struct thread_creation {
void (*compute) (void *arg);
void *arg;
void (*create_done) (gcry_kdf_handle_t *hd, void *tid);
};- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Jan 24 2022
Jan 24 2022
Laurent Montel <montel@kde.org> committed rLIBKLEOb76c3fa0b0ab: GIT_SILENT: compile without deprecated methods (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: compile without deprecated methods
Laurent Montel <montel@kde.org> committed rKLEOPATRA14c805f86e2d: GIT_SILENT: compile without deprecated methods (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: compile without deprecated methods
Jan 22 2022
Jan 22 2022
• werner placed T5593: Gpg4Win displayed 'PATH env variable too big' error during setup up for grabs.
• werner triaged T5593: Gpg4Win displayed 'PATH env variable too big' error during setup as Wishlist priority.
• werner changed the edit policy for T5593: Gpg4Win displayed 'PATH env variable too big' error during setup.
Policy assigned T5593: Gpg4Win displayed 'PATH env variable too big' error during setup to • werner.
DANE has been an experimental thing and is imho dead.
jukivili committed rCa35ac62ee7b5: Fix building GCM when GCM_USE_ARM_NEON defined but GCM_USE_ARM_PMULL not (authored by jukivili).
Fix building GCM when GCM_USE_ARM_NEON defined but GCM_USE_ARM_PMULL not
jukivili committed rCe9e723d5e320: tests/t-kdf: fix format string argument type mismatch (authored by jukivili).
tests/t-kdf: fix format string argument type mismatch
• werner triaged T5492: Kleopatra does not report error when calculating checksums and checksum file can not be written as Normal priority.
Implemented extended headers for filenames and linknames (on Unix).
• werner added projects to T5796: libgcrypt-1.9.4 build failure on ARM without NEON: libgcrypt, arm.
Thanks for report. I got similar report earlier this week from gentoo user through email and made following patch for them to test. I'll push it to master soon.
Jan 21 2022
Jan 21 2022
• werner triaged T5793: gpgsm: Wrong length when parsing octetstring in constructed encoding + definite length as Normal priority.
• ikloecker committed rKLEOPATRAc5d6bd1b73d6: Ensure that key stubs are created for all keys on a smartcard (authored by joeyberkovitz).
Ensure that key stubs are created for all keys on a smartcard
thgoebel added a comment to T5793: gpgsm: Wrong length when parsing octetstring in constructed encoding + definite length.
Sorry about that! Maybe consider adding a line "Check that the issue persists in the latest version" to the "How to file a bug". I was going through this list, so it would have caught me.
This looks like a missing escaping issue in the sender (scdaemon?) or an unwanted unescaping issue in the receiver of the string (which uses Kleo::hexdecode()).
geigerzaehler changed Version from 2.2.21 to 2.2.32 on T5794: Cannot add ed25519 SSH key with empty comment.
Jan 20 2022
Jan 20 2022
doc: Fixed type of an object member
Thanks
• werner closed T5738: The ref and unref operation is confusing while using gpg_key_t and gpg_xxx_result_t as Wontfix.
gpgme_key_t is a different kind of object than a gpgme_foo_result_t and thus has different properties.
• werner closed T5793: gpgsm: Wrong length when parsing octetstring in constructed encoding + definite length as Resolved.
Please try again with a recent version of GnuPG (2.2.33 or 2.3.4) and libksba (1.6.0) and reopen this bug if the problem persists.
• werner renamed T5764: Broken umlauts in the new Windows Terminal from Broken umlauts to Broken umlauts in the new Windows Terminal.
• werner triaged T5765: gnupg2 weird memory fault on NetBSD Loongson/mips64el N32 as Normal priority.
The bug with the long filenames has been fixed but it is not yet released. Release will be in gpg4win 4.0.1 See T5754.
• ikloecker renamed T5791: Kleopatra: Make settings read-only if corresponding GnuPG config entries or KConfigXT entries are read-only from Kleopatra: Make settings read-only if corresponding GnuPG config entries are read-only to Kleopatra: Make settings read-only if corresponding GnuPG config entries or KConfigXT entries are read-only.
• ikloecker committed rKLEOPATRA852439e5a4af: Do not change read-only settings when loading defaults (authored by • ikloecker).
Do not change read-only settings when loading defaults
• ikloecker committed rKLEOPATRAa6550aec6bee: Do not change read-only settings when loading defaults (authored by • ikloecker).
