GET_PASSPHRASE (regression).  [#5577]

  * dirmngr: Fix Let's Encrypt certificate chain validation.  [#5639]

  * gpg: Change default and maximum AEAD chunk size to 4 MiB.
    [ad3dabc9fb]

  * gpg: Print a warning when importing a bad cv25519 secret key.
    [#5464]

  * gpg: Fix --list-packets for undecryptable AEAD packets.  [#5584]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 24 Aug 2021
[ 18:34 Adam Weinberger (adamw) search for other commits by this committer ]    commit hash:c12c1702536793c438e1835b4b56c9b1751fe49e  commit hash:c12c1702536793c438e1835b4b56c9b1751fe49e  commit hash:c12c1702536793c438e1835b4b56c9b1751fe49e  c12c170 
security/gnupg: Update to 2.3.2

Changes:
  * gpg: Allow fingerprint based lookup with --locate-external-key.
    [ec36eca08c]

  * gpg: Allow decryption w/o public key but with correct card
    inserted.  [50293ec2eb]

  * gpg: Auto import keys specified with --trusted-keys.  [100037ac0f]

  * gpg: Do not use import-clean for LDAP keyserver imports.  [#5387]

  * gpg: Fix mailbox based search via AKL keyserver method.  [4fcfac6feb]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 20 Apr 2021
[ 14:15 Adam Weinberger (adamw) search for other commits by this committer ]    commit hash:c260503847e4bc82132a2632f9cf2d23547d8124  commit hash:c260503847e4bc82132a2632f9cf2d23547d8124  commit hash:c260503847e4bc82132a2632f9cf2d23547d8124  c260503 
security/gnupg: Update to 2.3.1
Thu, 8 Apr 2021
[ 18:45 Adam Weinberger (adamw) search for other commits by this committer ]    commit hash:433d2e2d0cc31894e2660f4faf87b4cfcd59c08b  commit hash:433d2e2d0cc31894e2660f4faf87b4cfcd59c08b  commit hash:433d2e2d0cc31894e2660f4faf87b4cfcd59c08b  433d2e2 
security/gnupg: Update to 2.3.0

Changes:
  * A new experimental key database daemon is provided.  To enable it
    put "use-keyboxd" into gpg.conf and gpgsm.conf.  Keys are stored
    in a SQLite database and make key lookup much faster.

  * New tool gpg-card as a flexible frontend for all types of
    supported smartcards.

  * New option --chuid for gpg, gpgsm, gpgconf, gpg-card, and
    gpg-connect-agent.

  * The gpg-wks-client tool is now installed under bin; a wrapper for
    its old location at libexec is also installed.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 12 Jan 2021
[ 04:50 adamw search for other commits by this committer ] Original commit   Revision:561299
security/gnupg: Update to 2.2.27

 * gpg: Fix regression in 2.2.24 for gnupg_remove function under
   Windows.  [#5230]

 * gpgconf: Fix case with neither local nor global gpg.conf.  [9f37d3e6f3]

 * gpgconf: Fix description of two new options.  [#5221]

 * Build Windows installer without timestamps.  Note that the
   Authenticode signatures still carry a timestamp.

  Release-info: https://dev.gnupg.org/T5234
Tue, 22 Dec 2020
[ 09:14 adamw search for other commits by this committer ] Original commit   Revision:558894
security/gnupg: Update to 2.2.26

Note that this release removes bin/symcryptrun which had essentially no
expected current use-case.

 * gpg: New AKL method "ntds".
 * gpg: Fix --trusted-key with fingerprint arg.
 * scd: Fix writing of ECC keys to an OpenPGP card.  [#5163]
 * scd: Make an USB error fix specific to SPR532 readers.  [#5167]
 * dirmngr: With new LDAP keyservers store the new attributes.  Never
   store the useless pgpSignerID.  Fix a long standing bug storing
   some keys on an ldap server.
 * dirmngr: Support the new Active Direcory LDAP schema for
   keyservers.
 * dirmngr: Allow LDAP OpenPGP searches via fingerprint.
 * dirmngr: Do not block other threads during keyserver LDAP calls.
 * Support global configuration files.  [#4788]
 * Fix the iconv fallback handling to UTF-8.  [#5038]
 Release-info: https://dev.gnupg.org/T5153
Tue, 24 Nov 2020
[ 15:55 adamw search for other commits by this committer ] Original commit   Revision:556165
security/gnupg: Update to 2.2.25

  * scd: Fix regression in 2.2.24 requiring gpg --card-status before
    signing or decrypting.  [#5065]

  * gpgsm: Using Libksba 1.5.0 signatures with a rarely used
    combination of attributes can now be verified.  [#5146]

  Release-info: https://dev.gnupg.org/T5140
Tue, 17 Nov 2020
[ 14:12 adamw search for other commits by this committer ] Original commit   Revision:555559
security/gnupg: Update to 2.2.24

