summaryrefslogtreecommitdiffstats
path: root/meta/recipes-support/gnupg
Commit message (Collapse)AuthorAgeFilesLines
* gnupg: patch gnupg-native to allow path relocationRoss Burton2018-09-202-1/+87
| | | | | | | | | | | | | | | GnuPG hard-codes $bindir etc and uses them to find the helper binaries, such as gpg-agent. This breaks if gnupg-native is reused from sstate for a different build directory and GPG signing of packages is required. Patch in getenv() checks for gnupg-native when returning the hardcoded paths, and create a wrapper script which overrides GNUPG_BINDIR. There are more paths that can be overridden, but this one is sufficient to make GnuPG work. (From OE-Core rev: dfd69ff889ed78bf137116583d8ae351859ee203) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.8 -> 2.2.9Ross Burton2018-07-242-9/+6
| | | | | | | (From OE-Core rev: b7da8d50ebc2f44376d352d001371e03f465e3be) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.2.5 -> 2.2.8Hongxu Jia2018-07-041-2/+2
| | | | | | | | (From OE-Core rev: 4d09b6a411504be78379dff172ef12620204b89a) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade 2.2.4 -> 2.2.5Hongxu Jia2018-05-042-5/+6
| | | | | | | (From OE-Core rev: 37b17c45e643171e3cfb9a4b1f84c6f0ee934a94) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: add a patch to avoid native vs. host gpg-agent clashesAlexander Kanavin2018-01-262-0/+32
| | | | | | | | (From OE-Core rev: 04f6e01c1d9c8b53ed43405cdb7d3b8b242a27b6) Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: enable native versionAlexander Kanavin2018-01-111-0/+2
| | | | | | | (From OE-Core rev: 3945ddd6eea9d84f7b0f82c66e6d4512bc239bb2) Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade to 2.2.4Alexander Kanavin2018-01-111-2/+2
| | | | | | | (From OE-Core rev: 745da1074a134f7d6a2110af100bdc65f031720b) Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.23 -> 2.2.0Hongxu Jia2017-09-021-2/+2
| | | | | | | | | | https://lists.gnupg.org/pipermail/gnupg-announce/2017q3/000413.html (From OE-Core rev: 404cdecec24bc2ed4e2cacc76cd50db7622171cd) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.20 -> 2.1.23Hongxu Jia2017-08-236-42/+90
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 1. COPYING.LIB: Rename to COPYING.LGPL3. https://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commit;h=3419a339d9c4e800bf30e9021e05982d8c1021c1 2. Rebase patches: - pkgconfig.patch -> 0001 - use-pkgconfig-instead-of-npth-config.patch -> 0002 - dirmngr-uses-libgpg-error.patch -> 0003 - autogen.sh-fix-find-version-for-beta-checking.patch -> 0004 3. Fix gpg2 not found ... dnf -vy makecache |Cannot download 'http://192.168.7.1:33541': repomd.xml GPG signature verification error: gpgme_engine_check_version() error: Invalid crypto engine. ... The upstream install gpg by default and no gpg2 ... commit a69464b0b6dac88b360a13d3faf19dd7f2a0e02b Author: Werner Koch <wk@gnupg.org> Date: Sat Aug 5 14:39:32 2017 +0200 gpg: Install gpg by default under the name gpg. ... Add --enable-gpg-is-gpg2 to revert it. (From OE-Core rev: f62d844424670967d2d40cd2afc96f5fc597bf1d) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: fix floating dependancy on gnutlsSaul Wold2017-06-281-3/+2
| | | | | | | | | | | gunpg added TLS support to the dirmngr for 2.1.0, mostly we linked with gnutls and had the RDEPENDS for gnutls. Since we had TLS support continue enabling it by default. (From OE-Core rev: 7f9806afb0b05fcd6af14910ed488a2ce277913c) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade from 2.1.18 to 2.1.20Choong YinThong2017-05-181-2/+2
| | | | | | | | | (From OE-Core rev: 0aa12590ef230d0b80b4fa15689c1e29309be49f) Signed-off-by: Choong YinThong <yin.thong.choong@intel.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Move out stale GPLv2 versions to a seperate layeruninative-1.5Richard Purdie2017-03-079-543/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | These are recipes where the upstream has moved to GPLv3 and these old versions are the last ones under the GPLv2 license. There are several reasons for making this move. There is a different quality of service with these recipes in that they don't get security fixes and upstream no longer care about them, in fact they're actively hostile against people using old versions. The recipes tend to need a different kind of maintenance to work with changes in the wider ecosystem and there needs to be isolation between changes made in the v3 versions