Hello community, here is the log from the commit of package signify for openSUSE:Factory checked in at 2019-07-26 12:44:21 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/signify (Old) and /work/SRC/openSUSE:Factory/.signify.new.4126 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "signify" Fri Jul 26 12:44:21 2019 rev:2 rq:718738 version:26 Changes: -------- --- /work/SRC/openSUSE:Factory/signify/signify.changes 2019-06-19 20:58:38.417993982 +0200 +++ /work/SRC/openSUSE:Factory/.signify.new.4126/signify.changes 2019-07-26 12:44:25.665836930 +0200 @@ -1,0 +2,11 @@ +Thu Jul 25 15:27:50 UTC 2019 - Martin Hauke <[email protected]> + +- Update to version 26 + * Provide a definition for the `__dead` marker when using GCC 4+ + or Clang. + * Ensure that the prototype for `asprintf()` gets defined by + system headers. + * Silence (harmless) compiler warnings enabled in more recent + GCC/Clang releases when using `-Wall`. + +------------------------------------------------------------------- Old: ---- v25.tar.gz New: ---- v26.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ signify.spec ++++++ --- /var/tmp/diff_new_pack.M61EMf/_old 2019-07-26 12:44:27.393836122 +0200 +++ /var/tmp/diff_new_pack.M61EMf/_new 2019-07-26 12:44:27.433836104 +0200 @@ -15,8 +15,9 @@ # Please submit bugfixes or comments via https://bugs.opensuse.org/ # + Name: signify -Version: 25 +Version: 26 Release: 0 Summary: OpenBSD tool to sign and verify signatures on files (portable version) License: BSD-3-Clause ++++++ v25.tar.gz -> v26.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/.travis.yml new/signify-26/.travis.yml --- old/signify-25/.travis.yml 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/.travis.yml 2019-07-25 13:28:37.000000000 +0200 @@ -1,7 +1,8 @@ +dist: xenial language: c compiler: - clang - gcc script: - - gpg --keyserver hkp://pgp.mit.edu --recv-keys A4AE57A3 + - gpg --keyserver hkp://pgp.key-server.io:11371/ --recv-keys A4AE57A3 - make BUNDLED_LIBBSD=1 LDLIBS='-lrt' WGET='wget --no-check-certificate' diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/CHANGELOG.md new/signify-26/CHANGELOG.md --- old/signify-25/CHANGELOG.md 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/CHANGELOG.md 2019-07-25 13:28:37.000000000 +0200 @@ -1,6 +1,18 @@ # Change Log All notable changes to this project will be documented in this file. +## [v26] - 2019-07-25 +### Added +- Provide a definition for the `__dead` marker when using GCC 4+ or Clang. + +### Fixed +- Adapted to the new `pledge()` definition in OpenBSD 6.3 and newer. +- Ensure that the prototype for `asprintf()` gets defined by system headers. + +### Changed +- Silence (harmless) compiler warnings enabled in more recent GCC/Clang + releases when using `-Wall`. + ## [v25] - 2019-04-28 ### Added - Updated to the latest upstream sources, the `-z` command line flag can @@ -56,6 +68,7 @@ - Support using versions 0.8.2 and 0.8.3 of libbsd when `BUNDLED_LIBBSD=1` is specified. +[v26]: https://github.com/aperezdc/signify/compare/v25...v26 [v25]: https://github.com/aperezdc/signify/compare/v24...v25 [v24]: https://github.com/aperezdc/signify/compare/v23...v24 [v23]: https://github.com/aperezdc/signify/compare/v22...v23 diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/Makefile new/signify-26/Makefile --- old/signify-25/Makefile 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/Makefile 2019-07-25 