I've just confirmed that the fixes in the commit "rE50e0f32b1935" above to configure.ca & tests/makefile.am do NOT fix the problem under MacOSX Catalina 10.15.7 using Xcode 12.4, gcc Apple clang-1200.0.32.28.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Nov 25 2021
Nov 25 2021
outer added a comment to T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS.
outer added a comment to T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS.
I'm getting the same error even when compiling with x86_64/glibc (from Apple clang-1200.0.32.28) :(
Fix typo and license id
• werner committed rWd07f6f773f6b: appimage: Need to copy and dereference symlinks (authored by • werner).
appimage: Need to copy and dereference symlinks
• ikloecker committed rKLEOPATRA9cbc2269c473: Use same protocol for key lookup as for key selection (authored by • ikloecker).
Use same protocol for key lookup as for key selection
• ikloecker committed rKLEOPATRA20653bdc47d4: Restrict key lookup to OpenPGP if CMS is disabled (authored by • ikloecker).
Restrict key lookup to OpenPGP if CMS is disabled
• ikloecker committed rKLEOPATRA27b04b3f52f3: Offer only OpenPGP keys in edit group dialog if CMS is disabled (authored by • ikloecker).
Offer only OpenPGP keys in edit group dialog if CMS is disabled
Not a bug but a limitation of 2.2's option listing: In contrast to 2.3 we can't *show* the used options via gpgconf correcly if there is a conflict between global and local options. However, the actually *used* values are different and correct according to the config. In particular a global forced option overrides any local or command line option.
• werner added a project to T5705: GnuPG: System wide configuration ignored when gpg.conf-2 exists: gpgrt.
• aheinecke triaged T5705: GnuPG: System wide configuration ignored when gpg.conf-2 exists as Normal priority.
MSI: Ignore PCRE
• aheinecke committed rW2505cbd0afa4: Do not call download.sh from docker script (authored by • aheinecke).
Do not call download.sh from docker script
Update libkleo and kleopatra
Fix appimage patches
Add missing include
• ikloecker committed rKLEOPATRAfa654bd793fc: Offer only OpenPGP when encrypting clipboard if CMS is disabled (authored by • ikloecker).
Offer only OpenPGP when encrypting clipboard if CMS is disabled
• ikloecker committed rKLEOPATRAe2cc3b62f863: Use new UniqueLock to avoid error-prone manual unlocking (authored by • ikloecker).
Use new UniqueLock to avoid error-prone manual unlocking
Bump library version
• ikloecker committed rLIBKLEObd610f307dcd: Add a QMutex-compatible replacement for std::unique_lock (authored by • ikloecker).
Add a QMutex-compatible replacement for std::unique_lock
• ikloecker committed rLIBKLEO3d0a4daa1803: Add license texts of GPL 3.0 and GCC Runtime Library Exception (RLE) 3.1 (authored by • ikloecker).
Add license texts of GPL 3.0 and GCC Runtime Library Exception (RLE) 3.1
• werner committed rMb8b49c11e95f: core: Make the gpgconf option parsing of string types more robust (authored by • werner).
core: Make the gpgconf option parsing of string types more robust
core: Support dirinfo("socketdir")
• werner committed rM43de18a292b2: tests: Silence libtool warning on Windows. (authored by • werner).
tests: Silence libtool warning on Windows.
Update libkleo and kleopatra
• aheinecke committed rKLEOPATRA99ea68ab4940: Use NormalText on PositiveBackground for good (authored by • aheinecke).
Use NormalText on PositiveBackground for good
• aheinecke committed rKLEOPATRA2128e5777ad1: Do not update mimetypes when crosscompiling (authored by • aheinecke).
Do not update mimetypes when crosscompiling
• aheinecke committed rLIBKLEOa66a97a98331: Ignore compliance_de_vs for 2.2.28 to 2.2.33 (authored by • aheinecke).
Ignore compliance_de_vs for 2.2.28 to 2.2.33
We should only allow this for v5. This way we get incentive to move forward. ed448 requires a newer version anyway and thus it is good to take this as an opportunity to also demand AEAD etc.
The branch gniibe/v5/448 has the implementation.
• gniibe triaged T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04 as High priority.
• gniibe added a comment to T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata.
To be conservative, given the situation most implementations already support zero-removal and zero-recovery, it's better to output zero-removed signature, that is, signature with well-formed MPI.
My proposal is applying SOS (MPI with leading zero octets) patches, for 2.2, because there may be existing keys with SOS already.
• gniibe reopened T5120: Incompatible Ed25519 secret key (no-encryption), a subtask of T5114: GnuPG fails to import back generated and exported EdDSA secret key., as Open.
It's not yet solved.
• gniibe updated the task description for T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata.
• gniibe committed rE50e0f32b1935: build,tests: Run t-lock-single-posix only on platforms supported. (authored by • gniibe).
build,tests: Run t-lock-single-posix only on platforms supported.
• gniibe committed rM8148237cb4ae: posix: Use poll instead, when available, removing use of select. (authored by • gniibe).
posix: Use poll instead, when available, removing use of select.
• gniibe changed the status of T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS from Open to Testing.
Reading the documentation of musl, it seems that there are no equivalent feature which detects if an application is single-threaded or not.
• gniibe added a project to T5637: Use poll for libgcrypt (support more than 1024 fds): Restricted Project.
l10n daemon script <scripty@kde.org> committed rKLEOPATRAc63b9664dcf8: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Nov 24 2021
Nov 24 2021
• aheinecke committed rKLEOPATRAa2fd11a87974: Change std::mutex to QMutex for portability (authored by • aheinecke).
