Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Jan 29 2021

werner updated the task description for T4702: Deadline for the GnuPG 2.3.0 release.
Jan 29 2021, 4:42 PM · Restricted Project, gpg4win, gnupg
werner changed Due Date from Sep 30 2020, 12:00 AM to Mar 31 2021, 12:00 AM on T4702: Deadline for the GnuPG 2.3.0 release.
Jan 29 2021, 4:41 PM · Restricted Project, gpg4win, gnupg
werner closed T5280: gnupg.org webpage advertises the use of insecure git:// protocol at various places as Invalid.

Stick to your channels and get back after you have learned basic some basic developer workflows.

Jan 29 2021, 2:40 PM · gpgweb
werner closed T5279: Buffer Overread in selftest_pbkdf2() in kdf.c/libgcrypt as Invalid.

@hanno, this is a bug tracker and not yet another media for your rants.

Jan 29 2021, 2:38 PM · Duplicate, Bug Report
hanno added a comment to T5279: Buffer Overread in selftest_pbkdf2() in kdf.c/libgcrypt.

Yeah looks like a duplicate. You may rename the bug to "Please implement some basic safety checks in a CI".

Jan 29 2021, 2:15 PM · Duplicate, Bug Report
bevan added a comment to T5279: Buffer Overread in selftest_pbkdf2() in kdf.c/libgcrypt.

This should already be fixed in libgcrypt 1.9.1 by rCc6425a5537294dfe2beaafc9105f7af4ceac677f.

Jan 29 2021, 1:52 PM · Duplicate, Bug Report
hanno created T5280: gnupg.org webpage advertises the use of insecure git:// protocol at various places in the S1 Public space.
Jan 29 2021, 1:38 PM · gpgweb
hanno created T5279: Buffer Overread in selftest_pbkdf2() in kdf.c/libgcrypt.
Jan 29 2021, 1:35 PM · Duplicate, Bug Report
wiz closed T5278: 1.9.1: keccak.c: error: 'HWF_INTEL_FAST_SHLD' undeclared as Invalid.

Same as https://dev.gnupg.org/T5277, thanks for the note.

Jan 29 2021, 1:10 PM
bevan added a comment to T5278: 1.9.1: keccak.c: error: 'HWF_INTEL_FAST_SHLD' undeclared .

This is likely the same as https://dev.gnupg.org/T5277. Do you configure with --disable-asm? If so: it should work without.

Jan 29 2021, 1:02 PM
wiz created T5278: 1.9.1: keccak.c: error: 'HWF_INTEL_FAST_SHLD' undeclared in the S1 Public space.
Jan 29 2021, 1:01 PM
bevan created T5277: libgcrypt 1.9.1 fails to build with --disable-asm.
Jan 29 2021, 12:42 PM · MacOS, libgcrypt, Bug Report
werner changed External Link from https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000455.html to https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html on T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 12:34 PM · CVE, libgcrypt
werner removed Due Date on T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 12:27 PM · Release Info, libgcrypt
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html on T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 12:27 PM · Release Info, libgcrypt
ballapete added a comment to T5268: macOS getentropy.

Wouldn't it be better to move these failures as a single one into the configure script that it definitely can tell "This Mac has getentropy()"?

Jan 29 2021, 11:37 AM · libgcrypt, MacOS
werner committed rD026b36f22f75: web: Fix a typo on the libgcrypt page. (authored by werner).
web: Fix a typo on the libgcrypt page.
Jan 29 2021, 11:32 AM
werner triaged T5263: cipher/sha512.c: build failure without arm neon asm as Normal priority.
Jan 29 2021, 11:30 AM · libgcrypt, Bug Report
werner closed T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial as Resolved.
Jan 29 2021, 11:27 AM · Ubuntu, Bug Report, libgcrypt
werner changed the status of T5275: Exploitable overflow in Libgcrypt 1.9.0 from Open to Testing.

Fix has been released. Keeping this in testing state for easier visibility of this task.

Jan 29 2021, 11:27 AM · CVE, libgcrypt
werner committed rDaa7d43725fa6: swdb: Libgcrypt 1.9.1 (authored by werner).
swdb: Libgcrypt 1.9.1
Jan 29 2021, 11:26 AM
ballapete added a comment to T5268: macOS getentropy.

