Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Mar 8 2023

gniibe moved T6394: FIPS requires running PCT tests unconditionally from Next to Ready for release on the FIPS board.
Mar 8 2023, 1:47 AM · FIPS, libgcrypt, Bug Report
gniibe moved T6393: DRBG with SHA384 is no longer allowed in FIPS mode (and looks like impossible to enable anyway) from Next to Ready for release on the FIPS board.
Mar 8 2023, 1:47 AM · FIPS, libgcrypt, Bug Report

Mar 7 2023

gniibe committed rCf5fe94810f30: kdf: Update tests in regards to the allowed parameters in FIPS mode. (authored by Jakuje).
kdf: Update tests in regards to the allowed parameters in FIPS mode.
Mar 7 2023, 7:46 AM
gniibe committed rC3fd3bb31597f: fips: Check return value from ftell (authored by Jakuje).
fips: Check return value from ftell
Mar 7 2023, 7:46 AM
gniibe moved T6393: DRBG with SHA384 is no longer allowed in FIPS mode (and looks like impossible to enable anyway) from Backlog to Next on the FIPS board.
Mar 7 2023, 7:34 AM · FIPS, libgcrypt, Bug Report
gniibe claimed T6393: DRBG with SHA384 is no longer allowed in FIPS mode (and looks like impossible to enable anyway).

Applied your patch (from gitlab) to both (master and 1.10).

Mar 7 2023, 7:34 AM · FIPS, libgcrypt, Bug Report
gniibe committed rC45b80678109e: random: Remove unused SHA384 DRBGs. (authored by Jakuje).
random: Remove unused SHA384 DRBGs.
Mar 7 2023, 7:33 AM
gniibe moved T6396: the gcry_pk_hash_sign/verify operates in FIPS non-operational mode from Backlog to Next on the FIPS board.
Mar 7 2023, 7:12 AM · libgcrypt, FIPS, Bug Report
gniibe claimed T6396: the gcry_pk_hash_sign/verify operates in FIPS non-operational mode.

Applied to both (1.10 and master).

Mar 7 2023, 7:11 AM · libgcrypt, FIPS, Bug Report
gniibe committed rC654d0dfa0499: visibility: Check FIPS operational status for MD+Sign operation. (authored by Jakuje).
visibility: Check FIPS operational status for MD+Sign operation.
Mar 7 2023, 6:53 AM
gniibe added a comment to T6393: DRBG with SHA384 is no longer allowed in FIPS mode (and looks like impossible to enable anyway).

You are right, there is no way to use DRBG with SHA384 by libgcrypt.

Mar 7 2023, 3:53 AM · FIPS, libgcrypt, Bug Report
gniibe moved T6397: PCT failures inconsistency in regards to the FIPS error state from Backlog to Next on the FIPS board.
Mar 7 2023, 3:43 AM · libgcrypt, FIPS, Bug Report
gniibe moved T6394: FIPS requires running PCT tests unconditionally from Backlog to Next on the FIPS board.
Mar 7 2023, 3:43 AM · FIPS, libgcrypt, Bug Report
gniibe claimed T6397: PCT failures inconsistency in regards to the FIPS error state.

Applied to both (1.10 and master).

Mar 7 2023, 3:42 AM · libgcrypt, FIPS, Bug Report
gniibe claimed T6394: FIPS requires running PCT tests unconditionally.

Applied to both (of 1.10 and master).

Mar 7 2023, 3:42 AM · FIPS, libgcrypt, Bug Report
gniibe committed rC2ddeec574bc1: ecc: Do not allow skipping tests in FIPS Mode. (authored by Jakuje).
ecc: Do not allow skipping tests in FIPS Mode.
Mar 7 2023, 3:42 AM
gniibe committed rC23a2d1285e35: ecc: Make the PCT recoverable in FIPS mode and consistent with RSA. (authored by Jakuje).
ecc: Make the PCT recoverable in FIPS mode and consistent with RSA.
Mar 7 2023, 3:42 AM

Mar 6 2023

gniibe committed rS9577c8d5f3f8: Fix ECDSA. (authored by gniibe).
Fix ECDSA.
Mar 6 2023, 4:20 AM

Mar 3 2023

gniibe added a comment to T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519).

