Page MenuHome GnuPG
Feed Advanced Search

Mon, Apr 19

werner edited projects for T4921: Support import of PKCS#12 encoded ECC private keys., added: gnupg (gpg22); removed gnupg (gpg23).
Mon, Apr 19, 5:52 PM · gnupg (gpg22), backport, Feature Request, S/MIME

Feb 17 2021

werner closed T5282: ecc: No check for broken public key when verify signature (ECDSA, ECDSA for SM and GOST) as Resolved.

Backport was done with commit rC1d312bc65846 (for unknown reasons it did not show up in the list of bugs related to this bug; I added it by hand). Fix will go into 1.8.8.

Feb 17 2021, 8:52 AM · libgcrypt

Feb 1 2021

werner added a project to T5282: ecc: No check for broken public key when verify signature (ECDSA, ECDSA for SM and GOST): backport.

I think that a backport to 1.8. also makes sense

Feb 1 2021, 11:17 AM · libgcrypt

Jan 28 2021

gniibe closed T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds as Resolved.
Jan 28 2021, 3:00 AM · backport, Testing, scd, gnupg

Jan 18 2021

werner moved T5195: Incorrect HWCAP2 check for AArch32 from For 1.9 to For 1.8 on the libgcrypt board.
Jan 18 2021, 7:08 PM · libgcrypt, backport, Bug Report
werner added a project to T5195: Incorrect HWCAP2 check for AArch32: libgcrypt.
Jan 18 2021, 7:08 PM · libgcrypt, backport, Bug Report
werner removed a project from T5195: Incorrect HWCAP2 check for AArch32: libgcrypt.
Jan 18 2021, 7:07 PM · libgcrypt, backport, Bug Report
werner added a project to T5195: Incorrect HWCAP2 check for AArch32: backport.
Jan 18 2021, 7:06 PM · libgcrypt, backport, Bug Report

Dec 11 2020

gniibe added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

Reading the code again, I think that some configuration of NKS card doesn't work well, when it has no certificates but keys (e.g. IDLM config).
I'm going to fix do_readkey as well (the approach #1).

Dec 11 2020, 1:13 AM · backport, gnupg (gpg23), scd

Dec 10 2020

ikloecker closed T5150: scd: For NetKey cards READKEY with keygrip fails as Resolved.

With little (mostly no) knowledge of NKS card, I think I fixed this issue.

Dec 10 2020, 10:39 AM · backport, gnupg (gpg23), scd
gniibe added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

Thanks a lot for your time to locate the problem. I took the approach of #2.

Dec 10 2020, 2:37 AM · backport, gnupg (gpg23), scd

Dec 9 2020

ikloecker reassigned T5150: scd: For NetKey cards READKEY with keygrip fails from ikloecker to gniibe.

I'm not sure why I thought that it would work now. With current master I get

$ gpg-connect-agent "SCD READKEY --info-only -- 39400430E38BB96F105B740A7119FE113578B59D" /bye
ERR 100663414 Invalid ID <SCD>
Dec 9 2020, 12:19 PM · backport, gnupg (gpg23), scd

Dec 3 2020

gniibe edited projects for T5163: Cannot import NIST-P521 key to OpenPGP v3.3 smart card, added: gnupg, backport; removed gnupg (gpg22).

Fixed in master. I will backport to 2.2.

Dec 3 2020, 7:08 AM · Testing, gnupg, scd, Bug Report

Nov 30 2020

ikloecker added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

Seems to work now. I'm not sure whether I should close this issue because it's marked for backport.

Nov 30 2020, 10:19 AM · backport, gnupg (gpg23), scd

Nov 27 2020

werner added a comment to T5150: scd: For NetKey cards READKEY with keygrip fails.

Regarding a backport I think that I will eventually backport all app-*c to stable by source copying them. We have a quite stable internal API and thus it is easier to keep at least the card specific code in sync. I did some local work in this directory some time ago.

