Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

May 29 2024

werner triaged T7134: Kleopatra: Allow PIN reset with Admin-PIN as Normal priority.
May 29 2024, 12:04 PM · Feature Request, Restricted Project, kleopatra
werner moved T7129: Fix static reports by static analyser in gnugp from Backlog to QA on the gnupg22 board.
May 29 2024, 12:01 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner committed rGbc43812358ed: gpgsm: Avoid double free when checking rsaPSS signatures. (authored by Jakuje).
gpgsm: Avoid double free when checking rsaPSS signatures.
May 29 2024, 12:00 PM
werner committed rGa1f85fdc40e4: agent: Avoid uninitialized access in GENKEY command on parameter error. (authored by Jakuje).
agent: Avoid uninitialized access in GENKEY command on parameter error.
May 29 2024, 12:00 PM
werner committed rGebf9e3b824f8: wks: Make sure that ERR is always initialized. (authored by werner).
wks: Make sure that ERR is always initialized.
May 29 2024, 12:00 PM
werner changed the status of T7129: Fix static reports by static analyser in gnugp from Open to Testing.

Backported to 2.4 and relevant parts also to 2.2

May 29 2024, 12:00 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner committed rGf54944693376: gpg-auth: Fix use after free. (authored by Jakuje).
gpg-auth: Fix use after free.
May 29 2024, 11:49 AM
werner committed rG521455df0702: agent: Avoid uninitialized access in GENKEY command on parameter error. (authored by Jakuje).
agent: Avoid uninitialized access in GENKEY command on parameter error.
May 29 2024, 11:49 AM
werner committed rGece154562f00: gpgsm: Avoid double free when checking rsaPSS signatures. (authored by Jakuje).
gpgsm: Avoid double free when checking rsaPSS signatures.
May 29 2024, 11:49 AM
werner committed rG524e3a934568: scd: Avoid buffer overrun with more than 16 PC/SC readers. (authored by Jakuje).
scd: Avoid buffer overrun with more than 16 PC/SC readers.
May 29 2024, 11:49 AM
werner committed rG5e7ea643052b: agent: Avoid double free of empty string in the PIN caching. (authored by werner).
agent: Avoid double free of empty string in the PIN caching.
May 29 2024, 11:49 AM
werner committed rG234e9db3c324: gpg: Avoid a double free on error in the key generation. (authored by werner).
gpg: Avoid a double free on error in the key generation.
May 29 2024, 11:49 AM
werner committed rG19d93a239dc5: agent: Make sure to return success in ephemeral store mode. (authored by werner).
agent: Make sure to return success in ephemeral store mode.
May 29 2024, 11:49 AM
werner committed rG0b52f837801c: wks: Make sure that ERR is always initialized. (authored by werner).
wks: Make sure that ERR is always initialized.
May 29 2024, 11:49 AM
werner committed rGf46d75f0b223: scd:openpgp: Add new vendor. (authored by werner).
scd:openpgp: Add new vendor.
May 29 2024, 11:49 AM
ikloecker added a comment to D545: build: Python without distutils.

Sorry for the delay. I just had another look at the patch. Unfortunately, it doesn't work with Python 2.7.

/usr/bin/python2.7: No module named build

I think it's missing https://pypi.org/project/build/, but this package doesn't support Python 2.7 since version 0.6. Maybe installing version 0.5.1 of build for Python 2.7 would help.

May 29 2024, 10:49 AM
gniibe committed rE5fec7d7ada4c: Fix process termination check at release. (authored by gniibe).
Fix process termination check at release.
May 29 2024, 10:26 AM
gniibe committed rEfbe1f5153c3c: Fix how environment variables are specified for spawn. (authored by gniibe).
Fix how environment variables are specified for spawn.
May 29 2024, 10:21 AM
TobiasFella committed rKLEOPATRAe2e6167f732b: CertificateDetailsWidget: Show qualified status for SMIME certificates (authored by TobiasFella).
CertificateDetailsWidget: Show qualified status for SMIME certificates
May 29 2024, 10:16 AM
TobiasFella committed rKLEOPATRAe0d7613cd6d2: Add default keytreeview context menu (authored by TobiasFella).
Add default keytreeview context menu
May 29 2024, 9:42 AM
werner closed T7137: unreliable RSA decryption as Resolved.

