Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Jul 2 2018

gniibe committed rG1aacd1247193: libdns: For SOCKS connection, just fails. (authored by gniibe).
libdns: For SOCKS connection, just fails.
Jul 2 2018, 4:38 AM
gniibe committed rGcca92ca53489: libdns: For SOCKS connection, just fails. (authored by gniibe).
libdns: For SOCKS connection, just fails.
Jul 2 2018, 4:38 AM

Jun 29 2018

gniibe closed T2986: Can not access keyserver without the standard-resolver option as Resolved.

The cause is: ! in nsswitch.conf
This was fixed (2.2 branch) by rGd4c0187dd931: libdns: Hack to skip negation term. for GnuPG in Jan 2017.
I found it was fixed in the original libdns, and this fix is merged into rG20c289606f89: libdns: Sync to upstream. to GnuPG.

Jun 29 2018, 1:57 AM · Bug Report, gnupg

Jun 22 2018

gniibe added a comment to T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date).

GnuPG itself does that in in gnupg/g10/migrate.c. We need to fixed this.

Jun 22 2018, 4:40 AM · workaround, gnupg, Bug Report

Jun 21 2018

gniibe added a comment to T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode.

Thank you for your feedback.

Jun 21 2018, 9:16 AM · Bug Report

Jun 20 2018

gniibe renamed T4031: gpg-check-pattern.1 in Debian generates warnings from test-groff from nroff created by yat2m generates warnings from test-groff to gpg-check-pattern.1 in Debian generates warnings from test-groff .
Jun 20 2018, 10:39 AM · Debian, gnupg, Bug Report
gniibe added a comment to T4031: gpg-check-pattern.1 in Debian generates warnings from test-groff .

It's manually written one in Debian:
https://salsa.debian.org/debian/gnupg2/blob/debian/master/debian/gpg-check-pattern.1

Jun 20 2018, 10:37 AM · Debian, gnupg, Bug Report
gniibe merged T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode into T4034: libgcrypt: Fix for lock behavior broken in 1.8.3.
Jun 20 2018, 10:18 AM · Bug Report
gniibe merged task T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode into T4034: libgcrypt: Fix for lock behavior broken in 1.8.3.
Jun 20 2018, 10:18 AM · Bug Report
gniibe reopened T4034: libgcrypt: Fix for lock behavior broken in 1.8.3 as "Testing".
Jun 20 2018, 10:17 AM · Bug Report
gniibe merged T4034: libgcrypt: Fix for lock behavior broken in 1.8.3 into T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode.
Jun 20 2018, 10:16 AM · Bug Report
gniibe merged task T4034: libgcrypt: Fix for lock behavior broken in 1.8.3 into T4035: New libgcrypt 1.8.3 Makefile fails "make check" under OS X Xcode.
Jun 20 2018, 10:16 AM · Bug Report
gniibe added a subtask for T3283: Set 'mym4_revision' to 0 if not a git repo: T4027: npth 1.6.
Jun 20 2018, 10:06 AM · libgcrypt, Bug Report
gniibe added a parent task for T4027: npth 1.6: T3283: Set 'mym4_revision' to 0 if not a git repo.
Jun 20 2018, 10:06 AM · npth
gniibe added a parent task for T4027: npth 1.6: T3980: gpg-agent: error allocating thread attributes when starting as daemon.
Jun 20 2018, 10:01 AM · npth
gniibe added a subtask for T3980: gpg-agent: error allocating thread attributes when starting as daemon: T4027: npth 1.6.
Jun 20 2018, 10:01 AM · npth, Bug Report
gniibe added a parent task for T4036: gnupg 2.2.9 release: T2348: Improve detection of IPv6 and IPv4 availibility.
Jun 20 2018, 9:28 AM · Release Info, gnupg
gniibe added a subtask for T2348: Improve detection of IPv6 and IPv4 availibility: T4036: gnupg 2.2.9 release.
Jun 20 2018, 9:28 AM · gnupg, dirmngr, Feature Request
gniibe changed the status of T2348: Improve detection of IPv6 and IPv4 availibility from Open to Testing.

I manually configure IPv6 only environment, and now (forthcoming 2.2.9), it works fine for me.
So, I move this state to Testing.

