Feed Advanced Search

Yesterday

gniibe triaged T4977: dirmngr not working with linux kernel parameter ipv6.disable=1 as Normal priority.
Mon, Jul 13, 3:14 AM · Testing, gnupg (gpg22), dirmngr, Bug Report
gniibe changed the status of T4977: dirmngr not working with linux kernel parameter ipv6.disable=1 from Open to Testing.

Pushed fix to master and STABLE-BRANCH-2-2.

Mon, Jul 13, 3:13 AM · Testing, gnupg (gpg22), dirmngr, Bug Report

Fri, Jul 10

gniibe changed the status of T4246: GnuPG master does not allow decryption with bad usage flags (regression) from Open to Testing.
Fri, Jul 10, 3:04 AM · Testing, Bug Report, gnupg (gpg23)

Thu, Jul 9

werner closed T4908: ECDH with AES-128 decryption failure when fully padded as Resolved.
Thu, Jul 9, 1:16 PM · Testing, gnupg (gpg22), Bug Report
gniibe changed the status of T4688: `make distcheck` fails trying to make `rst/gpgme-python-howto.rst` from Open to Testing.

Fixed in rM1b840a151ad7: python: Fix how to generate documentation..

Thu, Jul 9, 7:23 AM · Testing, gpgme, Bug Report
gniibe changed the status of T4915: Cannot compile on macOS Mojave (utf8.c) from Open to Testing.
Thu, Jul 9, 7:07 AM · Testing, gnupg (gpg23), Bug Report
gniibe changed the status of T4973: Cross build problem with v1.38 from Open to Testing.
Thu, Jul 9, 7:05 AM · Testing, gpgrt
gniibe added a parent task for T4160: ed488 support: T4417: Work needed for gnupg 2.3.
Thu, Jul 9, 7:00 AM · Testing, gnupg (gpg23), Feature Request
gniibe changed the status of T4160: ed488 support from Open to Testing.

It's in master (to be gnupg 2.3).
Enjoy.

Thu, Jul 9, 6:53 AM · Testing, gnupg (gpg23), Feature Request

May 29 2020

werner closed T4623: pkg-config for mingw needs to emit -lws2_32 as Resolved.
May 29 2020, 3:16 PM · Testing, Windows, gpgrt, Bug Report
gniibe added a commit to T4934: Returning automatic variable buffer from a function : rGab724d3206c8: dirmngr: dns: Fix allocation of string buffer in stack..
May 29 2020, 4:22 AM · dirmngr, Testing, Bug Report

May 28 2020

PWRzTOtacorTPq7KNW4oFec8F added a comment to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)).

Is there a blogpost or similar where the use of several smartcards following this improvement is explained to n00bs like me? :) For now all I find is this thread and some SE answers saying it does not work yet (https://security.stackexchange.com/questions/154702/gpg-encryption-subkey-on-multiple-smart-cards-issue) . If somebody could post a new answer on SE / write a small blog post or similar that would be great. Useful would be to have 1) from which versions and over is that available 2) how this works / how to use.

May 28 2020, 10:18 PM · Testing, gnupg, Feature Request

May 21 2020

gniibe changed the status of T4934: Returning automatic variable buffer from a function from Open to Testing.

Fixed in master and applied to 2.2 branch too.

May 21 2020, 7:39 AM · dirmngr, Testing, Bug Report

May 19 2020

werner changed the status of T4104: gpgsm/ksba removes leading zeros from signature byte array from Open to Testing.

Seems to be fixed now.

May 19 2020, 3:13 PM · Testing, libksba, S/MIME, Bug Report
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed, a subtask of T4888: GpgSM: Support ECC key generation by gpgsm_genkey, as Resolved.
May 19 2020, 2:43 PM · Testing, Feature Request, S/MIME
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed as Resolved.
May 19 2020, 2:43 PM · Testing, Feature Request, S/MIME
werner added a comment to T4888: GpgSM: Support ECC key generation by gpgsm_genkey.

