Page MenuHome GnuPG
Feed All Stories

Jun 20 2022

gniibe committed rA97516d6c24b9: Don't access NULL by wipememory. (authored by gniibe).
Don't access NULL by wipememory.
Jun 20 2022, 4:51 AM
gniibe committed rA5277f24ab4b0: Fix the previous commit. (authored by gniibe).
Fix the previous commit.
Jun 20 2022, 4:51 AM

Jun 18 2022

DemiMarie edited reviewers for D555: g10: Disallow compressed signatures and certificates, added: gniibe; removed: sergei, gp_ast.
Jun 18 2022, 1:38 AM · gnupg
DemiMarie added reviewers for D555: g10: Disallow compressed signatures and certificates: sergei, gp_ast.
Jun 18 2022, 1:35 AM · gnupg
DemiMarie removed a reviewer for D555: g10: Disallow compressed signatures and certificates: werner.
Jun 18 2022, 1:34 AM · gnupg

Jun 17 2022

DemiMarie updated the summary of D555: g10: Disallow compressed signatures and certificates.
Jun 17 2022, 8:37 PM · gnupg
DemiMarie added a comment to D555: g10: Disallow compressed signatures and certificates.

Compressed packets in detached signatures and/or certificates have never been permitted by any version of the standard.

Jun 17 2022, 8:36 PM · gnupg
DemiMarie updated subscribers of D555: g10: Disallow compressed signatures and certificates.
In D555#5569, @werner wrote:

Sorry, there is no padding packet in OpenPGP. Please do no try to push ideas from that crypto-refresh-06 thing into GnuPG. We continue to follow the last draft with consesus, which is rfc4880bis-10.

Jun 17 2022, 8:26 PM · gnupg
DemiMarie updated the diff for D555: g10: Disallow compressed signatures and certificates.
Jun 17 2022, 8:21 PM · gnupg
Purkkapallo updated Purkkapallo.
Jun 17 2022, 4:25 PM
ikloecker committed rKLEOPATRAa04592573c74: Use our HtmlLabel for the Welcome message (authored by ikloecker).
Use our HtmlLabel for the Welcome message
Jun 17 2022, 3:38 PM
ikloecker committed rKLEOPATRA0ddc9744ebbf: Make links in label text accessible (authored by ikloecker).
Make links in label text accessible
Jun 17 2022, 3:38 PM
ikloecker committed rKLEOPATRAa4b6783f5374: Make "select label text on focus" workaround customizable (authored by ikloecker).
Make "select label text on focus" workaround customizable
Jun 17 2022, 3:38 PM
ikloecker committed rKLEOPATRA9ffe17d3bcd8: Implement the action interface for AccessibleLink (authored by ikloecker).
Implement the action interface for AccessibleLink
Jun 17 2022, 3:38 PM
ikloecker triaged T6034: Kleopatra: Make links in label text accessible as Normal priority.
Jun 17 2022, 2:37 PM · kleopatra, Restricted Project
werner assigned T6033: Regression in GnuPG 2.2.34 with some ECC keys to gniibe.

The likely cause is that the secret key is not protected. Problem seems to be in gpg-agent.

Jun 17 2022, 12:39 PM · Bug Report, gnupg (gpg22)
werner triaged T6033: Regression in GnuPG 2.2.34 with some ECC keys as High priority.

Looking again at your report, I don't think it is an IPC problem (bad magic cooky was my assumption). I can replicate this with the current 2.2 but not with 2.3. Both un Unix.

Jun 17 2022, 12:36 PM · Bug Report, gnupg (gpg22)
werner committed rGbe5d06dae239: agent: Improve "Insert the card" message. (authored by werner).
agent: Improve "Insert the card" message.
Jun 17 2022, 12:24 PM
werner triaged T6030: Missing support for the Brave Web Browser on Windows as Normal priority.
Jun 17 2022, 7:48 AM · gpgme, Feature Request, gpg4win

Jun 16 2022

DemiMarie added a comment to T6031: Creating an overlong notation hits a fatal error..

