head 1.16; access; symbols pkgsrc-2023Q4:1.16.0.6 pkgsrc-2023Q4-base:1.16 pkgsrc-2023Q3:1.16.0.4 pkgsrc-2023Q3-base:1.16 pkgsrc-2023Q2:1.16.0.2 pkgsrc-2023Q2-base:1.16 pkgsrc-2023Q1:1.14.0.2 pkgsrc-2023Q1-base:1.14 pkgsrc-2022Q4:1.13.0.4 pkgsrc-2022Q4-base:1.13 pkgsrc-2022Q3:1.13.0.2 pkgsrc-2022Q3-base:1.13 pkgsrc-2022Q2:1.12.0.6 pkgsrc-2022Q2-base:1.12 pkgsrc-2022Q1:1.12.0.4 pkgsrc-2022Q1-base:1.12 pkgsrc-2021Q4:1.12.0.2 pkgsrc-2021Q4-base:1.12 pkgsrc-2021Q3:1.11.0.8 pkgsrc-2021Q3-base:1.11 pkgsrc-2021Q2:1.11.0.6 pkgsrc-2021Q2-base:1.11 pkgsrc-2021Q1:1.11.0.4 pkgsrc-2021Q1-base:1.11 pkgsrc-2020Q4:1.11.0.2 pkgsrc-2020Q4-base:1.11 pkgsrc-2020Q3:1.10.0.2 pkgsrc-2020Q3-base:1.10 pkgsrc-2020Q2:1.9.0.14 pkgsrc-2020Q2-base:1.9 pkgsrc-2020Q1:1.9.0.10 pkgsrc-2020Q1-base:1.9 pkgsrc-2019Q4:1.9.0.12 pkgsrc-2019Q4-base:1.9 pkgsrc-2019Q3:1.9.0.8 pkgsrc-2019Q3-base:1.9 pkgsrc-2019Q2:1.9.0.6 pkgsrc-2019Q2-base:1.9 pkgsrc-2019Q1:1.9.0.4 pkgsrc-2019Q1-base:1.9 pkgsrc-2018Q4:1.9.0.2 pkgsrc-2018Q4-base:1.9 pkgsrc-2018Q3:1.8.0.8 pkgsrc-2018Q3-base:1.8 pkgsrc-2018Q2:1.8.0.6 pkgsrc-2018Q2-base:1.8 pkgsrc-2018Q1:1.8.0.4 pkgsrc-2018Q1-base:1.8 pkgsrc-2017Q4:1.8.0.2 pkgsrc-2017Q4-base:1.8 pkgsrc-2017Q3:1.7.0.4 pkgsrc-2017Q3-base:1.7 pkgsrc-2017Q2:1.6.0.20 pkgsrc-2017Q2-base:1.6 pkgsrc-2017Q1:1.6.0.18 pkgsrc-2017Q1-base:1.6 pkgsrc-2016Q4:1.6.0.16 pkgsrc-2016Q4-base:1.6 pkgsrc-2016Q3:1.6.0.14 pkgsrc-2016Q3-base:1.6 pkgsrc-2016Q2:1.6.0.12 pkgsrc-2016Q2-base:1.6 pkgsrc-2016Q1:1.6.0.10 pkgsrc-2016Q1-base:1.6 pkgsrc-2015Q4:1.6.0.8 pkgsrc-2015Q4-base:1.6 pkgsrc-2015Q3:1.6.0.6 pkgsrc-2015Q3-base:1.6 pkgsrc-2015Q2:1.6.0.4 pkgsrc-2015Q2-base:1.6 pkgsrc-2015Q1:1.6.0.2 pkgsrc-2015Q1-base:1.6 pkgsrc-2014Q4:1.5.0.22 pkgsrc-2014Q4-base:1.5 pkgsrc-2014Q3:1.5.0.20 pkgsrc-2014Q3-base:1.5 pkgsrc-2014Q2:1.5.0.18 pkgsrc-2014Q2-base:1.5 pkgsrc-2014Q1:1.5.0.16 pkgsrc-2014Q1-base:1.5 pkgsrc-2013Q4:1.5.0.14 pkgsrc-2013Q4-base:1.5 pkgsrc-2013Q3:1.5.0.12 pkgsrc-2013Q3-base:1.5 pkgsrc-2013Q2:1.5.0.10 pkgsrc-2013Q2-base:1.5 pkgsrc-2013Q1:1.5.0.8 pkgsrc-2013Q1-base:1.5 pkgsrc-2012Q4:1.5.0.6 pkgsrc-2012Q4-base:1.5 pkgsrc-2012Q3:1.5.0.4 pkgsrc-2012Q3-base:1.5 pkgsrc-2012Q2:1.5.0.2 pkgsrc-2012Q2-base:1.5 pkgsrc-2012Q1:1.4.0.20 pkgsrc-2012Q1-base:1.4 pkgsrc-2011Q4:1.4.0.18 pkgsrc-2011Q4-base:1.4 pkgsrc-2011Q3:1.4.0.16 pkgsrc-2011Q3-base:1.4 pkgsrc-2011Q2:1.4.0.14 pkgsrc-2011Q2-base:1.4 TNF:1.1.1 pkgsrc-2011Q1:1.4.0.12 pkgsrc-2011Q1-base:1.4 pkgsrc-2010Q4:1.4.0.10 pkgsrc-2010Q4-base:1.4 pkgsrc-2010Q3:1.4.0.8 pkgsrc-2010Q3-base:1.4 pkgsrc-2010Q2:1.4.0.6 pkgsrc-2010Q2-base:1.4 pkgsrc-2010Q1:1.4.0.4 pkgsrc-2010Q1-base:1.4 pkgsrc-2009Q4:1.4.0.2 pkgsrc-2009Q4-base:1.4 pkgsrc-2009Q3:1.3.0.24 pkgsrc-2009Q3-base:1.3 pkgsrc-2009Q2:1.3.0.22 pkgsrc-2009Q2-base:1.3 pkgsrc-2009Q1:1.3.0.20 pkgsrc-2009Q1-base:1.3 pkgsrc-2008Q4:1.3.0.18 pkgsrc-2008Q4-base:1.3 pkgsrc-2008Q3:1.3.0.16 pkgsrc-2008Q3-base:1.3 cube-native-xorg:1.3.0.14 cube-native-xorg-base:1.3 pkgsrc-2008Q2:1.3.0.12 pkgsrc-2008Q2-base:1.3 cwrapper:1.3.0.10 pkgsrc-2008Q1:1.3.0.8 pkgsrc-2008Q1-base:1.3 pkgsrc-2007Q4:1.3.0.6 pkgsrc-2007Q4-base:1.3 pkgsrc-2007Q3:1.3.0.4 pkgsrc-2007Q3-base:1.3 pkgsrc-2007Q2:1.3.0.2 pkgsrc-2007Q2-base:1.3 pkgsrc-2007Q1:1.1.1.1.0.4 pkgsrc-2007Q1-base:1.1.1.1 pkgsrc-2006Q4:1.1.1.1.0.2 pkgsrc-2006Q4-base:1.1.1.1 SHANNONJR_20061117:1.1.1.1; locks; strict; comment @# @; 1.16 date 2023.04.28.16.33.41; author nikita; state Exp; branches; next 1.15; commitid qi4Ro1NIdD6SuTmE; 1.15 date 2023.04.03.23.16.00; author schmonz; state Exp; branches; next 1.14; commitid 1i1Flx2gFyU0xIjE; 1.14 date 2023.02.27.12.35.35; author