Feed Advanced Search

Today

gniibe added a commit to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): rA23bf87595432: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags..
Wed, Jan 16, 6:30 AM
gniibe committed rA23bf87595432: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags. (authored by gniibe).
build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Wed, Jan 16, 6:30 AM
gniibe added a commit to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): rK3f99f332ada6: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags..
Wed, Jan 16, 4:25 AM
gniibe committed rK3f99f332ada6: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags. (authored by gniibe).
build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Wed, Jan 16, 4:25 AM
gniibe closed T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) as Resolved.

Done for libassuan and libksba.

Wed, Jan 16, 3:21 AM
gniibe removed a project from T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): gpgme.

Done for gpgme.

Wed, Jan 16, 3:03 AM
gniibe committed rM66bcb8acb245: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags. (authored by gniibe).
build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Wed, Jan 16, 3:02 AM
gniibe added a commit to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): rM66bcb8acb245: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags..
Wed, Jan 16, 3:02 AM
gniibe committed rGdafffa95b231: gpg: Report STATUS_NO_SECKEY when it is examined. (authored by gniibe).
gpg: Report STATUS_NO_SECKEY when it is examined.
Wed, Jan 16, 2:38 AM

Yesterday

gniibe removed a project from T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): libgcrypt.

Done for libgcrypt.

Tue, Jan 15, 8:53 AM
gniibe committed rCe5c2f8a2cd2b: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags. (authored by gniibe).
build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Tue, Jan 15, 8:18 AM
gniibe added a commit to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): rCe5c2f8a2cd2b: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags..
Tue, Jan 15, 8:18 AM
gniibe closed T4288: Add getrandom support for the BSDs as Resolved.

Pushed to master, fixing about return value of getentropy. Tested on FreeBSD 12. Tested on FreeBSD 11 where getentropy is not available.

Tue, Jan 15, 7:54 AM · libgcrypt
gniibe closed T4288: Add getrandom support for the BSDs, a subtask of T4294: Release Libgcrypt 1.9.0, as Resolved.
Tue, Jan 15, 7:54 AM · Release Info, libgcrypt
gniibe committed rC17f246c7044a: random: Fix previous commit for getentropy function. (authored by gniibe).
random: Fix previous commit for getentropy function.
Tue, Jan 15, 7:50 AM
gniibe committed rEfd6f64f1897e: build: Fix for BSD make. (authored by gniibe).
build: Fix for BSD make.
Tue, Jan 15, 7:31 AM
gniibe committed rC2677d7d482bf: random: Use getentropy when available for not GNU/Linux. (authored by gniibe).
random: Use getentropy when available for not GNU/Linux.
Tue, Jan 15, 5:58 AM
gniibe added a commit to T4288: Add getrandom support for the BSDs: rC2677d7d482bf: random: Use getentropy when available for not GNU/Linux..
Tue, Jan 15, 5:58 AM · libgcrypt

Mon, Jan 14

gniibe added a comment to E432: Weekly Standup.

Main topics:

Mon, Jan 14, 2:53 AM
gniibe is attending E432: Weekly Standup.
Mon, Jan 14, 2:45 AM

Thu, Jan 10

aheinecke awarded T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) a Like token.
Thu, Jan 10, 7:35 AM
gniibe renamed T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) from Use uninstalled library, which is building now (even if rpath doesn't work well) to 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Jan 10, 2:33 AM
gniibe added a commit to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): rE1fd997231b71: build: Build with LD_LIBRARY_PATH, use of DT_RPATH (2/2)..
Thu, Jan 10, 2:33 AM
gniibe committed rE1fd997231b71: build: Build with LD_LIBRARY_PATH, use of DT_RPATH (2/2). (authored by gniibe).
build: Build with LD_LIBRARY_PATH, use of DT_RPATH (2/2).
Thu, Jan 10, 2:33 AM
gniibe committed rE1044ee639dab: build: Build with LD_LIBRARY_PATH, use of DT_RPATH (1/2). (authored by gniibe).
build: Build with LD_LIBRARY_PATH, use of DT_RPATH (1/2).
Thu, Jan 10, 2:33 AM
gniibe removed a project from T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well): gpgrt.