and those in the v2 versions. There are probably better ways to handle a "non-GPLv3" system but right now having these in OE-Core makes them look like a first class citizen when I believe they have potential for a variety of undesireable issues. Moving them into a separate layer makes their different needs clearer, it also makes it clear how many of these there are. Some are probably not needed (e.g. mc), I also wonder whether some are useful (e.g. gmp) since most things that use them are GPLv3 only already. Someone could now more clearly see how to streamline the list of recipes here. I'm proposing we mmove to this separate layer for 2.3 with its future maintinership and testing to be determined in 2.4 and beyond. (From OE-Core rev: 19b7e950346fb1dde6505c45236eba6cd9b33b4b) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.14 -> 2.1.18Hongxu Jia2017-02-151-4/+4
| | | | | | | | | | Update LIC_FILES_CHKSUM md5 checksum, because "http" has been changed to "https". (From OE-Core rev: ec672ab878ca203385b3fbd764c17af6b56d8475) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade to 2.1.14Hongxu Jia2016-08-171-2/+2
| | | | | | | | (From OE-Core rev: 4ae0ebfae05e2b3c78146f606eaa12b2e42cd07d) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnugp: upgrade to 2.1.12Hongxu Jia2016-06-151-2/+2
| | | | | | | (From OE-Core rev: 21078e8f5a2156b1a1f4f50d345508fb1c7e7e66) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg.org-hosted recipes: Change SRC_URI to https siteJussi Kukkonen2016-05-302-2/+3
| | | | | | | | | | | | | | | | | | | https version seems more reliable and in an informal test fetching all gnupg recipes now takes <20% of the time it used to. Define GNUPG_MIRROR in bitbake.conf so future tweaks to this are easier. Replace some slower mirrors with the official ftp site and another from gnupg.org mirror list. Set UPSTREAM_CHECK_URI in all recipes that need it to "https://gnupg.org/download/index.html" as the directory listings are not up-to-date. (From OE-Core rev: dfc9178e2f2b6873ca497d981e308e00d15280b5) Signed-off-by: Jussi Kukkonen <jussi.kukkonen@intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: update to 2.1.11Alexander Kanavin2016-02-281-2/+2
| | | | | | | | (From OE-Core rev: f2cbc932991059c2aef80820b2ff9bf3acb2bd06) Signed-off-by: Alexander Kanavin <alexander.kanavin@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.7 -> 2.1.10Hongxu Jia2016-01-151-2/+5
| | | | | | | | | | | | Add PACKAGECONFIG for sqlite3 to avoid QA Warning ... WARNING: QA Issue: gnupg rdepends on libsqlite3, but it isn't a build dependency? [build-deps] ... (From OE-Core rev: 378228c1587e16880e564378a9533f614331648b) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Add "CVE:" tag to current patches in OE-coreMariano Lopez2016-01-114-0/+4
| | | | | | | | | | | | | | The currnet patches in OE-core doesn't have the "CVE:" tag, now part of the policy of the patches. This is patch add this tag to several patches. There might be patches that I miss; the tag can be added in the future. (From OE-Core rev: 065ebeb3e15311d0d45385e15bf557b1c95b1669) Signed-off-by: Mariano Lopez <mariano.lopez@linux.intel.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta: Drop now pointless manual -dbg packagingRichard Purdie2015-12-161-1/+0
| | | | | | | | | With the autodebug package generation logic, specifically setting FILES_${PN}-dbg isn't needed in most cases, we can remove them. (From OE-Core rev: 3ab59d49dd7c18e194b58d1248b4b87709b5a738) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: fix find-version for beta checkingWenzong Fan2015-11-162-0/+32
| | | | | | | | | | | | | | | | | | | find-version always assumes that gnupg is beta if autogen.sh is run out of git-repo. This doesn't work for users whom just take release tarball and re-run autoconf in their local build dir. This fixes runtime issue: $gpg --list-sigs gpg: NOTE: THIS IS A DEVELOPMENT VERSION! gpg: It is only intended for test purposes and should NOT be gpg: used in a production environment or with production keys! (From OE-Core rev: a37cccca3bb3bad0d8d7e375fb7e3cc339ac8250) Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* meta: Fix Upstream-Status statementsRoss Burton2015-09-121-1/+1
| | | | | | | | | | Fix a variety of problems such as typos, bad punctuations, or incorrect Upstream-Status values. (From OE-Core rev: bd220fe6ce8c3a0805f13a14706d3130ea872604) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.6 -> 2.1.7Robert Yang2015-08-301-2/+2
