summaryrefslogtreecommitdiffstats
path: root/meta/recipes-support/gnupg
Commit message (Collapse)AuthorAgeFilesLines
* gnupg: drop -unknown suffix from version numberYi Zhao2025-07-033-32/+31
| | | | | | | | | | | | | | | | | | | | | | | | | | | For gnupg and related packages, if autogen.sh is run outside of a git repo, the find-version function always assumes that the package is a beta version and adds the suffix '-unknown' to the version number. Add drop-unknow-suffix.inc file that can be included by gnupg and other recipes. This file is used to modify autogen.sh: 1. Replace beta=yes with beta=no. 2. Replace tmp="-unknown" with tmp="" Also remove 0004-autogen.sh-fix-find-version-for-beta-checking.patch as it is no longer needed. Befor the fix: $ gpg --version gpg (GnuPG) 2.5.5-unknown After the fix: $ gpg --version gpg (GnuPG) 2.5.5 (From OE-Core rev: f6efe56a8c73ae9f58cb70f1469c617ff0647b49) Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.5.4 -> 2.5.5Hongxu Jia2025-03-131-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Noteworthy changes in version 2.5.5 (2025-03-07) ------------------------------------------------ * gpg: Fix a verification DoS due to a malicious subkey in the keyring. [T7527] * dirmngr: Fix possible hangs due to blocking connection requests. [T6606, T7434] * w32: On socket nonce mismatch close the socket. [T7434] * w32: Print more detailed diagnostics for IPC errors. * GPGME is not any more distributed with the Windows installer. Please install gpg4win to get gpgme version. See-also: gnupg-announce/2025q1/000491.html Release-info: https://dev.gnupg.org/T7530 https://dev.gnupg.org/source/gnupg/browse/master/NEWS (From OE-Core rev: e0eaf598193012c6b0ada9e56be9bc0d6b19ec97) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: follow odd-even scheme in upstream version checksAlexander Kanavin2025-03-111-2/+2
| | | | | | | | | | | | | Unfortunately this has been overlooked, and resulted in erroneous updates to testing/development releases. The check will report an 'unknown' latest version until 2.6.0 is released. (From OE-Core rev: 7e505c1506ea6a079b0291f84e4ec6774064ef20) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.5.3 -> 2.5.4Hongxu Jia2025-02-186-8/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Noteworthy changes in version 2.5.4 (2025-02-12) ------------------------------------------------ * gpg: New option --disable-pqc-encryption. [rG00c31f8b04] * gpg: Fix --quick-add-key for Weierstrass ECC with usage given.[T7506] * gpg: Fix handling with no CRC armor. [T7071] * gpg: New private Kyber keys are now cross-referenced using a new Link attribute. [T6638] * gpg: Fix an import problem with keys having another primary key as a subkey. [T7527] * gpgsm: Allow unattended PKCS#12 export without passphrase. [rG159e801043] * gpgsm: Allow CSR generation with an unprotected key. [rG89055f24f4] * agent: New option --change-std-env-name. [T7522] * agent: Fix ssh-agent's request_identities for skipped Brainpool keys. [rG2469dc5aae] * Do not package zlib and bzip2 object files in a speedo release build. [T7442] See-also: gnupg-announce/2025q1/000490.html Release-info: https://dev.gnupg.org/T7480 https://dev.gnupg.org/source/gnupg/browse/master/NEWS (From OE-Core rev: 59f26c7311ae3d5596f517b739e7c3435db070a3) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.5.2 -> 2.5.3Richard Purdie2025-02-056-7/+7
| | | | | | (From OE-Core rev: 58c6af60d95c8527b4ac7f80192dd9e14186fc85) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: remove obsolete patchGuðni Már Gilbert2025-01-272-34/+0