I applied the two patches on Mac OS X 10.5.8, Leopard, to random/rndlinux.c, resulting in this unified diff:

Jan 29 2021, 11:25 AM · libgcrypt, MacOS
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5157: libgcrypt: ARM64 Builds on macOS fail, from Open to Testing.
Jan 29 2021, 11:25 AM · toolchain, MacOS, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5251: Compile error on ARMv7 for libgcrypt , from Open to Testing.
Jan 29 2021, 11:25 AM · asm, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5254: libgcrypt 1.9.0 fails make check (selftest), from Open to Testing.
Jan 29 2021, 11:25 AM · patch, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1 from Open to Testing.

Release done.

Jan 29 2021, 11:25 AM · Release Info, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac, from Open to Testing.
Jan 29 2021, 11:25 AM · Restricted Project, MacOS, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5264: libgcrypt 1.9.0 does not compile on old Mac OS X, versions 10.5.8 (Leopard) and 10.4.11 (Tiger), both on PPC hardware, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5267: Ed25519 backward compatible private key support for preceding ZERO(s), from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0, from Open to Testing.
Jan 29 2021, 11:25 AM · Bug Report, Cross-Compiler, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5263: cipher/sha512.c: build failure without arm neon asm, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO, from Open to Testing.
Jan 29 2021, 11:25 AM · asm, libgcrypt, clang, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial, from Open to Testing.
Jan 29 2021, 11:25 AM · Ubuntu, Bug Report, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5269: failure of modular inverse, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5268: macOS getentropy, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, MacOS
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5275: Exploitable overflow in Libgcrypt 1.9.0, from Open to Testing.
Jan 29 2021, 11:25 AM · CVE, libgcrypt
werner updated the task description for T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 11:24 AM · Release Info, libgcrypt
werner committed rCd50bdfbc10e0: Post release updates (authored by werner).
Post release updates
Jan 29 2021, 11:09 AM
werner committed rC466299b1ceb8: Release 1.9.1 (authored by werner).
Release 1.9.1
Jan 29 2021, 11:09 AM
werner created T5276: Release Libgcrypt 1.9.2.
Jan 29 2021, 11:07 AM · Release Info, libgcrypt
aheinecke added a comment to T5181: Kleopatra: Simplify newkey generation.

There is a question for me here if we should make the behavior of rKLEOPATRA5639dc833f92 the default.

Jan 29 2021, 10:29 AM · kleopatra
bernhard committed rW795842b9b648: Add timezone to signing significate datetimes (authored by bernhard).
Add timezone to signing significate datetimes
Jan 29 2021, 10:21 AM
werner added a parent task for T5259: Release Libgcrypt 1.9.1: T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 29 2021, 10:21 AM · Release Info, libgcrypt
werner added a subtask for T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:21 AM · Ubuntu, Bug Report, libgcrypt
werner removed a subtask for T5259: Release Libgcrypt 1.9.1: T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 29 2021, 10:20 AM · Release Info, libgcrypt
werner removed a parent task for T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:20 AM · Ubuntu, Bug Report, libgcrypt
werner added a subtask for T5275: Exploitable overflow in Libgcrypt 1.9.0: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:14 AM · CVE, libgcrypt
werner added a parent task for T5259: Release Libgcrypt 1.9.1: T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 10:14 AM · Release Info, libgcrypt
werner created T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 10:13 AM · CVE, libgcrypt
bernhard created T5274: Duplicated toolbar entries.
Jan 29 2021, 9:36 AM · Restricted Project, Bug Report, kleopatra
werner updated the task description for T4294: Release Libgcrypt 1.9.0.
Jan 29 2021, 9:06 AM · Release Info, libgcrypt
jukivili committed rC512c0c752769: hash-common: fix heap overflow when writing more data after final (authored by jukivili).
hash-common: fix heap overflow when writing more data after final
Jan 29 2021, 8:48 AM
dkg added a comment to T4679: WKD spec should document exactly when a client should fall back from "advanced" to "direct" URL.

See also https://gitlab.com/openpgp-wg/webkey-directory/-/issues/3 which is the same issue.

Jan 29 2021, 3:33 AM · Documentation, wkd
gniibe added a comment to T5259: Release Libgcrypt 1.9.1.

I linked all related tasks for the release of 1.9.1, so that making release notes can be easier and recording information here.