| | | | | | | | | | (From OE-Core rev: 78b159bf753c43c78bb0f283add7d447b96e08f1) (From OE-Core rev: 1054d5c0c0353b2ae89ab70232055eec759ccd43) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.5 -> 2.1.6Robert Yang2015-07-311-2/+2
| | | | | | | | (From OE-Core rev: ff816147ebb2cd07fde55ecd0d6520f1ffa347fa) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: fix build of GPLv2 version of gnupg with gcc 5Andre McCurdy2015-07-161-0/+3
| | | | | | | | | | | | | | | Force gcc's traditional handling of inline to avoid issues with gcc 5. Upstream gnupg has a more specific fix, however it was made after gnupg was relicensed to GPLv3 so may be unsafe to backport directly. http://git.gnupg.org/cgi-bin/gitweb.cgi?p=gnupg.git;a=commitdiff;h=5093bed27580e608de073bcc5953bd76b6b8b2de (From OE-Core rev: c9883a572eb92e9b846e9021495e0715fb2a4db7) Signed-off-by: Andre McCurdy <armccurdy@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.4 -> 2.1.5Robert Yang2015-07-011-2/+2
| | | | | | | (From OE-Core rev: 742e0fa636d4792d1fad088bed3c194fb4374e91) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.2 -> 2.1.4Robert Yang2015-05-302-6/+6
| | | | | | | | | Updated dirmngr-uses-libgpg-error.patch. (From OE-Core rev: 9c5cb4e2b51e605523d636f57d071593a01014ee) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: 2.1.1 -> 2.1.2Robert Yang2015-04-081-2/+2
| | | | | | | (From OE-Core rev: bd24517116455492abbc429196e5c9db4c1be1c7) Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade to 2.1.1Hongxu Jia2015-01-231-2/+2
| | | | | | | (From OE-Core rev: 6f53af6c3d6a09285f73bb946804b930055f71b2) Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Upgrade to 2.1.0Saul Wold2015-01-074-17/+111
| | | | | | | | | | | | Add patch to use pkg-config instead of npth-config and remove --without-curl as it's not used anymore. Also needed a patch to add libgpg-error to correctly build dirmngr (From OE-Core rev: 0509f3b6f880b516dfbe053b13d417f724509b99) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg_1.4.7: add package config libusbKai Kang2014-10-181-0/+1
| | | | | | | | | | | | | If build gnupg 1.4.7 after libusb-compat, it shows warning: WARNING: QA Issue: gnupg rdepends on libusb-compat, but it isn't a build dependency? [build-deps] Add package config libusb to fix it. (From OE-Core rev: e1c77392143e538a2305f63ee3add611ec66e877) Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2013-4242Kai Kang2014-10-182-0/+63
| | | | | | | | | | | | | | | | GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload. Patch from commit e2202ff2b704623efc6277fb5256e4e15bac5676 in git://git.gnupg.org/libgcrypt.git (From OE-Core rev: d1e0f3e71ce9978ff0fc94d71e67b528dad84c5c) Signed-off-by: Yong Zhang <yong.zhang@windriver.com> Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: add pinentry into RRECOMMENDSRoy Li2014-09-291-0/+1
| | | | | | | | | | Pinentry is needed for most function of GnuPG, so add it into RRECOMMENDS (From OE-Core rev: dc274b6325cfc6b78d51c97445b1af445ccfed93) Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Upgrade to 2.0.26Saul Wold2014-08-231-2/+2
| | | | | | | (From OE-Core rev: c4c3fe15f25de560e63800bc50584e511b4cb84d) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Added PACKAGECONFIG[curl]Shrikant Bobade2014-08-111-0/+3
| | | | | | | | | | | gnupg can be built with or without curl. This should be explicitly defined to avoid race between curl and gnupg. (From OE-Core rev: 4e5f6f95e8e791c9cfc9e3bd91f1018d83ab252f) Signed-off-by: Mikhail Durnev <mikhail_durnev@mentor.com> Signed-off-by: Shrikant Bobade <Shrikant_Bobade@mentor.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Upgrade to 2.0.25Saul Wold2014-07-171-2/+2
| | | | | | | (From OE-Core rev: 80d5c657f6658bbda042d4e3c382342804ca2041) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Update to 2.0.23Saul Wold2014-06-251-2/+2
| | | | | | | (From OE-Core rev: ea397e7060fcb92b0b31c3de7c498c0df3f55ac4) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* recipes: Add missing pkgconfig class inheritsRichard Purdie2014-06-031-1/+1
| | | | | | | | | These recipes all use pkg-config in some way but were missing dependencies on the tool, this patch adds them. (From OE-Core rev: 2543b14dd0ca13005be0df027543431fc8e882ae) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Convert to use pkg-config for dependenciesRichard Purdie2014-05-282-1/+96