{please add comments instead of adding the description - a changed description makes it hard to understand follow up comments. I will change the title, though for clarity.]

Jun 16 2022, 7:19 PM · Bug Report, gnupg
werner removed a member for Contributor: DemiMarie.
Jun 16 2022, 7:03 PM
werner closed T6021: GPG misparses `--list-options=show-sig-subpackets="100"a` as Wontfix.

Please don't play ping pong now,

Jun 16 2022, 7:02 PM · g10, Bug Report
werner closed T6032: Assertion failure in gpg as Invalid.

Please report such bugs to RedHat - they use a modified Libgcrypt and thus it's there bug.

Jun 16 2022, 7:00 PM · RHEL, g10, Bug Report
werner resigned from D555: g10: Disallow compressed signatures and certificates.
Jun 16 2022, 6:58 PM · gnupg
werner requested changes to D555: g10: Disallow compressed signatures and certificates.

Sorry, there is no padding packet in OpenPGP. Please do no try to push ideas from that crypto-refresh-06 thing into GnuPG. We continue to follow the last draft with consesus, which is rfc4880bis-10.

Jun 16 2022, 6:56 PM · gnupg
werner renamed T6031: Creating an overlong notation hits a fatal error. from Creating an overlong notation crashes gpg to Creating an overlong notation hits a fatal error..
Jun 16 2022, 6:54 PM · Bug Report, gnupg
werner triaged T6031: Creating an overlong notation hits a fatal error. as Wishlist priority.

The length limit of the signature sub packets are not reasy to pre-compute. Better to have a fatal error than a corrupt message. I am not sure whether we want to change this to a regualar error message - at that point we anyway need to stop.

Jun 16 2022, 6:54 PM · Bug Report, gnupg
DemiMarie edited projects for D555: g10: Disallow compressed signatures and certificates, added: gnupg; removed g10.
Jun 16 2022, 6:53 PM · gnupg
DemiMarie added a task to D555: g10: Disallow compressed signatures and certificates: T5993: gpg should reject compressed packets outside of messages.
Jun 16 2022, 6:53 PM · gnupg
DemiMarie added a revision to T5993: gpg should reject compressed packets outside of messages: D555: g10: Disallow compressed signatures and certificates.
Jun 16 2022, 6:53 PM · Feature Request, gnupg
DemiMarie retitled D555: g10: Disallow compressed signatures and certificates from Disallow compressed signatures and certificates to g10: Disallow compressed signatures and certificates.
Jun 16 2022, 6:53 PM · gnupg
DemiMarie raised the priority of T6021: GPG misparses `--list-options=show-sig-subpackets="100"a` from Low to Needs Triage.
Jun 16 2022, 6:52 PM · g10, Bug Report
werner edited projects for T6033: Regression in GnuPG 2.2.34 with some ECC keys, added: Not A Bug, Windows, gnupg (gpg22); removed Bug Report.

You deleted the socket file but you did not restart the agent. Thus gpg can't contact the agent anymore. On Windows we use a socket emulation which requires the socket's file only for a new connection (to get the port and magic cookie).

Jun 16 2022, 6:48 PM · Bug Report, gnupg (gpg22)
DemiMarie added a comment to T6032: Assertion failure in gpg.

I will try, but it will likely be a while. In any case I believe you will need a Red Hat-family distro to trigger the bug; it happens when gpg trys to encrypt with a key that uses a public key algorithm libgcrypt does not support.

Jun 16 2022, 6:42 PM · RHEL, g10, Bug Report
werner added a comment to T6032: Assertion failure in gpg.

Please provide a test case.

Jun 16 2022, 6:39 PM · RHEL, g10, Bug Report
werner triaged T6029: ntbtls: Require TLS 1.2 or later + AEAD by default as Normal priority.
Jun 16 2022, 6:37 PM · Not A Bug, ntbtls
cklassen committed rWb49317beab84: spelling (authored by cklassen).
spelling
Jun 16 2022, 5:06 PM
cklassen committed rW3cbc2d8c7a79: wrote text less cumbersome (authored by cklassen).
wrote text less cumbersome
Jun 16 2022, 4:33 PM
justus created T6033: Regression in GnuPG 2.2.34 with some ECC keys.
Jun 16 2022, 3:35 PM · Bug Report, gnupg (gpg22)
DemiMarie reopened T6021: GPG misparses `--list-options=show-sig-subpackets="100"a` as "Open".

