Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

May 31 2019

gniibe added a comment to T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.

FYI, pEp annoyance was addressed and handled here: https://bugs.debian.org/891882
By this patch: https://sources.debian.org/src/enigmail/2:2.0.11+ds1-1/debian/patches/0002-Avoid-auto-download-of-pEpEngine-Closes-891882.patch/

May 31 2019, 7:57 AM · Not A Bug, gnupg, gpgme, Bug Report
gniibe added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

RFC 5280 only addresses about BCP78 and not about TLP, while RFC 5652, RFC 5755, RFC 5911 and RFC 5912 address explicitly about TLP. In this situation, I wonder if it's better to take the definitions of Extensions, UniqueIdentifier, and GeneralNames from RFC 5280. To be conservative, I don't include them now.

May 31 2019, 7:32 AM · libksba, Feature Request
gniibe committed rK89a3e73d8454: Fix, it's RFC 5280. (authored by gniibe).
Fix, it's RFC 5280.
May 31 2019, 7:26 AM
gniibe added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

I pushed more changes to include modules in RFC 5911 and RFC 5912.

May 31 2019, 5:50 AM · libksba, Feature Request
gniibe committed rK5cabb4413019: Fix cms.asn. (authored by gniibe).
Fix cms.asn.
May 31 2019, 5:48 AM
gniibe committed rK009af0c220c6: Fix for our use (non-support of Information Object Class). (authored by gniibe).
Fix for our use (non-support of Information Object Class).
May 31 2019, 5:48 AM
gniibe committed rKd54089145e31: Add Algorithm Identifiers and Algorithm Identifier Parameter Types. (authored by gniibe).
Add Algorithm Identifiers and Algorithm Identifier Parameter Types.
May 31 2019, 5:48 AM
gniibe committed rK98438cc3d378: Add dh-public-number OID from RFC 5912. (authored by gniibe).
Add dh-public-number OID from RFC 5912.
May 31 2019, 5:48 AM
gniibe added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

Comparing old cms.asn and new cms.asn, now I understand how RFC 3370 matters. I added those things back from RFC 5911 (which cites RFC 3370) which comes with BSD license for code.

May 31 2019, 4:52 AM · libksba, Feature Request

May 30 2019

dkg added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

@gniibe thank you!

May 30 2019, 10:53 PM · libksba, Feature Request
ideaantenna added a comment to T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.

Thank you for your response.

May 30 2019, 9:44 PM · Not A Bug, gnupg, gpgme, Bug Report
slandden updated the task description for T4541: C implementation of AES is vulnerable to side-channel attacks.
May 30 2019, 3:46 PM · side-channel, libgcrypt, Bug Report
werner committed rDa3c061fd6977: web: Fixed release date of 2.2.16. (authored by werner).
web: Fixed release date of 2.2.16.
May 30 2019, 3:12 PM
werner committed rD90a624bc0e0f: web: Removed the "20 years" sticker from the logo. (authored by werner).
web: Removed the "20 years" sticker from the logo.
May 30 2019, 3:12 PM
gniibe added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

I did some work (since Debian is important for us).
Please have a look at my topic branch: gniibe/fix-4487
or:
https://dev.gnupg.org/source/libksba/history/gniibe%252Ffix-4487/
https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libksba.git;a=shortlog;h=refs/heads/gniibe/fix-4487

