Somewhat related: before the change that resulted in the PIN issue, I already occasionally had to reconnect the reader because gnupg would ask for the card when it was in fact already present.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Feb 13 2021
Feb 13 2021
Feb 12 2021
Feb 12 2021
jukivili updated subscribers of rC3f42f727a069: Make sure the grcy_get_config string is always null-terminated..
Because, threads are optional on uclibc as threads are not supported by all embedded targets.
libgpg-error was building perfectly fine without threads until version 1.40 as all pthread calls were protected by USE_POSIX_THREADS.
Should I understand from your answer that threads are now mandatory?
• werner changed the status of T5277: libgcrypt 1.9.1 fails to build with --disable-asm from Open to Testing.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5157: libgcrypt: ARM64 Builds on macOS fail, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5251: Compile error on ARMv7 for libgcrypt , as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5254: libgcrypt 1.9.0 fails make check (selftest), as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5263: cipher/sha512.c: build failure without arm neon asm, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5269: failure of modular inverse, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5267: Ed25519 backward compatible private key support for preceding ZERO(s), as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial, as Resolved.
• werner closed T5259: Release Libgcrypt 1.9.1, a subtask of T5275: Exploitable overflow in Libgcrypt 1.9.0, as Resolved.
Update NEWS
• werner committed rC3f42f727a069: Make sure the grcy_get_config string is always null-terminated. (authored by jukivili).
Make sure the grcy_get_config string is always null-terminated.
Add handling for -Og with O-flag munging
Fix ubsan warnings for i386 build
ecc: Add checking key for ECDSA.
How does it come that you have a Linux kernel without threads? Or maybe the better question is why does libc not support threads?
build: Update gpg-error.m4.
• gniibe committed rG83e0a9d6b990: build: Fix library dependency of g13 test program. (authored by • gniibe).
build: Fix library dependency of g13 test program.
• gniibe changed the status of T5293: gpg-error.m4 should search gpg-error.pc under the paths of gpgrt-config from Open to Testing.
• gniibe committed rE3cabbad4eec0: build: Improve how to determine $libdir for gpgrt-config (authored by • gniibe).
build: Improve how to determine $libdir for gpgrt-config
random: Fix build for macOS.
• gniibe added a comment to T5293: gpg-error.m4 should search gpg-error.pc under the paths of gpgrt-config.
Considered again, I realized that (1) is no need to check.
Laurent Montel <montel@kde.org> committed rLIBKLEO0f78fb708926: GIT_SILENT: ignore compile_commands.json too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: ignore compile_commands.json too
Laurent Montel <montel@kde.org> committed rKLEOPATRA4fe0a1f8bd6f: GIT_SILENT: ignore compile_commands.json too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: ignore compile_commands.json too
Laurent Montel <montel@kde.org> committed rKLEOPATRA56aec304cf3c: GIT_SILENT: ignore compile_commands.json too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: ignore compile_commands.json too
Feb 11 2021
Feb 11 2021
• werner committed rG9235c9b65b04: doc: Add NEWS with news from the 2.2 series. (authored by • werner).
doc: Add NEWS with news from the 2.2 series.
doc: Improve the gpg-card man page.
Good morning.
For 2.3.0 we won't be able to fix all bugs./feature requests. Instead we l will solve that in the 2.3 series.
• werner removed a parent task for T4344: Periodic check of own keys with the WKD: T4417: Work needed for gnupg 2.3.
• werner removed a parent task for T4406: Allow the use of the default-new-key-algo format for --quick-gen-key.: T4417: Work needed for gnupg 2.3.
• werner removed a parent task for T3495: The --list-keys should account for groups that are defined: T4417: Work needed for gnupg 2.3.
• werner added a project to T3495: The --list-keys should account for groups that are defined: gnupg.
Feb 10 2021
Feb 10 2021
Works for me.
• werner lowered the priority of T4601: gpg --quiet --quick-sign-key is not quiet from Normal to Low.
dirmngr needs to be killed for this. gpgconf --kill dirmngr.
Meanwhile we introduced the keyboxd which should solve such problems. It will be marked experimental in 2.3 but I expect that it will soon be used as the default way to store keys - at least under Windows.
