Bug#862398: [pkg-gnupg-maint] Bug#862398: build wks client and server tools
Hi Stefan-- On Thu 2017-05-18 18:37:04 +0200, Stefan Bühler wrote: > There are a lot of manpages in debian/* - so it looks to me like > upstream isn't really interested in maintaining them. If upstream isn't > maintaining them, it might be easier to keep them in debian. these are specific to the debian package: migrate-pubring-from-classic-gpg.1 gpgv-static.1 but these should probably be upstreamed, you're right (unless we want to drop some of these tools): gpg-check-pattern.1 gpgsplit.1 gpg-zip.1 kbxutil.1 lspgpot.1 > Does upstream know about these at least? I'm not against getting them > upstream, I'm just not sure whether it is worth my time. that makes sense -- whose time is it worth? :) at some point Someone™ will need to push them all upstream. But i wouldn't want that to block your contributions here. I'll take a look at importing your patches, the latest round looks pretty reasonable. thanks for persevering! --dkg signature.asc Description: PGP signature
Bug#862398: [pkg-gnupg-maint] Bug#862398: build wks client and server tools
Hi dkg,
On 05/15/2017 10:04 PM, Daniel Kahn Gillmor wrote:
> Hi Stefan--
>
> On Fri 2017-05-12 12:37:03 +0200, Stefan Bühler wrote:
>> it would be nice to build and have packages for the gpg-wks-* tools.
>>
>> It seems there was already done some work in
>>
>> https://anonscm.debian.org/git/pkg-gnupg/gnupg2.git/log/?h=dev/wks
>>
>> I rebased that commit to the experimental branch,
>
> thanks for this work!
>
>> modified some texts and added man pages.
>
> It'd be great to get these manpages upstream.
There are a lot of manpages in debian/* - so it looks to me like
upstream isn't really interested in maintaining them. If upstream isn't
maintaining them, it might be easier to keep them in debian.
Does upstream know about these at least? I'm not against getting them
upstream, I'm just not sure whether it is worth my time.
>> Upstream install gpg-wks-client to /usr/lib/gnupg/, but I moved it in
>> the package to /usr/bin - I get that it was designed to be a backend
>> tool for MUAs, but right now I guess most people installing it will have
>> to use it manually.
>
> I'm not so sure about diverging from upstream in our first introduction
> of these tools in debian. If we do this, we're effectively committing
> to this divergence forever (someone's going to write scripts that use
> /usr/bin/gpg-wks-* and then get upset when we change it). and it means
> that anyone who writes docs will have to have a different "how to do
> this on debian" section from "how to do this on fedora" or whatever.
>
> would you object to using your packaging but shipping in the
> upstream-approved location? or is it worth convincing upstream to ship
> these tools in /usr/bin instead?
I don't have any other (convincing) arguments, so I reverted the
location to the upstream path.
Now that I actually got it running I added some more infos to the
manpages too.
See attached updated patches, as previously my own changes in:
0001-wks-fix-debian-provide-man-pages-improve-texts.patch
The complete patch (squashed with the dev/wks commit) is:
0001-create-WKS-server-and-client-packages.patch
cheers,
Stefan
From 30dd3225cbbc9e408645b2be17e434dfb87a8daa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sandro=20Knau=C3=9F?=
Date: Thu, 27 Oct 2016 19:16:14 +0200
Subject: [PATCH 1/1] Create WKS server and client packages
---
debian/control | 45 ++
debian/gnupg-wks-client.install | 1 +
debian/gnupg-wks-client.manpages | 1 +
debian/gnupg-wks-server.install | 1 +
debian/gnupg-wks-server.manpages | 1 +
debian/gpg-wks-client.1 | 178 ++
debian/gpg-wks-server.1 | 180 +++
debian/rules | 1 +
8 files changed, 408 insertions(+)
create mode 100644 debian/gnupg-wks-client.install
create mode 100644 debian/gnupg-wks-client.manpages
create mode 100644 debian/gnupg-wks-server.install
create mode 100644 debian/gnupg-wks-server.manpages
create mode 100644 debian/gpg-wks-client.1
create mode 100644 debian/gpg-wks-server.1
diff --git a/debian/control b/debian/control
index ac0b07907..2b9360477 100644
--- a/debian/control
+++ b/debian/control
@@ -72,6 +72,51 @@ Description: GNU privacy guard - cryptographic agent
provides a passphrase cache, which is used by pre-2.1 versions of
GnuPG for OpenPGP operations.