| | | | | | | | | | | | | Remove a patch which is already merged in v2.5.1 See for reference: https://github.com/gpg/gnupg/commit/1d5cfa9b7fd22e1c46eeed5fa9fed2af6f81d34f https://dev.gnupg.org/T7193 (From OE-Core rev: 79c10b2ad17bacec024427693eb025659f455a20) Signed-off-by: Guðni Már Gilbert <gudni.m.g@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.5.1 -> 2.5.2Wang Mingyu2024-12-123-14/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 0001-fix-compile-failure-with-musl.patch relocate.patch refreshed for 2.5.2 Changelog: ============ * gpg: Add option 16 to --full-gen-key to create ECC+Kyber. * gpg: For composite algos add the algo string to the colons listings. * gpg: Validate the trustdb after the import of a trusted key. * gpg: Exclude expired trusted keys from the key validation process. * gpg: Fix a wrong decryption failed status for signed and OCB encrypted messages without a signature verification key. * gpg: Retain binary representation for import->export with Ed25519 key signatures. * gpg: Fix comparing ed448 to ed25519 with --assert-pubkey-algo. * gpg: Avoid a failure exit code for expired ultimately trusted keys. * gpg: Emit status error for an invalid ADSK. * gpg: Allow the use of an ADSK subkey as ADSK subkey. * gpg: Fix --quick-set-expire for V5 subkey fingerprints. * gpg: Robust error handling for SCD READKEY. * gpg: Fix cv25519 v5 export regression. * gpgsm: Nearly fourfold speedup of validated certificate listings. * gpgsm: Improvement for some rare P12 files. * gpgsm: Terminate key listing on output write error. * agent: Add option --status to the LISTRUSTED command. * agent: Fix detection of the yet unused trustflag de-vs. * agent: Allow ssh to sign data larger than the Assuan line length. * keyboxd: Fix a race condition on the database handle. * dirmngr: A list of used URLs for loaded CRLs is printed first in the output of the LISTCRL command. * scd: More mitigations against lock ups with multiple cards or apps. * gpgtar: Use log-file from common.conf only in --batch mode. * gpgtar: Fix directory creation during extraction. * gpg-mail-tube: Minor fixes. * gpgconf: Add list flag to trusted-key et al. * Implement GNUPG_ASSUME_COMPLIANCE envvar and registry key for testing de-vs compliance mode. * Enable additional runtime protections in speedo builds for windows. * Fix a race condition in creating the socket directory. * Fix a build problem on macOS (missing unistd.h). (From OE-Core rev: 2ab817c434ac443e29d66105056675d6256e8a2c) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.5.0 -> 2.5.1hongxu2024-11-297-26/+15
| | | | | | | | | | | | | | | | | | Due to upstream [build: Remove configure option --enable-gpg-is-gpg2][1], drop option --enable-gpg-is-gpg2 and remove gpg2/gpgv2 installation Due to upsream [doc: Remove included yat2m and build HTML versions of the man pages.][2], it used standard detection on yat2m other than build it from source. Because no native recipe provide yat2m in Yocto, explicitly disable doc via option --disable-doc [1] https://github.com/gpg/gnupg/commit/2125f228d36c0882a87bce433a18253154653d50 [2] https://github.com/gpg/gnupg/commit/60c541f5880e8c603ca9372d3ca8b7ad68b97018 (From OE-Core rev: 3a00465f4b0c01580fb27e0c462696bd4f840828) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.4.5 -> 2.5.0hongxu2024-08-237-27/+57
| | | | | | | | | Fix compile failure with musl (From OE-Core rev: e7bcd683365961e661c419e79a4bb641069f2a79) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Document CVE-2022-3219 and mark wontfixKhem Raj2024-08-151-0/+1