Done for libgpg-error.

Thu, Jan 10, 2:32 AM
gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

Topic branch of libgpg-error is not good to show changes (for other libraries).
So, I made D473: Introducing LDADD_FOR_TESTS_KLUDGE to enable 'make check' with LD_LIBRARY_PATH.
Appliying to libgpg-error.

Thu, Jan 10, 2:31 AM
gniibe added a project to D473: Introducing LDADD_FOR_TESTS_KLUDGE to enable 'make check' with LD_LIBRARY_PATH: gpgme.
Thu, Jan 10, 2:28 AM · gpgme, libksba, libgcrypt, ntbtls, libassuan, gpgrt
gniibe created D473: Introducing LDADD_FOR_TESTS_KLUDGE to enable 'make check' with LD_LIBRARY_PATH.
Thu, Jan 10, 2:28 AM · gpgme, libksba, libgcrypt, ntbtls, libassuan, gpgrt

Tue, Jan 8

gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

For other distros, it seems it's quite old issue: https://sourceware.org/ml/binutils/2012-05/msg00037.html

Tue, Jan 8, 2:50 AM
gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

My patches on the topic branch: https://dev.gnupg.org/source/libgpg-error/history/gniibe%252Fdisable-new-dtags/

Tue, Jan 8, 2:49 AM
gniibe committed rE5f9569ee181f: build: Build with LD_LIBRARY_PATH, use of DT_RPATH (2/2). (authored by gniibe).
build: Build with LD_LIBRARY_PATH, use of DT_RPATH (2/2).
Tue, Jan 8, 2:47 AM
gniibe committed rE7933692f2e60: build: Build with LD_LIBRARY_PATH, use of DT_RPATH (1/2). (authored by gniibe).
build: Build with LD_LIBRARY_PATH, use of DT_RPATH (1/2).
Tue, Jan 8, 2:47 AM
gniibe added a comment to T4288: Add getrandom support for the BSDs.

In my patch, for OpenBSD and FreeBSD (well, other than GNU/Linux), it uses getentropy if available. For GNU/Linux, we use the local macro of getentropy (regardless of the availability of the function), keeping exactly same behavior of syscall with __NR_getrandom.

Tue, Jan 8, 1:16 AM · libgcrypt

Mon, Jan 7

gniibe added a comment to T4288: Add getrandom support for the BSDs.

Update to prefer syscall on GNU/Linux (no need to audit libc implementation):

Mon, Jan 7, 11:03 AM · libgcrypt
gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

My tentative conclusion: When (GNU) ld supports --disable-new-dtags, add it to LDADD in tests/Makefile.am.

Mon, Jan 7, 8:08 AM
gniibe committed rG5ab3bc422a5c: scd: Fix for USB INTERRUPT transfer. (authored by gniibe).
scd: Fix for USB INTERRUPT transfer.
Mon, Jan 7, 6:30 AM
gniibe added a commit to T4308: scdaemon does not survive suspend/resume with Yubikey4: rG5ab3bc422a5c: scd: Fix for USB INTERRUPT transfer..
Mon, Jan 7, 6:30 AM · yubikey, Bug Report
gniibe added a comment to T4308: scdaemon does not survive suspend/resume with Yubikey4.

Thanks a lot for your logs. I see what's going on here.
For some reason, Yubikey keeps running after failure by suspend/resume (perhaps, because it serves for multiple functionalities of USB HID for OTP, as well as CCID for OpenPGPcard).
This failure mode is not expected by the current implementation of scdaemon, under in-stock CCID driver.

