about summary refs log tree commit diff
path: root/pkgs/tools/security/gnupg
AgeCommit message (Collapse)AuthorFilesLines
2022-11-15gnupg: fix smartcards (yubikeys) on DarwinDan Callahan1-1/+2
Since version 2.3, GnuPG no longer falls back to other access methods if its built-in CCID driver fails to access smartcards, including yubikeys. The built-in CCID driver fails on macOS. The upstream developers recommend disabling CCID support in this case: If it works and the distribution doesn't offer appropriate USB configuration, I think that it's good for the distribution to use --disable-ccid-driver for building GnuPG. Cite: https://dev.gnupg.org/T5415 See also: https://dev.gnupg.org/T5409 Fixes #155629
2022-10-01gnupg: unbreak builds without tpm2-tssAdam Joseph1-3/+4
Builds without tpm2-tss no longer seem to work after #183753. This PR fixes that.
2022-09-16gnupg: add withPcsc flag to disable PC/SC supportBen Wolsieffer1-2/+3
pcsclite pulls in a lot of dependencies, including spidermonkey, which is nearly or completely impossible to build on 32-bit architectures. PC/SC support is not commonly used, so provide a flag to allow users to disable it and significantly reduce the closure size.
2022-08-20gnupg: Fix regression when using YubiKey devicesAlexis Hildebrandt1-0/+8
as smart cards.
2022-07-30Merge pull request #183753 from SuperSandro2000/systemd-gnupg-nullSandro1-13/+8
2022-07-29gnupg: remove ? null from inputs, remove with libSandro Jäckel1-13/+8
2022-07-28gnupg: 2.3.6 -> 2.3.7Stig Palmquist2-50/+2
- Release announcement: https://dev.gnupg.org/T5947 - Removed CVE-2022-34903 patch which is included in 2.3.7
2022-07-06gnupg: add patch disallowing compressed signatures and certificatesStig Palmquist2-0/+219
https://seclists.org/oss-sec/2022/q3/9 https://seclists.org/oss-sec/2022/q3/27
2022-07-03gnupg: Add patch for CVE-2022-34903Stig Palmquist2-0/+48
https://www.openwall.com/lists/oss-security/2022/06/30/1 https://dev.gnupg.org/T6027
2022-06-06gnupg: 2.3.4 -> 2.3.6Stig Palmquist1-2/+2
2022-05-14gnupg1orig: add -fcommon workaroundSergei Trofimovich1-0/+6
Workaround build failure on -fno-common toolchains like upstream gcc-10. Otherwise build fails as: ld: ../util/libutil.a(estream-printf.o):/build/gnupg-1.4.23/util/../include/memory.h:100: multiple definition of `memory_debug_mode'; gpgsplit.o:/build/gnupg-1.4.23/tools/../include/memory.h:100: first defined here
2022-04-02gnupg{,1}: add meta.mainProgramSamuel Gräfenstein2-0/+2
2022-02-12gnupg: fix default keyserver patchStig Palmquist1-1/+1
2022-02-12gnupg: remove unneeded SOURCE_DATE_EPOCH patchStig Palmquist1-3/+0
2022-02-12gnupg: remove patch for darwin warningsStig Palmquist1-7/+0
Fixed in 2.3.4
2022-02-12gnupg: 2.3.3 -> 2.3.4Stig Palmquist1-2/+2
2022-01-19gnupg: remove warning printed on systems without procfsDmitry Kalinkin1-0/+7
2021-12-18gnupg23: fix on darwin (#151078)Jiuyang Liu1-4/+3
2021-12-16Merge pull request #145434 from colemickens/gpg23Graham Christensen3-25/+30
gnupg: 2.2.27 -> 2.3.3
2021-11-30pkgs/tools: use pname&version instead of nameFelix Buehler1-1/+2
2021-11-10gnupg: fix eval by replaced alias 'libgpg-error'Stig Palmquist1-2/+2
2021-11-10gnupg: 2.2.27 -> 2.3.3Cole Mickens3-27/+32
2021-11-09treewide: rename name to pname&versionFelix Buehler1-2/+3
2021-10-14Drop myself from meta.maintainers for most packages.Peter Simons1-1/+1
I'd like to reduce the number of Github notifications and review requests I receive.
2021-10-06libgpg-error: rename from libgpgerrorRyan Burns1-2/+2
Matches pname and upstream project name
2021-02-07gnupg: drop obsolete Emacs syntax highlighting fixAlyssa Ross1-1/+1
Emacs + nix-mode highlights this file just fine without this comment for me, so I assume the problem in nix-mode has been fixed in the five years since this comment was added.