Reopening as it appears this issue was closed based on an incorrect understanding of what it is.

Jun 16 2022, 3:20 PM · g10, Bug Report
DemiMarie reopened T6032: Assertion failure in gpg as "Open".

Reopening as gpg’s handling of the situation is very much suboptimal.

Jun 16 2022, 3:19 PM · RHEL, g10, Bug Report
ikloecker committed rLIBKLEO6541fa3dd6b6: GIT_SILENT Unify include of local headers (authored by ikloecker).
GIT_SILENT Unify include of local headers
Jun 16 2022, 2:50 PM
ikloecker committed rLIBKLEOf641eca34cb1: GIT_SILENT Remove duplicate includes (authored by ikloecker).
GIT_SILENT Remove duplicate includes
Jun 16 2022, 2:50 PM
ikloecker committed rLIBKLEO74e15b5b629c: GIT_SILENT Unify include of local headers in header files (authored by ikloecker).
GIT_SILENT Unify include of local headers in header files
Jun 16 2022, 2:50 PM
ikloecker committed rLIBKLEOebbb92b99438: GIT_SILENT Include config-libkleo.h in all source files (authored by ikloecker).
GIT_SILENT Include config-libkleo.h in all source files
Jun 16 2022, 2:50 PM
ikloecker committed rLIBKLEOecf00334f881: GIT_SILENT Unify include of debug headers (authored by ikloecker).
GIT_SILENT Unify include of debug headers
Jun 16 2022, 2:50 PM
ikloecker committed rLIBKLEO642fdd93bc58: GIT_SILENT Move tests subdirectory to top-level (authored by ikloecker).
GIT_SILENT Move tests subdirectory to top-level
Jun 16 2022, 2:50 PM
ikloecker committed rKLEOPATRA3f8e20aa6af4: Avoid deprecation warning (authored by ikloecker).
Avoid deprecation warning
Jun 16 2022, 2:25 PM
ikloecker committed rKLEOPATRA30294906a26f: Avoid deprecation warning (authored by ikloecker).
Avoid deprecation warning
Jun 16 2022, 2:25 PM
ikloecker committed rKLEOPATRA4e9fd9677586: Make lambdas used in std::accumulate compatible with C++20 (authored by ikloecker).
Make lambdas used in std::accumulate compatible with C++20
Jun 16 2022, 2:25 PM
ikloecker committed rKLEOPATRA5a2eb383220b: Require C++20 (authored by ikloecker).
Require C++20
Jun 16 2022, 2:25 PM
ikloecker committed rKLEOPATRA2e520331fb87: Fix raising main window (authored by Nicolas Fella <nicolas.fella@gmx.de>).
Fix raising main window
Jun 16 2022, 2:19 PM
gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

I pushed the change needed for GnuPG to t5964 branch.
See: https://dev.gnupg.org/rGc281bd94349e4f7997a89927aaa2c2f45004b902

Jun 16 2022, 8:47 AM · gnupg26, FIPS, libgcrypt, Feature Request
gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

Added HKDF implementation to master.

Jun 16 2022, 8:18 AM · gnupg26, FIPS, libgcrypt, Feature Request
gniibe committed rCfbddfb964f0b: kdf: Add HKDF of RFC5869. (authored by gniibe).
kdf: Add HKDF of RFC5869.
Jun 16 2022, 8:04 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO941b805d9b45: Remove duplicate header between cpp/h (authored by Laurent Montel <montel@kde.org>).
Remove duplicate header between cpp/h
Jun 16 2022, 7:13 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA8fe827388729: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Jun 16 2022, 4:26 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAc5a4426573e7: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Jun 16 2022, 3:54 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAbe922164d2cf: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Jun 16 2022, 2:49 AM
gniibe added a comment to T5976: libgcrypt build failure on HPPA 1.1 (./.libs/libgcrypt.so: undefined reference to `__udiv_qrnnd').