Nov 27 2020, 5:54 PM · backport, gnupg (gpg23), scd
werner added a project to T4614: GPG: Cancel on pinpad hangs decryption process for 20 seconds: backport.
Nov 27 2020, 7:58 AM · backport, Testing, scd, gnupg

Nov 26 2020

werner added a project to T5150: scd: For NetKey cards READKEY with keygrip fails: backport.
Nov 26 2020, 7:55 AM · backport, gnupg (gpg23), scd

Nov 9 2020

werner added a project to T5121: a race condition between intr_cb call back and libusb_free_transfer in do_close_reader: backport.
Nov 9 2020, 12:31 PM · gnupg (gpg22), Testing, scd

Nov 6 2020

werner added projects to rM35ca460019ea: Parse STATUS_CANCELED_BY_USER.: backport, gnupg (gpg22).
Nov 6 2020, 8:30 AM · gnupg (gpg22), backport

Aug 29 2020

werner triaged T5038: UTF-8 handling in the command line as Normal priority.
Aug 29 2020, 5:19 PM · gnupg

Apr 27 2020

werner changed the status of T4921: Support import of PKCS#12 encoded ECC private keys. from Open to Testing.
Apr 27 2020, 8:09 PM · gnupg (gpg22), backport, Feature Request, S/MIME

Oct 24 2018

werner closed T4221: Suspicious read error handling in command-ssh.c ssh_handler_add_identity as Resolved.

Thanks.

Oct 24 2018, 8:33 PM · gnupg
werner added a project to T4223: Uninitialized use of ctx variable in simple-pwquery.c: backport.

Thanks.

Oct 24 2018, 8:22 PM · gnupg
werner added a project to T4222: Uninitialized use of value variable in command.c cmd_genkey: backport.

Thanks. May also happen if the first print_assuan_status fails.

Oct 24 2018, 8:15 PM · gnupg
werner added a project to T4221: Suspicious read error handling in command-ssh.c ssh_handler_add_identity: backport.
Oct 24 2018, 8:11 PM · gnupg

Oct 23 2018

werner triaged T4208: Copy & paste error in libgcrypt ecc-curves.c as High priority.

Thanks. Fixed in master. Needs backport.

Oct 23 2018, 10:59 PM · Bug Report, libgcrypt
werner triaged T4212: Uninitialized use of l1 variable in _gcry_sexp_vextract_param as High priority.

Thanks. Fixed in master.

Oct 23 2018, 10:53 PM · Bug Report, libgcrypt

Oct 8 2018

werner added a comment to T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities.

Editor fault. The browser's editor is not like Emacs and here o my laptop the backspace key does not work as intended. I guess I was about to write ".. a back signature's usage flag".

Oct 8 2018, 11:49 PM · gpgv, gnupg, Bug Report
dkg added a comment to T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities.

what does "back signature's usage tool" mean? can we make an addition to the test suite that ensures that bad signatures will be rejected?

Oct 8 2018, 5:07 PM · gpgv, gnupg, Bug Report
werner reopened T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities as "Testing".

The fix was not fully correct because it considered a back signature's usage tool.

Oct 8 2018, 4:26 PM · gpgv, gnupg, Bug Report

Jun 21 2018

werner changed the status of T1173: gpg has no easy way to view the reason and description of revocation sigs from Open to Testing.

Done for master. Needs backport.

Jun 21 2018, 8:38 PM · gnupg, Debian, Feature Request

Jun 12 2018

dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

thanks for looking into this so quickly. where is your patch? i don't see it on the master branch yet.

Jun 12 2018, 9:05 AM · gnupg, Bug Report
werner added projects to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`): gnupg, backport.

Thanks for reporting and your patch. However, I used a different way to solve this bug.

Jun 12 2018, 8:46 AM · gnupg, Bug Report
werner triaged T4019: --export-filter drop-subkey filter type should have usage option property as Normal priority.

Thanks. Pushed to master. I think it should also go into 2.2.