• werner closed T3415: GnuPG should refuse to encrypt using 64-bit block ciphers by default as Resolved.
• werner committed rG825dd7220ff6: gpg: Do not allow old cipher algorithms for encryption. (authored by • werner).
gpg: Do not allow old cipher algorithms for encryption.
• ikloecker committed rKLEOPATRAc99ec64fa3c0: Give initial keyboard focus to the keys filter (authored by • ikloecker).
Give initial keyboard focus to the keys filter
• ikloecker committed rKLEOPATRAb8130ea5f2ef: Allow changing the name of a group of keys (authored by • ikloecker).
Allow changing the name of a group of keys
• ikloecker committed rKLEOPATRA71980f217e7f: Add command for editing a group of keys (authored by • ikloecker).
Add command for editing a group of keys
• ikloecker committed rLIBKLEOec7d08c6fbc1: Add setters for name and keys to KeyGroup (authored by • ikloecker).
Add setters for name and keys to KeyGroup
Bump library version
• werner lowered the priority of T3389: canonical OpenPGP certificate export from Normal to Wishlist.
• werner edited projects for T3287: Improve http proxy support by honoring SRV RRs., added: gnupg; removed gnupg (gpg23).
Won't be done because the expectations of users are different on whether they use ssh-agent or gpg-agent. And it breaks scripts
• werner closed T3237: gnupg complies to CO_DE_VS when generating keys non-interactively only by accident as Invalid.
I would not all this an accident.
• werner lowered the priority of T4338: gpg-agent fails to start on Windows if GNUPGHOME is longer than 80 characters from Normal to Low.
• werner closed T2964: dirmngr and gpg-agent should work automatically even when GNUPGHOME is larger than sun_path as Resolved.
The now used /var/run thingy solves all these problems nicely. In fact we may eventually remove the use fallback of using sockets in the GNUPGHOMEDIR.
• werner renamed T2958: Extend --unwrap to also remove a compression layer. from extract signature from encrypted+signed message to Extend --unwrap to also remove a compression layer..
We have the --unwrap option which already does this. The problem here is that an addition compression layer is not removed. Therefore I will rename this report to add a feature strip things down to a signature or literal data packet..
Eventually we will move to keyboxd which is already an experimental option in 2.3. Thus we won't do anything here.
The gpg-card is more flexible than the old gpg stuff. If there is something missing we will add it over time but it does not make sense to keep this request open.
• werner lowered the priority of T2862: support session key extraction and overriding for gpgsm from Normal to Wishlist.
Due to better working timeouts we have mostly soolved these problems,. Further keyservers are not anymore of great use these days.
The other patches don't make sense because of future plans for dirmngr.
• werner lowered the priority of T2760: Populate comment field when exporting authentication key for SSH from Normal to Wishlist.
• werner lowered the priority of T2290: Allow gpgv2 to use armored GPG keys as keyring file with trusted keys from Normal to Wishlist.
• werner lowered the priority of T2186: --encrypt-to ambiguous with a expired and revoked key from Normal to Low.
Remove obsolete M4 macros.
Require GpgRT version 1.41.
Yuri Chornoivan <yurchor@ukr.net> committed rKLEOPATRAfaf3fcf12171: Fix minor typo: editted -> edited (authored by Yuri Chornoivan <yurchor@ukr.net>).
Fix minor typo: editted -> edited
• werner committed rEe95b0c67cd6c: doc: Document another interface change in 1.37 (authored by • werner).
doc: Document another interface change in 1.37
build: Make make distcheck work again.
tools: Remove the symcryptrun tool.
Feb 9 2021
Feb 9 2021
• werner added a comment to T5291: gpg fails to recognize signatures if signer's user ID subpacket is present with the critical bit set .
Critical attributes are well known from CMS and X.509 and some have a history which can only be described as cargo cult. We should not allow them in the OpenPGP ecosystem without giving them a specific semantic aside from "we do something with it".
• werner closed T5290: the stable 2.2 branch no longer builds symcryptrun, but it ships the symcryptrun.1 manpage as Resolved.
Done. FWIW. in 2.3 symcryptrun will be removed entirely.
doc: Remove man page for symcryptrun.