Subject: CVS commit: pkgsrc
To: None <source-changes@netbsd.org>
From: Thomas Klausner <wiz@netbsd.org>
List: source-changes
Date: 07/15/2000 04:24:29
Module Name: pkgsrc
Committed By: wiz
Date: Sat Jul 15 11:24:29 UTC 2000
Modified Files:
pkgsrc/security/gnupg: Makefile
pkgsrc/security/gnupg/files: md5 patch-sum
pkgsrc/security/gnupg/patches: patch-ab
pkgsrc/security/gnupg/pkg: PLIST
Removed Files:
pkgsrc/security/gnupg/patches: patch-ac
Log Message:
Update gnupg to 1.0.2. NetBSD changes had been mailed to author and
have been integrated.
Relevant Changes:
* Fixed expiration handling of encryption keys.
* Add an experimental feature to do unattended key generation.
* The user is now asked for the reason of revocation as required by
the new OpenPGP draft.
* There is a ~/.gnupg/random_seed file now which saves the state of
the internal RNG and increases system performance somewhat. This
way the full entropy source is only used in cases were it is really
required. Use the option --no-random-seed-file to disable this
feature.
* New options --ignore-time-conflict and --lock-never.
* Encryption is now much faster: About 2 times for 1k bit keys and 8
times for 4k keys.
* New encryption keys are generated in a way which allows a much
faster decryption.
* New command --export-secret-subkeys which outputs the _primary_
key with it's secret parts deleted. This is useful for automated
decryption/signature creation as it allows to keep the real secret
primary key offline and thereby protecting the key certificates and
allowing to create revocations for the subkeys. See the FAQ for a
procedure to install such secret keys.
* Keygeneration now writes to the first writeable keyring or as
default to the one in the homedirectory. Prior versions ignored all
--keyring options.
* New option --command-fd to take user input from a file descriptor;
to be used with --status-fd by software which uses GnuPG as a
backend.
* There is a new status PROGRESS which is used to show progress during
key generation.
* Support for the new MDC encryption packets. To create them either
--force-mdc must be use or cipher algorithm with a blocksize other
than 64 bits is to be used. --openpgp currently disables MDC
packets entirely. This option should not yet be used.
* New option --no-auto-key-retrieve to disable retrieving of a missing
public key from a keyerver, when a keyerver has been set.
* Danish, Esperanto, Japanese, Dutch, and Swedish translations
To generate a diff of this commit:
cvs rdiff -r1.7 -r1.8 pkgsrc/security/gnupg/Makefile
cvs rdiff -r1.4 -r1.5 pkgsrc/security/gnupg/files/md5
cvs rdiff -r1.5 -r1.6 pkgsrc/security/gnupg/files/patch-sum
cvs rdiff -r1.7 -r1.8 pkgsrc/security/gnupg/patches/patch-ab
cvs rdiff -r1.4 -r0 pkgsrc/security/gnupg/patches/patch-ac
cvs rdiff -r1.4 -r1.5 pkgsrc/security/gnupg/pkg/PLIST
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.