adam; state Exp; branches; next 1.13; commitid 51DzGDH1qxcU6afE; 1.13 date 2022.08.31.09.42.12; author adam; state Exp; branches; next 1.12; commitid 98P3EdVwIsVcW0SD; 1.12 date 2021.10.05.12.14.28; author adam; state Exp; branches; next 1.11; commitid yyovXIqQmeFsnCbD; 1.11 date 2020.11.18.13.06.44; author adam; state Exp; branches; next 1.10; commitid dU0R2RSdercqZmwC; 1.10 date 2020.09.05.10.25.52; author js; state Exp; branches; next 1.9; commitid BpMkMABDpFBytQmC; 1.9 date 2018.11.07.11.59.08; author adam; state Exp; branches; next 1.8; commitid KEicMq0XTfW8t0ZA; 1.8 date 2017.11.24.12.33.10; author adam; state Exp; branches; next 1.7; commitid EPWVYUFmUhhmQhgA; 1.7 date 2017.08.29.12.07.04; author wiz; state Exp; branches; next 1.6; commitid clImsesSG8YRu65A; 1.6 date 2015.02.21.09.08.53; author wiz; state Exp; branches; next 1.5; commitid hNFFJ5QMKTrl5Ray; 1.5 date 2012.04.17.18.35.33; author drochner; state Exp; branches; next 1.4; 1.4 date 2009.12.15.20.10.41; author drochner; state Exp; branches; next 1.3; 1.3 date 2007.06.01.00.12.35; author wiz; state Exp; branches; next 1.2; 1.2 date 2007.05.12.11.08.31; author shannonjr; state Exp; branches; next 1.1; 1.1 date 2006.11.17.12.13.11; author shannonjr; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 2006.11.17.12.13.11; author shannonjr; state Exp; branches; next ; desc @@ 1.16 log @gnupg2: update to version 2.4.1 Changelog: Noteworthy changes in version 2.4.1 =================================== * If the ~/.gnupg directory does not exist, the keyboxd is now automagically enabled. [rGd9e7488b17] * gpg: New option --add-desig-revoker. [rG3d094e2bcf] * gpg: New option --assert-signer. [rGc9e95b8dee] * gpg: New command --quick-add-adsk and other ADSK features. [T6395, https://gnupg.org/blog/20230321-adsk.html] * gpg: New list-option "show-unusable-sigs". Also show "[self-signature]" instead of the user-id in key signature listings. [rG103acfe9ca] * gpg: For symmetric encryption the default S2K hash is now SHA256. [T6367] * gpg: Detect already compressed data also when using a pipe. Also detect JPEG and PNG file formats. [T6332] * gpg: New subcommand "openpgp" for --card-edit. [T6462] * gpgsm: Verification of detached signatures does now strip trailing zeroes from the input if --assume-binary is used. [rG2a13f7f9dc] * gpgsm: Non-armored detached signature are now created without using indefinite form length octets. This improves compatibility with some PDF signature verification software. [rG8996b0b655] * gpgtar: Emit progress status lines in create mode. [T6363] * dirmngr: The LDAP modifyTimestamp is now returned by some keyserver commands. [rG56d309133f] * ssh: Allow specification of the order keys are presented to ssh. See the man page entry for --enable-ssh-support. [T5996, T6212] * gpg: Make list-options "show-sig-subpackets" work again. Fixes regression in 2.4.0. [rG5a223303d7] * gpg: Fix the keytocard command for Yubikeys. [T6378] * gpg: Do not continue an export after a cancel for the primary key. [T6093] * gpg: Replace the --override-compliance-check hack by a real fix. [T5655] * gpgtar: Fix decryption with input taken from stdin. [T6355] Release-info: https://dev.gnupg.org/T6454 @ text @@@comment $NetBSD: PLIST,v 1.15 2023/04/03 23:16:00 schmonz Exp $ ${PLIST.gnutls}bin/dirmngr ${PLIST.gnutls}bin/dirmngr-client bin/g13 bin/gpg-agent bin/gpg-card bin/gpg-connect-agent bin/gpg-wks-client bin/gpg-wks-server bin/gpg2 bin/gpgconf bin/gpgparsemail bin/gpgscm bin/gpgsm bin/gpgsplit bin/gpgtar bin/gpgv2 bin/kbxutil bin/watchgnupg info/gnupg.info ${PLIST.ldap}libexec/dirmngr_ldap libexec/gpg-auth libexec/gpg-check-pattern libexec/gpg-pair-tool libexec/gpg-preset-passphrase libexec/gpg-protect-tool libexec/gpg-wks-client libexec/keyboxd libexec/scdaemon man/man1/dirmngr-client.1 man/man1/gpg-agent.1 man/man1/gpg-card.1 man/man1/gpg-check-pattern.1 man/man1/gpg-connect-agent.1 man/man1/gpg-preset-passphrase.1 man/man1/gpg-wks-client.1 man/man1/gpg-wks-server.1 man/man1/gpg2.1 man/man1/gpgconf.1 man/man1/gpgparsemail.1 man/man1/gpgsm.1 man/man1/gpgtar.1 man/man1/gpgv2.1 man/man1/scdaemon.1 man/man1/watchgnupg.1 man/man7/gnupg.7 man/man8/addgnupghome.8 man/man8/applygnupgdefaults.8 man/man8/dirmngr.8 sbin/addgnupghome sbin/applygnupgdefaults sbin/g13-syshelp share/doc/gnupg/DCO share/doc/gnupg/DETAILS share/doc/gnupg/FAQ share/doc/gnupg/HACKING share/doc/gnupg/KEYSERVER share/doc/gnupg/OpenPGP share/doc/gnupg/README share/doc/gnupg/TRANSLATE share/doc/gnupg/examples/README share/doc/gnupg/examples/common.conf share/doc/gnupg/examples/gpgconf.conf share/doc/gnupg/examples/gpgconf.rnames share/doc/gnupg/examples/pwpattern.list share/doc/gnupg/examples/qualified.txt share/doc/gnupg/examples/scd-event share/doc/gnupg/examples/trustlist.txt share/gnupg/distsigkey.gpg share/gnupg/help.be.txt share/gnupg/help.ca.txt share/gnupg/help.cs.txt share/gnupg/help.da.txt share/gnupg/help.de.txt share/gnupg/help.el.txt share/gnupg/help.eo.txt share/gnupg/help.es.txt share/gnupg/help.et.txt share/gnupg/help.fi.txt share/gnupg/help.fr.txt share/gnupg/help.gl.txt share/gnupg/help.hu.txt share/gnupg/help.id.txt share/gnupg/help.it.txt share/gnupg/help.ja.txt share/gnupg/help.nb.txt share/gnupg/help.pl.txt share/gnupg/help.pt.txt share/gnupg/help.pt_BR.txt share/gnupg/help.ro.txt share/gnupg/help.ru.txt share/gnupg/help.sk.txt share/gnupg/help.sv.txt share/gnupg/help.tr.txt share/gnupg/help.txt share/gnupg/help.zh_CN.txt share/gnupg/help.zh_TW.txt ${PLIST.gnutls}share/gnupg/sks-keyservers.netCA.pem share/locale/ca/LC_MESSAGES/gnupg2.mo share/locale/cs/LC_MESSAGES/gnupg2.mo share/locale/da/LC_MESSAGES/gnupg2.mo share/locale/de/LC_MESSAGES/gnupg2.mo share/locale/el/LC_MESSAGES/gnupg2.mo share/locale/en@@boldquot/LC_MESSAGES/gnupg2.mo share/locale/en@@quot/LC_MESSAGES/gnupg2.mo share/locale/eo/LC_MESSAGES/gnupg2.mo share/locale/es/LC_MESSAGES/gnupg2.mo share/locale/et/LC_MESSAGES/gnupg2.mo share/locale/fi/LC_MESSAGES/gnupg2.mo share/locale/fr/LC_MESSAGES/gnupg2.mo share/locale/gl/LC_MESSAGES/gnupg2.mo share/locale/hu/LC_MESSAGES/gnupg2.mo share/locale/id/LC_MESSAGES/gnupg2.mo share/locale/it/LC_MESSAGES/gnupg2.mo share/locale/ja/LC_MESSAGES/gnupg2.mo share/locale/nb/LC_MESSAGES/gnupg2.mo share/locale/pl/LC_MESSAGES/gnupg2.mo share/locale/pt/LC_MESSAGES/gnupg2.mo share/locale/ro/LC_MESSAGES/gnupg2.mo share/locale/ru/LC_MESSAGES/gnupg2.mo share/locale/sk/LC_MESSAGES/gnupg2.mo share/locale/sv/LC_MESSAGES/gnupg2.mo share/locale/tr/LC_MESSAGES/gnupg2.mo share/locale/uk/LC_MESSAGES/gnupg2.mo share/locale/zh_CN/LC_MESSAGES/gnupg2.mo share/locale/zh_TW/LC_MESSAGES/gnupg2.mo @ 1.15 log @Fix PLIST with PKG_OPTIONS=-gnutls. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.14 2023/02/27 12:35:35 adam Exp $ a60 1 share/doc/gnupg/examples/Automatic.prf a61 1 share/doc/gnupg/examples/VS-NfD.prf a62 1 share/doc/gnupg/examples/debug.prf a67 8 share/doc/gnupg/examples/systemd-user/README share/doc/gnupg/examples/systemd-user/dirmngr.service share/doc/gnupg/examples/systemd-user/dirmngr.socket share/doc/gnupg/examples/systemd-user/gpg-agent-browser.socket share/doc/gnupg/examples/systemd-user/gpg-agent-extra.socket share/doc/gnupg/examples/systemd-user/gpg-agent-ssh.socket share/doc/gnupg/examples/systemd-user/gpg-agent.service share/doc/gnupg/examples/systemd-user/gpg-agent.socket @ 1.14 log @gnupg2: updated to 2.4.0 Noteworthy changes in version 2.4.0 (2022-12-16) ------------------------------------------------ * gpg: New command --quick-update-pref. [rGd40d23b233] * gpg: New list-options show-pref and show-pref-verbose. [rG811cfa34cb] * gpg: New option --list-filter to restrict key listings like gpg -k --list-filter 'select=revoked-f && sub/algostr=ed25519' [rG1324dc3490] * gpg: New --export-filter export-revocs. [rGc985b52e71] * gpg: Also import stray revocation certificates. [rG7aaedfb107] * gpg: Add a notation to encryption subkeys in de-vs mode. [T6279] * gpg: Improve signature verification speed by a factor of more than four. Double detached signing speed. [T5826] * gpg: Allow only OCB for AEAD encryption. [rG5a2cef801d] * gpg: Fix trusted introducer for mbox only user-ids. [T6238] * gpg: Report an error via status-fd for receiving a key from the agent. [T5151] * gpg: Make --require-compliance work without the --status-fd option. [rG2aacd843ad] * gpg: Fix verification of cleartext signatures with overlong lines. [T6272] * agent: Fix import of protected OpenPGP v5 keys. [T6294] * gpgsm: Change the default cipher algorithm from AES128 to AES256. Also announce support for this in signatures. [rG2d8ac55d26] * gpgsm: Always use the chain validation model if the root-CA requests this. [rG7fa1d3cc82] * gpgsm: Print OCSP revocation date and reason in cert listings. [rGb6abaed2b5] * agent: Support Win32-OpenSSH emulation by gpg-agent. [T3883] * scd: Support the Telesec Signature Card v2.0. [T6252] * scd: Redact --debug cardio output of a VERIFY APDU. [T5085] * scd: Skip deleted pkcs#15 records in CARDOS 5. [rG061efac03f] * dirmngr: Fix build with no LDAP support. [T6239] * dirmngr: Fix verification of ECDSA signed CRLs. [rG868dabb402] * wkd: New option --add-revocs for gpg-wks-client. [rGc3f9f2d497] * wkd: Ignore expired user-ids in gpg-wks-client. [T6292] * card: New commands "gpg" and "gpgsm". [rG9c4691c73e] @ text @d1 3 a3 3 @@comment $NetBSD: PLIST,v 1.13 2022/08/31 09:42:12 adam Exp $ bin/dirmngr bin/dirmngr-client d109 1 a109 1 share/gnupg/sks-keyservers.netCA.pem @ 1.13 log @gnupg2: updated to 2.2.37 Noteworthy changes in version 2.2.37 (2022-08-24) ------------------------------------------------- * gpg: In de-vs mode use SHA-256 instead of SHA-1 as implicit preference. [T6043] * gpg: Actually show symmetric+pubkey encrypted data as de-vs compliant. Add extra compliance checks for symkey_enc packets. [T6119] * gpg: Request keygrip of key to be added via command-fd interface. [T5771] * gpg: Look up user ID to revoke by UID hash. [T5936] * gpg: Fix wrong error message for "keytocard". [T6122] * gpg: --card-status shows the application type for non-openpgp cards again. [rG8e393e2592] * gpg: The options --auto-key-import and --include-key-block are again listed by gpgconf. [T6138] * gpgsm: New option --compatibility-flags. [rG77b6896f7a] * agent: New options --no-user-trustlist and --sys-trustlist-name. [T5990] * agent: Track and update the Display-S/N of cards so that the "please insert card" prompt may now show more information. Use "gpg --card-status" to update stored card meta data. [T6135] * scd:openpgp: Fix problem with ECC algorithm attributes on Yubikeys. [rG225c66f13b87] * scd:openpgp: Fix problem with Yubikey 5.4 firmware. [T6070] * dirmngr: Ask keyservers to provide the key fingerprints. [T5741] * ssh: Allow authentication