  * Allow Unicode file names on Windows almost everywhere.  Note that
    it is still not possible to use Unicode strings on the command
    line.  This change also fixes a regression in 2.2.22 related to
    non-ascii file names.  [#5098]

  * Fix localized time printing on Windows.  [#5073]

  * gpg: New command --quick-revoke-sig.  [#5093]

  * gpg: Do not use weak digest algos if selected by recipient
    preference during sign+encrypt.  [4c181d51a6]

  * gpg: Switch to AES256 for symmetric encryption in de-vs mode.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 4 Sep 2020
[ 02:12 adamw search for other commits by this committer ] Original commit   Revision:547499
security/gnupg: Update to 2.2.23

Importing an OpenPGP key having a preference list for AEAD algorithms
will lead to an array overflow and thus often to a crash or other
undefined behaviour.

Importing an arbitrary key can often easily be triggered by an attacker
and thus triggering this bug.  Exploiting the bug aside from crashes is
not trivial but likely possible for a dedicated attacker.  The major
hurdle for an attacker is that only every second byte is under their
control with every first byte having a fixed value of 0x04.

Software distribution verification should not be affected by this bug
because such a system uses a curated list of keys.

MFH:		2020Q3
Security:	CVE-2020-25125
Thu, 27 Aug 2020
[ 19:58 adamw search for other commits by this committer ] Original commit   Revision:546681
security/gnupg: Update to 2.2.22

Also, sort plist. The new gpgsplit binary is getting installed as
gpgsplit2 to avoid a conflict with security/gnupg1.

Noteworthy changes in version 2.2.22
====================================

  * gpg: Change the default key algorithm to rsa3072.

  * gpg: Add regular expression support for Trust Signatures on all
    platforms.  [#4843]

  * gpg: Fix regression in 2.2.21 with non-default --passphrase-repeat
    option.  [#4991]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Thu, 9 Jul 2020
[ 13:27 adamw search for other commits by this committer ] Original commit   Revision:541749
gnupg: Update to 2.2.21

 * gpg: Improve symmetric decryption speed by about 25%.
   See commit 144b95cc9d.

 * gpg: Support decryption of AEAD encrypted data packets.

 * gpg: Add option --no-include-key-block. [#4856]

 * gpg: Allow for extra padding in ECDH.  [#4908]

 * gpg: Only a single pinentry is shown for symmetric encryption if
   the pinentry supports this.  [#4971]

 * gpg: Print a note if no keys are given to --delete-key.  [#4959]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 20 Mar 2020
[ 18:51 adamw search for other commits by this committer ] Original commit   Revision:528793
gnupg: Update to 2.2.20

Noteworthy changes in version 2.2.20
====================================

  * Protect the error counter against overflow to guarantee that the
    tools can't be tricked into returning success after an error.

  * gpg: Make really sure that --verify-files always returns an error.

  * gpg: Fix key listing --with-secret if a pattern is given.  [#4061]

  * gpg: Fix detection of certain keys used as default-key.  [#4810]

  * gpg: Fix default-key selection when a card is available.  [#4850]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 7 Dec 2019
[ 17:14 adamw search for other commits by this committer ] Original commit   Revision:519219
gnupg: Update to 2.2.19

  * gpg: Fix double free when decrypting for hidden recipients.
    Regression in 2.2.18.  [#4762].

  * gpg: Use auto-key-locate for encryption even for mail addressed
    given with angle brackets.  [#4726]

  * gpgsm: Add special case for certain expired intermediate
    certificates.  [#4696]

  Release-info: https://dev.gnupg.org/T4768
Tue, 26 Nov 2019
[ 03:21 adamw search for other commits by this committer ] Original commit   Revision:518443
gnupg: Update to 2.2.18

  * gpg: Changed the way keys are detected on a smartcards; this
    allows the use of non-OpenPGP cards.  In the case of a not very
    likely regression the new option --use-only-openpgp-card is
    available.  [#4681]

  * gpg: The commands --full-gen-key and --quick-gen-key now allow
    direct key generation from supported cards.  [#4681]

  * gpg: Prepare against chosen-prefix SHA-1 collisions in key
    signatures.  This change removes all SHA-1 based key signature
    newer than 2019-01-19 from the web-of-trust.  Note that this
    includes all key signature created with dsa1024 keys.  The new
    option --allow-weak-key-signatues can be used to override the new
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 9 Jul 2019
[ 15:54 adamw search for other commits by this committer ] Original commit   Revision:506281
gnupg: Update to 2.2.17, with security fixes

 * gpg: Ignore all key-signatures received from keyservers.  This
   change is required to mitigate a DoS due to keys flooded with
   faked key-signatures.  The old behaviour can be achieved by adding
     keyserver-options no-self-sigs-only,no-import-clean
   to your gpg.conf.  [#4607]

 * gpg: If an imported keyblocks is too large to be stored in the
   keybox (pubring.kbx) do not error out but fallback to an import
   using the options "self-sigs-only,import-clean".  [#4591]

 * gpg: New command --locate-external-key which can be used to
   refresh keys from the Web Key Directory or via other methods
   configured with --auto-key-locate.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 29 May 2019
[ 14:43 adamw search for other commits by this committer ] Original commit   Revision:502962
Update gnupg to 2.2.16
Wed, 27 Mar 2019
[ 02:18 adamw search for other commits by this committer ] Original commit   Revision:496934
Update gnupg to 2.2.15

  * sm: Fix --logger-fd and --status-fd on Windows for non-standard
    file descriptors.

