parent
a850ee9e8d
commit
64584010b2
@ -1,2 +1,3 @@
|
||||
DIST barby-0.6.3.tar.gz 92841 SHA256 51546e7f58fc4587ec7977ac924874ac89ee1397ddd11d3fdeaa3a567dcebb92 SHA512 b7415298ee2d8bb17a88b5c647d707a15151d2110834e87c2d598def88290ad90947bc49ded175b44050d8d95510602d374699fd91f2fb873728e8536dc70ef6 WHIRLPOOL e0272be0adeb828d7745ddbb9ffe61674314943bfd3ad5aaca29a998b38bdd9dbe25d1e4333b182c63edd0240c509a32037c4e9277cdbf0b01723aa261e19a6a
|
||||
DIST barby-0.6.4.tar.gz 92848 SHA256 af9bc2d134c5889820ee0fdf87041552f56d0e2bdbf518b5af08240a2f1dd065 SHA512 2cf8c03b73c372578297dbee8de9b814a3fabc9eeed4359e4e93ff3bcfa747825cbff110770eeaa57a6a1a2b1dee88a4e5e38dd5dc141b1a221c5cd533ff6fe2 WHIRLPOOL 9ec2b3a829ce373d52ba15a6863b0e225b9b2a3d2f41b75461ad5f6c93dd6b93c727914a07f997e027ed07ebf1a0f01aebf322847234ace692a0de8a93cbcfef
|
||||
DIST barby-0.6.5.tar.gz 93781 SHA256 7a9d444b916e15c7c25602bc3d066191b7cdf08404b9efe2762188a9ecaa4e9e SHA512 f6101edf7a75986c55577d27dcbb0628fc7a6a4d2b8b4eab7a53e2703fbd0a1ec70a062c7a1e3d2b65db2afeecf8f0375a936c2932125b0d96647b8d24dd0e5c WHIRLPOOL c731582495375df230ca0a05a810ab6d2ac69c83ccd63393b1f2ff9372e6c5fe9048bd19d5e5fad55e7eb0608ed9d7dd27ff08ec3372601cabc9674ca76c6f6a
|
||||
|
@ -0,0 +1,100 @@
|
||||
# Copyright 1999-2016 Gentoo Foundation
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
# $Id$
|
||||
|
||||
EAPI=5
|
||||
|
||||
USE_RUBY="ruby20 ruby21 ruby22"
|
||||
|
||||
RUBY_FAKEGEM_TASK_TEST="test"
|
||||
|
||||
RUBY_FAKEGEM_EXTRADOC="CHANGELOG README.md"
|
||||
|
||||
RUBY_FAKEGEM_GEMSPEC="${PN}.gemspec"
|
||||
|
||||
inherit ruby-fakegem
|
||||
|
||||
DESCRIPTION="Ruby barcode generator that doesn't rely on 3rd party libraries"
|
||||
HOMEPAGE="http://toreto.re/barby/"
|
||||
|
||||
GITHUB_USER="toretore"
|
||||
SRC_URI="https://github.com/${GITHUB_USER}/${PN}/archive/v${PV}.tar.gz -> ${P}.tar.gz"
|
||||
|
||||
LICENSE="MIT"
|
||||
SLOT="0"
|
||||
KEYWORDS="~amd64"
|
||||
IUSE="test qrcode rmagick prawn png cairo"
|
||||
|
||||
ruby_add_rdepend "
|
||||
rmagick? ( dev-ruby/rmagick )
|
||||
cairo? ( dev-ruby/rcairo )"
|
||||
|
||||
ruby_add_rdepend "qrcode? ( dev-ruby/rqrcode )
|
||||
png? ( dev-ruby/chunky_png )
|
||||
prawn? ( dev-ruby/prawn:* )"
|
||||
|
||||
ruby_add_bdepend "test? ( dev-ruby/minitest )"
|
||||
|
||||
# testing requires imagemagick capable of png output
|
||||
DEPEND+=" test? ( media-gfx/imagemagick[png] )"