Mon, Jan 7, 6:06 AM · yubikey, Bug Report
gniibe added a comment to E422: Weekly Standup.
  • Fixed this event editing by "Edit Recurrence"
Mon, Jan 7, 4:15 AM
gniibe is attending E422: Weekly Standup.
Mon, Jan 7, 3:26 AM
gniibe cancelled E431: Weekly Standup.
Mon, Jan 7, 3:25 AM
gniibe changed the end date for E422: Weekly Standup from Mon, Jan 7, 12:00 PM to Mon, Jan 7, 11:30 AM.
Mon, Jan 7, 3:25 AM
gniibe changed the end date for E422: Weekly Standup from Dec 22 2019, 12:00 PM to Mon, Jan 7, 12:00 PM.
Mon, Jan 7, 3:24 AM
gniibe changed the end date for E422: Weekly Standup from Dec 22 2025, 11:00 AM to Dec 22 2019, 12:00 PM.
Mon, Jan 7, 3:23 AM
gniibe changed E422: Weekly Standup to repeat until Dec 21 2025, 4:00 PM.
Mon, Jan 7, 3:22 AM

Fri, Jan 4

gniibe claimed T4308: scdaemon does not survive suspend/resume with Yubikey4.

The workaround in T3825 is for PC/SC driver. So, it is not the case for internal stock CCID driver.
'scd reset /bye' does not let the scdaemon do reset process of the card itself. It resets the transaction of scdaemon.

Fri, Jan 4, 6:16 AM · yubikey, Bug Report

Mon, Dec 31

gniibe is attending E418: Weekly Standup.
Mon, Dec 31, 7:22 AM
gniibe added a comment to E418: Weekly Standup.

Last week:

  • Gnuk 1.2.13 release following
    • Chopstix 1.13
    • FST-01SZ PCB design (tagged 3.01)
  • Finalize the production of FST-01SZ
  • Trying to purchase metal case which can be attached to FST-01SZ:
  • Accounting

This week:

  • Mostly off for new year gatherings
Mon, Dec 31, 7:13 AM

Fri, Dec 28

gniibe added a comment to T4301: Handling multiple subkeys on two SmartCards.

Please show us your output of gpg --card-status for each card, and tell us the reason why you think "the pgp db seems screwed up".

Fri, Dec 28, 3:33 AM · Info Needed, Bug Report
gniibe added a comment to T4301: Handling multiple subkeys on two SmartCards.

For my test, six distinct keys (three subkeys for each smartcard) works fine.
IIUC, you try to use same decryption key by two smartcards. Currently, it is not supported.

Fri, Dec 28, 3:13 AM · Info Needed, Bug Report

Thu, Dec 27

gniibe added a project to T4301: Handling multiple subkeys on two SmartCards: Info Needed.

Is it an issue when you share an decryption key E among two smartcards?
I think that when there are six distinct keys (three subkeys for one smartcard each), it works fine.
I'll try to make reproducible test case.

Thu, Dec 27, 9:05 AM · Info Needed, Bug Report
gniibe claimed T4301: Handling multiple subkeys on two SmartCards.
Thu, Dec 27, 4:30 AM · Info Needed, Bug Report

Thu, Dec 20

gniibe added a comment to T4288: Add getrandom support for the BSDs.

This is mine:

Thu, Dec 20, 7:10 AM · libgcrypt
gniibe added a comment to T4288: Add getrandom support for the BSDs.

Confirmed my theory of getentropy(3): https://reviews.freebsd.org/rS331279

Thu, Dec 20, 6:45 AM · libgcrypt
gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

Reading this discussion: http://lists.gnu.org/archive/html/bug-libtool/2018-01/msg00014.html
It seems that it could be fixed if we care about the order of libraries.
And it's not the issue for libgpg-error, which doesn't require external libraries.

Thu, Dec 20, 4:01 AM
gniibe updated the task description for T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:42 AM
gniibe updated the task description for T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:40 AM
gniibe added a comment to T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).

In Streatch, Debian specific patch was introduced.
Then, upstream introduced --enable-new-dtags option for configure to build binutils.
Now, Debian uses --enable-new-dtags option (at build time).

