Feed All Stories

Jun 11 2019

aheinecke added a comment to T4569: Version 3.1.8 can not "Encrypt for others".

The reason for this is the change to Kleopatra that the columns are configurable ( 4847fcc27afc8101752de82b0dd1f5fee027695d ). In the process we added additional columns like origin and to hide the "summary" column that the line edit for the recipients use we gave it an index number that was higher then our internal column count.

Jun 11 2019, 9:40 AM · Bug Report, gpg4win
Kimi updated the task description for T4569: Version 3.1.8 can not "Encrypt for others".
Jun 11 2019, 9:09 AM · Bug Report, gpg4win
aheinecke triaged T4569: Version 3.1.8 can not "Encrypt for others" as Unbreak Now! priority.

Thank you very much for the report. I can see this problem myself. It is strange because the code for that has not changed since 3.1.7 so it must be some sideeffect.

Jun 11 2019, 9:01 AM · Bug Report, gpg4win
aheinecke renamed T4570: Gpg4win: Improve Source packaging from Gpg4win: Improve Source packagin to Gpg4win: Improve Source packaging.
Jun 11 2019, 8:58 AM · gpg4win
aheinecke created T4570: Gpg4win: Improve Source packaging.
Jun 11 2019, 7:36 AM · gpg4win
Kimi created T4569: Version 3.1.8 can not "Encrypt for others".
Jun 11 2019, 6:05 AM · Bug Report, gpg4win
gcwilson added a comment to D491: Support for PowerPC's AES acceleration..

Thanks for the hwf-ppc.c. I've pulled the latest from upstream, applied the patches, and gotten the updated library built. Will let you know of any feedback from our performance team.

Jun 11 2019, 1:33 AM

Jun 10 2019

kaspro added a comment to T4301: Handling multiple subkeys on two SmartCards.

Thanks a lot @gniibe for this change.
I do understand and share your concerns, nevertheless are there, in my opinion valid reasons to be able to have a backup or duplicate, especially on the same or similar media type.
Consider for example giving multiple devices a chance of common interaction, using the keys for backup encryption etc. - I think there are several possible use-cases which can benefit from this.

Jun 10 2019, 7:40 PM · gnupg, scd, Bug Report
werner added a comment to rC5e8765137c8c: ecc: Adding X448..

I don't mind how we call it in Libgcrypt. For GnuPG we should use "cv448" me things.

Jun 10 2019, 4:25 PM
gniibe committed rP95743b2cd736: tty: Show supplied message when using default (authored by Ineiev <ineiev@gnu.org>).
tty: Show supplied message when using default
Jun 10 2019, 11:25 AM
gniibe committed rC5e8765137c8c: ecc: Adding X448. (authored by gniibe).
ecc: Adding X448.
Jun 10 2019, 8:45 AM

Jun 9 2019

werner renamed T4568: Gpg4win / Kleopatra: Export from clipboard not supported from Gpg4win / Kleopatra Funktion Exportieren aus Zwischenablage nicht mehr möglich! to Gpg4win / Kleopatra: Export from clipboard not supported.
Jun 9 2019, 6:27 PM
Annykempf created T4568: Gpg4win / Kleopatra: Export from clipboard not supported in the S1 Public space.
Jun 9 2019, 12:21 PM

Jun 8 2019

werner removed a project from T4566: dirmngr fails with HTTP 302 redirection to hkps: ntbtls.

I just assumed that is an ntbtls problem.

Jun 8 2019, 10:26 PM · gnupg (gpg22), dirmngr, Bug Report
gouttegd added a comment to T4566: dirmngr fails with HTTP 302 redirection to hkps.

If I understand correctly, this is exactly the same problem that the one we encountered some time ago in the code dealing with fetching keys from HTTP (--fetch-keys), and that we fixed with this patch.

Jun 8 2019, 10:17 PM · gnupg (gpg22), dirmngr, Bug Report
slandden added a comment to D493: AES block modes for PPC.

Regarding OCB: I do not want to touch a patent-encumbered algorithm (3 more years) which claims to force only GPL usage of libgcrypt[1].

Jun 8 2019, 5:45 PM
dkg added a comment to T4566: dirmngr fails with HTTP 302 redirection to hkps.

fwiw, the bug looks like it's in send_request in ks-engine-hkp.c, which re-uses the http_session object without re-initializing its tls_session member.

Jun 8 2019, 4:16 PM · gnupg (gpg22), dirmngr, Bug Report
jukivili added a comment to D493: AES block modes for PPC.

Have you considered working on bulk CFB-decryption and OCB-enc/dec? Those are the block cipher modes used by GnuPG (OCB is new AEAD mode to be used starting with 2.3).

Jun 8 2019, 3:27 PM
dkg updated subscribers of T4566: dirmngr fails with HTTP 302 redirection to hkps.

thanks for the triage, @werner!

Jun 8 2019, 2:20 PM · gnupg (gpg22), dirmngr, Bug Report
werner triaged T4564: gpgconf --change-options prints warning about dirmngr_ldapservers.conf when GNUPGHOME is set as Wishlist priority.
Jun 8 2019, 10:41 AM · gnupg, Bug Report
werner triaged T4512: gpg's --keyserver option should be more robustly deprecated as Low priority.

We need --keyserver in gpg for just one reason: backward compatibility.

Jun 8 2019, 10:40 AM · gnupg (gpg23), Documentation, Keyserver, Bug Report
werner added a project to T4566: dirmngr fails with HTTP 302 redirection to hkps: gnupg (gpg22).
Jun 8 2019, 10:38 AM · gnupg (gpg22), dirmngr, Bug Report
werner triaged T4566: dirmngr fails with HTTP 302 redirection to hkps as High priority.
Jun 8 2019, 10:38 AM · gnupg (gpg22), dirmngr, Bug Report
werner triaged T4565: Libgcrypt doesn't build if blake2 isn't in --enable-digests as Low priority.
Jun 8 2019, 10:37 AM · Bug Report
werner triaged T4567: Libgcrypt doesn't build if ecc isn't in --enable-pubkey-ciphers as Low priority.
Jun 8 2019, 10:36 AM · Bug Report
wojnilowicz created T4567: Libgcrypt doesn't build if ecc isn't in --enable-pubkey-ciphers.
Jun 8 2019, 6:53 AM · Bug Report
dkg created T4566: dirmngr fails with HTTP 302 redirection to hkps.
Jun 8 2019, 6:53 AM · gnupg (gpg22), dirmngr, Bug Report
wojnilowicz created T4565: Libgcrypt doesn't build if blake2 isn't in --enable-digests.
Jun 8 2019, 6:48 AM · Bug Report
dkg reopened T4512: gpg's --keyserver option should be more robustly deprecated as "Open".

thanks for fixing that error message, @werner. As @Valodim points out in discusson about hagrid, a gpg.conf keyserver option (deprecated according to the documentation) overrides the dirmngr.conf keyserver option (not deprecated according to the documentation.

Jun 8 2019, 5:29 AM · gnupg (gpg23), Documentation, Keyserver, Bug Report
joaociocca added a comment to T3537: GpgOL - Outlook shows empty email body for encrypted email.

I'm having a very similar problem in 3.1.5! Randomly, when I try to view a PGP-signed e-mail, nothing shows, both on preview panel and when I open the message.

Jun 8 2019, 5:13 AM · gpgol, Bug Report, gpg4win
slandden updated the summary of D493: AES block modes for PPC.
Jun 8 2019, 2:11 AM
slandden updated the diff for D491: Support for PowerPC's AES acceleration..

rebase

Jun 8 2019, 2:09 AM
slandden updated the diff for D490: PowerPC optimized routines for AES and SHA2 using PowerISA 2.07 instructions..

correctly generate the asm for it's "linux quirk" mode (fix build on big-endian)

Jun 8 2019, 2:09 AM
slandden planned changes to D491: Support for PowerPC's AES acceleration..

It turns out that the upstream cryptogams is broken on ppc64 big-endian elfv1. I reported this upstream https://github.com/dot-asm/cryptogams/issues/5 (openssl version works fine)

Jun 8 2019, 1:17 AM

Jun 7 2019

slandden updated the diff for D491: Support for PowerPC's AES acceleration..

include hwf-ppc.c

Jun 7 2019, 10:39 PM
dkg created T4564: gpgconf --change-options prints warning about dirmngr_ldapservers.conf when GNUPGHOME is set.
Jun 7 2019, 10:28 PM · gnupg, Bug Report
gcwilson added a comment to D491: Support for PowerPC's AES acceleration..

We are trying to apply patches in order to conduct internal testing. They did apply successfully. However, we can't get the result to link because _gcry_hwf_detect_ppc is undefined. Is there a hwf-ppc.c somewhere?

Jun 7 2019, 10:11 PM
werner reopened T3972: 100% CPU usage endles loop of gpg --list-keys as "Open".

I received an strace for a similar case by PM.

Jun 7 2019, 7:40 PM · gnupg (gpg22)
werner lowered the priority of T4563: gpg-agent fails to sign request from High to Normal.
Jun 7 2019, 6:32 PM · Info Needed, gpgagent, Bug Report
aheinecke changed the status of T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5] from Open to Testing.

File->Save As now works for crypto mails. It saves the encrypted message.

Jun 7 2019, 3:37 PM · gpg4win, gpgol
aheinecke added a subtask for T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5]: T4562: Gpg4win 3.1.9.
Jun 7 2019, 3:36 PM · gpg4win, gpgol
aheinecke added a parent task for T4562: Gpg4win 3.1.9: T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5].
Jun 7 2019, 3:36 PM · Release Info, gpg4win
aheinecke committed rOaf7aff13aac2: Add a better comment about the save as (authored by aheinecke).
Add a better comment about the save as
Jun 7 2019, 3:34 PM
aheinecke committed rO958432f2a072: Implement File->SaveAs for crypt mail (authored by aheinecke).
Implement File->SaveAs for crypt mail
Jun 7 2019, 3:31 PM
aheinecke added a commit to T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5]: rO958432f2a072: Implement File->SaveAs for crypt mail.
Jun 7 2019, 3:31 PM · gpg4win, gpgol
aheinecke committed rOb0ec0feb0942: Improve some debug output (authored by aheinecke).
Improve some debug output
Jun 7 2019, 3:31 PM
aheinecke committed rO42aba6deffc0: Add introspection debug code for variants (authored by aheinecke).
Add introspection debug code for variants
Jun 7 2019, 3:09 PM
ikrabbe triaged T4563: gpg-agent fails to sign request as High priority.

This is a high prio error, I guess, because it breaks a very useable part of gnupg, that is really hard to maintain. If it is not stable to sign keys with the gpg-agent, it is very hard to use that. Many might switch back to the ssh-agent.

Jun 7 2019, 2:12 PM · Info Needed, gpgagent, Bug Report
ikrabbe changed the status of T4563: gpg-agent fails to sign request from Open to Testing.

Please check if this patch works for you and please check where this flag actually comes from and what it does say!

Jun 7 2019, 2:09 PM · Info Needed, gpgagent, Bug Report
ikrabbe created T4563: gpg-agent fails to sign request.
Jun 7 2019, 2:05 PM · Info Needed, gpgagent, Bug Report
aheinecke added a parent task for T4562: Gpg4win 3.1.9: T4560: GpgOL: Only quick print possible for encrypted mails.
Jun 7 2019, 1:15 PM · Release Info, gpg4win
aheinecke added a subtask for T4560: GpgOL: Only quick print possible for encrypted mails: T4562: Gpg4win 3.1.9.
Jun 7 2019, 1:15 PM · gpg4win, gpgol
aheinecke changed the status of T4560: GpgOL: Only quick print possible for encrypted mails from Open to Testing.

This works now, the hidden BeforePrint Event enabled us to detect when a print happens and the old code to do blocking decrypts enabled the actual printing.
We also do not print "our categories" (encrypted message, level x trust),... anymore, even in quick print.

