Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Jan 20 2021

werner updated the task description for T4294: Release Libgcrypt 1.9.0.
Jan 20 2021, 12:53 PM · Release Info, libgcrypt
outer added a comment to T5254: libgcrypt 1.9.0 fails make check (selftest).

Fixed by jukvilli’s patch.
__outer

Jan 20 2021, 10:19 AM · patch, libgcrypt, Bug Report
outer added a comment to T5254: libgcrypt 1.9.0 fails make check (selftest).

That works, thanks. So does that become part of the next release?
__outer

Jan 20 2021, 10:14 AM · patch, libgcrypt, Bug Report
telans added a comment to T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO.

Both are affected. I updated to reflect that I tested the newer version

Jan 20 2021, 9:39 AM · asm, libgcrypt, clang, Bug Report
werner triaged T5254: libgcrypt 1.9.0 fails make check (selftest) as High priority.
Jan 20 2021, 9:34 AM · patch, libgcrypt, Bug Report
werner triaged T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO as Normal priority.
Jan 20 2021, 9:33 AM · asm, libgcrypt, clang, Bug Report
werner triaged T5251: Compile error on ARMv7 for libgcrypt as Normal priority.
Jan 20 2021, 9:28 AM · asm, libgcrypt, Bug Report
werner added a comment to T4294: Release Libgcrypt 1.9.0.
  • For build problems on Raspberry PI see T5251 for a patch
  • If you run into "selftest" error see T5254 for a patch (which should be applied in any case)
Jan 20 2021, 9:26 AM · Release Info, libgcrypt
werner added a comment to T5251: Compile error on ARMv7 for libgcrypt .

FWIW, after the release I had some time and after some trouble with my Pi4B I ran into the same problem.

Jan 20 2021, 9:23 AM · asm, libgcrypt, Bug Report
werner updated the task description for T5251: Compile error on ARMv7 for libgcrypt .
Jan 20 2021, 9:22 AM · asm, libgcrypt, Bug Report

Jan 19 2021

zerbey added a comment to T5251: Compile error on ARMv7 for libgcrypt .

Confirmed working after applying your patch!

Jan 19 2021, 7:55 PM · asm, libgcrypt, Bug Report
jukivili added a comment to T5251: Compile error on ARMv7 for libgcrypt .

Thanks for you report.

Jan 19 2021, 7:53 PM · asm, libgcrypt, Bug Report
zerbey added a project to T5251: Compile error on ARMv7 for libgcrypt : libgcrypt.
Jan 19 2021, 7:00 PM · asm, libgcrypt, Bug Report
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4068: libgcrypt 1.8.3 make check errors, as Resolved.
Jan 19 2021, 1:54 PM · Documentation, libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4243: Test failure in libgcrypt-1.8.4, as Resolved.
Jan 19 2021, 1:54 PM · Documentation, Tests, libgcrypt, Bug Report
werner closed T4294: Release Libgcrypt 1.9.0 as Resolved.
Jan 19 2021, 1:54 PM · Release Info, libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140, as Resolved.
Jan 19 2021, 1:54 PM · libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4288: Add getrandom support for the BSDs, as Resolved.
Jan 19 2021, 1:54 PM · libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4869: constant-time mpi_invm, as Resolved.
Jan 19 2021, 1:54 PM · libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T5182: libgcrypt self tests for FIPS 140, as Resolved.
Jan 19 2021, 1:54 PM · Restricted Project, libgcrypt
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4274: Fail selftests when checksum file is missing in FIPS mode only, as Resolved.
Jan 19 2021, 1:54 PM · Restricted Project, libgcrypt, Bug Report
werner closed T4294: Release Libgcrypt 1.9.0, a subtask of T4293: Add dedicated X25519 function to Libcgrypt , as Resolved.
Jan 19 2021, 1:54 PM · Restricted Project, libgcrypt
werner set Version to 1.9.0 on T4294: Release Libgcrypt 1.9.0.
Jan 19 2021, 10:17 AM · Release Info, libgcrypt
werner removed a subtask for T5244: libgcrypt: Restrict MD5 use: T4294: Release Libgcrypt 1.9.0.
Jan 19 2021, 10:11 AM · Bug Report, FIPS, libgcrypt
werner removed a parent task for T4294: Release Libgcrypt 1.9.0: T5244: libgcrypt: Restrict MD5 use.
Jan 19 2021, 10:11 AM · Release Info, libgcrypt
werner moved T5244: libgcrypt: Restrict MD5 use from Backlog to For 1.10 on the libgcrypt board.