Change std::mutex to QMutex for portability
• aheinecke committed rW88b5f0b327f2: Fix gen-tarball for git archvie and update pkgs (authored by • aheinecke).
Fix gen-tarball for git archvie and update pkgs
• aheinecke committed rW2a3f8585cf04: Update ECM and remove related libkleo patch (authored by • aheinecke).
Update ECM and remove related libkleo patch
• ikloecker committed rKLEOPATRAda5e65e83a03: Restrict file operations to OpenPGP if CMS is disabled (authored by • ikloecker).
Restrict file operations to OpenPGP if CMS is disabled
• ikloecker committed rKLEOPATRA6e23b46c260c: Filter out any non-OpenPGP keys in filtered key lists if CMS is disabled (authored by • ikloecker).
Filter out any non-OpenPGP keys in filtered key lists if CMS is disabled
GIT_SILENT: Modernize code
• ikloecker committed rKLEOPATRAa541238972ca: Do not offer creation of S/MIME certificate requests if CMS is disabled (authored by • ikloecker).
Do not offer creation of S/MIME certificate requests if CMS is disabled
• ikloecker committed rKLEOPATRAf593e1df1134: Offer CMS-specific actions only if CMS is enabled (authored by • ikloecker).
Offer CMS-specific actions only if CMS is enabled
• ikloecker committed rKLEOPATRA489204d86bf3: Offer only OpenPGP keys for signing/encrypting notepad if CMS is disabled (authored by • ikloecker).
Offer only OpenPGP keys for signing/encrypting notepad if CMS is disabled
• ikloecker committed rKLEOPATRAb22938a68cf8: Add option to disable CMS-only functionality in the main UI (authored by • ikloecker).
Add option to disable CMS-only functionality in the main UI
• ikloecker committed rKLEOPATRAf2166808794e: Add support for QPointer<T> to KDAB_SET_OBJECT_NAME() (authored by • ikloecker).
Add support for QPointer<T> to KDAB_SET_OBJECT_NAME()
• ikloecker committed rKLEOPATRAd26810c90af8: Modernize API of make_actions_from_data() (authored by • ikloecker).
Modernize API of make_actions_from_data()
Bump library version
• ikloecker committed rLIBKLEOc658a0a2a419: Add helper for removing elements matching a predicate from a vector (authored by • ikloecker).
Add helper for removing elements matching a predicate from a vector
Bump library version
• ikloecker committed rLIBKLEO83374e3f9514: Add possibility to force filtering by protocol for all filters (authored by • ikloecker).
Add possibility to force filtering by protocol for all filters
• ikloecker committed rLIBKLEO200ceb8e72d5: Check if key matches for super class before checking special rule (authored by • ikloecker).
Check if key matches for super class before checking special rule
Improve gen-tarball script
Fix execute flag of qt patch
• aheinecke committed rW7b39036f2156: Fix gen-tarball for make dist packages (authored by • aheinecke).
Fix gen-tarball for make dist packages
Update download target in Makefile
Fix Gpg4win-3 detection
• aheinecke committed rW8322d96dc24b: Update GPGME, Kleopatra and Libkleo (authored by • aheinecke).
Update GPGME, Kleopatra and Libkleo
• gniibe committed rC40ab39966650: fips: Release random resources after selftests. (authored by • gniibe).
fips: Release random resources after selftests.
• gniibe committed rC204be8a385ae: random: Extend semantics of _gcry_random_close_fds. (authored by • gniibe).
random: Extend semantics of _gcry_random_close_fds.
• gniibe triaged T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS as Normal priority.
• gniibe added a comment to T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS.
In the libgpg-error implementation, it may skip synchronization when it can detect an application is single threaded. The t-lock-single-thread test checks if it really skips as intended.
Thank you.
• gniibe committed rG426d82fcf1c1: gpg: Fix function prototype to match declaration. (authored by Jakuje).
gpg: Fix function prototype to match declaration.
kbx: Fix allocation check
homedir: Avoid memory leaks on errors
dirmngr: Avoid memory leaks on errors
gpg: Fix key conversion for SSH.
gpg: Fix format_keyid.
l10n daemon script <scripty@kde.org> committed rKLEOPATRA4c762ae60aea: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Nov 23 2021
Nov 23 2021
joelnordell added a comment to T5702: Display prompt to user when YubiKey is waiting for touch confirmation.
Thanks @ikloecker - I'll rebase to the original repo and send it to the email list.
• ikloecker added a comment to T5702: Display prompt to user when YubiKey is waiting for touch confirmation.
And you may want to read the section "Sending patches" of https://dev.gnupg.org/source/gnupg/browse/master/doc/HACKING.
(forgot to upload the patch to the last comment)
gnupg-coverity.patch3 KBDownload
I am fine with either way. The memcmp variant is probably cleaner to make sure all works as expected in all cases.
Hi Werner, Here is the DCO. Thanks.
Thanks for the well written bug report and the fix.
• werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q4/000467.html on T5641: Release GnuPG 2.2.33.
So that you don't need to chase the downstream bug report, the problem from a user's perspective looks like this:
swdb: GnuPG 2.2.33
version-3: Update GnuPG to 2.2.33
po: Auto update
Post release updates
• werner committed rG007fea8ce9af: po: Update Russian translation. (authored by Ineiev <ineiev@gnu.org>).
po: Update Russian translation.
Release 2.2.33
Thank you. Extending the semantics of GCRYCTL_CLOSE_RANDOM_DEVICE sounds good to me. I think the deinit functions were created initially especially not to change the semantics of existing code using GCRYCTL_CLOSE_RANDOM_DEVICE, but I agree that it will probably not be an issue.