--- gnupg-1.4.9.orig/debian/changelog +++ gnupg-1.4.9/debian/changelog @@ -0,0 +1,1388 @@ +gnupg (1.4.9-4ubuntu6) karmic; urgency=low + + * Build-depend on libreadline-dev instead of libreadline5-dev. + + -- Matthias Klose Sat, 19 Sep 2009 22:52:53 +0200 + +gnupg (1.4.9-4ubuntu5) karmic; urgency=low + + * debian/gnupg.udev: + Add udev rules to set ACLs on SCM smartcard readers. They replace the hal + rules for the same purpose. (LP: #57755) + * debian/rules: + Call dh_installudev. + + -- Michael Bienia Fri, 03 Jul 2009 15:38:40 +0200 + +gnupg (1.4.9-4ubuntu4) karmic; urgency=low + + * Undo the last change. A GnuPG bug with handling multiple keyservers + makes this break + + -- Mackenzie Morgan Sat, 20 Jun 2009 18:04:47 -0400 + +gnupg (1.4.9-4ubuntu3) karmic; urgency=low + + * deian/patches/100_ubuntu_default_keyserver.dpatch: (LP: #380093) + - Add keyserver.ubuntu.com as a default keyserver in g10/options.skel + + -- Mackenzie Morgan Mon, 25 May 2009 13:10:51 -0400 + +gnupg (1.4.9-4ubuntu2) karmic; urgency=low + + * debian/rules: add --enable-noexecstack to configure to avoid needless + executable stacks on i386 (LP: #49323, debian bug 527630). + * debian/rules: fix "nocheck" logic to run tests (debian bug 521884). + + -- Kees Cook Fri, 08 May 2009 09:12:18 -0700 + +gnupg (1.4.9-4ubuntu1) karmic; urgency=low + + * Merge from debian unstable, remaining changes: + - Add 'debian/patches/50_disable_mlock_test.dpatch': Disable mlock() test + since it fails with ulimit 0 (on buildds). + - Add 'debian/patches/61_use_agent_default.dpatch': Patch to set gpg + (or gpg2) and gpgsm to use a passphrase agent by default (lp: 15485) + - Add libcurl4-gnutls-dev to Build-Depends to fix gpg running into a + timeout updating the keyring (lp: 62864) + - Add 'debian/patches/55_curl_typefix.dpatch': Fix a build error with recent + curl and gcc 4.3 + + -- Nicolas Valcárcel Scerpella Tue, 05 May 2009 16:02:14 -0500 + +gnupg (1.4.9-4) unstable; urgency=low + + [ Daniel Leidert (dale) ] + * debian/compat: Added to define debhelper compat level 5. + * debian/control: (Build-Depends): Added debhelper v5. + * debian/gnupg.dirs: Added for new debhelper-based debian/rules. + * debian/gnupg.docs: Ditto. + * debian/gnupg.links: Ditto. + * debian/gnupg.manpages: Ditto. + * debian/gnupg-udeb.install: Ditto. + * debian/gpgv.files: Ditto. + * debian/gpgv-udeb.install: Ditto. + * debian/rules: Complete rewrite using debhelper (closes: #437050, #430459). + + [ Thijs Kinkhorst ] + * We don't install setuid root anymore, and have not even built + with capability support anyway in recent times. Drop libcap-dev + build-dependency and associated patches. (Closes: #492622). + * No longer install gpg-convert-from-106 in the path, but ship + this script to convert from GnuPG 1.0.6 and earlier as an + example. + * Add --disable-asm build flag on ppc64 architecture (Closes: #343434). + * Rephrase description on the subject of IDEA (Closes: #509853). + + -- Thijs Kinkhorst Mon, 16 Feb 2009 18:35:15 +0100 + +gnupg (1.4.9-3ubuntu1) intrepid; urgency=low + + * Merge from debian unstable (lp: #225005), remaining changes: + - Add 'debian/patches/50_disable_mlock_test.dpatch': Disable mlock() test + since it fails with ulimit 0 (on buildds). + - Add 'debian/patches/61_use_agent_default.dpatch': Patch to set gpg + (or gpg2) and gpgsm to use a passphrase agent by default (lp: 15485) + - Add libcurl4-gnutls-dev to Build-Depends to fix gpg running into a + timeout updating the keyring (lp: 62864) + * Dropped Ubuntu patches, applied upstream: + - 50_show_primary_only.dpatch + - 60_install_options_skel.dpatch + * Add 'debian/patches/55_curl_typefix.dpatch': Fix a build error with recent + curl and gcc 4.3 (lp: #247679). Patch taken from upstream: + http://lists.gnupg.org/pipermail/gnupg-devel/2008-April/024344.html + + -- Michael Bienia Mon, 21 Jul 2008 02:02:14 +0200 + +gnupg (1.4.9-3) unstable; urgency=low + + * Add Package-Type: udeb to μdebs. + * Properly strip binaries shippped in μdebs. + * Disable libusb-dev build-dep on the Hurd (closes: #491864). + * Updated debian/copyright to GPLv3. + * Checked for policy 3.8.0, added README.source. + * Add self to uploaders. + + -- Thijs Kinkhorst Thu, 24 Jul 2008 22:25:09 +0200 + +gnupg (1.4.9-2) unstable; urgency=low + + [ Sune Vuorela ] + * Switch maintainer to maillist. This package is now officially team + maintained. + * Really enable patches added earlier. (Really Closes: #394037, #298699) + * Add a seahorse conflicts as the seahorse maintainer likes. + * Remove stamp files in clean. + + [ Thijs Kinkhorst ] + * Add watch file (Closes: #450670). + * Remove ancient (2002 and earlier) Conflicts, Replaces, Provides. + + [ Daniel Leidert ] + * debian/control: Added Vcs fields. + (Uploaders): Added myself. + * debian/gpg-zip.1: Fixed header. + + -- Sune Vuorela Sun, 08 Jun 2008 12:27:36 +0200 + +gnupg (1.4.9-1) unstable; urgency=low + + * New upstream release 1.4.9 (Closes: #452118). Based on Daniel Leiderts work + - Removed shutdown code in util/http.c (Closes: #201589). + - Limit bytes read for an unknown alogorithm (Closes: #402592). + - Build changes to fully evaluate paths (Closes: #402958, #412508, #420613). + - Decrypt multiple files and not just the first (Closes: #431828). + - Fixes yat2m and gpg.texi to fix formatting in the man-page + (Closes: #445328). + - Localizaton update for German locale (closes: #296128). + * Remove patch 28_multiple_message.dpatch, implemented upstream + * Remove ancient preinst script to support upgrades back in 1998 + * README.Debian is related to the ancient preinst script, so remove it as + well. + * debian/patches/99_yat2m_fix_samp_handling.dpatch: Added. + - doc/yat2m.c: Backport two fixes from the upstream SVN regarding the + correct handling of backslahes and fixing the samples output format + avoiding man-db warnings. + * Redo patches with dpatch-run instead of big patch blurb in the patches. + * Updated and added some tranlations (patch 25*) + (French: Closes: #394037) (Italian: Closes: #298699) + * Have gpg suggest libpcsclite1 (Closes: #297253) and a couple of image + viewers (Closes: #381419). + * No need to clean up in builddir before removing builddir + * if rm -rf fails, we should also fail + * Handle DEB_BUILD_OPTIONS=nostrip in debian/rules (Closes: #437050) + * add md5sums to package (Closes: 430459) + * Don't depend, but recommend libldap, this is only needed in some + cases. (Closes: 399167) + * Add manpage to gpg-zip. Thanks to Colin Tuckley and Daniel Leidert + * Bump standards. + * Add Homepage field to debian/control + * Run test suites. + + -- Sune Vuorela Sun, 01 Jun 2008 21:21:10 +0200 + +gnupg (1.4.6-3) unstable; urgency=low + + * Adopt package. Thanks to James Troup for his work in the far past. + Thanks to NMU'ers Bastian and Thijs. (Closes: #476418) + * Co-maintainers wanted. + * Don't build-dep on pcap on non-linux-archs. (Closes: #357267) + + -- Sune Vuorela Sat, 17 May 2008 15:42:55 +0200 + +gnupg (1.4.6-2.2) unstable; urgency=low + + * Non-maintainer upload. + * Do not install gpg setuid root, this is not necessary anymore since + Linux kernel 2.6.9. (Closes: #356550, #346597, #453122) + * Update priority to match override (Closes: #340846). + + -- Thijs Kinkhorst Sat, 03 May 2008 16:20:56 +0200 + +gnupg (1.4.6-2.1) unstable; urgency=low + + * Non-maintainer upload. + * Remove makedev dependency. (closes: #343988) + + -- Bastian Blank Sat, 23 Feb 2008 19:59:18 +0100 + +gnupg (1.4.6-2ubuntu5) hardy; urgency=low + + * No-change rebuild against libldap-2.4-2. + + -- Steve Langasek Wed, 23 Jan 2008 10:49:38 +0000 + +gnupg (1.4.6-2ubuntu4) gutsy; urgency=low + + * debian/patches/70_trust_error.dpatch: Removed as it broke setting the + trust level to 1 (LP: #147343). + + -- Michael Bienia Mon, 01 Oct 2007 21:52:52 +0200 + +gnupg (1.4.6-2ubuntu3) gutsy; urgency=low + + [ Scott Kitterman ] + * Add 'debian/patches/60_install_options_skel.dpatch': Patch to + install options file from upstream (LP: #76983) + * Add 'debian/patches/61_use_agent_default.dpatch': Patch to set gpg + (or gpg2) and gpgsm to use a passphrase agent by default (LP: #15485) + * Add 'debian/patches/70_trust_error.dpatch': Patch to disallow illegal + zero response for trust level changes (LP: #39459) + + [ Michael Bienia ] + * Add libcurl4-gnutls-dev to Build-Depends to fix gpg running into a timeout + updating the keyring (LP: #62864) + + -- Michael Bienia Fri, 06 Jul 2007 20:56:05 +0200 + +gnupg (1.4.6-2ubuntu2) gutsy; urgency=low + + * Add 'debian/patches/50_show_primary_only.dpatch': add + 'show-primary-uid-only' to verify options, to suppress 'aka' output + in key verifications, backported from 1.4.7 upstream. + + -- Kees Cook Tue, 15 May 2007 12:09:41 -0700 + +gnupg (1.4.6-2ubuntu1) gutsy; urgency=low + + * Merge from debian unstable, remaining changes: + - config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + - debian/rules: + + Do not install gpg as suid root, since that is not necessary with + kernels 2.6.8+. + + Make the build fail if the test suite fails. + - debian/control: Maintainer field update. + + -- Kees Cook Tue, 08 May 2007 02:21:26 -0700 + +gnupg (1.4.6-2) unstable; urgency=medium + + * 28_multiple_message.dpatch: new patch from upstream to fix problems + handling verification of messages with multiple + components. [CVE-2007-1263] + + -- James Troup Wed, 7 Mar 2007 21:47:35 +0000 + +gnupg (1.4.6-1ubuntu2) feisty; urgency=low + + * SECURITY UPDATE: without --status-fd, forged inline sigs can appear valid. + * debian/patches/50_stop_multiple_messages.dpatch: upstream patch. + * References + ftp://ftp.gnupg.org/gcrypt/gnupg/patches/gnupg-1.4.6-multiple-message.patch + CVE-2007-1263 + + -- Kees Cook Wed, 7 Mar 2007 11:53:20 -0800 + +gnupg (1.4.6-1ubuntu1) feisty; urgency=low + + * Merge from debian unstable, remaining changes: + - config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + - debian/rules: + + Do not install gpg as suid root, since that is not necessary with + kernels 2.6.8+. + + Make the build fail if the test suite fails. + + -- Kees Cook Tue, 12 Dec 2006 15:56:56 -0800 + +gnupg (1.4.6-1) unstable; urgency=high + + * New upstream release. + * Fixes remotely controllable function pointer [CVE-2006-6235] + + * 27_filename_overflow.dpatch: merged upstream, dropped. + * 24_gpgv_manpage_cleanup.dpatch: updated and a couple of additional + trivial fixes. + + * debian/rules (binary-arch): info copy of manuals moved to + /usr/share/info - remove them there instead. Manuals are now built + from texi source, so install them from build tree, not top level. + + * debian/copyright: update to add OpenSSL exemption for keyserver helper + tools. + + -- James Troup Thu, 7 Dec 2006 02:54:51 +0000 + +gnupg (1.4.5-3ubuntu2) feisty; urgency=low + + * SECURITY UPDATE: unwound stack data use, leading to arbitrary code + execution. + * Add debian/patches/29_dxf_context_stack.dpatch: upstream patch, use heap + for allocation instead. + * References + CVE-2006-6235 + + -- Kees Cook Wed, 6 Dec 2006 11:46:44 -0800 + +gnupg (1.4.5-3ubuntu1) feisty; urgency=low + + * Merge to Debian unstable. Remaining Ubuntu changes: + - config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + - debian/rules: + + Do not install gpg as suid root, since that is not necessary with + kernels 2.6.8+. + + Make the build fail if the test suite fails. + + -- Martin Pitt Tue, 28 Nov 2006 19:06:47 +0100 + +gnupg (1.4.5-3) unstable; urgency=high + + * 27_filename_overflow.dpatch: new patch from upstream to fix buffer + overflow in ask_outfile_name(). [CVE-2006-6169] + + -- James Troup Mon, 27 Nov 2006 21:23:37 +0000 + +gnupg (1.4.5-2ubuntu1) feisty; urgency=low + + * Merge to Debian unstable. Remaining Ubuntu changes: + - config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + - debian/rules: + + Do not install gpg as suid root, since that is not necessary with + kernels 2.6.8+. + + Make the build fail if the test suite fails. + + -- Martin Pitt Fri, 3 Nov 2006 09:18:26 +0100 + +gnupg (1.4.5-2) unstable; urgency=low + + * debian/control: add gpgv package. Make gnupg package depend on it. + * debian/rules (binary-arch): add support for building gpgv package. + Adapt gnupg package creation accordingly. + * debian/rules (clean): clean gpgv package temporary directory. + + -- James Troup Thu, 26 Oct 2006 02:14:46 +0100 + +gnupg (1.4.5-1) unstable; urgency=low + + * New upstream release. + * 23_getkey_utf8_userid.dpatch: superseded by different fix upstream, + dropped. + * 26_user_id_overflow.dpatch: merged upstream, dropped. + * 25_de.po_fixes.dpatch: updated. + + * debian/copyright: update FSF address. + * debian/changelog: convert to UTF-8. + * debian/control (Standards-Version): bump to 3.7.2.1. + + -- James Troup Tue, 1 Aug 2006 22:50:09 +0100 + +gnupg (1.4.3-2ubuntu3) edgy; urgency=low + + * SECURITY UPDATE: Local arbitrary code execution. + * Add debian/patches/27_comment_control_overflow.dpatch: + - Fix buffer overflows in parse_comment() and parse_gpg_control(). + - Patch extracted from stable 1.4.5 release. + - Reproducer: + perl -e 'print "\xfd\xff\xff\xff\xff\xfe"'| gpg --no-armor + - Credit: Evgeny Legerov + - CVE-2006-3746 + + -- Martin Pitt Thu, 3 Aug 2006 08:11:46 +0200 + +gnupg (1.4.3-2ubuntu2) edgy; urgency=low + + * Rebuild with current zlib1g-dev to fix udeb shlibdeps. Thanks to Evan + Dandrea for noticing. + + -- Colin Watson Mon, 31 Jul 2006 11:21:55 +0100 + +gnupg (1.4.3-2ubuntu1) edgy; urgency=low + + * Sync with Debian: + Remaining Ubuntu changes: + + config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + + debian/patches/20_no_tty_fix.dpatch: + - dropped, upstream now + + debian/rules: + - don't use the included gettext + - Don't install gpg as suid root, since that is not necessary with + kernels 2.6.8+ + - Make the build fail if the test suite fails + + -- Sebastian Dröge Wed, 28 Jun 2006 21:11:14 +0200 + +gnupg (1.4.3-2) unstable; urgency=low + + * 26_user_id_overflow.dpatch: new patch pulled from upstream SVN to fix + a crash when processing overly large User ID packets [CVE-2006-3082]. + Thanks to Alec Berryman . Closes: #375052 + + -- James Troup Fri, 23 Jun 2006 11:22:31 +0100 + +gnupg (1.4.3-1) unstable; urgency=low + + * New upstream release. + * 22_zero_length_mpi_fix.dpatch: merged upstream, dropped. + * debian/rules (test): s/g10.c/gpg.c/. + * 16_min_privileges.dpatch: likewise. + + * debian/control, debian/rules: apply patch from Max Vozeler + to build gnupg-udeb. Closes: #321948 + + * Based on discussion with and testing by Martin Pitt + : + * debian/rules (build-deb-stamp): don't pass --with-included-gettext to + configure. + * debian/rules (build-udeb-stamp): likewise. + * debian/rules (binary-arch): don't need to remove + usr/share/locale/locale.alias anymore as a result. + + * debian/rules (build-deb-stamp): pass --enable-mailto to configure. + Closes: #301308 + * debian/rules (build-udeb-stamp): likewise. + + * debian/control (Build-Depends): drop mail-transport-agent and... + * debian/rules (build-deb-stamp): pass + --with-mailprog=/usr/sbin/sendmail to configure instead. + * debian/rules (build-udeb-stamp): likewise. Closes: #333218 + + * debian/rules: put common configure options into CONFARGS variable and + rename the cross-compile-only variable to HOSTARG. + + * debian/rules (clean): also remove debian/gnupg-deb build directory. + + * debian/gpg-convert-from-106.1, debian/gpgsplit.1, debian/lspgpot.1: + new manpages from François Wendling . Closes: + #344314 + * debian/rules (binary-arch): install them. + + * The following is a patch from Frans Pop . Closes: + #360257 + * debian/control (Build-Depends): add dpkg-dev (>= 1.13.12). + * debian/rules (binary-arch): pass -tudeb when invoking dpkg-shlibdeps + for the .udeb builds. + + * 23_getkey_utf8_userid.dpatch: new patch from Fumitoshi UKAI + to fix '[User id not found]' message in non-UTF-8 + locales. Closes: #205028 + + * 24_gpgv_manpage_cleanup.dpatch: new patch from "Jim W. Jaszewski" + to fix small errors in the gpgv manpage. Closes: + #177951 + + * 25_de.po_fixes.dpatch: new patch from Jens Seidel + with small fixes to the German translations. + Closes: #314069 + + -- James Troup Wed, 5 Apr 2006 02:45:56 +0100 + +gnupg (1.4.2.2-1ubuntu2) dapper; urgency=low + + * debian/rules: + - Remove --with-included-gettext configure option; use libc's gettext to + get language pack support. Closes: LP#25609 + - rm'ing locale.alias is not necessary with this change, so change it to + rm -f to not break the build. + + -- Martin Pitt Mon, 3 Apr 2006 18:21:19 +0200 + +gnupg (1.4.2.2-1ubuntu1) dapper; urgency=low + + * Resynchronize with Debian, UVF exception approved by Matt. 1.4.2.2 only + contains a security fix, updated test cases, and updated translations. + * For reference and to ease future merges, these are the remaining Ubuntu + changes: + - debian/rules: Make the build fail if the test suite fails. + - debian/changelog: Add missing CVE number. + - Don't install gpg as suid root, since that is not necessary with kernels + 2.6.8+. + - config.h.in: Disable mlock() test since it fails with ulimit 0 (on + buildds). + - debian/patches/20_no_tty_fix.dpatch: Malone #5570 + + -- Martin Pitt Mon, 13 Mar 2006 12:42:00 +0100 + +gnupg (1.4.2.2-1) unstable; urgency=low + + * New upstream release. + * Fixes handling of files containing several signed messages. + [CVE-2006-0049] + + -- James Troup Fri, 10 Mar 2006 04:27:12 +0000 + +gnupg (1.4.2.1-0ubuntu1) dapper; urgency=low + + * New upstream security bugfix release, only contains the following changes: + - Security fix for a verification weakness in gpgv. Some input + could lead to gpgv exiting with 0 even if the detached signature + file did not carry any signature. This is not as fatal as it + might seem because the suggestion as always been not to rely on + th exit code but to parse the --status-fd messages. However it + is likely that gpgv is used in that simplified way and thus we + do this release. Same problem with "gpg --verify" but nobody + should have used this for signature verification without + checking the status codes anyway. [CVE-2006-0455] + - Added a test case for above vulnerability. + * debian/rules: Call the test suite during build. (Will fail the build + if the test suite fails.) + + -- Martin Pitt Fri, 17 Feb 2006 11:18:27 +0100 + +gnupg (1.4.2-2ubuntu2) dapper; urgency=low + + * Add 20_no_tty_fix.dpatch: + - Do not open /dev/tty if --no-tty is specified, since this breaks + programs like seahorse. + - Patch also accepted upstream. + - Thanks to Ryan Lortie for the patch. + - Malone #5570 + + -- Martin Pitt Fri, 16 Dec 2005 16:57:39 +0100 + +gnupg (1.4.2-2ubuntu1) dapper; urgency=low + + * Resynchronise with Debian. + + -- Martin Pitt Thu, 10 Nov 2005 16:13:10 -0500 + +gnupg (1.4.2-2) unstable; urgency=low + + * 22_zero_length_mpi_fix.dpatch: new patch; pull in upstream patch to + fix bug in reading a zero-length MPI. Closes: #330686 + + -- James Troup Sun, 2 Oct 2005 02:39:51 +0100 + +gnupg (1.4.2-1) unstable; urgency=low + + * New upstream release. + * Fixes extra ) on expired keys. Closes: #329402 + + * debian/control (Standards-Version): updated to 3.6.2.1. + + * debian/rules (binary-arch): drop 'gnupg/' from libexecdir passed to + make install. + + -- James Troup Sat, 24 Sep 2005 03:31:37 +0100 + +gnupg (1.4.1-1ubuntu2) dapper; urgency=low + + * debian/rules: Stop calling pkgstriptranslations, we now get it + for free with the new and improved dpkg-deb diversion hack. + + -- Adam Conrad Wed, 26 Oct 2005 10:42:17 +1000 + +gnupg (1.4.1-1ubuntu1) breezy; urgency=low + + * Resynchronise with Debian, fixing changelog ordering. + * Added CAN number to previous changelog entry. + + -- Martin Pitt Fri, 10 Jun 2005 10:36:38 +0200 + +gnupg (1.4.1-1) unstable; urgency=low + + * New upstream release. Closes: #307203 + * Fixes mis-selection of encryption key. Closes: #299814 + * Countermeasures against the Mister/Zuccherato CFB attack. + Closes: #300859 + * 18_ca_po_update.dpatch, 21_strgutil_update.dpatch: dropped - merged + upstream. + * debian/rules (build-deb-stamp): don't forcefully regenerate po/ca.gmo. + (clean): likewise, don't remove po/ca.gmo. + + -- James Troup Mon, 9 May 2005 23:41:50 +0100 + +gnupg (1.4.0-3ubuntu1) breezy; urgency=low + + * Merge Debian changes (#9358). + + -- Martin Pitt Fri, 15 Apr 2005 09:35:41 +0200 + +gnupg (1.4.0-3) unstable; urgency=low + + * debian/rules (binary-arch): move Russian manpage to correct (FHS) + location. Thanks to Uwe Zeisberger + for the report. Closes: #294196 + + -- James Troup Sun, 20 Feb 2005 22:55:11 +0000 + +gnupg (1.4.0-2) unstable; urgency=low + + * 18_ca_po_update.dpatch: re-added, updated for new upstream release. + Thanks to Jordi Mallach . + * debian/rules (build-deb): force regeneration of ca.gmo. + + * 21_strgutil_update.dpatch: new patch; pull in strgutil.c fixes from + 1.4.1rc1 to fix warnings about 'Invalid or incomplete multibyte or + wide character' with (at least) Latin-1 encoded UIDs. + + * debian/copyright: update year and version number. + + * debian/rules: apply patch to enable cross-build from NIIBE Yutaka + . Closes: #285293 + + * debian/rules: s/DEB_HOST_ARCH/DEB_BUILD_ARCH/ as the gpgv-udeb should + use the build architecture not