We plan this for 1.10 but it may also go into one of the next 1.9.x releases

Jan 19 2021, 10:09 AM · Bug Report, FIPS, libgcrypt
werner closed T4293: Add dedicated X25519 function to Libcgrypt as Resolved.

Docs done.

Jan 19 2021, 10:07 AM · Restricted Project, libgcrypt
gniibe closed T5182: libgcrypt self tests for FIPS 140 as Resolved.
Jan 19 2021, 6:35 AM · Restricted Project, libgcrypt
gniibe closed T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140 as Resolved.
Jan 19 2021, 6:34 AM · libgcrypt

Jan 18 2021

werner moved T5182: libgcrypt self tests for FIPS 140 from For 1.9 to For 1.10 on the libgcrypt board.
Jan 18 2021, 7:08 PM · Restricted Project, libgcrypt
werner moved T5195: Incorrect HWCAP2 check for AArch32 from For 1.9 to For 1.8 on the libgcrypt board.
Jan 18 2021, 7:08 PM · libgcrypt, backport, Bug Report
werner added a project to T5195: Incorrect HWCAP2 check for AArch32: libgcrypt.
Jan 18 2021, 7:08 PM · libgcrypt, backport, Bug Report
werner added a project to T5195: Incorrect HWCAP2 check for AArch32: backport.
Jan 18 2021, 7:06 PM · libgcrypt, backport, Bug Report
werner moved T4951: Support point compression in Libgcrypt from For 1.9 to For 1.10 on the libgcrypt board.
Jan 18 2021, 7:05 PM · Feature Request, libgcrypt
werner moved T4873: Enable AES GCM in FIPS mode from FIPS to For 1.10 on the libgcrypt board.
Jan 18 2021, 7:04 PM · FIPS, libgcrypt, Feature Request
werner removed a parent task for T4294: Release Libgcrypt 1.9.0: T1303: Please support GCRYSEXP_FMT_BASE64.
Jan 18 2021, 7:02 PM · Release Info, libgcrypt
werner removed a subtask for T1303: Please support GCRYSEXP_FMT_BASE64: T4294: Release Libgcrypt 1.9.0.
Jan 18 2021, 7:02 PM · Feature Request, libgcrypt
werner added a comment to T5244: libgcrypt: Restrict MD5 use.

I am not sure. MD5 is still important for some applications, say CRAM-MD5. IIRC, back in 2008 we dis-allowed RMD160 and added separate RMD160 code directly to gpg to fulfill FIPS requirements.

Jan 18 2021, 8:32 AM · Bug Report, FIPS, libgcrypt
werner added a comment to T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.

Okay for 1.9.

Jan 18 2021, 8:29 AM · libgcrypt
gniibe added a project to T5182: libgcrypt self tests for FIPS 140: Restricted Project.
Jan 18 2021, 6:50 AM · Restricted Project, libgcrypt

Jan 15 2021

gniibe added a comment to T5244: libgcrypt: Restrict MD5 use.

Note that even after rCce1cbe16992a: Disable non-allowed algorithms in FIPS mode, gcry_md_open won't return an error with disabled algo.

Jan 15 2021, 8:56 AM · Bug Report, FIPS, libgcrypt
gniibe added a comment to T5244: libgcrypt: Restrict MD5 use.

