Page MenuHome GnuPG
Feed Advanced Search

Dec 2 2020

gniibe removed a project from T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac: Info Needed.

I created D513: Support macOS build with SIP by using posix_spawn in tests/random, which is more conservative; It only affects build under macOS.

Dec 2 2020, 2:22 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe created D513: Support macOS build with SIP by using posix_spawn in tests/random.
Dec 2 2020, 2:17 AM

Dec 1 2020

gniibe closed T5151: GPGME++ : bad passphrase problems as Resolved.
Dec 1 2020, 5:34 AM · segv, gpgme, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.

BTW, I'm not sure if the claim in T5009#136688 is correct.

Dec 1 2020, 4:18 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.

See also: https://dev.gnupg.org/T5009#136688

Dec 1 2020, 3:16 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.

See my comment in: https://dev.gnupg.org/T5024#139701

Dec 1 2020, 3:10 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5024: libtool problem for some platforms for 'make check' (program built with -no-install won't work without installation).

For macOS, with SIP, some program like libgcrypt/tests/random fails, because the hack for DYLD_LIBRARY_PATH by libtool doesn't work for child process:
https://developer.apple.com/library/archive/documentation/Security/Conceptual/System_Integrity_Protection_Guide/RuntimeProtections/RuntimeProtections.html

Dec 1 2020, 3:09 AM · toolchain

Nov 30 2020

GPF awarded T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) a Love token.
Nov 30 2020, 11:30 AM · Restricted Project, Feature Request, gnupg
gniibe added projects to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac: MacOS, Info Needed.

IIUC, for the build of Homebrew, it is the issue of in: https://github.com/Homebrew/homebrew-core/commit/e7da1e2157b2e8373c3b39ea6398f51588ea537c

Nov 30 2020, 7:30 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.

Please have a look at T5024: libtool problem for some platforms for 'make check' (program built with -no-install won't work without installation), if make check works after the installation of libgcrypt.

Nov 30 2020, 7:11 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.

See T2056: libgcrypt: make check fails "random" test on OS X 10.11 with link error, if test with 'random' fails.

Nov 30 2020, 7:09 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac.
Nov 30 2020, 2:51 AM · Restricted Project, MacOS, libgcrypt, Bug Report
gniibe added a comment to T5157: libgcrypt: ARM64 Builds on macOS fail.

ARM64 has been only tested on platforms which support ELF.

Nov 30 2020, 2:48 AM · toolchain, MacOS, libgcrypt, Bug Report

Nov 27 2020

gniibe changed the status of T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds from Open to Testing.
Nov 27 2020, 7:21 AM · backport, Restricted Project, scd, gnupg
gniibe committed rGbb591222c3c5: scd:ccid-driver: Fix pinpad error handling for cancel/timeout. (authored by gniibe).
scd:ccid-driver: Fix pinpad error handling for cancel/timeout.
Nov 27 2020, 7:21 AM
gniibe added a comment to T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds.

Finally, with the physical device, I figure out what's going on.
The error handling in bulk_in in ccid-driver.c is not good for pinpad input.
It doesn't return an error when it is cancelled or timeout (for the user interaction).
And it calls libusb_clear_hald which causes screwed up situation.

Nov 27 2020, 7:17 AM · backport, Restricted Project, scd, gnupg

Nov 26 2020

gniibe added a comment to T3722: gpg "No name" error.

Or it might be related issue of name server access like in T3168: dirmngr: gpg: keyserver receive failed: No keyserver available.

Nov 26 2020, 7:56 AM · dns
gniibe added a parent task for T3168: dirmngr: gpg: keyserver receive failed: No keyserver available: T3517: dirmngr: retry without SRV due to buggy routers.
Nov 26 2020, 7:51 AM · dns, dirmngr
gniibe added a subtask for T3517: dirmngr: retry without SRV due to buggy routers: T3168: dirmngr: gpg: keyserver receive failed: No keyserver available.
Nov 26 2020, 7:51 AM · Feature Request, dns, dirmngr
gniibe closed T3524: "GnuPG MiniHOWTO" English version page unavailable as Resolved.

As of November 2020, the redirect problem has gone.
And we addressed that as "Legacy GnuPG MiniHOWTO" in rDd51cd2013e66: web: Add warning notes to most HOWTOS..

