diff options
author | Noel Kuntze | 2017-01-07 16:15:44 +0100 |
---|---|---|
committer | Noel Kuntze | 2017-01-07 16:15:44 +0100 |
commit | a4ad00b9b70692988cd6d722fd1083680631de05 (patch) | |
tree | 7639b26e841074ad0c439ff9d8d14af9cc0d69e3 | |
parent | 8179d2c923e1222089fb22a5875ee812bd6de781 (diff) | |
download | aur-a4ad00b9b70692988cd6d722fd1083680631de05.tar.gz |
use GPG to authenticate the upstream archive
-rw-r--r-- | .SRCINFO | 6 | ||||
-rw-r--r-- | PKGBUILD | 6 |
2 files changed, 9 insertions, 3 deletions
@@ -1,9 +1,9 @@ # Generated by mksrcinfo v8 -# Thu Oct 27 20:55:39 UTC 2016 +# Sat Jan 7 15:11:44 UTC 2017 pkgbase = strongswan pkgdesc = open source IPsec implementation pkgver = 5.5.1 - pkgrel = 2 + pkgrel = 3 url = http://www.strongswan.org arch = i686 arch = x86_64 @@ -103,8 +103,10 @@ pkgbase = strongswan backup = etc/strongswan.d/charon/xcbc.conf backup = etc/strongswan.d/charon/unity.conf source = https://download.strongswan.org/strongswan-5.5.1.tar.bz2 + source = https://download.strongswan.org/strongswan-5.5.1.tar.bz2.sig source = configure_ac.patch sha256sums = 720b301991f77bdedd8d551a956f52e2d11686a0ec18e832094f86cf2b842ab7 + sha256sums = SKIP sha256sums = 003750d77fa501075f1fdb6f55926dc544407c5dd26e2fd8d5eb4917ddf0b3f7 pkgname = strongswan @@ -10,7 +10,7 @@ pkgname=strongswan pkgver=5.5.1 -pkgrel=2 +pkgrel=3 pkgdesc="open source IPsec implementation" url='http://www.strongswan.org' license=("GPL") @@ -37,12 +37,16 @@ vici.conf,x509.conf,xauth-eap.conf,xauth-generic.conf,xcbc.conf,unity.conf} ) source=("https://download.strongswan.org/strongswan-${pkgver}.tar.bz2" + "https://download.strongswan.org/strongswan-${pkgver}.tar.bz2.sig" "configure_ac.patch" ) +validpgpkeys=("948F158A4E76A27BF3D07532DF42C170B34DBA77") + # md5 is broken. We use sha256 now. Alternatively, we could check the signature of the file, but that # doesn't yield any more security and just increases the work users initially have to invest. sha256sums=('720b301991f77bdedd8d551a956f52e2d11686a0ec18e832094f86cf2b842ab7' + 'SKIP' '003750d77fa501075f1fdb6f55926dc544407c5dd26e2fd8d5eb4917ddf0b3f7') # We don't build libipsec because it would get loaded before kernel-netlink and netkey, which |