Jun 7 2019, 1:15 PM · gpg4win, gpgol
aheinecke created T4562: Gpg4win 3.1.9.
Jun 7 2019, 1:13 PM · Release Info, gpg4win
aheinecke committed rOfab4165e6297: Also do not print categories in quick print (authored by aheinecke).
Also do not print categories in quick print
Jun 7 2019, 1:12 PM
aheinecke added a commit to T4560: GpgOL: Only quick print possible for encrypted mails: rOfab4165e6297: Also do not print categories in quick print.
Jun 7 2019, 1:12 PM · gpg4win, gpgol
aheinecke committed rO848846f0f3dd: Use ApplicationEvents_11 Interface (authored by aheinecke).
Use ApplicationEvents_11 Interface
Jun 7 2019, 1:06 PM
aheinecke added a commit to T4560: GpgOL: Only quick print possible for encrypted mails: rOac625b36d6a5: Implement printing from the file menu.
Jun 7 2019, 1:06 PM · gpg4win, gpgol
aheinecke committed rOac625b36d6a5: Implement printing from the file menu (authored by aheinecke).
Implement printing from the file menu
Jun 7 2019, 1:06 PM
aheinecke added a commit to T4560: GpgOL: Only quick print possible for encrypted mails: rO848846f0f3dd: Use ApplicationEvents_11 Interface.
Jun 7 2019, 1:06 PM · gpg4win, gpgol
aheinecke created T4561: GPG / GPGSM: Pinentry cancels lead to wrong error codes.
Jun 7 2019, 9:56 AM · S/MIME, gnupg
aheinecke created T4560: GpgOL: Only quick print possible for encrypted mails.
Jun 7 2019, 9:21 AM · gpg4win, gpgol
werner committed rD116bc18197b6: web: Disable Stripe donations (authored by werner).
web: Disable Stripe donations
Jun 7 2019, 9:02 AM
Laurent Montel <montel@kde.org> committed rLIBKLEOf7e03409df6e: GIT_SILENT: Prepare 5.11.3 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Prepare 5.11.3
Jun 7 2019, 7:17 AM
gniibe committed rG1e9d61fb95e4: gpgparsemail: Die on parse error, printing errno thing. (authored by gniibe).
gpgparsemail: Die on parse error, printing errno thing.
Jun 7 2019, 6:34 AM
gniibe committed rCaf010856848a: ecc: API change, while implementing it. (authored by gniibe).
ecc: API change, while implementing it.
Jun 7 2019, 5:50 AM

Jun 6 2019

slandden updated the diff for D493: AES block modes for PPC.

fix ctr mode when counter overflows.

Jun 6 2019, 9:08 PM
slandden updated the diff for D491: Support for PowerPC's AES acceleration..

resolve merge conflicts

Jun 6 2019, 9:07 PM
werner added a comment to P8 strace patch to only trace threads with -f..

It might have unwanted side-effects - I am not sure. Anyway for me it works.

Jun 6 2019, 8:19 PM
jukivili added a comment to D493: AES block modes for PPC.

I've added few new CTR test vectors to tests/basic.c for checking 32-bit and 64-bit carry overflow cases, rC971d372f512ff6805d5b8b54e9ac1446f3f66643

Jun 6 2019, 7:57 PM
aheinecke added a comment to P8 strace patch to only trace threads with -f..

If it is that simple I really do not understand why this is not upstream. o.O

Jun 6 2019, 7:12 PM
werner committed rMf6fd90c99aea: tests: Minor fix to run-threaded.c. (authored by werner).
tests: Minor fix to run-threaded.c.
Jun 6 2019, 7:05 PM
werner committed rMf84abcad253a: core: Add commented debug helper to posix-io.c. (authored by werner).
core: Add commented debug helper to posix-io.c.
Jun 6 2019, 7:05 PM
werner committed rM6b9ff1ba391a: core: Fix error return value of _gpgme_run_io_cb. (authored by werner).
core: Fix error return value of _gpgme_run_io_cb.
Jun 6 2019, 7:05 PM
slandden accepted rCdaedbbb5541c: AES: move look-up tables to .data section and unshare between processes.

LGTM

Jun 6 2019, 6:41 PM
slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
Jun 6 2019, 6:40 PM · side-channel, libgcrypt, Bug Report
slandden accepted rCa4c561aab101: GCM: move look-up table to .data section and unshare between processes.

Good catch on using the counter to foil "smart" algorithms.