I can replicate that and it works if you disable the use of the CRT. Looking at the key:

pkey[0]: BC9E1CD66676208956B35357210C220508F9F883FE32F4D682CD36BFB4E8055938D4BA21C341D9F48527E420F951B80335B24DF6710F01C4364D554AF659FC35D322061B67CC2F303DC878076059E4F266CFAEF6AB7A29124E969B9C15B1FC2FBA0F0F90E6B059E36B5E3C9BEC4174162689108A1E0EF6D5DDEE61B6B48327A259746288A517B1D78A0E24F5EFF6E880FF39C0BEDDC464B66F787B559EC5487F248196C2CFB15730BD9695C48355DFB2839FA23D8A37FBD48C741F6BE19F9D48BF844C5147591E1E06803DA40BEA1186B3B39CDCBC0E7DAC9DACDBB60A20E56B7E6631E47A45989A256743FDD83C591CFD4110DEA1B04ADE91CCB575FB858C13
 pkey[1]: 010001
 skey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
 skey[3]: F57D9F597750967DF272D9AC661DDC212D7C5CA4C6E91573A80756281351CDC3A2532B155D9251029F89A0A0807DF2BD177DC30FC6A847E07738B55606DF032ADAD8361E0AFEE9C0CF7D566793834977FAAE9C4B87132B94F665EFF463777CDE7EB89113FA3AAC194B6F2D30C40BE7C0DDE36A5855277C1E4D0204FC4C737BCB
 skey[4]: C4B135296B8F4390B953DDA84249FC8467CFF81FC715D1B5F3E01FCC8DC770813630AEA93982F2004705C4D272E07A10B1882AC5C09A45E88B14A1446B4C639B549420CE3BF90947E6E86503E426A8FDAC4C5CFC2809F5F0A1647ED5EE2457C054A40AA1F0666B28B2C970BE2093AE7B095A688B2D713CA8885826F23AFB37D9
 skey[5]: 0790A8E260C6CADC353FB3961D798EFD4F15F96752DA20B86841334C38861743DD7A1FEB2B750D0864F5901BE541B6C8FB63649B18FDC4A32A1233EF90872DCD35704A4B4063DB62752CF6A7FD00F086C6B1042A2B0CB6FB36B7D5269671DACF55242A838E60D514BA868354910CEB1C41FB9A43BF932B5036A6EFE35236FFC7
May 29 2024, 9:40 AM · OpenPGP, Not A Bug, gnupg
TobiasFella committed rKLEOPATRAf57cea421bc4: Add default keytreeview context menu (authored by TobiasFella).
Add default keytreeview context menu
May 29 2024, 9:39 AM
TobiasFella committed rKLEOPATRA7b2f1d363d46: KeyTreeView: copy ID-like data without spaces (authored by TobiasFella).
KeyTreeView: copy ID-like data without spaces
May 29 2024, 9:39 AM
TobiasFella committed rKLEOPATRAfd05123d54cd: Add copy Action to main key list (authored by TobiasFella).
Add copy Action to main key list
May 29 2024, 9:39 AM
werner triaged T7136: libgcrypt: Implement constant-time RSA decryption (Marvin attack fix) as Low priority.

We discussed this forth and back with the RedHat people at our jour-fix to explain that the Kairo fix is done at the wrong layer - this needs to be done at the protocol layer and not in the building blocks. This is not covered by our security policy and @gniibe already came up with some extra support to help at the protocol layer. There are only a few use cases where this side-channel or the Minerva one (for ECDSA) should be considered (e.g. time stamping services). Generally required protection against DoS are also pat of the mitigation.

May 29 2024, 8:22 AM · libgcrypt, Bug Report
gniibe committed rE6c05b35977c9: Cleaner semantics for _gpgrt_process_spawn without a callback. (authored by gniibe).
Cleaner semantics for _gpgrt_process_spawn without a callback.
May 29 2024, 8:20 AM
jukivili added a comment to T7136: libgcrypt: Implement constant-time RSA decryption (Marvin attack fix).

I left review comments in gitlab. One additional concern is license for mpi-mul-cs.c, original code not having copyright information... "does not have any copyright information, assuming public domain".

