A program like tests/t-mpi-point assumes gcry_mpi_print can do that.
We have a sort of regression with --debug option with t-mpi-point, the point q is not printed out correctly.

Mar 11 2020, 8:12 AM · Restricted Project, Feature Request, libgcrypt

• gniibe added a project to T4872: Support opaque MPI with gcry_mpi_print: Feature Request.

Mar 11 2020, 8:10 AM · Restricted Project, Feature Request, libgcrypt

Laurent Montel <montel@kde.org> committed rKLEOPATRAa566117ff7ee: GIT_SILENT: Prepare 5.14.0 beta1. Update ecm as 5.67.0 is broken see 417396. 5. (authored by Laurent Montel <montel@kde.org>).

GIT_SILENT: Prepare 5.14.0 beta1. Update ecm as 5.67.0 is broken see 417396. 5.

Mar 11 2020, 7:35 AM

• gniibe added a project to T4872: Support opaque MPI with gcry_mpi_print: libgcrypt.

Mar 11 2020, 6:12 AM · Restricted Project, Feature Request, libgcrypt

Mar 10 2020

Valodim added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

ftr, here is the thread I had in mind but couldn't recall above. @aheinecke is that your thinking, or a more pgp/mime bound mechanism as @dkg assumed?

Mar 10 2020, 5:50 PM · Feature Request, gpgol, Keyserver, gnupg

Jetersen closed T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows as Invalid.

Mar 10 2020, 4:52 PM · gnupg, gpg4win

dkg added a comment to T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows.

"log" and "lock" are easy typo/confusions to make, @aheinecke was just trying to understand your report better, since there wasn't much information in it.

Mar 10 2020, 4:23 PM · gnupg, gpg4win

• aheinecke committed rO6f5f48c3d60e: Don't allow setting a keys for distrib. lists (authored by • aheinecke).

Don't allow setting a keys for distrib. lists

Mar 10 2020, 4:21 PM

• aheinecke committed rOdc69b195aba2: Additional get_object_name helper (authored by • aheinecke).

Additional get_object_name helper

Mar 10 2020, 4:21 PM

• werner added a comment to T4873: Enable AES GCM in FIPS mode.

This requires re-evaluation of Libgcrypt to match the current FIPS specs.

Mar 10 2020, 4:13 PM · FIPS, libgcrypt, Feature Request

• aheinecke committed rOe5bc1579b24a: Enable / Disable Address book button dynamically (authored by • aheinecke).

Enable / Disable Address book button dynamically

Mar 10 2020, 3:41 PM

• aheinecke committed rO1283e384babe: Add UI code to open gpgolkeyadder from explorer (authored by • aheinecke).

Add UI code to open gpgolkeyadder from explorer

Mar 10 2020, 3:41 PM

• aheinecke committed rO016e3f957ea5: Add helper to get a std::string object name (authored by • aheinecke).

Add helper to get a std::string object name

Mar 10 2020, 3:41 PM

• aheinecke committed rOf09fe121e126: Make address book callback work with Explorer, too (authored by • aheinecke).

Make address book callback work with Explorer, too

Mar 10 2020, 3:41 PM

• aheinecke committed rOb222292f3148: Add some shared_disp_t helper functions (authored by • aheinecke).

Add some shared_disp_t helper functions

Mar 10 2020, 3:41 PM

• aheinecke committed rO64353d40f311: Track opened contacts in Addressbook (authored by • aheinecke).

Track opened contacts in Addressbook

Mar 10 2020, 3:41 PM

dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

@wiktor-k, "just extend the spec" doesn't necessarily work with existing clients, which might be surprised to find unexpected packets in the signature section of an e-mail. It seems more likely to me that they'd be able to handle (meaning: ignore) an unknown subpacket (as long as it's well-formed) than to handle additional packets. But all of these surmises require testing with existing clients, of course. Has anyone done any of that testing?

Mar 10 2020, 3:19 PM · Feature Request, gpgol, Keyserver, gnupg

• aheinecke committed rW247976a7b141: doc: Add more missing content to org manual (authored by • aheinecke).

doc: Add more missing content to org manual

Mar 10 2020, 2:17 PM

• aheinecke committed rW42f769503ac2: Improve german translation (authored by • aheinecke).

Improve german translation

Mar 10 2020, 2:17 PM

• aheinecke committed rWb8003da5a502: doc: Add missing content to org manual (authored by • aheinecke).

doc: Add missing content to org manual

Mar 10 2020, 2:17 PM

• aheinecke created T4874: GpgOL: Make Address book integration more visible.

