Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Oct 14 2021

piec added a comment to T5657: dirmngr: libdns sends malformed dns requests.

OK, I'll gdb in there to see what happens. My domain is a classic pgp.domain.com

Oct 14 2021, 11:13 AM · Info Needed, Bug Report, dns, dirmngr
gniibe triaged T5617: fips: Check library integrity before running selftests as Normal priority.

OK, let us start discussion by applying the patch first.

Oct 14 2021, 9:53 AM · FIPS, libgcrypt, Bug Report
gniibe committed rCb496868dc37d: fips: Fix the previous commit. (authored by gniibe).
fips: Fix the previous commit.
Oct 14 2021, 9:45 AM
gniibe committed rCd2c68849d19b: fips: Verify library integrity before running selftests. (authored by Jakuje).
fips: Verify library integrity before running selftests.
Oct 14 2021, 9:38 AM
gniibe changed the status of T5645: RSA/DSA keygen modification for FIPS/ACVP testing from Open to Testing.
Oct 14 2021, 9:29 AM · libgcrypt, FIPS, Bug Report
gniibe added a project to T5645: RSA/DSA keygen modification for FIPS/ACVP testing: Restricted Project.
Oct 14 2021, 9:28 AM · libgcrypt, FIPS, Bug Report
gniibe added a comment to T5645: RSA/DSA keygen modification for FIPS/ACVP testing.

Applied the RSA part.

Oct 14 2021, 9:28 AM · libgcrypt, FIPS, Bug Report
gniibe committed rCbba63fab1a22: cipher: Allow generation of RSA keys > 2k (authored by Jakuje).
cipher: Allow generation of RSA keys > 2k
Oct 14 2021, 8:51 AM
gniibe moved T5550: Fix check_binary_integrity from Next to Ready for release on the FIPS board.
Oct 14 2021, 8:13 AM · FIPS, libgcrypt
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

Ah, other possible case is .. in hostname.

Oct 14 2021, 7:50 AM · Info Needed, Bug Report, dns, dirmngr
gniibe added a project to T5657: dirmngr: libdns sends malformed dns requests: Info Needed.
Oct 14 2021, 7:45 AM · Info Needed, Bug Report, dns, dirmngr
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

It's hard to investigate your problem, with no information of host for the query.
I mean, there is no case to replicate (for us).

Oct 14 2021, 7:44 AM · Info Needed, Bug Report, dns, dirmngr

Oct 13 2021

werner updated the task description for T5565: Release GnuPG 2.3.3.
Oct 13 2021, 8:23 PM · gnupg (gpg23), Release Info
werner committed rG773b8fbbe915: gpg: New option --override-compliance-check (authored by werner).
gpg: New option --override-compliance-check
Oct 13 2021, 5:39 PM
werner committed rGfb26e144adfd: gpg: New option --override-compliance-check (authored by werner).
gpg: New option --override-compliance-check
Oct 13 2021, 5:27 PM
ikloecker added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

No, the error is harmless. I guess it shouldn't be printed (except when debugging).

Oct 13 2021, 5:18 PM · gnupg (gpg23), MacOS, Bug Report
piec created T5657: dirmngr: libdns sends malformed dns requests.
Oct 13 2021, 5:10 PM · Info Needed, Bug Report, dns, dirmngr
ikloecker added a comment to T5655: In -de-vs mode it is not possible so verify sigs with Ed25519 release keys..

Wouldn't it be safer to use gpgv for verifying the signature than to add a code path to gpg to circumvent the hard de-vs compliance check?

Oct 13 2021, 5:05 PM · gnupg (gpg22), Restricted Project
werner added projects to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory: MacOS, gnupg (gpg23).

We now require a way to get the actual image of a process. For macOS the BSD method is used and we obviously need to find another way for macOS.