| | | | | | | | (From OE-Core rev: f10f9c3a8d2c17d5a6c3f0b00749e5b34a66e090) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.4.4 -> 2.4.5Wang Mingyu2024-04-161-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changelog: ========== * gpg,gpgv: New option --assert-pubkey-algo. * gpg: Emit status lines for errors in the compression layer. * gpg: Fix invocation with --trusted-keys and --no-options. * gpgsm: Allow for a longer salt in PKCS#12 files. * gpgtar: Make --status-fd=2 work on Windows. * scd: Support for the ACR-122U NFC reader. * scd: Suport D-TRUST ECC cards. * scd: Allow auto detaching of kernel drivers; can be disabled with the new compatibility-flag ccid-no-auto-detach. * scd: Allow setting a PIN length of 6 also with a reset code for openpgp cards. * agent: Allow GET_PASSPHRASE in restricted mode. * dirmngr: Trust system's root CAs for checking CRL issuers. * dirmngr: Fix regression in 2.4.4 in fetching keys via hkps. * gpg-wks-client: Make option --mirror work properly w/o specifying domains. * g13,gpg-wks-client: Allow command style options as in "g13 mount foo". * Allow tilde expansion for the foo-program options. * Make the getswdb.sh tool usable outside the GnuPG tree. (From OE-Core rev: eadaa195c8ded5f74bd7a146840c5dd610cd3c36) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: disable tests to avoid running target binaries at build timeChen Qi2024-02-181-0/+1
| | | | | | | | | | | | | | | By default, the tests are built and run at do_compile and we can see errors like below in log.do_compile: gnupg-2.4.4/tests/cms/inittests: line 99: ../../sm/gpgsm: cannot execute binary file: Exec format error Note that the do_compile process still succeeds. However, we'd better avoid executing these target binaries at build time. (From OE-Core rev: 74d48497470ce209bc6bdf49c2e2cfda67dce6ae) Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.4.3 -> 2.4.4Wang Mingyu2024-02-035-55/+18
| | | | | | | | | | | | | | | | | | | fix-ldap.patch removed since it's included in 2.4.4. 0001-configure.ac-use-a-custom-value-for-the-location-of-.patch 0004-autogen.sh-fix-find-version-for-beta-checking.patch relocate.patch refreshed for 2.4.4 Changelog: https://dev.gnupg.org/T6578 (From OE-Core rev: 35ad01e17e3ba01f87902ab121247bfa600db225) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.4.2 -> 2.4.3Alexander Kanavin2023-09-074-4/+39
| | | | | | | (From OE-Core rev: 0c2365540ae61fe6fab61fb076ddb976ca26ce47) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Fix reproducibility failureRichard Purdie2023-08-111-0/+2
| | | | | | | | | | yat2m can be found within the build or from the recipe-sysroot-native if runtime dependencies are present. The sysroot version has version differences to the in tree copy. Specify the one we want to make the build determinstic. (From OE-Core rev: 1feb5274db6e985e10f58359b148dabb4076917a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.4.0 -> 2.4.2Alexander Kanavin2023-06-163-13/+13
| | | | | | | (From OE-Core rev: c9eddfded59819a2a375b6f5518bf2c3184237d2) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.3.8 -> 2.4.0Alexander Kanavin2023-01-065-44/+8
| | | | | | | | (From OE-Core rev: 4708a92dd77f4fba213a68e16442d2fe4ab2665d) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.3.7 -> 2.3.8Alexander Kanavin2022-12-184-12/+48
| | | | | | | | (From OE-Core rev: faf80d587849f181fc69b9a2924e8d44391c56c3) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade to 2.3.7 to fix CVE-2022-34903Yue Tao2022-07-121-1/+1
| | | | | | | (From OE-Core rev: f511d6ca6db17c585532243f4c015692dfb2b727) Signed-off-by: Yue Tao <yue.tao@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.3.4 -> 2.3.6Alexander Kanavin2022-05-054-43/+13
| | | | | | | | | | | Remove 0003-dirmngr-uses-libgpg-error.patch (upstream addressed the issue). (From OE-Core rev: be6636267fd3e80c1b7681ba899b8b752b7a39b4) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Luca Ceresoli <luca.ceresoli@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Disable FORTIFY_SOURCES on mipsKhem Raj2022-04-191-0/+3
