Navigation:
Browse pkgsrc
(this page)| 2014-02-16 18:21:15 by Alistair G. Crooks | Files touched by this commit (3) |
Log message: Update security/netpgpverify to 20140210 minor lint fix |
| 2014-02-16 18:15:48 by Alistair G. Crooks | Files touched by this commit (40) |
Log message: Update the libnetpgpverify package to version 20140210 Switch over to using the zero-pre-requisite netpgpverify sources by using reachover infrastructure to make sure we have one set of sources. This also brings with it the benefit of being able to use SSH public keys, as well as PGP pub keys, when verifying signatures. Extend the package building mechanism so that it can be built using libtool (the default), or without libtool, depending on whether "BOOTSTRAP" is defined at package build time. |
| 2014-02-10 08:46:44 by Alistair G. Crooks | Files touched by this commit (3) |
Log message: Update the example ssh-key-signed input file, so that there's no embedded RCS Id in it. Re-sign (both embedded and detached) signatures on this data. No functional change, so no version bumps. |
| 2014-02-04 03:11:56 by Alistair G. Crooks | Files touched by this commit (1) |
Log message: forgot a file in the previous changes |
| 2014-02-04 03:11:18 by Alistair G. Crooks | Files touched by this commit (18) |
Log message: Update security/netpgpverify to version 20140202 Changes from previous version: Add the ability for netpgpverify to verify ssh-pub-key-based signatures. It is much more likely for ssh (rather than pgp) keys to be available, and used, as a source of authentication data. These changes add the ability for netpgpverify(1) -- the standalone, zero-prereq utility - to verify signatures made by netpgp when using ssh keys. Running the regression tests in WRKDIR gives the following output: % mk -f *.bsd tst ./netpgpverify -k pubring.gpg NetBSD-6.0_RC1_hashes.asc Good signature for NetBSD-6.0_RC1_hashes.asc made Thu Aug 23 11:47:50 2012 signature 4096/RSA (Encrypt or Sign) 064973ac4c4a706e 2009-06-23 fingerprint ddee 2bdb 9c98 a0d1 d4fb dbf7 0649 73ac 4c4a 706e uid NetBSD Security Officer <security-officer@NetBSD.org> ./netpgpverify -k pubring.gpg NetBSD-6.0_RC1_hashes.gpg Good signature for NetBSD-6.0_RC1_hashes.gpg made Thu Mar 14 13:32:59 2013 signature 4096/RSA (Encrypt or Sign) 064973ac4c4a706e 2009-06-23 fingerprint ddee 2bdb 9c98 a0d1 d4fb dbf7 0649 73ac 4c4a 706e uid NetBSD Security Officer <security-officer@NetBSD.org> ./netpgpverify -v netpgpverify portable 20140202 ./netpgpverify -S sshtest-20140202.pub data.gpg Good signature for data.gpg made Mon Feb 3 17:54:21 2014 signature 4096/RSA (Encrypt or Sign) 4d129225945bbb8f 1970-01-01 fingerprint 874b 75de d6a3 341f 2d5a 2219 4d12 9225 945b bb8f uid netbsd-001.cupertino.alistaircrooks.com (sshtest-20140202.pub) \ <agc@netbsd-001.cupertino.alistaircrooks.com> ./netpgpverify -S sshtest-20140202.pub data.sig Good signature for data.sig made Sun Feb 2 21:45:05 2014 signature 4096/RSA (Encrypt or Sign) 4d129225945bbb8f 1970-01-01 fingerprint 874b 75de d6a3 341f 2d5a 2219 4d12 9225 945b bb8f uid netbsd-001.cupertino.alistaircrooks.com (sshtest-20140202.pub) \ <agc@netbsd-001.cupertino.alistaircrooks.com> expected failure, to check bad signatures fail to verify sed -e 's|A|B|' data.gpg | ./netpgpverify -S sshtest-20140202.pub Signature did not match contents -- Signature on data did not match *** Error code 1 (ignored) % A new HOWTO file is provided in the sources (files/HOWTO) to show how to sign data using ssh keys and netpgp(1). |
| 2013-12-20 18:16:48 by Alistair G. Crooks | Files touched by this commit (5) |
Log message: Update netpgpverify and libnetpgpverify to version 20131219 Fix a call to mp_radix_size to use a pointer to the BIGNUM, not the address of the pointer, when accessing. Fixes a problem observed in other software when using the same code. The problem was obscured from the compiler because of the use of __UNCONST(). This makes the BN_dec2bn() and BN_hex2bn() functions (in libnetpgpverify) work properly. OK: wiz |
| 2013-07-20 23:50:55 by Thomas Klausner | Files touched by this commit (44) |
Log message: Use Mt for email addresses. |
| 2013-04-27 01:24:56 by Alistair G. Crooks | Files touched by this commit (3) |
Log message: Update security/netpgpverify to version 20130426 Change from previous version: + don't assume that output of a "cat" command (where output is sent to stdout if the signature is verified) is able to be written with stdio. |
| 2013-03-24 17:48:17 by Joerg Sonnenberger | Files touched by this commit (1) |
Log message: Don't try to use weak aliases. |
2013-03-16 08:32:35 by Alistair G. Crooks | Files touched by this commit (48) |  |
Log message: Update netpgpverify, the standalone PGP signature verification utility, to latest 20130316 sources. Changes since previous version: + this version is completely standalone, and relies on no external libraries (other than libc) + updated man page to reflect reality + minor configure script added |
New packages: