Commit Graph

303 Commits

Author SHA1 Message Date
Jakub Jelen
87e7dbc9c7 Avoid using deprecated %patchN 2023-05-31 12:32:10 +02:00
Maxime Ripard
91d0fc8712 Enable TPM Support
GnuPG has TPM support to store the keys since 2.3, but we haven't
enabled it by default.

Note that for it to work properly, the user needs to be part of the tss
group.

Signed-off-by: Maxime Ripard <maxime@cerno.tech>
2023-05-31 12:30:29 +02:00
Jakub Jelen
ee704fdf3d Remove unused patch and fix signature file checksum (#2193503) 2023-05-09 10:59:46 +02:00
Todd Zullinger
e5239dd1e4 update to 2.4.1
Remove systemd user unit files which have been dropped upstream
(rhbz#2158627).
2023-04-28 13:55:19 -04:00
Todd Zullinger
7a08af2ffa remove %{skip_verify}, brainpool signatures are supported now
We needed the %{skip_verify} escape hatch in 9308d65 (verify upstream
signatures in %prep, unless bootstrapping, 2022-10-17) because brainpool
signatures were not supported at the time.  That changed with libgcrypt
9e608ad (enable brainpool curves by default, 2022-11-06).

Adjust the remaining bootstrap conditional to read more naturally, using
'if not bootstrap' rather than 'if without bootstrap' while we're here.
2023-04-28 11:36:44 -04:00
Jakub Jelen
8c178c60c2 gnupg2-2.4.0-3 2023-03-03 12:20:35 +01:00
Jakub Jelen
146a5fe7ef Revert the introduction of the RFC4880bis draft into defaults 2023-03-03 12:19:59 +01:00
Fedora Release Engineering
5c6730daef Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2023-01-19 05:47:07 +00:00
Jakub Jelen
9743c71919 Update sources 2023-01-02 09:17:44 +01:00
Todd Zullinger
23b2090dcb update to 2.4.0 (#2155170)
Rebase the patch which allows importing of keys without UIDs.  The code
changed slightly with upstream 7aaedfb10 (gpg: Import stray revocation
certificates., 2022-10-28).

Bump the minimum required libksba to 1.6.3, per upstream fc8b81128
(Update NEWS for 2.4.0, 2022-12-16).  Also increase libgpg-error to
1.46, per upstream c51139f2b (agent,w32: Support Win32-OpenSSH emulation
by gpg-agent., 2022-10-14).

Fix broken GPGME tests with the patch attached to T6313¹.  The patch is
edited to apply the changes to Makefile.in rather than Makefile.am.
That avoids the need to run autoreconf.

¹ https://dev.gnupg.org/T6313#166375
2022-12-20 23:55:02 -05:00
Jakub Jelen
1290f085e2 Initialize buffer and improve error message 2022-10-18 12:30:06 +02:00
Todd Zullinger
7e2be8d627 simplify git ignore rules
Use a glob to match all gnupg tarballs rather than having fedpkg add
each one to .gitignore.  Also ignore rpm's, extracted source dirs, and
the mock build results directory.
2022-10-17 16:15:18 -04:00
Todd Zullinger
e66636d986 BR systemd-rpm-macros for %{_userunitdir}
We need to explicitly require systemd-rpm-macros for %{_userunitdir},
per the guidelines¹.

¹ https://docs.fedoraproject.org/en-US/packaging-guidelines/Systemd/#packaging_filesystem
2022-10-17 16:12:09 -04:00
Todd Zullinger
04879d36a7 update to 2.3.8
Release info: https://dev.gnupg.org/T6106
2022-10-17 15:06:03 -04:00
Todd Zullinger
9308d65403 verify upstream signatures in %prep, unless bootstrapping
Per the guidelines¹, verify upstream signatures, unless we are in
bootstrap mode.

The fingerprints of the keys contained in signature_key.asc were checked
against the upstream page (https://gnupg.org/signature_key.html).  One
downside is that we are unable to verify signatures made with only the
brainpool key.  The hope is that such releases are relatively rare and
the benefit of automated signature verification outweighs the hassle of
handling such releases.  For these releases, set skip_verify to 1, as
we've done here.  Afterward, reset it to 0.

¹ https://docs.fedoraproject.org/en-US/packaging-guidelines/#_source_file_verification
2022-10-17 14:30:16 -04:00
Todd Zullinger
c62acc05d8 drop with/without unversioned_gpg, last used with fedora-29
It's been nearly 3 years since Fedora 29 reached end-of-life
(2019-11-26).  Clean up the unversioned_gpg conditional.
2022-10-05 23:17:04 -04:00
Todd Zullinger
605d54edd0 update BR/R versions for libassuan, libgpg-error, and libksba
Bump the requirements to match the current versions the configure script
checks.
2022-10-05 22:59:19 -04:00
Jakub Jelen
9652418864 gnupg2-2.3.7-2 2022-08-01 12:14:51 +02:00
Jakub Jelen
5ab2074186 Whitespace cleanup 2022-08-01 12:14:51 +02:00
Jakub Jelen
772294f7de Fix Yubikey 5 detection 2022-08-01 12:13:43 +02:00
Fedora Release Engineering
56c2f82ba3 Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-07-21 07:11:12 +00:00
Jakub Jelen
727eb9b49a add forgotten sources 2022-07-12 12:27:08 +02:00
Jakub Jelen
088abd1806 gnupg2-2.3.7-1 2022-07-12 12:20:50 +02:00
Jakub Jelen
821042c48b gnupg2-2.3.6-2 2022-07-04 10:51:35 +02:00
Jakub Jelen
0041a9869d Fix status line injection via long notation name (#2103242) 2022-07-04 10:51:35 +02:00
Jakub Jelen
e445710c5a Fix reading AEAD preference string 2022-07-04 10:51:35 +02:00
Jakub Jelen
97d9201810 gnupg2-2.3.6-1 2022-04-25 18:11:17 +02:00
Jakub Jelen
da6bc3eed1 gnupg2-2.3.5-1 2022-04-25 13:10:47 +02:00
Jakub Jelen
2993cc9097 Drop unused libusb dependency
the libusb was used only when the internal ccid driver was used
2022-04-25 13:05:06 +02:00
Fedora Release Engineering
275d782776 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2022-01-20 06:52:29 +00:00
Jakub Jelen
10d597d8d6 gnupg-2.3.4-1 2021-12-21 11:57:55 +01:00
Jakub Jelen
c60da45877 gnupg2-2.3.3-2 2021-11-15 09:36:26 +01:00
Jakub Jelen
921e417e4f Fix file-is-digest patch (#2022904) 2021-11-15 09:36:26 +01:00
Jakub Jelen
be4744249b gnupg2-2.3.3-1 2021-10-13 10:33:39 +02:00
Jakub Jelen
bcbc199b43 gnupg2-2.3.2-3 2021-10-06 10:50:05 +02:00
Jakub Jelen
ad77fc3ca1 Recommend pcsc-lite-ccid (#2007923) 2021-10-06 10:48:43 +02:00
Jakub Jelen
8047d918db Prevent agent crash when deciphering (#2009978) 2021-10-06 10:46:52 +02:00
Jakub Jelen
f79dca04eb gnupg2-2.3.2-2 2021-09-20 09:45:31 +02:00
Jakub Jelen
1450ac3691 Disable ccid driver not to clash with pcscd 2021-09-20 09:27:28 +02:00
Jakub Jelen
c2398973a0 gnupg2-2.3.2-1 2021-08-25 11:01:33 +02:00
Jakub Jelen
c059245ad0 Drop ocsp key usage patch
Discussed in upstream issue with bottom-line that this is a
ocsp certificate issue.

https://dev.gnupg.org/T1333
2021-08-25 10:07:06 +02:00
Fedora Release Engineering
0a6c109756 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-07-22 02:29:27 +00:00
Jakub Jelen
47f659ce44 Address reported coverity issues 2021-05-01 20:19:00 +02:00
Jakub Jelen
0899c2ba91 gnupg2-2.3.1-1 2021-05-01 20:19:00 +02:00
Jakub Jelen
240056b321 gnupg2-2.2.27-4 2021-03-29 20:20:57 +02:00
Jakub Jelen
3aa1344259 Do not require exclusive access to PCSC
Based on a patch from https://gpgtools.org/
2021-03-29 20:20:57 +02:00
Jakub Jelen
df4c9623c6 gnupg2-2.2.27-3 2021-02-18 13:31:10 +01:00
Jakub Jelen
ab3f81d04a Bump gpg-error version requirement because of missing symbols on the old one (#1930110) 2021-02-18 13:30:04 +01:00
Fedora Release Engineering
abaa28eef3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2021-01-26 08:53:24 +00:00
Robert Scheck
bc71fa6b86 Update source URLs to HTTPS 2021-01-18 00:53:09 +00:00