Mar 10 2020, 1:12 PM · gpgol

pmgdeb created T4873: Enable AES GCM in FIPS mode.

Mar 10 2020, 11:31 AM · FIPS, libgcrypt, Feature Request

Jetersen added a comment to T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows.

At no point did I mention log files ? So not sure where that is coming from.

Mar 10 2020, 11:27 AM · gnupg, gpg4win

• aheinecke added a comment to T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows.

apologies but I do not understand this issue. Please clarify. Were you having issues with "log" files or "lock" files?
What was your issue?

Mar 10 2020, 10:16 AM · gnupg, gpg4win

wiktor-k added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

This is a nice idea and although it overlaps with Autocrypt it has other uses too: for example verification of signed files that can be vastly simplified (just get the file and the signature, no key fetching needed, downside: the key attached to the signature could be stale).

Mar 10 2020, 10:04 AM · Feature Request, gpgol, Keyserver, gnupg

• gniibe committed rC41ede3b56efd: constant-time-invm: Focus on odd case. (authored by • gniibe).

constant-time-invm: Focus on odd case.

Mar 10 2020, 6:27 AM

• gniibe committed rC5e6ff3ae9de7: constant-time--invm: Coding style change for libgcrypt. (authored by • gniibe).

constant-time--invm: Coding style change for libgcrypt.

Mar 10 2020, 5:48 AM

• gniibe committed rC74fd4287a10f: constant-invm: Fix odd_u calculation by our mpih_rshift result. (authored by • gniibe).

constant-invm: Fix odd_u calculation by our mpih_rshift result.

Mar 10 2020, 5:09 AM

Thaodan committed rGTOfb1729591042: Add tabbardialog and use it. Card files missing see next commit. (authored by Thaodan).

Add tabbardialog and use it. Card files missing see next commit.

Mar 10 2020, 3:32 AM

• gniibe created T4872: Support opaque MPI with gcry_mpi_print.

Mar 10 2020, 2:20 AM · Restricted Project, Feature Request, libgcrypt

dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Ah, thanks for pointing out the subpacket option (i guess it could be hashed or unhashed). i don't think any of the subpackets currently defined in RFC4880 supports this use case -- but i guess you could mint a new one, or use a notation.

Mar 10 2020, 1:22 AM · Feature Request, gpgol, Keyserver, gnupg

Albert Astals Cid <aacid@kde.org> committed rKLEOPATRA23e18a6d21ce: Merge remote-tracking branch 'origin/release/19.12' (authored by Albert Astals Cid <aacid@kde.org>).

Merge remote-tracking branch 'origin/release/19.12'

Mar 10 2020, 12:44 AM

Valodim added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Werner said that it's possible in OpenPGP to also put the pubkey into the signature. (...) The nice advantage is that this will also work for files.

Mar 10 2020, 12:31 AM · Feature Request, gpgol, Keyserver, gnupg

Mar 9 2020

Jetersen added projects to T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows: gpg4win, gnupg.

Mar 9 2020, 10:42 PM · gnupg, gpg4win

Laurent Montel <montel@kde.org> committed rKLEOPATRA26e016983326: Autogenerate categories file (authored by Laurent Montel <montel@kde.org>).

Autogenerate categories file

Mar 9 2020, 10:34 PM

Moonchild added a comment to T4249: No connection to Keyserver possible.

I'm using enigmail 1.9.9 because I'm on a mail client that doesn't use WebExtensions, so it's using gnupg for keyserver stuff. In this case that means I've been able to verify it's a gnupg issue (both Kleopatra and enigmail displaying the same issue as CLI).

Mar 9 2020, 9:54 PM · gnupg, dirmngr, Bug Report, gpg4win

dkg added a comment to T4856: GPG: Key Exchange Put public OpenPGP key into signature.

Hi @aheinecke, thanks for thinking about this, and thanks for tagging me here too. I'm definitely interested.

Mar 9 2020, 9:53 PM · Feature Request, gpgol, Keyserver, gnupg

Jetersen created T4871: gpg lock invalid key size due to not running UTF-8 encoding on Windows in the S1 Public space.

Mar 9 2020, 8:55 PM · gnupg, gpg4win

dkg added a comment to T4857: GPGSM: Put encryption key also into signature.

This is an important fix for a sensible S/MIME use case. Thanks for working on it!

Mar 9 2020, 8:40 PM · gnupg, S/MIME

dkg added a comment to T4867: with non-existent homedir, `gpgconf --check-programs` produces surprising output..

Yes, i'd surmised that the ::::: lines are continuation lines of the error message. but why not just percent-escape the newline in the error message too? Where in the documentation of this API does it say to expect continuation lines of error messages? Is gpgconf expected to be used programmatically?

