Page MenuHome GnuPG
Feed All Stories

Aug 17 2021

aheinecke triaged T5558: GPGME: No error handling for symmetric encryption as Normal priority.
Aug 17 2021, 11:45 AM · gpgme
werner committed rG4dfa951a0a63: w32: Move socketdir to LOCAL_APPDATA (authored by werner).
w32: Move socketdir to LOCAL_APPDATA
Aug 17 2021, 11:05 AM
werner committed rG455ba49071de: agent: Make QT_QPA_PLATFORMTHEME=qt5ct work for the pient (authored by werner).
agent: Make QT_QPA_PLATFORMTHEME=qt5ct work for the pient
Aug 17 2021, 11:05 AM
werner committed rGc6a4a660fdb9: agent: New option --check-sym-passphrase-pattern. (authored by werner).
agent: New option --check-sym-passphrase-pattern.
Aug 17 2021, 11:05 AM
werner committed rG013f2e4672b1: gpgconf,w32: Print more registry diagnostics with --list-dirs. (authored by werner).
gpgconf,w32: Print more registry diagnostics with --list-dirs.
Aug 17 2021, 11:05 AM
werner committed rG9832566e4512: agent: Add checkpin inquiry for pinentry (authored by ikloecker).
agent: Add checkpin inquiry for pinentry
Aug 17 2021, 11:05 AM
werner committed rG8fff61de9433: common: Pass XDG_SESSION_TYPE and QT_QPA_PLATFORM envvars to pinentry (authored by ikloecker).
common: Pass XDG_SESSION_TYPE and QT_QPA_PLATFORM envvars to pinentry
Aug 17 2021, 11:05 AM
werner committed rG32fbdddf8b47: agent: New option --pinentry-formatted-passphrase (authored by ikloecker).
agent: New option --pinentry-formatted-passphrase
Aug 17 2021, 11:05 AM
werner committed rG5ca15e58b241: tools: Extend gpg-check-pattern. (authored by werner).
tools: Extend gpg-check-pattern.
Aug 17 2021, 11:05 AM
werner added a comment to T5244: libgcrypt: Restrict MD5 use.

(can't access that bug with my account)

Aug 17 2021, 9:38 AM · Bug Report, FIPS, libgcrypt
gniibe added a comment to T5520: Fix tests in FIPS mode.

For tests with FIPS mode enabled, I manually create the file .libgcrypt.so.20.hmac under src/.libs.

Aug 17 2021, 6:04 AM · FIPS, libgcrypt, Bug Report
gniibe added a project to T5520: Fix tests in FIPS mode: Restricted Project.
Aug 17 2021, 4:22 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T5520: Fix tests in FIPS mode.

I pushed my further change.
Also, applied and pushed your changes.

Aug 17 2021, 4:21 AM · FIPS, libgcrypt, Bug Report
gniibe committed rC564e51fde711: dsa: Drop dead code (authored by Jakuje).
dsa: Drop dead code
Aug 17 2021, 4:21 AM
gniibe committed rC6e40fca72635: tests: Generating large-enough DSA keys works in FIPS mode (authored by Jakuje).
tests: Generating large-enough DSA keys works in FIPS mode
Aug 17 2021, 4:21 AM
gniibe committed rC034055ffdca2: rsa: Do not allow 1024 RSA keys in FIPS mode (authored by Jakuje).
rsa: Do not allow 1024 RSA keys in FIPS mode
Aug 17 2021, 4:21 AM
gniibe committed rC588b8bb6ef09: tests: Avoid confusing 'success' on error message (authored by Jakuje).
tests: Avoid confusing 'success' on error message
Aug 17 2021, 4:21 AM
gniibe committed rC2ae56abd0eb6: fips: Fix tests in fips mode and non-fips mode. (authored by gniibe).
fips: Fix tests in fips mode and non-fips mode.
Aug 17 2021, 4:10 AM
gniibe added a comment to T5520: Fix tests in FIPS mode.

Sorry, I didn't test for non-FIPS mode when I committed rC347817438990: fips: Fix tests in fips mode..
Tweaking the value for memory allocation is needed for FIPS mode, because it uses some secure memory by DRBG.

