Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

May 21 2024

Jakuje added a comment to T7130: Fix static reports by static analyser in libgcrypt.

The report went like this

Error: OVERRUN (CWE-119):
libgcrypt-1.10.3/cipher/cipher-aeswrap.c:303: cond_at_most: Checking "plen > 8U" implies that "plen" may be up to 8 on the false branch.
libgcrypt-1.10.3/cipher/cipher-aeswrap.c:305: cond_between: Checking "plen" implies that "plen" is between 1 and 8 (inclusive) on the true branch.
libgcrypt-1.10.3/cipher/cipher-aeswrap.c:309: assignment: Assigning: "i" = "0".
libgcrypt-1.10.3/cipher/cipher-aeswrap.c:310: overrun-local: Overrunning array "t" of 16 bytes at byte offset 16 using index "8U + plen + i" (which evaluates to 16).
#  308|   
#  309|                 for (i = 0; i < 16 - (8+plen); i++)
#  310|->                 if (t[8+plen+i])
#  311|                     {
#  312|                       err = GPG_ERR_CHECKSUM;

but looking again, it is wrong as it did not reflect the end condition for the cycle, which obviously means the cycle does not run. Sorry for the noise.

May 21 2024, 11:44 AM · libgcrypt, Bug Report
werner added a comment to T7130: Fix static reports by static analyser in libgcrypt.

Can you give a hint where there is a buffer overrun in the first patch? Padding limit might be correct but I can't see an overrun.

May 21 2024, 11:31 AM · libgcrypt, Bug Report
Jakuje added a comment to T7129: Fix static reports by static analyser in gnugp.

Thanks for running the analyzer. We need to have a closer look at the suggested fixes. For example initializing a variable needs a reason and should not be done as a general precaution because that may hide other errors.

May 21 2024, 11:23 AM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner edited projects for T7129: Fix static reports by static analyser in gnugp, added: gnupg24; removed gnupg24 (gnupg-2.4.4).
May 21 2024, 11:20 AM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner triaged T7129: Fix static reports by static analyser in gnugp as Normal priority.

Thanks for running the analyzer. We need to have a closer look at the suggested fixes. For example initializing a variable needs a reason and should not be done as a general precaution because that may hide other errors.