May 30 2019, 10:18 AM · libksba, Feature Request
gniibe committed rKfe4a484dffa3: Add more ASN.1 definitions. (authored by gniibe).
Add more ASN.1 definitions.
May 30 2019, 10:08 AM
gniibe committed rKce31ebda6f63: Add from g10 code modification. (authored by gniibe).
Add from g10 code modification.
May 30 2019, 10:08 AM
gniibe committed rK3b8a01fcaa04: Add from RFC 5755. (authored by gniibe).
Add from RFC 5755.
May 30 2019, 10:08 AM
gniibe committed rK144649977a11: Add more. (authored by gniibe).
Add more.
May 30 2019, 10:08 AM
gniibe committed rK016f93f4efc6: Use CryptographicMessageSyntax2004. (authored by gniibe).
Use CryptographicMessageSyntax2004.
May 30 2019, 10:08 AM
gniibe committed rK3fc42428f1b7: Merge two modules into one. (authored by gniibe).
Merge two modules into one.
May 30 2019, 10:08 AM
gniibe committed rKccf8d9f06b36: Get RFC 5652. (authored by gniibe).
Get RFC 5652.
May 30 2019, 10:08 AM
gniibe committed rK2372968a7753: Extract code from RFC 5652 to be new src/cms.asn. (authored by gniibe).
Extract code from RFC 5652 to be new src/cms.asn.
May 30 2019, 10:08 AM
gniibe committed rK47545294f08a: Remove src/cms.asn to prepare new one. (authored by gniibe).
Remove src/cms.asn to prepare new one.
May 30 2019, 10:08 AM
gniibe claimed T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.

For GnuPG, the error is: you don't have run-able libntbtls.so in your environment (because of your wrong configuration, perhaps) but you have it to link.
For GPGME, the error is: your linked libgpg-error.so.0 and the one which runs are different (because of your wrong configuration, perhaps).

May 30 2019, 4:25 AM · Not A Bug, gnupg, gpgme, Bug Report
dkg committed rMfa0a5ffd4997: gpg: Avoid error diagnostics with --override-session-key when verifying (authored by dkg).
gpg: Avoid error diagnostics with --override-session-key when verifying
May 30 2019, 2:58 AM
dkg added a comment to T3464: successful decryption with session key reports failure if public key is unknown.

I've pushed fa0a5ffd4997c2ca38a1dd2d89459b6b1f18ad99 to the branch dkg/fix-T3464, which i think solves the problem i was seeing without reintroducing any new problems.

May 30 2019, 1:58 AM · gpgme, Bug Report
dkg created T4549: git pushing to playfair yields "error: invalid key: hooks.denypush.branch.XXX" and "error: invalid key: hooks.denymerge.XXX".
May 30 2019, 1:57 AM · dev.gnupg.org
dkg created T4548: gpgme should not ship gpgme-glib.pc if it is not built against glib.
May 30 2019, 12:26 AM · Bug Report, gpgme
dkg added a comment to T3464: successful decryption with session key reports failure if public key is unknown.

I can confirm that this is actually a problem now :( gpgme_op_decrypt_verify returns a status with GPG_ERR_MISSING_KEY set when a session-key is used.

May 30 2019, 12:20 AM · gpgme, Bug Report

May 29 2019

ostroffjh created T4547: improve error message ("Not enabled") when using Tor network and standard resolver.
May 29 2019, 11:17 PM · dirmngr, gnupg (gpg22), Bug Report
dkg added a comment to T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing.

Perhaps i wasn't clear enough in the earlier messages on this thread. The inclusion of restrictively-licensed code in a file that also claims LGPL/GPL appears to be an unredistributable license. Could you please clarify why the GPL or LGPL applies to libksba while it contains src/cms.asn in its current form?

May 29 2019, 7:52 PM · libksba, Feature Request
dkg added a comment to T4545: gpg ships gpgscm but not any of the necessary *.scm files.

we've never shipped a binary gpgscm in any debian package. I was just reviewing the differences between what we ship and what upstream ships, and i noticed this discrepancy.