Oct 13 2021, 5:03 PM · gnupg (gpg23), MacOS, Bug Report
debohman created T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.
Oct 13 2021, 4:19 PM · gnupg (gpg23), MacOS, Bug Report
werner triaged T5655: In -de-vs mode it is not possible so verify sigs with Ed25519 release keys. as High priority.
Oct 13 2021, 3:01 PM · gnupg (gpg22), Restricted Project
Allen Winter <winter@kde.org> committed rLIBKLEOa8c200def21f: src/ui/newkeyapprovaldialog.cpp - add GpgME namespace to Protocol (authored by Allen Winter <winter@kde.org>).
src/ui/newkeyapprovaldialog.cpp - add GpgME namespace to Protocol
Oct 13 2021, 1:42 PM
ikloecker committed rWa20d40582579: Update kleopatra (authored by ikloecker).
Update kleopatra
Oct 13 2021, 11:15 AM
ikloecker committed rW90f732c8d190: Update Kleopatra to lastest master (authored by ikloecker).
Update Kleopatra to lastest master
Oct 13 2021, 11:15 AM
ikloecker committed rW46364a8de630: Updated gpgex to 1.0.8 (authored by ikloecker).
Updated gpgex to 1.0.8
Oct 13 2021, 11:15 AM
ikloecker committed rW9af90e758d66: Update pinentry gpgme kleo and libkleo (authored by ikloecker).
Update pinentry gpgme kleo and libkleo
Oct 13 2021, 11:15 AM
ikloecker committed rW71901db08edd: Update kde-l10n (authored by ikloecker).
Update kde-l10n
Oct 13 2021, 11:15 AM
gniibe committed rKf3b7dd416777: ASN.1 parser: Provide token table (no more %token-table). (authored by gniibe).
ASN.1 parser: Provide token table (no more %token-table).
Oct 13 2021, 11:03 AM
gniibe added a project to T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared: Restricted Project.
Oct 13 2021, 10:03 AM · toolchain, libksba, Bug Report
bernhard added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@rupor-github no problem for the delay. Thanks for explaining!

Oct 13 2021, 9:00 AM · Not A Bug, workaround, gnupg24, Windows, ssh
werner triaged T5621: No '%ProgramData%\GNU', '%ProgramData%\GNU\etc', '%ProgramData%\GNU\etc\gnupg' or '%ProgramData%\GNU\etc\gnupg\trusted-certs' or '%ProgramData%\GNU\etc\gnupg\extra-certs' get created after setup as Normal priority.
Oct 13 2021, 8:29 AM · Documentation, Not A Bug, gpg4win
werner committed rDa4f6a3a9040b: web: Release announcement for GnuPG 2.3.3 (authored by werner).
web: Release announcement for GnuPG 2.3.3
Oct 13 2021, 8:23 AM
gniibe committed rPd937ccfe4445: curses: Specify fg/bg when an extention of Ncurses is not available. (authored by gniibe).
curses: Specify fg/bg when an extention of Ncurses is not available.
Oct 13 2021, 4:06 AM
gniibe closed T4848: Usage of git in configure.ac for pinentry/gpa finds incorrect repositories as Resolved.
Oct 13 2021, 3:54 AM · pinentry, gpa, toolchain, Bug Report
gniibe closed T5628: v5: verify with signing sub key as Resolved.
Oct 13 2021, 3:53 AM · gnupg (gpg23)
gniibe closed T5630: With GCC 4.2 gnupg-2.3.2/kbx/backend-support.c cannot be compiled Mac OS X 10.4.11, "Tiger" as Resolved.

Fixed in 2.3.3.

Oct 13 2021, 3:50 AM · gnupg (gpg23), Bug Report
gniibe removed a project from T5628: v5: verify with signing sub key: Restricted Project.

Fixed in GnuPG 2.3.3.

Oct 13 2021, 3:48 AM · gnupg (gpg23)
gniibe closed T5609: keydb_get_keyblock failed with cv448 key as Resolved.

Fixed in GnuPG 2.3.3.

Oct 13 2021, 3:45 AM · Restricted Project, OpenPGP, gnupg (gpg23)
gniibe edited projects for T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly, added: Restricted Project; removed Support.
Oct 13 2021, 3:26 AM · pinentry
gniibe added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

Thank you for locating the bug!

Oct 13 2021, 3:25 AM · pinentry
gniibe added a comment to T5590: OpenPGP: Curve 448, modernize?.

I should have explained the context.
No, there is no discussion about this in the WG.

Oct 13 2021, 2:17 AM · rationale, gnupg, OpenPGP

Oct 12 2021

mooney added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

pinentry.patch713 BDownload

Oct 12 2021, 8:49 PM · pinentry
mooney added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

Hi gniibe!

Oct 12 2021, 8:46 PM · pinentry
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q4/000466.html on T5565: Release GnuPG 2.3.3.
Oct 12 2021, 7:44 PM · gnupg (gpg23), Release Info
gc100 closed T5634: Failure with: make DESTDIR=xxx install as Resolved.

Thank you again.