Jun 6 2019, 6:37 PM
jukivili committed rCa4c561aab101: GCM: move look-up table to .data section and unshare between processes (authored by jukivili).
GCM: move look-up table to .data section and unshare between processes
Jun 6 2019, 6:28 PM
jukivili committed rC971d372f512f: tests/basic: add CTR mode carry overflow test vectors (authored by jukivili).
tests/basic: add CTR mode carry overflow test vectors
Jun 6 2019, 6:28 PM
jukivili committed rCdaedbbb5541c: AES: move look-up tables to .data section and unshare between processes (authored by jukivili).
AES: move look-up tables to .data section and unshare between processes
Jun 6 2019, 6:28 PM
jukivili added a commit to T4541: C implementation of AES is vulnerable to side-channel attacks: rCa4c561aab101: GCM: move look-up table to .data section and unshare between processes.
Jun 6 2019, 6:28 PM · side-channel, libgcrypt, Bug Report
jukivili added a commit to T4541: C implementation of AES is vulnerable to side-channel attacks: rCdaedbbb5541c: AES: move look-up tables to .data section and unshare between processes.
Jun 6 2019, 6:28 PM · side-channel, libgcrypt, Bug Report
werner added a comment to T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.

I had to patch strace to follow threads but not forks (P8) and then when built with support for -k I tracked it down: In the inbound handler we close the fd immediately on EOF. However the upper layers don't know about it and a select fails with EBADF. Of course we could ignore the EBADF, figure out the closed fd and restart. The problem is that another thread may have opened a new oobject and that will get the last closed fd assigned - bummer.

Jun 6 2019, 5:08 PM · S/MIME, gpgme
werner created P8 strace patch to only trace threads with -f..
Jun 6 2019, 5:07 PM
aheinecke committed rDe08172124cf6: swdb: Gpg4win-3.1.8 (authored by aheinecke).
swdb: Gpg4win-3.1.8
Jun 6 2019, 4:09 PM
aheinecke committed rD2246f39b2d17: swdb: Revert accidental Makefile change (authored by aheinecke).
swdb: Revert accidental Makefile change
Jun 6 2019, 4:09 PM
aheinecke committed rW80d35844441f: Release Gpg4win-3.1.8 (authored by aheinecke).
Release Gpg4win-3.1.8
Jun 6 2019, 4:03 PM
aheinecke committed rW266a17cab818: web: Update package-integrity with new certificate (authored by aheinecke).
web: Update package-integrity with new certificate
Jun 6 2019, 4:03 PM
aheinecke committed rW86b06eb58fdb: Update patches (authored by aheinecke).
Update patches
Jun 6 2019, 3:11 PM
aheinecke committed rWcc886b157236: Add release date (authored by aheinecke).
Add release date
Jun 6 2019, 3:11 PM
aheinecke added a comment to T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.

Just noticed that due to me failing to properly understand re-entrant locks the run-thread test is broken at least on windows in that it never waits for completion. So running out of filedescriptors is to expect. I'll fix the test.

Jun 6 2019, 9:44 AM · S/MIME, gpgme
aheinecke committed rMe6f28273062f: tests: Add option "allow-del" to run-threaded (authored by aheinecke).
tests: Add option "allow-del" to run-threaded
Jun 6 2019, 9:23 AM
aheinecke added a comment to T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.

My observation from running the verify threaded test on windows is that it does behave differently. The EBADF does not occur.

Jun 6 2019, 8:51 AM · S/MIME, gpgme
werner added inline comments to rGc13e459ffeff: gpgparsemail: Die on parse error (not abort)..
Jun 6 2019, 7:47 AM
werner added a comment to T4544: More prompts before key deletion.

Nope

Jun 6 2019, 7:39 AM · gnupg, Feature Request, patch
werner updated subscribers of rC07590f940f76: ecc: Add API for X25519..
Jun 6 2019, 7:37 AM
gniibe committed rC07590f940f76: ecc: Add API for X25519. (authored by gniibe).
ecc: Add API for X25519.
Jun 6 2019, 6:46 AM
gniibe committed rCfe92d59da5b4: tests: Fix a comment. (authored by gniibe).
tests: Fix a comment.
Jun 6 2019, 6:46 AM
gniibe committed rCeccae2722a67: ecc: Fix y-coordinate of basepoint on Curve25519. (authored by gniibe).
ecc: Fix y-coordinate of basepoint on Curve25519.
Jun 6 2019, 6:46 AM
matheusmoreira renamed T4544: More prompts before key deletion from Key deletion: more prompts, new commands to More prompts before key deletion.
Jun 6 2019, 5:39 AM · gnupg, Feature Request, patch