2014-02-16 18:21:15 by Alistair G. Crooks | Files touched by this commit (3) |
Log message:
Update security/netpgpverify to 20140210
minor lint fix
|
2014-02-16 18:15:48 by Alistair G. Crooks | Files touched by this commit (40) |
Log message:
Update the libnetpgpverify package to version 20140210
Switch over to using the zero-pre-requisite netpgpverify sources by
using reachover infrastructure to make sure we have one set of
sources.
This also brings with it the benefit of being able to use SSH
public keys, as well as PGP pub keys, when verifying signatures.
Extend the package building mechanism so that it can be built using
libtool (the default), or without libtool, depending on whether
"BOOTSTRAP" is defined at package build time.
|
2014-02-10 08:46:44 by Alistair G. Crooks | Files touched by this commit (3) |
Log message:
Update the example ssh-key-signed input file, so that there's no embedded
RCS Id in it. Re-sign (both embedded and detached) signatures on this data.
No functional change, so no version bumps.
|
2014-02-04 03:11:56 by Alistair G. Crooks | Files touched by this commit (1) |
Log message:
forgot a file in the previous changes
|
2014-02-04 03:11:18 by Alistair G. Crooks | Files touched by this commit (18) |
Log message:
Update security/netpgpverify to version 20140202
Changes from previous version:
Add the ability for netpgpverify to verify ssh-pub-key-based signatures.
It is much more likely for ssh (rather than pgp) keys to be available,
and used, as a source of authentication data. These changes add the
ability for netpgpverify(1) -- the standalone, zero-prereq utility -
to verify signatures made by netpgp when using ssh keys.
Running the regression tests in WRKDIR gives the following output:
% mk -f *.bsd tst
./netpgpverify -k pubring.gpg NetBSD-6.0_RC1_hashes.asc
Good signature for NetBSD-6.0_RC1_hashes.asc made Thu Aug 23 11:47:50 2012
signature 4096/RSA (Encrypt or Sign) 064973ac4c4a706e 2009-06-23
fingerprint ddee 2bdb 9c98 a0d1 d4fb dbf7 0649 73ac 4c4a 706e
uid NetBSD Security Officer <security-officer@NetBSD.org>
./netpgpverify -k pubring.gpg NetBSD-6.0_RC1_hashes.gpg
Good signature for NetBSD-6.0_RC1_hashes.gpg made Thu Mar 14 13:32:59 2013
signature 4096/RSA (Encrypt or Sign) 064973ac4c4a706e 2009-06-23
fingerprint ddee 2bdb 9c98 a0d1 d4fb dbf7 0649 73ac 4c4a 706e
uid NetBSD Security Officer <security-officer@NetBSD.org>
./netpgpverify -v
netpgpverify portable 20140202
./netpgpverify -S sshtest-20140202.pub data.gpg
Good signature for data.gpg made Mon Feb 3 17:54:21 2014
signature 4096/RSA (Encrypt or Sign) 4d129225945bbb8f 1970-01-01
fingerprint 874b 75de d6a3 341f 2d5a 2219 4d12 9225 945b bb8f
uid netbsd-001.cupertino.alistaircrooks.com (sshtest-20140202.pub) \
<agc@netbsd-001.cupertino.alistaircrooks.com>
./netpgpverify -S sshtest-20140202.pub data.sig
Good signature for data.sig made Sun Feb 2 21:45:05 2014
signature 4096/RSA (Encrypt or Sign) 4d129225945bbb8f 1970-01-01
fingerprint 874b 75de d6a3 341f 2d5a 2219 4d12 9225 945b bb8f
uid netbsd-001.cupertino.alistaircrooks.com (sshtest-20140202.pub) \
<agc@netbsd-001.cupertino.alistaircrooks.com>
expected failure, to check bad signatures fail to verify
sed -e 's|A|B|' data.gpg | ./netpgpverify -S sshtest-20140202.pub
Signature did not match contents -- Signature on data did not match
*** Error code 1 (ignored)
%
A new HOWTO file is provided in the sources (files/HOWTO) to show how
to sign data using ssh keys and netpgp(1).
|
2013-12-20 18:16:48 by Alistair G. Crooks | Files touched by this commit (5) |
Log message:
Update netpgpverify and libnetpgpverify to version 20131219
Fix a call to mp_radix_size to use a pointer to the BIGNUM, not the
address of the pointer, when accessing. Fixes a problem observed in
other software when using the same code. The problem was obscured
from the compiler because of the use of __UNCONST(). This makes the
BN_dec2bn() and BN_hex2bn() functions (in libnetpgpverify) work
properly.
OK: wiz
|
2013-07-20 23:50:55 by Thomas Klausner | Files touched by this commit (44) |
Log message:
Use Mt for email addresses.
|
2013-04-27 01:24:56 by Alistair G. Crooks | Files touched by this commit (3) |
Log message:
Update security/netpgpverify to version 20130426
Change from previous version:
+ don't assume that output of a "cat" command (where output is sent to
stdout if the signature is verified) is able to be written with stdio.
|
2013-03-24 17:48:17 by Joerg Sonnenberger | Files touched by this commit (1) |
Log message:
Don't try to use weak aliases.
|
2013-03-16 08:32:35 by Alistair G. Crooks | Files touched by this commit (48) | |
Log message:
Update netpgpverify, the standalone PGP signature verification utility, to
latest 20130316 sources.
Changes since previous version:
+ this version is completely standalone, and relies on no external
libraries (other than libc)
+ updated man page to reflect reality
+ minor configure script added
|