Page MenuHome GnuPG
Feed All Stories

Apr 8 2021

Laurent Montel <montel@kde.org> committed rLIBKLEOd92c576de185: GIT_SILENT: if we include header, not necessary to forward class too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: if we include header, not necessary to forward class too
Apr 8 2021, 9:09 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO5b27276cc253: GIT_SILENT: increase to qt5.15, cmake 3.16.0, use Qt:: vs Qt5:: for helping to… (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: increase to qt5.15, cmake 3.16.0, use Qt:: vs Qt5:: for helping to…
Apr 8 2021, 9:04 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA0e1ebcfe2416: GIT_SILENT: increase to qt5.15, cmake 3.16.0, use Qt:: vs Qt5:: for helping to… (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: increase to qt5.15, cmake 3.16.0, use Qt:: vs Qt5:: for helping to…
Apr 8 2021, 8:23 AM
gniibe committed rGb0a7132856ef: po: Update Simplified Chinese Translation. (authored by bobwxc).
po: Update Simplified Chinese Translation.
Apr 8 2021, 6:58 AM
gniibe committed rGf8ae51977ce4: scd: Fix CCID driver for SCM SPR332/SPR532. (authored by gniibe).
scd: Fix CCID driver for SCM SPR332/SPR532.
Apr 8 2021, 6:50 AM
gniibe claimed T5297: SCM SPR332 smartcard reader support broken.

Thank you.
Applied both to STABLE-BRANCH-2-2 and master (changing new function name).

Apr 8 2021, 6:50 AM · gnupg (gpg22), scd, Bug Report
gniibe committed rGab66c4357595: scd: Fix CCID driver for SCM SPR332/SPR532. (authored by gniibe).
scd: Fix CCID driver for SCM SPR332/SPR532.
Apr 8 2021, 6:44 AM
gniibe added a comment to T5328: On the (in)security of Elgamal in OpenPGP.

So, in my opinion, applying the patch for ElGamal exponent blinding is enough (for now).

Apr 8 2021, 6:22 AM · side-channel, CVE, libgcrypt
gniibe added a comment to T5328: On the (in)security of Elgamal in OpenPGP.

For DSA, I had assumed similar attack could be effective.

Apr 8 2021, 6:22 AM · side-channel, CVE, libgcrypt
gniibe added a comment to T5380: Tools needed during a build lack of CFLAGS was passed durring configure time.

CC_FOR_BUILD is used for building executables for the build machine.
CC_FOR_BUILD may be different to CC (for target).

Apr 8 2021, 6:09 AM · MacOS, Bug Report
gniibe committed rGd82dae5d2229: common: Fix gnupg_wait_processes, by skipping invalid PID. (authored by gniibe).
common: Fix gnupg_wait_processes, by skipping invalid PID.
Apr 8 2021, 4:29 AM
gniibe added a comment to T5381: libgpg-error coverity static analysis reports.

For gpgrt_wait_processes, I modified it to skip invalid PID.
The change is: rE956c40f106ea: core: Fix gpgrt_wait_processes, by skipping invalid PID.

Apr 8 2021, 4:26 AM · gpgrt, Bug Report
gniibe committed rE956c40f106ea: core: Fix gpgrt_wait_processes, by skipping invalid PID. (authored by gniibe).
core: Fix gpgrt_wait_processes, by skipping invalid PID.
Apr 8 2021, 4:15 AM
gniibe committed rGac1e159397a7: po: Update Japanese Translation. (authored by gniibe).
po: Update Japanese Translation.
Apr 8 2021, 3:24 AM

Apr 7 2021

werner committed rDcc0a0fc9b364: web: Minor fix. (authored by werner).
web: Minor fix.
Apr 7 2021, 9:13 PM
werner closed T5343: Release GnuPG 2.3.0 as Resolved.
Apr 7 2021, 9:09 PM · Release Info, gnupg (gpg23)
werner updated the task description for T5343: Release GnuPG 2.3.0.
Apr 7 2021, 9:09 PM · Release Info, gnupg (gpg23)
werner committed rDe72fbc5bb042: swdb: GnuPG 2.3.0 (authored by werner).
swdb: GnuPG 2.3.0
Apr 7 2021, 9:03 PM
werner committed rGf88d6a5279cb: Post release updates (authored by werner).
Post release updates
Apr 7 2021, 8:49 PM
werner committed rGc922a798a341: Release GnuPG 2.3.0 (authored by werner).
Release GnuPG 2.3.0
Apr 7 2021, 8:49 PM
werner triaged T5386: Release GnuPG 2.3.1 as Normal priority.
Apr 7 2021, 8:44 PM · gnupg (gpg23), Release Info
werner triaged T5385: libgcrypt coverity static analysis reports as Low priority.