  * sm: Allow decryption even if expired keys are configured.  [#4431]

  * agent: Change command KEYINFO to print ssh fingerprints with other
    hash algos.

  * dirmngr: Fix build problems on Solaris due to the use of reserved
    symbol names.  [#4420]

  * wkd: New commands --print-wkd-hash and --print-wkd-url for
    gpg-wks-client.

  Release-info: https://dev.gnupg.org/T4434
Tue, 26 Mar 2019
[ 00:05 adamw search for other commits by this committer ] Original commit   Revision:496862
Update gnupg to 2.2.14, pet portlint, and remove a redundant readline
dependency.

  * gpg: Allow import of PGP desktop exported secret keys.  Also avoid
   importing secret keys if the secret keyblock is not valid.  [#4392]

  * gpg: Do not error out on version 5 keys in the local keyring.

  * gpg: Make invalid primary key algo obvious in key listings.

  * sm: Do not mark a certificate in a key listing as de-vs compliant
    if its use for a signature will not be possible.

  * sm: Fix certificate creation with key on card.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 13 Feb 2019
[ 02:37 adamw search for other commits by this committer ] Original commit   Revision:492823
Update gnupg to 2.2.13

  * gpg: Implement key lookup via keygrip (using the & prefix).

  * gpg: Allow generating Ed25519 key from existing key.

  * gpg: Emit an ERROR status line if no key was found with -k.

  * gpg: Stop early when trying to create a primary Elgamal key.  [#4329]

  * gpgsm: Print the card's key algorithms along with their keygrips
    in interactive key generation.

  * agent: Clear bogus pinentry cache in the error case.  [#4348]

  * scd: Support "acknowledge button" feature.

  * scd: Fix for USB INTERRUPT transfer.  [#4308]

  * wks: Do no use compression for the the encrypted challenge and
    response.

  Release-info: https://dev.gnupg.org/T4290
Fri, 14 Dec 2018
[ 20:01 adamw search for other commits by this committer ] Original commit   Revision:487464
Update gnupg to 2.2.12

 * tools: New commands --install-key and --remove-key for
    gpg-wks-client.  This allows to prepare a Web Key Directory on a
    local file system for later upload to a web server.

  * gpg: New --list-option "show-only-fpr-mbox".  This makes the use
    of the new gpg-wks-client --install-key command easier on Windows.

  * gpg: Improve processing speed when --skip-verify is used.

  * gpg: Fix a bug where a LF was accidentally written to the console.

  * gpg: --card-status now shwos whether a card has the new KDF
    feature enabled.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 7 Nov 2018
[ 04:30 adamw search for other commits by this committer ] Original commit   Revision:484383
Update gnupg to 2.2.11

  * gpgsm: Fix CRL loading when intermediate certicates are not yet
    trusted.

  * gpgsm: Fix an error message about the digest algo.  [#4219]

  * gpg: Fix a wrong warning due to new sign usage check introduced
    with 2.2.9.  [#4014]

  * gpg: Print the "data source" even for an unsuccessful keyserver
    query.

  * gpg: Do not store the TOFU trust model in the trustdb.  This
    allows to enable or disable a TOFO model without triggering a
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Thu, 30 Aug 2018
[ 14:45 adamw search for other commits by this committer ] Original commit   Revision:478464
Update gnupg to 2.2.10 and add LARGE_RSA option

The LARGE_RSA option [1] enables 8192-bit keys, though GnuPG's lead
author does not recommend using it routinely.

Also, sort OPTIONS, and move an explanation of the SUID option from
the Makefile into pkg-help, where it belongs.

Major changes:
  gpg: Refresh expired keys originating from the WKD.
  gpg: Use a 256 KiB limit for a WKD imported key.
  gpg: New option --known-notation.
  scd: Add support for the Trustica Cryptoucan reader.
  agent: Speed up starting during on-demand launching.
  dirmngr: Validate SRV records in WKD queries.
  Release-info: https://dev.gnupg.org/T4112

PR:		230610 [1]
Submitted by:	Dmitri Goutnik
Reported by:	p5B2E9A8F t online de
Thu, 12 Jul 2018
[ 17:34 adamw search for other commits by this committer ] Original commit   Revision:474528
Update gnupg to 2.2.9

  * dirmngr: Fix recursive resolver mode and other bugs in the libdns
    code.  [#3374,#3803,#3610]

  * dirmngr: When using libgpg-error 1.32 or later a GnuPG build with
    NTBTLS support (e.g. the standard Windows installer) does not
    anymore block for dozens of seconds before returning data.  If you
    still have problems on Windows, please consider to use one of the
    options disable-ipv4 or disable-ipv6.