Nov 26 2020, 7:42 AM · Bad link, gpgweb
gniibe merged task T3722: gpg "No name" error into T3517: dirmngr: retry without SRV due to buggy routers.
Nov 26 2020, 7:31 AM · dns
gniibe merged T3722: gpg "No name" error into T3517: dirmngr: retry without SRV due to buggy routers.
Nov 26 2020, 7:31 AM · Feature Request, dns, dirmngr
gniibe added a comment to T3722: gpg "No name" error.

This must be an issue of SRV record retrieval.
Merging.

Nov 26 2020, 7:31 AM · dns
gniibe merged task T3574: gpg-agent doesn't pick up ssh certificates into T1756: gpg-agent doesn't accept ssh certificates.
Nov 26 2020, 7:20 AM · Bug Report
gniibe merged T3574: gpg-agent doesn't pick up ssh certificates into T1756: gpg-agent doesn't accept ssh certificates.
Nov 26 2020, 7:20 AM · gnupg, Feature Request
gniibe closed T4004: Curve25519 for Zeitcontrol card as Resolved.

Support was added in version 3 card.

Nov 26 2020, 7:17 AM · Feature Request, scd
gniibe merged task T4817: dirmgr keys.openpgp.org:443 Address family not supported by protocol into T4977: dirmngr not working with linux kernel parameter ipv6.disable=1.
Nov 26 2020, 7:15 AM · Bug Report
gniibe merged T4817: dirmgr keys.openpgp.org:443 Address family not supported by protocol into T4977: dirmngr not working with linux kernel parameter ipv6.disable=1.
Nov 26 2020, 7:15 AM · Restricted Project, gnupg (gpg22), dirmngr, Bug Report
gniibe added a comment to T4817: dirmgr keys.openpgp.org:443 Address family not supported by protocol.

Because the original problem of EAFNOSUPPORT has been fixed, I am going to close this bug.

Nov 26 2020, 7:14 AM · Bug Report
gniibe added a comment to T4152: command 'KS_GET' failed: Operation not permitted.

It is likely that EPERM (Operation not permitted) occurs by a system call connect(2) if you have some firewall rule(s) which forbids network access.
The dirmngr use libdns resolver which directly connects name servers.
If this is the case, you can use `--standard-resolver\ to use system's standard DNS resolver instead.

Nov 26 2020, 6:50 AM · Bug Report
gniibe closed T4153: no dirmngr.log created after previous command 'KS_GET' failed: Operation not permitted as Invalid.

The log file specified in .gnupg/dirmngr.conf is created at the start of dirmngr.
dirmngr is invokded by the first call of gpg, and it keeps running and handle next request from second invocation of gpg.
So, nothing is problem.

Nov 26 2020, 6:47 AM · Not A Bug
gniibe added a comment to T5055: APPCRASH with libKF5ConfigWidgets.dll.

On Debian, please see: /usr/share/doc/g++-mingw-w64-i686-win32/README.Debian

Nov 26 2020, 6:15 AM · Bug Report, gpg4win
gniibe added a comment to T5055: APPCRASH with libKF5ConfigWidgets.dll.

IIUC, the error occurred when Kleo is exiting and a destructor (in libKF5ConfigWidgets) is called with null pointer.

Nov 26 2020, 3:57 AM · Bug Report, gpg4win
gniibe merged T4640: Outdated text and links at <http://git.gnupg.org/> into T4963: Update GnuPG versions listed on https://git.gnupg.org/.
Nov 26 2020, 2:31 AM · gpgweb, Bug Report
gniibe merged task T4640: Outdated text and links at <http://git.gnupg.org/> into T4963: Update GnuPG versions listed on https://git.gnupg.org/.
Nov 26 2020, 2:31 AM · gpgweb, Bug Report
gniibe added a comment to T4640: Outdated text and links at <http://git.gnupg.org/>.

Fixed in rDf810f0bc5b13: git.gnupg.org: Update entry page.

Nov 26 2020, 2:31 AM · gpgweb, Bug Report
gniibe added a comment to T5151: GPGME++ : bad passphrase problems.

For ctx->exportPublicKeys returning 0 even when a failure, (with fix of gpg) error handling should be done differently.