| | | | | | | | | | | | This is a workaround for issue reported with gcc12 [1] [1] https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105234 (From OE-Core rev: 8b8259e070c582d0c566535a3559aa712148efc0) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX ↵Richard Purdie2022-02-201-1/+1
| | | | | | | | | | | | | license identifiers An automated conversion using scripts/contrib/convert-spdx-licenses.py to convert to use the standard SPDX license identifiers. Two recipes in meta-selftest were not converted as they're that way specifically for testing. A change in linux-firmware was also skipped and may need a more manual tweak. (From OE-Core rev: ceda3238cdbf1beb216ae9ddb242470d5dfc25e0) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.3.3 -> 2.3.4wangmy2022-01-052-13/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | refresh relocate.patch Chanlog: ======== Bugs fixed for this release <https://dev.gnupg.org/#####> gpg: New option --min-rsa-length. [rG5f39db70c0] gpg: New option --forbid-gen-key. [rGc397ba3ac0] gpg: New option --override-compliance-check. [T5655] gpgconf: New command --show-configs. [rGa0fb78ee0f] agent,dirmngr,keyboxd: New option --steal-socket. [rGb0079ab39d,rGdd708f60d5] gpg: Fix printing of binary notations. [T5667] gpg: Remove stale ultimately trusted keys from the trustdb. [T5685,T5742] gpg: Fix indentation of --print-mds and --print-md sha512. [T5679] gpg: Emit gpg 2.2 compatible Ed25519 signature. [T5331] gpgsm: Detect circular chains in --list-chain. [rG74c5b35062] dirmngr: Make reading resolv.conf more robust. [T5657] dirmngr: Ask keyservers to provide the key fingerprints. [T5741] gpgconf: Allow changing gpg's deprecated keyserver option. [T5462] gpg-wks-server: Fix created file permissions. [rG60be00b033] scd: Support longer data for ssh-agent authentication with openpgp cards. [T5682] scd: Modify DEVINFO behavior to support looping forever. [T5359] Support gpgconf.ctl for NetBSD and Solaris. [T5656,T5671] Silence "Garbled console data" warning under Windows in most cases. [rGe293da3b21] Silence warning about the rootdir under Unices w/o a mounted /proc file system. [T5656] Fix possible build problems about missing include files. [T5592] (From OE-Core rev: 66e06fd409c27f212f41b69a01416cea41a198cd) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.3.2 -> 2.3.3Alexander Kanavin2021-10-233-39/+43
| | | | | | | | (From OE-Core rev: dabf520ef0868eb5e0f97444da28ff44e9f8d0c1) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.3.1 -> 2.3.2Alexander Kanavin2021-10-113-28/+19
| | | | | | | | | Drop chunk from relocate.patch, the upstream code no longer exists. (From OE-Core rev: 8f268f981d53615d8ac9ee3ee64d840dc7051ced) Signed-off-by: Alexander Kanavin <alex@linutronix.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Be deterministic about sendmailRichard Purdie2021-10-021-0/+1
| | | | | | | | | | Set a path to where sendmail would exist making the output deterministic as it no longer depends on the build host and the presense of sendmail there. (From OE-Core rev: 32e03a430f13960fe07f08c04eaa58017d977f6c) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Convert to new override syntaxRichard Purdie2021-08-021-9/+9
| | | | | | | | | | | | This is the result of automated script conversion: scripts/contrib/convert-overrides.py <oe-core directory> converting the metadata to use ":" as the override character instead of "_". (From OE-Core rev: 42344347be29f0997cc2f7636d9603b1fe1875ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.27 -> 2.3.1Alexander Kanavin2021-05-096-156/+68
| | | | | | | | | | | | Remove 0001-Use-pkg-config-to-find-pth-instead-of-pth-config.patch as upstream has removed the .m4 files. Rebase other patches. (From OE-Core rev: 623b10d3428f84219f7fb0cbb539fbbba7161e2d) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes-support: Add missing HOMEPAGE and DESCRIPTION for recipesMeh Mbeh Ida Delphine2021-03-021-0/+5