Yes, will be fixed but it has no severity because the fault is actually by the caller.

Apr 7 2021, 6:22 PM · libgcrypt, Bug Report
Jakuje created T5385: libgcrypt coverity static analysis reports.
Apr 7 2021, 5:15 PM · libgcrypt, Bug Report
Jakuje created T5384: pinentry coverity static analysis reports.
Apr 7 2021, 3:00 PM · pinentry, Bug Report
xandox added a comment to T5380: Tools needed during a build lack of CFLAGS was passed durring configure time.

Referencing external patches is not sufficient

Apr 7 2021, 1:06 PM · MacOS, Bug Report
xandox added a comment to T5380: Tools needed during a build lack of CFLAGS was passed durring configure time.

What is vcpkg?

Apr 7 2021, 1:03 PM · MacOS, Bug Report
werner added a project to T5380: Tools needed during a build lack of CFLAGS was passed durring configure time: MacOS.

Sorry, I can't parse your message. Please describe the problem or feature requests. Referencing external patches is not sufficient. What is vcpkg?

Apr 7 2021, 12:23 PM · MacOS, Bug Report
Jakuje added a comment to T5381: libgpg-error coverity static analysis reports.

Thanks. I understand that this is no big issue in the test code, but half of the code paths have proper cleaning already so fixing it once should save anyone in the future going through the same issues over and over again during our releases or anyone else who would run your code through static analyzer.

Apr 7 2021, 11:56 AM · gpgrt, Bug Report
gniibe committed rE89a353f418f5: build: Fix gpgrt-config for handling 'Requires' field. (authored by gniibe).
build: Fix gpgrt-config for handling 'Requires' field.
Apr 7 2021, 10:26 AM
gniibe added a comment to T5381: libgpg-error coverity static analysis reports.

Thank you.
For get_attr_l, I pushed a fix as rE89a353f418f5: build: Fix gpgrt-config for handling 'Requires' field.

Apr 7 2021, 10:25 AM · gpgrt, Bug Report

Apr 6 2021

werner added a project to T5381: libgpg-error coverity static analysis reports: gpgrt.

Actually I don't care about releasing resources for regression test failures.
The other missing free is for code which is commented out (#if 0) but should eventually be fixed.

Apr 6 2021, 11:29 PM · gpgrt, Bug Report
jukivili added a comment to T5369: GnuPG build on Apple with Clang.

Note that rndjent.c is already build with -O0 as can be seen in example above. That warning could be silenced by surrounding pragma with #ifdef __OPTIMIZE__ (with should be supported by GCC and Clang).

Apr 6 2021, 10:20 PM · libgcrypt, MacOS, Bug Report
Jakuje added a comment to T5381: libgpg-error coverity static analysis reports.

FYI, I sent DCO to gnupg-devel@gnupg.org some moments ago, so I hope it arrived correctly.

Apr 6 2021, 5:57 PM · gpgrt, Bug Report
Jakuje created T5381: libgpg-error coverity static analysis reports.
Apr 6 2021, 5:56 PM · gpgrt, Bug Report
xandox changed External Link from https://github.com/microsoft/vcpkg/pull/15605 https://github.com/microsoft/vcpkg/pull/17020 https://github.com/microsoft/vcpkg/pull/17023 https://github.com/microsoft/vcpkg/pull/17021 to https://github.com/microsoft/vcpkg/pull/15605 on T5380: Tools needed during a build lack of CFLAGS was passed durring configure time.
Apr 6 2021, 1:36 PM · MacOS, Bug Report
xandox created T5380: Tools needed during a build lack of CFLAGS was passed durring configure time.
Apr 6 2021, 1:35 PM · MacOS, Bug Report
werner committed rD72877bb4ab3d: swdb: libksba 1.5.1 (authored by werner).
swdb: libksba 1.5.1
Apr 6 2021, 12:48 PM
werner committed rK1015bea2f8a5: Release 1.5.1 (authored by werner).
Release 1.5.1
Apr 6 2021, 12:27 PM
werner committed rK88392670f4e5: Post release updates (authored by werner).
Post release updates
Apr 6 2021, 12:27 PM
werner committed rK105093943554: build: Add the usual release targets. (authored by werner).
build: Add the usual release targets.
Apr 6 2021, 12:27 PM
werner triaged T5369: GnuPG build on Apple with Clang as Low priority.
Apr 6 2021, 12:10 PM · libgcrypt, MacOS, Bug Report
werner closed T5379: Release Libksba 1.5.1 as Resolved.
Apr 6 2021, 12:09 PM · libksba, Release Info
werner triaged T5379: Release Libksba 1.5.1 as Low priority.
Apr 6 2021, 11:40 AM · libksba, Release Info
werner triaged T5377: pinentry-qt dialog cannot be raised under Linux/Wayland as Normal priority.
Apr 6 2021, 9:56 AM · pinentry, Bug Report
werner committed rGe0eefba56c16: doc: Add some error locations to DETAILS. (authored by werner).
doc: Add some error locations to DETAILS.
Apr 6 2021, 9:55 AM
werner committed rG18551c6dc2c3: gpg: Fix new pseudo option compliance_de_vs (authored by werner).
gpg: Fix new pseudo option compliance_de_vs
Apr 6 2021, 9:34 AM
werner added a comment to T5371: Handle invalid compliance settings.