as used by OpenSSH's PQ crypto support. [T5935] * wkd: Fix path traversal attack in gpg-wks-server. Add the mail address to the pending request data. [rGc1489ca0e1, T6098] * gpgconf: Improve registry dumping. [rG6bc9592318] * Silence warnings from AllowSetForegroundWindow. [rG6583abedf3] @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.12 2021/10/05 12:14:28 adam Exp $ d6 1 d8 1 d22 1 d24 1 d28 1 d32 1 d64 1 d69 1 @ 1.12 log @gnupg2: updated to 2.2.31 Noteworthy changes in version 2.2.31 (2021-09-15) ------------------------------------------------- * agent: Fix a regression in GET_PASSPHRASE. * scd: Fix an assertion failure in close_pcsc_reader. * scd: Add support for PC/SC in "GETINFO reader_list". Noteworthy changes in version 2.2.30 (2021-08-26) ------------------------------------------------- * gpg: Extended gpg-check-pattern to support accept rules, conjunctions, and case-sensitive matching. * agent: New option --pinentry-formatted-passphrase. * agent: New option --check-sym-passphrase-pattern. * agent: Use the sysconfdir for the pattern files. * agent: Add "checkpin" inquiry for use by pinentry. * wkd: Fix client issue with leading or trailing spaces in user-ids. * Pass XDG_SESSION_TYPE and QT_QPA_PLATFORM envvars to Pinentry. * Under Windows use LOCAL_APPDATA for the socket directory. Noteworthy changes in version 2.2.29 (2021-07-04) ------------------------------------------------- * Fix regression in 2.2.28 for Yubikey NEO. * Change the default keyserver to keyserver.ubuntu.com. This is a temporary change due to the shutdown of the SKS keyserver pools. * gpg: Let --fetch-key return an exit code on failure. * dirmngr: Fix regression in KS_GET for mail address pattern. * Add fallback in case the Windows console can't cope with Unicode. * Improve initialization of SPR532 in the CCID driver and make the driver more robust. * Make test suite work in presence of a broken Libgcrypt installation. * Make configure option --disable-ldap work again. Noteworthy changes in version 2.2.28 (2021-06-10) ------------------------------------------------- * gpg: Auto import keys specified with --trusted-keys. * gpg: Allow decryption w/o public key but with correct card inserted. * gpg: Allow fingerprint based lookup with --locate-external-key. * gpg: Lookup a missing public key of the current card via LDAP. * gpg: New option --force-sign-key. * gpg: Use a more descriptive password prompt for symmetric decryption. * gpg: Do not use the self-sigs-only option for LDAP keyserver imports. * gpg: Keep temp files when opening images via xdg-open. * gpg: Fix mailbox based search via AKL keyserver method. * gpg: Fix sending an OpenPGP key with umlaut to an LDAP keyserver. * gpg: Allow ECDH with a smartcard returning only the x-coordinate. * gpgsm: New option --ldapserver as an alias for --keyserver. Note that configuring servers in gpgsm and gpg is deprecated; please use the dirmngr configuration options. * gpgsm: Support AES-GCM decryption. * gpgsm: Support decryption of password protected files. * gpgsm: Lock keyboxes also during a search to fix lockups on Windows. * agent: Skip unknown unknown ssh curves seen on cards. * scdaemon: New option --pcsc-shared. * scdaemon: Backport PKCS#15 card support from GnuPG 2.3 * scdaemon: Fix CCID driver for SCM SPR332/SPR532. * scdaemon: Fix possible PC/SC removed card problem. * scdaemon: Fix unblock PIN by a Reset Code with KDF. * scdaemon: Support compressed points. * scdaemon: Prettify S/N for Yubikeys and fix reading for early Yubikey 5 tokens. * dirmngr: New option --ldapserver to