|
||||
|
||||
# prawn breaks tests for some reasons, needs to be investigated; code
|
||||
# still works though.
|
||||
RESTRICT="prawn? ( test )"
|
||||
|
||||
all_ruby_prepare() {
|
||||
sed -i -e 's/README/README.md/' Rakefile || die
|
||||
|
||||
sed -i -e '/[bB]undler/s:^:#:' test/test_helper.rb || die
|
||||
|
||||
if use qrcode; then
|
||||
sed -i -e '/^end/i s.add_dependency "rqrcode"' ${RUBY_FAKEGEM_GEMSPEC}
|
||||
else
|
||||
rm \
|
||||
lib/barby/barcode/qr_code.rb \
|
||||
test/qr_code_test.rb
|
||||
fi
|
||||
|
||||
if use rmagick; then
|
||||
sed -i -e '/^end/i s.add_dependency "rmagick"' ${RUBY_FAKEGEM_GEMSPEC}
|
||||
else
|
||||
rm \
|
||||
lib/barby/outputter/rmagick_outputter.rb \
|
||||
test/outputter/rmagick_outputter_test.rb
|
||||
fi
|
||||
|
||||
if use prawn; then
|
||||
sed -i -e '/^end/i s.add_dependency "prawn"' ${RUBY_FAKEGEM_GEMSPEC}
|
||||
else
|
||||
rm \
|
||||
lib/barby/outputter/prawn_outputter.rb \
|
||||
test/outputter/prawn_outputter_test.rb
|
||||
fi
|
||||
|
||||
if use png; then
|
||||
sed -i -e '/^end/i s.add_dependency "chunky_png"' ${RUBY_FAKEGEM_GEMSPEC}
|
||||
else
|
||||
rm \
|
||||
lib/barby/outputter/png_outputter.rb \
|
||||
test/outputter/png_outputter_test.rb
|
||||
fi
|
||||
|
||||
if use cairo; then
|
||||
sed -i -e '/^end/i s.add_dependency "cairo"' ${RUBY_FAKEGEM_GEMSPEC}
|
||||
else
|
||||
rm \
|
||||
lib/barby/outputter/cairo_outputter.rb \
|
||||
test/outputter/cairo_outputter_test.rb
|
||||
fi
|
||||
|
||||
rm -f \
|
||||
lib/barby/barcode/data_matrix.rb \
|
||||
test/data_matrix_test.rb \
|
||||
lib/barby/outputter/pdfwriter_outputter.rb \
|
||||
test/outputter/pdfwriter_outputter_test.rb || die
|
||||
|
||||
sed -i \
|
||||
-e '/semacode/d' \
|
||||
-e '/pdf-writer/d' \
|
||||
${RUBY_FAKEGEM_GEMSPEC} || die
|
||||
}
|
@ -1,5 +1,4 @@
|
||||
DIST mercurial-3.7.3.tar.gz 4636732 SHA256 c099c42d74e2d520b61dd372cd996b0fa7605c06617834fd7b13c79b9a9a5b30 SHA512 7f9f97229e40c7092c16ccf227b19a08a9839d8ce19a9d057341fff75876bff32241ee9aa10eab293f779ea3e8a1d97577597187bd96251fb499cbb1075a82cf WHIRLPOOL 51d7f152a0af27924fec8b39933796f5584867efff7f271147139e740302d05f8976f3c2aa95cb724b774ba4951040483bb51b02eed1495d8b15012301ba060e
|
||||