The changelog in https://src.fedoraproject.org/rpms/libgcrypt/c/402a3b5f2eed746bea996c5743c99bec9bbc3487?branch=master

Jan 15 2021, 8:44 AM · Bug Report, FIPS, libgcrypt
gniibe updated the task description for T5244: libgcrypt: Restrict MD5 use.
Jan 15 2021, 8:33 AM · Bug Report, FIPS, libgcrypt
gniibe added a subtask for T5244: libgcrypt: Restrict MD5 use: T4294: Release Libgcrypt 1.9.0.
Jan 15 2021, 8:08 AM · Bug Report, FIPS, libgcrypt
gniibe added a parent task for T4294: Release Libgcrypt 1.9.0: T5244: libgcrypt: Restrict MD5 use.
Jan 15 2021, 8:08 AM · Release Info, libgcrypt
gniibe created T5244: libgcrypt: Restrict MD5 use.
Jan 15 2021, 8:08 AM · Bug Report, FIPS, libgcrypt
gniibe added a parent task for T4294: Release Libgcrypt 1.9.0: T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.
Jan 15 2021, 7:50 AM · Release Info, libgcrypt
gniibe added a subtask for T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140: T4294: Release Libgcrypt 1.9.0.
Jan 15 2021, 7:50 AM · libgcrypt
gniibe removed a subtask for T4294: Release Libgcrypt 1.9.0: T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.
Jan 15 2021, 7:50 AM · Release Info, libgcrypt
gniibe removed a parent task for T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140: T4294: Release Libgcrypt 1.9.0.
Jan 15 2021, 7:50 AM · libgcrypt
gniibe added a subtask for T5182: libgcrypt self tests for FIPS 140: T4294: Release Libgcrypt 1.9.0.
Jan 15 2021, 7:50 AM · Restricted Project, libgcrypt
gniibe added a parent task for T4294: Release Libgcrypt 1.9.0: T5182: libgcrypt self tests for FIPS 140.
Jan 15 2021, 7:50 AM · Release Info, libgcrypt
gniibe removed a parent task for T5182: libgcrypt self tests for FIPS 140: T4294: Release Libgcrypt 1.9.0.
Jan 15 2021, 7:49 AM · Restricted Project, libgcrypt
gniibe removed a subtask for T4294: Release Libgcrypt 1.9.0: T5182: libgcrypt self tests for FIPS 140.
Jan 15 2021, 7:49 AM · Release Info, libgcrypt
gniibe claimed T5182: libgcrypt self tests for FIPS 140.
Jan 15 2021, 7:47 AM · Restricted Project, libgcrypt
gniibe renamed T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140 from libgcrypt "check if fips_is_operational and error return if not fix" for FIPS 140 to libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.
Jan 15 2021, 7:46 AM · libgcrypt
gniibe created T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.
Jan 15 2021, 7:14 AM · libgcrypt

Jan 12 2021

werner added a comment to T4818: libgcrypt build failures on several platforms.

Note: The commit in master (1.9) is rCe0898d0628789414
and in 1.8 it is rC03e6d6597198ee

Jan 12 2021, 12:40 PM · Solaris, libgcrypt, Bug Report
werner added a comment to T4833: libgcrypt: bug in _gcry_poly1305_armv7_neon_init_ext.

The commit which fixes this is rC761a1a0d30

Jan 12 2021, 12:29 PM · libgcrypt, Bug Report

Jan 11 2021

aheinecke moved T4294: Release Libgcrypt 1.9.0 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jan 11 2021, 10:15 AM · Release Info, libgcrypt
aheinecke assigned T4294: Release Libgcrypt 1.9.0 to werner.
Jan 11 2021, 10:09 AM · Release Info, libgcrypt

Jan 8 2021

werner added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

I agree to the sexp change - but it should not be backported to 1.8

Jan 8 2021, 9:43 AM · libgcrypt
gniibe added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

For printing SEXP, it would be good to have this change:

Jan 8 2021, 6:58 AM · libgcrypt
gniibe added a comment to T4956: agent: Discrepancy of handling MPI for the interpretation of signed and unsigned.

rG47c1c329ed82: agent,ecc: Use of opaque MPI for ECC, fixup 'd'. does the fixup when reading keys.