Nov 26 2020, 2:22 AM · segv, gpgme, Bug Report
gniibe committed rG605ab99912ac: gpg: Report an error for receiving key from agent. (authored by gniibe).
gpg: Report an error for receiving key from agent.
Nov 26 2020, 1:52 AM
gniibe added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

Applied and push the change above in rG920154370834: scd,nks: Fix caching keygrip..

Nov 26 2020, 1:38 AM · backport, gnupg (gpg23), scd
gniibe committed rG920154370834: scd,nks: Fix caching keygrip. (authored by gniibe).
scd,nks: Fix caching keygrip.
Nov 26 2020, 1:38 AM

Nov 25 2020

gniibe triaged T5150: scd: For NetKey cards READKEY with keygrip fails as Normal priority.
Nov 25 2020, 3:48 AM · backport, gnupg (gpg23), scd
gniibe added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

For the first issue, I pushed the change in rGc3a20c88fb30: scd: Fix an error return for READKEY..

Nov 25 2020, 3:48 AM · backport, gnupg (gpg23), scd
gniibe committed rGc3a20c88fb30: scd: Fix an error return for READKEY. (authored by gniibe).
scd: Fix an error return for READKEY.
Nov 25 2020, 3:45 AM
gniibe committed rG006944b856ee: scd,nks: Fix SEGV for learn for older card. (authored by gniibe).
scd,nks: Fix SEGV for learn for older card.
Nov 25 2020, 2:38 AM
gniibe changed the status of T5144: scd: Fails/crashes on SCD LEARN --keypairinfo for NetKey cards, a subtask of T5128: Kleopatra: Generate OpenPGP public key for NetKey card key, from Open to Testing.
Nov 25 2020, 2:37 AM · kleopatra
gniibe changed the status of T5144: scd: Fails/crashes on SCD LEARN --keypairinfo for NetKey cards from Open to Testing.
Nov 25 2020, 2:37 AM · Restricted Project, gnupg (gpg23), scd
gniibe claimed T5144: scd: Fails/crashes on SCD LEARN --keypairinfo for NetKey cards.

Fixed in rG006944b856ee: scd,nks: Fix SEGV for learn for older card..

Nov 25 2020, 2:37 AM · Restricted Project, gnupg (gpg23), scd
gniibe added a comment to T5100: OpenPGP app overwrites Yubikey serial number.

Great. Please apply the patch.

Nov 25 2020, 1:42 AM · Restricted Project, gnupg, scd, yubikey, kleopatra
gniibe added a comment to T5151: GPGME++ : bad passphrase problems.

More specifically, in the situation of multiple calls, ->getPassphrase is called multiple times, and it should return newly allocated "char *" object each time, because it is released each time (in lower layer).

Nov 25 2020, 1:22 AM · segv, gpgme, Bug Report
gniibe added a comment to T5151: GPGME++ : bad passphrase problems.

My excuse: Please note that the support of exporting secret keys by GPGME are relatively new feature (see {T5046) and the fix rM3382ecb17eb5: core: Support exporting secret keys.). The fix of rM53ac732bae46: core: Call _gpgme_passphrase_status_handler when exporting keys. is a part of the support.
I think that we need more fixes for gpg/gpgme to be fully working well.

Nov 25 2020, 12:51 AM · segv, gpgme, Bug Report

Nov 24 2020

gniibe added a comment to T1954: Password too long.

Please use shorter password.
For gpgsm, maximum is 31 chars.

Nov 24 2020, 8:54 AM · Info Needed, gnupg (gpg20), Bug Report, gnupg
gniibe added a comment to T5151: GPGME++ : bad passphrase problems.

Currently, gpg doesn't report any errors to status line for exporting secret keys. If needed, a patch like this is needed:

Nov 24 2020, 8:12 AM · segv, gpgme, Bug Report
gniibe committed rM53ac732bae46: core: Call _gpgme_passphrase_status_handler when exporting keys. (authored by gniibe).
core: Call _gpgme_passphrase_status_handler when exporting keys.
Nov 24 2020, 7:09 AM
gniibe added a comment to T5151: GPGME++ : bad passphrase problems.

Chasing this bug, I pushed a change: rM53ac732bae46: core: Call _gpgme_passphrase_status_handler when exporting keys.