Thu, Dec 20, 3:38 AM
gniibe set External Link to https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859732 on T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:11 AM
gniibe updated the task description for T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:08 AM
gniibe updated the task description for T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:07 AM
gniibe updated the task description for T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:07 AM
gniibe renamed T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) from Use uninstalled library, which is building now to Use uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 3:05 AM
gniibe created T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well).
Thu, Dec 20, 2:51 AM
gniibe added a parent task for T4273: agent: Request insertion of smartcard when no card present: T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)).
Thu, Dec 20, 12:59 AM · Feature Request, Documentation, gpgagent
gniibe added a subtask for T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): T4273: agent: Request insertion of smartcard when no card present.
Thu, Dec 20, 12:59 AM · gnupg, Feature Request
gniibe triaged T4273: agent: Request insertion of smartcard when no card present as Normal priority.
Thu, Dec 20, 12:57 AM · Feature Request, Documentation, gpgagent

Wed, Dec 19

gniibe added a comment to T4273: agent: Request insertion of smartcard when no card present.

Basically, you are right. In addition, gpg-agent asks scdaemon about list of card/token.

Wed, Dec 19, 3:47 AM · Feature Request, Documentation, gpgagent
gniibe added a comment to T4273: agent: Request insertion of smartcard when no card present.

sshcontrol entry is required for non-smartcard keys, but not for keys on smartcard. This is intentional. For gpg-agent and current format, it is only the information for gpg-agent to know if a key is for SSH or not.

Wed, Dec 19, 3:31 AM · Feature Request, Documentation, gpgagent
gniibe added a comment to T4288: Add getrandom support for the BSDs.

OpenBSD uses getentropy(2). glibc (>= 2.25) has getentropy(3), too.

Wed, Dec 19, 2:59 AM · libgcrypt
gniibe committed rC3028a221d39c: random: Add finalizer for rndjent. (authored by gniibe).
random: Add finalizer for rndjent.
Wed, Dec 19, 2:58 AM
gniibe added a commit to T3731: gcry_pk_genkey() segfaults for ecdsa 384: rC3028a221d39c: random: Add finalizer for rndjent..
Wed, Dec 19, 2:58 AM · libgcrypt, Bug Report
gniibe abandoned D461: jent random requires finalizer to deallocate secure memory.

Applied to master.

Wed, Dec 19, 2:54 AM
gniibe removed a project from T4273: agent: Request insertion of smartcard when no card present: Windows.

I see your point. You are right. For SSH access, it just fails without asking insertion. It's not Windows specific.
I checked the change of history of gpg-agent, but I cannot find prompting insertion was supported.
So, I don't thin this is a regression.

Wed, Dec 19, 2:52 AM · Feature Request, Documentation, gpgagent
gniibe added a comment to T3731: gcry_pk_genkey() segfaults for ecdsa 384.

For the correctness of rndjent implementation, I'm applying D461: jent random requires finalizer to deallocate secure memory.

Wed, Dec 19, 2:27 AM · libgcrypt, Bug Report
gniibe added a comment to T4273: agent: Request insertion of smartcard when no card present.

Thanks for your information.
Hum, you are using gpg-agent for SSH access.

Wed, Dec 19, 2:19 AM · Feature Request, Documentation, gpgagent
gniibe committed rG80a08b655f8f: agent: Fix message for ACK button. (authored by gniibe).
agent: Fix message for ACK button.
Wed, Dec 19, 2:06 AM

Tue, Dec 18

gniibe committed rGae9159e06850: po: Update Japanese translation. (authored by gniibe).
po: Update Japanese translation.
Tue, Dec 18, 2:38 AM
gniibe committed rGffe31f405f9b: scd: Support "acknowledge button" feature. (authored by gniibe).
scd: Support "acknowledge button" feature.
Tue, Dec 18, 2:32 AM
gniibe committed rGe6be36ee8854: agent: Support --ack option for POPUPPINPADPROMPT. (authored by gniibe).
agent: Support --ack option for POPUPPINPADPROMPT.
Tue, Dec 18, 2:32 AM
gniibe committed rGe6b7e0ff9990: scd: Fix description string. (authored by gniibe).
scd: Fix description string.
Tue, Dec 18, 2:29 AM

Dec 17 2018

gniibe added a comment to T4243: Test failure in libgcrypt-1.8.4.

Perhaps, it's better to remove -no-install flag in tests/Makefile.am, so that test programs will be wrapper script by libtool.