with the next GnuPG version (2.2.28 and 2.3.0) you can do a read

Apr 6 2021, 9:25 AM · Feature Request, Restricted Project, kleopatra

Apr 5 2021

Laurent Montel <laurent.montel@kdab.com> committed rKLEOPATRAed3e486f0012: GIT_SILENT: include <cerrno> instead of <errno.h> (authored by Laurent Montel <laurent.montel@kdab.com>).
GIT_SILENT: include <cerrno> instead of <errno.h>
Apr 5 2021, 4:03 PM

Apr 4 2021

werner triaged T5347: Update Manual Kleopatra as Normal priority.
Apr 4 2021, 7:03 PM · Documentation, kleopatra
gpatel-fr added a comment to T4278: Signed mails not visible in Exchange web interface (owa).

This feature does not use Outlook per se.. It's a problem with Exchange really. An Exchange Add-in would be needed to solve it, an Outlook add-in such as Gpgol can't do anything about it..

Apr 4 2021, 4:57 PM · gpgol, Bug Report, gpg4win

Apr 2 2021

gniibe committed rC840713de1a68: cipher: Return GPG_ERR_INV_KEYLEN when wrong key length. (authored by gniibe).
cipher: Return GPG_ERR_INV_KEYLEN when wrong key length.
Apr 2 2021, 3:15 AM

Apr 1 2021

jukivili committed rCaaa30381eac3: cipher-gcm-ppc: add big-endian support (authored by jukivili).
cipher-gcm-ppc: add big-endian support
Apr 1 2021, 1:25 PM
werner committed rG8ef0f53cb001: common: Make the compliance check more robust. (authored by werner).
common: Make the compliance check more robust.
Apr 1 2021, 1:24 PM
werner committed rG9feffc03f364: gpgconf: Return a new pseudo option compliance_de_vs. (authored by werner).
gpgconf: Return a new pseudo option compliance_de_vs.
Apr 1 2021, 1:24 PM
werner committed rGa78475fbb7b6: gpgconf: Return a new pseudo option compliance_de_vs. (authored by werner).
gpgconf: Return a new pseudo option compliance_de_vs.
Apr 1 2021, 1:15 PM
werner committed rG1d1ec1146c04: common: Make the compliance check more robust. (authored by werner).
common: Make the compliance check more robust.
Apr 1 2021, 1:15 PM
jukivili committed rC1cf5a568f2b2: mpi/aarch64: use C_SYMBOL_NAME for assembly function names (authored by jukivili).
mpi/aarch64: use C_SYMBOL_NAME for assembly function names
Apr 1 2021, 12:38 PM
werner added a comment to T5377: pinentry-qt dialog cannot be raised under Linux/Wayland.