+Package: gnupg-wks-server
+Architecture: any
+Multi-Arch: foreign
+Depends:
+ gnupg (= ${binary:Version}),
+ ${misc:Depends},
+ ${shlibs:Depends},
+Description: GNU privacy guard - Web Key Service server
+ GnuPG is GNU's tool for secure communication and data storage.
+ It can be used to encrypt data and to create digital signatures.
+ It includes an advanced key management facility and is compliant
+ with the proposed OpenPGP Internet standard as described in RFC4880.
+ .
+ This package provides the GnuPG server for the Web Key Service
+ protocol.
+ .
+ A Web Key Service is a service that allows users to upload keys per
+ mail to be verified over https as described in
+ https://tools.ietf.org/html/draft-koch-openpgp-webkey-service
+ .
+ For more information see: https://wiki.gnupg.org/WKS
+
+Package: gnupg-wks-client
+Architecture: any
+Multi-Arch: foreign
+Depends:
+ dirmngr (= ${binary:Version}),
+ gnupg (= ${binary:Version}),
+ ${misc:Depends},
+ ${shlibs:Depends},
+Description: GNU privacy guard - Web Key Service client
+ GnuPG is GNU's tool for secure communication and data storage.
+ It can be used to encrypt data and to create digital signatures.
+ It includes an advanced key management facility and is compliant
+ with the proposed OpenPGP Internet standard as described in RFC4880.
+ .
+ This package provides the GnuPG client for the Web Key Service
+ protocol.
+ .
+ A Web Key Service is a service that allows users to upload keys per
+ mail to be verified over https as described in
+ https://tools.ietf.org/html/draft-koch-openpgp-webkey-service
+ .
+ For more infor
Bug#862398: [pkg-gnupg-maint] Bug#862398: build wks client and server tools
Hi Stefan-- On Fri 2017-05-12 12:37:03 +0200, Stefan Bühler wrote: > it would be nice to build and have packages for the gpg-wks-* tools. > > It seems there was already done some work in > > https://anonscm.debian.org/git/pkg-gnupg/gnupg2.git/log/?h=dev/wks > > I rebased that commit to the experimental branch, thanks for this work! > modified some texts and added man pages. It'd be great to get these manpages upstream. > Upstream install gpg-wks-client to /usr/lib/gnupg/, but I moved it in > the package to /usr/bin - I get that it was designed to be a backend > tool for MUAs, but right now I guess most people installing it will have > to use it manually. I'm not so sure about diverging from upstream in our first introduction of these tools in debian. If we do this, we're effectively committing to this divergence forever (someone's going to write scripts that use /usr/bin/gpg-wks-* and then get upset when we change it). and it means that anyone who writes docs will have to have a different "how to do this on debian" section from "how to do this on fedora" or whatever. would you object to using your packaging but shipping in the upstream-approved location? or is it worth convincing upstream to ship these tools in /usr/bin instead? --dkg signature.asc Description: PGP signature
Bug#862398: build wks client and server tools
Package: gnupg2
Version: 2.1.18-8
Severity: wishlist
Tags: patch
Hi,
it would be nice to build and have packages for the gpg-wks-* tools.
It seems there was already done some work in
https://anonscm.debian.org/git/pkg-gnupg/gnupg2.git/log/?h=dev/wks
I rebased that commit to the experimental branch, fixed some file names,
modified some texts and added man pages.
Upstream install gpg-wks-client to /usr/lib/gnupg/, but I moved it in
the package to /usr/bin - I get that it was designed to be a backend
tool for MUAs, but right now I guess most people installing it will have
to use it manually.
I builds fine for me (I didn't test it completely yet though).
My own changes are in:
0001-wks-fix-debian-provide-man-pages-improve-texts.patch
The complete patch (squashed with the dev/wks commit) is:
0001-create-WKS-server-and-client-packages.patch
cheers,
Stefan
From b0f3c201e648980f90bce6c9ab5e47f9b199a985 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Stefan=20B=C3=BChler?=
Date: Fri, 12 May 2017 12:22:39 +0200
Subject: [PATCH 1/1] create WKS server and client packages
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
- install gpg-wks-client into /usr/bin (upstream installs in
/usr/lib/gnupg/ which I consider not "convenient" for users).