host. + * debian/rules (build-udeb): pass $(CONFARGS) to configure here too. + + -- James Troup Sat, 5 Feb 2005 03:03:06 +0000 + +gnupg (1.4.0-1) unstable; urgency=low + + * New upstream release. Closes: #286058 + + * debian/control (Build-Depends): add libusb-dev and libreadline5-dev. + * debian/rules (binary): install doc/highlights-1.4.txt to + /usr/share/doc/gnupg/ too. + + * 17_ipv6_support.dpatch: removed; a different patch has been applied + upstream. + * 19_throw_keyid_compat.dpatch, 20_update_pgp8.dpatch: dropped; merged + upstream. + + * 16_min_privileges.dpatch: adjusted for new upstream release with + wiggle(1). + + * 18_ca_po_update.dpatch: dropped temporarily as it no longer applies. + + * Apply patch from Colin Watson to add gpgv-udeb package. Closes: #287106 + * debian/rules (build-udeb): also pass --without-readline to configure. + + -- James Troup Thu, 3 Feb 2005 23:52:49 +0000 + +gnupg (1.2.5-3.1) UNOFFICIAL; urgency=low + + * debian/control, debian/rules: Build gpgv-udeb, containing just + /usr/bin/gpgv built without bzip2 support and with -Os, for use in + debian-installer. + + -- Colin Watson Fri, 24 Dec 2004 13:42:23 +0000 + +gnupg (1.2.5-3ubuntu5) hoary; urgency=low + + * debian/rules: Call pkgstriptranslations if present (the package does not + use debhelper, thus it does not happen automatically). + + -- Martin Pitt Fri, 18 Mar 2005 13:04:50 +0000 + +gnupg (1.2.5-3ubuntu4) hoary; urgency=low + + * debian/control, debian/rules: Build gpgv-udeb, containing just + /usr/bin/gpgv built without bzip2 support and with -Os, for use in the + installer. + + -- Colin Watson Wed, 12 Jan 2005 14:52:51 +0000 + +gnupg (1.2.5-3ubuntu3) hoary; urgency=low + + * Disable HAVE_BROKEN_MLOCK, since the test fails if ulimit -l 0. + + -- LaMont Jones Tue, 30 Nov 2004 22:35:20 -0700 + +gnupg (1.2.5-3ubuntu2) hoary; urgency=low + + * No-change upload to get mlock test correct. + + -- LaMont Jones Tue, 30 Nov 2004 21:25:26 -0700 + +gnupg (1.2.5-3ubuntu1) hoary; urgency=low + + * Resynced to Debian; automatic sync result was a mess, redid from scratch. + * Do not install gnupg as suid root since the Ubuntu kernel now supports + calling mlock() as user. + + -- Martin Pitt Thu, 11 Nov 2004 11:08:42 +0100 + +gnupg (1.2.5-3.1) UNOFFICIAL; urgency=low + + * debian/control, debian/rules: Build gpgv-udeb, containing just + /usr/bin/gpgv built without bzip2 support and with -Os, for use in + debian-installer. + + -- Colin Watson Fri, 24 Dec 2004 13:42:23 +0000 + +gnupg (1.2.5-3) unstable; urgency=low + + * debian/rules (build): drop --with-capabilites for now. + * debian/rules (clean): don't remove fi.gmo now that we're no longer + patching it. + * Merge patch from Peter Palfrader to fix building + without capabilities and idempotency of build process after + 18_ca_po_update.dpatch. Closes: #262723 + + -- James Troup Mon, 2 Aug 2004 00:51:21 +0100 + +gnupg (1.2.5-2.1) unstable; urgency=low + + * Fix patches/15_free_caps to also build without capabilities. + * Remove po/ca.gmo in clean target. + + -- Peter Palfrader Sun, 1 Aug 2004 20:13:31 +0200 + +gnupg (1.2.5-2) unstable; urgency=low + + * 18_ca_po_update.dpatch: new patch from Jordi Mallach + to fix ca.po encoding. Closes: #237070 + + * 19_throw_keyid_compat.dpatch: new patch from Werner Koch + to add a --throw-keyid option for backwards + compatability. + + * 20_update_pgp8.dpatch: new patch from David Shaw + to update --pgp8 to match reality. + + -- James Troup Sat, 31 Jul 2004 10:55:30 +0100 + +gnupg (1.2.5-1) unstable; urgency=low + + * New upstream release. Closes: #262094 + * UID merging should now work on initial import. Closes: #236966 + + * 10_hppa_unaligned_constant.dpatch, 11_fi_po_update.dpatch, + 12_zero_length_header.dpatch, 13_revoked_keys.dpatch, + 14_getkey_not_found_fix.dpatch: merged upstream - removed. + + * debian/rules (binary-arch): add + 'mkinstalldirs=`pwd`/scripts/mkinstalldirs' to make install invocation + to work around broken Makefile. + + * debian/control (Standards-Version): bump to 3.6.1.1. + + * Apply patch from Martin Pitt to drop privileges as + early as possible. Closes: #260803 + + * debian/control (Build-Depends): add mail-transport-agent to ensure + gpgkeys_mailto is built. Thanks to Daniel Schepler + for noticing. Closes: #253681 + + * debian/rules, debian/preinst: Patch from David Weinehall + to use && in favour of -a as the latter is an XSI + extension. Closes: #257575 + + * 17_ipv6_support.dpatch: IPv6 patch from Jun-ichiro itojun Hagino. + Thanks to Fabio Massimo Di Nitto . + Closes: #209242 + + -- James Troup Thu, 29 Jul 2004 23:57:08 +0100 + +gnupg (1.2.4-4.1) unstable; urgency=low + + * 15_free_caps.dpatch: free allocated capability contexts when using + USE_CAPABILITIES. + * 16_min_privileges.dpatch: immediately drop root user to normal user and + keep only CAP_IPC_LOCK, which is dropped as well right after it is not + needed any more. This ensures minimal privileges. + * debian/rules: configure with --with-capabilities to tighten security. + * debian/control: this requires build-dependency libcap-dev. + + -- Martin Pitt Thu, 22 Jul 2004 02:08:56 +0200 + +gnupg (1.2.4-4) unstable; urgency=low + + * 12_zero_length_header.dpatch: update patch from David Shaw + to fix the fix of crashing on certain + keys. Closes: #234289 + + -- James Troup Mon, 23 Feb 2004 18:02:20 +0000 + +gnupg (1.2.4-3) unstable; urgency=low + + * Move to dpatch; existing non-debian/ change split into + 10_hppa_unaligned_constant.dpatch. + + * debian/rules: include /usr/share/dpatch/dpatch.make. + * debian/rules (build): depend on patch-stamp. + * debian/rules (clean): depend on unpatch. Remove debian/patched. + * debian/control (Build-Depends): add dpatch. + + * debian/rules: update version number and use install_foo convenience + variables. + * debian/rules (clean): remove emacs backup files from any directory. + + * 11_fi_po_update.dpatch: new patch from Tommi Vainikainen + to update Finnish translation as the current one + renders gnupg unusable. Closes: #232030, #222951, #192582 + * debian/rules (clean): remove po/fi.gmo to avoid dpkg-source errors + over unrepresentable changes to source. + + * 12_zero_length_header.dpatch: new patch from David Shaw + to fix cases where importing certain keys + makes the keyring unuseable. Closes: #232714 + + * 13_revoked_keys.dpatch: new patch from David Shaw + to list revoked keys as revoked. Closes: #231814 + + * 14_getkey_not_found_fix.dpatch: new patch from David Shaw + to fix --list-sigs incorrectly claiming "User + id not found". Closes: #229549 + + -- James Troup Fri, 20 Feb 2004 16:38:12 +0000 + +gnupg (1.2.4-2) unstable; urgency=low + + * mpi/hppa1.1/udiv-qrnnd.S: patch from LaMont Jones + to fix unaligned constant. Closes: #228456 + * debian/copyright: update year and version number. + + -- James Troup Tue, 20 Jan 2004 17:19:58 +0000 + +gnupg (1.2.4-1) unstable; urgency=medium + + * New upstream release. + * Most support for ElGamal Sign+Encrypt keys has been removed. Closes: #222293 + * No longer miss-identifies GNU/KFreeBSD as GNU/Hurd. Closes: #216957 + * Fixes build error on GNU/KFreeBSD (and Glibc-based GNU/KNetBSD). Closes: #221079 + * Fixes segmentation fault in prime generator. Closes: #213989 + * Fixes trustdb not updating without ultimately trusted keys. Closes: #222368 + + * debian/control (Build-Depends): add libbz2-dev. + + -- James Troup Wed, 31 Dec 2003 17:57:52 +0000 + +gnupg (1.2.3-1) unstable; urgency=low + + * New upstream release (Closes: #207340). + * gpg no longer kills keyrings by importing broken keys. Closes: #196505 + * options.skel uses subkeys.pgp.net instead of pgp.mit.edu. Closes: #206092 + * --import now closes files when it's done. Closes: #196643 + * A key listing speed regression has been fixed. Closes: #192083 + * debian/copyright: update URL and date. + * debian/rules: update dates and version. + + * debian/control (Standards-Version): bump to 3.6.0. + + * debian/Upgrading_From_PGP.txt: new file from to Richard Braakman + . Closes: #173233 + * debian/rules (binary-arch): install it. + + * debian/rules (build): correct libexecdir passed to configure; patch + from Matthias Cramer . Fixes invocation of + gpgkeys_ldap. Closes: #168486 + + -- James Troup Thu, 28 Aug 2003 14:08:50 +0100 + +gnupg (1.2.2-1) unstable; urgency=low + + * New upstream release. + * debian/control (Standards-Version): bump to 3.5.9.0. + * debian/rules (binary-arch): install convert-from-106 as + gpg-convert-from-106 and fix the path to gpg. + * debian/control: remove trailing full stop from short description. + * debian/control: remove out-dated and contradictory information about + RSA. + + -- James Troup Mon, 5 May 2003 03:08:58 +0100 + +gnupg (1.2.1-2) unstable; urgency=low + + * Update config.guess (to 2002-10-21) and config.sub (to 2002-09-05). + Thanks to Ryan Murray. Closes: #166696 + + -- James Troup Mon, 28 Oct 2002 01:47:26 +0000 + +gnupg (1.2.1-1) unstable; urgency=low + + * New upstream version. + * An inifinte loop in --update-trustdb has been fixed. Closes: #162039 + * The polish translation is now correctly specified as UTF-8. Closes: #162885 + * --refresh-keys is now documented in the manpage. Closes: #165566 + * debian/control (Conflicts): add gpg-idea <= 2.2 since gnupg >= 1.2 is + incompatible with that version of gpg-idea. Closes: #162314 + + -- James Troup Fri, 25 Oct 2002 18:18:43 +0100 + +gnupg (1.2.0-1) unstable; urgency=low + + * New upstream version. Closes: #161817. + * --options no longer mis-handles a directory as an argument. Closes: #151973 + * gpg now prompts before sending all keys to the keyserver. Closes: #64607 + * There is now a gnupg(7) manpage. Closes: #157750 + * The permission checking has been sanitized and handles non-home-dir + keyrings better. Closes: #147760 + * notation data longer than 5 characters is now handled. Closes: #156871 + * an abort when setting trust levels in a czech locale has been fixed. + Closes: #149212 + * debian/rules (binary-arch): there are no more modules, adjust + accordingly. + * debian/postinst, debian/prerm: remove; no longer do /usr/doc symlinks. + * debian/rules (binary-arch): don't install obsolete postinst or prerm. + * debian/rules (binary-arch): gzip gnupg.7 too. + * debian/rules (build): pass --libexecdir=/usr/lib/gnupg to configure. + * debian/rules (binary-arch): likewise, pass suitable libexcedir + argument to make install. + * debian/control (Standards-Version): update to 3.5.7.0. + * debian/copyright: update URL and date. + * debian/rules: update dates and version. + + -- James Troup Sun, 22 Sep 2002 22:26:25 +0100 + +gnupg (1.0.7-2) unstable; urgency=low + + * debian/control (Suggests): add xloadimage since that's what gpg uses + by default to view photo IDs. Thanks to Julien Danjou + for the suggestion. Closes: #156245 + * debian/control (Depends): add "hurd" to the alternatives to + makedev. Thanks to Michal Suchanek for + noticing. Closes: #158492 + * po/it.po: patch to fix typos from Marco Bodrato + Thu, 29 Aug 2002 01:42:58 +0100 + +gnupg (1.0.7-1) unstable; urgency=low + + * New upstream version. Closes: #145477. + * GDBM support has been removed. Closes: #33009. + * Now adds the default keyring when a keyring is specified. + Closes: #50616, #65260. + * Now does the Right Thing when receiving a key from the keyserver and + the key in question is in both a read-only and writable keyring. + Closes: #63297. + * Automatic key retrieval is now configurable. Closes: #64940. + * --no-options supresses ~/.gnupg creation again. Closes: #95486. + * duplicate trust entries are no longer treated as an error. Closes: #96480. + * There's now no comment line in ascii armours. Closes: #100088. + * Handle secret keyring given as keyring better. Closes: #100581, #106670. + * It's now documented that --with-colons unconditionally uses UTF8. + Closes: #101446, 101454. + * s/now/knows/ typo in manpage fixed. Closes: #107471. + * There's now support for a primary UID. Closes: #106567, #108155. + * Handles errors in uncompression layer beter. Closes: #112392. + * Key selection has been entirely revamped. Closes: #136170. + * Handles empty encrypt-to. Closes: #138378 + + * debian/rules (binary-arch): remove empty /usr/info directory, thanks + to Joey Hess . Closes: #121864. + * debian/control: remove duplicated word from long description, thanks + to Nicolas Boulenguez . Closes: #144786. + * README: correct URL to GPH and other docs, thanks to Mark Brown + . Closes: #100277. + * debian/control (Standards-Version): updated to 3.5.6.1. + * debian/rules (binary-arch): only strip ELF binaries. es_ES -> es hack + no longer needed as fixed upstream. + * debian/control (Build-Depends): remove libgdbmg1-dev; no longer used. + * debian/README.Debian: remove note about gdbm support which was finally + removed. Update note on old versions of gnupg to reflect the + pre-historic nature of those versions. + * debian/control (Build-Depends): add libldap2-dev. + * debian/rules (binary-arch): call dpkg-shlibdeps for all ELF binaries. + * debian/control (Build-Depends): add file. + * debian/control (Priority): increase to standard to match overrides. + + -- James Troup Sat, 11 May 2002 15:08:02 +0100 + +gnupg (1.0.6-3) unstable; urgency=low + + * moved into main. + + -- James Troup Tue, 19 Mar 2002 16:17:09 +0000 + +gnupg (1.0.6-2) unstable; urgency=high + + * debian/rules (binary-arch): remove the erroneous + /usr/share/locale/locale.alias that 'make install' adds; closes: + #99293. + + -- James Troup Wed, 30 May 2001 20:40:59 +0100 + +gnupg (1.0.6-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Tue, 29 May 2001 20:59:49 +0100 + +gnupg (1.0.5-4) unstable; urgency=low + + * Patch from Werner. + + -- James Troup Sun, 27 May 2001 09:34:50 +0100 + +gnupg (1.0.5-3) unstable; urgency=low + + * Apply patch from Matthew Wilcox to fix assembly on + hppa. + + -- James Troup Sun, 13 May 2001 02:36:45 +0100 + +gnupg (1.0.5-2) unstable; urgency=medium + + * util/http.c: patch from Werner that fixes --send-key, closes: #96277. + * debian/control (Depends): accept devfsd in place of makedev, closes: + #96307. + + -- James Troup Mon, 7 May 2001 00:13:51 +0100 + +gnupg (1.0.5-1) unstable; urgency=low + + * New upstream version. + * debian/README.Debian: fix spelling and update URL. + * debian/rules (binary): remove the new info files. + * scripts/config.{guess,sub}: sync with subversions, closes: #95729. + + -- James Troup Mon, 30 Apr 2001 02:12:38 +0100 + +gnupg (1.0.4-4) unstable; urgency=low + + * po/ru.po: patch by Ilya Martynov to replace German + entries and add missing translations, closes: #93987. + * g10/revoke.c (ask_revocation_reason): typo fix (s/non longer/no + longer/g); noticed by Colin Watson , closes: + #93664. + + * Deprecated depreciated; noticed by Vincent Broman + . + + * Following two patches are from Vincent Broman. + * g10/mainproc.c (proc_tree): use iobuf_get_real_fname() in preference + to iobuf_get_fname(). + * g10/openfile.c (open_sigfile): handle .sign prefixed files correctly. + + -- James Troup Fri, 20 Apr 2001 23:32:44 +0100 + +gnupg (1.0.4-3) unstable; urgency=medium + + * debian/rules (binary): make gpg binary suid, closes: #86433. + * debian/postinst: don't use suidregister. + * debian/postrm: removed (only called suidunregister). + * debian/control: conflict with suidmanager << 0.50. + * mpi/longlong.h: apply fix for ARM long long artimetic from Philip + Blundell , closes: #87487. + * debian/preinst: the old GnuPG debs have moved to people.debian.org. + * cipher/random.c: #include as well as + * g10/misc.c: likewise. + * debian/rules: define a strip alias which removes the .comment and + .note sections. + * debian/rules (binary-arch): use it. + * debian/lintian.override: new file; override the SUID warning from + lintian. + * debian/rules (binary-arch): install it. + + -- James Troup Sun, 25 Feb 2001 05:24:58 +0000 + +gnupg (1.0.4-2) stable unstable; urgency=high + + * Apply security fix patch from Werner. + * Apply another patch from Werner to fix bogus warning on Rijndael + usage. + * Change section to 'non-US'. + + -- James Troup Mon, 12 Feb 2001 07:47:02 +0000 + +gnupg (1.0.4-1) stable unstable; urgency=high + + * New upstream version. + * Fixes a serious bug which could lead to false signature verification + results when more than one signature is fed to gpg. + + -- James Troup Tue, 17 Oct 2000 17:26:17 +0100 + +gnupg (1.0.3b-1) unstable; urgency=low + + * New upstream snapshot version. + + -- James Troup Fri, 13 Oct 2000 18:08:14 +0100 + +gnupg (1.0.3-2) unstable; urgency=low + + * debian/control: Conflict, Replace and Provide gpg-rsa & gpg-rsaref. + Fix long description to reflect the fact that RSA is no longer + patented and now included. [#72177] + * debian/rules: move faq.html to /usr/share/doc/gnupg/ and remove FAQ + from /usr/share/gnupg/. Thanks to Robert Luberda + for noticing. [#72151] + * debian/control: Suggest new package gnupg-doc. [#64323, #65560] + * utils/secmem.c (lock_pool): don't bomb out if mlock() returns ENOMEM, + as Linux will do this if resource limits (or other reasons) prevent + memory from being locked, instead treat it like permission was denied + and warn but continue. Thanks to Topi Miettinen + . [#70446] + * g10/hkp.c (not_implemented): s/ist/is/ in error message. + * debian/README.Debian: add a note about GDBM support and why it is + disabled. Upstream already fixed the manpage. [#65913] + * debian/rules (binary-arch): fix the Spanish translation to be 'es' not + 'es_ES' at Nicolás Lichtmaier 's request. [#57314] + + -- James Troup Sun, 1 Oct 2000 14:55:03 +0100 + +gnupg (1.0.3-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Mon, 18 Sep 2000 15:56:54 +0100 + +gnupg (1.0.2-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Thu, 13 Jul 2000 20:26:50 +0100 + +gnupg (1.0.1-2) unstable; urgency=low + + * debian/control (Build-Depends): added. + * debian/copyright: corrected location of copyright file. Removed + references to Linux. Removed warnings about beta nature of GnuPG. + * debian/rules (binary-arch): install documentation into + /usr/share/doc/gnupg/ and pass mandir to make install to ensure the + manpages go to /usr/share/man/. + * debian/postinst: create /usr/doc/gnupg symlink. + * debian/prerm: new file; remove /usr/doc/gnupg symlink. + * debian/rules (binary-arch): install prerm. + * debian/control (Standards-Version): updated to 3.1.1.1. + + -- James Troup Thu, 30 Dec 1999 16:16:49 +0000 + +gnupg (1.0.1-1) unstable; urgency=low + + * New upstream version. + * doc/gpg.1: updated to something usable from + ftp://ftp.gnupg.org/pub/gcrypt/gnupg/gpg.1.gz. + + -- James Troup Sun, 19 Dec 1999 23:47:10 +0000 + +gnupg (1.0.0-3) unstable; urgency=low + + * debian/rules (build): remove the stunningly ill-advised --host option + to configure. [#44698, #48212, #48281] + + -- James Troup Tue, 26 Oct 1999 01:12:59 +0100 + +gnupg (1.0.0-2) unstable; urgency=low + + * debian/rules (binary-arch): fix the permissions on the + modules. [#47280] + * debian/postinst, debian/postrm: fix the package name passed to + suidregister. [#45013] + * debian/control: update long description. [#44636] + * debian/rules (build): pass the host explicitly to configure to avoid + problems on sparc64. [(Should fix) #44698]. + + -- James Troup Wed, 20 Oct 1999 23:39:05 +0100 + +gnupg (1.0.0-1) unstable; urgency=low + + * New upstream release. [#44545] + + -- James Troup Wed, 8 Sep 1999 00:53:02 +0100 + +gnupg (0.9.10-2) unstable; urgency=low + + * debian/rules (binary-arch): install lspgpot. Requested by Kai + Henningsen . [#42288] + * debian/rules (binary-arch): correct the path where modules are looked + for. Reported by Karl M. Hegbloom . [#40881] + * debian/postinst, debian/postrm: under protest, register gpg the + package with suidmanager and make it suid by default. + [#29780,#32590,#40391] + + -- James Troup Tue, 10 Aug 1999 00:12:40 +0100 + +gnupg (0.9.10-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Fri, 6 Aug 1999 01:16:21 +0100 + +gnupg (0.9.9-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Sun, 25 Jul 1999 01:06:31 +0100 + +gnupg (0.9.8-1) unstable; urgency=low + + * New upstream version. + * debian/rules (binary-arch): don't create a gpgm manpage as the binary + no longer exists. Noticed by Wichert Akkerman + . [#38864] + + -- James Troup Sun, 27 Jun 1999 01:07:58 +0100 + +gnupg (0.9.7-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Tue, 25 May 1999 13:23:24 +0100 + +gnupg (0.9.6-1) unstable; urgency=low + + * New upstream version. + * debian/copyright: update version number, noticed by Lazarus Long + . + * debian/control (Depends): depend on makedev (>= 2.3.1-13) to ensure + that /dev/urandom exists; reported by Steffen Markert + . [#32076] + + -- James Troup Tue, 11 May 1999 21:06:27 +0100 + +gnupg (0.9.5-1) unstable; urgency=low + + * New upstream version. + * debian/control (Description): no tabs. [Lintian] + + -- James Troup Wed, 24 Mar 1999 22:37:40 +0000 + +gnupg (0.9.4-1) unstable; urgency=low + + * New version. + * debian/control: s/GNUPG/GnuPG/ + + -- Werner Koch Mon, 8 Mar 1999 19:58:28 +0100 + +gnupg (0.9.3-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Mon, 22 Feb 1999 22:55:04 +0000 + +gnupg (0.9.2-1) unstable; urgency=low + + * New