Finished if an existing key is used. See rG6dc3846d78192e393be73c16c72750734a9174d1 for examples.

May 19 2020, 2:42 PM · Testing, Feature Request, S/MIME
werner added a commit to T4888: GpgSM: Support ECC key generation by gpgsm_genkey: rGb18fb0264abd: agent: Allow to use SETHASH for arbitrary data..
May 19 2020, 2:37 PM · Testing, Feature Request, S/MIME
werner added a commit to T4888: GpgSM: Support ECC key generation by gpgsm_genkey: rG6dc3846d7819: sm: Support creation of EdDSA certificates..
May 19 2020, 2:37 PM · Testing, Feature Request, S/MIME

May 14 2020

werner removed a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4888: GpgSM: Support ECC key generation by gpgsm_genkey.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a subtask for T4888: GpgSM: Support ECC key generation by gpgsm_genkey: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:47 AM · Testing, Feature Request, S/MIME

Apr 28 2020

gniibe added a comment to T4869: constant-time mpi_invm.

I tested with this patch (which changes use of constant-time routine when it's secure memory):

Apr 28 2020, 5:57 AM · libgcrypt

Apr 14 2020

gniibe updated the task description for T4914: libgcrypt ECC regression for the use case in GNUNET.
Apr 14 2020, 8:03 AM · Testing, libgcrypt
gniibe changed the status of T4914: libgcrypt ECC regression for the use case in GNUNET from Open to Testing.

Fixed in rC0ff36e04f7cd: ecc: Remove hard-coded value for ECC_DIALECT_ED25519..

Apr 14 2020, 8:02 AM · Testing, libgcrypt

Apr 9 2020

werner added a comment to T4908: ECDH with AES-128 decryption failure when fully padded.

There are no betas; either you apply the patch mentioned above ( rG2f08a4f25df7) to a stock 2.2.20 or you build from the Git repo (STABLE-BRANCH-2-2, see https://gnupg.org/download/git.html).

Apr 9 2020, 6:44 PM · Testing, gnupg (gpg22), Bug Report
Broccoli added a comment to T4908: ECDH with AES-128 decryption failure when fully padded.

Could you guide me to where I find the beta or snapshot, so I could test it and give you feedback? I seem to be unable to find it on my own.

Apr 9 2020, 12:25 PM · Testing, gnupg (gpg22), Bug Report
gniibe changed the status of T4774: Cross compilation friendly libgpg-error from Open to Testing.

Push the change to master.

Apr 9 2020, 9:03 AM · Testing, gpgrt

Apr 8 2020

Broccoli added a comment to T4908: ECDH with AES-128 decryption failure when fully padded.

That's odd. :-)

Apr 8 2020, 4:20 PM · Testing, gnupg (gpg22), Bug Report
werner added a comment to T4908: ECDH with AES-128 decryption failure when fully padded.

FWIW, the code was written by the author of the specs and he note in his original patch (rGe0972d3d96) :

Apr 8 2020, 4:07 PM · Testing, gnupg (gpg22), Bug Report
gniibe changed the status of T4908: ECDH with AES-128 decryption failure when fully padded from Open to Testing.

Thanks for your report. The problem of GnuPG was that it mandated padding length < 16 bytes, which is wrong.

Apr 8 2020, 2:44 AM · Testing, gnupg (gpg22), Bug Report

Apr 7 2020

gniibe added a project to T4906: error: call to 'vec_vsx_ld' is ambiguous: Testing.
Apr 7 2020, 2:57 AM · Testing, libgcrypt, Bug Report

Apr 6 2020

gniibe changed the status of T4888: GpgSM: Support ECC key generation by gpgsm_genkey from Open to Testing.
Apr 6 2020, 6:49 AM · Testing, Feature Request, S/MIME

Apr 3 2020

gniibe changed the status of T4843: REGEXP support for all systems from Open to Testing.

Pushed the changes.

