Subject: CVS commit: pkgsrc
To: None <source-changes@netbsd.org>
From: Thomas Klausner <wiz@netbsd.org>
List: source-changes
Date: 07/15/2000 04:24:29
Module Name:	pkgsrc
Committed By:	wiz
Date:		Sat Jul 15 11:24:29 UTC 2000

Modified Files:
	pkgsrc/security/gnupg: Makefile
	pkgsrc/security/gnupg/files: md5 patch-sum
	pkgsrc/security/gnupg/patches: patch-ab
	pkgsrc/security/gnupg/pkg: PLIST
Removed Files:
	pkgsrc/security/gnupg/patches: patch-ac

Log Message:
Update gnupg to 1.0.2. NetBSD changes had been mailed to author and
have been integrated.
Relevant Changes:
* Fixed expiration handling of encryption keys.
* Add an experimental feature to do unattended key generation.
* The user is now asked for the reason of revocation as required by
  the new OpenPGP draft.
* There is a ~/.gnupg/random_seed file now which saves the state of
  the internal RNG and increases system performance somewhat.  This
  way the full entropy source is only used in cases were it is really
  required. Use the option --no-random-seed-file to disable this
  feature.
* New options --ignore-time-conflict and --lock-never.
* Encryption is now much faster: About 2 times for 1k bit keys and 8
  times for 4k keys.
* New encryption keys are generated in a way which allows a much
  faster decryption.
* New command --export-secret-subkeys which outputs the _primary_
  key with it's secret parts deleted.  This is useful for automated
  decryption/signature creation as it allows to keep the real secret
  primary key offline and thereby protecting the key certificates and
  allowing to create revocations for the subkeys.  See the FAQ for a
  procedure to install such secret keys.
* Keygeneration now writes to the first writeable keyring or as
  default to the one in the homedirectory.  Prior versions ignored all
  --keyring options.
* New option --command-fd to take user input from a file descriptor;
  to be used with --status-fd by software which uses GnuPG as a
  backend.
* There is a new status PROGRESS which is used to show progress during
  key generation.
* Support for the new MDC encryption packets.  To create them either
  --force-mdc must be use or cipher algorithm with a blocksize other
  than 64 bits is to be used.  --openpgp currently disables MDC
  packets entirely.  This option should not yet be used.
* New option --no-auto-key-retrieve to disable retrieving of a missing
  public key from a keyerver, when a keyerver has been set.
* Danish, Esperanto, Japanese, Dutch, and Swedish translations


To generate a diff of this commit:
cvs rdiff -r1.7 -r1.8 pkgsrc/security/gnupg/Makefile
cvs rdiff -r1.4 -r1.5 pkgsrc/security/gnupg/files/md5
cvs rdiff -r1.5 -r1.6 pkgsrc/security/gnupg/files/patch-sum
cvs rdiff -r1.7 -r1.8 pkgsrc/security/gnupg/patches/patch-ab
cvs rdiff -r1.4 -r0 pkgsrc/security/gnupg/patches/patch-ac
cvs rdiff -r1.4 -r1.5 pkgsrc/security/gnupg/pkg/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.