Page MenuHome GnuPG
Feed All Stories

Nov 18 2021

gniibe added a comment to T5523: jitter entropy RNG update.

->mem is just used to measure the difference of memory access.

Nov 18 2021, 7:56 AM · FIPS, libgcrypt
gniibe added a comment to T5523: jitter entropy RNG update.

It found that newer jitterentropy uses larger mem (128KiB), while older uses 2KiB.

Nov 18 2021, 7:33 AM · FIPS, libgcrypt
gniibe committed rC17f9eb20c94f: build: Fix excess quotation to enable config.status --recheck works. (authored by gniibe).
build: Fix excess quotation to enable config.status --recheck works.
Nov 18 2021, 6:47 AM
gniibe committed rC5493282b4aac: random: Fix rndgetentropy correctly uses rndjent. (authored by gniibe).
random: Fix rndgetentropy correctly uses rndjent.
Nov 18 2021, 4:06 AM

Nov 17 2021

kwinz added a comment to T1621: Support multiple cards (not just readers).

@werner That is not helpful. I tried 4 or 5 different readers. And the Reiner SCT cyberjack is the one that works best out of all of them on both Windows and Linux.

Nov 17 2021, 11:03 PM · gnupg, Feature Request
werner added a comment to T5638: Make Kleopatra group configuration exportable.

Your item "2. Allow exporting multiple groups at the same time." is not really important. If you want to do that, please make sure that each group is exported to a separate file.

Nov 17 2021, 6:33 PM · Restricted Project, Feature Request, kleopatra
werner closed T5695: libgcrypt cross-compilation error as Invalid.

Please see T5696.

Nov 17 2021, 6:30 PM · Bug Report
werner closed T5696: libgpg-error cross-compilation error as Invalid.

No autoreconf etc. Use only our method to cross build. That is $src/libgcrypt/autogen.sh --build-w32.

Nov 17 2021, 6:29 PM
werner committed rG749bb80cb768: gpgconf: --show-configs now prints a bunch of Registry entries. (authored by werner).
gpgconf: --show-configs now prints a bunch of Registry entries.
Nov 17 2021, 6:16 PM
hydra3333 added a comment to T5695: libgcrypt cross-compilation error.

cross-compilation settings:

Nov 17 2021, 5:34 PM · Bug Report
hydra3333 added a comment to T5696: libgpg-error cross-compilation error.

The cross-compilation settings:

{ # 2019.12.13 # https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgpg-error.git;a=summary
	#'repo_type' : 'archive',
	'#url' : 'https://www.gnupg.org/ftp/gcrypt/libgpg-error/libgpg-error-1.43.tar.bz2',
	#
	'repo_type' : 'git',
	'recursive_git' : True,
	'url' : 'git://git.gnupg.org/libgpg-error.git', # https://git.gnupg.org/ # https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgpg-error.git;a=summary
	##'url' : 'https://dev.gnupg.org/source/libgpg-error.git', # https://git.gnupg.org/ # https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgpg-error.git;a=summary
	#
	'configure_options': '--host={target_host} --prefix={target_prefix} --disable-shared --enable-static --disable-rpath --disable-doc --disable-tests --with-libiconv-prefix={target_prefix}', # --with-libintl=no --with-libpth=no',
	'custom_cflag' : ' ', # 2019.12.13 it fails to build with anything other than this, eg it crashes with -O3 and -fstack-protector-all -D_FORTIFY_SOURCE=2 
	'run_post_regexreplace' : (
		'autoreconf -fiv',
		'./autogen.sh --build-w64 ', 								 
	),
	'depends_on' : (
		'iconv', 
	),
}
Nov 17 2021, 5:30 PM
hydra3333 created T5696: libgpg-error cross-compilation error.
Nov 17 2021, 5:28 PM
hydra3333 created T5695: libgcrypt cross-compilation error.
Nov 17 2021, 5:26 PM · Bug Report
ikloecker added a comment to T5638: Make Kleopatra group configuration exportable.

Importing exported certificate group files from the file manager now also works, at least on XDG-compatible systems. I have also made sure that the application-certificate icon is used for those files in the Breeze icon theme.