Jun 20 2018, 9:26 AM · gnupg, dirmngr, Feature Request
gniibe added a comment to T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:23 AM · Release Info, gnupg
gniibe added a subtask for T3803: dirmngr issues malformed DNS queries: T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:03 AM · dns, dirmngr, Bug Report
gniibe added a parent task for T4036: gnupg 2.2.9 release: T3803: dirmngr issues malformed DNS queries.
Jun 20 2018, 8:03 AM · Release Info, gnupg
gniibe removed a subtask for T4036: gnupg 2.2.9 release: T3803: dirmngr issues malformed DNS queries.
Jun 20 2018, 8:03 AM · Release Info, gnupg
gniibe removed a parent task for T3803: dirmngr issues malformed DNS queries: T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:03 AM · dns, dirmngr, Bug Report
gniibe added a subtask for T3374: gpg recv-keys fail if first dns server end up with "Connection refused": T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:02 AM · dns, dirmngr, Bug Report
gniibe added a parent task for T4036: gnupg 2.2.9 release: T3374: gpg recv-keys fail if first dns server end up with "Connection refused".
Jun 20 2018, 8:02 AM · Release Info, gnupg
gniibe removed a subtask for T4036: gnupg 2.2.9 release: T3374: gpg recv-keys fail if first dns server end up with "Connection refused".
Jun 20 2018, 8:02 AM · Release Info, gnupg
gniibe removed a parent task for T3374: gpg recv-keys fail if first dns server end up with "Connection refused": T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:02 AM · dns, dirmngr, Bug Report
gniibe added a parent task for T3374: gpg recv-keys fail if first dns server end up with "Connection refused": T4036: gnupg 2.2.9 release.
Jun 20 2018, 8:01 AM · dns, dirmngr, Bug Report
gniibe added a subtask for T4036: gnupg 2.2.9 release: T3374: gpg recv-keys fail if first dns server end up with "Connection refused".
Jun 20 2018, 8:01 AM · Release Info, gnupg
gniibe added a parent task for T3803: dirmngr issues malformed DNS queries: T4036: gnupg 2.2.9 release.
Jun 20 2018, 7:58 AM · dns, dirmngr, Bug Report
gniibe added a subtask for T4036: gnupg 2.2.9 release: T3803: dirmngr issues malformed DNS queries.
Jun 20 2018, 7:58 AM · Release Info, gnupg
gniibe changed the status of T3374: gpg recv-keys fail if first dns server end up with "Connection refused" from Open to Testing.

Applied to 2.2 branch.

Jun 20 2018, 4:34 AM · dns, dirmngr, Bug Report
gniibe added a comment to T2348: Improve detection of IPv6 and IPv4 availibility.

As written in T2438:

Jun 20 2018, 4:12 AM · gnupg, dirmngr, Feature Request
gniibe merged T2438: dirmngr fails repeatedly with "invalid argument", without kicking the host from its list into T2348: Improve detection of IPv6 and IPv4 availibility.
Jun 20 2018, 4:09 AM · gnupg, dirmngr, Feature Request
gniibe merged task T2438: dirmngr fails repeatedly with "invalid argument", without kicking the host from its list into T2348: Improve detection of IPv6 and IPv4 availibility.
Jun 20 2018, 4:09 AM · gnupg, Bug Report, dirmngr
gniibe added a comment to T2348: Improve detection of IPv6 and IPv4 availibility.

I think that this is same issue of T2438: dirmngr fails repeatedly with "invalid argument", without kicking the host from its list.
Merging.

Jun 20 2018, 4:09 AM · gnupg, dirmngr, Feature Request
gniibe added a comment to T2438: dirmngr fails repeatedly with "invalid argument", without kicking the host from its list.

For the problem in the last comment, it was fixed in T2928: stop fetching PTR records entirely.
For the original issue, it looks that EINVAL is returned by the system call of connect(2).
That's quite strange, but, it was possible for IPv6.

Jun 20 2018, 3:46 AM · gnupg, Bug Report, dirmngr
gniibe changed the status of T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access from Open to Testing.

Good. I don't think there is any reason to select the ephemeral port in user space (by default).
So, I disabled the feature for all OSes.