| | | | | | | | | Fixes: [YOCTO #13471] (From OE-Core rev: 6db24928d62aeb093a0e6da6619713eaca57a96f) Signed-off-by: Ida Delphine <idadelm@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.26 -> 2.2.27Wang Mingyu2021-01-151-1/+1
| | | | | | | (From OE-Core rev: 90798e892fd3e0d2ef77a7ba64a33ea9f8ef317b) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.2.23 -> 2.2.26Alexander Kanavin2020-12-314-15/+13
| | | | | | | (From OE-Core rev: eb7ad793d8c2e924adccc62e7680bb1cac640e89) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: uprev 2.2.22 -> 2.2.23Saul Wold2020-09-121-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | This addresses CVE-2020-25125 and provides some other minor updates and translations. Updated commits for reference: e234d04c3 Werner Koch Release 2.2.23 aeb8272ca Werner Koch gpg: Fix AEAD preference list overflow 038314665 Werner Koch po: auto update 1a4b0fd79 Yuri Chornoivan po: Update Ukrainian translation 93d10403a Jakub Bogusz po: Update Polish translation a8a8105bc Werner Koch po: Add key-check.c to the list of translatable sources. cad9955ac Petr Pisar po: Update Czech translation. 896c528ba Werner Koch gpg: Fix segv importing certain keys. 0a9665187 NIIBE Yutaka scd: Fix a regression for OpenPGP card. bcae9cd4e Nagy Ferenc László po: Minor update to the Hungarian translation. d2fe2ffd7 Werner Koch sm: Fix a bug in the rfc2253 parser f799b3ddb Werner Koch Post release updates (From OE-Core rev: 965683336816eba7cb0548e59faf224f74b306b1) Signed-off-by: Saul Wold <saul.wold@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update 2.2.21 -> 2.2.22Alexander Kanavin2020-09-034-14/+12
| | | | | | | (From OE-Core rev: ad9f9fd5609c2014454c73045bc603c9883977e3) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.20 -> 2.2.21Richard Purdie2020-07-183-15/+14
| | | | | | (From OE-Core rev: 1aeb32228d92568e90f313a2a027c6790937eb8a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.19 -> 2.2.20Wang Mingyu2020-03-291-2/+2
| | | | | | | (From OE-Core rev: c787a48dc26a937df019e4fcb1e37b7b06824798) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Read GNUPG_BINDIR from environment variables for nativesdkRobert Yang2020-02-151-4/+12
| | | | | | | | | | | | | | | There is already a relocate.patch for native which is used for reading GNUPG_BINDIR from environment variables, now also enable it for nativesdk. Otherwise, command like the following one doesn't work for nativesdk: $ gpg-connect-agent --homedir ../keys/ reloadagent /bye gpg-connect-agent: no running gpg-agent - starting '/opt/path/to/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/gpg-agent' gpg-connect-agent: failed to start agent '/opt/path/sysroots/x86_64-wrlinuxsdk-linux/usr/bin/gpg-agent': No such file or directory (From OE-Core rev: c6b00b5594adec0a7d7a7f3617fb99b65ea8d9f1) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.17 -> 2.2.19Wang Mingyu2020-01-271-2/+2
| | | | | | | | (From OE-Core rev: 287de363f80a2f9919b942a1349f58575e8b91d8) Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg/libksba/npth/pinentry: Add nativesdk to BBCLASSEXTENDHaris Okanovic2019-11-101-1/+1
| | | | | | | | | | | | | Enable nativesdk builds of gnupg and it's dependencies (libksba, npth, and pinentry) to fix builds of nativesdk-opkg. This is necessary on distribution which enable gpg signature verification in opkg and also build SDK images that include opkg. (From OE-Core rev: e935cba0122a93df611c9a846c16b7841b715fd8) Signed-off-by: Haris Okanovic <haris.okanovic@ni.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Split gpg and gpg-agent into a minimal gnupg-gpg packageHaris Okanovic2019-11-101-0/+15