Oct 12 2021, 6:50 PM · Bug Report
werner committed rDdbefe28fc81d: swdb: Release GnuPG 2.3.3 (authored by werner).
swdb: Release GnuPG 2.3.3
Oct 12 2021, 6:20 PM
werner closed T5405: Release GnuPG 2.3.2 as Resolved.

The new bugs have been fixed in 2.3.3; see T5565.

Oct 12 2021, 6:17 PM · gnupg (gpg23), Release Info
werner closed T5565: Release GnuPG 2.3.3 as Resolved.
Oct 12 2021, 6:16 PM · gnupg (gpg23), Release Info
werner updated the task description for T5654: Release GnuPG 2.3.4.
Oct 12 2021, 6:15 PM · gnupg (gpg23), Release Info
swimmerm added a comment to T5626: 'GPGCONF --list-dirs' command option on-screen displayed results show '%3a' unexpected and unneeded characters in each line displaying a C: drive path instead of simpler expected '...:C:\...' sub-strings with only valid ':' ('colon') characters present.

Just adding this note because a next step I'm also evaluating in my current T5593 configuration status it to temporarily create a new Gpg4win 3.1.16 hybrid configuration by also adding latest GnuPG v2.2.31 to see if all issues I reported here are still present (which is also quite probable).
Also because of T5593 it would just be quite interesting to see if GnuPG v2.2.31 too might experience same T5593 path related error.

Oct 12 2021, 6:13 PM · gnupg (gpg22), UI, Not A Bug, gpg4win
werner committed rGd7d26eff851a: Post release updates (authored by werner).
Post release updates
Oct 12 2021, 6:11 PM
werner committed rG9470d0338364: Release 2.3.3 (authored by werner).
Release 2.3.3
Oct 12 2021, 6:11 PM
werner committed rG10f52f9bf3bc: speedo: Put the keyboxd into the Windows installer (authored by werner).
speedo: Put the keyboxd into the Windows installer
Oct 12 2021, 6:11 PM
werner committed rGbcd5feec0e91: tests: New way to make use of gpgconf.ctl in tests. (authored by werner).
tests: New way to make use of gpgconf.ctl in tests.
Oct 12 2021, 6:11 PM
werner triaged T5654: Release GnuPG 2.3.4 as Low priority.
Oct 12 2021, 6:09 PM · gnupg (gpg23), Release Info
swimmerm added a project to T5626: 'GPGCONF --list-dirs' command option on-screen displayed results show '%3a' unexpected and unneeded characters in each line displaying a C: drive path instead of simpler expected '...:C:\...' sub-strings with only valid ':' ('colon') characters present: UI.
Oct 12 2021, 6:08 PM · gnupg (gpg22), UI, Not A Bug, gpg4win
swimmerm added a project to T5621: No '%ProgramData%\GNU', '%ProgramData%\GNU\etc', '%ProgramData%\GNU\etc\gnupg' or '%ProgramData%\GNU\etc\gnupg\trusted-certs' or '%ProgramData%\GNU\etc\gnupg\extra-certs' get created after setup: Documentation.
Oct 12 2021, 5:22 PM · Documentation, Not A Bug, gpg4win
swimmerm reopened T5621: No '%ProgramData%\GNU', '%ProgramData%\GNU\etc', '%ProgramData%\GNU\etc\gnupg' or '%ProgramData%\GNU\etc\gnupg\trusted-certs' or '%ProgramData%\GNU\etc\gnupg\extra-certs' get created after setup as "Open".

Hi Werner,

Oct 12 2021, 5:20 PM · Documentation, Not A Bug, gpg4win
werner triaged T5653: de-vs and GnuPG 2.3.3 error as Normal priority.
Oct 12 2021, 4:56 PM · Restricted Project, gnupg (gpg23), kleopatra
rupor-github added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@bernhard Sorry for the delayed answer, was on sabbatical.

Oct 12 2021, 4:56 PM · Not A Bug, workaround, gnupg24, Windows, ssh
werner triaged T5652: Show the GnuPG version in Kleopatra as Normal priority.
Oct 12 2021, 4:44 PM · Restricted Project, gpg4win, Feature Request, kleopatra
gc100 added a comment to T5634: Failure with: make DESTDIR=xxx install .

Excellent thank you.

Oct 12 2021, 2:49 PM · Bug Report
werner added a comment to T5634: Failure with: make DESTDIR=xxx install .

I won't anymore follow the path of first doing a test install. That is way to hairy in respect to "make distcheck". Change is already in my working directory.