  * gpg: Fix bug in --show-keys which actually imported revocation
    certificates.  [#4017]

  * gpg: Ignore too long user-ID and comment packets.  [#4022]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 8 Jun 2018
[ 14:18 adamw search for other commits by this committer ] Original commit   Revision:472003
Update gnupg to 2.2.8 (security release)

CVE-2018-12020:
The OpenPGP protocol allows to include the file name of the original
input file into a signed or encrypted message.  During decryption and
verification the GPG tool can display a notice with that file name.  The
displayed file name is not sanitized and as such may include line feeds
or other control characters.  This can be used inject terminal control
sequences into the out and, worse, to fake the so-called status
messages.  These status messages are parsed by programs to get
information from gpg about the validity of a signature and an other
parameters.  Status messages are created with the option "--status-fd N"
where N is a file descriptor.  Now if N is 2 the status messages and the
regular diagnostic messages share the stderr output channel.  By using a
made up file name in the message it is possible to fake status messages.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 4 May 2018
[ 12:31 adamw search for other commits by this committer ] Original commit   Revision:469025
Update gnupg to 2.2.7

Also, remove unnecessary USE_LDCONFIG.

  * gpg: New option --no-symkey-cache to disable the passphrase cache
    for symmetrical en- and decryption.

  * gpg: The ERRSIG status now prints the fingerprint if that is part
    of the signature.

  * gpg: Relax emitting of FAILURE status lines

  * gpg: Add a status flag to "sig" lines printed with --list-sigs.

  * gpg: Fix "Too many open files" when using --multifile.  [#3951]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 11 Apr 2018
[ 00:56 adamw search for other commits by this committer ] Original commit   Revision:467022
Update gnupg to 2.2.6

  * gpg,gpgsm: New option --request-origin to pretend requests coming
    from a browser or a remote site.

  * gpg: Fix race condition on trustdb.gpg updates due to too early
    released lock.  [#3839]

  * gpg: Emit FAILURE status lines in almost all cases.  [#3872]

  * gpg: Implement --dry-run for --passwd to make checking a key's
    passphrase straightforward.

  * gpg: Make sure to only accept a certification capable key for key
    signatures.  [#3844]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 23 Feb 2018
[ 14:24 adamw search for other commits by this committer ] Original commit   Revision:462700
Update gnupg to 2.2.5

Changes: https://lists.gnupg.org/pipermail/gnupg-announce/2018q1/000420.html
Thu, 21 Dec 2017
[ 01:16 adamw search for other commits by this committer ] Original commit   Revision:456878
Update gnupg to 2.2.4. Bump the libassuan requirement to 2.5.1.

  * gpg: Change default preferences to prefer SHA512.

  * gpg: Print a warning when more than 150 MiB are encrypted using a
    cipher with 64 bit block size.

  * gpg: Print a warning if the MDC feature has not been used for a
    message.

  * gpg: Fix regular expression of domain addresses in trust
    signatures. [#2923]

  * agent: New option --auto-expand-secmem to help with high numbers
    of concurrent connections.  Requires libgcrypt 1.8.2 for having
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Wed, 22 Nov 2017
[ 02:04 adamw search for other commits by this committer ] Original commit   Revision:454661
Update to 2.2.3

 * gpgsm: Fix initial keybox creation on Windows. [#3507]

 * dirmngr: Fix crash in case of a CRL loading error. [#3510]

 * Fix the name of the Windows registry key. [Git#4f5afaf1fd]

 * gpgtar: Fix wrong behaviour of --set-filename. [#3500]

 * gpg: Silence AKL retrieval messages. [#3504]

 * agent: Use clock or clock_gettime for calibration. [#3056]

 * agent: Improve robustness of the shutdown pending
   state. [Git#7ffedfab89]
Thu, 9 Nov 2017
[ 17:03 adamw search for other commits by this committer ] Original commit   Revision:453850
Update to 2.2.2

Also, improve COMMENT, which conflicted with the pkg-descr.

 * gpg: Avoid duplicate key imports by concurrently running gpg
   processes. [#3446]

 * gpg: Fix creating on-disk subkey with on-card primary key. [#3280]

 * gpg: Fix validity retrieval for multiple keyrings. [Debian#878812]

 * gpg: Fix --dry-run and import option show-only for secret keys.

 * gpg: Print "sec" or "sbb" for secret keys with import option
   import-show. [#3431]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 19 Sep 2017
[ 18:31 adamw search for other commits by this committer ] Original commit   Revision:450153
Update gnupg to 2.2.1, and remove the security/gnupg22 port

I misjudged the timeline for 2.3, and had not processed that the
intent of 2.3 is different from 2.1. Rather than 2.3 being a "modern"
branch and 2.2 being purely "stable," 2.3 will be development and
users are encouraged to remain on 2.2. Furthermore, upstream doesn't
expent a 2.3 release for a year or so.