Jun 12 2018, 8:21 AM · gnupg, Feature Request

Jun 9 2018

werner added a project to T4012: Diagnostic is shown with the original filename not being sanitized.: backport.
Jun 9 2018, 11:46 AM · gnupg, CVE, Bug Report

Jul 17 2017

justus closed T2209: minimal dsa/elg bitsize during expert keygen outdated as Resolved.

I just verified that this is indeed fixed.

Jul 17 2017, 10:43 AM · backport, Bug Report, gnupg, gnupg (gpg20), gnupg (gpg14), gnupg (gpg21)

Jul 3 2017

justus added a comment to T2135: Keyring locking on Windows broken.

No I don't recall any such problems, sorry.

Jul 3 2017, 11:52 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Jul 1 2017

marcus updated subscribers of T2135: Keyring locking on Windows broken.

@werner The backport to 2.0 didn't happen, I think. Is this still relevant. @justus Do you recall any more problems in the tests?

Jul 1 2017, 2:43 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Mar 30 2017

admin created backport.
Mar 30 2017, 6:42 PM

Jul 15 2016

gniibe added a comment to T2209: minimal dsa/elg bitsize during expert keygen outdated.

For the T2238, it was backported in effect (not intentional, though).

1.4: ca1fc59
2.0: 1c15136

Jul 15 2016, 2:53 AM · backport, Bug Report, gnupg, gnupg (gpg20), gnupg (gpg14), gnupg (gpg21)

Apr 19 2016

werner added a project to T2326: libgcrypt fails to build on FreeBSD 9.3: backport.
Apr 19 2016, 8:08 PM · Bug Report, libgcrypt

Feb 24 2016

aheinecke added a comment to T2135: Keyring locking on Windows broken.

I've tested it with pubring now too and it works.
Justus mentioned in jabber that he noticed some more errors after this patch in
the scheme tests. I've not tried them.

Feb 24 2016, 3:39 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner lowered the priority of T2135: Keyring locking on Windows broken from High to Normal.
Feb 24 2016, 2:24 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner added a comment to T2135: Keyring locking on Windows broken.

Okay, so I can backport this to 2.0 ?

Feb 24 2016, 2:24 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Feb 22 2016

aheinecke added a comment to T2135: Keyring locking on Windows broken.

Tested this with keybox and it appears to be working. When running a keylist
while importing the import holds for a bit and continues after the keylist.
Not tested this with keyring yet.

Feb 22 2016, 11:14 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Jan 15 2016

werner added a project to T2135: Keyring locking on Windows broken: In Progress.
Jan 15 2016, 9:54 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner added a project to T2135: Keyring locking on Windows broken: backport.
Jan 15 2016, 9:54 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Jan 5 2016

werner added a comment to T2209: minimal dsa/elg bitsize during expert keygen outdated.

Commit e70f7a5 fixes this for 2.1.
Should be backported.
Thanks.

Jan 5 2016, 2:01 PM · backport, Bug Report, gnupg, gnupg (gpg20), gnupg (gpg14), gnupg (gpg21)
werner added a project to T2209: minimal dsa/elg bitsize during expert keygen outdated: backport.
Jan 5 2016, 2:01 PM · backport, Bug Report, gnupg, gnupg (gpg20), gnupg (gpg14), gnupg (gpg21)

Dec 17 2015

werner added a comment to T1832: gpg --send-keys fails silently if keyserver unavailable.

backported by dkg with commit 0c3d764 for 1.4.19

Dec 17 2015, 3:48 PM · gnupg (gpg14), backport, Bug Report, gnupg
werner removed a project from T1832: gpg --send-keys fails silently if keyserver unavailable: In Progress.
Dec 17 2015, 3:48 PM · gnupg (gpg14), backport, Bug Report, gnupg
werner closed T1832: gpg --send-keys fails silently if keyserver unavailable as Resolved.
Dec 17 2015, 3:48 PM · gnupg (gpg14), backport, Bug Report, gnupg