Jun 20 2018, 2:16 AM · gpg4win, dirmngr
gniibe changed the status of T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access, a subtask of T4029: Gpg4win 3.1.3, from Open to Testing.
Jun 20 2018, 2:16 AM · Release Info, gpg4win
gniibe committed rG72a35ffee022: libdns: Let kernel to decide the local port. (authored by gniibe).
libdns: Let kernel to decide the local port.
Jun 20 2018, 2:15 AM
gniibe committed rG861f1da0731b: libdns: Let kernel to decide the local port. (authored by gniibe).
libdns: Let kernel to decide the local port.
Jun 20 2018, 2:14 AM

Jun 19 2018

gniibe added a comment to T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access.

I found dirmngr tries to bind some random port. It might be the cause.

Jun 19 2018, 10:02 AM · gpg4win, dirmngr
gniibe triaged T4034: libgcrypt: Fix for lock behavior broken in 1.8.3 as Normal priority.
Jun 19 2018, 5:59 AM · Bug Report
gniibe changed the status of T4034: libgcrypt: Fix for lock behavior broken in 1.8.3 from Open to Testing.

Fixed in repo (master and 1.8 branch).

Jun 19 2018, 5:58 AM · Bug Report
gniibe committed rC20c034865f2d: random: Fix hang of _gcry_rndjent_get_version. (authored by dtzWill).
random: Fix hang of _gcry_rndjent_get_version.
Jun 19 2018, 5:38 AM
gniibe committed rC355f5b7f6907: random: Fix hang of _gcry_rndjent_get_version. (authored by dtzWill).
random: Fix hang of _gcry_rndjent_get_version.
Jun 19 2018, 5:38 AM
gniibe claimed T4034: libgcrypt: Fix for lock behavior broken in 1.8.3.

Thanks for your report.
You are right.
Simply getting the information for "rng-type" through gcry_rndjent_get_version will hang.

Jun 19 2018, 4:54 AM · Bug Report

Jun 18 2018

gniibe changed the status of T3803: dirmngr issues malformed DNS queries from Open to Testing.

And 2.2 branch.

Jun 18 2018, 10:28 AM · dns, dirmngr, Bug Report
gniibe committed rG87d0ecf8a1b8: libdns: Fix for non-FQDN hostname. (authored by gniibe).
libdns: Fix for non-FQDN hostname.
Jun 18 2018, 10:28 AM
gniibe committed rG699fe4b36f62: libdns: Fix connect and try next nameserver when ECONNREFUSED. (authored by gniibe).
libdns: Fix connect and try next nameserver when ECONNREFUSED.
Jun 18 2018, 10:28 AM
gniibe committed rG0c05b08e8b5c: libdns: Clear struct sockaddr_storage by zero. (authored by gniibe).
libdns: Clear struct sockaddr_storage by zero.
Jun 18 2018, 10:28 AM
gniibe committed rG20c289606f89: libdns: Sync to upstream. (authored by gniibe).
libdns: Sync to upstream.
Jun 18 2018, 10:28 AM
gniibe committed rG13320db67867: dirmngr: Fix recursive resolver mode. (authored by gniibe).
dirmngr: Fix recursive resolver mode.
Jun 18 2018, 10:28 AM
gniibe created T4027: npth 1.6.
Jun 18 2018, 10:20 AM · npth
gniibe added a comment to T3803: dirmngr issues malformed DNS queries.

Fixed in master.

Jun 18 2018, 8:11 AM · dns, dirmngr, Bug Report
gniibe closed T2923: trust signature domain restrictions don't work as Resolved.

It's in 2.2.4 and 1.4.23.
Closing.

Jun 18 2018, 3:36 AM · gnupg (gpg14), Bug Report
gniibe committed rGa4a054bf14fa: libdns: Fix for non-FQDN hostname. (authored by gniibe).
libdns: Fix for non-FQDN hostname.
Jun 18 2018, 3:16 AM

Jun 15 2018

gniibe claimed T3803: dirmngr issues malformed DNS queries.

I'll fix for the non-FQDN case.

Jun 15 2018, 11:08 AM · dns, dirmngr, Bug Report
gniibe added a comment to T3803: dirmngr issues malformed DNS queries.

I think that I identified the issue. This is the libdns (dirmngr/dns.c) problem when hostname is not FQDN.
If you change it to FQDN, you can see that it tries to search adding the domain name.

Jun 15 2018, 8:18 AM · dns, dirmngr, Bug Report
gniibe added a comment to T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1.

For issues/19, it is also reported in T3374: gpg recv-keys fail if first dns server end up with "Connection refused".
This is fixed in master now.
I'm not sure if original reporter's problem is issues/19 or not.