Accordingly, I'm removing the gnupg22 port and updating security/gnupg
to be 2.2. gnugp20 is still scheduled for deletion at the end of the
year.
Thu, 10 Aug 2017
[ 01:31 adamw search for other commits by this committer ] Original commit   Revision:447661
Update to 2.1.23, and use the correct TEST_TARGET.


 * gpg: Options --auto-key-retrieve and --auto-key-locate "local,wkd"
   are now used by default.  Note: this enables keyserver and Web Key
   Directory operators to notice when a signature from a locally
   non-available key is being verified for the first time or when
   you intend to encrypt to a mail address without having the key
   locally.  This new behaviour will eventually make key discovery
   much easier and mostly automatic.  Disable this by adding
     no-auto-key-retrieve
     auto-key-locate local
   to your gpg.conf.

 * agent: Option --no-grab is now the default.  The new option --grab
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 5 Aug 2017
[ 17:32 adamw search for other commits by this committer ] Original commit   Revision:447409
Update to 2.1.22.

Noteworthy changes in version 2.1.22
====================================

 * gpg: Extend command --quick-set-expire to allow for setting the
   expiration time of subkeys.

 * gpg: By default try to repair keys during import.  New sub-option
   no-repair-keys for --import-options.

 * gpg,gpgsm: Improved checking and reporting of DE-VS compliance.

 * gpg: New options --key-origin and --with-key-origin.  Store the
   time of the last key update from keyservers, WKD, or DANE.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Mon, 15 May 2017
[ 22:24 adamw search for other commits by this committer ] Original commit   Revision:440980
Update to 2.1.21, which in particular fixes a keyring corruption bug.


  * gpg,gpgsm: Fix corruption of old style keyring.gpg files.  This
    bug was introduced with version 2.1.20.  Note that the default
    pubring.kbx format was not affected.

  * gpg,dirmngr: Removed the skeleton config file support.  The
    system's standard methods for providing default configuration
    files should be used instead.

  * w32: The Windows installer now allows installion of GnuPG without
    Administrator permissions.

  * gpg: Fixed import filter property match bug.

  * scd: Removed Linux support for Cardman 4040 PCMCIA reader.

  * scd: Fixed some corner case bugs in resume/suspend handling.

  * Many minor bug fixes and code cleanup.

MFH:		2017Q2
Mon, 3 Apr 2017
[ 20:53 adamw search for other commits by this committer ] Original commit   Revision:437674
Update to 2.1.20.

 * gpg: New properties 'expired', 'revoked', and 'disabled' for the
   import and export filters.

 * gpg: New command --quick-set-primary-uid.

 * gpg: New compliance field for the --with-colon key listing.

 * gpg: Changed the key parser to generalize the processing of local
   meta data packets.

 * gpg: Fixed assertion failure in the TOFU trust model.

 * gpg: Fixed exporting of zero length user ID packets.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Fri, 3 Mar 2017
[ 03:43 adamw search for other commits by this committer ] Original commit   Revision:435304
Update to 2.1.19.

Noteworthy changes in version 2.1.19
====================================

  * gpg: Print a warning if Tor mode is requested but the Tor daemon
    is not running.

  * gpg: New status code DECRYPTION_KEY to print the actual private
    key used for decryption.

  * gpgv: New options --log-file and --debug.

  * gpg-agent: Revamp the prompts to ask for card PINs.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Mon, 23 Jan 2017
[ 23:01 adamw search for other commits by this committer ] Original commit   Revision:432305
Update to 2.1.18

Noteworthy changes in version 2.1.18
====================================

 * gpg: Remove bogus subkey signature while cleaning a key (with
   export-clean, import-clean, or --edit-key's sub-command clean)

 * gpg: Allow freezing the clock with --faked-system-time.

 * gpg: New --export-option flag "backup", new --import-option flag
   "restore".

 * gpg-agent: Fixed long delay due to a regression in the progress
   callback code.
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 14 Jan 2017
[ 23:46 adamw search for other commits by this committer ] Original commit   Revision:431502
Update GnuPG to 2.1.17 which resolves the following error that resulted when
attempting to use the --export-ssh-key option.

gpg: Ohhhh jeeee: Assertion "ret_found_key == NULL || ret_keyblock != NULL" in
lookup failed (getkey.c:3677)

The KDNS option is removed with this update because upstream dropped use of
adns in favor of a bundled libdns which is used by default. Also, removed an
obsolete patch.