Nov 17 2021, 3:47 PM · Restricted Project, Feature Request, kleopatra
ikloecker committed rKLEOPATRA0e0497ff0667: Import files with our new certificate group media type (authored by ikloecker).
Import files with our new certificate group media type
Nov 17 2021, 3:43 PM
ikloecker committed rKLEOPATRAe688ef065dcc: Add media type definition for exported certificate group files (authored by ikloecker).
Add media type definition for exported certificate group files
Nov 17 2021, 3:23 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA4a7905f7ec45: GIT_SILENT: use <..> for include (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: use <..> for include
Nov 17 2021, 1:43 PM
ikloecker changed the status of T5638: Make Kleopatra group configuration exportable, a subtask of T5175: Kleopatra: Add support for custom groups, from Open to Testing.
Nov 17 2021, 12:27 PM · Restricted Project, kleopatra
ikloecker changed the status of T5638: Make Kleopatra group configuration exportable from Open to Testing.

Ready for testing

Nov 17 2021, 12:27 PM · Restricted Project, Feature Request, kleopatra
ikloecker committed rKLEOPATRA09f83b17280b: Keep selection when groups are updated (authored by ikloecker).
Keep selection when groups are updated
Nov 17 2021, 12:25 PM
ikloecker committed rKLEOPATRAff19cee15bbe: Prevent a crash caused by a stale model index (authored by ikloecker).
Prevent a crash caused by a stale model index
Nov 17 2021, 11:25 AM
ikloecker committed rKLEOPATRAbf43368757f9: Watch the key cache for changes to certificates or groups (authored by ikloecker).
Watch the key cache for changes to certificates or groups
Nov 17 2021, 11:25 AM
ikloecker committed rKLEOPATRAcda07b5ed70a: GIT_SILENT: Remove unused argument (authored by ikloecker).
GIT_SILENT: Remove unused argument
Nov 17 2021, 11:25 AM
ikloecker committed rKLEOPATRA96da10811806: Track changes in GroupsConfigPage instead of GroupsConfigDialog (authored by ikloecker).
Track changes in GroupsConfigPage instead of GroupsConfigDialog
Nov 17 2021, 11:25 AM
werner added a comment to rGc9343bec83e2: sm: Detect circular chains in --list-chain..

Here are the two test certificates mentioned in the commit log:

Nov 17 2021, 11:19 AM
ikloecker committed rKLEOPATRA2eda5760d400: Include KF5 headers as camel-case headers (authored by ikloecker).
Include KF5 headers as camel-case headers
Nov 17 2021, 10:53 AM
ikloecker committed rLIBKLEO2273fb74dd5d: Include KF5 headers as camel-case headers (authored by ikloecker).
Include KF5 headers as camel-case headers
Nov 17 2021, 10:50 AM
werner committed rG50539394802f: common,w32: New function read_w32_reg_string. (authored by werner).
common,w32: New function read_w32_reg_string.
Nov 17 2021, 9:55 AM
werner committed rG9172fbc08473: gpgconf: Extend --show-config to show envvars. (authored by werner).
gpgconf: Extend --show-config to show envvars.
Nov 17 2021, 9:55 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO895a891a2ba5: Port I18N_NOOP macro (authored by Laurent Montel <montel@kde.org>).
Port I18N_NOOP macro
Nov 17 2021, 8:53 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRAf9d5ba427b8e: Make it compile without deprecated methods (authored by Laurent Montel <montel@kde.org>).
Make it compile without deprecated methods
Nov 17 2021, 8:22 AM
gniibe committed rCd0fcb4da98a0: Fix jent_read_entropy for JENT_CPU_JITTERENTROPY_SECURE_MEMORY. (authored by gniibe).
Fix jent_read_entropy for JENT_CPU_JITTERENTROPY_SECURE_MEMORY.
Nov 17 2021, 7:04 AM
gniibe committed rCcf85258e6aff: jitterentropy: Fix for C90 compiler. (authored by gniibe).
jitterentropy: Fix for C90 compiler.
Nov 17 2021, 7:04 AM
gniibe committed rC2101da04924b: jitterentropy: Use jent_read_entropy_safe for rndjent. (authored by gniibe).
jitterentropy: Use jent_read_entropy_safe for rndjent.
Nov 17 2021, 7:04 AM
gniibe committed rC5a26ef4f35a5: doc: Update LICENSES for jitterentropy 3.3.0. (authored by gniibe).
doc: Update LICENSES for jitterentropy 3.3.0.
Nov 17 2021, 7:04 AM
gniibe committed rC3bacdac611b9: jitterentropy: Merge from jitterentropy-library-3.3.0. (authored by gniibe).
jitterentropy: Merge from jitterentropy-library-3.3.0.
Nov 17 2021, 7:04 AM
gniibe committed rC964c9c5eee30: jitterentropy: Disable use of pthread. (authored by gniibe).
jitterentropy: Disable use of pthread.
Nov 17 2021, 7:04 AM
gniibe committed rCd5ae5229db70: jitterentropy: Fix building rndjent. (authored by gniibe).
jitterentropy: Fix building rndjent.
Nov 17 2021, 7:04 AM
gniibe added a project to T5523: jitter entropy RNG update: Restricted Project.