Applied to 1.10 branch.

Jun 16 2022, 2:40 AM · backport, hppa, libgcrypt, Gentoo, Bug Report
gniibe added a comment to T5976: libgcrypt build failure on HPPA 1.1 (./.libs/libgcrypt.so: undefined reference to `__udiv_qrnnd').

didn't seem to work with 1.9.x

Jun 16 2022, 2:38 AM · backport, hppa, libgcrypt, Gentoo, Bug Report
DemiMarie closed T6032: Assertion failure in gpg as Invalid.

Closing as I believe this is a downstream bug.

Jun 16 2022, 12:26 AM · RHEL, g10, Bug Report
DemiMarie updated the task description for T6031: Creating an overlong notation hits a fatal error..
Jun 16 2022, 12:03 AM · Bug Report, gnupg

Jun 15 2022

DemiMarie created T6032: Assertion failure in gpg.
Jun 15 2022, 11:34 PM · RHEL, g10, Bug Report
ikloecker added a comment to T6031: Creating an overlong notation hits a fatal error..

Please read at least one article that explains how to write a good bug report. I'm pretty sure that you will find plenty of good articles using your favorite search engine.

Jun 15 2022, 10:07 PM · Bug Report, gnupg
DemiMarie created T6031: Creating an overlong notation hits a fatal error..
Jun 15 2022, 9:46 PM · Bug Report, gnupg
thesamesam added a comment to T5976: libgcrypt build failure on HPPA 1.1 (./.libs/libgcrypt.so: undefined reference to `__udiv_qrnnd').

Thanks! Interestingly didn't seem to work with 1.9.x but it does with 1.10x. Maybe I made some error when testing.

Jun 15 2022, 8:12 PM · backport, hppa, libgcrypt, Gentoo, Bug Report
werner committed rG2766b9e56c77: agent,ssh: Fix for make not-inserted OpenPGP.3 keys available for SSH. (authored by werner).
agent,ssh: Fix for make not-inserted OpenPGP.3 keys available for SSH.
Jun 15 2022, 4:42 PM
werner committed rG1530d04725d4: agent: New option --no-user-trustlist and --sys-trustlist-name. (authored by werner).
agent: New option --no-user-trustlist and --sys-trustlist-name.
Jun 15 2022, 9:26 AM
cklassen committed rW2f2433b6dd03: Typo fix (authored by cklassen).
Typo fix
Jun 15 2022, 8:45 AM
gniibe committed rSf7b73cb6a303: Add constant from PKCS#11 3.0. (authored by gniibe).
Add constant from PKCS#11 3.0.
Jun 15 2022, 7:57 AM
gniibe committed rSed1be1c141b9: Tweak for GetSlotList for firefox. (authored by gniibe).
Tweak for GetSlotList for firefox.
Jun 15 2022, 6:40 AM
gniibe committed rSc04939fb4929: Allow SeedRandom. (authored by gniibe).
Allow SeedRandom.
Jun 15 2022, 6:40 AM
gniibe committed rS0cb3e4458c31: Cleanup. (authored by gniibe).
Cleanup.
Jun 15 2022, 4:57 AM
gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

I found this page:
https://firefox-source-docs.mozilla.org/security/nss/legacy/nss_tech_notes/nss_tech_note2/index.html

Jun 15 2022, 3:44 AM · Feature Request, scute
gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

In the branch https://dev.gnupg.org/source/Scute/history/t6002/ , by the commit rS123d617ebefe: Less administration of devices by scute., things has been changed.