Apr 3 2020, 8:50 AM · Testing, gnupg

Apr 2 2020

gniibe added a comment to T4864: New scdaemon command to watch device removal.

It runs like:

$ gpg-connect-agent "scd devinfo --watch" /bye
S DEVINFO_START
S DEVINFO_END
S DEVINFO_STATUS new
S DEVINFO_START
S DEVICE generic D276000124010200F517000000010000 openpgp
S DEVINFO_END
S DEVINFO_STATUS removal
S DEVINFO_START
S DEVINFO_END
OK
$ 
Apr 2 2020, 8:49 AM · Testing, Feature Request, scd, Bug Report
gniibe changed the status of T4864: New scdaemon command to watch device removal from Open to Testing.

Push the change to master.

Apr 2 2020, 8:46 AM · Testing, Feature Request, scd, Bug Report

Mar 24 2020

gniibe changed the status of T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix from Open to Testing.

This should work well with libksba master and gnupg/sm master.

Mar 24 2020, 3:35 AM · Testing, S/MIME, Feature Request, libksba
gniibe changed the status of T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed from Open to Testing.

The commits in 2019 (for libksba and gnupg/sm) handles the problem (of key generation using card).

Mar 24 2020, 3:32 AM · Testing, Feature Request, S/MIME

Mar 20 2020

werner closed T4810: A key with only "C" capability cannot be selected as default key. as Resolved.
Mar 20 2020, 5:59 PM · Testing, gnupg (gpg22)
werner closed T4832: card: when KDF is enabled, use of pinpad input should be disabled as Resolved.
Mar 20 2020, 5:59 PM · Testing, gnupg (gpg22), scd, Bug Report
werner closed T4850: GnuPG fails to find default key to sign when using a smart card, but recovers once card is removed as Resolved.
Mar 20 2020, 5:59 PM · Testing, gnupg (gpg22)

Mar 19 2020

gniibe added a subtask for T4869: constant-time mpi_invm: T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:22 AM · libgcrypt
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:21 AM · Testing, libgcrypt
gniibe removed a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:20 AM · Testing, libgcrypt
gniibe added a subtask for T4274: Fail selftests when checksum file is missing in FIPS mode only: T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:20 AM · Testing, libgcrypt, Bug Report
gniibe removed a parent task for T4274: Fail selftests when checksum file is missing in FIPS mode only: T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:20 AM · Testing, libgcrypt, Bug Report
gniibe added a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Mar 19 2020, 5:14 AM · Testing, libgcrypt
gniibe removed subtasks for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0, T4702: Release GnuPG 2.3.0.
Mar 19 2020, 5:13 AM · Testing, libgcrypt
gniibe changed the status of T4869: constant-time mpi_invm from Open to Testing.
Mar 19 2020, 5:10 AM · libgcrypt

Mar 18 2020

werner moved T4810: A key with only "C" capability cannot be selected as default key. from Backlog to For next release on the gnupg (gpg22) board.
Mar 18 2020, 4:08 PM · Testing, gnupg (gpg22)
werner moved T4832: card: when KDF is enabled, use of pinpad input should be disabled from Backlog to For next release on the gnupg (gpg22) board.
Mar 18 2020, 4:06 PM · Testing, gnupg (gpg22), scd, Bug Report
werner added a commit to T4832: card: when KDF is enabled, use of pinpad input should be disabled: rGb27e20a95cb7: scd: Disable pinpad if it's impossible by KDF DO..
Mar 18 2020, 4:06 PM · Testing, gnupg (gpg22), scd, Bug Report
werner added a comment to T4832: card: when KDF is enabled, use of pinpad input should be disabled.

Backported to 2.2

Mar 18 2020, 4:06 PM · Testing, gnupg (gpg22), scd, Bug Report
werner moved T4850: GnuPG fails to find default key to sign when using a smart card, but recovers once card is removed from Backlog to For next release on the gnupg (gpg22) board.
Mar 18 2020, 3:50 PM · Testing, gnupg (gpg22)

Mar 13 2020

werner added a comment to T4872: Support opaque MPI with gcry_mpi_print.