PR:		216057
Submitted by:	Matthew Rezny
Tue, 10 Jan 2017
[ 02:38 adamw search for other commits by this committer ] Original commit   Revision:431053
A little more detail into COMMENT, reflow the pkg-descr, and use pro mode
for the plist.
Sun, 20 Nov 2016
[ 12:18 novel search for other commits by this committer ] Original commit   Revision:426573
security/gnupg: update to 2.1.16

This release fixes an issue that the previous gnupg release (2.1.15)
was incompatible with libgpg-error 1.25 that caused gpg-agent failing
to start.

PR:		214568
Submitted by:	cmt
Tested by:	cmt
Reported by:	many
Tue, 18 Oct 2016
[ 18:45 cmt search for other commits by this committer ] Original commit   Revision:424203
update gnupg to 2.1.15

PR:		212355
Approved by:	rene (mentor)
Approved by:	maintainer timeout
Mon, 20 Jun 2016
[ 10:49 kuriyama search for other commits by this committer ] Original commit   Revision:417149
- Upgrade to 2.1.13 (minor bugfixes).
Fri, 6 May 2016
[ 15:48 kuriyama search for other commits by this committer ] Original commit   Revision:414711
- Upgrade to 2.1.12 (bugfixes).
Fri, 19 Feb 2016
[ 11:12 rakuco search for other commits by this committer ] Original commit   Revision:409166
Regenerate distinfo information for gnupg-2.1.11.tar.bz2.sig.

This fixes `make fetch'.

The actual hash and sizes are different, as mentioned in the associated PR.
I have also checked it manually, and verified the tarball's signature with
`gpg --verify gnupg-2.1.11.tar.bz2.sig gnupg-2.1.11.tar.bz2'.

I don't understand how this happened, but it looks similar to bug 202312.

PR:		207327
Submitted by:	Trond.Endrestol@ximalas.info
[ 06:25 kuriyama search for other commits by this committer ] Original commit   Revision:409152
Update to 2.1.11 (minor fixes, with upstream patch).
Mon, 14 Sep 2015
[ 00:27 kuriyama search for other commits by this committer ] Original commit   Revision:396876
- Upgrade to 2.1.8 (minor bugfixes).
Mon, 17 Aug 2015
[ 01:47 kuriyama search for other commits by this committer ] Original commit   Revision:394433
Add more signature (locally verified).

PR:		ports/202312
Submitted by:	igorz@yandex.ru
Tue, 11 Aug 2015
[ 22:50 kuriyama search for other commits by this committer ] Original commit   Revision:393983
- Upgrade to 2.1.7 (minor fixes).
Thu, 2 Jul 2015
[ 14:10 kuriyama search for other commits by this committer ] Original commit   Revision:391147
- Upgrade to 2.1.6 (minor bugfixes).

Announce:	https://lists.gnupg.org/pipermail/gnupg-announce/2015q3/000370.html
Sat, 13 Jun 2015
[ 07:34 kuriyama search for other commits by this committer ] Original commit   Revision:389326
- Upgrade to 2.1.5 (bugfixes, minor enhancements).
Sun, 24 May 2015
[ 12:55 kuriyama search for other commits by this committer ] Original commit   Revision:387262
- Update dist signature file.

Old one has "Werner Koch (dist sig)" only (287 bytes).  New one adds
"NIIBE Yutaka (GnuPG Release Key) <gniibe@fsij.org>" signature (574 bytes).

I verified both of signature files.

Reported by:	Lena@lena.kiev.ua
Tue, 19 May 2015
[ 14:16 kuriyama search for other commits by this committer ] Original commit   Revision:386777
Upgrade to 2.1.4 (bugfixes since 2.1.2).
Wed, 18 Feb 2015
[ 22:31 kuriyama search for other commits by this committer ] Original commit   Revision:379323
- Upgrade to 2.1.2 (bugfixes).
Sun, 28 Dec 2014
[ 14:04 kuriyama search for other commits by this committer ] Original commit   Revision:375723
- Upgrade to 2.1.1 and various fixes.

Sorry for mess at introducing 2.1.0.  This branch is *modern* release,
and please use security/gnupg{1,20} for stable gpg.  Patches are welcome
to use DEFAULT_VERSIONS. :-)

PR:		ports/195489, ports/195931, ports/195459, ports/196301
Submitted by:	rakuco, Matthew West <freebsd@r.zeeb.org>, Phil Pennock
<freebsd@phil.spodhuis.org>, tijl
Thu, 20 Nov 2014
[ 05:11 kuriyama search for other commits by this committer ] Original commit   Revision:372835
- Upgrade security/gnupg to 2.1.0 (modern release) and copy previous
  as security/gnupg20 (stable release).
- Set PINENTRY as default option.
Thu, 14 Aug 2014
[ 22:16 kuriyama search for other commits by this committer ] Original commit   Revision:364873
- Upgrade to 2.0.26 (minor fixes).
Mon, 30 Jun 2014
[ 22:44 kuriyama search for other commits by this committer ] Original commit   Revision:359936
- Upgrade to 2.0.25 (bugfix).
- Fix STD_SOCKET option argument [1].