Oct 12 2021, 2:38 PM · Bug Report
werner added a comment to T5590: OpenPGP: Curve 448, modernize?.

Is that really required? Should we wait what the conlusion of the WG will be?

Oct 12 2021, 2:35 PM · rationale, gnupg, OpenPGP
werner added a comment to T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared.

Bison used to be the de-facto standard yacc ;-)

Oct 12 2021, 2:33 PM · toolchain, libksba, Bug Report
gniibe added a comment to T5590: OpenPGP: Curve 448, modernize?.

I'm reading RFC5297, which says:

SIV can be used as a drop-in replacement for any specification that uses [RFC3394] or [RFC3217], including the aforementioned use. It is a more general purpose solution as it allows for associated data to be specified.

Oct 12 2021, 1:35 PM · rationale, gnupg, OpenPGP
gniibe claimed T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared.

I think that a simple way is defining a table (string -> token) by ourselves in yylex, not enabling %token-table.
(Then, we don't need to depend on the feature of string with %token, which is not supported by POSIX yacc.)

Oct 12 2021, 9:50 AM · toolchain, libksba, Bug Report
werner added a comment to T5644: Heuristic for default reader detection.

On my new Windows 10 laptop I see a "Windows Hello for Business 1". Thus put everything with "Windows Hello" at the end of the list or skip unless a reader-port is set. IIRC there are device with "virtual" or "Virtual" in their name, they don't make sense for us either. I would also put devices with "SCM" or "Identiv" to the top of the list. In particular the substrings "SPR532" seems to identify the Identiv SPR332 which is what we use here and actualay a suggested reader for GnUPG VS-Desktop.

Oct 12 2021, 8:44 AM · Restricted Project, Feature Request, gnupg (gpg22)
gniibe added a comment to T5550: Fix check_binary_integrity.

Now configure with
--enable-hmac-binary-check="I know engineers. They love to change things." works.

Oct 12 2021, 8:25 AM · FIPS, libgcrypt
gniibe added a project to T5550: Fix check_binary_integrity: Restricted Project.
Oct 12 2021, 8:24 AM · FIPS, libgcrypt
gniibe committed rC10e02b90f65f: build: Support specifying HMAC key by --enable-hmac-binary-check. (authored by gniibe).
build: Support specifying HMAC key by --enable-hmac-binary-check.
Oct 12 2021, 8:24 AM
gniibe added a comment to T5644: Heuristic for default reader detection.

Please tell me reader names to skip.

Oct 12 2021, 7:23 AM · Restricted Project, Feature Request, gnupg (gpg22)

Oct 11 2021

smlx added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

Note that I'm referring to file based keys, not card based.

Oct 11 2021, 7:52 PM · gnupg24, Bug Report
smlx reopened T5555: Cannot add existing ECDSA key as a signing subkey as "Open".

I tested this on 2.3, and it doesn't seem to be fixed. When adding an existing ECDSA subkey I don't get the option to choose whether to make it a signing or encrypting subkey. Instead it only allows me to choose an encrypting subkey.

Oct 11 2021, 7:45 PM · gnupg24, Bug Report
Laurent Montel <montel@kde.org> committed rLIBKLEOd6fbbb96d3ea: USe std::unique_ptr here (authored by Laurent Montel <montel@kde.org>).
USe std::unique_ptr here
Oct 11 2021, 7:26 PM
werner raised the priority of T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared from Normal to High.

Thanks for your findings. I recall that I read this in the announcement and cursed about this new tendency in GNU to break long standing APIs.

Oct 11 2021, 5:49 PM · toolchain, libksba, Bug Report
werner renamed T5649: Issue better error message for invalid OpenPGP RSA keys from GnuPG randomly generates invalid RSA signatures if secret key has P > Q. to Issue better error message for invalid OpenPGP RSA keys.
Oct 11 2021, 5:45 PM · gnupg24, OpenPGP, Feature Request
werner triaged T5649: Issue better error message for invalid OpenPGP RSA keys as Normal priority.

OpenPGP requires the P < U property and gpg does also. In some parts of the GnuPG we re-calculate the CRT parameters but not in these code paths. Right, a better error message would be appropriate. I'll turn this into a feature request.