version. + * debian/rules (build): Removed CFLAGS as the default is now sufficient. + * debian/rules (clean): remove special handling cleanup in intl. + + -- Werner Koch Wed, 20 Jan 1999 21:23:11 +0100 + +gnupg (0.9.1-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Sat, 9 Jan 1999 22:29:11 +0000 + +gnupg (0.9.0-1) unstable; urgency=low + + * New upstream version. + * g10/armor.c (armor_filter): add missing new line in comment string; as + noticed by Stainless Steel Rat . + + -- James Troup Tue, 29 Dec 1998 20:22:43 +0000 + +gnupg (0.4.5-1) unstable; urgency=low + + * New upstream version. + * debian/rules (clean): force removal of intl/libintl.h which the + Makefiles fail to remove properly. + + -- James Troup Tue, 8 Dec 1998 22:40:23 +0000 + +gnupg (0.4.4-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Sat, 21 Nov 1998 01:34:29 +0000 + +gnupg (0.4.3-1) unstable; urgency=low + + * New upstream version. + * debian/README.Debian: new file; contains same information as is in the + preinst. Suggested by Wichert Akkerman . + * debian/rules (binary-arch): install `README.Debian' + * debian/control (Standards-Version): updated to 2.5.0.0. + + -- James Troup Sun, 8 Nov 1998 19:08:12 +0000 + +gnupg (0.4.2-1) unstable; urgency=low + + * New upstream version. + * debian/preinst: improve message about the NEWS file which isn't + actually installed when it's referred to, thanks to Martin Mitchell + . + * debian/rules (binary-arch): don't install the now non-existent `rfcs', + but do install `OpenPGP'. + + -- James Troup Sun, 18 Oct 1998 22:48:34 +0100 + +gnupg (0.4.1-1) unstable; urgency=low + + * New upstream version. + * debian/rules (binary-arch): fix the gpgm manpage symlink now installed + by `make install'. + + -- James Troup Sun, 11 Oct 1998 17:01:21 +0100 + +gnupg (0.4.0-1) unstable; urgency=high + + * New upstream version. [#26717] + * debian/copyright: tone down warning about alpha nature of gnupg. + * debian/copyright: new maintainer address. + * debian/control: update extended description. + * debian/rules (binary-arch): install FAQ and all ChangeLogs. + * debian/preinst: new; check for upgrade from (<= 0.3.2-1) and warn about + incompatibilities in keyring format and offer to move old copy out of + gpg out of the way for transition strategy and inform the user about + the old copies of gnupg available on my web page. + * debian/rules (binary-arch) install preinst. + * debian/rules (binary-arch): don't depend on the test target as it is + now partially interactive (tries to generate a key, which requires + someone else to be using the computer). + + -- James Troup Thu, 8 Oct 1998 00:47:07 +0100 + +gnupg (0.3.2-1) unstable; urgency=low + + * New upstream version. + * debian/control (Maintainer): new address. + * debian/copyright: updated list of changes. + + -- James Troup Thu, 9 Jul 1998 21:06:07 +0200 + +gnupg (0.3.1-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Tue, 7 Jul 1998 00:26:21 +0200 + +gnupg (0.3.0-2) unstable; urgency=low + + * Applied bug-fix patch from Werner. + + -- James Troup Fri, 26 Jun 1998 12:18:29 +0200 + +gnupg (0.3.0-1) unstable; urgency=low + + * New upstream version. + * debian/control: rewrote short and long description. + * cipher/Makefile.am: link tiger with -lc. + * debian/rules (binary-arch): strip loadable modules. + * util/secmem.c (lock_pool): get rid of errant test code; fix from + Werner Koch . + * debian/rules (test): new target which runs gnupg's test suite. + binary-arch depends on it, to ensure it's run whenever the package is + built. + + -- James Troup Thu, 25 Jun 1998 16:04:57 +0200 + +gnupg (0.2.19-1) unstable; urgency=low + + * New upstream version. + * debian/control: Updated long description. + + -- James Troup Sat, 30 May 1998 12:12:35 +0200 + +gnupg (0.2.18-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Sat, 16 May 1998 11:52:47 +0200 + +gnupg (0.2.17-1) unstable; urgency=high + + * New upstream version. + * debian/control (Standards-Version): updated to 2.4.1.0. + * debian/control: tone down warning about alpha nature of gnupg, as per + README. + * debian/copyright: ditto. + + -- James Troup Mon, 4 May 1998 22:36:51 +0200 + +gnupg (0.2.15-1) unstable; urgency=high + + * New upstream version. + + -- James Troup Fri, 10 Apr 1998 01:12:20 +0100 + +gnupg (0.2.13-1) unstable; urgency=high + + * New upstream version. + + -- James Troup Wed, 11 Mar 1998 01:52:51 +0000 + +gnupg (0.2.12-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Sat, 7 Mar 1998 13:52:40 +0000 + +gnupg (0.2.11-1) unstable; urgency=low + + * New upstream version. + + -- James Troup Wed, 4 Mar 1998 01:32:12 +0000 + +gnupg (0.2.10-1) unstable; urgency=low + + * New upstream version. + * Name changed upstream. + + -- James Troup Mon, 2 Mar 1998 07:32:05 +0000 + +g10 (0.2.7-1) unstable; urgency=low + + * Initial release. + + -- James Troup Fri, 20 Feb 1998 02:05:34 +0000 + --- gnupg-1.4.9.orig/debian/gpgv.files +++ gnupg-1.4.9/debian/gpgv.files @@ -0,0 +1,2 @@ +usr/bin/gpgv +usr/share/man/man1/gpgv.1 --- gnupg-1.4.9.orig/debian/gnupg.docs +++ gnupg-1.4.9/debian/gnupg.docs @@ -0,0 +1,10 @@ +NEWS +README +THANKS +TODO +doc/DETAILS +doc/FAQ +doc/faq.html +doc/highlights-1.4.txt +doc/OpenPGP +debian/Upgrading_From_PGP.txt --- gnupg-1.4.9.orig/debian/gnupg.install +++ gnupg-1.4.9/debian/gnupg.install @@ -0,0 +1 @@ +tools/lspgpot usr/bin --- gnupg-1.4.9.orig/debian/gnupg.links +++ gnupg-1.4.9/debian/gnupg.links @@ -0,0 +1 @@ +usr/share/doc/gnupg/changelog.g10.gz usr/share/doc/gnupg/changelog.gz --- gnupg-1.4.9.orig/debian/README.source +++ gnupg-1.4.9/debian/README.source @@ -0,0 +1,3 @@ +GnuPG's source is managed with dpatch. To get the source ready to be compiled, +run `debian/rules patch`. For other usage information please refer to the +dpatch documentation in /usr/share/doc/dpatch. --- gnupg-1.4.9.orig/debian/lspgpot.1 +++ gnupg-1.4.9/debian/lspgpot.1 @@ -0,0 +1,22 @@ +.TH "lspgpot" 1 "December 2005" + +.SH NAME +lspgpot - extracts the ownertrust values from PGP keyrings and list them in +GnuPG ownertrust format. + + +.SH SYNOPSIS +.B lspgpot + + +.SH DESCRIPTION +.B lspgpot +extracts the ownertrust values from PGP keyrings and list them in +GnuPG ownertrust format. + +.SH AUTHOR +Copyright (C) 2002 Free Software Foundation, Inc. Please report bugs to +. + +This manpage was written by Francois Wendling . + --- gnupg-1.4.9.orig/debian/gnupg.examples +++ gnupg-1.4.9/debian/gnupg.examples @@ -0,0 +1 @@ +tools/convert-from-106 --- gnupg-1.4.9.orig/debian/gpgsplit.1 +++ gnupg-1.4.9/debian/gpgsplit.1 @@ -0,0 +1,41 @@ +.TH "gpgsplit" 1 "December 2005" + +.SH NAME +gpgsplit \- Split an OpenPGP message into packets + +.SH SYNOPSIS +.B gpgsplit +.RI [ OPTIONS ] +.RI [ FILES ] + +.SH DESCRIPTION +This manual page documents briefly the +.B gpgsplit +command. +.PP +.B gpgsplit +splits an OpenPGP message into packets. + +.SH OPTIONS +.TP +.BR \-v , \-\-verbose +Verbose. +.TP +.BR \-p , "\-\-prefix " \fISTRING\fR +Prepend filenames with \fISTRING\fR. +.TP +.B \-\-uncompress +Uncompress a packet. +.TP +.B \-\-secret\-to\-public +Convert secret keys to public keys. +.TP +.B \-\-no\-split +Write to stdout and don't actually split. + +.SH AUTHOR +Copyright (C) 2002 Free Software Foundation, Inc. Please report bugs to +. + +This manpage was written by Francois Wendling . + --- gnupg-1.4.9.orig/debian/TODO +++ gnupg-1.4.9/debian/TODO @@ -0,0 +1,56 @@ +TODO + +* fixed in older releases and probably even not relevant in 1.4.x anymore (in + braces the upstream tracker item number): + + #113897: "Oops: lock already hold by us" when using --fast-import (not 100% sure) + + the following I'm not 100% sure: + #166794, + #172823: --search leads to segfault + + +* Ubuntu patches: + + debian/patches/61_use_agent_default.dpatch: we should decide if used as default + +* discuss + + - libcurl4-gnutls-dev build-dependency - seems to fix several issues + with the self-written Curl code (LP: #62864, applied-ubuntu since 1.4.6-2ubuntu3) + + - if gpg should be put into /bin (#477671) + + - if keyserver-options verbose should be default (#474569) + + - if the libldap dependency can be downgraded to a recommended package (I'm + currently not in favour of this - #399167) + + - why does gnupg depend on gpgv and can this perhaps be made less strong? + +general: + + +============================================================================== + + +* Close candidate (upstream rejected change): + + #38857: gnupg: no way to copy a key + #61914: gnupg: confusing question in gpg key generation process (I cannot agree) + #93656: gnupg; No way to specify multiple keyservers? (#139) +#162742: gnupg: Please handle "deprecated option honor-http-proxy" +#173586: gnupg: Suggestion for a better error message +#185782: `--batch --output existingfile' outputs nothing and exits 0 +#196681: gnupg: gpg says /dev/null@alea isn't a valid email address +#290980: gnupg: 'gpg -q --verify' should be quiet on success (#919) +#310805: gnupg: fully exportable armored homedir is completely impossible now! +#318587: gnupg: should encrypt to all subkeys + +#300743: gnupg: Should not depend on libusb + +* Forward candidates (to at least get a feedback): + + #58260, +#317654: remove existing lockfiles () + --- gnupg-1.4.9.orig/debian/gnupg.dirs +++ gnupg-1.4.9/debian/gnupg.dirs @@ -0,0 +1,2 @@ +usr/share/doc/gnupg +usr/share/man/ru/man1 --- gnupg-1.4.9.orig/debian/gnupg-udeb.install +++ gnupg-1.4.9/debian/gnupg-udeb.install @@ -0,0 +1 @@ +build-udeb/g10/gpg usr/bin/ --- gnupg-1.4.9.orig/debian/rules +++ gnupg-1.4.9/debian/rules @@ -0,0 +1,115 @@ +#!