Nov 20 2015

neal closed T1999: gpg --check-trustdb returns data on stdout when --verbose --verbose is present? as Resolved.
Nov 20 2015, 1:28 PM · gnupg (gpg14), backport, Bug Report, gnupg
neal added a comment to T1999: gpg --check-trustdb returns data on stdout when --verbose --verbose is present?.

dkg: I've now applied your backport to the 1.4 branch. Sorry for not doing this
sooner. I believe that this now completely rectifies this issue. As such, I'm
marking this issue as resolve. Thanks.

Nov 20 2015, 1:28 PM · gnupg (gpg14), backport, Bug Report, gnupg

Nov 18 2015

neal closed T1829: Excessive memory use on --import of crafted file as Resolved.
Nov 18 2015, 1:54 PM · backport, gnupg (gpg14), Bug Report, gnupg
neal added a comment to T1829: Excessive memory use on --import of crafted file.

Based on Werner's comment, this issue has been addressed. As such, I'm closing
this bug report.

Nov 18 2015, 1:54 PM · backport, gnupg (gpg14), Bug Report, gnupg
neal removed a project from T1829: Excessive memory use on --import of crafted file: In Progress.
Nov 18 2015, 1:54 PM · backport, gnupg (gpg14), Bug Report, gnupg

Sep 22 2015

werner added a project to T2075: gpg-agent comments in sshcontrol for do not match ssh: Testing.
Sep 22 2015, 9:40 AM · Bug Report, ssh, gnupg
werner added a comment to T2075: gpg-agent comments in sshcontrol for do not match ssh.

See T2106 for the SHA-256 feature.

Sep 22 2015, 9:40 AM · Bug Report, ssh, gnupg
werner added a comment to T2075: gpg-agent comments in sshcontrol for do not match ssh.

I have not yet used that new ssh version. Will look into it soon to get the MD5
fingerprints replaced.

The MD5 bug has been fixed with commit 2167951:

  • gcry_md_write (md, "384\0\0\0\x08nistp521", 15);

+ gcry_md_write (md, "384\0\0\0\x08nistp384", 15);

Sep 22 2015, 9:33 AM · Bug Report, ssh, gnupg
werner added a project to T2075: gpg-agent comments in sshcontrol for do not match ssh: backport.
Sep 22 2015, 9:33 AM · Bug Report, ssh, gnupg

Sep 8 2015

werner added a project to T1829: Excessive memory use on --import of crafted file: backport.
Sep 8 2015, 2:55 PM · backport, gnupg (gpg14), Bug Report, gnupg
werner added a comment to T1829: Excessive memory use on --import of crafted file.

2.0.29-beta has a fix for this. See also T1823.

Sep 8 2015, 2:55 PM · backport, gnupg (gpg14), Bug Report, gnupg
werner added a project to T1999: gpg --check-trustdb returns data on stdout when --verbose --verbose is present?: gnupg (gpg14).
Sep 8 2015, 2:46 PM · gnupg (gpg14), backport, Bug Report, gnupg
werner added a comment to T1999: gpg --check-trustdb returns data on stdout when --verbose --verbose is present?.

backport for 2.0 commited. Thanks.

Sep 8 2015, 2:46 PM · gnupg (gpg14), backport, Bug Report, gnupg
werner added a project to T1832: gpg --send-keys fails silently if keyserver unavailable: gnupg (gpg14).
Sep 8 2015, 2:43 PM · gnupg (gpg14), backport, Bug Report, gnupg

Jun 30 2015

werner added a project to T1999: gpg --check-trustdb returns data on stdout when --verbose --verbose is present?: backport.
Jun 30 2015, 11:05 AM · gnupg (gpg14), backport, Bug Report, gnupg

Feb 18 2015

werner added a comment to T1832: gpg --send-keys fails silently if keyserver unavailable.

Fixed with commit 0c3d764.
Should be backported to 1.4.