avoid the need for the separate dirmngr_ldapservers.conf file. * dirmngr: The dirmngr_ldap wrapper has been rewritten to properly support ldap-over-tls and starttls for X.509 certificates and CRLs. * dirmngr: OpenPGP LDAP keyservers may now also be configured using the same syntax as used for X.509 and CRL LDAP servers. This avoids the former cumbersome quoting rules and adds a flexible set of flags to control the connection. * dirmngr: The "ldaps" scheme of an OpenPGP keyserver URL is now interpreted as ldap-with-starttls on port 389. To use the non-standardized ldap-over-tls the new LDAP configuration method of the new attribute "gpgNtds" needs to be used. * dirmngr: Return the fingerprint as search result also for LDAP OpenPGP keyservers. This requires the modernized LDAP schema. * dirmngr: An OpenPGP LDAP search by a mailbox now ignores revoked keys. * gpgconf: Make runtime changes with non-default homedir work. * gpgconf: Do not translate an empty string to the PO file's meta data. * gpgconf: Fix argv overflow if --homedir is used. * gpgconf: Return a new pseudo option "compliance_de_vs". * gpgtar: Fix file size computation under Windows. * Full Unicode support for the Windows command line. * Fix problem with Windows Job objects and auto start of our daemons. * i18n: In German always use "Passwort" instead of "Passphrase" in prompts. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.11 2020/11/18 13:06:44 adam Exp $ d60 1 @ 1.11 log @gnupg2: updated to 2.2.24 Noteworthy changes in version 2.2.24 ------------------------------------ * Allow Unicode file names on Windows almost everywhere. Note that it is still not possible to use Unicode strings on the command line. This change also fixes a regression in 2.2.22 related to non-ascii file names. * Fix localized time printing on Windows. * gpg: New command --quick-revoke-sig. * gpg: Do not use weak digest algos if selected by recipient preference during sign+encrypt. * gpg: Switch to AES256 for symmetric encryption in de-vs mode. * gpg: Silence weak digest warnings with --quiet. * gpg: Print new status line CANCELED_BY_USER for a cancel during symmetric encryption. * gpg: Fix the encrypt+sign hash algo preference selection for ECDSA. This is in particular needed for keys created from existing smartcard based keys. * agent: Fix secret key import of GnuPG 2.3 generated Ed25519 keys. * agent: Keep some permissions of private-keys-v1.d. * dirmngr: Align sks-keyservers.netCA.pem use between ntbtls and gnutls builds. * dirmngr: Fix the pool keyserver case for a single host in the pool. * scd: Fix the use case of verify_chv2 by CHECKPIN. * scd: Various improvements to the ccid-driver. * scd: Minor fixes for Yubikey * gpgconf: New option --show-versions. * w32: Install gpg-check-pattern and example profiles. Install Windows subsystem variant of gpgconf (gpgconf-w32). * i18n: Complete overhaul and completion of the Italian translation. Thanks to Denis Renzi. * Require Libgcrypt 1.8 because 1.7 has long reached end-of-life. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.10 2020/09/05 10:25:52 js Exp $ d27 1 a38 1 man/man1/symcryptrun.1 @ 1.10 log @Update security/gnupg2 to 2.2.23 Fixes a criticial vulnerability: https://dev.gnupg.org/T5050 Noteworthy changes in version 2.2.22 ==================================== * gpg: Change the default key algorithm to rsa3072. * gpg: Add regular expression support for Trust Signatures on all platforms. [#4843] * gpg: Fix regression in 2.2.21 with non-default --passphrase-repeat option. [#4991] * gpg: Ignore --personal-digest-prefs for