Jan 29 2021, 1:35 AM · Release Info, libgcrypt
gniibe added a parent task for T5259: Release Libgcrypt 1.9.1: T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140.
Jan 29 2021, 1:30 AM · Release Info, libgcrypt
gniibe added a subtask for T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 1:30 AM · libgcrypt
gniibe added a parent task for T5259: Release Libgcrypt 1.9.1: T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0.
Jan 29 2021, 1:28 AM · Release Info, libgcrypt
gniibe added a subtask for T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 1:28 AM · Bug Report, Cross-Compiler, libgcrypt
gniibe added a parent task for T5259: Release Libgcrypt 1.9.1: T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO.
Jan 29 2021, 1:11 AM · Release Info, libgcrypt
gniibe added a subtask for T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 1:11 AM · asm, libgcrypt, clang, Bug Report
gniibe added a parent task for T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 1:04 AM · Ubuntu, Bug Report, libgcrypt
gniibe added a subtask for T5259: Release Libgcrypt 1.9.1: T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 29 2021, 1:04 AM · Release Info, libgcrypt

Jan 28 2021

gniibe changed the visibility for T5264: libgcrypt 1.9.0 does not compile on old Mac OS X, versions 10.5.8 (Leopard) and 10.4.11 (Tiger), both on PPC hardware.
Jan 28 2021, 11:04 PM · libgcrypt, Bug Report
syscomet added a comment to T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.

Patch lets it build on xenial for me, thank you.

Jan 28 2021, 11:00 PM · Ubuntu, Bug Report, libgcrypt
jukivili added a comment to T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.

Patch for this bug is available here, "attachment-0001.bin": https://lists.gnupg.org/pipermail/gcrypt-devel/2021-January/005079.html

Jan 28 2021, 7:50 PM · Ubuntu, Bug Report, libgcrypt
syscomet added a comment to T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.

I committed the partial result docker container, so I can restart it for investigation. So:

Jan 28 2021, 7:42 PM · Ubuntu, Bug Report, libgcrypt
ikloecker added a comment to T5242: Groups are loaded from a file.

The groups are read from kleopatragroupsrc (located in the default location(s) for configuration files, e.g. next to kleopatrarc). The format is

[Group-<group id>]
Name=<group name>
Keys=<fingerprint>,<fingerprint>,...

where group id is a unique identifier for the group (can be identical to group name), group name is the (display) name of the group (which should also be unique for practical reasons), fingerprint is the fingerprint of a key in the group. Everything has to be UTF-8-encoded.

Jan 28 2021, 5:27 PM · Restricted Project, kleopatra
ikloecker updated the task description for T5242: Groups are loaded from a file.
Jan 28 2021, 5:15 PM · Restricted Project, kleopatra
werner committed rG6e258babe7cc: Include the library version in the compliance checks. (authored by werner).
Include the library version in the compliance checks.
Jan 28 2021, 4:02 PM
werner committed rG90c514868ff5: Include the library version in the compliance checks. (authored by werner).
Include the library version in the compliance checks.
Jan 28 2021, 3:51 PM
werner committed rG1e197c29ed95: scd:p15: Make file selection more robust. (authored by werner).
scd:p15: Make file selection more robust.
Jan 28 2021, 3:51 PM
werner committed rG7620473cd007: scd: Define new status word (authored by werner).
scd: Define new status word
Jan 28 2021, 3:51 PM
werner committed rG5bcbc8cee310: scd:p15: Factor the commonKeyAttributes parser out. (authored by werner).
scd:p15: Factor the commonKeyAttributes parser out.
Jan 28 2021, 3:51 PM
werner committed rCaa3f595341eb: Add a compliance keyword to gcry_get_config. (authored by werner).
Add a compliance keyword to gcry_get_config.
Jan 28 2021, 3:41 PM
bobwxc created D526: GpgOL: update po/zh_CN.po.
Jan 28 2021, 3:30 PM
ikloecker committed rKLEOPATRA2d8a67f2195c: Tell KeyCache to read key groups from kleopatragroupsrc (authored by ikloecker).
Tell KeyCache to read key groups from kleopatragroupsrc
Jan 28 2021, 1:56 PM
aheinecke committed rO48aa002f3a96: Implement BCC splits of Mails (authored by aheinecke).
Implement BCC splits of Mails
Jan 28 2021, 1:50 PM
Laurent Montel <montel@kde.org> committed rLIBKLEOfbc81934c643: GIT_SILENT: add CMAKE_EXPORT_COMPILE_COMMANDS (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: add CMAKE_EXPORT_COMPILE_COMMANDS
Jan 28 2021, 1:39 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA6939878c27b3: GIT_SILENT: add CMAKE_EXPORT_COMPILE_COMMANDS (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: add CMAKE_EXPORT_COMPILE_COMMANDS
Jan 28 2021, 1:38 PM
ikloecker committed rLIBKLEOce4076467ab5: Bump library version (authored by ikloecker).
Bump library version
Jan 28 2021, 12:00 PM
ikloecker committed rLIBKLEO166cc951f5eb: Optionally, read groups from a file (authored by ikloecker).
Optionally, read groups from a file
Jan 28 2021, 12:00 PM
Valodim added a comment to T4163: hkps://hkps.pool.sks-keyservers.net has to many bad servers to be a good default.