Feb 18 2015, 12:16 PM · gnupg (gpg14), backport, Bug Report, gnupg
werner added projects to T1832: gpg --send-keys fails silently if keyserver unavailable: In Progress, backport.
Feb 18 2015, 12:16 PM · gnupg (gpg14), backport, Bug Report, gnupg

Feb 12 2015

werner added a comment to T1823: parse-packet.c DoS using badly encoded MPIs..

Back ported to 2.0 (commit 2b2adb85948ce2c7db727ebc0c99e8ad2c29bf5f)

Feb 12 2015, 6:48 PM · Bug Report, gnupg

Jan 28 2015

werner added a comment to T1823: parse-packet.c DoS using badly encoded MPIs..

Fixed for 2.1 with 382ba4b.Should be backported to 2.0 and 1.4.

Jan 28 2015, 8:49 PM · Bug Report, gnupg
werner added a project to T1823: parse-packet.c DoS using badly encoded MPIs.: backport.
Jan 28 2015, 8:49 PM · Bug Report, gnupg

Jan 26 2015

werner added a comment to T1064: gpgsm: manual page misses to document options.

Should be fixed by commit 017c6f8fba9ae141a46084d6961ba60c4230f97a
on 2014-06-24.

Jan 26 2015, 2:59 PM · backport, gnupg, Debian, Feature Request
werner closed T1064: gpgsm: manual page misses to document options as Resolved.
Jan 26 2015, 2:59 PM · backport, gnupg, Debian, Feature Request
werner removed a project from T1715: warn when primary key expiration updated without encryption-capable subkey: In Progress.
Jan 26 2015, 2:57 PM · Bug Report, backport, gnupg
werner closed T1715: warn when primary key expiration updated without encryption-capable subkey as Resolved.
Jan 26 2015, 2:57 PM · Bug Report, backport, gnupg
werner added a comment to T1715: warn when primary key expiration updated without encryption-capable subkey.

Backported to 2.0: commit 2424028.

Jan 26 2015, 2:57 PM · Bug Report, backport, gnupg

Nov 24 2014

werner added a comment to T1761: Null Dereference in GPG decrypt_data.

backported to 2.0 and 1.4.

Nov 24 2014, 7:42 PM · Bug Report, gnupg
werner closed T1761: Null Dereference in GPG decrypt_data as Resolved.
Nov 24 2014, 7:42 PM · Bug Report, gnupg
werner removed a project from T1761: Null Dereference in GPG decrypt_data: In Progress.
Nov 24 2014, 7:42 PM · Bug Report, gnupg

Nov 17 2014

werner added projects to T1761: Null Dereference in GPG decrypt_data: In Progress, backport.
Nov 17 2014, 1:09 PM · Bug Report, gnupg
werner added a comment to T1761: Null Dereference in GPG decrypt_data.

Fixed in master will be backported to 2.0.
That is a very well written bug report. Thanks.

Nov 17 2014, 1:09 PM · Bug Report, gnupg

Sep 17 2014

werner added projects to T1715: warn when primary key expiration updated without encryption-capable subkey: In Progress, backport.
Sep 17 2014, 4:30 PM · Bug Report, backport, gnupg

Jun 23 2014

werner added a comment to T1358: GPG 1.4.11 apdu.c -> uninitialized variable+ implicit typecast led to malloc error (patch attached).

Backported to 1.4. It has also been applied to master some time ago.

Jun 23 2014, 10:02 AM · Bug Report, gnupg
werner closed T1358: GPG 1.4.11 apdu.c -> uninitialized variable+ implicit typecast led to malloc error (patch attached) as Resolved.
Jun 23 2014, 10:02 AM · Bug Report, gnupg

Jun 2 2014

werner added a project to T1358: GPG 1.4.11 apdu.c -> uninitialized variable+ implicit typecast led to malloc error (patch attached): gnupg (gpg14).
Jun 2 2014, 8:07 PM · Bug Report, gnupg
werner added a comment to T1640: --with-fingerprint <FILE> does not show the fingerprint in some cases..

