Page MenuHome GnuPG
Feed Advanced Search

Dec 29 2018

JW updated the task description for T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error.
Dec 29 2018, 11:47 PM · Legacy OS, Fedora, libgcrypt, Bug Report
JW created T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error.
Dec 29 2018, 11:39 PM · Legacy OS, Fedora, libgcrypt, Bug Report
JW added a comment to T4303: scheme.c:875:33: error: expected ‘;’ before ‘abort’.

Here's the patch:

Dec 29 2018, 10:24 PM · Bug Report
JW updated the task description for T4303: scheme.c:875:33: error: expected ‘;’ before ‘abort’.
Dec 29 2018, 9:50 PM · Bug Report
JW created T4303: scheme.c:875:33: error: expected ‘;’ before ‘abort’.
Dec 29 2018, 9:50 PM · Bug Report

Jul 21 2015

JW added a comment to T1878: wipememory relies upon volatile qualifier.

Werner Koch <wk@gnupg.org> added the comment:

Please show me the disassembly of an example along with the commands and program
versions you used to create an object file with removed wipememory code.

Jul 21 2015, 3:50 PM · Info Needed, Bug Report

Jul 16 2015

JW updated subscribers of T2046: Disable optimizations on one function (was: 'pragma optimize' ...).
Jul 16 2015, 11:45 AM · Mistaken, Duplicate, Bug Report

Jul 6 2015

JW added a comment to T1878: wipememory relies upon volatile qualifier.

volatile is used to make sure the writes actually hit the
memory. gcc is not allowed to remove that for the simple reason, it
can't know whether this plain RAM or a device mapped into the address
space. That is the whole point of using volatile and it has been
introduced back in the 80ies for just this reason (back than to write
to video memory).

Jul 6 2015, 9:36 AM · Info Needed, Bug Report

Jun 17 2015

JW added a comment to T1878: wipememory relies upon volatile qualifier.

One relatively unimportant misunderstanding is due to the fact that
the standard only talks about accesses to volatile objects. It does
not talk about accesses via volatile qualified pointers. Some
programmers believe that using a pointer-to-volatile should be
handled as though it pointed to a volatile object. That is not
guaranteed by the standard and is therefore not portable. However,
this is relatively unimportant because gcc does in fact treat a
pointer-to-volatile as though it pointed to a volatile object.

It says that it's not guaranteed and it's not portable by the C
language itself.

So, you are right that volatile qualifier to a pointer should be
avoided (from viewpoint of portability).

I think that I am also right that it works with GCC implementation
(in 2008, at least).

I'm actually more concerned that the optimizer will remove the code
because it surmises its a dead store. That's the issue I am trying to
articulate.

Jun 17 2015, 4:02 PM · Info Needed, Bug Report
JW added a comment to T1878: wipememory relies upon volatile qualifier.

You shouldn't use volatile for that when compiling with GCC.

Any references which support this opinion of yours, please?

Jun 17 2015, 11:13 AM · Info Needed, Bug Report
JW added a comment to T1878: wipememory relies upon volatile qualifier.

On Tue, Jun 16, 2015 at 4:31 AM, NIIBE Yutaka via BTS
<gnupg@bugs.g10code.com> wrote:

NIIBE Yutaka <gniibe@fsij.org> added the comment:

I think that JW had some confusion. I believe that his argument is irrelevant
for libgcrypt's implementation of wipememory.

Jun 17 2015, 9:15 AM · Info Needed, Bug Report

Mar 6 2015

JW added a comment to T1915: Building static GnuPG 2.1.2 fails due to multiply defined symbols..

Changed status to 'unread'. I'm not chatting.

Mar 6 2015, 11:36 AM · Bug Report, gnupg
JW added a comment to T1915: Building static GnuPG 2.1.2 fails due to multiply defined symbols..

I was able to duplicate Bug 1862: Building static GnuPG 2.1.2 fails due to
multiply defined symbols.