Note that for the OpenPGP implementations which use X25519 API, it is not possible to calculate [scalar]G with scalar having least significant three bits != 0.

Mar 3 2023, 3:54 AM · Support, Documentation, OpenPGP, gnupg

Feb 27 2023

gniibe added a comment to T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519).

CV25519 private key secret part:

  • Standard MPI (big-endian) of 255-bit
  • The value should have zeros for least significant three bits, its most significant bit (255th bit) should be set.
    • the value should be the one after decodeScalar25519 function in RFC7748

CV25519 public part from secret part:

  • Simply calculated by [secret-part]G
Feb 27 2023, 9:47 AM · Support, Documentation, OpenPGP, gnupg
gniibe triaged T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519) as Normal priority.
Feb 27 2023, 8:00 AM · Support, Documentation, OpenPGP, gnupg

Feb 22 2023

gniibe committed rSa1108b4f039c: Fix returning EC_POINT. (authored by gniibe).
Fix returning EC_POINT.
Feb 22 2023, 7:37 AM

Feb 16 2023

gniibe committed rS316a7bb9eb80: Add CKA_EC_POINT attribute to CKO_PRIVATE_KEY object. (authored by gniibe).
Add CKA_EC_POINT attribute to CKO_PRIVATE_KEY object.
Feb 16 2023, 8:08 AM

Feb 10 2023

gniibe added a comment to T6234: Implement access to smartcards via a generic pkcs#11 interface.

I try experiment using Python PKCS#11 (https://python-pkcs11.readthedocs.io/en/latest/index.html)

Feb 10 2023, 4:09 AM · gnupg, Feature Request, scd
gniibe added a comment to T6234: Implement access to smartcards via a generic pkcs#11 interface.

I concluded that (at first, for the initial try) it's not good to start this under scdaemon, because of two different abstractions for accessing the device (the way of scdaemon and the way of PKCS#11).
It's good to start with something like tpm2d. The goal would be integration into scdaemon or tpm2d.

Feb 10 2023, 3:59 AM · gnupg, Feature Request, scd

Feb 8 2023

gniibe reopened T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG. as "Open".

Sorry, I mistakenly closed this task. I reopen it.

Feb 8 2023, 2:45 AM · Support, gnupg, OpenPGP

Feb 7 2023

gniibe closed T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG. as Resolved.

Could it be the case that your implementation actually used those bits to calculate a public key?

Feb 7 2023, 11:39 AM · Support, gnupg, OpenPGP

Feb 6 2023

gniibe added a comment to T6364: More device (including virtual) support.

For a device which only provides PKCS#11 driver, I decide to test with SoftHSM.

Feb 6 2023, 5:12 AM

Feb 1 2023

gniibe added a comment to T6364: More device (including virtual) support.

Current status:

  • Gnuk Token, Yubikey, OpenPGPcard with some card readers (only w/ specific reliable card readers)
  • some cards some card readers (many are not supported well)
  • TPM
Feb 1 2023, 6:49 AM
gniibe triaged T6364: More device (including virtual) support as Wishlist priority.
Feb 1 2023, 6:45 AM
gniibe added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@MathiasMagnus This change is to support Win32-OpenSSH by gpg-agent emulation of ssh-agent; You can use gpg-agent emulation of ssh-agent when you use Win32-OpenSSH. That is, you can use GPG auth subkey for Win32-OpenSSH.