Seems that it is not a coincidence that Wayland starts with a W like Windows. ;-)

Apr 1 2021, 12:28 PM · pinentry, Bug Report
holi0317 created T5377: pinentry-qt dialog cannot be raised under Linux/Wayland.
Apr 1 2021, 12:11 PM · pinentry, Bug Report
werner added a project to T5370: Apple M1 and Symbol not found: __gcry_mpih_mul_1: arm.
Apr 1 2021, 11:07 AM · arm, MacOS, gnupg, Bug Report
werner created riscv.
Apr 1 2021, 11:07 AM
werner created ppc.
Apr 1 2021, 11:06 AM
werner created arm.
Apr 1 2021, 11:06 AM
werner created x86.
Apr 1 2021, 11:05 AM
werner triaged T5370: Apple M1 and Symbol not found: __gcry_mpih_mul_1 as Normal priority.
Apr 1 2021, 11:02 AM · arm, MacOS, gnupg, Bug Report
werner committed rGc727951a2440: card: New flag --reread for LIST. (authored by werner).
card: New flag --reread for LIST.
Apr 1 2021, 10:34 AM
werner committed rGe17d3f866057: scd:p15: New flag APP_LEARN_FLAG_REREAD. (authored by werner).
scd:p15: New flag APP_LEARN_FLAG_REREAD.
Apr 1 2021, 10:34 AM
werner committed rGff87f4e578f4: scd: New flag --reread for LEARN (authored by werner).
scd: New flag --reread for LEARN
Apr 1 2021, 10:34 AM
gniibe triaged T5375: getentropy usage is forbidden by Apple, but is now being forced by libgcrypt as Normal priority.
Apr 1 2021, 6:39 AM · MacOS, libgcrypt
gniibe added a comment to T5375: getentropy usage is forbidden by Apple, but is now being forced by libgcrypt.

IIUC... Could you please try this patch?

diff --git a/random/rndlinux.c b/random/rndlinux.c
index a7a78906..c20c5d4c 100644
--- a/random/rndlinux.c
+++ b/random/rndlinux.c
@@ -35,10 +35,13 @@
 #if defined(__APPLE__) && defined(__MACH__)
 #include <Availability.h>
 #ifdef __MAC_10_11
+#include <TargetConditionals.h>
+#if !defined(TARGET_OS_IPHONE) || TARGET_OS_IPHONE == 0
 extern int getentropy (void *buf, size_t buflen) __attribute__ ((weak_import));
 #define HAVE_GETENTROPY
 #endif
 #endif
+#endif
 #if defined(__linux__) || !defined(HAVE_GETENTROPY)
 #ifdef HAVE_SYSCALL
 # include <sys/syscall.h>
Apr 1 2021, 6:36 AM · MacOS, libgcrypt
gniibe claimed T5375: getentropy usage is forbidden by Apple, but is now being forced by libgcrypt.
Apr 1 2021, 5:58 AM · MacOS, libgcrypt
gniibe closed T5289: gen-lock-obj.sh uses echo -n from /bin/sh, which echos "-n" as Resolved.

Fixed in 1.42.

Apr 1 2021, 5:58 AM · MacOS, gpgrt, Bug Report

Mar 31 2021

werner committed rG1c16878efd0b: scd: Replace all assert macros by the log_assert macro. (authored by werner).
scd: Replace all assert macros by the log_assert macro.
Mar 31 2021, 7:17 PM
gouttegd closed T5360: scute: -fcommon needed when building with gcc-10 as Resolved.
Mar 31 2021, 6:53 PM · scute
cbiedl added a comment to T5360: scute: -fcommon needed when building with gcc-10.

Looks good to me: "make && make check" passes.

Mar 31 2021, 4:45 PM · scute
werner added a comment to T5328: On the (in)security of Elgamal in OpenPGP.

Our tentative plan is:

Mar 31 2021, 1:34 PM · side-channel, CVE, libgcrypt
aheinecke added a comment to T5212: Kleopatra: Check if run with elevated privileges and exit in that case.

This is a bit more complex for us. I have often noticed the pattern of Windows users that if something does not work as expected they click "Run as Administrator". When they do that once with our software our backend software gnupg is also started with elevated privileges, it might create lock files with elevated permissions it might create data files. For example a user then generates a new key, but already had some keys the public key will be placed in the existing keyring and the permissions will not be changed. But the new key files created will be created with elevated privileges. Then the user runs Kleopatra again as normal user and reports bugs because he cannot access his newly created key files.