May 21 2024, 11:19 AM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner moved T6369: gpgme: add a faster variant of gpgme_get_key() from Backlog to QA for next release on the gpgme board.
May 21 2024, 11:08 AM · gpgme, Feature Request
werner committed rM73403a8ba003: core: speedup gpgme_get_key (authored by werner).
core: speedup gpgme_get_key
May 21 2024, 11:05 AM
TobiasFella committed rKLEOPATRAea6691000250: Make groupboxes frameless (authored by TobiasFella).
Make groupboxes frameless
May 21 2024, 11:00 AM
CarlSchwan committed rOJ34c41e41c3d1: Rename Composer to ComposerJob (authored by CarlSchwan).
Rename Composer to ComposerJob
May 21 2024, 10:43 AM
CarlSchwan committed rOJf4c13ab5115a: Introduce MessageDispatcher interface (authored by CarlSchwan).
Introduce MessageDispatcher interface
May 21 2024, 10:43 AM
TobiasFella committed rKLEOPATRA8b584aeb7106: Improve wording for keyserver upload (authored by TobiasFella).
Improve wording for keyserver upload
May 21 2024, 10:25 AM
TobiasFella committed rKLEOPATRA97e6b6817c7e: Fix (authored by TobiasFella).
Fix
May 21 2024, 10:08 AM
TobiasFella committed rKLEOPATRA835ebd31d9b3: Update (authored by TobiasFella).
Update
May 21 2024, 10:08 AM
TobiasFella committed rKLEOPATRAb5f356aedcf6: Improve wording for keyserver upload (authored by TobiasFella).
Improve wording for keyserver upload
May 21 2024, 10:08 AM
TobiasFella committed rKLEOPATRAc53dc21321e9: Add option to disable symmetric encryption (authored by TobiasFella).
Add option to disable symmetric encryption
May 21 2024, 10:08 AM
TobiasFella committed rKLEOPATRA42bf39404bf4: Apply 1 suggestion(s) to 1 file(s) (authored by ikloecker).
Apply 1 suggestion(s) to 1 file(s)
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA7419c67f95fd: Default to uploading revocations for ldap keyservers (authored by TobiasFella).
Default to uploading revocations for ldap keyservers
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA989e53a02977: Work (authored by TobiasFella).
Work
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA645a14191baa: Improvements (authored by TobiasFella).
Improvements
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA1d5d64acc38d: Automatically export certificate after revocation and ask the user to publish it (authored by TobiasFella).
Automatically export certificate after revocation and ask the user to publish it
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA27ebc04f28df: Change texts (authored by TobiasFella).
Change texts
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA6130e2a2e1ff: Put reason in an expander (authored by TobiasFella).
Put reason in an expander
May 21 2024, 10:07 AM
TobiasFella added a reverting change for rKLEOPATRAe96e8ae65345: Remove UI for adding a reason: rKLEOPATRA59cc4053ffeb: Revert "Remove UI for adding a reason".
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA59cc4053ffeb: Revert "Remove UI for adding a reason" (authored by TobiasFella).
Revert "Remove UI for adding a reason"
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRAae5207655cb4: Use active form (authored by TobiasFella).
Use active form
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA6c358ec7b668: Change some strings (authored by TobiasFella).
Change some strings
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRAc41566f517f2: Remove UI for adding a reason (authored by TobiasFella).
Remove UI for adding a reason
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRAb4e49aec4201: Add more spacing (authored by TobiasFella).
Add more spacing
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRA982e05b7ffb2: Improve text (authored by TobiasFella).
Improve text
May 21 2024, 10:07 AM
TobiasFella committed rKLEOPATRAe669e0d3058a: Use strong emphasis (authored by TobiasFella).
Use strong emphasis
May 21 2024, 10:06 AM
TobiasFella committed rKLEOPATRA55885ddc2940: Improve revocation dialog (authored by TobiasFella).
Improve revocation dialog
May 21 2024, 10:06 AM
TobiasFella committed rKLEOPATRA55fe91e01ea2: Indent certificate (authored by TobiasFella).
Indent certificate
May 21 2024, 10:06 AM
TobiasFella committed rKLEOPATRA2adc542e2281: Bump likleo dependency (authored by TobiasFella).
Bump likleo dependency
May 21 2024, 10:05 AM
TobiasFella committed rKLEOPATRAcf958e707d0d: WebOfTrustWidget: Add option to only show own certifications (authored by TobiasFella).
WebOfTrustWidget: Add option to only show own certifications
May 21 2024, 10:05 AM
TobiasFella committed rLIBKLEO80242493b867: Update (authored by TobiasFella).
Update
May 21 2024, 9:54 AM
TobiasFella committed rLIBKLEObcb4918622cb: Bump version (authored by TobiasFella).
Bump version
May 21 2024, 9:54 AM
TobiasFella committed rLIBKLEO4fdbd257a5a0: Add UserIDListProxyModel, allowing filtering for the user's own certifications (authored by TobiasFella).
Add UserIDListProxyModel, allowing filtering for the user's own certifications
May 21 2024, 9:54 AM
ebo renamed T6935: Kleopatra: Key search and refresh related improvements from Kleopatra: Key search related improvements to Kleopatra: Key search and refresh related improvements.
May 21 2024, 9:51 AM · kleopatra
CarlSchwan committed rMTPe4220af0b866: Handle encryption with multipart/mixed (authored by CarlSchwan).
Handle encryption with multipart/mixed
May 21 2024, 9:50 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO96fca43d23e6: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 21 2024, 3:32 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAb42875a3088e: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 21 2024, 3:31 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAeda1cea1cd4b: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
May 21 2024, 3:19 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA26a54d4db966: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
May 21 2024, 2:40 AM

May 20 2024

Jakuje renamed T7129: Fix static reports by static analyser in gnugp from Fix static reports by static analyser to Fix static reports by static analyser in gnugp.
May 20 2024, 7:13 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
Jakuje created T7130: Fix static reports by static analyser in libgcrypt.
May 20 2024, 7:13 PM · libgcrypt, Bug Report
Jakuje created T7129: Fix static reports by static analyser in gnugp.
May 20 2024, 7:08 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
lazka added a comment to T6369: gpgme: add a faster variant of gpgme_get_key().

With caching, did you have something like this in mind?