DIST mercurial-3.8.4.tar.gz 4775341 SHA256 4b2e3ef19d34fa1d781cb7425506a05d4b6b1172bab69d6ea78874175fdf3da6 SHA512 2ee785f631f9ae346e10ca77251a9ce6d3dacd598588c39f1a69ce1f4b668866f6109d682428512c37c300b26741b74672195538d66845e85cfff5ead886cf4c WHIRLPOOL 1f0a12cc6d00f3544ab00e011a9ff9308fe1652c0598045ddba2a41ba17b55c291da200bce85d4c600d673b8746e936c441ffa7398ad810d1069bd97fb32f2db
|
||||
DIST mercurial-3.9.1.tar.gz 4797967 SHA256 625e4fc7e85ec2278c2828bdc547fce74091b3bbe4d9eeeba2d61af51195df74 SHA512 d96e45cafd36be692d6ce5259e18140641c24f73d4731ff767df0f39af425b0630c687436fc0f53d5882495ceacacaadd5e19f8f7c701b4b94c48631123b4666 WHIRLPOOL ba4e9374b592d294767046fe7d4297df837d9e92ea2279a7a3654054c058a6b994cade2358d2c35a7d30b6985abd0f7afe55af586ccafbe1dc5b50059bc2712f
|
||||
DIST mercurial-3.9.2.tar.gz 4798958 SHA256 69046a427c05e83097bf0145a1e37975ae0b6ba4430456e2beca3d2fd96583cf SHA512 2217b492216bc640366bf4bfa65bb50d2b7f384d70c59fd1fb138482cbee4768c83a444233958a7ad95e9cd0dcbe3e676d7ff4a8a4019b9773205f8f2500235e WHIRLPOOL 11763311c2df0a235a8401ea0ea59d06797bbfaa420f9c900a39fa127e34f94cefc27dde96e57449cc659da7e13813ad146c17f5db011068bed5f0f7215e331c
|
||||
DIST mercurial-4.0.1.tar.gz 4851421 SHA256 6aa4ade93c1b5e11937820880a466ebf1c824086d443cd799fc46e2617250d40 SHA512 145bb80d5dbefb5b770a8d74ce31929fafbd235bb3f641bcaa54b1f5278b2abef4298025152aaba212f639c307741d3aaf75be83e3fc52eaf440c86e4a804459 WHIRLPOOL d1cc3786e16d5a11b7d0a1a10e30190199c72cc281a6e2f3dd9c12829fc967d2b28fce902fb226dfc72531770db042333c5a23565a8c01129fab3a348b11a6f1
|
||||
DIST mercurial-4.0.tar.gz 4850316 SHA256 24be080745230840f214d93e9f9fb4e25510f9abbbec2e56fab18543fedc43a7 SHA512 8c1974a00efc4d0bcdaca1ce86a172528de58857ac0a78d8cac5c1182dcdd340c7f0f680c8dba82d384ffd3557abbfbdc2e473b5b0b8f05160bd6dbb915e76e4 WHIRLPOOL b4dad09ee488a2630ba37e4f24454de0d171a5b480bd5d161c28a1ec03f60f05efdc25c66c9626d638becebae1ace420312660f66cc9fbd834efca9824c5fbd6
|
||||
|
@ -1,140 +0,0 @@
|
||||
# Copyright 1999-2016 Gentoo Foundation
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
# $Id$
|
||||
|
||||
EAPI=6
|
||||
|
||||
PYTHON_COMPAT=( python2_7 )
|
||||
PYTHON_REQ_USE="threads"
|
||||
|
||||
inherit bash-completion-r1 elisp-common eutils distutils-r1 flag-o-matic
|
||||
|
||||
DESCRIPTION="Scalable distributed SCM"
|
||||
HOMEPAGE="http://mercurial.selenic.com/"
|
||||
SRC_URI="http://mercurial.selenic.com/release/${P}.tar.gz"