Mar 31 2021, 1:26 PM · Feature Request, Restricted Project, kleopatra
ikloecker committed rLIBKLEOdcc4febe198d: Add tests verifying that common overrides are used for OpenPGP and S/MIME (authored by ikloecker).
Add tests verifying that common overrides are used for OpenPGP and S/MIME
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO499040ec8a25: Ignore protocol-specific overrides if common overrides are given (authored by ikloecker).
Ignore protocol-specific overrides if common overrides are given
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO023585a2fedc: Common overrides override protocol-specific resolution (authored by ikloecker).
Common overrides override protocol-specific resolution
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO792fcca0bff9: Add some tests for protocol-specific overrides (authored by ikloecker).
Add some tests for protocol-specific overrides
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO2bc9161b87de: Ignore S/MIME certificates given as OpenPGP overrides and vice versa (authored by ikloecker).
Ignore S/MIME certificates given as OpenPGP overrides and vice versa
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEOc02af1442114: Clean up header includes (authored by ikloecker).
Clean up header includes
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO44f1d27b179a: Add template specialization of qCompare for GpgME::UserID::Validity (authored by ikloecker).
Add template specialization of qCompare for GpgME::UserID::Validity
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO1461de5f5027: Add and update some test keys and certificates (authored by ikloecker).
Add and update some test keys and certificates
Mar 31 2021, 12:31 PM
ikloecker committed rLIBKLEO7520503c48db: Remove bogus doxygen group start marker (authored by ikloecker).
Remove bogus doxygen group start marker
Mar 31 2021, 12:31 PM
werner added a comment to rSab05fb64c143: build: Bump mimimum required Automake version..

Good catch, we need to update at several places.

Mar 31 2021, 9:19 AM
werner committed rG6ca540715139: build: Require automake 1.16.3 (authored by werner).
build: Require automake 1.16.3
Mar 31 2021, 9:19 AM
werner added a comment to T5360: scute: -fcommon needed when building with gcc-10.

FWIW, in GnuPG we use

Mar 31 2021, 9:10 AM · scute
Laurent Montel <montel@kde.org> committed rLIBKLEOa7f7089409c8: GIt_SILENT: using pragma once directly (authored by Laurent Montel <montel@kde.org>).
GIt_SILENT: using pragma once directly
Mar 31 2021, 7:16 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA7f416826d92b: GIt_SILENT: using pragma once directly (authored by Laurent Montel <montel@kde.org>).
GIt_SILENT: using pragma once directly
Mar 31 2021, 7:11 AM
gpgfan added a comment to T5212: Kleopatra: Check if run with elevated privileges and exit in that case.

It seems you still don’t get what was wrong about this issue. There is no opposition to separation of roles (which is, however, a rather complex topic that involves determining a threat model and only then defining what is right or even mentoring what one must) — this is about unconcerned communication, the very way error message is written, implying that the rest steps are widely known, could be guessed or found on your own. For example, I have 20+ years of experience as a beta tester and didn’t get what was required from me to do to make Kleopatra work again, hence the outbreak. To have an example of good communication, try Veracrypt. Bottom line: software is meant to be a solution, not just pieces of code displaying windows and messing with files.

Mar 31 2021, 5:14 AM · Feature Request, Restricted Project, kleopatra
gniibe added a comment to T5365: --with-libgpg-error-prefix doesn't affect gpgrt-config path detection.

I was wrong in my last comment. Escaping by another \ is needed.

Mar 31 2021, 4:09 AM · MacOS, gpgrt, Cross-Compiler, libgcrypt
gniibe committed rG8d6152a4cfd8: build: Update gpg-error.m4. (authored by gniibe).
build: Update gpg-error.m4.
Mar 31 2021, 3:38 AM
gniibe committed rCd2b3d046fc66: build: Update gpg-error.m4. (authored by gniibe).
build: Update gpg-error.m4.
Mar 31 2021, 3:35 AM
gniibe committed rE8536f82194ec: m4: Fix previous commit. (authored by gniibe).
m4: Fix previous commit.
Mar 31 2021, 3:33 AM
gniibe committed rE9b9c5dfa1020: m4: Support cross-compiling better. (authored by gniibe).
m4: Support cross-compiling better.
Mar 31 2021, 3:23 AM

Mar 30 2021

gouttegd changed the status of T5360: scute: -fcommon needed when building with gcc-10 from Open to Testing.

It should be fixed with 49ad2b0e05e3fcb8c8c2e23bb1c6063b390dee02, though I don’t have a gcc-10 to check. It does work with gcc-9.3 with -fno-common.

Mar 30 2021, 11:48 PM · scute
gouttegd committed rSab05fb64c143: build: Bump mimimum required Automake version. (authored by gouttegd).
build: Bump mimimum required Automake version.
Mar 30 2021, 11:43 PM
gouttegd committed rS49ad2b0e05e3: Do not declare global variable in header file. (authored by gouttegd).
Do not declare global variable in header file.
Mar 30 2021, 11:43 PM