Wed Jul 10 09:28:24 2019 UTC ()
gnupg2: updated to 2.2.17

Noteworthy changes in version 2.2.17:
* gpg: Ignore all key-signatures received from keyservers.  This
  change is required to mitigate a DoS due to keys flooded with
  faked key-signatures.  The old behaviour can be achieved by adding
    keyserver-options no-self-sigs-only,no-import-clean
  to your gpg.conf.
* gpg: If an imported keyblocks is too large to be stored in the
  keybox (pubring.kbx) do not error out but fallback to an import
  using the options "self-sigs-only,import-clean".
* gpg: New command --locate-external-key which can be used to
  refresh keys from the Web Key Directory or via other methods
  configured with --auto-key-locate.
* gpg: New import option "self-sigs-only".
* gpg: In --auto-key-retrieve prefer WKD over keyservers.
* dirmngr: Support the "openpgpkey" subdomain feature from
  draft-koch-openpgp-webkey-service-07.
* dirmngr: Add an exception for the "openpgpkey" subdomain to the
  CSRF protection.
* dirmngr: Fix endless loop due to http errors 503 and 504.
* dirmngr: Fix TLS bug during redirection of HKP requests.
* gpgconf: Fix a race condition when killing components.


(adam)
diff -r1.103 -r1.104 pkgsrc/security/gnupg2/Makefile
diff -r1.56 -r1.57 pkgsrc/security/gnupg2/distinfo
cvs diff -r1.103 -r1.104 pkgsrc/security/gnupg2/Makefile (expand / switch to unified diff)

--- pkgsrc/security/gnupg2/Makefile 2019/06/02 09:29:09 1.103
+++ pkgsrc/security/gnupg2/Makefile 2019/07/10 09:28:24 1.104
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.103 2019/06/02 09:29:09 adam Exp $ 1# $NetBSD: Makefile,v 1.104 2019/07/10 09:28:24 adam Exp $
2 2
3DISTNAME= gnupg-2.2.16 3DISTNAME= gnupg-2.2.17
4PKGNAME= ${DISTNAME:S/gnupg-/gnupg2-/} 4PKGNAME= ${DISTNAME:S/gnupg-/gnupg2-/}
5CATEGORIES= security 5CATEGORIES= security
6MASTER_SITES= ftp://ftp.gnupg.org/gcrypt/gnupg/ 6MASTER_SITES= ftp://ftp.gnupg.org/gcrypt/gnupg/
7MASTER_SITES+= http://mirrors.dotsrc.org/gcrypt/gnupg/ 7MASTER_SITES+= http://mirrors.dotsrc.org/gcrypt/gnupg/
8EXTRACT_SUFX= .tar.bz2 8EXTRACT_SUFX= .tar.bz2
9 9
10MAINTAINER= ada@netbsdfr.org 10MAINTAINER= ada@netbsdfr.org
11HOMEPAGE= https://www.gnupg.org/ 11HOMEPAGE= https://www.gnupg.org/
12COMMENT= GnuPG with OpenPGP and S/MIME capabilities 12COMMENT= GnuPG with OpenPGP and S/MIME capabilities
13LICENSE= gnu-gpl-v3 13LICENSE= gnu-gpl-v3
14 14
15DEPENDS+= pinentry-[0-9]*:../../security/pinentry 15DEPENDS+= pinentry-[0-9]*:../../security/pinentry
16 16
cvs diff -r1.56 -r1.57 pkgsrc/security/gnupg2/distinfo (expand / switch to unified diff)

--- pkgsrc/security/gnupg2/distinfo 2019/06/02 09:29:09 1.56
+++ pkgsrc/security/gnupg2/distinfo 2019/07/10 09:28:24 1.57
@@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
1$NetBSD: distinfo,v 1.56 2019/06/02 09:29:09 adam Exp $ 1$NetBSD: distinfo,v 1.57 2019/07/10 09:28:24 adam Exp $
2 2
3SHA1 (gnupg-2.2.16.tar.bz2) = f956c8cebee3a6ddb2ce6e6e058d474d056dd9e0 3SHA1 (gnupg-2.2.17.tar.bz2) = 12c1cee8871c03f0315fc8f27876364b75c95b12
4RMD160 (gnupg-2.2.16.tar.bz2) = 0c5107bbc6fa8e76e9dfbbbab7a59732c552b7ed 4RMD160 (gnupg-2.2.17.tar.bz2) = 13ad8e3e216d8c7ff6786329d8c15627ed2b9af2
5SHA512 (gnupg-2.2.16.tar.bz2) = 0e0040905cc4d1d9d29e184cfeda520b43990e4ec459212537c0ce6092de987157e05b1d1a3022398d9b3cbaeea0f58a7e686745f96933e5ac26be4229162247 5SHA512 (gnupg-2.2.17.tar.bz2) = a3cd094addac62b4b4ec1683005a2bec761ea2aacf6daf904316b1819f4f6a41f256a8d9452cf28cad71b3e68228465baa27ae0eb1fa734fa91542ef0f159c5d
6Size (gnupg-2.2.16.tar.bz2) = 6699113 bytes 6Size (gnupg-2.2.17.tar.bz2) = 6717554 bytes