|
||||
|
||||
LICENSE="GPL-2"
|
||||
SLOT="0"
|
||||
KEYWORDS="alpha amd64 arm hppa ia64 ~mips ppc ppc64 sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-interix ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
|
||||
IUSE="bugzilla emacs gpg test tk"
|
||||
|
||||
RDEPEND="bugzilla? ( dev-python/mysql-python[${PYTHON_USEDEP}] )
|
||||
gpg? ( app-crypt/gnupg )
|
||||
tk? ( dev-lang/tk )
|
||||
app-misc/ca-certificates"
|
||||
DEPEND="emacs? ( virtual/emacs )
|
||||
test? ( app-arch/unzip
|
||||
dev-python/pygments[${PYTHON_USEDEP}] )"
|
||||
|
||||
SITEFILE="70${PN}-gentoo.el"
|
||||
|
||||
PATCHES=( "${FILESDIR}/${PN}-3.0.1-po_fixes.patch" )
|
||||
|
||||
python_prepare_all() {
|
||||
# fix up logic that won't work in Gentoo Prefix (also won't outside in
|
||||
# certain cases), bug #362891
|
||||
sed -i -e 's:xcodebuild:nocodebuild:' setup.py || die
|
||||
|
||||
distutils-r1_python_prepare_all
|
||||
}
|
||||
|
||||
python_configure_all() {
|
||||
strip-flags -ftracer -ftree-vectorize
|
||||
# Note: make it impl-conditional if py3 is supported
|
||||
append-flags -fno-strict-aliasing
|
||||
|
||||
"${PYTHON}" setup.py build_mo || die
|
||||
}
|
||||
|
||||
python_compile_all() {
|
||||
rm -r contrib/{win32,macosx} || die
|
||||
if use emacs; then
|
||||
cd contrib || die
|
||||
elisp-compile mercurial.el || die "elisp-compile failed!"
|
||||
fi
|
||||
}
|
||||
|
||||
python_install_all() {
|
||||
distutils-r1_python_install_all
|
||||
|
||||
newbashcomp contrib/bash_completion hg
|
||||
|
||||
insinto /usr/share/zsh/site-functions
|
||||
newins contrib/zsh_completion _hg
|
||||
|
||||
rm -f doc/*.?.txt
|
||||
dodoc CONTRIBUTORS
|
||||
cp hgweb*.cgi "${ED}"/usr/share/doc/${PF}/ || die
|
||||
|
||||
dobin hgeditor
|
||||
dobin contrib/hgk
|
||||
python_foreach_impl python_doscript contrib/hg-ssh
|
||||
|
||||
if use emacs; then
|
||||
elisp-install ${PN} contrib/mercurial.el* || die "elisp-install failed!"
|
||||
elisp-site-file-install "${FILESDIR}"/${SITEFILE}
|
||||
fi
|
||||
|
||||
local RM_CONTRIB=(hgk hg-ssh bash_completion zsh_completion wix buildrpm plan9
|
||||
*.el mercurial.spec)
|
||||
for f in ${RM_CONTRIB[@]}; do
|
||||
rm -r contrib/$f || die
|
||||
done
|
||||
|
||||
dodoc -r contrib
|
||||
docompress -x /usr/share/doc/${PF}/contrib
|
||||
doman doc/*.?