/usr/bin/make -f +# debian/rules file - for GNUPG (1.4.6) +# Based on sample debian/rules file - for GNU Hello (1.3). +# Copyright 1994,1995 by Ian Jackson. +# Copyright 1998-2006 by James Troup. +# I hereby give you perpetual unlimited permission to copy, +# modify and relicense this file, provided that you do not remove +# my name from the file itself. (I assert my moral right of +# paternity under the Copyright, Designs and Patents Act 1988.) +# This file may have to be extensively modified + +include /usr/share/dpatch/dpatch.make + +################################## variables ################################# + +#VERSION := $(shell dpkg-parsechangelog | grep ^Version: | cut -d' ' -f2) + +DEB_BUILD_GNU_TYPE = $(shell dpkg-architecture -qDEB_BUILD_GNU_TYPE) +DEB_HOST_GNU_TYPE = $(shell dpkg-architecture -qDEB_HOST_GNU_TYPE) +DEB_BUILD_ARCH := $(shell dpkg-architecture -qDEB_BUILD_ARCH) + +CONFARGS = --prefix=/usr --libexecdir=/usr/lib/ --enable-mailto --with-mailprog=/usr/sbin/sendmail --enable-noexecstack + +ifneq ($(DEB_BUILD_GNU_TYPE),$(DEB_HOST_GNU_TYPE)) +CONFARGS += --host=$(DEB_HOST_GNU_TYPE) +endif + +ifeq ($(DEB_BUILD_ARCH),ppc64) +CONFARGS += --disable-asm +endif + +################################### configure ################################ + +build-deb/config.status: + dh_testdir + (mkdir -p $(@D); cd $(@D); \ + ../configure $(CONFARGS) $(HOSTARG)) + +build-udeb/config.status: + dh_testdir + (mkdir -p $(@D); cd $(@D); CFLAGS="-g -Os" \ + ../configure $(CONFARGS) $(HOSTARG) --without-bzip2 --without-readline) + +##################################### build ################################## + +build-deb-stamp: patch-stamp build-deb/config.status + dh_testdir + $(MAKE) -C build-deb/ +ifeq (,$(findstring nocheck,$(DEB_BUILD_OPTIONS))) + make -C build-deb/checks check || exit 1 +endif + touch $@ + +build-udeb-stamp: patch-stamp build-udeb/config.status + dh_testdir + $(MAKE) -C build-udeb/ + touch $@ + +build: build-deb-stamp build-udeb-stamp + +##################################### clean ################################## + +clean: unpatch + dh_testdir + dh_testroot + rm -rf build-udeb/ build-deb/ + # find . -name \*~ | xargs rm -vf + dh_clean build-deb-stamp build-udeb-stamp patch-stamp + +#################################### install ################################# + +install: build + dh_testdir + dh_testroot + dh_clean -k + dh_installdirs + $(MAKE) -C build-deb install DESTDIR=$(CURDIR)/debian/gnupg + : # Move localized manpages to FHS compliant locations + mv debian/gnupg/usr/share/man/man1/gpg.ru.1 debian/gnupg/usr/share/man/ru/man1/gpg.1 + : # Remove from /usr/share/gnupg what we install into /usr/share/doc/gnupg/ + rm -f debian/gnupg/usr/share/gnupg/FAQ \ + debian/gnupg/usr/share/gnupg/faq.html + find debian/gnupg/ -type d -empty | xargs rmdir + +#################################### binary ################################## + +binary-indep: build install +binary-arch: build install + dh_testdir + dh_testroot + dh_installchangelogs + # Maybe drop them and install NEWS as upstream changelog? + for i in po util mpi cipher tools g10 checks include; do \ + install -m 644 $$i/ChangeLog debian/gnupg/usr/share/doc/gnupg/changelog.$$i; \ + done + install -m 644 ChangeLog debian/gnupg/usr/share/doc/gnupg/changelog.toplevel + dh_installdocs + dh_installexamples + dh_movefiles -pgpgv --sourcedir=debian/gnupg + dh_install + dh_installman + dh_installudev + dh_link + dh_strip + dh_compress + dh_fixperms + dh_installdeb + dh_shlibdeps -X debian/gnupg/usr/lib/gnupg/gpgkeys_ldap -- -dRecommends $(CURDIR)/debian/gnupg/usr/lib/gnupg/gpgkeys_ldap -dDepends + dh_gencontrol + dh_md5sums + dh_builddeb + +binary: binary-indep binary-arch + +.PHONY: build binary binary-arch binary-indep clean --- gnupg-1.4.9.orig/debian/gpg-zip.1 +++ gnupg-1.4.9/debian/gpg-zip.1 @@ -0,0 +1,102 @@ +.TH "GPG\-ZIP" 1 "November 2006" + +.SH NAME +gpg\-zip \- encrypt or sign files into an archive + +.SH SYNOPSIS +.B gpg\-zip +.RB [ OPTIONS ] +.IR filename1 " [" "filename2, ..." ] +.IR directory1 " [" "directory2, ..." ] + +.SH DESCRIPTION +This manual page documents briefly the +.B gpg\-zip +command. +.PP +.B gpg\-zip +encrypts or signs files into an archive. It is an gpg-ized tar using the +same format as PGP's PGP Zip. + +.SH OPTIONS +.TP +.BR \-e ", " \-\-encrypt +Encrypt data. This option may be combined with +.B \-\-symmetric +(for output that may be decrypted via a secret key or a passphrase). +.TP +.BR \-d ", " \-\-decrypt +Decrypt data. +.TP +.BR \-c ", " \-\-symmetric +Encrypt with a symmetric cipher using a passphrase. The default +symmetric cipher used is CAST5, but may be chosen with the +.B \-\-cipher\-algo +option to +.BR gpg (1). +.TP +.BR \-s ", " \-\-sign +Make a signature. See +.BR gpg (1). +.TP +.BR \-r ", " \-\-recipient " \fIUSER\fR" +Encrypt for user id \fIUSER\fR. See +.BR gpg (1). +.TP +.BR \-u ", " \-\-local\-user " \fIUSER\fR" +Use \fIUSER\fR as the key to sign with. See +.BR gpg (1). +.TP +.B \-\-list\-archive +List the contents of the specified archive. +.TP +.BR \-o ", " \-\-output " " \fIFILE\fR" +Write output to specified file +.IR FILE . +.TP +.BI \-\-gpg " GPG" +Use the specified command instead of +.BR gpg . +.TP +.BI \-\-gpg\-args " ARGS" +Pass the specified options to +.BR gpg (1). +.TP +.BI \-\-tar " TAR" +Use the specified command instead of +.BR tar . +.TP +.BI \-\-tar\-args " ARGS" +Pass the specified options to +.BR tar (1). +.TP +.BR \-h ", " \-\-help +Output a short usage information. +.TP +.B \-\-version +Output the program version. + +.SH DIAGNOSTICS +The program returns \fB0\fR if everything was fine, \fB1\fR otherwise. + +.SH EXAMPLES +Encrypt the contents of directory \fImydocs\fR for user Bob to file \fItest1\fR: +.IP +.B gpg\-zip \-\-encrypt \-\-output test1 \-\-gpg-args ""\-r Bob"" mydocs +.PP +List the contents of archive \fItest1\fR: +.IP +.B gpg\-zip \-\-list\-archive test1 + +.SH SEE ALSO +.BR gpg (1), +.BR tar (1) + +.SH AUTHOR +Copyright (C) 2005 Free Software Foundation, Inc. Please report bugs to +<\&bug-gnupg@gnu.org\&>. + +This manpage was written by \fBColin Tuckley\fR <\&colin@tuckley.org\&> +and \fBDaniel Leidert\fR <\&daniel.leidert@wgdd.de\&> for the Debian +distribution (but may be used by others). + --- gnupg-1.4.9.orig/debian/Upgrading_From_PGP.txt +++ gnupg-1.4.9/debian/Upgrading_From_PGP.txt @@ -0,0 +1,76 @@ +For a long time I have wanted to switch from using PGP 2.x to using GPG +(because it's Free). But I didn't want to give up my trusty PGP key, +which has a long history and has gathered a lot of signatures that +I would have trouble getting again. + +Now that the RSA patent has expired, GPG comes with RSA support +by default. This means that it's actually possible to convert +your PGP key to a GPG key, and use it normally with GPG. You +will not need gpg-idea or any other non-free component. + +The steps are quite easy. I wrote them down here, because I expect +that a number of Debian maintainers are in the same situation +and can benefit from this advice. + +Note that the GPG FAQ contains a section about the same thing, +but it's aimed at maintaining compatibility with PGP 2.x. +The procedure I describe here is designed solely to switch +to GPG without giving up your PGP key. It will not let you +exchange encrypted mail with someone who still uses (only) PGP 2.x. +But if you ever need to do that, you can pull out your old copy +of PGP for that -- it's the same key! + +Here are the steps: + + 0. Make sure your version of GPG supports RSA. You should be + okay if you have GPG 1.0.3 or newer. I used GPG 1.0.4 myself. + + 1. Back up your .pgp directory, and your .gnupg directory (if any). + Note: I started with an empty .gnupg directory for this. + If you already have a GPG ring with a set of keys, you'll + end up having two keys with probably the same userids. + That won't break anything, but it can be confusing and it + is easy to accidentally use the wrong key. + + 2. Remove the passphrase from your PGP secret key. This is necessary + because the secret key is protected using the IDEA algorithm, and + IDEA is still patented so GPG does not support it. + Command: + pgp -ke userid + where userid is what you use to access your key, usually your name + or email address. Just hit Enter when PGP asks for the new + passphrase. + + 3. Import your secret and public keys into GPG. + Command: + gpg --import $HOME/.pgp/secring.pgp $HOME/.pgp/pubring.pgp + There doesn't seem to be a way to tell GPG to import only selected + keys from those files, so you may want to first use PGP to export + your keys to a small keyring. (Do not use ASCII armor for that.) + I simply imported all the keys, because I wanted to convert to using + GPG for everything. + + 4. Re-protect your secret key with a passphrase. + You removed the passphrase in step 2, you can now put it back. + Command: + gpg --edit-key userid + GPG will tell you what key you accessed and prompt you to do + something with it. Tell it "passwd" to change the passphrase. + + 5. Check if everything worked. Sign and encrypt a small file, + mail it to a friend, see if you can decrypt something mailed + to you, upload a Debian package, that sort of thing. + + 6. Clean up the backups. Remember, you un-protected your PGP key. + It's still not protected, and it's the same key you are now using + with GPG. Make sure no one can get at it. You can restore + the backup, or run pgp -ke again, or -- if you don't plan to ever + use PGP again -- delete the key. There is a program in fileutils + called "shred" which may help with this. + +Well, I hope this helps someone. I wrote this down after exactly one +experience with converting keys -- I'd love to have feedback from +someone else who tried it. + +Richard Braakman +with tips from Adam Rogoyski, Marco d'Itri, and Andrew Pimlott. --- gnupg-1.4.9.orig/debian/copyright +++ gnupg-1.4.9/debian/copyright @@ -0,0 +1,40 @@ +This is Debian GNU's prepackaged version of GnuPG, a free PGP +replacement. + +This package was put together by me, James Troup , +from the sources, which I obtained from +ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-1.4.6.tar.gz. The changes were +minimal, namely: + +- adding support for the Debian package maintenance scheme, by adding + various debian/* files. + +Program Copyright (C) 1998-2008 Free Software Foundation, Inc. +Modifications for Debian Copyright (C) 1998-2006 James Troup. + +GnuPG is free software; you can redistribute it and/or modify it under +the terms of the GNU General Public License as published by the Free +Software Foundation; either version 3 of the License, or (at your +option) any later version. + +GnuPG is distributed in the hope that it will be useful, but WITHOUT +ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or +FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License +for more details. + +You should have received a copy of the GNU General Public License with +your Debian GNU system, in /usr/share/common-licenses/GPL, or with the +Debian GNU gnupg source package as the file COPYING. If not, see + or write to the Free Software Foundation, +Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA. + +In addition, as a special exception, the Free Software Foundation +gives permission to link the code of the keyserver helper tools: +gpgkeys_ldap, gpgkeys_curl and gpgkeys_hkp with the OpenSSL project's +"OpenSSL" library (or with modified versions of it that use the same +license as the "OpenSSL" library), and distribute the linked +executables. You must obey the GNU General Public License in all +respects for all of the code used other than "OpenSSL". If you modify +this file, you may extend this exception to your version of the file, +but you are not obligated to do so. If you do not wish to do so, +delete this exception statement from your version. --- gnupg-1.4.9.orig/debian/compat +++ gnupg-1.4.9/debian/compat @@ -0,0 +1 @@ +5 --- gnupg-1.4.9.orig/debian/gpgv-udeb.install +++ gnupg-1.4.9/debian/gpgv-udeb.install @@ -0,0 +1 @@ +build-udeb/g10/gpgv usr/bin/ --- gnupg-1.4.9.orig/debian/watch +++ gnupg-1.4.9/debian/watch @@ -0,0 +1,2 @@ +version=3 +opts=pasv ftp://ftp.gnupg.org/gcrypt/gnupg/gnupg-(1\.