I am not sure whether this is related but when using Libgcrypt master and verifying a signature created with an ed25519 key, I get the error below with valgrind. Both with 2.2. current and 2.3. It does not happen with the current Libgcrypt 1.8.

Mar 13 2020, 5:25 PM · Testing, Feature Request, libgcrypt

Mar 12 2020

gniibe added a project to T4624: libassuan-config and libassuan.pc both put -lws2_32 before -lgpg-error, which fails during static linking: Testing.
Mar 12 2020, 6:46 AM · Testing, Windows, libassuan, Bug Report
gniibe added a project to T4623: pkg-config for mingw needs to emit -lws2_32: Testing.
Mar 12 2020, 6:46 AM · Testing, Windows, gpgrt, Bug Report
gniibe added a project to T4301: Handling multiple subkeys on two SmartCards: Testing.
Mar 12 2020, 6:45 AM · Testing, gnupg, scd, Bug Report
gniibe changed the status of T4810: A key with only "C" capability cannot be selected as default key. from Open to Testing.
Mar 12 2020, 6:43 AM · Testing, gnupg (gpg22)
gniibe changed the status of T4244: Better enum_secret_keys by asking gpg-agent KEYINFO --list from Open to Testing.
Mar 12 2020, 6:40 AM · Testing, gnupg
gniibe added a project to T4491: Compile error in nPth's t-fork.c on Solaris 11.3 i86pc: Testing.
Mar 12 2020, 6:39 AM · Testing, npth, Bug Report
gniibe added projects to T4583: pinentry-tty should accept backspace, delete, and ctrl-U: Testing, pinentry.
Mar 12 2020, 6:39 AM · pinentry, Testing, Bug Report
gniibe added a project to T4585: pinentry-tty mishandles ctrl-C: Testing.
Mar 12 2020, 6:38 AM · Testing, Bug Report
gniibe changed the status of T3300: scd: Support multiple readers by PC/SC driver from Open to Testing.
Mar 12 2020, 6:36 AM · Testing, gnupg (gpg23), scd
gniibe added a project to T3207: FASTWIPE_T undefined: Testing.
Mar 12 2020, 6:34 AM · Testing, ntbtls, Bug Report
gniibe changed the status of T4597: Support GCM modes for ntbtls. from Open to Testing.
Mar 12 2020, 6:33 AM · Testing, Feature Request, ntbtls
gniibe changed the status of T4641: Libassuan: enable the environment to set compiler and linker flags for helper tools from Open to Testing.
Mar 12 2020, 6:32 AM · Testing, libassuan, Feature Request
gniibe changed the status of T4673: 2.3-only: Don't fallback to PC/SC on failure by the internal CCID driver, only use PC/SC when --disable-ccid is specified from Open to Testing.
Mar 12 2020, 6:31 AM · Testing, scd, Feature Request
gniibe added a project to T4678: libassuan.pc missing include dir directive in cflags: Testing.
Mar 12 2020, 6:30 AM · Testing, libassuan

Mar 11 2020

gniibe changed the status of T4872: Support opaque MPI with gcry_mpi_print from Open to Testing.

Fixed in master.

Mar 11 2020, 8:13 AM · Testing, Feature Request, libgcrypt

Feb 28 2020

gniibe added a project to T4832: card: when KDF is enabled, use of pinpad input should be disabled: Testing.
Feb 28 2020, 8:39 AM · Testing, gnupg (gpg22), scd, Bug Report
gniibe changed the status of T3891: kdf-setup does not set admin and user PIN codes from Open to Testing.

I pushed the change to master.

Feb 28 2020, 8:34 AM · Testing, scd, Bug Report

Feb 19 2020

sanmai added a comment to T4850: GnuPG fails to find default key to sign when using a smart card, but recovers once card is removed.

I can confirm that the problem is gone from a build from the master branch. It indeed retries the search.