Aug 17 2021, 4:06 AM · FIPS, libgcrypt, Bug Report

Aug 16 2021

Laurent Montel <montel@kde.org> committed rLIBKLEOb3bb0ce3e49e: GIT_SILENT: add qch support (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: add qch support
Aug 16 2021, 8:26 PM
Jakuje added a comment to T5244: libgcrypt: Restrict MD5 use.

I went a bit back to the history to figure out what is the enforced and soft fips mode as it was initially not completely clear to me. For the record, I used the following bug from 9 years ago:

Aug 16 2021, 7:11 PM · Bug Report, FIPS, libgcrypt
Jakuje added a comment to T5520: Fix tests in FIPS mode.

Tested the master on (faked) FIPS and non-FIPS Fedora and I created couple of more changes for master to work in FIPS mode:

Aug 16 2021, 4:16 PM · FIPS, libgcrypt, Bug Report
ikloecker moved T5544: Kleopatra: Ensure that file encryption dialogs has shortcuts on all actions from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 16 2021, 3:53 PM · kleopatra, Restricted Project
ikloecker committed rKLEOPATRAd87504e0cc72: Fix wrong button text when opening wizard (authored by ikloecker).
Fix wrong button text when opening wizard
Aug 16 2021, 3:53 PM
ikloecker committed rKLEOPATRAaa59b873a51b: Simplify code displaying compliance label next to buttons (authored by ikloecker).
Simplify code displaying compliance label next to buttons
Aug 16 2021, 3:53 PM
ikloecker committed rKLEOPATRA3c8a08ce2f2c: Remove superfluous call of setEncryptionPreset() (authored by ikloecker).
Remove superfluous call of setEncryptionPreset()
Aug 16 2021, 3:53 PM
ikloecker committed rKLEOPATRA76543bec5dc7: Enable "Encrypt with password" if keyring is empty (authored by ikloecker).
Enable "Encrypt with password" if keyring is empty
Aug 16 2021, 3:53 PM
ikloecker changed the status of T5545: Kleopatra: Select symmetric encryption by default if keyring is empty, a subtask of T5535: Kleopatra: Check that accessibility is also supported for VS-NfD, from Open to Testing.
Aug 16 2021, 3:52 PM · Restricted Project, kleopatra
ikloecker changed the status of T5545: Kleopatra: Select symmetric encryption by default if keyring is empty from Open to Testing.
Aug 16 2021, 3:52 PM · kleopatra, Restricted Project
ikloecker moved T5545: Kleopatra: Select symmetric encryption by default if keyring is empty from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 16 2021, 3:52 PM · kleopatra, Restricted Project
Puntukas created T5557: Kleopatra window is not displayed correctly.
Aug 16 2021, 2:14 PM · can't replicate, Bug Report, gpg4win
werner triaged T5523: jitter entropy RNG update as Normal priority.
Aug 16 2021, 11:08 AM · FIPS, libgcrypt
ikloecker committed rPd285c2cb1f61: qt: Make sure the message box is centered on top of the pinentry (authored by ikloecker).
qt: Make sure the message box is centered on top of the pinentry
Aug 16 2021, 11:00 AM
ikloecker moved T5545: Kleopatra: Select symmetric encryption by default if keyring is empty from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 16 2021, 10:59 AM · kleopatra, Restricted Project
ikloecker changed the status of T5543: pinentry-qt: Accessibility switch to repeat on enter from Open to Testing.
Aug 16 2021, 10:58 AM · pinentry, Restricted Project
ikloecker changed the status of T5543: pinentry-qt: Accessibility switch to repeat on enter, a subtask of T5535: Kleopatra: Check that accessibility is also supported for VS-NfD, from Open to Testing.
Aug 16 2021, 10:58 AM · Restricted Project, kleopatra
ikloecker moved T5543: pinentry-qt: Accessibility switch to repeat on enter from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 16 2021, 10:57 AM · pinentry, Restricted Project
ikloecker added a comment to T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg..

keyserver hkps://hkps.pool.sks-keyservers.net:80 is problematic.