|
||||
|
||||
cat > "${T}/80mercurial" <<-EOF
|
||||
HG="${EPREFIX}/usr/bin/hg"
|
||||
EOF
|
||||
doenvd "${T}/80mercurial"
|
||||
|
||||
insinto /etc/mercurial/hgrc.d
|
||||
doins "${FILESDIR}/cacerts.rc"
|
||||
}
|
||||
|
||||
src_test() {
|
||||
pushd tests &>/dev/null || die
|
||||
rm -rf *svn* # Subversion tests fail with 1.5
|
||||
rm -f test-archive* # Fails due to verbose tar output changes
|
||||
rm -f test-convert-baz* # GNU Arch baz
|
||||
rm -f test-convert-cvs* # CVS
|
||||
rm -f test-convert-darcs* # Darcs
|
||||
rm -f test-convert-git* # git
|
||||
rm -f test-convert-mtn* # monotone
|
||||
rm -f test-convert-tla* # GNU Arch tla
|
||||
#rm -f test-doctest* # doctest always fails with python 2.5.x
|
||||
rm -f test-largefiles* # tends to time out
|
||||
|
||||
popd &>/dev/null || die
|
||||
distutils-r1_src_test
|
||||
}
|
||||
|
||||
python_test() {
|
||||
local TEST_DIR
|
||||
|
||||
rm -rf "${TMPDIR}"/test
|
||||
distutils_install_for_testing
|
||||
cd tests || die
|
||||
"${PYTHON}" run-tests.py --verbose \
|
||||
--tmpdir="${TMPDIR}"/test \
|
||||
--with-hg="${TEST_DIR}"/scripts/hg \
|
||||
|| die "Tests fail with ${EPYTHON}"
|
||||
}
|
||||
|
||||
pkg_postinst() {
|
||||
use emacs && elisp-site-regen
|
||||
|
||||
elog "If you want to convert repositories from other tools using convert"
|
||||
elog "extension please install correct tool:"
|
||||
elog " dev-vcs/cvs"
|
||||
elog " dev-vcs/darcs"
|
||||
elog " dev-vcs/git"
|
||||
elog " dev-vcs/monotone"
|
||||
elog " dev-vcs/subversion"
|
||||
}
|
||||
|
||||
pkg_postrm() {
|
||||
use emacs && elisp-site-regen
|
||||
}
|
@ -1,4 +1,3 @@
|
||||
DIST tortoisehg-3.7.3.tar.gz 7806350 SHA256 b0055ef6bee59244356179d5af98ffe200388133b17cd4ab5831b979b78a50ed SHA512 5ff57b98b93083cc78e161566f045474e70d474dab98ee99eaa6f453ac2521276a8384563a2e738a786a3c9cbe4c118837a8c534cfd4671c323eab261252e6f9 WHIRLPOOL 9a6e573b22b6dcf328a656dcd9e4f2bd500fc74f03f6d9ee8d350ec35cd7a02f239f6aa290b6ff9414d4b7aedde0b3003296f3520463669ce4f9b75a85a820ba
|
||||
DIST tortoisehg-3.8.4.tar.gz 7817508 SHA256 c8608ab7f063d0edd46c1fdae3181ef8216ea029bca34f180f0adeefc50274f7 SHA512 d9d83007588e8e62a03976a229a7c325e6e7f203d4f8fc74cc32b3f2880a1873237b4c333cfdb0ece6acde51019f6f62a75d863f1f99e8a5930ad17c38c6358b WHIRLPOOL 0ae8136f8de546a50998672bfd892774d4e8497268ffaf1198c84ce725c02080e8631c203103f8c646ef3ad7b69c832124042d6d0c207e90d13e08b532d33862
|
||||
DIST tortoisehg-3.9.2.tar.gz 7869242 SHA256 02ba49f5c724557b89b7a1d3a2abd1aaee5da4564ff98dd859b69d1f92d38c9f SHA512 42e7dc4d1e76d68fd7a44d772afdb28bac380aad047ee10be6df0b70ad048e8e28361b2d45ee4eaadf7dc1a0f10d7e9bb0cee57bdaf1b284e005b484c6654e29 WHIRLPOOL 068fbbaf7e062cc72010c9bf7ad6525e61560f25bfa1cf0af8cb95a71bf568708dfe1ab3bf32c109c50c8ae9697cb003de938e9343c1f4bc46bcf8c5d3bb09c7