Jun 15 2018, 6:07 AM · gnupg24, dirmngr
gniibe committed rGbcdbf8b8ebe9: libdns: Fix connect and try next nameserver when ECONNREFUSED. (authored by gniibe).
libdns: Fix connect and try next nameserver when ECONNREFUSED.
Jun 15 2018, 6:04 AM
gniibe committed rG1c0b6681e4f3: libdns: Clear struct sockaddr_storage by zero. (authored by gniibe).
libdns: Clear struct sockaddr_storage by zero.
Jun 15 2018, 6:04 AM
gniibe added a comment to T3374: gpg recv-keys fail if first dns server end up with "Connection refused".

Fixed in master.

Jun 15 2018, 6:04 AM · dns, dirmngr, Bug Report
gniibe claimed T3374: gpg recv-keys fail if first dns server end up with "Connection refused".

It is indirectly reported at the upstream: https://github.com/wahern/dns/issues/19

Jun 15 2018, 5:57 AM · dns, dirmngr, Bug Report
gniibe renamed T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1 from dirmngr/dns.c issue with 127.0.0.1 to dirmngr: dirmngr/dns.c issue with 127.0.0.1.
Jun 15 2018, 2:38 AM · gnupg24, dirmngr
gniibe claimed T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1.

I tested on Debian with local dnsmasq. For usual setting, no problem.
If /etc/resolv.conf has nameserver 127.0.0.1 and the service by dnsmasq somehow stops, and we have another nameserver nameserver somewhere-not-local the issues/19 matters.

Jun 15 2018, 2:38 AM · gnupg24, dirmngr

Jun 14 2018

gniibe committed rG3e6ad302eaf3: libdns: Sync to upstream. (authored by gniibe).
libdns: Sync to upstream.
Jun 14 2018, 6:20 AM
gniibe committed rG5b40338f1276: dirmngr: Fix recursive resolver mode. (authored by gniibe).
dirmngr: Fix recursive resolver mode.
Jun 14 2018, 6:20 AM

Jun 13 2018

gniibe added a comment to T4011: CVE-2018-0495.

Informed Debian security team about our change of libgcrypt.

Jun 13 2018, 1:02 PM · CVE, libgcrypt
gniibe abandoned D460: Make sure the key for signature has capable for CERT.

Change done and pushed already.

Jun 13 2018, 11:49 AM
gniibe added a comment to T4011: CVE-2018-0495.

Pushed fixes to the repository at 16:00+0900 (09:00+0200). It's 0700Z.

Jun 13 2018, 9:05 AM · CVE, libgcrypt
gniibe committed rC9be06c6b2e5c: ecc: Add blinding for ECDSA. (authored by gniibe).
ecc: Add blinding for ECDSA.
Jun 13 2018, 9:00 AM
gniibe committed rC9010d1576e27: ecc: Add blinding for ECDSA. (authored by gniibe).
ecc: Add blinding for ECDSA.
Jun 13 2018, 9:00 AM
gniibe committed rC325ab0b312e6: ecc: Add blinding for ECDSA. (authored by gniibe).
ecc: Add blinding for ECDSA.
Jun 13 2018, 9:00 AM
gniibe added a comment to T4011: CVE-2018-0495.

In master, it's

commit 9010d1576e278a4274ad3f4aa15776c28f6ba965
Author: NIIBE Yutaka <gniibe@fsij.org>
Date:   Wed Jun 13 15:28:58 2018 +0900
Jun 13 2018, 8:59 AM · CVE, libgcrypt
gniibe updated the task description for T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1.
Jun 13 2018, 8:09 AM · gnupg24, dirmngr
gniibe renamed T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1 from dirmngr/dns.c issue with dnsmasq to dirmngr/dns.c issue with 127.0.0.1.
Jun 13 2018, 8:08 AM · gnupg24, dirmngr
gniibe created T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1.
Jun 13 2018, 8:02 AM · gnupg24, dirmngr