Dec 17 2018, 12:43 PM · Tests, libgcrypt, Bug Report
gniibe added a comment to T4280: gnupg doc doesn't build due to ImageMagick default policy.

It seems it's Ubuntu specific: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1796563

Dec 17 2018, 10:57 AM · gnupg, Documentation, Info Needed, Bug Report
gniibe claimed T4225: Gpg4win - Yubikey failure after generating an OTP.

I think that all that we can do is to improve documentation.

Dec 17 2018, 9:33 AM · Documentation, Bug Report
gniibe added a comment to T4243: Test failure in libgcrypt-1.8.4.

Apparently, it's an error from your installed /usr/local/opt/libgpg-error/lib/libgpg-error.0.dylib (you have some configuration to prefer this library), while your configure is for /usr/local/lib (because you specify no --prefix).

Dec 17 2018, 9:31 AM · Tests, libgcrypt, Bug Report
gniibe edited projects for T4273: agent: Request insertion of smartcard when no card present, added: Info Needed; removed Feature Request.

Please let us know the version of GnuPG, the output of gpg --card-status when inserted, and how gpg is not working well, etc.

Dec 17 2018, 9:22 AM · Feature Request, Documentation, gpgagent
gniibe claimed T4273: agent: Request insertion of smartcard when no card present.

How scdaemon responds when there is no card available?

Dec 17 2018, 9:09 AM · Feature Request, Documentation, gpgagent
gniibe added a comment to E415: Weekly Standup.

Last week:

Dec 17 2018, 5:38 AM
gniibe is attending E415: Weekly Standup.
Dec 17 2018, 5:21 AM
gniibe added a comment to T4288: Add getrandom support for the BSDs.

In FreeBSD, getrandom(3) became available, when getrandom(2) was added. <-- This is my theory.
If this is true, just use getrandom(3), not using getrandom(2) by syscall.

Dec 17 2018, 5:20 AM · libgcrypt
gniibe added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

It became common, because many people now use larger keys.
For RSA-4096, three simultaneous connections for decryption may cause the failure.
In the experimental patch of D472: Limit active connections for gpg-agent, I limit gpg-agent to accept two connections only.

Dec 17 2018, 5:08 AM · gnupg, gpgagent
gniibe updated the diff for D472: Limit active connections for gpg-agent.

increment the counter is better done by the looping main thread.

Dec 17 2018, 3:54 AM
gniibe added a comment to D472: Limit active connections for gpg-agent.

This is an experimental patch. So, I just reuse SIGUSR1 to wake up "select"-ing thread by kill(2).
I put limit-active-connections 2 in gpg-agent.conf for the test with run-threaded of gpgme.

Dec 17 2018, 2:48 AM
gniibe created D472: Limit active connections for gpg-agent.
Dec 17 2018, 2:46 AM

Dec 13 2018

gniibe closed T4177: card: After "forcesig" command makes card "not forced", signing fails by: Bad PIN as Resolved.
Dec 13 2018, 3:44 PM · scd, gnupg (gpg22)
gniibe closed T3880: gpg-agent's ssh-agent does not handle flags in signing requests properly as Resolved.
Dec 13 2018, 3:42 PM · ssh, gpgagent, Bug Report
gniibe closed T4232: gpgrt-config Gentoo/Fedora/Arch/Slackware-style multilib support as Resolved.
Dec 13 2018, 3:38 PM · gpgrt
gniibe closed T4232: gpgrt-config Gentoo/Fedora/Arch/Slackware-style multilib support, a subtask of T4217: {libksba,libgcrypt,ntbtls,libassuan,npth}.m4, {libksba,libgcrypt,ntbtls,libassuan}-config script and gpg-error-config, as Resolved.
Dec 13 2018, 3:38 PM · npth, libassuan, ntbtls, libgcrypt, libksba

Dec 12 2018

gniibe closed T3351: libgcrypt: t_secmem fails on system with large page size (ppc64) as Resolved.
Dec 12 2018, 7:27 AM · libgcrypt, Bug Report