-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 14 Apr 2015 20:02:36 +0200 Source: signing-party Binary: signing-party Architecture: source i386 Version: 2.0-1 Distribution: unstable Urgency: low Maintainer: Guilhem Moulin <guilhem@guilhem.org> Changed-By: Guilhem Moulin <guilhem@guilhem.org> Description: signing-party - Various OpenPGP related tools Closes: 771857 775702 780836 Changes: signing-party (2.0-1) unstable; urgency=low . * caff: + Fix broken compatibility with GnuPG 2.1 (2.1.3 and later only; earlier 2.1.x versions remain unsuported), due to --secret-keyring being ignored by the most recent gpg(1). On those we automaticalyl symlink the S.gpg-agent (unless 'no-sign') and S.dirmngr (unless 'no-download') sockets to avoid spawning new agents in caff's GNUPGHOME. This require an extra call to gpg(1) at the beginning to determine the version. (Closes: #771857) + Default $CONFIG{'local-user'} to $CONFIG{'keyid'} rather than importing the public part of *all* keys found in the secret keyring. (When not pruning the good keys with -u, gpg(1) croaks with exit status 2 when there are secret keys without public part.) + Print {error,warnings,notice,info} lines on STDERR. + Add a --debug flag to enable debug messages. + Deprecate $CONFIG{'gpg-sign'} and $CONFIG{'gpg-delsig'}. + Never redirect STDERR. Send the logger output to /dev/null instead (unless in debug mode). (Closes: #775702) + Send attachements and non RFC 2822 UIDs to *all* signed addresses, not only those for which the UID is exported. This is useful when the signee has some already signed RFC 2822 UIDs and a freshly added attribute, for instance. + Use Term::ANSIColor to produce fancy colored output. Can be configured by setting $CONFIG{colors} to a suitable hash; in particular setting $CONFIG{colors} = {} reverts to the old uncolored output. + Prune keys with import-{clean,minimal} not export-{clean,minimal}. + Fix $CONFIG{'also-lsign-in-gnupghome'}: local signatures are directly imported from caff's GNUPGHOME to our own; in auto-lsign'ing mode, lsign UID for which we have an exportable signature (preserving the signer and cert level). + Pass the 'keyserver-options' specified in ~/.gnupg/gpg.conf to $CONFIG{keyserver} when it is left unset. (Closes: #780836) * gpgsigs: + Add a legend with the different signature types. + Mark local signatures as 'L' (formerly they were marked as 'S'), and expiring -- but not expired -- signatures as 'x'. * caff, pgp-clean, pgp-fixkey, gpg-key2latex, gpg-key2ps, gpg-mailkeys, gpgdir, gpgparticipants, gpgsigs, keyart, keylookup: + Add the possibility to choose the gpg binary via the "GNUPGBIN" environment variable. (Default: "gpg".) Checksums-Sha1: 00ab37dd0566007fb4ddd32341ccacbba75fa8a0 1970 signing-party_2.0-1.dsc 110fdd81e99e92ae1e27015105ca4a4d7d0be166 236249 signing-party_2.0.orig.tar.gz 28011013447d79723d30e2e8ffba732d31a29f98 17464 signing-party_2.0-1.debian.tar.xz aa7447596c6e7682388023f1da6326bea7b59706 169512 signing-party_2.0-1_i386.deb Checksums-Sha256: ad7f4fc28823ddec9ca65422a4abe7c2195906d0aae0f19ed2121787714783b6 1970 signing-party_2.0-1.dsc cc23e48b2f06dee7cbf7b80ee4dfbed69908cb4584d3d5fa29ed7b2f962ec16e 236249 signing-party_2.0.orig.tar.gz b39980907139f12d24d749b9c14961ccf22aa61c45197ed1692d430b9ea80b12 17464 signing-party_2.0-1.debian.tar.xz 82d6025834c970f7e9a789f44e5d101836fb83fbc4a839c40d3010f3ee298107 169512 signing-party_2.0-1_i386.deb Files: fa0d1915774a500a7beae2659b8c055d 1970 misc extra signing-party_2.0-1.dsc 2fa1996ebc9374ac96c8da885fbbc438 236249 misc extra signing-party_2.0.orig.tar.gz 54286ff5faeaab55df96a082ec05dbfc 17464 misc extra signing-party_2.0-1.debian.tar.xz 059d9d10382ce28e2a43a856fa2f2b5a 169512 misc extra signing-party_2.0-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCgAGBQJVLVcKAAoJENOaSZw8IaVSd2wP+QF/eCCN7Gwz727sei0aT/Lm vzbza+UUV8Aw7b+8o8uVv/oFDxeYW7XGfmSNwSEX+mLC+7bwNsjUuzO9QxLxHb2K zRP3tk5o/wsjmh2GYIV9/fHO6DdD+U9/pWzTtmrmVN9fZYGjmzDcAeEUkRIw57oN aVh2JIgnow+P9P7Kxh+fKPfYwrb3/Jz6Gm2GCu760d3PdeB6x75ER86Sij+vjxcJ nnFxeZ6DuTeXPs7ZIFW/OG+gtyml/oS8PzsJ/lp6xp2QfuentWne5ZV9dVFczfag J/IC5TplQ6URWlYIgdZK4cJ77lzPHeMBFKaORkMa06qCXmVggCpdOcSyBljKf0bd OMtCJxr0xabR18xU4FxyFGsCertjeMtb3AajKxo8RCaOR8wJhi5LyF0L3MA11KGu ptN4//liLCf261vYBo4FKFE84sGB51x2AzVonBF1sw0bS4gU4mPHojNIdRoMuXBp 2gv7wQD18JPEXBLgSaBTzuzCV5N5pqj9N4vSqBdwHos0PyO/KIWPx18pDcU2Czgl URzONj5x+B5cqT6shoaUEAdnBo5iVU9WEUwP28fPDOWL7NzYKo3ypfqZEjJqf/b9 4gb4p4jo6mzwAPq6AUzCzV9dJdlxS7bcOD7UZdveTbtj6H+ShhGJiAkAMIq4fRx4 w2sUwOmNfyYm3DLUQ0jK =jGWS -----END PGP SIGNATURE-----