May 29 2019, 7:36 PM · Bug Report
ideaantenna removed projects from T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0: Enigmail, gpgagent.
May 29 2019, 7:00 PM · Not A Bug, gnupg, gpgme, Bug Report
ideaantenna updated the task description for T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.
May 29 2019, 6:55 PM · Not A Bug, gnupg, gpgme, Bug Report
ideaantenna added projects to T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0: gpgme, gnupg.
May 29 2019, 6:52 PM · Not A Bug, gnupg, gpgme, Bug Report
ideaantenna updated the task description for T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.
May 29 2019, 6:39 PM · Not A Bug, gnupg, gpgme, Bug Report
ideaantenna updated the task description for T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.
May 29 2019, 6:35 PM · Not A Bug, gnupg, gpgme, Bug Report
ideaantenna created T4546: make check error on gnupg-2.2.15 and gpgme-1.13.0.
May 29 2019, 6:30 PM · Not A Bug, gnupg, gpgme, Bug Report
aheinecke committed rWbc9c730e0bf5: Revert po to native encodings (authored by aheinecke).
Revert po to native encodings
May 29 2019, 12:44 PM
aheinecke committed rWfe214b94888b: Update packages (authored by aheinecke).
Update packages
May 29 2019, 12:44 PM
aheinecke committed rW8f8754473de8: Revert NSIS merge fore makefile, too (authored by aheinecke).
Revert NSIS merge fore makefile, too
May 29 2019, 12:44 PM
aheinecke committed rW45888467977d: Fixup it encoding (authored by aheinecke).
Fixup it encoding
May 29 2019, 12:44 PM
aheinecke committed rW9d44664bb5a0: Revert encoding change for it (authored by aheinecke).
Revert encoding change for it
May 29 2019, 12:44 PM
aheinecke committed rW9eb021d35b3a: Update packages (authored by aheinecke).
Update packages
May 29 2019, 12:44 PM
aheinecke committed rLIBKLEOa6abfe39dbe2: Filter out unusabale keys ion keyapproval dlg (authored by aheinecke).
Filter out unusabale keys ion keyapproval dlg
May 29 2019, 11:00 AM
matheusmoreira added a comment to T3465: --pinentry-mode loopback with --delete-secret-keys.

I also experienced this issue while testing my --delete-secret-key patches. Passing --pinentry-program /usr/bin/pinentry-tty to the gpg-agent worked around it.

May 29 2019, 10:16 AM · gnupg, Bug Report
matheusmoreira updated the task description for T4544: More prompts before key deletion.
May 29 2019, 10:10 AM · gnupg, Feature Request, patch
matheusmoreira updated the summary of D485: gpg: add the --delete-secret-subkeys command.
May 29 2019, 10:09 AM
matheusmoreira updated the diff for D481: gpg: confirm deletion of each key individually.

Add confirmation prompt for exactly-specified public subkeys.

May 29 2019, 10:06 AM
matheusmoreira updated the diff for D488: gpg: add the --delete-secret-key-stubs command.

Add documentation.

May 29 2019, 10:05 AM
matheusmoreira updated the diff for D485: gpg: add the --delete-secret-subkeys command.

Add documentation.

May 29 2019, 10:03 AM
matheusmoreira updated the task description for T4544: More prompts before key deletion.
May 29 2019, 10:00 AM · gnupg, Feature Request, patch
werner committed rDa0794c862a03: web: Release announce for 2.2.16 (authored by werner).
web: Release announce for 2.2.16
May 29 2019, 9:28 AM
gniibe committed rG6790eaf95292: agent: Add A-flag for KEYINFO output for card. (authored by gniibe).
agent: Add A-flag for KEYINFO output for card.
May 29 2019, 9:24 AM
werner added a comment to T4536: dirmngr fails to find OCSP signer certificate when responder is identified with key ID.

Thanks, the mentioned OpenSSL option should be helpful.

May 29 2019, 9:19 AM · S/MIME, gnupg (gpg22), Bug Report
misterzed88 added a comment to T4536: dirmngr fails to find OCSP signer certificate when responder is identified with key ID.

A high level test description is:

  1. Configure both gpgsm and dirmngr to use OCSP.
  2. Import the responder signer certificate with gpgsm --import.
  3. Use a certificate with OCSP responder extension present, or configure a default OCSP responder in dirmngr.
  4. Configure your OCSP responder to identify itself with key ID (and not subject name)
  5. Attempt to sign or verify with gpgsm.
  6. You should get an error, with dirmngr logs showing that the responder signer certificate could not be found.
May 29 2019, 9:11 AM · S/MIME, gnupg (gpg22), Bug Report
misterzed88 added a comment to T4535: gpgsm --sign prints misleading error message when using default key.