May 29 2024, 8:01 AM · libgcrypt, Bug Report
l10n daemon script <scripty@kde.org> committed rMTPe03520df95a5: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 5:54 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOf4b803e2f70a: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 5:53 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA0d7fc7f7b3b8: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 5:52 AM
l10n daemon script <scripty@kde.org> committed rMTP65b31c1e43f7: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 3:42 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOd7e50ef495d8: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 3:41 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA5d9c9e6c08ff: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 29 2024, 3:39 AM

May 28 2024

dkg created T7137: unreliable RSA decryption.
May 28 2024, 10:03 PM · OpenPGP, Not A Bug, gnupg
Jakuje created T7136: libgcrypt: Implement constant-time RSA decryption (Marvin attack fix).
May 28 2024, 7:07 PM · libgcrypt, Bug Report
CarlSchwan committed rKLEOPATRA0704ee53bbb4: Move group config to GNUPGHOME (authored by CarlSchwan).
Move group config to GNUPGHOME
May 28 2024, 5:54 PM
Jakuje added a comment to T7129: Fix static reports by static analyser in gnugp.
In T7129#186556, @werner wrote:

In PATCH GnuPG 12/15] sm: Avoid use of uninitialized variable I can't see where ERR was not initialized.

May 28 2024, 5:28 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner moved T7129: Fix static reports by static analyser in gnugp from Backlog to WiP on the gnupg24 board.
May 28 2024, 5:20 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner added a comment to T7129: Fix static reports by static analyser in gnugp.

All except the above mentioned applied to master - will be backported to 2.4

May 28 2024, 5:20 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner added a comment to T7129: Fix static reports by static analyser in gnugp.

In PATCH GnuPG 12/15] sm: Avoid use of uninitialized variable I can't see where ERR was not initialized.

May 28 2024, 5:19 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
werner committed rG9adaa79ab43e: gpg-auth: Fix use after free. (authored by Jakuje).
gpg-auth: Fix use after free.
May 28 2024, 5:18 PM
werner committed rGdcb0b6fd4822: gpgsm: Avoid double free when checking rsaPSS signatures. (authored by Jakuje).
gpgsm: Avoid double free when checking rsaPSS signatures.
May 28 2024, 5:18 PM
werner committed rG28c705a3be5c: gpgsm: Silence a lint warning (authored by werner).
gpgsm: Silence a lint warning
May 28 2024, 5:18 PM
werner committed rG379fc5569d60: agent: Avoid uninitialized access in GENKEY command on parameter error. (authored by Jakuje).
agent: Avoid uninitialized access in GENKEY command on parameter error.
May 28 2024, 5:18 PM
werner committed rG4c1b0070354d: scd: Avoid buffer overrun with more than 16 PC/SC readers. (authored by Jakuje).
scd: Avoid buffer overrun with more than 16 PC/SC readers.
May 28 2024, 5:18 PM
werner committed rGbdbf5cee2ff5: agent: Avoid double free of empty string in the PIN caching. (authored by werner).
agent: Avoid double free of empty string in the PIN caching.
May 28 2024, 5:18 PM
werner committed rGfdc500395640: agent: Make sure to return success in ephemeral store mode. (authored by werner).
agent: Make sure to return success in ephemeral store mode.
May 28 2024, 5:18 PM
werner committed rG021c27510b52: wks: Make sure that ERR is always initialized. (authored by werner).
wks: Make sure that ERR is always initialized.
May 28 2024, 5:18 PM
werner committed rGbcc002cd45d1: gpg: Avoid a double free on error in the key generation. (authored by werner).
gpg: Avoid a double free on error in the key generation.
May 28 2024, 5:18 PM
TobiasFella committed rKLEOPATRAa5548c380f5f: WebOfTrustWidget: Add option to only show own certifications (authored by TobiasFella).
WebOfTrustWidget: Add option to only show own certifications
May 28 2024, 4:37 PM
TobiasFella committed rKLEOPATRAd57973958c90: Refactor (authored by TobiasFella).
Refactor
May 28 2024, 4:35 PM
TobiasFella committed rKLEOPATRAcc1ebbc35504: Refactor (authored by TobiasFella).
Refactor
May 28 2024, 4:35 PM
TobiasFella committed rKLEOPATRAbd99bca3474a: Bump version (authored by TobiasFella).
Bump version
May 28 2024, 4:35 PM
TobiasFella committed rKLEOPATRA1f6050c8876c: Apply 1 suggestion(s) to 1 file(s) (authored by ikloecker).
Apply 1 suggestion(s) to 1 file(s)
May 28 2024, 4:35 PM
TobiasFella committed rKLEOPATRA4a0dfa17a6ef: Bump likleo dependency (authored by TobiasFella).
Bump likleo dependency
May 28 2024, 4:35 PM
TobiasFella committed rKLEOPATRAc91f4f3f653f: WebOfTrustWidget: Add option to only show own certifications (authored by TobiasFella).
WebOfTrustWidget: Add option to only show own certifications
May 28 2024, 4:35 PM
Jakuje added a comment to T7129: Fix static reports by static analyser in gnugp.