13:28:37.000000000 +0200 @@ -192,10 +192,12 @@ O := $(patsubst %.c,%.o,$S) -signify: CFLAGS += $(LIBBSD_CFLAGS) -Wall +signify: override CFLAGS += $(LIBBSD_CFLAGS) -Wall signify: $O $(LIBBSD_DEPS) $(CC) $(LDFLAGS) -o $@ $^ $(LIBBSD_LDFLAGS) $(LDLIBS) +zsig.o signify.o bcrypt_pbkdf.o: override CFLAGS += -Wno-pointer-sign + clean-signify: $(RM) $O signify signify.1.gz sha256hl.c sha512hl.c sha512_256hl.c diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/compat.h new/signify-26/compat.h --- old/signify-25/compat.h 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/compat.h 2019-07-25 13:28:37.000000000 +0200 @@ -17,12 +17,20 @@ #ifndef COMPAT_H #define COMPAT_H +#ifndef _GNU_SOURCE +#define _GNU_SOURCE 1 +#endif /* !_GNU_SOURCE */ + #ifndef COMPAT_BOUNDS_CHECKING #define __bounded__(a, b, c) #endif /* !COMPAT_BOUNDS_CHECKING */ #ifndef __dead +#if defined(__GNUC__) && (__GNUC__ > 3) +#define __dead __attribute__((noreturn)) +#else #define __dead +#endif #endif /* !__dead */ #define DEF_WEAK(x) @@ -33,7 +41,7 @@ #include <stddef.h> extern int timingsafe_bcmp(const void *b1, const void *b2, size_t n); -extern int pledge (const char *promises, const char *paths[]); +extern int pledge (const char *promises, const char *execpromises); extern int bcrypt_pbkdf(const char *pass, size_t passlen, const uint8_t *salt, size_t saltlen, uint8_t *key, size_t keylen, diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/helper.c new/signify-26/helper.c --- old/signify-25/helper.c 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/helper.c 2019-07-25 13:28:37.000000000 +0200 @@ -1,4 +1,4 @@ -/* $OpenBSD: helper.c,v 1.17 2017/10/23 14:33:07 millert Exp $ */ +/* $OpenBSD: helper.c,v 1.18 2019/06/28 13:32:41 deraadt Exp $ */ /* * Copyright (c) 2000 Poul-Henning Kamp <[email protected]> @@ -67,7 +67,7 @@ HASHInit(&ctx); - if ((fd = open(filename, O_RDONLY)) < 0) + if ((fd = open(filename, O_RDONLY)) == -1) return (NULL); if (len == 0) { if (fstat(fd, &sb) == -1) { @@ -78,7 +78,7 @@ } len = sb.st_size; } - if (off > 0 && lseek(fd, off, SEEK_SET) < 0) { + if (off > 0 && lseek(fd, off, SEEK_SET) == -1) { save_errno = errno; close(fd); errno = save_errno; @@ -94,7 +94,7 @@ save_errno = errno; close(fd); errno = save_errno; - return (nr < 0 ? NULL : HASHEnd(&ctx, buf)); + return (nr == -1 ? NULL : HASHEnd(&ctx, buf)); } DEF_WEAK(HASHFileChunk); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/pledge_noop.c new/signify-26/pledge_noop.c --- old/signify-25/pledge_noop.c 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/pledge_noop.c 2019-07-25 13:28:37.000000000 +0200 @@ -15,9 +15,9 @@ */ int -pledge (const char *promises, const char *paths[]) +pledge (const char *promises, const char *execpromises) { (void) promises; - (void) paths; + (void) execpromises; return 0; } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/pledge_waive.c new/signify-26/pledge_waive.c --- old/signify-25/pledge_waive.c 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/pledge_waive.c 2019-07-25 13:28:37.000000000 +0200 @@ -66,7 +66,7 @@ int -pledge (const char *promises, const char *paths[]) +pledge (const char *promises, const char *execpromises) { int flags = WAIVE_INET | WAIVE_UN | WAIVE_PACKET | WAIVE_MOUNT | WAIVE_OPEN | WAIVE_EXEC | WAIVE_CLONE | WAIVE_KILL | @@ -75,6 +75,8 @@ size_t s = 0; size_t e = 0; + (void) execpromises; + for (;;) { while (promises[e] != '\0' && !isspace (promises[e])) e++; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/sha2.c new/signify-26/sha2.c --- old/signify-25/sha2.c 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/sha2.c 2019-07-25 13:28:37.000000000 +0200 @@ -1,4 +1,4 @@ -/* $OpenBSD: sha2.c,v 1.26 2017/05/27 15:32:51 naddy Exp $ */ +/* $OpenBSD: sha2.c,v 1.27 2019/06/07 22:56:36 dtucker Exp $ */ /* * FILE: sha2.c @@ -510,7 +510,7 @@ void SHA256Update(SHA2_CTX *context, const u_int8_t *data, size_t len) { - size_t freespace, usedspace; + u_int64_t freespace, usedspace; /* Calling with no data is valid (we do nothing) */ if (len == 0) @@ -531,7 +531,7 @@ } else { /* The buffer is not yet full */ memcpy(&context->buffer[usedspace], data, len); - context->bitcount[0] += len << 3; + context->bitcount[0] += (u_int64_t)len << 3; /* Clean up: */ usedspace = freespace = 0; return; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/signify.1 new/signify-26/signify.1 --- old/signify-25/signify.1 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/signify.1 2019-07-25 13:28:37.000000000 +0200 @@ -1,4 +1,4 @@ -.\" $OpenBSD: signify.1,v 1.46 2019/03/23 07:10:06 tedu Exp $ +.\" $OpenBSD: signify.1,v 1.47 2019/05/08 17:55:41 tedu Exp $ .\" .\"Copyright (c) 2013 Marc Espie <[email protected]> .\"Copyright (c) 2013 Ted Unangst <[email protected]> @@ -14,7 +14,7 @@ .\"WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN .\"ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF .\"OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. -.Dd $Mdocdate: March 23 2019 $ +.Dd $Mdocdate: May 8 2019 $ .Dt SIGNIFY 1 .Os .Sh NAME @@ -191,7 +191,8 @@ .Xr fw_update 1 , .Xr gzip 1 , .Xr pkg_add 1 , -.Xr sha256 1 +.Xr sha256 1 , +.Xr sysupgrade 8 .Sh HISTORY The .Nm diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/signify-25/signify.c new/signify-26/signify.c --- old/signify-25/signify.c 2019-04-28 16:04:10.000000000 +0200 +++ new/signify-26/signify.c 2019-07-25 13:28:37.000000000 +0200 @@ -1,4 +1,4 @@ -/* $OpenBSD: signify.c,v 1.131 2019/03/23 07:10:06 tedu Exp $ */ +/* $OpenBSD: signify.c,v 1.132 2019/07/03 03:24:02 deraadt Exp $ */ /* * Copyright (c) 2013 Ted Unangst <[email protected]> * @@ -333,7 +333,7 @@ explicit_bzero(xorkey, sizeof(xorkey)); nr = snprintf(commentbuf, sizeof(commentbuf), "%s secret key", comment); - if (nr == -1 || nr >= sizeof(commentbuf)) + if (nr < 0 || nr >= sizeof(commentbuf)) errx(1, "comment too long"); writekeyfile(seckeyfile, commentbuf, &enckey, sizeof(enckey), O_EXCL, 0600); @@ -342,7 +342,7 @@ memcpy(pubkey.pkalg, PKALG, 2); memcpy(pubkey.keynum, keynum, KEYNUMLEN); nr = snprintf(commentbuf, sizeof(commentbuf), "%s public key", comment); - if (nr == -1 || nr >= sizeof(commentbuf)) + if (nr < 0 || nr >= sizeof(commentbuf)) errx(1, "comment too long"); writekeyfile(pubkeyfile, commentbuf, &pubkey, sizeof(pubkey), O_EXCL, 0666); @@ -406,7 +406,7 @@ nr = snprintf(sigcomment, sizeof(sigcomment), VERIFYWITH "%.*s.pub", (int)strlen(keyname) - 4, keyname); } - if (nr == -1 || nr >= sizeof(sigcomment)) + if (nr < 0 || nr >= sizeof(sigcomment)) errx(1, "comment too long"); if (memcmp(enckey.kdfalg, KDFALG, 2) != 0) @@ -861,7 +861,7 @@ usage("must specify sigfile with - message"); nr = snprintf(sigfilebuf, sizeof(sigfilebuf), "%s.sig", msgfile); - if (nr == -1 || nr >= sizeof(sigfilebuf)) + if (nr < 0 || nr >= sizeof(sigfilebuf)) errx(1, "path too long"); sigfile = sigfilebuf; }