| | | | | | | | | Use pkg-config to find pth instead of pth-config and our own macros from aclocal-copy. (From OE-Core rev: 437ad15de308769c9251a37ed41dabed5653fc96) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Add texinfo.bbclass; recipes that use texinfo utils at build-time inherit it.Max Eliaser2014-05-022-2/+2
| | | | | | | | | | | | | The class itself currently does nothing. The idea is to mark all recipes that make use of the texinfo utilities. In the future, this class could be used to suppress the generation/formatting of documentation for performance, explicitly track dependencies on these utilities, and eliminate Yocto's current dependency on the host system's texinfo utilities. (From OE-Core rev: e6fb2f9afe2ba6b676c46d1eb297ca9cc532d405) Signed-off-by: Max Eliaser <max.eliaser@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2013-4576Yong Zhang2014-03-272-0/+154
| | | | | | | | | | | | | | | | | | | GnuPG 1.x before 1.4.16 generates RSA keys using sequences of introductions with certain patterns that introduce a side channel, which allows physically proximate attackers to extract RSA keys via a chosen-ciphertext attack and acoustic cryptanalysis during decryption. NOTE: applications are not typically expected to protect themselves from acoustic side-channel attacks, since this is arguably the responsibility of the physical device. Accordingly, issues of this type would not normally receive a CVE identifier. However, for this issue, the developer has specified a security policy in which GnuPG should offer side-channel resistance, and developer-specified security-policy violations are within the scope of CVE. (From OE-Core rev: 46b80c80b0e008820b34f4360054e1697df2650d) Signed-off-by: Yong Zhang <yong.zhang@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: CVE-2013-4351Ming Liu2014-03-272-1/+47
| | | | | | | | | | | | | GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey. (From OE-Core rev: 259aebc9dbcaeb1587aaaab849942f55fa321724) Signed-off-by: Ming Liu <ming.liu@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* Replace one-line DESCRIPTION with SUMMARYPaul Eggleton2014-01-022-2/+2
| | | | | | | | | | | | | | A lot of our recipes had short one-line DESCRIPTION values and no SUMMARY value set. In this case it's much better to just set SUMMARY since DESCRIPTION is defaulted from SUMMARY anyway and then the SUMMARY is at least useful. I also took the opportunity to fix up a lot of the new SUMMARY values, making them concisely explain the function of the recipe / package where possible. (From OE-Core rev: b8feee3cf21f70ba4ec3b822d2f596d4fc02a292) Signed-off-by: Paul Eggleton <paul.eggleton@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: upgrade to 2.0.22Saul Wold2013-10-301-2/+2
| | | | | | | (From OE-Core rev: 87800b8941cd96265d2c3dd25c25d0b4fd9a3572) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Update to 2.0.21Saul Wold2013-08-221-2/+2
| | | | | | | (From OE-Core rev: d7481ee36f6bd0416eb35d8c40cb3ed9f2395a2f) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Update to 2.0.20Saul Wold2013-05-242-68/+3
| | | | | | | | | Removed obsolete patch (From OE-Core rev: 2e89010cb4a19d525bc43589d487827dd4bc401d) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: Add symlink for gpgvPaul Barker2013-03-251-0/+1
| | | | | | | | | | | Gnupg 2.0.19 installs 'gpgv2' but apt-get and possibly other utilities expect to find this as 'gpgv'. A symlink is created in the same way as the link for 'gpg'. (From OE-Core rev: 32f3596cefc034398803032785714b289766bb66) Signed-off-by: Paul Barker <paul@paulbarker.me.uk> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: fix PN -> BPN in do_install for multilibsJackie Huang2013-03-161-6/+6
| | | | | | | (From OE-Core rev: d2e7d98ce859a3af037135d1ac7bdb7a34f4d319) Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: fix CVE-2012-6085Saul Wold2013-02-154-3/+131
| | | | | | | | | | | Code taken from Redhat [YOCTO #3813] (From OE-Core rev: 17f8e03ace51df6b94fdcb7e410acf79c7b046ce) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
* gnupg: ensure deterministic build by disabling libcurlSaul Wold2012-07-101-1/+2
| | | | | | | | | | gnupg has it's own fake curl, since we use gnupg with zypper, there does not seem to be a strong reason to add curl to the depends list. (From OE-Core rev: 44ea2cf548ca20488449d347f8f3b7d49f7e7493) Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>