/home/jwalton/Desktop/gcrypt-2.0-analyze/libgpg-error-1.18/src/visibility.c:46:
multiple definition of `gpg_err_code_from_errno'
t-support.o:/home/jwalton/Desktop/gcrypt-2.0-analyze/gnupg-2.1.2/common/t-support.c:137:
first defined here
/home/jwalton/gpg-analyze/lib/libgpg-error.a(libgpg_error_la-visibility.o): In
function `gpg_err_code_from_syserror':
/home/jwalton/Desktop/gcrypt-2.0-analyze/libgpg-error-1.18/src/visibility.c:58:
multiple definition of `gpg_err_code_from_syserror'
t-support.o:/home/jwalton/Desktop/gcrypt-2.0-analyze/gnupg-2.1.2/common/t-support.c:151:
first defined here
collect2: error: ld returned 1 exit status
make[3]: * [t-stringhelp] Error 1
make[3]: Leaving directory
`/home/jwalton/Desktop/gcrypt-2.0-analyze/gnupg-2.1.2/common'
make[2]:
* [all] Error 2
make[2]: Leaving directory
`/home/jwalton/Desktop/gcrypt-2.0-analyze/gnupg-2.1.2/common'
make[1]: * [all-recursive] Error 1
make[1]: Leaving directory `/home/jwalton/Desktop/gcrypt-2.0-analyze/gnupg-2.1.2'
make:
* [all] Error 2


LIBRARY=gnupg
VERSION=2.1.2
FILE="$LIBRARY-$VERSION"

export PREFIX=/usr/local

cd "$FILE"
./configure --enable-static --disable-shared
--with-libgpg-error-prefix="$PREFIX" --with-libassuan-prefix="$PREFIX"
--with-ksba-prefix="$PREFIX" --with-npth-prefix="$PREFIX"
--with-libgcrypt-prefix="$PREFIX" --prefix="$PREFIX"

make

Mar 6 2015, 11:35 AM · Bug Report, gnupg
JW set Version to 1.6.3 on T1916: fipsdrv.c: potential race condition due to the use of access(1).
Mar 6 2015, 10:13 AM · Bug Report, libgcrypt
JW added projects to T1916: fipsdrv.c: potential race condition due to the use of access(1): libgcrypt, Bug Report.
Mar 6 2015, 10:13 AM · Bug Report, libgcrypt
JW added a comment to T1881: Undefined behavior when running `make check` under Clang sanitizers.

Changed status to 'unread'. I am not chatting.

Mar 6 2015, 10:06 AM · Bug Report, libgcrypt
JW added a comment to T1881: Undefined behavior when running `make check` under Clang sanitizers.

Also see "Is a misaligned load due to a cast undefined behavior?"
(http://stackoverflow.com/q/28893303) on Stack Overflow.

I wanted to verify it was in fact undefined behavior.