The last server of the HKPS pool dropped off for several hours yesterday, during which hkps.pool.sks-keyservers.net could not be resolved.

Jan 28 2021, 11:17 AM · gnupg, Keyserver
aheinecke moved T5228: GpgOL: Combined S/MIME and OpenPGP operation from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jan 28 2021, 10:43 AM · gpgol
aheinecke added a subtask for T4702: Deadline for the GnuPG 2.3.0 release: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:41 AM · Restricted Project, gpg4win, gnupg
aheinecke added parent tasks for T5273: Release Gpg4win 4.x.x: T4702: Deadline for the GnuPG 2.3.0 release, T5066: Multiple smartcard (reader) / app support in Kleopatra.
Jan 28 2021, 10:41 AM · Restricted Project, gpg4win, Release Info
aheinecke added a subtask for T5066: Multiple smartcard (reader) / app support in Kleopatra: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:41 AM · kleopatra
aheinecke committed rXdf289bb41652: Fix CreateProcess call of GpgEX (authored by aheinecke).
Fix CreateProcess call of GpgEX
Jan 28 2021, 10:41 AM
aheinecke added parent tasks for T5273: Release Gpg4win 4.x.x: T5272: GpgEx: Incorrect spawn of UI Server can cause a c:\Program.exe to be executed, T5241: Allow selection of groups as recipients for file encryption, T5240: Allow selection of groups implicitly defined by tags, T5239: Add UI for managing groups, T5228: GpgOL: Combined S/MIME and OpenPGP operation, T5216: Kleopatra: Fix handling of UNC paths, T5217: Kleopatra: Adapt to config changes in GnuPG master.
Jan 28 2021, 10:39 AM · Restricted Project, gpg4win, Release Info
aheinecke added a subtask for T5216: Kleopatra: Fix handling of UNC paths: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · kleopatra
aheinecke added a subtask for T5217: Kleopatra: Adapt to config changes in GnuPG master: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · Restricted Project, kleopatra
aheinecke added a subtask for T5272: GpgEx: Incorrect spawn of UI Server can cause a c:\Program.exe to be executed: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · gpgex
aheinecke added a subtask for T5228: GpgOL: Combined S/MIME and OpenPGP operation: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · gpgol
aheinecke added a subtask for T5241: Allow selection of groups as recipients for file encryption: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · Restricted Project, kleopatra
aheinecke added a subtask for T5240: Allow selection of groups implicitly defined by tags: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · Restricted Project, kleopatra
aheinecke added a subtask for T5239: Add UI for managing groups: T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:39 AM · Restricted Project, kleopatra
aheinecke created T5273: Release Gpg4win 4.x.x.
Jan 28 2021, 10:38 AM · Restricted Project, gpg4win, Release Info
werner changed the status of T5263: cipher/sha512.c: build failure without arm neon asm from Open to Testing.
Jan 28 2021, 10:30 AM · libgcrypt, Bug Report
werner changed the status of T5251: Compile error on ARMv7 for libgcrypt from Open to Testing.
Jan 28 2021, 10:30 AM · asm, libgcrypt, Bug Report
werner renamed T5254: libgcrypt 1.9.0 fails make check (selftest) from libgcrypt 1.9.0 fails make check to libgcrypt 1.9.0 fails make check (selftest).
Jan 28 2021, 10:22 AM · patch, libgcrypt, Bug Report
First
Prev
Next