Jan 8 2021, 4:18 AM · gpgagent, gnupg
gniibe added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

I describe about rC6f8b1d4cb798: ecc: Consistently handle parameters as unsigned value..

Jan 8 2021, 3:13 AM · libgcrypt
gniibe updated the task description for T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.
Jan 8 2021, 2:16 AM · libgcrypt
gniibe added a comment to T4951: Support point compression in Libgcrypt.

Reading compressed point (in keys) is supported (except for NIST P-224). When curve point is represented in compressed format, it is correctly interpreted now. So, for example, I think that with 1.9.0, gpgsm can handle certificate which uses compressed format in its curve point representation.

Jan 8 2021, 2:09 AM · Feature Request, libgcrypt

Jan 7 2021

jukivili added a comment to T5195: Incorrect HWCAP2 check for AArch32.

Yes, bug is also in 1.8 branch.

Jan 7 2021, 11:00 PM · libgcrypt, backport, Bug Report
werner moved T4873: Enable AES GCM in FIPS mode from For 1.9 to FIPS on the libgcrypt board.
Jan 7 2021, 5:59 PM · FIPS, libgcrypt, Feature Request
werner added a member for libgcrypt: werner.
Jan 7 2021, 11:44 AM
werner moved T4951: Support point compression in Libgcrypt from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:42 AM · Feature Request, libgcrypt
werner moved T5195: Incorrect HWCAP2 check for AArch32 from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:42 AM · libgcrypt, backport, Bug Report
werner added a comment to T5195: Incorrect HWCAP2 check for AArch32.

Do we need to backport to 1.8?

Jan 7 2021, 11:42 AM · libgcrypt, backport, Bug Report
werner moved T5182: libgcrypt self tests for FIPS 140 from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:41 AM · Restricted Project, libgcrypt
werner moved T4293: Add dedicated X25519 function to Libcgrypt from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:40 AM · Restricted Project, libgcrypt
werner moved T4873: Enable AES GCM in FIPS mode from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:40 AM · FIPS, libgcrypt, Feature Request
werner moved T4294: Release Libgcrypt 1.9.0 from Backlog to For 1.9 on the libgcrypt board.
Jan 7 2021, 11:40 AM · Release Info, libgcrypt
werner added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

Do we really need this for 1.9?

Jan 7 2021, 11:33 AM · libgcrypt
werner claimed T4926: Add API to map a curve name to its canonical OID..
Jan 7 2021, 11:30 AM · Feature Request, libgcrypt
werner added a comment to T4951: Support point compression in Libgcrypt.

What is the state of this bug? Reading is implemented - do we really need writing (maybe to support certain smartcards)?

Jan 7 2021, 11:29 AM · Feature Request, libgcrypt
werner closed T4914: libgcrypt ECC regression for the use case in GNUNET as Resolved.
Jan 7 2021, 11:25 AM · Restricted Project, libgcrypt
werner edited projects for T4822: mlock requires privilege, added: FAQ; removed Bug Report.

It is possible to disable the mlock thingy and if that is not wanted the application should be modified to be suid(root) during Libgcrypt initialization - this is actually how we handle this in GnuPG. Or maybe I don't understand the bug described here. It seems to be more of a support question.

Jan 7 2021, 11:22 AM · FAQ, Solaris, libgcrypt
werner closed T4499: Asan finding in libgcrypt as Wontfix.

For security and auditing reasons a Libgcrypt SO may not be "unloaded".