PR:		ports/191150 [1]
Submitted by:	mazhe@alkumuna.eu [1]
Tue, 24 Jun 2014
[ 14:42 kuriyama search for other commits by this committer ] Original commit   Revision:359088
- Upgrade to 2.0.24 (security).
- Explicitly depends on libgpg-error>=1.11 [1]
- Turn on PINENTRY option by default [2]
  (I don't like this, but by popular demand for years...)

Submitted by:	dereckson@gmail.com [1], sbruno [2]
PR:		ports/138424 [1], ports/189394 [2]
Tue, 3 Jun 2014
[ 12:19 kuriyama search for other commits by this committer ] Original commit   Revision:356333
- Upgrade to 2.0.23 (minor enhancement).
Sat, 5 Oct 2013
[ 09:34 kuriyama search for other commits by this committer ] Original commit   Revision:329429
- Upgrade 2.0.22 (security, VuXML entry will follow).
- Pet portlint about pkg-plist.
- Use $STAGEDIR.
- Turn setuid knob to OptionsNG [1]

PR:		ports/181495 [1]
Submitted by:	Matthew Luckie <mjl@luckie.org.nz> [1]
Mon, 19 Aug 2013
[ 13:29 kuriyama search for other commits by this committer ] Original commit   Revision:324990
- Upgrade to 2.0.21 (minor improvements).
Sat, 11 May 2013
[ 01:38 kuriyama search for other commits by this committer ] Original commit   Revision:317847
- Upgrade to 2.0.20.
Tue, 27 Mar 2012
[ 10:03 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.19.

Feature safe:   yes
Fri, 5 Aug 2011
[ 00:35 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.18:
  - Support the SSH confirm flag and show SSH fingerprints in ssh
    related pinentries.
  - Improved dirmngr/gpgsm interaction for OCSP.
  - Allow generation of card keys up to 4096 bit.

- Improve for port:
  - Remove patch that was incorporated into this release.
  - Remove redundant BUILD_DEPENDS.
  - Patching should be done in a -patch target. Silence the REINPLACE.

Submitted by:   dougb
PR:             ports/159520
Tue, 8 Feb 2011
[ 03:40 dougb search for other commits by this committer ] Original commit 
Version 2.0.17 was released on 2011-01-13:

What's New
===========
* Allow more hash algorithms with the OpenPGP v2 card.
* The gpg-agent now tests for a new gpg-agent.conf on a HUP.
* Fixed output of "gpgconf --check-options".
* Fixed a bug where Scdaemon sends a signal to Gpg-agent running in
  non-daemon mode.
* Fixed TTY management for pinentries and session variable update
  problem.
* Minor bug fixes.

For the port:
Camellia stopped being a configure option in 2.0.12
Fix minor typo for GPGSM OPTION
Minor plist update for 2.0.17

files/patch-keybox-blob.c seems to be no longer needed [2]

PR:             ports/153984
Submitted by:   me
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp> [2]
Approved by:    maintainer timeout (24 days)
Feature safe:   yes
Tue, 20 Jul 2010
[ 14:01 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.16.
- Add license info.

PR:             ports/148756
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
Thu, 17 Jun 2010
[ 21:33 dougb search for other commits by this committer ] Original commit 
Update to version 2.0.15, which has the following changes:
 * New command --passwd for GPG.
 * Fixes a regression in 2.0.14 which prevented unprotection of new
   or changed gpg-agent passphrases.
 * Make use of libassuan 2.0 which is available as a DSO.

For the port:
 * Since libassuan is now a shared lib, move it LIB_DEPENDS
 * Remove now-spurious CONFLICTS

Approved by:    maintainer
Tue, 22 Dec 2009
[ 08:24 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.14.
Sat, 5 Sep 2009
[ 15:22 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.13.
Wed, 17 Jun 2009
[ 14:59 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.12.
- Turn on Camellia option (rfc5581 published).

PR:             ports/135668
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
Wed, 4 Mar 2009
[ 14:27 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 2.0.11 (minor fixes).
Tue, 13 Jan 2009
[ 01:24 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 2.0.10.

PR:             ports/130430
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
Announcement:  
https://lists.gnupg.org/pipermail/gnupg-announce/2009q1/000284.html
Sat, 26 Apr 2008
[ 23:48 miwi search for other commits by this committer ] Original commit 
- Update to 2.0.9

Notes:
        This update fixes a possible security vulnerability involving
        memory corruption from importing malicious keys.

PR:             122114/122349
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp> / Nick Barkas
<snb@threerings.net>
Approved by:    maintainer timeout
Security:      
http://www.vuxml.org/freebsd/30394651-13e1-11dd-bab7-0016179b2dd5.html
Tue, 4 Mar 2008
[ 22:57 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.8.
- Change dependency versions.
- NLS option back again.
- Make GPGSM option off by default (to avoid ldap dependency in package).

PR:             ports/118895
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
Sat, 16 Jun 2007
[ 03:20 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 2.0.4 (maintainance release with a few minor enhancements).