[\d\.]+)\.tar\.gz --- gnupg-1.4.9.orig/debian/gnupg.udev +++ gnupg-1.4.9/debian/gnupg.udev @@ -0,0 +1,12 @@ +# do not edit this file, it will be overwritten on update + +SUBSYSTEM!="usb", GOTO="gnupg_rules_end" +ACTION!="add", GOTO="gnupg_rules_end" + +# USB SmartCard Readers +## SCM readers (SCR335, SPR532, & Co) +ATTR{idVendor}=="04e6", ATTR{idProduct}=="e001", ENV{ID_SMARTCARD_READER}="1", ENV{ID_SMARTCARD_READER_DRIVER}="gnupg" +ATTR{idVendor}=="04e6", ATTR{idProduct}=="e003", ENV{ID_SMARTCARD_READER}="1", ENV{ID_SMARTCARD_READER_DRIVER}="gnupg" +ATTR{idVendor}=="04e6", ATTR{idProduct}=="5115", ENV{ID_SMARTCARD_READER}="1", ENV{ID_SMARTCARD_READER_DRIVER}="gnupg" + +LABEL="gnupg_rules_end" --- gnupg-1.4.9.orig/debian/gnupg.manpages +++ gnupg-1.4.9/debian/gnupg.manpages @@ -0,0 +1,3 @@ +debian/gpgsplit.1 +debian/lspgpot.1 +debian/gpg-zip.1 --- gnupg-1.4.9.orig/debian/control +++ gnupg-1.4.9/debian/control @@ -0,0 +1,72 @@ +Source: gnupg +Section: utils +Priority: important +Maintainer: Ubuntu Developers +XSBC-Original-Maintainer: Debian GnuPG-Maintainers +Uploaders: Sune Vuorela , + Daniel Leidert (dale) , + Thijs Kinkhorst +Standards-Version: 3.8.0 +Build-Depends: debhelper (>> 5), libz-dev, libldap2-dev, libbz2-dev, + libusb-dev [!hurd-i386], + libreadline-dev, file, gettext, dpatch, libcurl4-gnutls-dev +Homepage: http://www.gnupg.org +Vcs-Browser: http://svn.debian.org/wsvn/pkg-gnupg/gnupg/ +Vcs-Svn: svn://svn.debian.org/svn/pkg-gnupg/gnupg/trunk/ + +Package: gnupg +Architecture: any +Depends: ${shlibs:Depends}, gpgv +Recommends: ${shlibs:Recommends} +Suggests: gnupg-doc, xloadimage | imagemagick | eog, libpcsclite1 +Description: GNU privacy guard - a free PGP replacement + GnuPG is GNU's tool for secure communication and data storage. + It can be used to encrypt data and to create digital signatures. + It includes an advanced key management facility and is compliant + with the proposed OpenPGP Internet standard as described in RFC2440. + . + GnuPG does not use any patented algorithms. This means it cannot be + compatible with PGP2, because that uses IDEA (which is patented in + a number of countries). + +Package: gpgv +Architecture: any +Priority: important +Depends: ${shlibs:Depends} +Suggests: gnupg +Description: GNU privacy guard - signature verification tool + GnuPG is GNU's tool for secure communication and data storage. + . + gpgv is a stripped-down version of gnupg which is only able to check + signatures. It is smaller than the full-blown gnupg and uses a + different (and simpler) way to check that the public keys used to + make the signature are trustworthy. + +Package: gnupg-udeb +XC-Package-Type: udeb +Section: debian-installer +Priority: extra +Architecture: any +Depends: ${shlibs:Depends} +Description: GNU privacy guard - a free PGP replacement + GnuPG is GNU's tool for secure communication and data storage. + It can be used to encrypt data and to create digital signatures. + It includes an advanced key management facility and is compliant + with the proposed OpenPGP Internet standard as described in RFC2440. + . + This is GnuPG packaged in minimal form for use in debian-installer. + +Package: gpgv-udeb +XC-Package-Type: udeb +Section: debian-installer +Priority: extra +Architecture: any +Depends: ${shlibs:Depends} +Description: minimal signature verification tool + GnuPG is GNU's tool for secure communication and data storage. + It can be used to encrypt data and to create digital signatures. + It includes an advanced key management facility and is compliant + with the proposed OpenPGP Internet standard as described in RFC2440. + . + This is GnuPG's signature verification tool, gpgv, packaged in minimal + form for use in debian-installer. --- gnupg-1.4.9.orig/debian/patches/25_fr.po_fixes.dpatch +++ gnupg-1.4.9/debian/patches/25_fr.po_fixes.dpatch @@ -0,0 +1,25 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 25_fr.po_fixes.dpatch by Daniel Leidert (dale) +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: French wording improved (closes: #394037). +## DP: +## DP: +## DP: + +@DPATCH@ +diff -urNad experimental~/po/fr.po experimental/po/fr.po +--- experimental~/po/fr.po 2008-03-25 11:23:35.000000000 +0100 ++++ experimental/po/fr.po 2008-05-22 04:16:49.000000000 +0200 +@@ -2809,9 +2809,8 @@ + "etc.)\n" + msgstr "" + "Décidez maintenant à quel point vous avez confiance en cet utilisateur\n" +-"pour qu'il vérifie les clés des autres utilisateurs (vous pouvez\n" +-"vérifier son passeport, vérifier les empreintes de plusieurs sources\n" +-"différentes, etc.)\n" ++"pour qu'il vérifie les clés des autres utilisateurs (en vérifiant les passeports, en ++vérifiant les empreintes de plusieurs sources différentes, etc.)\n" + + #: g10/keyedit.c:417 g10/pkclist.c:276 + #, c-format --- gnupg-1.4.9.orig/debian/patches/25_it.po_fixes.dpatch +++ gnupg-1.4.9/debian/patches/25_it.po_fixes.dpatch @@ -0,0 +1,22 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 25_it.po_fixes.dpatch by Daniel Leidert (dale) +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Italian typo fix (closes: #298699). +## DP: +## DP: +## DP: + +@DPATCH@ +diff -urNad experimental~/po/it.po experimental/po/it.po +--- experimental~/po/it.po 2008-03-25 09:53:09.000000000 +0100 ++++ experimental/po/it.po 2008-05-22 03:24:54.000000000 +0200 +@@ -6102,7 +6102,7 @@ + #: g10/trustdb.c:581 g10/trustdb.c:2425 + #, c-format + msgid "next trustdb check due at %s\n" +-msgstr "il prossimoi controllo del trustdb sarà fatto il %s\n" ++msgstr "il prossimo controllo del trustdb sarà fatto il %s\n" + + #: g10/trustdb.c:590 + #, fuzzy, c-format --- gnupg-1.4.9.orig/debian/patches/24_gpgv_manpage_cleanup.dpatch +++ gnupg-1.4.9/debian/patches/24_gpgv_manpage_cleanup.dpatch @@ -0,0 +1,68 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 24_gpgv_manpage_cleanup.dpatch +## +## DP: Description: Small fixes for gpgv manpage (#177951) +## DP: Author: "Jim W. Jaszewski" +## DP: Upstream status: https://bugs.g10code.com/gnupg/issue917 +## DP: Upstream status: https://bugs.g10code.com/gnupg/issue918 +## DP: Date: 2003-01-22 + +@DPATCH@ +diff -urNad gnupg-1.4.6~/doc/gpgv.texi gnupg-1.4.6/doc/gpgv.texi +--- gnupg-1.4.6~/doc/gpgv.texi 2006-12-04 14:01:31.000000000 +0000 ++++ gnupg-1.4.6/doc/gpgv.texi 2006-12-07 02:33:20.000000000 +0000 +@@ -55,8 +55,8 @@ + @mansect description + @code{@gpgvname} is an OpenPGP signature verification tool. + +-This program is actually a stripped down version of @code{gpg} which is +-only able to check signatures. It is somewhat smaller than the fully blown ++This program is actually a stripped-down version of @code{gpg} which is ++only able to check signatures. It is somewhat smaller than the fully-blown + @code{gpg} and uses a different (and simpler) way to check that + the public keys used to make the signature are valid. There are + no configuration files and only a few options are implemented. +@@ -114,7 +114,7 @@ + + @mansect return value + +-The program returns 0 if everything was fine, 1 if at least ++The program returns 0 if everything is fine, 1 if at least + one signature was bad, and other error codes for fatal errors. + + @mansect examples +@@ -126,7 +126,7 @@ + @itemx @gpgvname @code{sigfile} + Verify the signature of the file. The second form + is used for detached signatures, where @code{sigfile} is the detached +-signature (either ASCII armored or binary) and are the signed ++signature (either ASCII-armored or binary) and are the signed + data; if this is not given the name of the file holding the signed data is + constructed by cutting off the extension (".asc", ".sig" or ".sign") from + @code{sigfile}. +@@ -152,7 +152,7 @@ + @table @asis + + @item ~/.gnupg/trustedkeys.gpg +-The default keyring with the allowed keys ++The default keyring with the allowed keys. + + @end table + +diff -urNad gnupg-1.4.6~/doc/opt-homedir.texi gnupg-1.4.6/doc/opt-homedir.texi +--- gnupg-1.4.6~/doc/opt-homedir.texi 2006-12-04 13:31:56.000000000 +0000 ++++ gnupg-1.4.6/doc/opt-homedir.texi 2006-12-07 02:32:48.000000000 +0000 +@@ -1,11 +1,11 @@ + @c This option is included at several places. + @item --homedir @var{dir} + @opindex homedir +-Set the name of the home directory to @var{dir}. If his option is not ++Set the name of the home directory to @var{dir}. If this option is not + used, the home directory defaults to @file{~/.gnupg}. It is only + recognized when given on the command line. It also overrides any home + directory stated through the environment variable @env{GNUPGHOME} or +-(on W32 systems) by means on the Registry entry ++(on W32 systems) by means of the Registry entry + @ifset isman + @var{HKCU\\Software\\GNU\\GnuPG:HomeDir}. + @end ifset --- gnupg-1.4.9.orig/debian/patches/50_disable_mlock_test.dpatch +++ gnupg-1.4.9/debian/patches/50_disable_mlock_test.dpatch @@ -0,0 +1,23 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 50_disable_mlock_test.dpatch by Michael Bienia +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Disable mlock() test since it fails with ulimit 0 (on Ubuntu buildds). + + +@DPATCH@ +diff -urNad gnupg-1.4.9~/config.h.in gnupg-1.4.9/config.h.in +--- gnupg-1.4.9~/config.h.in 2008-03-26 18:33:29.000000000 +0100 ++++ gnupg-1.4.9/config.h.in 2008-07-21 00:57:44.000000000 +0200 +@@ -82,8 +82,11 @@ + /* Define if `gethrtime(2)' does not work correctly i.e. issues a SIGILL. */ + #undef HAVE_BROKEN_GETHRTIME + ++/* Test doesn't work, since ulimit is sometimes 0... */ ++#if 0 + /* Defined if the mlock() call does not work */ + #undef HAVE_BROKEN_MLOCK ++#endif + + /* Define to 1 if the compiler understands __builtin_expect. */ + #undef HAVE_BUILTIN_EXPECT --- gnupg-1.4.9.orig/debian/patches/99_yat2m_fix_samp_handling.dpatch +++ gnupg-1.4.9/debian/patches/99_yat2m_fix_samp_handling.dpatch @@ -0,0 +1,32 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 99_yat2m_fix_samp_handling.dpatch by Daniel Leidert (dale) +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Fix a bug in the @samp{} handling. Leading to "warning: `foo'' not +## DP: defines. Further use a fix from upstream to handle backslashes +## DP: correctly (#4734, #4735). +## DP: +## DP: + +@DPATCH@ +diff -urNad experimental~/doc/yat2m.c experimental/doc/yat2m.c +--- experimental~/doc/yat2m.c 2007-12-12 19:40:17.000000000 +0100 ++++ experimental/doc/yat2m.c 2008-05-22 00:45:24.000000000 +0200 +@@ -449,7 +449,7 @@ + { "code", 0, "\\fB", "\\fR" }, + { "sc", 0, "\\fB", "\\fR" }, + { "var", 0, "\\fI", "\\fR" }, +- { "samp", 0, "'", "'" }, ++ { "samp", 0, "\\(aq", "\\(aq'" }, + { "file", 0, "`\\fI","\\fR'" }, + { "env", 0, "`\\fI","\\fR'" }, + { "acronym", 0 }, +@@ -675,6 +675,8 @@ + } + *eol_action = 0; + } ++ else if (*s == '\\') ++ fputs ("\\\\", fp); + else + putc (*s, fp); + } --- gnupg-1.4.9.orig/debian/patches/25_de.po_fixes.dpatch +++ gnupg-1.4.9/debian/patches/25_de.po_fixes.dpatch @@ -0,0 +1,172 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 25_de.po_fixes.dpatch +## +## DP: Description: Small fixes for the German translation (#314069) +## DP: Author: Jens Seidel +## DP: Updates by Daniel Leidert +## DP: Upstream status: https://bugs.g10code.com/gnupg/issue916 +## DP: Date: 2008-05-21 + +@DPATCH@ +diff -urNad experimental~/po/de.po experimental/po/de.po +--- experimental~/po/de.po 2008-03-25 09:53:06.000000000 +0100 ++++ experimental/po/de.po 2008-05-21 22:43:35.000000000 +0200 +@@ -1248,7 +1248,7 @@ + + #: g10/gpg.c:803 + msgid "Pubkey: " +-msgstr "Öff.Schlüssel: " ++msgstr "Öff. Schlüssel: " + + #: g10/gpg.c:809 g10/keyedit.c:2306 + msgid "Cipher: " +@@ -2350,7 +2350,7 @@ + #: g10/import.c:318 + #, c-format + msgid " secret keys unchanged: %lu\n" +-msgstr " unveränderte geh.Schl.: %lu\n" ++msgstr " unveränderte geh. Schl.: %lu\n" + + #: g10/import.c:320 + #, c-format +@@ -2400,7 +2400,7 @@ + #: g10/import.c:645 + msgid "re-distribute this key to avoid potential algorithm mismatch problems\n" + msgstr "" +-"diesen Schüssel wieder zu verteilen, um mögliche Probleme durch unpassende " ++"diesen Schlüssel wieder zu verteilen, um mögliche Probleme durch unpassende " + "Verfahrenskombinationen zu vermeiden\n" + + #: g10/import.c:669 +@@ -3029,7 +3029,7 @@ + #: g10/keyedit.c:1124 + msgid "Key has only stub or on-card key items - no passphrase to change.\n" + msgstr "" +-"Der Schlüssel enthält nur \"stub\"- oder \"on-card\"-Schüsselelemente- keine " ++"Der Schlüssel enthält nur \"stub\"- oder \"on-card\"-Schlüsselelemente- keine " + "Passphrase ist zu ändern.\n" + + #: g10/keyedit.c:1135 g10/keygen.c:3226 +@@ -3275,7 +3275,7 @@ + + #: g10/keyedit.c:1751 + msgid "Really sign all user IDs? (y/N) " +-msgstr "Wirklich alle User-IDs beglaubigen? " ++msgstr "Wirklich alle User-IDs beglaubigen? (j/N) " + + #: g10/keyedit.c:1758 + msgid "Hint: Select the user IDs to sign\n" +@@ -3351,15 +3351,15 @@ + + #: g10/keyedit.c:2020 + msgid "Do you really want to revoke the entire key? (y/N) " +-msgstr "Möchten Sie diesen Schlüssel wirklich vollständig widerrufen? " ++msgstr "Möchten Sie diesen Schlüssel wirklich vollständig widerrufen? (j/N) " + + #: g10/keyedit.c:2031 + msgid "Do you really want to revoke the selected subkeys? (y/N) " +-msgstr "Möchten Sie die ausgewählten Unterschlüssel wirklich widerrufen? " ++msgstr "Möchten Sie die ausgewählten Unterschlüssel wirklich widerrufen? (j/N) " + + #: g10/keyedit.c:2033 + msgid "Do you really want to revoke this subkey? (y/N) " +-msgstr "Möchten Sie diesen Schlüssel wirklich widerrufen? " ++msgstr "Möchten Sie diesen Schlüssel wirklich widerrufen? (j/N) " + + #: g10/keyedit.c:2083 + msgid "Owner trust may not be set while using a user provided trust database\n" +@@ -3383,11 +3383,11 @@ + + #: g10/keyedit.c:2201 + msgid "Save changes? (y/N) " +-msgstr "Änderungen speichern? " ++msgstr "Änderungen speichern? (j/N) " + + #: g10/keyedit.c:2204 + msgid "Quit without saving? (y/N) " +-msgstr "Beenden ohne zu speichern? " ++msgstr "Beenden ohne zu speichern? (j/N) " + + #: g10/keyedit.c:2214 + #, c-format +@@ -3531,7 +3531,7 @@ + + #: g10/keyedit.c:3018 + msgid "You may not add a photo ID to a PGP2-style key.\n" +-msgstr "Sie können einem PGP2-artigen SchlüÂüsel keine Foto-ID hinzufügen.\n" ++msgstr "Sie können einem PGP2-artigen Schlüssel keine Foto-ID hinzufügen.\n" + + #: g10/keyedit.c:3158 + msgid "Delete this good signature? (y/N/q)" +@@ -3605,7 +3605,7 @@ + #: g10/keyedit.c:3353 + msgid "You may not add a designated revoker to a PGP 2.x-style key.\n" + msgstr "" +-"Sie können einem PGP2-artigen SchlüÂüsel keine vorgesehenen Widerrufer " ++"Sie können einem PGP2-artigen Schlüssel keine vorgesehenen Widerrufer " + "hinzufügen.\n" + + #: g10/keyedit.c:3373 +@@ -5013,7 +5013,7 @@ + "Wählen Sie ein Bild für Ihre Foto-ID aus. Das Bild muß eine JPEG-Datei\n" + "sein. Bitte beachten Sie, daß das Bild in Ihrem öffentlichen\n" + "Schlüssel gespeichert wird. Wenn Sie ein sehr großes Bild benutzen,\n" +-"wir Ihr Schlüssel leider auch sehr groß werden. Ein Bild der GröÂße\n" ++"wir Ihr Schlüssel leider auch sehr groß werden. Ein Bild der Größe\n" + "240x288 Pixel ist eine gute Wahl.\n" + + #: g10/photoid.c:93 +@@ -5374,7 +5374,7 @@ + #: g10/pubkey-enc.c:242 + #, c-format + msgid "cipher algorithm %d%s is unknown or disabled\n" +-msgstr "Verschüsselungsverfahren %d%s ist unbekannt oder abgeschaltet\n" ++msgstr "Verschlüsselungsverfahren %d%s ist unbekannt oder abgeschaltet\n" + + #: g10/pubkey-enc.c:280 + #, c-format +@@ -5473,7 +5473,7 @@ + msgstr "" + "Widerrufszertifikat wurde erzeugt.\n" + "\n" +-"Bitte speichern Sie es auf einem Medium welches sie wegschliessen\n" ++"Bitte speichern Sie es auf einem Medium welches sie wegschließen\n" + "können; falls Mallory (ein Angreifer) Zugang zu diesem Zertifikat\n" + "erhält, kann erIhren Schlüssel unbrauchbar machen. Es wäre klug,\n" + "dieses Widerrufszertifikat auch auszudrucken und sicher aufzubewahren,\n" +@@ -5556,7 +5556,7 @@ + msgid "cannot avoid weak key for symmetric cipher; tried %d times!\n" + msgstr "" + "Trotz %d-fachen Versuch konnte die Erzeugung eines unsicheren Schlüssels für " +-"sym.Verschlüsselung nicht vermieden werden!\n" ++"sym. Verschlüsselung nicht vermieden werden!\n" + + #: g10/seskey.c:218 + msgid "DSA requires the hash length to be a multiple of 8 bits\n" +@@ -6066,7 +6066,7 @@ + #, c-format + msgid "public key of ultimately trusted key %s not found\n" + msgstr "" +-"öff.Schlüssel des uneingeschränkt vertrautem Schlüssel %s nicht gefunden\n" ++"öff. Schlüssel des uneingeschränkt vertrautem Schlüssel %s nicht gefunden\n" + + #: g10/trustdb.c:2270 + #, c-format +@@ -6125,7 +6125,7 @@ + + #: util/errors.c:58 + msgid "bad public key" +-msgstr "Falscher öffentlicher Schüssel" ++msgstr "Falscher öffentlicher Schlüssel" + + #: util/errors.c:59 + msgid "bad secret key" +@@ -6301,7 +6301,7 @@ + + #: util/errors.c:104 + msgid "unusable public key" +-msgstr "unbrauchbarer öffentlicher Schüssel" ++msgstr "unbrauchbarer öffentlicher Schlüssel" + + #: util/errors.c:105 + msgid "unusable secret key" --- gnupg-1.4.9.orig/debian/patches/55_curl_typefix.dpatch +++ gnupg-1.4.9/debian/patches/55_curl_typefix.dpatch @@ -0,0 +1,58 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 55_curl_typefix.dpatch by Michael Bienia +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Apply patch from upstream to fix a build error with recent curl +## DP: and gcc 4.3 (error: 'typeof' applied to a bit-field) +## DP: Patch taken from http://lists.gnupg.org/pipermail/gnupg-devel/2008-April/024344.html + +@DPATCH@ +diff -urNad gnupg-1.4.9~/keyserver/gpgkeys_curl.c gnupg-1.4.9/keyserver/gpgkeys_curl.c +--- gnupg-1.4.9~/keyserver/gpgkeys_curl.c 2007-10-23 11:59:12.000000000 +0200 ++++ gnupg-1.4.9/keyserver/gpgkeys_curl.c 2008-07-21 01:59:06.000000000 +0200 +@@ -286,7 +286,7 @@ + + if(follow_redirects) + { +- curl_easy_setopt(curl,CURLOPT_FOLLOWLOCATION,1); ++ curl_easy_setopt(curl,CURLOPT_FOLLOWLOCATION,1L); + if(follow_redirects>0) + curl_easy_setopt(curl,CURLOPT_MAXREDIRS,follow_redirects); + } +@@ -298,10 +298,10 @@ + { + fprintf(console,"gpgkeys: curl version = %s\n",curl_version()); + curl_easy_setopt(curl,CURLOPT_STDERR,console); +- curl_easy_setopt(curl,CURLOPT_VERBOSE,1); ++ curl_easy_setopt(curl,CURLOPT_VERBOSE,1L); + } + +- curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,opt->flags.check_cert); ++ curl_easy_setopt(curl,CURLOPT_SSL_VERIFYPEER,(long)opt->flags.check_cert); + curl_easy_setopt(curl,CURLOPT_CAINFO,opt->ca_cert_file); + + if(proxy) +diff -urNad gnupg-1.4.9~/keyserver/gpgkeys_hkp.c gnupg-1.4.9/keyserver/gpgkeys_hkp.c +--- gnupg-1.4.9~/keyserver/gpgkeys_hkp.c 2007-10-23 11:59:12.000000000 +0200 ++++ gnupg-1.4.9/keyserver/gpgkeys_hkp.c 2008-07-21 01:59:06.000000000 +0200 +@@ -202,9 +202,9 @@ + fprintf(console,"gpgkeys: HTTP URL is `%s'\n",request); + + curl_easy_setopt(curl,CURLOPT_URL,request); +- curl_easy_setopt(curl,CURLOPT_POST,1); ++ curl_easy_setopt(curl,CURLOPT_POST,1L); + curl_easy_setopt(curl,CURLOPT_POSTFIELDS,key); +- curl_easy_setopt(curl,CURLOPT_FAILONERROR,1); ++ curl_easy_setopt(curl,CURLOPT_FAILONERROR,1L); + + res=curl_easy_perform(curl); + if(res!=0) +@@ -661,7 +661,7 @@ + { + fprintf(console,"gpgkeys: curl version = %s\n",curl_version()); + curl_easy_setopt(curl,CURLOPT_STDERR,console); +- curl_easy_setopt(curl,CURLOPT_VERBOSE,1); ++ curl_easy_setopt(curl,CURLOPT_VERBOSE,1L); + } + + if(proxy) --- gnupg-1.4.9.orig/debian/patches/61_use_agent_default.dpatch +++ gnupg-1.4.9/debian/patches/61_use_agent_default.dpatch @@ -0,0 +1,25 @@ +#! /bin/sh /usr/share/dpatch/dpatch-run +## 61_use_agent_default.dpatch by +## +## All lines beginning with `## DP:' are a description of the patch. +## DP: Use agent by default. (LP: #15485) + +@DPATCH@ +diff -urNad gnupg-1.4.9~/g10/options.skel gnupg-1.4.9/g10/options.skel +--- gnupg-1.4.9~/g10/options.skel 2008-07-21 01:03:49.000000000 +0200 ++++ gnupg-1.4.9/g10/options.skel 2008-07-21 01:19:59.000000000 +0200 +@@ -198,8 +198,12 @@ + # at ftp.gnupg.org/gcrypt/alpha/aegypten/). To make use of the agent, + # you have to run an agent as daemon and use the option + # +-# use-agent +-# ++# For Ubuntu we now use-agent by default to support more automatic ++# use of GPG and S/MIME encryption by GUI programs. Depending on the ++# program, users may still have to manually decide to install gnupg-agent. ++ ++use-agent ++ + # which tries to use the agent but will fallback to the regular mode + # if there is a problem connecting to the agent. The normal way to + # locate the agent is by looking at the environment variable --- gnupg-1.4.9.orig/debian/patches/00list +++ gnupg-1.4.9/debian/patches/00list @@ -0,0 +1,8 @@ +24_gpgv_manpage_cleanup +25_de.po_fixes +25_it.po_fixes +25_fr.po_fixes +50_disable_mlock_test +55_curl_typefix +61_use_agent_default +99_yat2m_fix_samp_handling