Nov 24 2020, 7:08 AM · segv, gpgme, Bug Report

Nov 20 2020

gniibe added a comment to rG0a265d6498e8: gpg,agent: Fix comments for KEYPAIRINFO status report..

Thanks, I was wrong.

Nov 20 2020, 9:25 AM
gniibe committed rG777019faf0b8: gpg: Change API of agent_scd_serialno. (authored by gniibe).
gpg: Change API of agent_scd_serialno.
Nov 20 2020, 9:20 AM
gniibe committed rGcc8b99d18e26: Fix the previous comment changes help doc string. (authored by gniibe).
Fix the previous comment changes help doc string.
Nov 20 2020, 9:20 AM
gniibe added a comment to T5100: OpenPGP app overwrites Yubikey serial number.

How about distinguishing CARDNO and application specific SERIALNO?

Nov 20 2020, 8:38 AM · Restricted Project, gnupg, scd, yubikey, kleopatra
gniibe committed rGPAb40ff3b1f20d: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 20 2020, 8:26 AM
gniibe committed rSbd471ef56c08: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 20 2020, 6:37 AM
gniibe committed rM4c6fd361593e: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 20 2020, 4:12 AM
gniibe committed rG0a265d6498e8: gpg,agent: Fix comments for KEYPAIRINFO status report. (authored by gniibe).
gpg,agent: Fix comments for KEYPAIRINFO status report.
Nov 20 2020, 1:58 AM
gniibe added a comment to T5039: 2.2.22 regression: Nitrokey Pro 2 is no longer recognized automatically, requires --card-status.

Yes, it is due to a backport from master: rG1049f06c6d2e: scd:openpgp: Allow keygrip to be used to reference a key
Fixed in rG84020385be19: scd:openpgp: Public keys should be available for check_keyidstr..

Nov 20 2020, 1:42 AM · Restricted Project, gnupg (gpg22), Bug Report

Nov 19 2020

gniibe added a comment to T5143: YubiKey 5 Nano GPG --card-edit verify command causes a segfault.

I looked the gpg-agent.log, it indeed suggested the problem fixed in rG61aea64b3c17: scd: Fix the use case of verify_chv2 by CHECKPIN., which is included in 2.2.24.

Nov 19 2020, 11:54 AM · gnupg (gpg22), Bug Report
gniibe claimed T5143: YubiKey 5 Nano GPG --card-edit verify command causes a segfault.

You have multiple readers and using PC/SC by specifying reader-port.
We fixed in master by T4998: scdaemon: PC/SC "No such device" without reader-port, and I didn't know similar fixes should be backported.
I will soon.

Nov 19 2020, 9:24 AM · gnupg (gpg22), Bug Report
gniibe committed rG8ddadbbdbbe2: agent: Fix creating shadow key on card key generation. (authored by gniibe).
agent: Fix creating shadow key on card key generation.
Nov 19 2020, 7:52 AM
gniibe reopened T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2) as "Testing".
Nov 19 2020, 5:58 AM · Restricted Project, gnupg (gpg22), scd, Bug Report
gniibe added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Thanks again for your report.

Nov 19 2020, 5:57 AM · Restricted Project, gnupg (gpg22), scd, Bug Report
gniibe committed rG84020385be19: scd:openpgp: Public keys should be available for check_keyidstr. (authored by gniibe).
scd:openpgp: Public keys should be available for check_keyidstr.
Nov 19 2020, 5:56 AM
gniibe committed rGe45455d3020c: gpg: Fix --card-edit command. (authored by gniibe).
gpg: Fix --card-edit command.
Nov 19 2020, 5:13 AM
gniibe added a comment to T5137: gpg-agent 2.x poor performance / futex errors.

Thanks. I understand the situation. Basically, gpg-agent's computation is done by a single thread (in current implementation), although it accepts many requests simultaneously.