2021-01-16pkgs/tools: pkgconfig -> pkg-configBen Siraphob1-2/+2
2021-01-15pkgs/tools: stdenv.lib -> libBen Siraphob1-3/+3
2021-01-12gnupg: 2.2.26 -> 2.2.27Michael Weiss1-2/+2
Announcement: https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000452.html Luckily this fixes a regression from GnuPG 2.2.26 that broke the build of libsForQt5.qgpgme (a test failed). Fix #109009.
2021-01-11treewide: with stdenv.lib; in meta -> with lib;Profpatsch2-4/+4
Part of: https://github.com/NixOS/nixpkgs/issues/108938 meta = with stdenv.lib; is a widely used pattern. We want to slowly remove the `stdenv.lib` indirection and encourage people to use `lib` directly. Thus let’s start with the meta field. This used a rewriting script to mostly automatically replace all occurances of this pattern, and add the `lib` argument to the package header if it doesn’t exist yet. The script in its current form is available at https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-04gnupg: 2.2.25 -> 2.2.26Luke Bentley-Fox1-2/+2
2020-12-31gnupg: 2.2.24 -> 2.2.25 (#106400)R. RyanTM1-2/+2
2020-11-25gnupg: 2.2.23 -> 2.2.24R. RyanTM1-2/+2
2020-10-25Merge pull request #100031 from ju1m/gnupgWORLDofPEACE1-0/+3
gnupg: put libexec tools (eg. gpg-preset-passphrase) in PATH
2020-10-08gnupg: put libexec tools (eg. gpg-preset-passphrase) in PATHJulien Moutinho1-0/+3
2020-09-04gnupg: 2.2.22 -> 2.2.23Doron Behar1-2/+2
2020-08-29gnupg: 2.2.21 -> 2.2.22Doron Behar1-2/+2
2020-07-27gnupg22: 2.2.20 -> 2.2.21Pavol Rusnak1-4/+6
Fix reproducibility by fixing SOURCE_DATE_EPOCH usage
2020-07-22gnupg20: dropajs1241-66/+0
has been EOL since 2017-12-31
2020-04-28libusb-compat-0_1: rename from libusbJan Tojnar1-2/+2
2020-04-21gnupg: use libusb1 (#85374)Linus Heckemann1-2/+2
* gnupg: use libusb1 This fixes scdaemon's direct ccid support. * systemd: fix gnupg-minimal
2020-04-10treewide: Per RFC45, remove all unquoted URLsMichael Reilly3-3/+3
2020-03-21gnupg: 2.2.19 -> 2.2.20Lancelot SIX1-2/+2
See https://lists.gnu.org/archive/html/info-gnu/2020-03/msg00008.html for release information.
2020-03-06gnupg: apply patch to allow import of key updates without user idsVincent Breitmoser4-0/+342
This adds a patch series which allows GnuPG to import updates (revocations and subkeys) from certificates that contain no user ids. This is relevant for refreshing keys from the default keyserver keys.openpgp.org, where only user ids that contain verified email addresses will be distributed, and revoked keys never contain any user ids. This patch series was originally authored and submitted to upstream half a year ago (by me), but now comes from Debian packaging where it's been included since then. Relates to the following upstream issue: https://dev.gnupg.org/T4393
2019-12-10gnupg: 2.2.18 -> 2.2.19Lancelot SIX1-2/+2
See https://lists.gnu.org/archive/html/info-gnu/2019-12/msg00001.html for release information.
2019-11-26gnupg: 2.2.17 -> 2.2.18Lancelot SIX1-2/+2
See https://lists.gnu.org/archive/html/info-gnu/2019-11/msg00010.html for release information
2019-11-02gnugp: adding option for minimal buildwucke131-8/+15
Basically a flavour of gnugpg, which solely containts `bin/gnupg`.
2019-10-16gnupg: disable gui/pinentry support by defaultFranz Pletz2-2/+2
This solves the dependency cycle in gcr alternatively so there won't be two gnupg store paths in a standard NixOS system which has udisks2 enabled by default. NixOS users are expected to use the gpg-agent user service to pull in the appropriate pinentry flavour or install it on their systemPackages and set it in their local gnupg agent config instead. Co-authored-by: Florian Klink <flokli@flokli.de>
2019-09-16gnupg: fix cross-compilationNick Spinale1-2/+2
2019-08-15treewide: name -> pname (easy cases) (#66585)volth2-4/+4
treewide replacement of stdenv.mkDerivation rec { name = "*-${version}"; version = "*"; to pname
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-08-05 15:38:19 +0000