Fixed for master.

Jun 2 2014, 7:58 PM · Bug Report, gnupg
werner added projects to T1640: --with-fingerprint <FILE> does not show the fingerprint in some cases.: Testing, backport.
Jun 2 2014, 5:40 PM · Bug Report, gnupg
werner added a comment to T1640: --with-fingerprint <FILE> does not show the fingerprint in some cases..

Fixed for 2.0. But take care: The code now also uses the fixed-list-mode which
is the default in --list-keys for ages:

pub:-:1024:17:4713D527ECE16009:1118095577:::-:
fpr:::::::::8BFD3F436366D9820E9EAB2F4713D527ECE16009:
uid:::::::::George Hacker <georgeh@axian.com>:
uid:::::::::George Hacker <ghacker@axian.com>:
uid:::::::::George Hacker (GLS) <ghacker@redhat.com>:
uat:::::::::1 2493:
sub:-:1024:16:0D94CF6C0C8C2F1B:1118095578::::

Jun 2 2014, 5:40 PM · Bug Report, gnupg

Jan 30 2014

werner closed T1603: Respect --disable-neon-support configure option as Resolved.
Jan 30 2014, 7:47 PM · backport, Bug Report, libgcrypt

Jan 29 2014

kmihelich added a comment to T1603: Respect --disable-neon-support configure option.

Thanks, it's no problem to wait until 1.6.2. I just tested the patch and it's
working as intended.

Jan 29 2014, 4:46 PM · backport, Bug Report, libgcrypt
werner added a comment to T1603: Respect --disable-neon-support configure option.

Oh no!

I recall that I looked up the commit id this morning but obviously was disturbed
and thus didn't actually complete the cherry-pick. Sorry. I just pushed the
change. We need to wait some time before we can do a 1.6.2.

I attach a patch for 1.6.1.

Jan 29 2014, 4:39 PM · backport, Bug Report, libgcrypt
werner added a comment to T1603: Respect --disable-neon-support configure option.

D187: 422_0001-cipher-Take-care-of-ENABLE_NEON_SUPPORT.patch

Jan 29 2014, 4:39 PM · backport, Bug Report, libgcrypt
kmihelich reopened T1603: Respect --disable-neon-support configure option as "Open".
Jan 29 2014, 4:22 PM · backport, Bug Report, libgcrypt
kmihelich added a comment to T1603: Respect --disable-neon-support configure option.

Did you intend to include the changes in 1.6.1? It doesn't appear that they made
it into the release.

Jan 29 2014, 4:22 PM · backport, Bug Report, libgcrypt
werner closed T1603: Respect --disable-neon-support configure option as Resolved.
Jan 29 2014, 3:01 PM · backport, Bug Report, libgcrypt
werner added a comment to T1603: Respect --disable-neon-support configure option.

Done and 1.6.1 released

Jan 29 2014, 3:01 PM · backport, Bug Report, libgcrypt
werner removed a project from T1603: Respect --disable-neon-support configure option: Testing.
Jan 29 2014, 3:01 PM · backport, Bug Report, libgcrypt

Jan 28 2014

werner added a comment to T1603: Respect --disable-neon-support configure option.

Thanks. I backport it tomorrow.

Jan 28 2014, 9:42 PM · backport, Bug Report, libgcrypt
kmihelich added a comment to T1603: Respect --disable-neon-support configure option.

I just tested with the changes applied to the LIBGCRYPT-1-6-BRANCH head, minus
the sha1.c changes (since the NEON parts weren't there), and it is building and
running fine for me. I assume it should work fine in master given this, and can
test that later if you would like, I'm just currently missing the libgpg-error >=
1.13 dependency for doing that. Thanks for your help getting this fixed up.

Jan 28 2014, 7:22 PM · backport, Bug Report, libgcrypt