| | | | | | | | | | | | | | | | Add minimal "gnupg-gpg" package containing just enough binaries to run gpg and gpg-agent. Add dependency in normal "gnupg" package to preserve old behavior. Some applications like opkg don't need all functionality provided by normal gnupg installations. This minimal package provides just enough functionality to verify and manage keys in opkg, in order to minimize disk overhead. (From OE-Core rev: 6686c64ad30481d4d67af6a7b9bec7e7ae1a83fe) Signed-off-by: Haris Okanovic <haris.okanovic@ni.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Extend -native wrapper to fix gpgme-native's gpgconf problemsJason Wessel2019-09-161-0/+3
| | | | | | | | | | | | | | | | | | | The gpg commit signing in ostree-native doesn't work properly when running from sstate. The ostree-native is linked with gpgme-native's libraries, which have calls into gpg. Ultimately it turned out the problem was that gpgme calls gpgconf and some of the other gnupg-native binaries directly. Not all the binaries have a wrapper which sets the environment variable GNUPG_BIN. Without this wrapper these binaries it gets the path assignment from the original compilation which causes a fault when running from sstate in a new tmp directory because these paths will not exist. (From OE-Core rev: f93bf3bd051923618ce3949d5686fdb8cf998645) Signed-off-by: Jason Wessel <jason.wessel@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.16 -> 2.2.17Anuj Mittal2019-07-111-3/+2
| | | | | | | | | | | Also fixes CVE-2019-13050. Announcement: https://lists.gnupg.org/pipermail/gnupg-announce/2019q3/000439.html (From OE-Core rev: c6e46323f0d62daf8bd424e642581fdcba920ef7) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg:upgrade 2.2.15 -> 2.2.16Zang Ruochen2019-06-191-2/+2
| | | | | | | | | -Upgrade from gnupg_2.2.15.bb to gnupg_2.2.16.bb. (From OE-Core rev: 825be9d66ae9f503f1dd2dce0fac530554057613) Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update to 2.2.15Oleksandr Kravchuk2019-04-232-7/+10
| | | | | | | (From OE-Core rev: e60b3994d4bc282191302e1fd9b7d2106ee2f6cb) Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.12 -> 2.2.13Richard Purdie2019-02-253-4/+4
| | | | | | (From OE-Core rev: c675a07fd820e47d2a13211cdc6496a09ddb5b3b) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Do not apply -Woverride-init guard for gcc >= 9Khem Raj2018-12-274-5/+37
| | | | | | | (From OE-Core rev: ee23aa985f72932330b6cbee3693611d98ee325a) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Upgrade to 2.2.12 releaseKhem Raj2018-12-273-6/+6
| | | | | | | (From OE-Core rev: af3e1bbcc615adfc1f915448afe9c794ad938522) Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.10 -> 2.2.11Hongxu Jia2018-11-233-5/+5
| | | | | | | (From OE-Core rev: 4a373ce7d718ee3299bcf7f9fa62e7337d41e40a) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.9 -> 2.2.10Hongxu Jia2018-11-143-6/+14
| | | | | | | (From OE-Core rev: 5efe9eb79ac325f55fc52f67b522afaf7ebb847a) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: patch gnupg-native to allow path relocationRoss Burton2018-09-202-1/+87
| | | | | | | | | | | | | | | GnuPG hard-codes $bindir etc and uses them to find the helper binaries, such as gpg-agent. This breaks if gnupg-native is reused from sstate for a different build directory and GPG signing of packages is required. Patch in getenv() checks for gnupg-native when returning the hardcoded paths, and create a wrapper script which overrides GNUPG_BINDIR. There are more paths that can be overridden, but this one is sufficient to make GnuPG work. (From OE-Core rev: dfd69ff889ed78bf137116583d8ae351859ee203) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.8 -> 2.2.9Ross Burton2018-07-242-9/+6
| | | | | | | (From OE-Core rev: b7da8d50ebc2f44376d352d001371e03f465e3be) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-06 21:55:04 +0000