Nov 19 2020, 3:21 AM · Feature Request, gpgagent

Nov 18 2020

gniibe committed rTe0a807eec263: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 18 2020, 8:27 AM
gniibe committed rT35d7429480b0: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 18 2020, 8:27 AM
gniibe committed rK1ef7f310d8bb: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 18 2020, 7:50 AM
gniibe committed rK0d46f2c000c4: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 18 2020, 7:50 AM
gniibe committed rK60b32609ae7f: build: Use modern Autoconf check for type. (authored by gniibe).
build: Use modern Autoconf check for type.
Nov 18 2020, 7:50 AM
gniibe closed T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2) as Resolved.
Nov 18 2020, 7:03 AM · Restricted Project, gnupg (gpg22), scd, Bug Report
gniibe closed T5086: GnuPG fails to generate keys on-card in versions 2.2.22 and 2.2.23 as Resolved.
Nov 18 2020, 7:03 AM · Restricted Project, gnupg, Bug Report
gniibe closed T5121: a race condition between intr_cb call back and libusb_free_transfer in do_close_reader, a subtask of T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2), as Resolved.
Nov 18 2020, 7:02 AM · Restricted Project, gnupg (gpg22), scd, Bug Report
gniibe closed T5121: a race condition between intr_cb call back and libusb_free_transfer in do_close_reader as Resolved.
Nov 18 2020, 7:02 AM · gnupg (gpg22), Restricted Project, scd
gniibe committed rM223779dfdeb7: build: Update with newer autoconf constructs. (authored by gniibe).
build: Update with newer autoconf constructs.
Nov 18 2020, 7:02 AM
gniibe committed rP5c83f6314e3f: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 18 2020, 6:55 AM
gniibe committed rGd66fb3aa53a6: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 18 2020, 6:19 AM
gniibe committed rGaeeb8e975dc7: build: Use modern Autoconf check for types. (authored by gniibe).
build: Use modern Autoconf check for types.
Nov 18 2020, 6:19 AM
gniibe committed rC9485ca7b5bf1: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 18 2020, 4:04 AM
gniibe committed rC425bf499185d: build: Use modern Autoconf check for type. (authored by gniibe).
build: Use modern Autoconf check for type.
Nov 18 2020, 4:04 AM
gniibe committed rC908e347fb68b: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 18 2020, 2:03 AM

Nov 17 2020

gniibe committed rPTH7e45b50a4034: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 17 2020, 7:50 AM
gniibe committed rPTHf73f94228652: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 17 2020, 7:50 AM
gniibe committed rA12fd96a61033: build: Update to newer autoconf constructs. (authored by gniibe).
build: Update to newer autoconf constructs.
Nov 17 2020, 6:37 AM
gniibe committed rA05535d9863cf: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 17 2020, 6:37 AM
gniibe committed rE8047ca99858a: m4: Update with newer autoconf constructs. (authored by gniibe).
m4: Update with newer autoconf constructs.
Nov 17 2020, 5:30 AM
gniibe committed rE41d753e21eaa: build: Update to new autoconf constructs. (authored by gniibe).
build: Update to new autoconf constructs.
Nov 17 2020, 5:30 AM
gniibe added a comment to T5137: gpg-agent 2.x poor performance / futex errors.

I think that it is not gpg-agent but pinentry which causes millions of futex syscall errors.
For interactive use case, pinentry may be the point of contention.
I might be wrong if your key is not protected by passphrase.

Nov 17 2020, 2:10 AM · Feature Request, gpgagent

Nov 16 2020

gniibe renamed T4956: agent: Discrepancy of handling MPI for the interpretation of signed and unsigned from agent: Disrepancy of handling MPI for the interpretation of signed and unsigned to agent: Discrepancy of handling MPI for the interpretation of signed and unsigned.
Nov 16 2020, 8:09 AM · gpgagent, gnupg
gniibe renamed T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned from ecc: Disrepancy of handling MPI for the interpretation of signed and unsigned to ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.
Nov 16 2020, 8:09 AM · libgcrypt
gniibe closed T4712: Keygrip broken in master for cv25519 as Resolved.
Nov 16 2020, 8:08 AM · Restricted Project, Bug Report, libgcrypt
gniibe closed T4104: gpgsm/ksba removes leading zeros from signature byte array as Resolved.
Nov 16 2020, 7:33 AM · Restricted Project, libksba, S/MIME, Bug Report
gniibe closed T4624: libassuan-config and libassuan.pc both put -lws2_32 before -lgpg-error, which fails during static linking as Resolved.
Nov 16 2020, 7:29 AM · Restricted Project, Windows, libassuan, Bug Report
gniibe closed T4994: Windows: assuan_sock_init or WSAStartup by main/_init_common_subsystem as Resolved.
Nov 16 2020, 7:29 AM · Restricted Project, gnupg, Windows