May 20 2024, 2:02 PM · gpgme, Feature Request
mlaurent committed rMTP1a5d833a5765: GIT_SILENT: time to increase version (authored by mlaurent).
GIT_SILENT: time to increase version
May 20 2024, 10:13 AM
mlaurent committed rKLEOPATRA7c2b185d95e9: GIT_SILENT: time to increase version (authored by mlaurent).
GIT_SILENT: time to increase version
May 20 2024, 10:10 AM
mlaurent committed rLIBKLEOc1678fa7bc4f: GIT_SILENT: time to increase version (authored by mlaurent).
GIT_SILENT: time to increase version
May 20 2024, 10:08 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO5d11a0149ea5: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 20 2024, 5:05 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO4273e88f5447: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 20 2024, 3:27 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA88f8478a3042: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 20 2024, 3:26 AM

May 19 2024

l10n daemon script <scripty@kde.org> committed rLIBKLEO35b479642954: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 19 2024, 5:04 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOc530a5d7df0f: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 19 2024, 3:28 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA82d64fe6615d: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 19 2024, 3:27 AM

May 18 2024

werner triaged T7123: please document --unwrap as Low priority.
May 18 2024, 11:31 PM · gnupg, Documentation, Bug Report
werner added a comment to T7124: unclear descriptions of `--disable-cipher-algo` and `--disable-pubkey-algo` .

Back in the ancient days we allowed to dlopen algorithms so to avoid patent problems in certain countries.

May 18 2024, 11:30 PM · gnupg, Documentation, Bug Report
werner triaged T7124: unclear descriptions of `--disable-cipher-algo` and `--disable-pubkey-algo` as Low priority.
May 18 2024, 11:29 PM · gnupg, Documentation, Bug Report
werner added a comment to T6634: Port GPGME to Windows 64-bit.

Actually we are using gpgme already for 64 bit Windows; but statically linked.

May 18 2024, 11:28 PM · Windows 64, gpgme
mlaurent committed rKLEOPATRA80015d7855b3: Add @action:button (authored by mlaurent).
Add @action:button
May 18 2024, 10:24 PM
mlaurent committed rLIBKLEOb8e15794e79d: Add @action:button (authored by mlaurent).
Add @action:button
May 18 2024, 10:23 PM
l10n daemon script <scripty@kde.org> committed rMTPff77e194dfa4: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 18 2024, 5:18 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO8bdd04724eb6: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 18 2024, 5:13 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA571c21efbcb7: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 18 2024, 5:12 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO65d3284d217c: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 18 2024, 3:27 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA6d36396e3a0f: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 18 2024, 3:27 AM

May 17 2024

CarlSchwan added a comment to T6799: Kleopatra configuration files in wrong places.

I don't think we need a fallback. For the group configuration we can manually look in the old location. And for everything else it's okay to lose the configuration.

May 17 2024, 5:15 PM · gpd5x, kleopatra
CarlSchwan committed rKLEOPATRA67b1cf78ae46: Use new KConfig api to change base directory (authored by CarlSchwan).
Use new KConfig api to change base directory
May 17 2024, 5:11 PM
CarlSchwan committed rLIBKLEO6f885bcbc018: Move Kleo group configs to gnupg home (authored by CarlSchwan).
Move Kleo group configs to gnupg home
May 17 2024, 5:10 PM
ikloecker added a comment to T7036: gpgme: gpgme_op_receive_keys does not return an error if keyserver lookup is disabled.
In T7036#186290, @ebo wrote:

Tested with VS-Desktop-3.2.93.391-Beta:

May 17 2024, 3:49 PM · vsd33 (vsd-3.3.0), Restricted Project, gpgme
ikloecker committed rLIBKLEO69e408d3e308: Unify spelling of "Key ID" and "User ID" (authored by ikloecker).
Unify spelling of "Key ID" and "User ID"
May 17 2024, 3:46 PM
CarlSchwan committed rKLEOPATRA52b12a430928: Use new KConfig api to change base directory (authored by CarlSchwan).
Use new KConfig api to change base directory
May 17 2024, 3:13 PM
ebo added a comment to T7036: gpgme: gpgme_op_receive_keys does not return an error if keyserver lookup is disabled.

Tested with VS-Desktop-3.2.93.391-Beta:

May 17 2024, 2:55 PM · vsd33 (vsd-3.3.0), Restricted Project, gpgme
ikloecker committed rLIBKLEO555ba593595d: Unify spelling of "Key ID" and "User ID" (authored by ikloecker).
Unify spelling of "Key ID" and "User ID"
May 17 2024, 2:30 PM
TobiasFella committed rKLEOPATRA0e42b2c918fe: Add option to disable symmetric encryption (authored by TobiasFella).
Add option to disable symmetric encryption
May 17 2024, 12:23 PM
werner committed rC903a2c2ea068: doc: Update copyright notices (authored by werner).
doc: Update copyright notices
May 17 2024, 12:19 PM
werner committed rC0526d65afd34: build: Remove cruft from configure.ac (authored by werner).
build: Remove cruft from configure.ac
May 17 2024, 12:19 PM
ebo triaged T7128: Kleopatra: make details clear for keys with multiple locations as Normal priority.
May 17 2024, 12:07 PM · vsd33, kleopatra, Restricted Project
TobiasFella added a comment to T6893: Kleopatra: Drag & Drop certificates to somewhere to export them.

