Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package git-crypt for openSUSE:Factory checked in at 2025-09-29 16:31:47 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/git-crypt (Old) and /work/SRC/openSUSE:Factory/.git-crypt.new.11973 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "git-crypt" Mon Sep 29 16:31:47 2025 rev:4 rq:1307430 version:0.8.0 Changes: -------- --- /work/SRC/openSUSE:Factory/git-crypt/git-crypt.changes 2023-02-16 16:56:48.178928712 +0100 +++ /work/SRC/openSUSE:Factory/.git-crypt.new.11973/git-crypt.changes 2025-09-29 16:33:28.641560835 +0200 @@ -1,0 +2,7 @@ +Fri Sep 26 19:36:59 UTC 2025 - Adam Mizerski <[email protected]> + +- update to 0.8.0 + - Remove OpenSSL 1.0 support, fix compilation with OpenSSL 3. + - Avoid use of problematic short GPG key IDs. + +------------------------------------------------------------------- Old: ---- git-crypt-0.7.0.tar.gz New: ---- git-crypt-0.8.0.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ git-crypt.spec ++++++ --- /var/tmp/diff_new_pack.Sp5Ezx/_old 2025-09-29 16:33:29.185583633 +0200 +++ /var/tmp/diff_new_pack.Sp5Ezx/_new 2025-09-29 16:33:29.185583633 +0200 @@ -1,7 +1,7 @@ # # spec file for package git-crypt # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2025 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: git-crypt -Version: 0.7.0 +Version: 0.8.0 Release: 0 Summary: Transparent file encryption in git License: GPL-3.0-or-later @@ -45,12 +45,6 @@ %setup -q %build -CXXFLAGS="-std=c++11 %{optflags}" -# https://github.com/AGWA/git-crypt/issues/232 -%if %{pkg_version_cmp libopenssl-devel 3} != -1 -CXXFLAGS="${CXXFLAGS} -DOPENSSL_API_COMPAT=0x30000000L" -%endif -export CXXFLAGS make %{?_smp_mflags} \ ENABLE_MAN=yes ++++++ git-crypt-0.7.0.tar.gz -> git-crypt-0.8.0.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/Makefile new/git-crypt-0.8.0/Makefile --- old/git-crypt-0.7.0/Makefile 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/Makefile 2025-09-24 02:41:07.000000000 +0200 @@ -24,7 +24,7 @@ coprocess.o \ fhstream.o -OBJFILES += crypto-openssl-10.o crypto-openssl-11.o +OBJFILES += crypto-openssl-11.o LDFLAGS += -lcrypto XSLTPROC ?= xsltproc diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/NEWS new/git-crypt-0.8.0/NEWS --- old/git-crypt-0.7.0/NEWS 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/NEWS 2025-09-24 02:41:07.000000000 +0200 @@ -1,3 +1,7 @@ +v0.8.0 (2025-09-23) + * Remove OpenSSL 1.0 support, fix compilation with OpenSSL 3. + * Avoid use of problematic short GPG key IDs. + v0.7.0 (2022-04-21) * Avoid "argument list too long" errors on macOS. * Fix handling of "-" arguments. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/NEWS.md new/git-crypt-0.8.0/NEWS.md --- old/git-crypt-0.7.0/NEWS.md 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/NEWS.md 2025-09-24 02:41:07.000000000 +0200 @@ -1,6 +1,10 @@ News ==== +######v0.8.0 (2025-09-23) +* Remove OpenSSL 1.0 support, fix compilation with OpenSSL 3. +* Avoid use of problematic short GPG key IDs. + ######v0.7.0 (2022-04-21) * Avoid "argument list too long" errors on macOS. * Fix handling of "-" arguments. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/README new/git-crypt-0.8.0/README --- old/git-crypt-0.7.0/README 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/README 2025-09-24 02:41:07.000000000 +0200 @@ -70,7 +70,7 @@ CURRENT STATUS -The latest version of git-crypt is 0.7.0, released on 2022-04-21. +The latest version of git-crypt is 0.8.0, released on 2025-09-23. git-crypt aims to be bug-free and reliable, meaning it shouldn't crash, malfunction, or expose your confidential data. However, it has not yet reached maturity, meaning it is not as documented, diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/README.md new/git-crypt-0.8.0/README.md --- old/git-crypt-0.7.0/README.md 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/README.md 2025-09-24 