|
||||
DIST tortoisehg-4.0.tar.gz 7828059 SHA256 791ffa4270cb2f49454290a30da2a915b31a91b94ebc5546289a125e962f7910 SHA512 e47af4d9f06e9284fdf18216b456b22c74043af3e59b46f086a10c15eca2a644c9ce8836c4ba709ade0a56a79db537c2fd6f407e52318e5352e060f48d86167d WHIRLPOOL 8d2b1dda8717935598cf40a705d2b3d55aa1389f758dc93dc2c807bb5f645c84de607c1f8d834d433cb43373698e2cfb407088836d88ae34c285529dbb9fd6ae
|
||||
|
@ -1,78 +0,0 @@
|
||||
# Copyright 1999-2016 Gentoo Foundation
|
||||
# Distributed under the terms of the GNU General Public License v2
|
||||
# $Id$
|
||||
|
||||
EAPI=6
|
||||
PYTHON_COMPAT=( python2_7 )
|
||||
|
||||
inherit distutils-r1 eutils
|
||||
|
||||
if [[ ${PV} != *9999* ]]; then
|
||||
KEYWORDS="amd64 x86"
|
||||
SRC_URI="https://www.bitbucket.org/${PN}/targz/downloads/${P}.tar.gz"
|
||||
HG_DEPEND=">=dev-vcs/mercurial-3.6 <dev-vcs/mercurial-3.8"
|
||||
else
|
||||
inherit mercurial
|
||||
EHG_REPO_URI="https://bitbucket.org/tortoisehg/thg"
|
||||
EHG_REVISION="stable"
|
||||
KEYWORDS=""
|
||||
SRC_URI=""
|
||||
HG_DEPEND="dev-vcs/mercurial"
|
||||
fi
|
||||
|
||||
DESCRIPTION="Set of graphical tools for Mercurial"
|
||||
HOMEPAGE="https://tortoisehg.bitbucket.org"
|
||||
|
||||
LICENSE="GPL-2"
|
||||
SLOT="0"
|
||||
IUSE="doc"
|
||||
|
||||
RDEPEND="${HG_DEPEND}
|
||||
dev-python/iniparse[${PYTHON_USEDEP}]
|
||||
dev-python/pygments[${PYTHON_USEDEP}]
|
||||
dev-python/PyQt4[svg,${PYTHON_USEDEP}]
|
||||
dev-python/qscintilla-python[${PYTHON_USEDEP}]"
|
||||
DEPEND="${RDEPEND}
|
||||
doc? ( >=dev-python/sphinx-1.0.3 )"
|
||||
|
||||
# Workaround race condition in build_qt
|
||||
DISTUTILS_IN_SOURCE_BUILD=1
|
||||
|
||||
python_prepare_all() {
|
||||
if [[ ${LINGUAS+set} ]]; then
|
||||
cd i18n/tortoisehg || die
|
||||
local x y keep
|
||||
for x in *.po; do
|
||||
keep=false
|
||||
for y in ${LINGUAS}; do
|
||||
if [[ ${y} == ${x%.po}* ]]; then
|
||||
keep=true
|
||||
break
|
||||
fi
|
||||
done
|
||||
${keep} || rm "${x}" || die
|
||||
done
|
||||
cd "${S}" || die
|
||||
fi
|
||||
distutils-r1_python_prepare_all
|
||||
}
|
||||
|
||||
python_compile_all() {
|
||||
use doc && emake -C doc html
|
||||
}
|
||||
|
||||
python_install_all() {
|
||||
distutils-r1_python_install_all
|
||||
dodoc doc/ReadMe*.txt doc/TODO contrib/mergetools.rc
|
||||
if use doc ; then
|
||||
dohtml -r doc/build/html/
|
||||
fi
|
||||
newicon -s scalable icons/scalable/apps/thg.svg thg_logo.svg
|
||||
domenu contrib/thg.desktop
|
||||
}
|
||||
|
||||
pkg_postinst() {
|
||||
elog "When startup of ${PN} fails with an API version mismatch error"
|
||||
elog "between dev-python/sip and dev-python/PyQt4 please rebuild"
|
||||
elog "dev-python/qscintilla-python."