Thank you for a quick fix (despite this being a minor problem).

May 29 2019, 8:51 AM · gnupg (gpg22), S/MIME, Bug Report
werner added a project to T4541: C implementation of AES is vulnerable to side-channel attacks: side-channel.
May 29 2019, 8:29 AM · side-channel, libgcrypt, Bug Report
werner set the color for side-channel to Grey.
May 29 2019, 8:29 AM
werner triaged T4541: C implementation of AES is vulnerable to side-channel attacks as Normal priority.

Thanks for taking the time to describe this attack vector. We will need to study this closer to balance such a change with other side effects of this.

May 29 2019, 8:27 AM · side-channel, libgcrypt, Bug Report
werner closed T4545: gpg ships gpgscm but not any of the necessary *.scm files as Wontfix.

gpgscm will anyway be moved to libgpg-error and then installed as part of that package. Given that we install it for quite some time with gnupg, I won't remove it unless we can be sure that it has been installed by libgpg-error. Feel free to remove it from Debian, though,

May 29 2019, 8:19 AM · Bug Report
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2019q2/000438.html on T4509: Release GnuPG 2.2.16.
May 29 2019, 8:15 AM · Release Info, gnupg (gpg22)
gniibe claimed T3465: --pinentry-mode loopback with --delete-secret-keys.

I wrote a patch in a topic branch: rG108c22c9c50a: g10,agent: Support CONFIRM for --delete-key.
I think that gpg-agent side,

  • agent/call-pinentry.c: This part is good
  • agent/command.c: I wonder if use of status for passing the information of prompt is good or not

Perhaps, we need an improvement in

  • g10/call-agent.c: how to ask user, by cpr_* function with no keyword is good?
  • Currently, only using DESC
  • Only applying to DELETE_KEY command
  • Can be applied also to:
    • PKSIGN
    • PKDECRYPT
May 29 2019, 5:30 AM · gnupg, Bug Report
gniibe changed the status of T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r from Open to Testing.

Fix pushed.

May 29 2019, 4:19 AM · gpgrt, Feature Request
gniibe committed rEa9052f7b7fe5: po: Update Japanese translation. (authored by gniibe).
po: Update Japanese translation.
May 29 2019, 4:19 AM
gniibe committed rEcd49ee71887c: Detect to use strerror_s. (authored by gniibe).
Detect to use strerror_s.
May 29 2019, 4:15 AM
gniibe claimed T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r.

I think that detecting strerror_s by configure is better, because it's a new feature on Windows.

May 29 2019, 3:54 AM · gpgrt, Feature Request
dkg committed rG175d194b5d60: doc/wks.texi: fix typo (authored by dkg).
doc/wks.texi: fix typo
May 29 2019, 3:09 AM
gniibe closed T4461: Memory leak in read_block as Resolved.
May 29 2019, 3:08 AM · Bug Report
gniibe closed T4494: UBsan finding "armor.c:1159:11: runtime error: member access within null pointer..." as Resolved.
May 29 2019, 3:06 AM · gnupg
gniibe closed T4504: Asan findings in iconv configure test causing config failure as Resolved.
May 29 2019, 3:05 AM · gpgrt, gnupg
dkg created T4545: gpg ships gpgscm but not any of the necessary *.scm files.
May 29 2019, 2:41 AM · Bug Report

May 28 2019

slandden reopened T4541: C implementation of AES is vulnerable to side-channel attacks as "Open".
May 28 2019, 8:14 PM · side-channel, libgcrypt, Bug Report
slandden closed T4541: C implementation of AES is vulnerable to side-channel attacks as Invalid.

I do not have a PoC (or much interest in making one, I have too many more important things to do), but I believe this to be correct, based heavily on PPC knowledge of Nicolas König <koenigni@student.ethz.ch> . This attack also applies to AMD, Intel, and ARM.

