summarylogtreecommitdiffstats
diff options
context:
space:
mode:
authorNoel Kuntze2017-01-07 16:15:44 +0100
committerNoel Kuntze2017-01-07 16:15:44 +0100
commita4ad00b9b70692988cd6d722fd1083680631de05 (patch)
tree7639b26e841074ad0c439ff9d8d14af9cc0d69e3
parent8179d2c923e1222089fb22a5875ee812bd6de781 (diff)
downloadaur-a4ad00b9b70692988cd6d722fd1083680631de05.tar.gz
use GPG to authenticate the upstream archive
Diffstat
-rw-r--r--.SRCINFO6
-rw-r--r--PKGBUILD6
2 files changed, 9 insertions, 3 deletions
diff --git a/.SRCINFO b/.SRCINFO
index c9f63518d1b7..f8d5695922cb 100644
--- a/.SRCINFO
+++ b/.SRCINFO
@@ -1,9 +1,9 @@
# Generated by mksrcinfo v8
-# Thu Oct 27 20:55:39 UTC 2016
+# Sat Jan 7 15:11:44 UTC 2017
pkgbase = strongswan
pkgdesc = open source IPsec implementation
pkgver = 5.5.1
- pkgrel = 2
+ pkgrel = 3
url = http://www.strongswan.org
arch = i686
arch = x86_64
@@ -103,8 +103,10 @@ pkgbase = strongswan
backup = etc/strongswan.d/charon/xcbc.conf
backup = etc/strongswan.d/charon/unity.conf
source = https://download.strongswan.org/strongswan-5.5.1.tar.bz2
+ source = https://download.strongswan.org/strongswan-5.5.1.tar.bz2.sig
source = configure_ac.patch
sha256sums = 720b301991f77bdedd8d551a956f52e2d11686a0ec18e832094f86cf2b842ab7
+ sha256sums = SKIP
sha256sums = 003750d77fa501075f1fdb6f55926dc544407c5dd26e2fd8d5eb4917ddf0b3f7
pkgname = strongswan
diff --git a/PKGBUILD b/PKGBUILD
index 48cee52d4b43..ccf0ad194a60 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -10,7 +10,7 @@
pkgname=strongswan
pkgver=5.5.1
-pkgrel=2
+pkgrel=3
pkgdesc="open source IPsec implementation"
url='http://www.strongswan.org'
license=("GPL")
@@ -37,12 +37,16 @@ vici.conf,x509.conf,xauth-eap.conf,xauth-generic.conf,xcbc.conf,unity.conf}
)
source=("https://download.strongswan.org/strongswan-${pkgver}.tar.bz2"
+ "https://download.strongswan.org/strongswan-${pkgver}.tar.bz2.sig"
"configure_ac.patch"
)
+validpgpkeys=("948F158A4E76A27BF3D07532DF42C170B34DBA77")
+
# md5 is broken. We use sha256 now. Alternatively, we could check the signature of the file, but that
# doesn't yield any more security and just increases the work users initially have to invest.
sha256sums=('720b301991f77bdedd8d551a956f52e2d11686a0ec18e832094f86cf2b842ab7'
+ 'SKIP'
'003750d77fa501075f1fdb6f55926dc544407c5dd26e2fd8d5eb4917ddf0b3f7')
# We don't build libipsec because it would get loaded before kernel-netlink and netkey, which