Mar 6 2015, 10:06 AM · Bug Report, libgcrypt
JW set Version to 2.1.2 on T1915: Building static GnuPG 2.1.2 fails due to multiply defined symbols..
Mar 6 2015, 9:54 AM · Bug Report, gnupg
JW added projects to T1915: Building static GnuPG 2.1.2 fails due to multiply defined symbols.: gnupg, Bug Report.
Mar 6 2015, 9:54 AM · Bug Report, gnupg
JW set Version to 2.1.2 on T1914: http.c: potential buffer overflow.
Mar 6 2015, 9:38 AM · Not A Bug, Bug Report, gnupg
JW added projects to T1914: http.c: potential buffer overflow: gnupg, Bug Report.
Mar 6 2015, 9:38 AM · Not A Bug, Bug Report, gnupg
JW added projects to T1913: signal.c: ignoring write failures in signal handler, continuing as if everything is OK.: gnupg, Bug Report.
Mar 6 2015, 9:34 AM · Bug Report, gnupg
JW set Version to 2.1.2 on T1913: signal.c: ignoring write failures in signal handler, continuing as if everything is OK..
Mar 6 2015, 9:34 AM · Bug Report, gnupg
JW set Version to 2.1.2 on T1912: iobuf.c: potential buffer overflows.
Mar 6 2015, 9:25 AM · Not A Bug, Bug Report, gnupg
JW added projects to T1912: iobuf.c: potential buffer overflows: gnupg, Bug Report.
Mar 6 2015, 9:25 AM · Not A Bug, Bug Report, gnupg
JW set Version to 2.1.2 on T1911: dotlock.c: ignoring return value of ‘link’, declared with attribute warn_unused_result.
Mar 6 2015, 9:22 AM · Bug Report, gnupg
JW added projects to T1911: dotlock.c: ignoring return value of ‘link’, declared with attribute warn_unused_result: gnupg, Bug Report.
Mar 6 2015, 9:22 AM · Bug Report, gnupg
JW set Version to 1.6.3 on T1910: fipsdrv.c: dereference of null pointer.
Mar 6 2015, 9:19 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1910: fipsdrv.c: dereference of null pointer: libgcrypt, Bug Report.
Mar 6 2015, 9:19 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1909: bench-slope.c: potential buffer overflows.
Mar 6 2015, 9:16 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1909: bench-slope.c: potential buffer overflows: libgcrypt, Bug Report.
Mar 6 2015, 9:16 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1908: t-ed25519.c: dereference of null pointer: libgcrypt, Bug Report.
Mar 6 2015, 9:14 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1908: t-ed25519.c: dereference of null pointer.
Mar 6 2015, 9:14 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1907: basic.c: function call argument is an uninitialized value: libgcrypt, Bug Report.
Mar 6 2015, 9:12 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1907: basic.c: function call argument is an uninitialized value.
Mar 6 2015, 9:12 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1906: tsexp.c: null pointer passed as an argument to a 'nonnull' parameter: libgcrypt, Bug Report.
Mar 6 2015, 9:10 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1906: tsexp.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 9:10 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1905: hmac256.c: use of memory after it is freed (redux).
Mar 6 2015, 9:09 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1905: hmac256.c: use of memory after it is freed (redux): libgcrypt, Bug Report.
Mar 6 2015, 9:09 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1904: hmac256.c: use of memory after it is freed: libgcrypt, Bug Report.
Mar 6 2015, 9:04 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1904: hmac256.c: use of memory after it is freed.
Mar 6 2015, 9:04 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1903: ecc-eddsa.c: function call argument is an uninitialized value: libgcrypt, Bug Report.
Mar 6 2015, 9:03 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1903: ecc-eddsa.c: function call argument is an uninitialized value.
Mar 6 2015, 9:03 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1902: ecc-curves.c: dereference of null pointer: gpgrt, Bug Report.
Mar 6 2015, 9:02 AM · Mistaken, Bug Report, gpgrt
JW set Version to 1.6.3 on T1902: ecc-curves.c: dereference of null pointer.
Mar 6 2015, 9:02 AM · Mistaken, Bug Report, gpgrt
JW added a project to T1901: seed.c: the right operand of '^' is a garbage value: libgcrypt.
Mar 6 2015, 9:00 AM · Won't Fix, libgcrypt
JW set Version to 1.6.3 on T1901: seed.c: the right operand of '^' is a garbage value.
Mar 6 2015, 9:00 AM · Won't Fix, libgcrypt
JW set Version to 1.6.3 on T1900: des.c: the right operand of '^' is a garbage value.
Mar 6 2015, 8:58 AM · Mistaken, libgcrypt
JW added a project to T1900: des.c: the right operand of '^' is a garbage value: libgcrypt.
Mar 6 2015, 8:58 AM · Mistaken, libgcrypt
JW set Version to 1.6.3 on T1899: primegen.c: uses is_locked, which appears to suffer a race.
Mar 6 2015, 8:54 AM · Not A Bug, libgcrypt
JW added a project to T1899: primegen.c: uses is_locked, which appears to suffer a race: libgcrypt.
Mar 6 2015, 8:54 AM · Not A Bug, libgcrypt
JW set Version to 1.6.3 on T1898: md.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 8:50 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1898: md.c: null pointer passed as an argument to a 'nonnull' parameter: libgcrypt, Bug Report.
Mar 6 2015, 8:50 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1897: cipher.c: null pointer passed as an argument to a 'nonnull' parameter: libgcrypt, Bug Report.
Mar 6 2015, 8:48 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1897: cipher.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 8:48 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1896: mpiutil.c: potential null pointer dereferences.