Jun 12 2018

gniibe renamed T4004: Curve25519 for Zeitcontrol card from Curve22519 for Zeitcontrol card to Curve25519 for Zeitcontrol card.
Jun 12 2018, 9:51 AM · Feature Request, scd
gniibe committed rG92d3dc9e1933: g10: Fix enum_secret_keys for card keys. (authored by gniibe).
g10: Fix enum_secret_keys for card keys.
Jun 12 2018, 9:22 AM
gniibe committed rG8f99299a54a0: card: Fix memory leak for fetch-url sub command. (authored by gniibe).
card: Fix memory leak for fetch-url sub command.
Jun 12 2018, 8:55 AM
gniibe committed rGba7e934945a5: g10: Move enum_secret_keys to skclist.c. (authored by gniibe).
g10: Move enum_secret_keys to skclist.c.
Jun 12 2018, 6:01 AM
gniibe committed rGed9030cb2a67: g10: Prefer to available card keys for decryption. (authored by gniibe).
g10: Prefer to available card keys for decryption.
Jun 12 2018, 6:01 AM
gniibe committed rGb0c00ce0af1b: g10: Fix comment of enum_secret_keys. (authored by gniibe).
g10: Fix comment of enum_secret_keys.
Jun 12 2018, 6:01 AM

Jun 11 2018

gniibe closed T3844: Able to certify public keys without a certify key present when using smartcard. as Resolved.

Yes, closing.

Jun 11 2018, 8:41 AM · gnupg (gpg22), Bug Report
gniibe committed rGc03a3eb01d2d: g10: Enumerated keys for decryption should be unique. (authored by gniibe).
g10: Enumerated keys for decryption should be unique.
Jun 11 2018, 8:01 AM

Jun 8 2018

gniibe committed rGfed3e10121a7: g10: Change the order of handling private key for encryption. (authored by gniibe).
g10: Change the order of handling private key for encryption.
Jun 8 2018, 9:30 AM
gniibe committed rG2d6f17c776cd: g10: Defer selection of decryption key at proc_encrypted. (authored by gniibe).
g10: Defer selection of decryption key at proc_encrypted.
Jun 8 2018, 9:30 AM

Jun 6 2018

gniibe created D462: Figure out the session key by looking at all PKT_PUBKEY_ENC packets.
Jun 6 2018, 9:44 AM · gnupg
gniibe closed T3823: gpg frontend support to setup KDF DO as Resolved.
Jun 6 2018, 3:41 AM · scd
gniibe closed T3823: gpg frontend support to setup KDF DO, a subtask of T3152: KDF DO support in OpenPGP card, as Resolved.
Jun 6 2018, 3:41 AM · scd

Jun 5 2018

gniibe committed rGd2e6b3ea1d70: g10: Remove bogus comment. (authored by gniibe).
g10: Remove bogus comment.
Jun 5 2018, 4:26 AM
gniibe committed rG7c004dd58f28: po: Fix Swedish and Turkish translations. (authored by gniibe).
po: Fix Swedish and Turkish translations.
Jun 5 2018, 3:43 AM
gniibe committed rG9f70e0af784d: po: Fix Danish translation. (authored by gniibe).
po: Fix Danish translation.
Jun 5 2018, 3:43 AM

May 28 2018

gniibe changed the status of T3980: gpg-agent: error allocating thread attributes when starting as daemon from Open to Testing.
May 28 2018, 2:11 AM · npth, Bug Report
gniibe committed rPTHf8b8e5d1112a: build: Fix libraries for HP-UX. (authored by gniibe).
build: Fix libraries for HP-UX.
May 28 2018, 2:10 AM

May 25 2018

gniibe added a comment to T3980: gpg-agent: error allocating thread attributes when starting as daemon.

Apparently, the check of sem_init function was not done (in config.log).
Could you please make sure to update npth/configure by npth/autogen.sh?

May 25 2018, 12:31 AM · npth, Bug Report

May 24 2018

gniibe added a comment to T3980: gpg-agent: error allocating thread attributes when starting as daemon.

Could you please put the config.log of npth with the patch?
The intention of change is: we need to link -lpthread and -lrt

May 24 2018, 3:17 AM · npth, Bug Report

May 23 2018

gniibe added a comment to T3980: gpg-agent: error allocating thread attributes when starting as daemon.

I realized that the test case is already there.
I'm not sure the reason why make check for npth works well on HP-UX (before the my patch). It uses npth_attr_init (hence, pthread_attr_init) in tests/t-thread.c.
Perhaps, libtool is clever enough to detect -lpthread into src/libnpth.la (dependency_libs), I suppose.

May 23 2018, 4:25 AM · npth, Bug Report
First
Prev
Next