Based on work by Sandro Knauà .
---
debian/control | 45 +
debian/gnupg-wks-client.install | 1 +
debian/gnupg-wks-client.manpages | 1 +
debian/gnupg-wks-server.install | 1 +
debian/gnupg-wks-server.manpages | 1 +
debian/gpg-wks-client.1 | 86
debian/gpg-wks-server.1 | 80 +
debian/rules | 1 +
8 files changed, 216 insertions(+)
create mode 100644 debian/gnupg-wks-client.install
create mode 100644 debian/gnupg-wks-client.manpages
create mode 100644 debian/gnupg-wks-server.install
create mode 100644 debian/gnupg-wks-server.manpages
create mode 100644 debian/gpg-wks-client.1
create mode 100644 debian/gpg-wks-server.1
diff --git a/debian/control b/debian/control
index ac0b07907..2b9360477 100644
--- a/debian/control
+++ b/debian/control
@@ -72,6 +72,51 @@ Description: GNU privacy guard - cryptographic agent
provides a passphrase cache, which is used by pre-2.1 versions of
GnuPG for OpenPGP operations.
+Package: gnupg-wks-server
+Architecture: any
+Multi-Arch: foreign
+Depends:
+ gnupg (= ${binary:Version}),
+ ${misc:Depends},
+ ${shlibs:Depends},
+Description: GNU privacy guard - Web Key Service server
+ GnuPG is GNU's tool for secure communication and data storage.
+ It can be used to encrypt data and to create digital signatures.
+ It includes an advanced key management facility and is compliant
+ with the proposed OpenPGP Internet standard as described in RFC4880.
+ .
+ This package provides the GnuPG server for the Web Key Service
+ protocol.
+ .
+ A Web Key Service is a service that allows users to upload keys per
+ mail to be verified over https as described in
+ https://tools.ietf.org/html/draft-koch-openpgp-webkey-service
+ .
+ For more information see: https://wiki.gnupg.org/WKS
+
+Package: gnupg-wks-client
+Architecture: any
+Multi-Arch: foreign
+Depends:
+ dirmngr (= ${binary:Version}),
+ gnupg (= ${binary:Version}),
+ ${misc:Depends},
+ ${shlibs:Depends},
+Description: GNU privacy guard - Web Key Service client
+ GnuPG is GNU's tool for secure communication and data storage.
+ It can be used to encrypt data and to create digital signatures.
+ It includes an advanced key management facility and is compliant
+ with the proposed OpenPGP Internet standard as described in RFC4880.
+ .
+ This package provides the GnuPG client for the Web Key Service
+ protocol.
+ .
+ A Web Key Service is a service that allows users to upload keys per
+ mail to be verified over https as described in
+ https://tools.ietf.org/html/draft-koch-openpgp-webkey-service
+ .
+ For more information see: https://wiki.gnupg.org/WKS
+
Package: scdaemon
Architecture: any
Multi-Arch: foreign
diff --git a/debian/gnupg-wks-client.install b/debian/gnupg-wks-client.install
new file mode 100644
index 0..3ec2ebcaa
--- /dev/null
+++ b/debian/gnupg-wks-client.install
@@ -0,0 +1 @@
+debian/tmp/usr/lib/gnupg/gpg-wks-client /usr/bin/
diff --git a/debian/gnupg-wks-client.manpages b/debian/gnupg-wks-client.manpages
new file mode 100644
index 0..d2edd3e69
--- /dev/null
+++ b/debian/gnupg-wks-client.manpages
@@ -0,0 +1 @@
+debian/gpg-wks-client.1
diff --git a/debian/gnupg-wks-server.install b/debian/gnupg-wks-server.install
new file mode 100644
index 0..c18c2e7fd
--- /dev/null
+++ b/debian/gnupg-wks-server.install
@@ -0,0 +1 @@
+debian/tmp/usr/bin/gpg-wks-server
diff --git a/debian/gnupg-wks-server.manpages b/debian/gnupg-wks-server.manpages
new file mode 100644
index 0..5bd206c91
--- /dev/null
+++ b/debian/gnupg-wks-server.manpages
@@ -0,0 +1 @@
+debian/g