It works on linux (an presumable also on windows) but is ifdef'ed out since it requires unreleased functions from gpgme

May 17 2024, 11:54 AM · gpd5x, kleopatra
ebo changed the status of T6893: Kleopatra: Drag & Drop certificates to somewhere to export them from Testing to Open.

Does not work on windows at all. Seems it doesn't any more on Linux, either (info Tobias)

May 17 2024, 11:42 AM · gpd5x, kleopatra
ebo moved T7069: Kleopatra: Expiration warning wrong on windows in case of expiry in year 2038+ from WiP to vsd-3.3.0 on the vsd33 board.
May 17 2024, 11:13 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ebo closed T7069: Kleopatra: Expiration warning wrong on windows in case of expiry in year 2038+ as Resolved.

works, VS-Desktop-3.2.93.391-Beta

May 17 2024, 11:13 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ebo moved T7094: Kleopatra: Window handling from WiP to vsd-3.3.0 on the vsd33 board.
May 17 2024, 10:51 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo closed T7094: Kleopatra: Window handling, a subtask of T7019: Kleopatra: change "certificate detailed view" to tabbed interface instead of sub-windows, as Resolved.
May 17 2024, 10:50 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo closed T7094: Kleopatra: Window handling as Resolved.

works, VS-Desktop-3.2.93.391-Beta

May 17 2024, 10:50 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo moved T7096: Kleopatra: Show origin of user-ID in details window from WiP to vsd-3.3.0 on the vsd33 board.
May 17 2024, 10:30 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo closed T7096: Kleopatra: Show origin of user-ID in details window, a subtask of T7019: Kleopatra: change "certificate detailed view" to tabbed interface instead of sub-windows, as Resolved.
May 17 2024, 10:29 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo closed T7096: Kleopatra: Show origin of user-ID in details window as Resolved.

ok, its even on by default, VS-Desktop-3.2.93.391-Beta

May 17 2024, 10:29 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
ebo moved T6959: Kleopatra: Change colums in subkey details from QA to vsd-3.3.0 on the vsd33 board.
May 17 2024, 10:21 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
werner created vsd33 (vsd-3.3.0).
May 17 2024, 10:18 AM
ebo moved T6959: Kleopatra: Change colums in subkey details from WiP to QA on the vsd33 board.
May 17 2024, 10:16 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ebo closed T6959: Kleopatra: Change colums in subkey details, a subtask of T6874: Kleopatra subkey management improvements, as Resolved.
May 17 2024, 10:15 AM · kleopatra
ebo closed T6959: Kleopatra: Change colums in subkey details as Resolved.

tested with VS-Desktop-3.2.93.391-Beta, looks ok.

May 17 2024, 10:15 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ebo updated the task description for T6959: Kleopatra: Change colums in subkey details.
May 17 2024, 9:37 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
gniibe removed a subtask for T7125: GPGME spawn for Windows 64-bit: T7126: GPGME deprecate/remove support of gpgme-glib for Windows.
May 17 2024, 8:58 AM · Windows 64, gpgme
gniibe added a subtask for T6634: Port GPGME to Windows 64-bit: T7126: GPGME deprecate/remove support of gpgme-glib for Windows.
May 17 2024, 8:58 AM · Windows 64, gpgme
gniibe edited parent tasks for T7126: GPGME deprecate/remove support of gpgme-glib for Windows, added: T6634: Port GPGME to Windows 64-bit; removed: T7125: GPGME spawn for Windows 64-bit.
May 17 2024, 8:58 AM · Windows 64, gpgme
gniibe triaged T7127: GPGME deprecate/remove the helper gpgme-w32spawn program as Normal priority.
May 17 2024, 8:56 AM · Windows 64, gpgme
gniibe renamed T7126: GPGME deprecate/remove support of gpgme-glib for Windows from GPGME deprecate/remove support of glib to GPGME deprecate/remove support of gpgme-glib for Windows.
May 17 2024, 8:27 AM · Windows 64, gpgme
First
Prev
Next