Jun 15 2022, 3:39 AM · Feature Request, scute
gniibe committed rS123d617ebefe: Less administration of devices by scute. (authored by gniibe).
Less administration of devices by scute.
Jun 15 2022, 3:07 AM

Jun 14 2022

ikloecker committed rKLEOPATRA07e193240ada: Avoid deprecation warning (authored by ikloecker).
Avoid deprecation warning
Jun 14 2022, 10:05 PM
ikloecker committed rKLEOPATRA13c5610c39f8: Avoid deprecation warning (authored by ikloecker).
Avoid deprecation warning
Jun 14 2022, 10:05 PM
ikloecker committed rKLEOPATRAcec4b1489960: Make lambdas used in std::accumulate compatible with C++20 (authored by ikloecker).
Make lambdas used in std::accumulate compatible with C++20
Jun 14 2022, 10:05 PM
ikloecker committed rKLEOPATRA358f5de2aa81: Require C++20 (authored by ikloecker).
Require C++20
Jun 14 2022, 10:05 PM
locutor99 updated locutor99.
Jun 14 2022, 7:17 PM
rbairwell created T6030: Missing support for the Brave Web Browser on Windows.
Jun 14 2022, 5:55 PM · gpgme, Feature Request, gpg4win
Laurent Montel <montel@kde.org> committed rKLEOPATRAc538a8de3240: Remove duplicate from header/cpp (authored by Laurent Montel <montel@kde.org>).
Remove duplicate from header/cpp
Jun 14 2022, 1:39 PM
gniibe committed rSe809dde00007: Fix sign/decrypt operation. (authored by gniibe).
Fix sign/decrypt operation.
Jun 14 2022, 1:15 PM
gniibe committed rS84bca08b45a3: Add back LABEL to cert. (authored by gniibe).
Add back LABEL to cert.
Jun 14 2022, 1:06 PM
werner added a comment to rMd59cf1725755: tests: Add support for clear text signatures to test runner.

When I replied to the bug report I had the very same idea. Thanks for adding.

Jun 14 2022, 12:28 PM
werner closed T6027: Revisit write_status_text_and buffer as Resolved.
Jun 14 2022, 11:42 AM · Bug Report, gnupg (gpg23)
werner committed rG7b1db7192e6e: g10: Fix garbled status messages in NOTATION_DATA (authored by werner).
g10: Fix garbled status messages in NOTATION_DATA
Jun 14 2022, 11:41 AM
werner committed rG34c649b36013: g10: Fix garbled status messages in NOTATION_DATA (authored by werner).
g10: Fix garbled status messages in NOTATION_DATA
Jun 14 2022, 11:35 AM
werner added a comment to T6027: Revisit write_status_text_and buffer.

Here is a test signature with long notation data. During verification gpg faults when emitting the NOTATION_DATA lines.

Jun 14 2022, 11:31 AM · Bug Report, gnupg (gpg23)
gniibe committed rS1f1a51cd496d: Fix keyinfo listing. (authored by gniibe).
Fix keyinfo listing.
Jun 14 2022, 10:41 AM
ikloecker committed rMd59cf1725755: tests: Add support for clear text signatures to test runner (authored by ikloecker).
tests: Add support for clear text signatures to test runner
Jun 14 2022, 10:29 AM
gniibe committed rSb075581f0a34: Change the slot allocation logic. (authored by gniibe).
Change the slot allocation logic.
Jun 14 2022, 10:17 AM
ikloecker closed T6028: gpgme should support creating clearsigned messages as Resolved.

As Werner wrote, this is already possible. The next time please consult the extensive documentation of gpgme before opening a ticket.

Jun 14 2022, 10:14 AM · Feature Request, gpgme
cklassen committed rW71d5a284fa63: Fixed links to PDFs on documentation page (authored by cklassen).
Fixed links to PDFs on documentation page
Jun 14 2022, 9:13 AM
gniibe committed rS5b456d22cb95: Fix slot_get_status. (authored by gniibe).
Fix slot_get_status.
Jun 14 2022, 9:01 AM
gniibe committed rS573b335a32b3: Cleanup. (authored by gniibe).
Cleanup.
Jun 14 2022, 9:01 AM
gniibe committed rS1a5d0f025318: Fix C_GetSlotInfo. (authored by gniibe).
Fix C_GetSlotInfo.
Jun 14 2022, 9:01 AM
gniibe committed rScdef61e65657: Add back the LABEL object. (authored by gniibe).
Add back the LABEL object.
Jun 14 2022, 9:01 AM