Fair enough. This is more theoretical and could happen only on huge reads. Using ssize_t for read() return value is safe option, but really does not make sense to adhere to it in cases where the reads must be smaller.

May 28 2024, 4:23 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
TobiasFella committed rKLEOPATRAbd4a39f5176a: Implementing adding ADSKs (authored by TobiasFella).
Implementing adding ADSKs
May 28 2024, 4:11 PM
werner added a comment to T7129: Fix static reports by static analyser in gnugp.

I do not understand why there should be an integer overflow:

May 28 2024, 4:10 PM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
TobiasFella committed rKLEOPATRA079a7f1fa66e: Implementing adding ADSKs (authored by TobiasFella).
Implementing adding ADSKs
May 28 2024, 3:26 PM
TobiasFella committed rKLEOPATRAe7c9f47c362d: Implementing adding ADSKs (authored by TobiasFella).
Implementing adding ADSKs
May 28 2024, 2:58 PM
TobiasFella committed rKLEOPATRA88cc294b563b: Implementing adding ADSKs (authored by TobiasFella).
Implementing adding ADSKs
May 28 2024, 2:58 PM
TobiasFella committed rKLEOPATRAc084fa40a944: Refactor (authored by TobiasFella).
Refactor
May 28 2024, 1:49 PM
TobiasFella committed rLIBKLEOde14b840c933: Add functions for getting signature and userid object to UserIDListProxyModel (authored by TobiasFella).
Add functions for getting signature and userid object to UserIDListProxyModel
May 28 2024, 1:34 PM
mlaurent committed rMTP3a102d8b0ace: Use [[nodiscard]] (authored by mlaurent).
Use [[nodiscard]]
May 28 2024, 1:33 PM
werner committed rGd631c8198c25: tpm: Improve error handling and check returned lengths. (authored by werner).
tpm: Improve error handling and check returned lengths.
May 28 2024, 1:32 PM
werner committed rG2e4b1f785055: tpm: Do not use fprintf for logging. (authored by werner).
tpm: Do not use fprintf for logging.
May 28 2024, 1:32 PM
TobiasFella committed rKLEOPATRA2d863f1a06cd: Improve revocation dialog (authored by TobiasFella).
Improve revocation dialog
May 28 2024, 12:18 PM
TobiasFella committed rLIBKLEO19bca0ad25bc: Add ClipboardRole to KeyListModel (authored by TobiasFella).
Add ClipboardRole to KeyListModel
May 28 2024, 12:12 PM
TobiasFella committed rKLEOPATRA096f9b24d975: Add default keytreeview context menu (authored by TobiasFella).
Add default keytreeview context menu
May 28 2024, 12:09 PM
TobiasFella committed rKLEOPATRA27883b8961e4: KeyTreeView: copy ID-like data without spaces (authored by TobiasFella).
KeyTreeView: copy ID-like data without spaces
May 28 2024, 12:09 PM
TobiasFella committed rKLEOPATRAf4ba28684053: Add copy Actiont to main key list (authored by TobiasFella).
Add copy Actiont to main key list
May 28 2024, 12:09 PM
werner assigned T7130: Fix static reports by static analyser in libgcrypt to gniibe.
May 28 2024, 11:08 AM · libgcrypt, Bug Report
werner raised the priority of T7129: Fix static reports by static analyser in gnugp from Normal to High.
May 28 2024, 11:08 AM · gnupg22 (gnupg-2.2.44), gnupg24 (2.4.6), Bug Report
ikloecker changed External Link from https://invent.kde.org/pim/libkleo/-/merge_requests/102 to https://invent.kde.org/pim/kleopatra/-/merge_requests/216 on T6931: Kleopatra: Move kleopatragroupsrc to GNUPGHOME.
May 28 2024, 9:27 AM · vsd33 (vsd-3.3.0), Restricted Project, kleopatra
TobiasFella committed rKLEOPATRA5780ab222eec: Trim text for key list filtering (authored by TobiasFella).
Trim text for key list filtering
May 28 2024, 9:16 AM
werner raised a concern with rE8dc6e3281e17: Import spawn functions from GnuPG master..
May 28 2024, 9:00 AM
mlaurent committed rMTP4ce3acc8447f: GIT_SILENT prepare 6.1.1 (authored by mlaurent).
GIT_SILENT prepare 6.1.1
May 28 2024, 7:57 AM
mlaurent committed rKLEOPATRAc2b3b38a9d0e: GIT_SILENT prepare 6.1.1 (authored by mlaurent).
GIT_SILENT prepare 6.1.1
May 28 2024, 7:55 AM
gniibe committed rAd5e0aa3f74cb: Modify documentation for new release. (authored by gniibe).
Modify documentation for new release.
May 28 2024, 5:10 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA03b18adf4595: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 28 2024, 5:01 AM
gniibe committed rE8dc6e3281e17: Import spawn functions from GnuPG master. (authored by gniibe).
Import spawn functions from GnuPG master.
May 28 2024, 4:52 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOd72c89765e26: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 28 2024, 3:26 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA0983147f7893: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
May 28 2024, 3:24 AM