Feb 1 2023, 6:03 AM · Not A Bug, workaround, gnupg24, Windows, ssh

Jan 26 2023

gniibe committed rG3de5e00d04a5: po: Update Japanese Translation. (authored by gniibe).
po: Update Japanese Translation.
Jan 26 2023, 7:25 AM
gniibe committed rG92e4f856c509: po: Update Japanese Translation. (authored by gniibe).
po: Update Japanese Translation.
Jan 26 2023, 7:25 AM

Jan 24 2023

gniibe added a comment to T6356: Trapped at "Your decision?" in an infinite loop on providing unwanted input.

The interaction goes back to "Your decision?" after you didn't answer "y/N" to the question of "Do you really...?".
What you are asked is: 1, 2, 3, 4, 5 or m.

Jan 24 2023, 11:34 AM · Support

Jan 23 2023

gniibe updated the task description for T6352: Design USB Protocol for (possible) new device.
Jan 23 2023, 8:30 AM
gniibe updated the task description for T6352: Design USB Protocol for (possible) new device.
Jan 23 2023, 8:29 AM
gniibe added a comment to T6352: Design USB Protocol for (possible) new device.

Some technical points:

Jan 23 2023, 7:04 AM
gniibe triaged T6352: Design USB Protocol for (possible) new device as Wishlist priority.
Jan 23 2023, 6:45 AM
gniibe claimed T6338: kleo: Japanese Translation.
Jan 23 2023, 6:23 AM · Restricted Project, kleopatra, Bug Report

Jan 17 2023

gniibe committed rPTHbd356d823944: POSIX: Don't include unused symbols in the version control. (authored by gniibe).
POSIX: Don't include unused symbols in the version control.
Jan 17 2023, 11:39 AM
gniibe accepted D564: Remove non-symbol npth_sigmask/npth_sigwait.
Jan 17 2023, 5:59 AM
gniibe added a comment to D564: Remove non-symbol npth_sigmask/npth_sigwait.

Thank you for the patch.

Jan 17 2023, 5:59 AM

Jan 16 2023

gniibe added a comment to T6338: kleo: Japanese Translation.

Thanks a lot.

Jan 16 2023, 7:51 AM · Restricted Project, kleopatra, Bug Report

Jan 13 2023

gniibe added a comment to T6338: kleo: Japanese Translation.

Not yet fully finished, but it's better for me to put it now:

kleopatra.po391 KBDownload

Jan 13 2023, 8:41 AM · Restricted Project, kleopatra, Bug Report

Jan 10 2023

gniibe added a comment to T6338: kleo: Japanese Translation.

I leave this open as ticket for the rest ?

Jan 10 2023, 1:03 AM · Restricted Project, kleopatra, Bug Report

Jan 6 2023

gniibe added a comment to T6338: kleo: Japanese Translation.

Here is my fix:

kleopatra-translation-ja.diff3 KBDownload

Jan 6 2023, 6:57 AM · Restricted Project, kleopatra, Bug Report
gniibe created T6338: kleo: Japanese Translation.
Jan 6 2023, 6:57 AM · Restricted Project, kleopatra, Bug Report
gniibe updated the task description for T6337: libkleo: Japanese Translation.
Jan 6 2023, 1:42 AM · kleopatra, Bug Report
gniibe added a comment to T6337: libkleo: Japanese Translation.

Here is my change for libkleo Japanese Translation:

libkleo-translation-ja.diff56 KBDownload

Jan 6 2023, 1:40 AM · kleopatra, Bug Report
gniibe created T6337: libkleo: Japanese Translation.
Jan 6 2023, 1:37 AM · kleopatra, Bug Report
gniibe added projects to T6288: Document gpgrt-config in detail or improve it to support simple invocation: Bug Report, gpgrt.
Jan 6 2023, 1:32 AM · gpgrt, Bug Report

Jan 5 2023

gniibe added a comment to T6324: libassuan, w32: assuan_sock_check_nonce fails with master.

My understanding is that: selftest in Kleo does call assuan_socket_connect (possibly in kleopatra/src/libkleopatraclient/core/command.cpp), and it didn't send nonce correctly.