ECDSA keys. [#5021] * gpgsm: Make rsaPSS a de-vs compliant scheme. * gpgsm: Show also the SHA256 fingerprint in key listings. * gpgsm: Do not require a default keyring for --gpgconf-list. [#4867] * gpg-agent: Default to extended key format and record the creation time of keys. Add new option --disable-extended-key-format. * gpg-agent: Support the WAYLAND_DISPLAY envvar. [#5016] * gpg-agent: Allow using --gpgconf-list even if HOME does not exist. [#4866] * gpg-agent: Make the Pinentry work even if the envvar TERM is set to the empty string. [#4137] * scdaemon: Add a workaround for Gnuk tokens <= 2.15 which wrongly incremented the error counter when using the "verify" command of "gpg --edit-key" with only the signature key being present. * dirmngr: Better handle systems with disabled IPv6. [#4977] * gpgpslit: Install tool. It was not installed in the past to avoid conflicts with the version installed by GnuPG 1.4. [#5023] * gpgtar: Handle Unicode file names on Windows correctly (requires libgpg-error 1.39). [#4083] * gpgtar: Make --files-from and --null work as documented. [#5027] * Build the Windows installer with the new Ntbtls 0.2.0 so that TLS connections succeed for servers demanding GCM. Release-info: https://dev.gnupg.org/T5030 Noteworthy changes in version 2.2.23 ==================================== * gpg: Fix AEAD preference list overflow. [#5050] * gpg: Fix a possible segv in the key cleaning code. * gpgsm: Fix a minor RFC2253 parser bug. [#5037] * scdaemon: Fix a PIN verify failure on certain OpenPGP card implementations. Regression in 2.2.22. [#5039] * po: Fix bug in the Hungarian translation. Updates for the Czech, Polish, and Ukrainian translations. Release-info: https://dev.gnupg.org/T5045 @ text @d1 1 a1 1 @@comment $NetBSD$ d55 1 d57 1 a70 1 share/doc/gnupg/examples/vsnfd.prf @ 1.9 log @gnupg2: updated to 2.2.11 Noteworthy changes in version 2.2.11: * gpgsm: Fix CRL loading when intermediate certicates are not yet trusted. * gpgsm: Fix an error message about the digest algo. * gpg: Fix a wrong warning due to new sign usage check introduced with 2.2.9. * gpg: Print the "data source" even for an unsuccessful keyserver query. * gpg: Do not store the TOFU trust model in the trustdb. This allows to enable or disable a TOFO model without triggering a trustdb rebuild. * scd: Fix cases of "Bad PIN" after using "forcesig". * agent: Fix possible hang in the ssh handler. * dirmngr: Tack the unmodified mail address to a WKD request. See commit a2bd4a64e5b057f291a60a9499f881dd47745e2f for details. * dirmngr: Tweak diagnostic about missing LDAP server file. * dirmngr: In verbose mode print the OCSP responder id. * dirmngr: Fix parsing of the LDAP port. * wks: Add option --directory/-C to the server. Always build the server on Unix systems. * wks: Add option --with-colons to the client. Support sites which use the policy file instead of the submission-address file. * Fix EBADF when gpg et al. are called by broken CGI scripts. * Fix some minor memory leaks and bugs. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.8 2017/11/24 12:33:10 adam Exp $ d13 1 @ 1.8 log @gnupg2: updated to 2.2.3 changes in version 2.2.3: * gpgsm: Fix initial keybox creation on Windows. * dirmngr: Fix crash in case of a CRL loading error. * Fix the name of the Windows registry key. * gpgtar: Fix wrong behaviour of --set-filename. * gpg: Silence AKL retrieval messages. * agent: Use clock or clock_gettime for calibration. * agent: Improve robustness of the shutdown pending state. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.7 2017/08/29 12:07:04 wiz Exp $ d7 1 @ 1.7 log @Updated gnupg2 to 2.2.0. Noteworthy changes in version 2.2.0 (2017-08-28) ------------------------------------------------ This is the new long term stable branch. This branch will only see bug fixes and no new features. * gpg: Reverted change in 2.1.23 so that --no-auto-key-retrieve is again the default. * Fixed a few minor bugs. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.11 2017/07/28 19:33:24 wiz Exp $ d33 1 @ 1.6 log @Update to 2.0.27: Noteworthy changes in version 2.0.27 (2015-02-18) ------------------------------------------------- * gpg: Detect faulty use of --verify on detached signatures. * gpg: New import option "keep-ownertrust". * gpg: Uses SHA-256 for all signature types also on RSA keys. * gpg: Added support for algo names when generating keys using the --command-fd method. * gpg: Unless --allow-weak-digest-algos is used the insecure MD5 based fingerprints are shown as all zeroe * gpg: Fixed DoS based on bogus and overlong key packets. * gpg: Better error reporting for keyserver problems. * Fixed several bugs related to bogus keyrings and improved some other code. @ text @d1 4 a4 1 @@comment $NetBSD: PLIST,v 1.5 2012/04/17 18:35:33 drochner Exp $ d6 13 d21 29 d51 46 a96 1 share/locale/be/LC_MESSAGES/gnupg2.mo a114 1 share/locale/nl/LC_MESSAGES/gnupg2.mo a116 1 share/locale/pt_BR/LC_MESSAGES/gnupg2.mo @ 1.5 log @update to 2.0.19 changes: -cmd line UI improvements -Ukrainian translation @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.4 2009/12/15 20:10:41 drochner Exp $ d25 1 @ 1.4 log @update to 2.0.13 changes: many fixes and improvements reviewed by John R. Shannon pkgsrc notes: -since S/MIME support is the biggest difference in functionality over gnupg1, enable it per default -- my tests (with the s/mime plugin of claws-mail) worked -left the build against a private libassuan with GNU-pth support alone for now, just updated libassuan to 1.0.5. We might build pkgsrc/libassuan against pkgsrc/pth at some point, but this needs to be checked for side effects. (As this pkg doesn't export a library which might propagate the pth dependency, the possibility of pthread-pth conflicts should be limited. Other uses of libassuan need to be checked.) @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.3 2007/06/01 00:12:35 wiz Exp $ d33 1 @ 1.3 log @Fix PLIST -- it assumed that the package would be built with the gpgsm option on by default. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.2 2007/05/12 11:08:31 shannonjr Exp $ d5 1 @ 1.2 log @Update to Version 2.0.4. Changes are not described in release announcement. @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.1.1.1 2006/11/17 12:13:11 shannonjr Exp $ a2 1 sbin/applygnupgdefaults a4 1 libexec/gnupg-pcsc-wrapper a33 1 man/man8/applygnupgdefaults.8 @ 1.1 log @Initial revision @ text @d1 1 a1 1 @@comment $NetBSD: PLIST,v 1.6 2006/10/29 18:11:22 shannonjr Exp $ d3 1 d6 1 d36 1 @ 1.1.1.1 log @This package is the sucessor to gnupg-devel. GnuPG-2 provides several utilities that are used by mail clients, such as Kmail and Balsa, including OpenPGP and S/MIME support. GnuPG-2 has a different architecture than GnuPG-1 (e.g. 1.4.5) in that it splits up functionality into several modules. However, both versions may be installed alongside without any conflict. In fact, the gpg version from GnuPG-1 is able to make use of the gpg-agent as included in GnuPG-2 and allows for seamless passphrase caching. The advantage of GnuPG-1 is its smaller size and the lack of dependency on other modules at run and build time. @ text @@