commit rpm for openSUSE:Factory

Wed, 05 Feb 2025 03:39:52 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package rpm for openSUSE:Factory checked in 
at 2025-02-05 12:39:26
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/rpm (Old)
 and      /work/SRC/openSUSE:Factory/.rpm.new.2316 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "rpm"

Wed Feb  5 12:39:26 2025 rev:318 rq:1242814 version:4.20.0

Changes:
--------
--- /work/SRC/openSUSE:Factory/rpm/rpm.changes  2025-01-31 16:01:58.782019383 
+0100
+++ /work/SRC/openSUSE:Factory/.rpm.new.2316/rpm.changes        2025-02-05 
12:39:28.934213575 +0100
@@ -1,0 +2,6 @@
+Mon Feb  3 13:13:27 CET 2025 - m...@suse.de
+
+- allow to have the primary binding signature in the unhashed area
+  * updated rpmpgp_legacy-1.0.tar.gz to rpmpgp_legacy-1.1.tar.gz
+
+-------------------------------------------------------------------

Old:
----
  rpmpgp_legacy-1.0.tar.gz

New:
----
  rpmpgp_legacy-1.1.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ rpm.spec ++++++
--- /var/tmp/diff_new_pack.H3sqTU/_old  2025-02-05 12:39:30.654284562 +0100
+++ /var/tmp/diff_new_pack.H3sqTU/_new  2025-02-05 12:39:30.654284562 +0100
@@ -64,7 +64,7 @@
 #Git-Clone:     https://github.com/rpm-software-management/rpm
 Source:         
https://ftp.osuosl.org/pub/rpm/releases/rpm-4.19.x/rpm-%{version}.tar.bz2
 #Git-Clone:     https://github.com/rpm-software-management/rpmpgp_legacy
-Source1:        rpmpgp_legacy-1.0.tar.gz
+Source1:        rpmpgp_legacy-1.1.tar.gz
 Source5:        rpmsort
 Source8:        rpmconfigcheck
 Source9:        sysconfig.services-rpm

++++++ rpmpgp_legacy-1.0.tar.gz -> rpmpgp_legacy-1.1.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/rpmpgp_legacy-1.0/rpmpgp_internal.c 
new/rpmpgp_legacy-1.1/rpmpgp_internal.c
--- old/rpmpgp_legacy-1.0/rpmpgp_internal.c     2024-05-21 12:47:46.000000000 
+0200
+++ new/rpmpgp_legacy-1.1/rpmpgp_internal.c     2025-02-03 13:11:16.000000000 
+0100
@@ -530,8 +530,6 @@
            break;
 
        case PGPSUBTYPE_EMBEDDED_SIG:
-           if (!hashed)
-               break;  /* Subpackets in the unhashed section cannot be trusted 
*/
            if (_digp->sigtype != PGPSIGTYPE_SUBKEY_BINDING)
                break;  /* do not bother for other types */
            if (plen - 1 < 6)

Reply via email to