Pushed to master.

Nov 17 2021, 7:03 AM · FIPS, libgcrypt

Nov 16 2021

Laurent Montel <montel@kde.org> committed rKLEOPATRA023d295838cf: not necessary to use I18N_NOOP here. (authored by Laurent Montel <montel@kde.org>).
not necessary to use I18N_NOOP here.
Nov 16 2021, 8:03 PM
pzich added a comment to T5693: GPG sign in corrupts larger terminal sizing.

Pinentry: pinentry-curses (pinentry) 1.2.0
OS: macOS 12.0
Terminal: xterm-256color (via zsh in the default Terminal.app)

Nov 16 2021, 7:58 PM · MacOS, pinentry, Bug Report
werner changed the status of T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu from Open to Testing.
Nov 16 2021, 5:24 PM · Restricted Project, scd, ssh, Bug Report
werner committed rGb6b735edab03: scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE. (authored by gniibe).
scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE.
Nov 16 2021, 4:09 PM
werner committed rGc9343bec83e2: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Nov 16 2021, 4:09 PM
werner committed rW64f4556da15e: appimage: Take version number from gpg4win. (authored by werner).
appimage: Take version number from gpg4win.
Nov 16 2021, 3:59 PM
werner committed rWe042d0661faa: appimage: Copy a global vsd standard config. (authored by werner).
appimage: Copy a global vsd standard config.
Nov 16 2021, 3:12 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA1c18c11933b1: GIT_SILENT: make it compile with last kf5 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: make it compile with last kf5
Nov 16 2021, 1:36 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO02a94f8172f2: GIT_SILENT: make it compile with last kf5 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: make it compile with last kf5
Nov 16 2021, 1:35 PM
wrobelda added a comment to T5694: poly1305-s390x.S is compiled despite --disable-asm.

Additionally, poly1305-s390x.S is being compiled despite running/targeting a PC system:

Nov 16 2021, 1:31 PM · libgcrypt, Bug Report
werner added a comment to T5512: Implement service indicators.

We could use a new mode #define GCRY_GET_CONFIG_FIPS 1 with gcry_get_config:

Nov 16 2021, 1:21 PM · Feature Request, FIPS, libgcrypt
werner triaged T5693: GPG sign in corrupts larger terminal sizing as Normal priority.

What is your Pinentry version, which OS is that, and which terminal type?

Nov 16 2021, 1:13 PM · MacOS, pinentry, Bug Report
werner triaged T5694: poly1305-s390x.S is compiled despite --disable-asm as Normal priority.
Nov 16 2021, 1:10 PM · libgcrypt, Bug Report
Jakuje added a comment to T5512: Implement service indicators.

With just implicit indicators, we would have to block all non-approved cipher modes and kdfs including the OCB mode and skcrypt, which would probably make gnupg2 unusable in FIPS mode, which is not our intention.

Nov 16 2021, 1:10 PM · Feature Request, FIPS, libgcrypt
gniibe moved T5665: libgcrypt : Restrict message digest use for FIPS 140-3 from Next to Ready for release on the FIPS board.
Nov 16 2021, 11:22 AM · FIPS, Bug Report, libgcrypt
gniibe moved T5692: New entropy gatherer using the genentropy system call. from Backlog to Next on the FIPS board.
Nov 16 2021, 11:22 AM · libgcrypt, FIPS
gniibe added a project to T5665: libgcrypt : Restrict message digest use for FIPS 140-3: Restricted Project.
Nov 16 2021, 11:20 AM · FIPS, Bug Report, libgcrypt
ikloecker committed rKLEOPATRA8ae23aca0c43: Add missing include (authored by ikloecker).
Add missing include
Nov 16 2021, 11:15 AM
gniibe added a comment to T5636: Run integrity checks + selftests from library constructor in FIPS.

