pkgsrc.se | The NetBSD package collection

Subject: CVS commit: pkgsrc/security/gnupg2
From: Adam Ciarcinski
Date: 2024-01-26 14:35:40
Message id: 20240126133540.A5748FA42@cvs.NetBSD.org

Log Message:
gnupg2: updated to 2.4.4

Noteworthy changes in version 2.4.4 (2024-01-25)
------------------------------------------------
* gpg: Do not keep an unprotected smartcard backup key on disk.  See
  https://gnupg.org/blog/20240125-smartcard-backup-key.html for a
  security advisory.
* gpg: Allow to specify seconds since Epoch beyond 2038 on 32-bit
  platforms.
* gpg: Fix expiration time when Creation-Date is specified.
* gpg: Add support for Subkey-Expire-Date.
* gpg: Add option --with-v5-fingerprint.
* gpg: Add sub-option ignore-attributes to --import-options.
* gpg: Add --list-filter properties sig_expires/sig_expires_d.
* gpg: Fix validity of re-imported keys.
* gpg: Report BEGIN_ status before examining the input.
* gpg: Don't try to compress a read-only keybox.
* gpg: Choose key from inserted card over a non-inserted
  card.
* gpg: Allow to create revocations even with non-compliant algos.
* gpg: Fix regression in the Revoker keyword of the parameter file.
* gpg: Improve error message for expired default keys.
* gpgsm: Add --always-trust feature.
* gpgsm: Support ECC certificates in de-vs mode.
* gpgsm: Major rewrite of the PKCS#12 parser.
* gpgsm: No not show the pkcs#12 passphrase in debug output.
* keyboxd: Timeout on failure to get the database lock.
* agent: Update the key stubs only if really modified.
* scd: Add support for certain Starcos 3.2 cards.
* scd: Add support for CardOS 5.4 cards.
* scd: Add support for D-Trust 4.1/4.4 cards.
* scd: Add support for Smartcafe Expert 7.0 cards.
* scd: Add a length check for a new PIN.
* tpm: Fix keytotpm handling in the agent.
* tpm: Fixes for the TPM test suite.
* dirmngr: Avoid starting a second instance on Windows via GPGME
  based launching.
* dirmngr: New option --ignore-crl-extensions.
* dirmngr: Support config value "none" to disable the default
  keyserver.
* dirmngr: Implement automatic proxy detection on Windows.
* dirmngr: Fix handling of the HTTP Content-Length.
* dirmngr: Add code to support proxy authentication using the
  Negotiation method on Windows.
* gpgconf: Add commands --lock and --unlock.
* gpgconf: Add keyword socketdir to gpgconf.ctl.
* gpgconf: Adjust the -X command for the new VERSION file format.
* wkd: Use export-clean for gpg-wks-client's --mirror and --create
  commands.
* wkd: Make --add-revocs the default in gpg-wks-client.  New option
  --no-add-revocs.
* Remove duplicated backslashes when setting the homedir.
* Ignore attempts to remove the /dev/null device.
* Improve advisory file lock retry strategy.
* Improve the speedo build system for Unix.

Files:

Revision	Action	file
1.151	modify	pkgsrc/security/gnupg2/Makefile
1.85	modify	pkgsrc/security/gnupg2/distinfo
1.3	remove	pkgsrc/security/gnupg2/patches/patch-dirmngr_server.c