|
||||
}
|
@ -1 +1 @@
|
||||
Fri, 02 Dec 2016 07:13:17 +0000
|
||||
Fri, 02 Dec 2016 11:43:27 +0000
|
||||
|
@ -0,0 +1,70 @@
|
||||
<?xml version="1.0" encoding="UTF-8"?>
|
||||
<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
|
||||
<glsa id="201612-01">
|
||||
<title>GnuPG: RNG output is predictable</title>
|
||||
<synopsis>Due to a design flaw, the output of GnuPG's Random Number Generator
|
||||
(RNG) is predictable.
|
||||
</synopsis>
|
||||
<product type="ebuild">gnupg</product>
|
||||
<announced>December 02, 2016</announced>
|
||||
<revised>December 02, 2016: 1</revised>
|
||||
<bug>591536</bug>
|
||||
<access>local</access>
|
||||
<affected>
|
||||
<package name="app-crypt/gnupg" auto="yes" arch="*">
|
||||
<unaffected range="ge">1.4.21</unaffected>
|
||||
<vulnerable range="lt">1.4.21</vulnerable>
|
||||
</package>
|
||||
</affected>
|
||||
<background>
|
||||
<p>The GNU Privacy Guard, GnuPG, is a free replacement for the PGP suite of
|
||||
cryptographic software.
|
||||
</p>
|
||||
</background>
|
||||
<description>
|
||||
<p>A long standing bug (since 1998) in Libgcrypt (see “GLSA 201610-04”
|
||||
below) and GnuPG allows an attacker to predict the output from the
|
||||
standard RNG. Please review the “Entropy Loss and Output Predictability
|
||||
in the Libgcrypt PRNG” paper below for a deep technical analysis.
|
||||
</p>
|
||||
</description>
|
||||
<impact type="normal">
|
||||
<p>An attacker who obtains 580 bytes of the random number from the standard
|
||||
RNG can trivially predict the next 20 bytes of output.
|
||||
</p>
|
||||
|
||||
<p>This flaw does not affect the default generation of keys, because
|
||||
running gpg for key creation creates at most 2 keys from the pool. For a
|
||||
single 4096 bit RSA key, 512 bytes of random are required and thus for
|
||||
the second key (encryption subkey), 20 bytes could be predicted from the
|
||||
the first key.
|
||||
</p>
|
||||
|
||||
<p>However, the security of an OpenPGP key depends on the primary key
|
||||
(which was generated first) and thus the 20 predictable bytes should not
|
||||
be a problem. For the default key length of 2048 bit nothing will be
|
||||
predictable.
|
||||
</p>
|
||||
</impact>
|
||||
<workaround>
|
||||
<p>There is no known workaround at this time.</p>
|
||||
</workaround>
|
||||
<resolution>
|
||||
<p>All GnuPG 1 users should upgrade to the latest version:</p>
|
||||
|
||||
<code>
|
||||
# emerge --sync
|
||||
# emerge --ask --oneshot --verbose ">=app-crypt/gnupg-1.4.21"
|
||||
</code>
|
||||
|
||||
</resolution>
|
||||
<references>
|
||||
<uri link="http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-6313">CVE-2016-6313</uri>
|
||||
<uri link="http://formal.iti.kit.edu/~klebanov/pubs/libgcrypt-cve-2016-6313.pdf">
|
||||
Entropy Loss and Output Predictability in the Libgcrypt PRNG
|
||||
</uri>
|
||||
<uri link="http://security.gentoo.org/glsa/201610-04">GLSA 201610-04</uri>
|
||||
</references>
|
||||
<metadata tag="requester" timestamp="Wed, 30 Nov 2016 18:28:25 +0000">whissi</metadata>
|
||||
<metadata tag="submitter" timestamp="Fri, 02 Dec 2016 09:38:37 +0000">whissi</metadata>
|
||||
</glsa>
|
@ -1 +1 @@
|
||||
Fri, 02 Dec 2016 07:13:17 +0000
|
||||
Fri, 02 Dec 2016 11:43:27 +0000
|
||||
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in new issue