In the documentation, I found:

Nov 16 2021, 10:58 AM · FIPS, libgcrypt, Bug Report
ikloecker committed rKLEOPATRAcdd1b8cededf: Allow export (and deletion) of multiple groups (authored by ikloecker).
Allow export (and deletion) of multiple groups
Nov 16 2021, 10:42 AM
ikloecker committed rLIBKLEO8527e0ddc2d7: Write empty list of keys as empty string (authored by ikloecker).
Write empty list of keys as empty string
Nov 16 2021, 10:36 AM
aheinecke added a comment to T5690: Kleopatra: Custom placeholder text in newcertificatewizard.

It would be the grey background text and no forced template, just as an input hint. And it would override the automatic detection of name / e-mail so that no wrong values are prefilled. This should help avoid unattentive users from creating a slightly wrong user id if their ad domain address does not match the e-mail.

Nov 16 2021, 9:49 AM · kleopatra, Restricted Project
Laurent Montel <montel@kde.org> committed rLIBKLEOe0aaa0ea2c26: GIT_SILENT: make sure that it compiles without deprecated methods (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: make sure that it compiles without deprecated methods
Nov 16 2021, 8:57 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA3b8e4044f9f6: GIT_SILENT: make sure that it compiles without deprecated methods (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: make sure that it compiles without deprecated methods
Nov 16 2021, 8:55 AM

Nov 15 2021

wrobelda created T5694: poly1305-s390x.S is compiled despite --disable-asm.
Nov 15 2021, 10:16 PM · libgcrypt, Bug Report
jukivili committed rC5e0187d84fc1: Add intel-pclmul accelerated POLYVAL for GCM-SIV (authored by jukivili).
Add intel-pclmul accelerated POLYVAL for GCM-SIV
Nov 15 2021, 9:49 PM
pzich created T5693: GPG sign in corrupts larger terminal sizing.
Nov 15 2021, 8:47 PM · MacOS, pinentry, Bug Report
werner triaged T5692: New entropy gatherer using the genentropy system call. as Normal priority.
Nov 15 2021, 7:30 PM · libgcrypt, FIPS
werner triaged T5691: Release libgcrypt 1.10.0 as Low priority.
Nov 15 2021, 7:22 PM · FIPS, Release Info, libgcrypt
werner committed rG74c5b350624b: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Nov 15 2021, 5:53 PM
ikloecker committed rKLEOPATRA928e7a25cb80: Ensure that finished() isn't called twice if both export jobs fail (authored by ikloecker).
Ensure that finished() isn't called twice if both export jobs fail
Nov 15 2021, 4:01 PM
ikloecker committed rKLEOPATRAc7e4cd81f6fd: Use new helpers for writing/reading key groups to/from a file (authored by ikloecker).
Use new helpers for writing/reading key groups to/from a file
Nov 15 2021, 4:01 PM
ikloecker committed rLIBKLEO8a8e23a8f744: Bump library version (authored by ikloecker).
Bump library version
Nov 15 2021, 3:26 PM
ikloecker committed rLIBKLEO75e0d5096e5d: Add helpers for reading/writing key groups from/to a file (authored by ikloecker).
Add helpers for reading/writing key groups from/to a file
Nov 15 2021, 3:26 PM
werner added a comment to T5690: Kleopatra: Custom placeholder text in newcertificatewizard.

Can you given a example on how this would look like. In particulr are placeholders some kind of forced template or just a grey background text?

Nov 15 2021, 3:23 PM · kleopatra, Restricted Project
aheinecke triaged T5690: Kleopatra: Custom placeholder text in newcertificatewizard as Normal priority.
Nov 15 2021, 2:05 PM · kleopatra, Restricted Project
aheinecke updated the task description for T5689: Kleopatra: Make config pages hideable again.
Nov 15 2021, 2:01 PM · kleopatra, Restricted Project
aheinecke triaged T5689: Kleopatra: Make config pages hideable again as Normal priority.
Nov 15 2021, 2:00 PM · kleopatra, Restricted Project
aheinecke triaged T5688: Kleopatra: Configure to hide CSR creation as Normal priority.
Nov 15 2021, 1:57 PM · kleopatra, Restricted Project
werner committed rWc0b369015aac: appimage: Fix new --devel option (authored by werner).
appimage: Fix new --devel option
Nov 15 2021, 12:06 PM
wrobelda added a comment to T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows.