Mar 6 2015, 8:47 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1896: mpiutil.c: potential null pointer dereferences: libgcrypt, Bug Report.
Mar 6 2015, 8:47 AM · Mistaken, Bug Report, libgcrypt
JW added projects to T1895: mpicoder.c: null pointer dereference: libgcrypt, Bug Report.
Mar 6 2015, 8:43 AM · Mistaken, Bug Report, libgcrypt
JW set Version to 1.6.3 on T1895: mpicoder.c: null pointer dereference.
Mar 6 2015, 8:43 AM · Mistaken, Bug Report, libgcrypt
JW renamed T1885: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter from Null pointer passed as an argument to a 'nonnull' parameter to yat2m.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 8:37 AM · Bug Report, gpgrt
JW renamed T1886: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter from Null pointer passed as an argument to a 'nonnull' parameter to yat2m.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 8:36 AM · Mistaken, Bug Report, gpgrt
JW renamed T1887: assuan-buffer.c: dereference of null pointer from Dereference of null pointer to assuan-buffer.c: dereference of null pointer.
Mar 6 2015, 8:36 AM · Mistaken, Bug Report, libassuan
JW renamed T1888: der-encoder.c: dereference of null pointer from Dereference of a null pointer to der-encoder.c: dereference of null pointer.
Mar 6 2015, 8:36 AM · Mistaken, Bug Report, libksba
JW renamed T1889: ocsp.c: null pointer passed as an argument to a 'nonnull' parameter from Null pointer passed as an argument to a 'nonnull' parameter to ocsp.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 8:35 AM · Mistaken, Bug Report, libksba
JW renamed T1890: ocsp.c: dereference of null pointer from Dereference of a null pointer to ocsp.c: dereference of null pointer.
Mar 6 2015, 8:35 AM · Mistaken, Bug Report, libksba
JW renamed T1891: name.c: dereference of null pointer from Dereference of null pointer to name.c: dereference of null pointer.
Mar 6 2015, 8:35 AM · Mistaken, Bug Report, libksba
JW renamed T1892: dn.c: function call argument is an uninitialized value from Function call argument is an uninitialized value to dn.c: function call argument is an uninitialized value.
Mar 6 2015, 8:34 AM · Mistaken, Bug Report, libksba
JW set Version to 1.6.3 on T1894: mpi-bit: numerous potential null pointer dereferences.
Mar 6 2015, 8:31 AM · Mistaken, libgcrypt
JW added a project to T1894: mpi-bit: numerous potential null pointer dereferences: libgcrypt.
Mar 6 2015, 8:31 AM · Mistaken, libgcrypt
JW set Version to 1.18 on T1893: The ABI of passing union with long double has changed in GCC 4.4.
Mar 6 2015, 8:05 AM · Mistaken, gpgrt
JW added a project to T1893: The ABI of passing union with long double has changed in GCC 4.4: gpgrt.
Mar 6 2015, 8:05 AM · Mistaken, gpgrt
JW added projects to T1892: dn.c: function call argument is an uninitialized value: libksba, Bug Report.
Mar 6 2015, 7:54 AM · Mistaken, Bug Report, libksba
JW set Version to 1.3.2 on T1892: dn.c: function call argument is an uninitialized value.
Mar 6 2015, 7:54 AM · Mistaken, Bug Report, libksba
JW set Version to 1.3.2 on T1891: name.c: dereference of null pointer.
Mar 6 2015, 7:53 AM · Mistaken, Bug Report, libksba
JW added projects to T1891: name.c: dereference of null pointer: libksba, Bug Report.
Mar 6 2015, 7:53 AM · Mistaken, Bug Report, libksba
JW set Version to 1.3.2 on T1890: ocsp.c: dereference of null pointer.
Mar 6 2015, 7:52 AM · Mistaken, Bug Report, libksba
JW added projects to T1890: ocsp.c: dereference of null pointer: libksba, Bug Report.
Mar 6 2015, 7:52 AM · Mistaken, Bug Report, libksba
JW set Version to 1.3.2 on T1889: ocsp.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 7:51 AM · Mistaken, Bug Report, libksba
JW added projects to T1889: ocsp.c: null pointer passed as an argument to a 'nonnull' parameter: libksba, Bug Report.
Mar 6 2015, 7:51 AM · Mistaken, Bug Report, libksba
JW set Version to 1.3.2 on T1888: der-encoder.c: dereference of null pointer.
Mar 6 2015, 7:49 AM · Mistaken, Bug Report, libksba
JW added projects to T1888: der-encoder.c: dereference of null pointer: libksba, Bug Report.
Mar 6 2015, 7:49 AM · Mistaken, Bug Report, libksba
JW added projects to T1887: assuan-buffer.c: dereference of null pointer: libassuan, Bug Report.
Mar 6 2015, 7:46 AM · Mistaken, Bug Report, libassuan
JW set Version to 2.2.0 on T1887: assuan-buffer.c: dereference of null pointer.
Mar 6 2015, 7:46 AM · Mistaken, Bug Report, libassuan
JW set Version to 1.18 on T1886: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 7:44 AM · Mistaken, Bug Report, gpgrt
JW added projects to T1886: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter: gpgrt, Bug Report.
Mar 6 2015, 7:44 AM · Mistaken, Bug Report, gpgrt
JW added projects to T1885: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter: gpgrt, Bug Report.
Mar 6 2015, 7:43 AM · Bug Report, gpgrt
JW set Version to 1.18 on T1885: yat2m.c: null pointer passed as an argument to a 'nonnull' parameter.
Mar 6 2015, 7:43 AM · Bug Report, gpgrt
JW added projects to T1884: malloc for 0 bytes: gpgrt, Bug Report.
Mar 6 2015, 7:42 AM · Not A Bug, Bug Report, gpgrt
JW set Version to 1.18 on T1884: malloc for 0 bytes.
Mar 6 2015, 7:42 AM · Not A Bug, Bug Report, gpgrt
JW added a comment to T1864: Can't compile libgcrypt with some configure options.