02:41:07.000000000 +0200 @@ -71,8 +71,8 @@ Current Status -------------- -The latest version of git-crypt is [0.7.0](NEWS.md), released on -2022-04-21. git-crypt aims to be bug-free and reliable, meaning it +The latest version of git-crypt is [0.8.0](NEWS.md), released on +2025-09-23. git-crypt aims to be bug-free and reliable, meaning it shouldn't crash, malfunction, or expose your confidential data. However, it has not yet reached maturity, meaning it is not as documented, featureful, or easy-to-use as it should be. Additionally, diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/commands.cpp new/git-crypt-0.8.0/commands.cpp --- old/git-crypt-0.7.0/commands.cpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/commands.cpp 2025-09-24 02:41:07.000000000 +0200 @@ -1297,7 +1297,8 @@ std::ostringstream commit_message_builder; commit_message_builder << "Add " << collab_keys.size() << " git-crypt collaborator" << (collab_keys.size() != 1 ? "s" : "") << "\n\nNew collaborators:\n\n"; for (std::vector<std::pair<std::string, bool> >::const_iterator collab(collab_keys.begin()); collab != collab_keys.end(); ++collab) { - commit_message_builder << '\t' << gpg_shorten_fingerprint(collab->first) << ' ' << gpg_get_uid(collab->first) << '\n'; + commit_message_builder << " " << collab->first << '\n'; + commit_message_builder << " " << gpg_get_uid(collab->first) << '\n'; } // git commit -m MESSAGE NEW_FILE ... diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/crypto-openssl-10.cpp new/git-crypt-0.8.0/crypto-openssl-10.cpp --- old/git-crypt-0.7.0/crypto-openssl-10.cpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/crypto-openssl-10.cpp 1970-01-01 01:00:00.000000000 +0100 @@ -1,120 +0,0 @@ -/* - * Copyright 2012, 2014 Andrew Ayer - * - * This file is part of git-crypt. - * - * git-crypt is free software: you can redistribute it and/or modify - * it under the terms of the GNU General Public License as published by - * the Free Software Foundation, either version 3 of the License, or - * (at your option) any later version. - * - * git-crypt is distributed in the hope that it will be useful, - * but WITHOUT ANY WARRANTY; without even the implied warranty of - * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the - * GNU General Public License for more details. - * - * You should have received a copy of the GNU General Public License - * along with git-crypt. If not, see <http://www.gnu.org/licenses/>. - * - * Additional permission under GNU GPL version 3 section 7: - * - * If you modify the Program, or any covered work, by linking or - * combining it with the OpenSSL project's OpenSSL library (or a - * modified version of that library), containing parts covered by the - * terms of the OpenSSL or SSLeay licenses, the licensors of the Program - * grant you additional permission to convey the resulting work. - * Corresponding Source for a non-source form of such a combination - * shall include the source code for the parts of OpenSSL used as well - * as that of the covered work. - */ - -#include <openssl/opensslconf.h> - -#if !defined(OPENSSL_API_COMPAT) - -#include "crypto.hpp" -#include "key.hpp" -#include "util.hpp" -#include <openssl/aes.h> -#include <openssl/sha.h> -#include <openssl/hmac.h> -#include <openssl/evp.h> -#include <openssl/rand.h> -#include <openssl/err.h> -#include <sstream> -#include <cstring> - -void init_crypto () -{ - ERR_load_crypto_strings(); -} - -struct Aes_ecb_encryptor::Aes_impl { - AES_KEY key; -}; - -Aes_ecb_encryptor::Aes_ecb_encryptor (const unsigned char* raw_key) -: impl(new Aes_impl) -{ - if (AES_set_encrypt_key(raw_key, KEY_LEN * 8, &(impl->key)) != 0) { - throw Crypto_error("Aes_ctr_encryptor::Aes_ctr_encryptor", "AES_set_encrypt_key failed"); - } -} - -Aes_ecb_encryptor::~Aes_ecb_encryptor () -{ - // Note: Explicit destructor necessary because class contains an unique_ptr - // which contains an incomplete type when