Please also refer to https://github.com/microsoft/vcpkg/discussions/20755 where we discuss on how to approach GnuPG libraries for a native Windows compilation.

Nov 15 2021, 11:30 AM · Bug Report
wrobelda added a comment to T5365: --with-libgpg-error-prefix doesn't affect gpgrt-config path detection.

Also, and I should maybe have opened with it, the issues vcpkg has with your build system are currently tracked here, while my effort to build gpg-error natively (i.e. without relying on ShiftMediaProject fork) on all platforms is here.

Nov 15 2021, 11:27 AM · MacOS, gpgrt, Cross-Compiler, libgcrypt
wrobelda added a comment to T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows.

FWIW, the gnupg installer comes with dll, header and import files. You may use them.

Nov 15 2021, 11:23 AM · Bug Report
wrobelda added a comment to T5365: --with-libgpg-error-prefix doesn't affect gpgrt-config path detection.

Let me clarify the use case of gpg-error.m4.

gpg-error.m4 is for GnuPG and its friends, where we cannot assume availability of pkg-config. Its capability is limited, and we don't pursue 100% compatibility of pkg-config.

Nov 15 2021, 11:16 AM · MacOS, gpgrt, Cross-Compiler, libgcrypt
ikloecker committed rW35b689e3543a: appimage: Fix typo (authored by ikloecker).
appimage: Fix typo
Nov 15 2021, 10:19 AM
werner triaged T5668: gpgme: gpgme_op_query_swdb() does not report error from gpgconf as Normal priority.
Nov 15 2021, 7:46 AM · Restricted Project, gpgme, Bug Report
werner closed T5670: gpgconf --query-swdb incorrectly handles pre-release version numbers as Wontfix.
Nov 15 2021, 7:45 AM · gpg4win, Bug Report
werner closed T5667: gpg(v) prints the human-readable form of notations to the status-fd as Resolved.
Nov 15 2021, 7:43 AM · Bug Report
werner triaged T5686: GitHub mirror out of date as Normal priority.
Nov 15 2021, 7:43 AM · Feature Request, dev.gnupg.org
werner added a comment to T5686: GitHub mirror out of date.

No, our admin left us and took all scripts and docs with him. We need to set it up again. You better use this system anyway, patches etc on GitHib are not used.

Nov 15 2021, 7:42 AM · Feature Request, dev.gnupg.org
werner changed the status of T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows from Resolved to Wontfix.
Nov 15 2021, 7:40 AM · Bug Report
werner closed T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows as Resolved.

GnuPG requires a Unix system to build. We do not support building natively on Windows. Sorry.

Nov 15 2021, 7:40 AM · Bug Report
gniibe committed rCec671cfa2398: random: Include getentropy random module. (authored by gniibe).
random: Include getentropy random module.
Nov 15 2021, 7:13 AM
gniibe committed rCcebe5c78a949: random:getentropy: Limit the size of buffer in exact size. (authored by gniibe).
random:getentropy: Limit the size of buffer in exact size.
Nov 15 2021, 7:13 AM
gniibe committed rCe562e34c824d: build: Support rndgetentropy random module. (authored by gniibe).
build: Support rndgetentropy random module.
Nov 15 2021, 7:13 AM
gniibe committed rC6de43f11c625: random:getentropy: Simplify more. (authored by gniibe).
random:getentropy: Simplify more.
Nov 15 2021, 7:13 AM
gniibe committed rCa8395fd7a40f: random: Simplify rndgetentropy. (authored by gniibe).
random: Simplify rndgetentropy.
Nov 15 2021, 7:13 AM
gniibe committed rCf36bfe7ec1b2: random: Start rnd-getentropy.c. (authored by gniibe).
random: Start rnd-getentropy.c.
Nov 15 2021, 7:13 AM
gniibe added a project to T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu: Restricted Project.
Nov 15 2021, 3:53 AM · Restricted Project, scd, ssh, Bug Report
gniibe added a comment to T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu.

Adding the check on host side, I pushed the change: rGa575b0aba542: scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE.

Nov 15 2021, 3:53 AM · Restricted Project, scd, ssh, Bug Report
gniibe committed rGa575b0aba542: scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE. (authored by gniibe).
scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE.
Nov 15 2021, 3:53 AM