Aug 16 2021, 10:40 AM · FAQ, Keyserver, gnupg
gniibe updated the task description for T5556: Use of offsetof is better for allocation of flexible array.
Aug 16 2021, 10:17 AM · gnupg24, gpgme, libgcrypt
gniibe created T5556: Use of offsetof is better for allocation of flexible array.
Aug 16 2021, 10:17 AM · gnupg24, gpgme, libgcrypt
Saturneric added a comment to T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg..
###+++--- GPGConf ---+++###
allow-version-check
keyserver hkps://hkps.pool.sks-keyservers.net:80
###+++--- GPGConf ---+++### 2021/5/8 14:18:58
# GPGConf edited this configuration file.
# It will disable options before this marked block, but it will
# never change anything below these lines.
Aug 16 2021, 9:43 AM · FAQ, Keyserver, gnupg
gniibe changed the status of T5244: libgcrypt: Restrict MD5 use from Open to Testing.

Since I think there is no reason why checking _gcry_enforced_fips_mode () here, I remove the check.

Aug 16 2021, 9:23 AM · Bug Report, FIPS, libgcrypt
werner added a comment to T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg..

Did you restart dirmngr? ("gpgconf --kill dirmngr" so it will be started on demand).

Aug 16 2021, 9:00 AM · FAQ, Keyserver, gnupg
gniibe committed rCacc1598ea891: cipher: Raise an error for non-approved digests correctly. (authored by gniibe).
cipher: Raise an error for non-approved digests correctly.
Aug 16 2021, 5:43 AM
gniibe committed rC44c7c41af21c: tests: Skip tests when FIPS for keygrip computations. (authored by gniibe).
tests: Skip tests when FIPS for keygrip computations.
Aug 16 2021, 5:43 AM
gniibe added a comment to T5244: libgcrypt: Restrict MD5 use.

Applied by rC0f118c2dfb8e: cipher: Do not use of non-approved digests in FIPS mode.

Aug 16 2021, 4:40 AM · Bug Report, FIPS, libgcrypt
Saturneric added a comment to T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg..
debug network,dns,ipc
log-file C:\Users\Administrator\dirmgr.log

I wrote this in my dirmngr.conf. But i haven't found this .log file.

Aug 16 2021, 4:28 AM · FAQ, Keyserver, gnupg
gniibe committed rC347817438990: fips: Fix tests in fips mode. (authored by gniibe).
fips: Fix tests in fips mode.
Aug 16 2021, 3:51 AM
gniibe added a comment to rM3c1c98a43413: core: Use flexible array member if compiler has support..

There are two things here.
(1) Use of [] (FLEXIBLE_ARRAY_MEMBER)
(2) Use of offsetof (instead of sizeof) for computation of size of allocation.

Aug 16 2021, 2:37 AM

Aug 15 2021

Laurent Montel <montel@kde.org> committed rKLEOPATRA81bb8ed2ebbf: GIT_SILENT: future kf5 will depend against qt5.15.2, we will depend against it… (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: future kf5 will depend against qt5.15.2, we will depend against it…
Aug 15 2021, 7:16 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO1accdf6f73c9: GIT_SILENT: future kf5 will depend against qt5.15.2, we will depend against it… (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: future kf5 will depend against qt5.15.2, we will depend against it…
Aug 15 2021, 7:11 PM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAd859bcf3dac9: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Aug 15 2021, 3:24 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA7096168abc68: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Aug 15 2021, 2:20 AM

Aug 14 2021

cnp1234 added a comment to T5436: gpg-agent 2.3.1: PIN caching not working for decrypt operations.

Based on the info about this being caused by the added support of PIV, I poked around on the docs at https://gnupg.org/documentation/manuals/gnupg/gpg_002dcard.html and noticed the disable-application stuff. I added "disable-application piv" to ~/.gnupg/scdaemon.conf and the behavior went back to pin caching working as before. Since I don't use PIV, this is an acceptable workaround for me.

Aug 14 2021, 9:05 PM · gnupg24, yubikey, Bug Report
Laurent Montel <montel@kde.org> committed rLIBKLEO5733f199c71b: GIT_SILENT: clang-tidy: one declaration per line; braces around statements (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: clang-tidy: one declaration per line; braces around statements
Aug 14 2021, 7:57 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO6ffc69c5f4df: GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted
Aug 14 2021, 5:32 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA75adf8001da7: GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted
Aug 14 2021, 5:31 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRAe8593f9adce0: GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: switch to KDECompilerSettings + CMAKE_CXX_STANDARD already setted
Aug 14 2021, 5:25 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO27c9b83fb452: GIT_SILENT: time to increase version (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: time to increase version
Aug 14 2021, 1:48 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRAfccc046cf9cb: GIT_SILENT: time to increase version (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: time to increase version
Aug 14 2021, 1:45 PM
werner triaged T5555: Cannot add existing ECDSA key as a signing subkey as High priority.
Aug 14 2021, 1:25 PM · gnupg24, Bug Report
smlx renamed T5555: Cannot add existing ECDSA key as a signing subkey from Cannot use existing key to add ECDSA signing subkey to Cannot add existing ECDSA key as a signing subkey.
Aug 14 2021, 7:53 AM · gnupg24, Bug Report
smlx created T5555: Cannot add existing ECDSA key as a signing subkey.
Aug 14 2021, 7:53 AM · gnupg24, Bug Report