May 28 2019, 8:12 PM · side-channel, libgcrypt, Bug Report
werner closed T4509: Release GnuPG 2.2.16 as Resolved.
May 28 2019, 6:14 PM · Release Info, gnupg (gpg22)
werner triaged T4544: More prompts before key deletion as Low priority.
May 28 2019, 6:12 PM · gnupg, Feature Request, patch
werner committed rG6b06fb3cc550: Add changes from 2.2 to NEWS. (authored by werner).
Add changes from 2.2 to NEWS.
May 28 2019, 6:09 PM
werner committed rD47a3a0226003: swdb: GnuPG 2.2.16 (authored by werner).
swdb: GnuPG 2.2.16
May 28 2019, 6:07 PM
werner committed rD51f561f7a043: swdb: Update sqlite to 3.28 (authored by werner).
swdb: Update sqlite to 3.28
May 28 2019, 6:07 PM
werner committed rDb08fa3d7bd77: drafts,openpgp-webkey-service: Publish revision -08. (authored by werner).
drafts,openpgp-webkey-service: Publish revision -08.
May 28 2019, 6:07 PM
matheusmoreira updated the diff for D482: gpg: confirm again before deleting primary key.
May 28 2019, 5:55 PM
matheusmoreira updated the diff for D481: gpg: confirm deletion of each key individually.
May 28 2019, 5:53 PM
matheusmoreira updated the diff for D488: gpg: add the --delete-secret-key-stubs command.
May 28 2019, 5:52 PM
matheusmoreira updated the diff for D485: gpg: add the --delete-secret-subkeys command.
May 28 2019, 5:50 PM
matheusmoreira updated the diff for D480: gpg: factor out secret key deletion function.

Remove gpg_ prefix from function.

May 28 2019, 5:46 PM
matheusmoreira abandoned D483: po: add portuguese primary key deletion message.

Squashed: D482

May 28 2019, 5:43 PM
matheusmoreira abandoned D486: po: add portuguese description for new command.

Squashed: D485

May 28 2019, 5:43 PM
matheusmoreira abandoned D489: po: add portuguese translation for the new command.

Squashed: D488

May 28 2019, 5:41 PM
werner committed rGf9934dcb57ca: Post release updates (authored by werner).
Post release updates
May 28 2019, 5:40 PM
werner committed rG3f2b7a53ddc4: Release GnuPG 2.2.16 (authored by werner).
Release GnuPG 2.2.16
May 28 2019, 5:40 PM
werner committed rG626e05f07af1: po: Auto-update (authored by werner).
po: Auto-update
May 28 2019, 5:40 PM
matheusmoreira added a task to D488: gpg: add the --delete-secret-key-stubs command: T4544: More prompts before key deletion.
May 28 2019, 5:39 PM
matheusmoreira added a task to D480: gpg: factor out secret key deletion function: T4544: More prompts before key deletion.
May 28 2019, 5:39 PM
matheusmoreira added a task to D485: gpg: add the --delete-secret-subkeys command: T4544: More prompts before key deletion.
May 28 2019, 5:39 PM
matheusmoreira added revisions to T4544: More prompts before key deletion: D480: gpg: factor out secret key deletion function, D485: gpg: add the --delete-secret-subkeys command, D488: gpg: add the --delete-secret-key-stubs command, D481: gpg: confirm deletion of each key individually, D482: gpg: confirm again before deleting primary key.
May 28 2019, 5:39 PM · gnupg, Feature Request, patch
matheusmoreira added a task to D482: gpg: confirm again before deleting primary key: T4544: More prompts before key deletion.
May 28 2019, 5:39 PM
matheusmoreira added a task to D481: gpg: confirm deletion of each key individually: T4544: More prompts before key deletion.
May 28 2019, 5:39 PM
matheusmoreira abandoned D479: gpg: avoid deletion of keys not specified by user.

A better solution has been commited: cc6069ac6ecd

May 28 2019, 5:35 PM
maiden_taiwan added a comment to T4542: gpg-agent loses characters when prompting for a GPG passphrase over SSH in Emacs.

I should add that using gpg on the command line works fine over SSH. The problem occurs only inside Emacs over SSH.

May 28 2019, 5:22 PM · Emacs, Documentation, pinentry, Bug Report
First
Prev
Next