Mar 9 2020, 6:21 PM · gnupg (gpg22), Bug Report

dkg added a comment to T4249: No connection to Keyserver possible.

@Moonchild wrote:

using enigmail with the new version

Mar 9 2020, 6:14 PM · gnupg, dirmngr, Bug Report, gpg4win

• gniibe committed rC4d911eadae3c: const-invm: Fix ->nlimbs. (authored by • gniibe).

const-invm: Fix ->nlimbs.

Mar 9 2020, 1:15 PM

Simrah added a comment to T4870: Kleopatra - do not change the language from Russian.

Added variable value

set language
LANGUAGE=en_US

I launched the Kleopatra again. I did not notice any changes.

Mar 9 2020, 1:13 PM · Windows 64, Windows, kleopatra, Bug Report

Moonchild added a comment to T4249: No connection to Keyserver possible.

Just registered to report pretty much the same.
I've been using gpg 2 for a long while and it's been doing just fine, up to the point where people started using keys it didn't recognise that require a later version.

Mar 9 2020, 1:03 PM · gnupg, dirmngr, Bug Report, gpg4win

• werner added a comment to T4867: with non-existent homedir, `gpgconf --check-programs` produces surprising output..

Well, I misread the output. What you see is what is expected. From the gpgconf man page:

Mar 9 2020, 12:57 PM · gnupg (gpg22), Bug Report

• aheinecke triaged T4870: Kleopatra - do not change the language from Russian as Low priority.

Thanks for your report. Yes this is sadly a known issue. Our backend system has it's own localization that uses the system language and does not care about the Kleopatra configuration.

Mar 9 2020, 12:46 PM · Windows 64, Windows, kleopatra, Bug Report

• werner added a comment to T4868: Heap buffer overflow in _gcry_mpi_tdiv_qr().

We don't consider this a security problem because the tool you used is a debug helper which we use during development (if at all). All real code needs to verify that it does not request a division by zero. The div-by-zero checks we added 8 years agot to other code paths (e.g. mpi_pow, rC2c54c4da19d3a79e9f749740828026dd41f0521a) are failstop measurements which should never be triggered.

Mar 9 2020, 12:45 PM · Bug Report

Simrah created T4870: Kleopatra - do not change the language from Russian.

Mar 9 2020, 12:29 PM · Windows 64, Windows, kleopatra, Bug Report

• aheinecke committed rD25b3f852a8fa: swdb: Add gpg4win-3.1.11 (authored by • aheinecke).

swdb: Add gpg4win-3.1.11

Mar 9 2020, 12:29 PM

Research_Team_loginsoft added a comment to T4868: Heap buffer overflow in _gcry_mpi_tdiv_qr().

Thanks for quick response and fixing the issue. We wanted to request for a CVE since libgcrypt is widely used and a patch has been provided. Please let us know if you have any disclosure policy.

Mar 9 2020, 11:53 AM · Bug Report

bernhard committed rM11edc073a3d2: python: fix minor typo in howto (authored by bernhard).

python: fix minor typo in howto

Mar 9 2020, 11:43 AM

bernhard committed rW625734c73821: Localize: tiny http -> https (authored by bernhard).

Localize: tiny http -> https

Mar 9 2020, 10:59 AM

• werner committed rCffbc5702ab16: mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr. (authored by • werner).

mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr.

Mar 9 2020, 10:45 AM

• werner closed T4868: Heap buffer overflow in _gcry_mpi_tdiv_qr() as Resolved.

You are providing invaldid data to this debug helper tools and run into a div-by-zero. I will add the usual test earlier in the code path so that a fatal error is triggered. Thanks for the report.

Mar 9 2020, 10:39 AM · Bug Report

• werner committed rCafbab896fa04: mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr. (authored by • werner).

mpi: Abort on division by zero also in _gcry_mpi_tdiv_qr.

Mar 9 2020, 10:37 AM

• gniibe committed rCcd9c5fdee643: Rough sketch of SCR mpi_invm using Niels Möller algorithm. (authored by • gniibe).

Rough sketch of SCR mpi_invm using Niels Möller algorithm.

Mar 9 2020, 9:06 AM

• gniibe created T4869: constant-time mpi_invm.

Mar 9 2020, 8:56 AM · libgcrypt

Research_Team_loginsoft updated the task description for T4868: Heap buffer overflow in _gcry_mpi_tdiv_qr().

Mar 9 2020, 8:42 AM · Bug Report

Research_Team_loginsoft updated the task description for T4868: Heap buffer overflow in _gcry_mpi_tdiv_qr().