[kde-freebsd] Fwd: [PATCH]GPGME 1.2.0 will break crypto in kdepim (Re: ports/135911: [MAINTAINER] security/gpgme: Update to version 1.2.0)

Jason E. Hale bsdkaffee at gmail.com
Thu Jul 2 12:57:15 CEST 2009 

On Wednesday 01 July 2009 11:07:04 Wesley Shields wrote:
> Does anyone care to comment on this? If the below text is applicable to
> FreeBSD I'd like to know so I can hold off on this update until fixes
> are in place. I'd hate to commit this after silence from the lists and
> then find out that things are broken.
>
> -- WXS
>

After seeing the problem with KDE, I went through the source code of the rest 
of the ports that use gpgme.  The problem is that the new version of gpgme 
requires that gpgme_check_version() is called before gpgme_new().  I have 
identified several other ports that do not do this and I have developed 
patches for them.  They are as follows:

deskutils/kdepim3 (based on official patch)
deskutils/kdepim4 (based on official patch)
deskutils/kdepimlibs4 (based on official patch)
devel/bazaar
finance/qhacc
mail/mutt-devel
net-im/ayttm
net-im/centericq
net-im/centerim
net-im/centerim-devel
security/openvas-libnasl

I run tested deskutils/kdepim4 with deskutils/kdepimlibs4, finance/qhacc, net-
im/ayttm, and net-im/centerim.  The others are a little impractical for me to 
test right now; perhaps their maintainers can test them (maintainers CC'd).

- Jason

> On Fri, Jun 26, 2009 at 11:53:17AM -0400, Wesley Shields wrote:
> > I have a PR[1] I'm about to start working on that will update gpgme to
> > 1.2.0 which, according to the email below, will break some things for
> > KDE (and I'm now curious if it will break anything in GNOME).
> >
> > I don't want to break anything with this update so I'm hoping to get
> > confirmation that this won't cause an issue if I commit it.
> >
> > -- WXS
> >
> > [1]: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/135911
> >
> > On Fri, Jun 26, 2009 at 01:54:46PM +0400, Max Brazhnikov wrote:
> > > FYI,
> > > other ports may be affected also
> > >
> > > Max
> > >
> > > ----------  Forwarded Message  ----------
> > >
> > > ????????: [PATCH]GPGME 1.2.0 will break crypto in kdepim
> > > ????????: Fri, 26 Jun 2009 11:35:41 +0200
> > > ??????????????????????: Thomas McGuire <mcguire at kde.org>
> > > ????????????????????:  kde-packager at kde.org
> > >
> > > Hello Packagers,
> > >
> > > GPGME introduced an incompatible change that will break all crypto
> > > operations in KDEPIM, which means signing, verifying, encrypting and
> > > decrypting will not work anymore in KMail and Kleopatra. Instead, you
> > > would see a bogus error message saying something like "the backend does
> > > not support
> > > signing/encryption/verification/decryption".
> > >
> > > See bug 197458 for further details,
> > > https://bugs.kde.org/show_bug.cgi?id=197458.
> > >
> > > All KDE version are affected, including 4.3.0 RC 1. 4.3.0 Final is not
> > > affected.
> > > Note that we are not 100% certain that KDE 3 versions are affected, but
> > > is is better to play safe here.
> > > We have patched the 4.1 branch, the 4.2 branch, the 4.3 branch, the 3.5
> > > branch and the enterprise35 of kdepim and kdepimlibs (kdepimlibs: KDE
> > > 4.x only).
> > >
> > > So please do one of the following:
> > >
> > > a) Do not update your GPGME package to 1.2.0
> > > b) If you update, update your KDEPIM and KDEPIMLIBS packages as well
> > >
> > > Although we have patched all branches, I attached the patches to this
> > > mail as well for your convenience.
> > >
> > > Also, in case you need this, here are the revision numbers of the
> > > commits that fixed the issues in the various branches:
> > > KDE 3.5.x: 986745,987046
> > > KDE 4.1.x: 986493,986500,986474,986477,986990
> > > KDE 4.2.x: 986648,986650,986645,986647
> > > KDE 4.3.x: 986635,986638,986619,986622
> > > enterprise35: 986754,987480
> > >
> > > The attached patches are made from exactly the above revisions.
> > >
> > > Thanks for your help.
> > >
> > > Regards,
> > > Thomas McGuire
> > > KMail Maintainer
> > >
> > > -------------------------------------------------------


-------------- next part --------------
A non-text attachment was scrubbed...
Name: deskutils.kdepim3.patch
Type: text/x-patch
Size: 3064 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: finance.qhacc.patch
Type: text/x-patch
Size: 774 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0001.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: deskutils.kdepim4.patch
Type: text/x-patch
Size: 1546 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0002.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: deskutils.kdepimlibs4.patch
Type: text/x-patch
Size: 2026 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0003.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: devel.bazaar.patch
Type: text/x-patch
Size: 723 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0004.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mail.mutt-devel.patch
Type: text/x-patch
Size: 584 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0005.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: net-im.centericq.patch
Type: text/x-patch
Size: 520 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0006.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: net-im.ayttm.patch
Type: text/x-patch
Size: 646 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0007.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: net-im.centerim-devel.patch
Type: text/x-patch
Size: 544 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0008.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: net-im.centerim.patch
Type: text/x-patch
Size: 520 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0009.patch 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: security.openvas-libnasl.patch
Type: text/x-patch
Size: 682 bytes
Desc: not available
Url : http://mail.kde.org/pipermail/kde-freebsd/attachments/20090702/d8dc3c4c/attachment-0010.patch

More information about the kde-freebsd mailing list