Jan 5 2023, 1:06 AM · Restricted Project, libassuan

Jan 4 2023

gniibe committed rAe4e54fb4ba1b: w32: Fix assuan_socket_connect. (authored by gniibe).
w32: Fix assuan_socket_connect.
Jan 4 2023, 5:41 AM
gniibe added a comment to T6324: libassuan, w32: assuan_sock_check_nonce fails with master.

I found an issue in the assuan code of client side. This might be the cause of the server failure for nonce.

Jan 4 2023, 3:39 AM · Restricted Project, libassuan

Dec 22 2022

gniibe committed rGe89d57a2cb10: tests: Fix tests/gpgme for in-source-tree builds. (authored by gniibe).
tests: Fix tests/gpgme for in-source-tree builds.
Dec 22 2022, 1:02 AM
gniibe added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Well, not our bug... it's a kind of support question and answer:
This might help: https://stackoverflow.com/questions/3844393/what-to-do-about-pty-allocation-request-failed-on-channel-0

Dec 22 2022, 1:00 AM · Not A Bug, workaround, gnupg24, Windows, ssh
gniibe changed the status of T6313: 2.4.0 does not support in-source-tree builds from Open to Testing.

Pushed the change.

Dec 22 2022, 12:54 AM · gnupg24, workaround, Bug Report
gniibe changed the status of T6315: libgpg-error: argparse: empty header doesn't work well from Open to Testing.

Ah, I had not done git pull for a week, and I didn't realize your patch.

Dec 22 2022, 12:51 AM · Bug Report, gpgrt

Dec 21 2022

gniibe added a project to T6315: libgpg-error: argparse: empty header doesn't work well: Bug Report.
Dec 21 2022, 3:07 AM · Bug Report, gpgrt
gniibe added a comment to T6315: libgpg-error: argparse: empty header doesn't work well.

Something like this should fix the behavior:

diff --git a/src/argparse.c b/src/argparse.c
index ef0c161..403c4a7 100644
--- a/src/argparse.c
+++ b/src/argparse.c
@@ -3000,7 +3000,13 @@ show_help (opttable_t *opts, unsigned int nopts, unsigned int flags)
         writestrings (0, "Options:", "\n", NULL);
       for (i=0; i < nopts; i++ )
         {
-          s = map_fixed_string (_( opts[ordtbl[i]].description ));
+          if ((opts[ordtbl[i]].flags & ARGPARSE_OPT_HEADER)
+              && opts[ordtbl[i]].description
+              && !*opts[ordtbl[i]].description)
+            /* It's empty header.  */
+            s = opts[ordtbl[i]].description;
+          else
+            s = map_fixed_string (_( opts[ordtbl[i]].description ));
           if ( s && *s== '@' && !s[1] ) /* Hide this line.  */
             continue;
           if ( s && (opts[ordtbl[i]].flags & ARGPARSE_OPT_HEADER))
Dec 21 2022, 3:07 AM · Bug Report, gpgrt
gniibe claimed T6313: 2.4.0 does not support in-source-tree builds.

I will push this change:

commit e89d57a2cb10bd04d266165015f159be2ab48984
Author: NIIBE Yutaka <gniibe@fsij.org>
Date:   Wed Dec 21 10:52:24 2022 +0900
Dec 21 2022, 2:55 AM · gnupg24, workaround, Bug Report
gniibe created T6315: libgpg-error: argparse: empty header doesn't work well.
Dec 21 2022, 1:51 AM · Bug Report, gpgrt

Dec 16 2022

gniibe committed rGc19ea75f10d6: tests: Fix make check with GPGME. (authored by gniibe).
tests: Fix make check with GPGME.
Dec 16 2022, 5:19 AM
gniibe added a comment to T6311: A core dump occurs in the _gcry_mpi_normalize function.

I figured out the situation.

Dec 16 2022, 4:18 AM · libgcrypt
gniibe added a comment to T6311: A core dump occurs in the _gcry_mpi_normalize function.

Ah, I found that we have very bad example use case in tests/t-mpi-point.c. This should be fixed at first.