Do not change read-only settings when loading defaults
• ikloecker committed rKLEOPATRA9b0d60eb49ae: Convert missed copyright to SPDX format (authored by • ikloecker).
Convert missed copyright to SPDX format
• ikloecker committed rKLEOPATRA24a43181585c: Disable UI elements if corresponding config entries are read-only (authored by • ikloecker).
Disable UI elements if corresponding config entries are read-only
• ikloecker committed rKLEOPATRA4c026aea04bb: Use KConfigXT for getting/setting the default checksum definition (authored by • ikloecker).
Use KConfigXT for getting/setting the default checksum definition
• werner triaged T5782: Kleopatra: Smartcard unusable secret key until used via command line as Normal priority.
scrypt: Fix the last step of SCRYPT.
• gniibe committed rC535a4d345872: fips: Recover test cases for selftest, add skipping in FIPS mode. (authored by • gniibe).
fips: Recover test cases for selftest, add skipping in FIPS mode.
Test cases are recovered in rC535a4d345872: fips: Recover test cases for selftest, add skipping in FIPS mode..
Hi gniibe,
Unfortunately, gdb session log and ktrace log don't have enough information to locate the cause/problem.
Jan 19 2022
Jan 19 2022
• ikloecker committed rKLEOPATRA794e082c4436: Disable UI elements if refresh interval setting is immutable (authored by • ikloecker).
Disable UI elements if refresh interval setting is immutable
• ikloecker committed rKLEOPATRA002ce80d51d3: Tell the key cache to use the configured refresh interval (authored by • ikloecker).
Tell the key cache to use the configured refresh interval
• ikloecker committed rLIBKLEO4c4a4ee37f3e: Do not allow editing of read-only keyserver settings via double click (authored by • ikloecker).
Do not allow editing of read-only keyserver settings via double click
While trying to test the X.509 directory server configuration in Kleopatra, I stumbled over difference between 2.2 and 2.3 and a possible regression in 2.2.
Sorry, it's my misunderstanding.
_gcry_fips_run_selftest can be run by GCRYCTL_SELFTEST.
I was confused by the function name. Perhaps, it is good to change the name of function to _gcry_run_selftest.
@werner Those removed tests are selftests which are only invoked by FIPS mode for its requirement of selftests.
web: It's gnupg.org and not gnupg.com
• werner committed rDcb7a44a71b46: web: Add a separate signature_key.asc file (authored by • werner).
web: Add a separate signature_key.asc file
Remove dead code
• ikloecker committed rKLEOPATRAf7e4efff8e00: Disable UI elements if corresponding config entries are read-only (authored by • ikloecker).
Disable UI elements if corresponding config entries are read-only
• ikloecker committed rKLEOPATRAf7241ec6bd39: Add a helper class for managing a QWidget with associated QLabel (authored by • ikloecker).
Add a helper class for managing a QWidget with associated QLabel
AFAICS, the last commit removes some tests. We should never remove a test just because FIPS does not allow it. The old tests need to be run in non-fips mode.
Pushed the change in rC76aad97dd312: fips: Reject shorter key for HMAC in FIPS mode..
• gniibe committed rC76aad97dd312: fips: Reject shorter key for HMAC in FIPS mode. (authored by • gniibe).
fips: Reject shorter key for HMAC in FIPS mode.
dkg closed T5762: libgpg-error: permit auto-introspection on non-glibc platforms like musl as Resolved.
thanks, looks good!
Jan 18 2022
Jan 18 2022
that's great news to my eyes. thanks werner!
$ gpg --debug 0 --gpgconf-test gpg: reading options from '/etc/gnupg/gpg.conf' gpg: reading options from '/home/foo/.gnupg/gpg.conf' gpg: reading options from '[cmdline]' gpg: reading options from '/etc/gnupg/common.conf' gpg: reading options from '/home/foo/.gnupg/common.conf'
arkadesOrg added a comment to T5789: gpg --list-options [comp] has missing closing quotes for strings.
Excuse me you are right of course. man gpgconf | grep quot says it all.
arkadesOrg added a comment to T5789: gpg --list-options [comp] has missing closing quotes for strings.
man gpg | grep quote nor man gpgconf | grep quote does not tell anything about it. I recognized the single opening quote of "string at post processing the output of gpgconf --list-options to generate a gpgconf.conf template. I just expected a closing quote for "string".