Feb 19 2020, 6:44 AM · Testing, gnupg (gpg22)
gniibe changed the status of T4850: GnuPG fails to find default key to sign when using a smart card, but recovers once card is removed from Open to Testing.
Feb 19 2020, 3:07 AM · Testing, gnupg (gpg22)

Jan 17 2020

gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG853d5b7677ea: gpg: Prepare enhancement of agent_probe_secret_key..
Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg
gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG8748c50bfaa8: gpg: Prefer card key on use in multiple subkeys situation..
Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option), a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
Jan 17 2020, 8:12 AM · Testing, gnupg, Feature Request
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option) from Open to Testing.

Implemented in master.

Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg

Jan 16 2020

werner added a comment to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)).

BTW, I just pushed some new features to maste for the gpg-card tool. You can now do

Jan 16 2020, 9:37 PM · Testing, gnupg, Feature Request
gniibe added a project to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): Testing.
Jan 16 2020, 5:29 AM · Testing, gnupg, Feature Request
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys from Open to Testing.
Jan 16 2020, 5:25 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

The first "SCD SERIALNO" command let scdaemon re-scan smartcards/tokens.

Jan 16 2020, 5:24 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

With new "KEYINFO" command in scdaemon, a list of card keys can be retrieved by:

Jan 16 2020, 5:22 AM · Testing, Feature Request, gnupg
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID, a subtask of T4695: Remove SERIALNO as an identifier to select keys, as Resolved.
Jan 16 2020, 5:17 AM · Testing, Feature Request, gnupg

Dec 23 2019

werner removed a subtask for T4695: Remove SERIALNO as an identifier to select keys: Restricted Maniphest Task.
Dec 23 2019, 11:02 AM · Testing, Feature Request, gnupg

Dec 18 2019

gniibe added a subtask for T4695: Remove SERIALNO as an identifier to select keys: Restricted Maniphest Task.
Dec 18 2019, 1:36 AM · Testing, Feature Request, gnupg
gniibe added a subtask for T4695: Remove SERIALNO as an identifier to select keys: T4301: Handling multiple subkeys on two SmartCards.
Dec 18 2019, 1:35 AM · Testing, Feature Request, gnupg

Dec 17 2019

werner added a comment to T4695: Remove SERIALNO as an identifier to select keys.

Many cards have some printed information and I consider them important to avoid testing one by one all the cards from my pocket.
This I am really in favor of beeing asked to insert the respective card. The new text format private key files make it much easier to maintain this info

Dec 17 2019, 4:36 PM · Testing, Feature Request, gnupg

Dec 6 2019

gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Dec 6 2019, 5:22 AM · Testing, libgcrypt
gniibe removed a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Dec 6 2019, 5:21 AM · Testing, libgcrypt
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:20 AM · Testing, libgcrypt
gniibe added a project to T4293: Add dedicated X25519 function to Libcgrypt : Testing.
Dec 6 2019, 5:20 AM · Testing, libgcrypt
gniibe added a subtask for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:09 AM · Testing, gnupg (gpg23)
gniibe removed a parent task for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:09 AM · Testing, gnupg (gpg23)
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

In 2.2.18, this fix is not included. (partial fix was reverted)

Dec 6 2019, 5:05 AM · Testing, gnupg (gpg23)
gniibe added a parent task for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:05 AM · Testing, gnupg (gpg23)
gniibe added a subtask for T4620: no support for multiple (yubikey) smartcards plugged in at the same time: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 3:08 AM · Testing, Bug Report

Nov 25 2019

werner closed T4633: gpg argument "--passphrase=" yields 'missing argument for option "--passphrase="' as Resolved.
Nov 25 2019, 10:12 PM · Testing, gnupg (gpg22), Bug Report

Nov 18 2019

gniibe closed T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7 as Resolved.

This will be in 2.2.18, closing.

Nov 18 2019, 9:37 AM · scd, Testing, Bug Report