PR:             ports/113676
Submitted by:   Hirohisa Yamaguchi <umq@ueo.co.jp>
Thu, 8 Mar 2007
[ 21:20 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.3 (including same safety belt as of 1.4.7).

References:    
http://lists.gnupg.org/pipermail/gnupg-announce/2007q1/000251.html
Sat, 3 Feb 2007
[ 03:08 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 2.0.2.
Thu, 21 Dec 2006
[ 13:31 kuriyama search for other commits by this committer ] Original commit  (Only the first 10 of 39 ports in this commit are shown above. View all ports for this commit)
- Upgrade gnupg to 2.0.1.  Old stable version (1.4.6) was repocopied
  to security/gnupg1.

Thanks to:      dougb, lofi
Thu, 7 Dec 2006
[ 00:34 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 1.4.6 (including security fix).

Security:       CVE-2006-6235
References:    
http://lists.gnupg.org/pipermail/gnupg-announce/2006q4/000491.html
Wed, 2 Aug 2006
[ 01:34 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 1.4.5.
  (fixes 2 more possible memory allocation attacks).
- Enable OPTIONS [1].

Security:      
http://lists.gnupg.org/pipermail/gnupg-announce/2006q3/000229.html
PR:             ports/93540 [1]
Submitted by:   Pawel Wieleba <P.Wieleba@iem.pw.edu.pl> [1]
Sun, 25 Jun 2006
[ 23:32 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 1.4.4.
  (fixes user ID handling bug).

Security:      
http://lists.gnupg.org/pipermail/gnupg-announce/2006q2/000226.html
Mon, 3 Apr 2006
[ 12:57 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 1.4.3.
- Handle hidden dependency on libusb (1).

Submitted by:   Peter Pentchev <roam@ringlet.net> (1)
Thu, 9 Mar 2006
[ 22:44 kuriyama search for other commits by this committer ] Original commit 
Update to 1.4.2.2.

Security:       GnuPG does not detect injection of unsigned data
References:    
http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000216.html
Probbed by:     simon
Approved by:    portmgr (erwin)
Wed, 15 Feb 2006
[ 08:56 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.4.2.1.

Security:       False positive signature verification in GnuPG
References:    
http://lists.gnupg.org/pipermail/gnupg-announce/2006q1/000211.html
Prodded by:     simon
Fri, 16 Dec 2005
[ 02:16 kuriyama search for other commits by this committer ] Original commit 
Add SHA256.

PR:             ports/90105
Submitted by:   Thomas Vogt <thomas@bsdunix.ch>
Sun, 31 Jul 2005
[ 22:31 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.4.2.

PR:             ports/84289
Submitted by:   Vasil Dimov <vd@datamax.bg>
Sun, 24 Apr 2005
[ 04:42 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.4.1.

PR:             ports/80157
Submitted by:   Vasil Dimov <vd@datamax.bg>
Kindly knocked by:      dougb
Wed, 29 Dec 2004
[ 15:40 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.4.0.
Tue, 31 Aug 2004
[ 10:04 osa search for other commits by this committer ] Original commit 
Update to 1.2.6.
Utilize DOCSDIR and DATADIR macros.

Approved by:    kuriyama (maintainer)
Tue, 3 Aug 2004
[ 06:30 kuriyama search for other commits by this committer ] Original commit 
- Upgrade to 1.2.5.
- Remove unnecessary "@unexec rmdir"s for locales.
Thu, 18 Mar 2004
[ 00:48 kuriyama search for other commits by this committer ] Original commit  (Only the first 10 of 49 ports in this commit are shown above. View all ports for this commit)
SIZEify.

Submitted by:   trevor
Wed, 24 Dec 2003
[ 05:59 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.2.4.
Sat, 23 Aug 2003
[ 06:34 kuriyama search for other commits by this committer ] Original commit 
o Upgrade to 1.2.3.
o Remove explicit --enable-tiger from $CONFIGURE_ARGS.  This feature will
  be removed from GnuPG.
Tue, 6 May 2003
[ 15:09 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.2.2.
Sat, 26 Oct 2002
[ 05:07 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.2.1.
Sun, 6 Oct 2002
[ 08:55 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.2.0.

PR:             ports/43211
Submitted by:   Jason Harris <jharris@widomaker.com>
Modified by:    kuriyama (for WITH_LDAP)
Tue, 30 Apr 2002
[ 13:13 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.0.7.

See http://www.gnupg.org/whatsnew.html#rn20020429 for changelog.
Wed, 30 May 2001
[ 01:44 kris search for other commits by this committer ] Original commit 
Upgrade to gnupg 1.0.6.  This is an important security update due to an  
exploitable format string vulnerability in decoding files    
Mon, 30 Apr 2001
[ 04:22 kuriyama search for other commits by this committer ] Original commit 
Upgrade to 1.0.5.    

Number of commits found: 102 (showing only 100 on this page)

1 | 2  »