Oct 11 2021, 5:45 PM · gnupg24, OpenPGP, Feature Request
werner triaged T5650: Check problems with gpgconf and global config files as High priority.
Oct 11 2021, 5:39 PM · Restricted Project, gnupg (gpg22)
ikloecker committed rKLEOPATRA7479e2713e32: Re-add possibility to set RELEASE_SERVICE_VERSION when running cmake (authored by ikloecker).
Re-add possibility to set RELEASE_SERVICE_VERSION when running cmake
Oct 11 2021, 4:47 PM
onickolay created T5649: Issue better error message for invalid OpenPGP RSA keys.
Oct 11 2021, 12:52 PM · gnupg24, OpenPGP, Feature Request
onickolay added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

Fix for this issue landed RNP master, and will be included to the RNP v0.16.0 release.
Within fix:

  • new keys will be generated with correctly tweaked bits
  • using secret key with non-tweaked bits would issue a warning
  • CLI command --edit-key [--check-cv25519-bits | --fix-cv25519-bits] added, allowing to fix older key
Oct 11 2021, 12:35 PM · Support, gnupg, OpenPGP
gniibe moved T5645: RSA/DSA keygen modification for FIPS/ACVP testing from Backlog to Next on the FIPS board.
Oct 11 2021, 11:06 AM · libgcrypt, FIPS, Bug Report
gniibe claimed T5645: RSA/DSA keygen modification for FIPS/ACVP testing.
Oct 11 2021, 10:57 AM · libgcrypt, FIPS, Bug Report
gniibe added a comment to T5550: Fix check_binary_integrity.

I push a change: rC070935965763: build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check..

Oct 11 2021, 10:34 AM · FIPS, libgcrypt
gniibe committed rC070935965763: build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check. (authored by gniibe).
build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check.
Oct 11 2021, 10:32 AM
adrianvovk added a comment to T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared.

Looks like yytoknum was removed from Bison in version 3.8: http://git.savannah.gnu.org/cgit/bison.git/commit/?id=1efe31185ff6b0bc22ff527098971bedf1ace5f4

Oct 11 2021, 8:50 AM · toolchain, libksba, Bug Report
werner closed T5648: UPLOAD Keyserver / Kleopatra Gpg4win-3.1.16 Kleopatra as Resolved.

Please ask on a mailing list etc. This is a bug tracker and pnly very few people are reading your report.

Oct 11 2021, 8:45 AM · Support
werner closed T5647: UPLOAD Keyserver as Invalid.
Oct 11 2021, 8:42 AM
werner committed rGcf29c7dec0e8: Do not build keyxboxd if sqlite has been disabled. (authored by werner).
Do not build keyxboxd if sqlite has been disabled.
Oct 11 2021, 7:54 AM
werner committed rG257632f58d92: build: Let the release target also sign the wixlib. (authored by werner).
build: Let the release target also sign the wixlib.
Oct 11 2021, 7:54 AM
gniibe moved T5576: New set of API for public key cryptography from Next to Backlog on the FIPS board.
Oct 11 2021, 7:19 AM · libgcrypt, Feature Request
gniibe claimed T5644: Heuristic for default reader detection.
Oct 11 2021, 6:47 AM · Restricted Project, Feature Request, gnupg (gpg22)

Oct 10 2021

alois added a comment to T5648: UPLOAD Keyserver / Kleopatra Gpg4win-3.1.16 Kleopatra.

Danke -

Oct 10 2021, 7:47 PM · Support
alois created T5648: UPLOAD Keyserver / Kleopatra Gpg4win-3.1.16 Kleopatra.
Oct 10 2021, 7:46 PM · Support
alois created T5647: UPLOAD Keyserver.
Oct 10 2021, 7:38 PM
werner closed T5632: gpg-agent 2.3.2 conflicts with pcscd as Resolved.
Oct 10 2021, 7:04 PM · Not A Bug, yubikey, scd, gnupg (gpg23)
werner closed T3412: gpg-agent manual page says to always add GPG_TTY to `.bashrc` as Resolved.
Oct 10 2021, 7:02 PM · Not A Bug, gnupg
werner closed T5539: Key generation on OpenPGP Version 3.4 card fails as Resolved.

As long as we can't replicate this, it does not make sense to keep this bug open. Please re-open it if you run into it again in a replicatable way.

Oct 10 2021, 6:59 PM · can't replicate, OpenPGP, scd, Bug Report, gpg4win
werner closed T5613: GpgEX does not use CSIDL_LOCAL_APPDATA as Resolved.

Fixed in gpgex 1.0.8

Oct 10 2021, 6:53 PM · Windows, kleopatra, gpgex
First
Prev
Next