Summary: | security/gnupg: update to 2.1.17 | ||||||
---|---|---|---|---|---|---|---|
Product: | Ports & Packages | Reporter: | Matthew Rezny <rezny> | ||||
Component: | Individual Port(s) | Assignee: | Adam Weinberger <adamw> | ||||
Status: | Closed FIXED | ||||||
Severity: | Affects Some People | Flags: | bugzilla:
maintainer-feedback?
(adamw) |
||||
Priority: | --- | ||||||
Version: | Latest | ||||||
Hardware: | Any | ||||||
OS: | Any | ||||||
Attachments: |
|
Thanks for submitting this, Matthew! I don't know too much about their bundled libdns. My knee-jerk reaction is to provide an OPTION to turn it off. If you have an opinion on that, I'd welcome your input. (In reply to Adam Weinberger from comment #1) The configure script understands --disable-libdns so it would be easy to add an option, but I do not see a value in the option. Without adns or libdns, dirmngr relies on the system resolver which is not ideal when using a pool of keyservers; it will keep trying to talk to a down server until the cache expires. When dirmngr is built with a DNS library, it can retrieve the complete set of servers in the pool and quickly switch to another should one go down. I do not see much reason to disable that ability and assume the option only existed because the functionality relied on an external library. Now that alternate DNS code is included into dirmngr, I see little reason to disable that as there would be no conceivable benefit from doing so. A commit references this bug: Author: adamw Date: Sat Jan 14 23:46:29 UTC 2017 New revision: 431502 URL: https://svnweb.freebsd.org/changeset/ports/431502 Log: Update GnuPG to 2.1.17 which resolves the following error that resulted when attempting to use the --export-ssh-key option. gpg: Ohhhh jeeee: Assertion "ret_found_key == NULL || ret_keyblock != NULL" in lookup failed (getkey.c:3677) The KDNS option is removed with this update because upstream dropped use of adns in favor of a bundled libdns which is used by default. Also, removed an obsolete patch. PR: 216057 Submitted by: Matthew Rezny Changes: head/security/gnupg/Makefile head/security/gnupg/distinfo head/security/gnupg/files/patch-tools_Makefile.in head/security/gnupg/pkg-plist Committed. Thanks for this, Matthew. |
Created attachment 178875 [details] update security/gnupg to 2.1.17 Update GnuPG to 2.1.17 which resolves the following error that resulted when attempting to use the --export-ssh-key option. gpg: Ohhhh jeeee: Assertion "ret_found_key == NULL || ret_keyblock != NULL" in lookup failed (getkey.c:3677) The KDNS option is removed with this update because upstream dropped use of adns in favor of a bundled libdns which is used by default. Also, removed an obsolete patch.