Aug 13 2021

calestyo added a comment to T5554: support symmetric encryption with multiple passphrases.

At first I've had simply tried to give multiple --symmetric options (which of course didn't work).

Aug 13 2021, 11:27 PM · symmetric, gnupg, Feature Request
werner added a comment to T5552: Key information loading is sometimes very slow. Suspected that the problem originated from gnupg..

debug network,dns,ipc

log-file something
Aug 13 2021, 11:21 PM · FAQ, Keyserver, gnupg
werner triaged T5554: support symmetric encryption with multiple passphrases as Normal priority.

I have no clear idea on how to style the UI for this feature. Technically it is simple but we need top query several passphrases. loopback mode with a list of passphrases might be easiest way to do that.

Aug 13 2021, 11:19 PM · symmetric, gnupg, Feature Request
werner changed the edit policy for symmetric.
Aug 13 2021, 11:16 PM
werner changed the edit policy for Stalled.
Aug 13 2021, 11:16 PM
werner changed the edit policy for ssh.
Aug 13 2021, 11:15 PM
werner changed the edit policy for spam.
Aug 13 2021, 11:15 PM
werner changed the edit policy for Solaris.
Aug 13 2021, 11:15 PM
werner changed the edit policy for side-channel.
Aug 13 2021, 11:14 PM
werner changed the edit policy for segv.
Aug 13 2021, 11:14 PM
werner changed the edit policy for scute.
Aug 13 2021, 11:14 PM
werner changed the edit policy for scd.
Aug 13 2021, 11:14 PM
werner changed the edit policy for S/MIME.
Aug 13 2021, 11:13 PM
werner changed the edit policy for rc.
Aug 13 2021, 11:13 PM
werner changed the edit policy for qt.
Aug 13 2021, 11:13 PM
werner changed the edit policy for Python.
Aug 13 2021, 11:13 PM
werner changed the edit policy for poldi.
Aug 13 2021, 11:12 PM
werner changed the edit policy for pinentry.
Aug 13 2021, 11:12 PM
werner changed the edit policy for Payproc.
Aug 13 2021, 11:11 PM
werner changed the edit policy for patch.
Aug 13 2021, 11:11 PM
werner changed the edit policy for OpenPGP.
Aug 13 2021, 11:11 PM
werner changed the edit policy for ntbtls.
Aug 13 2021, 11:11 PM
werner changed the edit policy for npth.
Aug 13 2021, 11:10 PM
werner changed the edit policy for Not A Bug.
Aug 13 2021, 11:10 PM
werner changed the edit policy for No Response.
Aug 13 2021, 11:10 PM
werner changed the edit policy for nGPH.
Aug 13 2021, 11:10 PM
werner changed the edit policy for Mutt.
Aug 13 2021, 11:09 PM
werner changed the edit policy for Mistaken.
Aug 13 2021, 11:09 PM
werner changed the edit policy for Memo.
Aug 13 2021, 11:09 PM
werner changed the edit policy for maybe.
Aug 13 2021, 11:09 PM
werner changed the edit policy for MacOS.
Aug 13 2021, 11:08 PM
werner changed the edit policy for libkleo.
Aug 13 2021, 11:08 PM
werner changed the edit policy for libgcrypt.
Aug 13 2021, 11:08 PM
werner changed the edit policy for libassuan.
Aug 13 2021, 11:08 PM
werner changed the edit policy for legal.
Aug 13 2021, 11:07 PM
werner changed the edit policy for Legacy OS.
Aug 13 2021, 11:07 PM
werner changed the edit policy for LDAP.
Aug 13 2021, 11:07 PM