Changed status to 'unread'. I'm not chatting.

Mar 6 2015, 6:39 AM · Info Needed, Bug Report, libgcrypt
JW added a comment to T1883: missing test case for buf_cpy.

Changed status to 'unread'. I'm not chatting.

Mar 6 2015, 6:17 AM · Info Needed, Feature Request, libgcrypt
JW added a comment to T1867: Potential use of uniinitialized vairaible.

Changed status to 'unread'. I'm not chatting.

Mar 6 2015, 6:17 AM · Mistaken, Bug Report, libksba
JW added a comment to T1867: Potential use of uniinitialized vairaible.

Updated cert.c which initializes the variable algo.

Mar 6 2015, 6:16 AM · Mistaken, Bug Report, libksba
JW added a comment to T1867: Potential use of uniinitialized vairaible.

Mar 6 2015, 6:16 AM · Mistaken, Bug Report, libksba
JW set Version to 1.6.3 on T1883: missing test case for buf_cpy.
Mar 6 2015, 6:06 AM · Info Needed, Feature Request, libgcrypt
JW added projects to T1883: missing test case for buf_cpy: libgcrypt, Bug Report.
Mar 6 2015, 6:06 AM · Info Needed, Feature Request, libgcrypt
JW set Version to 1.6.3 on T1882: warning: comparison of array 'hd->buf' equal to a null pointer is always false.
Mar 6 2015, 5:52 AM · Mistaken, libgcrypt, Feature Request
JW added projects to T1882: warning: comparison of array 'hd->buf' equal to a null pointer is always false: Feature Request, libgcrypt.
Mar 6 2015, 5:52 AM · Mistaken, libgcrypt, Feature Request
JW added a comment to T1881: Undefined behavior when running `make check` under Clang sanitizers.

The following still harbors undefined behavior, but I did not want to touch it
due to fears of breaking the zeoizer:

cipher-gcm.c:1144:7: runtime error: store to misaligned address...
cipher-gcm.c:1145:7: runtime error: store to misaligned address...
cipher-gcm.c:1146:7: runtime error: store to misaligned address...

wipememory (c->u_mode.gcm.tagiv, GCRY_GCM_BLOCK_LEN);  // Line 1144
wipememory (c->u_mode.gcm.aadlen, sizeof (c->u_mode.gcm.aadlen)); // Line 1145
wipememory (c->u_mode.gcm.datalen, sizeof (c->u_mode.gcm.datalen)); //

Line 1146

cipher-ccm.c:280:7: runtime error: store to misaligned address...

wipememory (c->u_mode.ccm.macbuf, 16);  // Line 280
Mar 6 2015, 5:40 AM · Bug Report, libgcrypt
JW added a comment to T1881: Undefined behavior when running `make check` under Clang sanitizers.

Attached is the script I am using to acceptance test the suite. It requires
Clang 3.5 (Clang 3.5 recipe was provided with Bug 1872).

Mar 6 2015, 5:39 AM · Bug Report, libgcrypt