Dec 16 2022, 3:52 AM · libgcrypt
gniibe added a comment to T6311: A core dump occurs in the _gcry_mpi_normalize function.
Dec 16 2022, 3:09 AM · libgcrypt
gniibe claimed T6311: A core dump occurs in the _gcry_mpi_normalize function.

Thank you for your report. IIUC, it is called unexpected way, like invalid/wrong KEYPARMS. Possibly, KEYPARMS == NULL, or something like that.

Dec 16 2022, 2:56 AM · libgcrypt

Dec 15 2022

gniibe added a comment to T6310: kleo: Use pkg-config to determine libassuan use.

Here is my try of next, after 0001.

0002-build-Use-pkg-config-to-find-libassuan-and-libgpg-er.patch19 KBDownload

Dec 15 2022, 1:39 AM · Restricted Project, kleopatra

Dec 14 2022

gniibe committed rM2ba11f9bfb1f: doc:python: Replace gpgme-config to pkg-config. (authored by gniibe).
doc:python: Replace gpgme-config to pkg-config.
Dec 14 2022, 7:33 AM
gniibe added a comment to T6310: kleo: Use pkg-config to determine libassuan use.

Here is my try:

0001-build-Use-pkg-config-instead-of-libassuan-config.patch2 KBDownload

Dec 14 2022, 7:01 AM · Restricted Project, kleopatra
gniibe triaged T6310: kleo: Use pkg-config to determine libassuan use as Normal priority.
Dec 14 2022, 7:00 AM · Restricted Project, kleopatra
gniibe committed rCe3b441214f93: build: Fix m4 macros for strict C compiler. (authored by gniibe).
build: Fix m4 macros for strict C compiler.
Dec 14 2022, 6:23 AM
gniibe committed rCf62d5cf9f268: build: Fix configure.ac for strict C99. (authored by gniibe).
build: Fix configure.ac for strict C99.
Dec 14 2022, 6:23 AM

Dec 13 2022

gniibe committed rC693ffa145378: build: Fix configure.ac for strict C99. (authored by gniibe).
build: Fix configure.ac for strict C99.
Dec 13 2022, 9:10 AM
gniibe committed rE72e0fb3fc858: Add more tests for t-printf and t-strerror. (authored by pengyi <pengyi37@huawei.com>).
Add more tests for t-printf and t-strerror.
Dec 13 2022, 4:21 AM

Dec 12 2022

gniibe changed the status of T6257: Without gpg-error-config installed (libgpg-error-1.46) libgcrypt-1.10.1 does not configure from Open to Testing.
Dec 12 2022, 9:29 AM · MacOS, libgcrypt, gpgrt
gniibe changed the status of T6264: gpgrt-config: Support multilib MinGW-w64 from Open to Testing.

AFAIU, gpgrt-config works well now for the multilib MinGW target.

Dec 12 2022, 9:25 AM · toolchain, gpgrt
gniibe changed the status of T6293: w32: putenv in Microsoft runtime doesn't support GNU extension from Open to Testing.
Dec 12 2022, 9:04 AM · gnupg, Bug Report

Dec 9 2022

gniibe committed rGf32d0c9c0ff7: build: Remove Windows CE support. (authored by gniibe).
build: Remove Windows CE support.
Dec 9 2022, 6:07 AM

Dec 8 2022

gniibe merged task T6306: 1.18.0: gpgme pythpn bindings fails because it tries to use gpg-error-config into T6204: gpgme:python Fix setup.py, using pkg-config (not deprecated gpg-error-config and gpgme-config).
Dec 8 2022, 3:23 AM · Bug Report
gniibe merged T6306: 1.18.0: gpgme pythpn bindings fails because it tries to use gpg-error-config into T6204: gpgme:python Fix setup.py, using pkg-config (not deprecated gpg-error-config and gpgme-config).
Dec 8 2022, 3:23 AM · Python, gpgme
gniibe added a comment to T6306: 1.18.0: gpgme pythpn bindings fails because it tries to use gpg-error-config.