From which version on there will be global config files? The only info I found was about /etc/gnupg/gpgconf.conf and /etc/skel/.gnupg/* to manage presets.
• werner changed the status of T5784: Prioritization of weak Brainpool-Curves, when de-vs aka VS-NfD mode is activated (compliance de-vs) from Resolved to Wontfix.
vitusb: We had this discussion on cryptography@ years ago. No need to start it again - or well, try it over there. This is a bug tracker and not a discussion forum.
• werner triaged T5702: Display prompt to user when YubiKey is waiting for touch confirmation as Low priority.
• ikloecker moved T5791: Kleopatra: Make settings read-only if corresponding GnuPG config entries or KConfigXT entries are read-only from Restricted Project Column to Restricted Project Column on the Restricted Project board.
@werner Hmm, okay. So I have tested the wrong thing. To me /etc/gnupg/gpgconf.conf looked very much like a global config file I was supposed to test. I have looked at /etc/gnupg, found the example gpgconf.conf and played around with it. It had some effects (see above), so I assumed that it should work. Since it's obvious from my tests, that it doesn't really work as documented anymore, all corresponding code should be removed entirely (or fixed if it should be kept for backward compatibility).
Fix typo in version4.htm4
ikloecker: gpgconf.conf ist not anymore used since we have the global config files.
Thank you.
With /etc/gnupg/gpgconf.conf
[empty lines and comment lines] * gpgsm verbose [no-change] gpgsm quiet [no-change] gpgsm debug-level [no-change] gpgsm log-file [no-change] gpgsm include-certs [no-change] gpgsm compliance [no-change] gpgsm default-key [no-change] gpgsm encrypt-to [no-change] gpgsm keyserver [no-change] gpgsm disable-dirmngr [no-change] gpgsm auto-issuer-key-retrieve [no-change] gpgsm p12-charset [no-change] gpgsm disable-crl-checks [no-change] gpgsm enable-crl-checks [no-change] gpgsm disable-trusted-cert-crl-check [no-change] gpgsm enable-ocsp [no-change] gpgsm disable-policy-checks [no-change] gpgsm cipher-algo [no-change]
all options are correctly flagged as "no change" in the output of gpgconf
More weirdness. With gpgconf (GnuPG) 2.2.34-beta23 I get:
• aheinecke added a comment to T5784: Prioritization of weak Brainpool-Curves, when de-vs aka VS-NfD mode is activated (compliance de-vs).
These curves are not the default in the compliance mode "gnupg" only if you explicitly switch to the BSI defined "VS-NfD" mode they become default.
gpg: Print Yubikey version correctly.
This is related to the fix for T5100. We had to to remove the version number from the AID and gpg --card-status takes the version number from the AID. gpg-card was fixed for this but gpg --card-status not.
--apply-defaults is an obsolete option because we now have global config files. I would also like to get rid of --debug-level but that won't be easy. Using --debug LIST_OF_DEBUG_FLAGS is a more versatile way of specifying debug options.
• werner closed T5789: gpg --list-options [comp] has missing closing quotes for strings as Resolved.
Nope. The double quote indicates a string. See the man page.
• werner triaged T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey as Normal priority.
And we need to fix selftest for shorter keys.
@pmgdeb : IIUC, what we need is:
diff --git a/cipher/md.c b/cipher/md.c index 34336b5c..4f4fc9bf 100644 --- a/cipher/md.c +++ b/cipher/md.c @@ -903,6 +903,9 @@ prepare_macpads (gcry_md_hd_t a, const unsigned char *key, size_t keylen) { GcryDigestEntry *r;
build: Fix .m4 files in distribution.
• gniibe committed rE0150919b6a82: build: Detect more flexible musl variants of GNU (authored by dkg).
build: Detect more flexible musl variants of GNU
• gniibe added a comment to T5762: libgpg-error: permit auto-introspection on non-glibc platforms like musl.
Thank you, applied.
• gniibe committed rEb26220f92fa6: po,w32: Directly run msgfmt at install-data-hook. (authored by • gniibe).
po,w32: Directly run msgfmt at install-data-hook.
• gniibe committed rEb37c68f28a92: po: Update files from gettext 0.21 to match m4/po.m4. (authored by • gniibe).
po: Update files from gettext 0.21 to match m4/po.m4.