Jan 7 2021, 11:16 AM · libgcrypt
werner added a subtask for T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297): T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452).
Jan 7 2021, 11:04 AM · Feature Request, libgcrypt
werner added a parent task for T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452): T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297).
Jan 7 2021, 11:04 AM · Feature Request, libgcrypt
werner closed T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error as Wontfix.
Jan 7 2021, 11:02 AM · Legacy OS, Fedora, libgcrypt, Bug Report
werner changed the status of T4293: Add dedicated X25519 function to Libcgrypt from Testing to Open.

gcry_ecc_get_algo_keylen has been added with commit a658c9ccc2c741f40b0b5cdbcd184cfb9a841d17 but documentation is missing.

Jan 7 2021, 10:58 AM · Restricted Project, libgcrypt
werner closed T4274: Fail selftests when checksum file is missing in FIPS mode only as Resolved.
Jan 7 2021, 10:52 AM · Restricted Project, libgcrypt, Bug Report
werner closed T3220: Missing curve documentation as Resolved.

Thanks. I added the OIDs and the missing curves. To go into 1.9

Jan 7 2021, 9:54 AM · patch, libgcrypt, Bug Report
werner lowered the priority of T1303: Please support GCRYSEXP_FMT_BASE64 from Normal to Wishlist.
Jan 7 2021, 9:14 AM · Feature Request, libgcrypt

Jan 5 2021

werner triaged T5157: libgcrypt: ARM64 Builds on macOS fail as Normal priority.
Jan 5 2021, 9:18 AM · toolchain, MacOS, libgcrypt, Bug Report
werner added a parent task for T5182: libgcrypt self tests for FIPS 140: T4294: Release Libgcrypt 1.9.0.
Jan 5 2021, 9:14 AM · Restricted Project, libgcrypt
werner added a subtask for T4294: Release Libgcrypt 1.9.0: T5182: libgcrypt self tests for FIPS 140.
Jan 5 2021, 9:14 AM · Release Info, libgcrypt
werner triaged T5182: libgcrypt self tests for FIPS 140 as High priority.

Flagged as high becuase this is RC for Libgcrypt 1.9

Jan 5 2021, 9:14 AM · Restricted Project, libgcrypt
werner triaged T5195: Incorrect HWCAP2 check for AArch32 as Normal priority.
Jan 5 2021, 9:12 AM · libgcrypt, backport, Bug Report

Dec 30 2020

jukivili added a comment to T5201: libgcrypt: s390x/zSeries 128-bit vector implementation of ChaCha20.

Reimplemented 8 block parallel in "vertical" orientation.

Dec 30 2020, 12:29 PM · libgcrypt
jukivili added a comment to T5202: libgcrypt: s390x/zSeries implementation of Poly1305 / ChaCha20-Poly1305 AEAD.

With little extra effort, stitched implementation turned out ok after all.

Dec 30 2020, 12:28 PM · libgcrypt
jukivili renamed T5202: libgcrypt: s390x/zSeries implementation of Poly1305 / ChaCha20-Poly1305 AEAD from libgcrypt: s390x/zSeries 128-bit vector implementation of Poly1305 to libgcrypt: s390x/zSeries implementation of Poly1305 / ChaCha20-Poly1305 AEAD.
Dec 30 2020, 12:24 PM · libgcrypt

Dec 22 2020

jukivili added a comment to T5200: libgcrypt: s390x/zSeries SHA3 acceleration.

Applied to s390x optimizations feature branch:
https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=7532e27cacb74c92fd561524a0897163b0fcd7f4

Dec 22 2020, 9:03 PM · libgcrypt
jukivili added a comment to T5198: libgcrypt: s390x/zSeries SHA256/SHA512 acceleration.

Applied to s390x optimizations feature branch:
SHA256: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=0b555c3cc7c2b80ec2628685946a6139a1996911
SHA512: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commit;h=45f0ec0c4e3b08627cbf7e65f5f110c321710d01

Dec 22 2020, 9:02 PM · libgcrypt
First
Prev
Next