Thank you for your report.
Please look T6204.
Closed as duplicate.

Dec 8 2022, 3:22 AM · Bug Report

Dec 6 2022

gniibe committed rPa7e78e1753a4: build: Emit warning for pinentry-emacs. (authored by gniibe).
build: Emit warning for pinentry-emacs.
Dec 6 2022, 9:50 AM
gniibe committed rC896fe69757e0: doc: Minor fix up. (authored by gniibe).
doc: Minor fix up.
Dec 6 2022, 2:15 AM
gniibe committed rC06ea5b5332ff: fips,rsa: Prevent usage of X9.31 keygen in FIPS mode. (authored by Jakuje).
fips,rsa: Prevent usage of X9.31 keygen in FIPS mode.
Dec 6 2022, 2:15 AM

Dec 5 2022

gniibe committed rEbe94bcf6aace: Handle strerror_r failure on non-GNU systems. (authored by gniibe).
Handle strerror_r failure on non-GNU systems.
Dec 5 2022, 4:06 AM

Dec 2 2022

gniibe committed rG0a93b5b96a3b: tests: Simplify fake-pinentry to use the option only. (authored by gniibe).
tests: Simplify fake-pinentry to use the option only.
Dec 2 2022, 8:58 AM
gniibe committed rG7c6b014d3bc6: tests: Fix fake-pinentry for Windows. (authored by gniibe).
tests: Fix fake-pinentry for Windows.
Dec 2 2022, 8:19 AM
gniibe committed rG7663fdd983d2: tests: Fix make check-all. (authored by gniibe).
tests: Fix make check-all.
Dec 2 2022, 2:01 AM

Dec 1 2022

gniibe committed rG1b434111a186: tests: Put a workaround for semihosted environment. (authored by gniibe).
tests: Put a workaround for semihosted environment.
Dec 1 2022, 9:14 AM
gniibe committed rG594c3274d669: tests: More fix for semihosted environment. (authored by gniibe).
tests: More fix for semihosted environment.
Dec 1 2022, 9:14 AM
gniibe committed rGf182c284fb2c: tests: Support semihosted environment. (authored by gniibe).
tests: Support semihosted environment.
Dec 1 2022, 6:02 AM
gniibe committed rGa9a1ee872633: tests: Fix tests under cms. (authored by gniibe).
tests: Fix tests under cms.
Dec 1 2022, 6:02 AM
gniibe committed rGe1e26a49bf2c: tests,w32: Fix for semihosted environment. (authored by gniibe).
tests,w32: Fix for semihosted environment.
Dec 1 2022, 6:02 AM

Nov 30 2022

gniibe committed rG50c651536050: w32: Fix for tests on semihosted environment. (authored by gniibe).
w32: Fix for tests on semihosted environment.
Nov 30 2022, 8:51 AM
gniibe added a comment to T6293: w32: putenv in Microsoft runtime doesn't support GNU extension.

Fixed in rG8e8971403f75: w32: Fix gnupg_unsetenv..

Nov 30 2022, 8:02 AM · gnupg, Bug Report
gniibe committed rG8e8971403f75: w32: Fix gnupg_unsetenv. (authored by gniibe).
w32: Fix gnupg_unsetenv.
Nov 30 2022, 8:02 AM
gniibe triaged T6293: w32: putenv in Microsoft runtime doesn't support GNU extension as Normal priority.
Nov 30 2022, 7:50 AM · gnupg, Bug Report
gniibe committed rCbf1e62e59200: rsa: Prevent usage of long salt in FIPS mode (authored by Jakuje).
rsa: Prevent usage of long salt in FIPS mode
Nov 30 2022, 7:07 AM
gniibe committed rGde0c563f2971: doc: Deprecate scd-event option of scdaemon. (authored by gniibe).
doc: Deprecate scd-event option of scdaemon.
Nov 30 2022, 3:48 AM
First
Prev
Next