the unique_ptr is declared. - - explicit_memset(&impl->key, '\0', sizeof(impl->key)); -} - -void Aes_ecb_encryptor::encrypt(const unsigned char* plain, unsigned char* cipher) -{ - AES_encrypt(plain, cipher, &(impl->key)); -} - -struct Hmac_sha1_state::Hmac_impl { - HMAC_CTX ctx; -}; - -Hmac_sha1_state::Hmac_sha1_state (const unsigned char* key, size_t key_len) -: impl(new Hmac_impl) -{ - HMAC_Init(&(impl->ctx), key, key_len, EVP_sha1()); -} - -Hmac_sha1_state::~Hmac_sha1_state () -{ - // Note: Explicit destructor necessary because class contains an unique_ptr - // which contains an incomplete type when the unique_ptr is declared. - - HMAC_cleanup(&(impl->ctx)); -} - -void Hmac_sha1_state::add (const unsigned char* buffer, size_t buffer_len) -{ - HMAC_Update(&(impl->ctx), buffer, buffer_len); -} - -void Hmac_sha1_state::get (unsigned char* digest) -{ - unsigned int len; - HMAC_Final(&(impl->ctx), digest, &len); -} - - -void random_bytes (unsigned char* buffer, size_t len) -{ - if (RAND_bytes(buffer, len) != 1) { - std::ostringstream message; - while (unsigned long code = ERR_get_error()) { - char error_string[120]; - ERR_error_string_n(code, error_string, sizeof(error_string)); - message << "OpenSSL Error: " << error_string << "; "; - } - throw Crypto_error("random_bytes", message.str()); - } -} - -#endif diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/crypto-openssl-11.cpp new/git-crypt-0.8.0/crypto-openssl-11.cpp --- old/git-crypt-0.7.0/crypto-openssl-11.cpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/crypto-openssl-11.cpp 2025-09-24 02:41:07.000000000 +0200 @@ -30,8 +30,6 @@ #include <openssl/opensslconf.h> -#if defined(OPENSSL_API_COMPAT) - #include "crypto.hpp" #include "key.hpp" #include "util.hpp" @@ -115,5 +113,3 @@ throw Crypto_error("random_bytes", message.str()); } } - -#endif diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/git-crypt.hpp new/git-crypt-0.8.0/git-crypt.hpp --- old/git-crypt-0.7.0/git-crypt.hpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/git-crypt.hpp 2025-09-24 02:41:07.000000000 +0200 @@ -31,7 +31,7 @@ #ifndef GIT_CRYPT_GIT_CRYPT_HPP #define GIT_CRYPT_GIT_CRYPT_HPP -#define VERSION "0.7.0" +#define VERSION "0.8.0" extern const char* argv0; // initialized in main() to argv[0] diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/gpg.cpp new/git-crypt-0.8.0/gpg.cpp --- old/git-crypt-0.7.0/gpg.cpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/gpg.cpp 2025-09-24 02:41:07.000000000 +0200 @@ -61,12 +61,6 @@ line.substr(pos); } -// given a key fingerprint, return the last 8 nibbles -std::string gpg_shorten_fingerprint (const std::string& fingerprint) -{ - return fingerprint.size() == 40 ? fingerprint.substr(32) : fingerprint; -} - // given a key fingerprint, return the key's UID (e.g. "John Smith <[email protected]>") std::string gpg_get_uid (const std::string& fingerprint) { diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/gpg.hpp new/git-crypt-0.8.0/gpg.hpp --- old/git-crypt-0.7.0/gpg.hpp 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/gpg.hpp 2025-09-24 02:41:07.000000000 +0200 @@ -41,7 +41,6 @@ explicit Gpg_error (std::string m) : message(m) { } }; -std::string gpg_shorten_fingerprint (const std::string& fingerprint); std::string gpg_get_uid (const std::string& fingerprint); std::vector<std::string> gpg_lookup_key (const std::string& query); std::vector<std::string> gpg_list_secret_keys (); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/git-crypt-0.7.0/man/git-crypt.xml new/git-crypt-0.8.0/man/git-crypt.xml --- old/git-crypt-0.7.0/man/git-crypt.xml 2022-04-21 19:08:16.000000000 +0200 +++ new/git-crypt-0.8.0/man/git-crypt.xml 2025-09-24 02:41:07.000000000 +0200 @@ -8,7 +8,7 @@ <refentryinfo> <title>git-crypt</title> <date>2022-04-21</date> - <productname>git-crypt 0.7.0</productname> + <productname>git-crypt 0.8.0</productname> <author> <othername>Andrew Ayer</othername>