May 27 2024

CarlSchwan committed rKLEOPATRAeb56fe662063: Move group config to GNUPGHOME (authored by CarlSchwan).
Move group config to GNUPGHOME
May 27 2024, 5:13 PM
CarlSchwan committed rKLEOPATRAbed01c8d59a2: Move group config to GNUPGHOME (authored by CarlSchwan).
Move group config to GNUPGHOME
May 27 2024, 5:10 PM
TobiasFella committed rLIBKLEO5dde20252b75: Fix clipboardrole for UserIDProxyModel (authored by TobiasFella).
Fix clipboardrole for UserIDProxyModel
May 27 2024, 4:30 PM
TobiasFella committed rKLEOPATRA1508013632c6: Remove groupbox (authored by TobiasFella).
Remove groupbox
May 27 2024, 3:05 PM
TobiasFella committed rKLEOPATRAf641615982d8: Remove spacing in front of radio buttons (authored by TobiasFella).
Remove spacing in front of radio buttons
May 27 2024, 3:05 PM
CarlSchwan committed rOJ53a285237717: Fix compilation with Qt 6.7 (authored by CarlSchwan).
Fix compilation with Qt 6.7
May 27 2024, 2:30 PM
TobiasFella committed rKLEOPATRA53a87e0ae0e1: Bump version (authored by TobiasFella).
Bump version
May 27 2024, 2:25 PM
TobiasFella committed rKLEOPATRAd3e8f4b0a5b3: Refactor (authored by TobiasFella).
Refactor
May 27 2024, 2:24 PM
TobiasFella committed rLIBKLEO4c5aba79cd8d: Add functions for getting signature and userid object to UserIDListProxyModel (authored by TobiasFella).
Add functions for getting signature and userid object to UserIDListProxyModel
May 27 2024, 2:23 PM
ebo created T7135: GpgOL: POP3 issue.
May 27 2024, 2:21 PM · gpgol, Restricted Project
TobiasFella committed rKLEOPATRA346776c0632c: Apply 1 suggestion(s) to 1 file(s) (authored by ikloecker).
Apply 1 suggestion(s) to 1 file(s)
May 27 2024, 1:46 PM
werner added a comment to T7134: Kleopatra: Allow PIN reset with Admin-PIN.

For OpenPGP cards >= v2.0 there is no PUK due to updated ISO standards but we use the term in Kleopatra for the Reset-Code.

May 27 2024, 1:42 PM · Feature Request, Restricted Project, kleopatra
TobiasFella committed rKLEOPATRA2c201445dfca: Add column enum for SubkeysWidget (authored by TobiasFella).
Add column enum for SubkeysWidget
May 27 2024, 12:31 PM
TobiasFella committed rKLEOPATRA662f31c2d498: Add column enum for CardInfoTab (authored by TobiasFella).
Add column enum for CardInfoTab
May 27 2024, 12:31 PM
TobiasFella committed rKLEOPATRA008b7005863f: Remove unused data (authored by TobiasFella).
Remove unused data
May 27 2024, 12:31 PM
TobiasFella committed rKLEOPATRA4a8d63499626: Apply 1 suggestion(s) to 1 file(s) (authored by ikloecker).
Apply 1 suggestion(s) to 1 file(s)
May 27 2024, 12:31 PM
First
Prev
Next