Hello community, here is the log from the commit of package whois for openSUSE:Factory checked in at 2013-07-12 20:58:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/whois (Old) and /work/SRC/openSUSE:Factory/.whois.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "whois" Changes: -------- --- /work/SRC/openSUSE:Factory/whois/whois.changes 2013-07-09 21:16:43.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.whois.new/whois.changes 2013-07-12 20:58:51.000000000 +0200 @@ -1,0 +2,5 @@ +Tue Jul 9 19:41:26 UTC 2013 - [email protected] + +- verify source signatures + +------------------------------------------------------------------- New: ---- whois.asc whois.keyring ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ whois.spec ++++++ --- /var/tmp/diff_new_pack.wYv5ab/_old 2013-07-12 20:58:52.000000000 +0200 +++ /var/tmp/diff_new_pack.wYv5ab/_new 2013-07-12 20:58:52.000000000 +0200 @@ -24,12 +24,18 @@ Group: Productivity/Networking/Other Url: http://www.linux.it/~md/software/ Source: http://ftp.debian.org/debian/pool/main/w/whois/%{name}_%{version}.tar.xz +Source2: http://db.debian.org/fetchkey.cgi?fingerprint=1F2232EEE56FD048EAEFE47F1467F0D8E1EE3FB1#/%{name}.keyring +# rename .dsc to not build the package in OBS +Source3: http://ftp.debian.org/debian/pool/main/w/whois/%{name}_%{version}.dsc#/%{name}.asc Patch1: whois-5.0.25-nb.patch BuildRequires: libidn-devel BuildRequires: xz %if 0%{?suse_version} <= 1140 BuildRequires: libxcrypt-devel %endif +%if 0%{?suse_version} >= 1230 +BuildRequires: gpg-offline +%endif Provides: ripe-whois-tools BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -43,7 +49,13 @@ password encryption function crypt(3). %prep -%setup -q -n whois-%{version} +%{?gpg_verify: %gpg_verify %{S:3}} +# the signature is on the Debian .dsc. Extract the checksums and verify against source +echo "`grep -A1 "Files:" %{S:3} | grep %{name}_%{version}.tar.xz | cut -d\ -f2` %{S:0}" | md5sum -c +echo "`grep -A1 "Checksums-Sha1" %{S:3} | grep %{name}_%{version}.tar.xz | cut -d\ -f2` %{S:0}" | sha1sum -c +echo "`grep -A1 "Checksums-Sha256" %{S:3} | grep %{name}_%{version}.tar.xz | cut -d\ -f2` %{S:0}" | sha256sum -c + +%setup -q %patch1 -p1 rename no nb po/no.* ++++++ whois.asc ++++++ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 3.0 (native) Source: whois Binary: whois Architecture: any Version: 5.0.25 Maintainer: Marco d'Itri <[email protected]> Standards-Version: 3.9.4 Vcs-Browser: https://github.com/rfc1036/whois Vcs-Git: git://github.com/rfc1036/whois.git Build-Depends: debhelper (>= 5), gettext, libidn11-dev Package-List: whois deb net standard Checksums-Sha1: fd126aa741c89518f6f60c5993250ed26aba6f03 72540 whois_5.0.25.tar.xz Checksums-Sha256: 1207bea7bcc6241554c496608a834e4b3cc1ef4bc1ad5f161be999c6772a6861 72540 whois_5.0.25.tar.xz Files: 8f873c1c51592ee419b2a46b0a3c8432 72540 whois_5.0.25.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlGMZ84ACgkQFGfw2OHuP7G46wCeOxXxHS3s9ZpiBBr8osDul9Ip RigAnj3jbrRw7TnrBWd82/QxyXRwZH3t =eaA3 -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
