Yesterday
Yesterday
jpalus added a comment to T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x.
Note that exactly same data and length computed by ssh_signature_encoder_rsa, including additional 0, reach:
https://github.com/openssh/openssh-portable/blob/V_10_2_P1/sshkey.c#L517-L537
• ebo added a comment to T7333: Allow gpg to auto-upload a new own key to LDAP servers.
2.2.53 was released wit VSD 3.3.6
• ebo moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from WiP to QA on the gnupg22 board.
• ebo moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from Backlog to QA on the vsd33 board.
• ebo edited projects for T7333: Allow gpg to auto-upload a new own key to LDAP servers, added: vsd33; removed vsd34.
• werner assigned T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x to • gniibe.
Let's see whether Niibe-san still remembers the T7882 case.
• werner added a comment to T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver.
Can you please test the patch below in your environment. That would be helpful.
• werner committed rG66fdafab3c6d: gpgsm: Fix bug so that a cert can be signed by a different algo. (authored by • werner).
gpgsm: Fix bug so that a cert can be signed by a different algo.
jpalus added a comment to T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x.
Added to some debug logging and whenever login issue occurs new logic is applied:
https://github.com/gpg/gnupg/blob/bc7c91bee521e4adf3506ca32bf34177b84ce1c5/agent/command-ssh.c#L1482
jpalus added a comment to T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x.
Looks like indeed related to T7882. After reverting c7e0ec12609b401ea81c4851522d86eb5ec27170 I was able to make 2000 connections without any issue. Bringing the change back and retrying issue appeared within first 300.
jpalus added a comment to T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x.
I've already tried with verbose which gave no errors. That's why I moved to debug logging. With double verbose I don't see anything wrong either. Excerpt from log for relevant 100 connections among which 1 failed:
$ cat gpg.log | sed 's/.*gpg-agent\[[0-9]*\] //' | # remove date, time and process id grep -v 'ssh handler .* \(started\|terminated\)' | # appears to be mostly noise wit hex address sort|uniq -c 80 new connection to /usr/libexec/gnupg2/scdaemon daemon established 20 new connection to /usr/libexec/gnupg2/scdaemon daemon established (reusing) 100 received ssh request of length 1 100 received ssh request of length 208 100 received ssh request of length 748 100 sending ssh response of length 1 100 sending ssh response of length 281 100 sending ssh response of length 626 100 ssh request handler for extension (27) ready 100 ssh request handler for extension (27) started 100 ssh request handler for request_identities (11) ready 100 ssh request handler for request_identities (11) started 100 ssh request handler for sign_request (13) ready 100 ssh request handler for sign_request (13) started 100 ssh-agent extension 'session-bind@openssh.com' not supported 100 ssh-agent extension 'session-bind@openssh.com' received
• werner added projects to T8202: Intermittent ssh publickey login failure after upgrade to gnupg 2.5.x: ssh, gpgagent.
You need to get a log form gpg-agent. Put this into ~/.gnupg/gpg-agent/conf
l10n daemon script <scripty@kde.org> committed rMTP4d9fc4fcd13d: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
l10n daemon script <scripty@kde.org> committed rKLEOPATRAe185b2634606: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
l10n daemon script <scripty@kde.org> committed rKLEOPATRAad79b8369044: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
l10n daemon script <scripty@kde.org> committed rMTPd3be336551c9: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Mon, Mar 30
Mon, Mar 30
Security level info
timegrid moved T8161: Invalid MimeType Related instead of Mixed from Backlog to WIP on the vsd34 board.
timegrid renamed T8193: Add a workflow to force encryption/signature with invalid or expired certificates from Draft: Add a workflow to force encryption/signature with invalid or expired certificates to Add a workflow to force encryption/signature with invalid or expired certificates.
tfry committed rOJ718b7ef3bf1a: Explicitly share certain paths between client and server (authored by tfry).
Explicitly share certain paths between client and server
• ikloecker triaged T8201: Kleopatra: Optionally, allow encryption with invalid or expired certificates as Normal priority.
Look up keys in cache, instead
tfry committed rOJb2de026d6756: Make sure kleopatra windows open in foreground on Windows (authored by tfry).
Make sure kleopatra windows open in foreground on Windows
Bring dialogs to front on Windows
tfry committed rOJ334d25dc8f90: Show distinct messages if secret keys were found, but are not usable (authored by tfry).
Show distinct messages if secret keys were found, but are not usable
tfry committed rOJce8a3988c8bc: Inform in native client, if no secret key is available for connected account (authored by tfry).
Inform in native client, if no secret key is available for connected account
Panel Used By
Panel Used By
| Dashboard | Home | |
| Dashboard | Restricted Dashboard |