Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Apr 8 2022

Jakuje added a comment to T5835: libgcrypt: More robust/portable integrity check.

I have one follow-up is that the readelf chokes on the integrity note for some reason:

$ readelf -n /usr/lib64/libgcrypt.so.20.4.1
Displaying notes found in: .note.fdo.integrity
  Owner                Data size 	Description
  FDO                  0x00000020	Unknown note type: (0x8e2afeca)

I assume this is just because the readelf does not know this type. I see this type was initially proposed by Daiki, but I did not find any other sources for this magic number so before filling bugs for readelf, do we have some doc why the 0xcafe2a8e is used?

Apr 8 2022, 9:33 PM · Bug Report, libgcrypt, FIPS
ikloecker committed rKLEOPATRA9de08db46382: Change text of button to add a new user ID (authored by ikloecker).
Change text of button to add a new user ID
Apr 8 2022, 5:16 PM
ikloecker committed rKLEOPATRA7400a08c3328: Add UI markers and fix capitalization of button texts (authored by ikloecker).
Add UI markers and fix capitalization of button texts
Apr 8 2022, 5:16 PM
ikloecker committed rKLEOPATRA5c51fa73d33a: Modernize and clean up code (authored by ikloecker).
Modernize and clean up code
Apr 8 2022, 5:16 PM
ikloecker committed rKLEOPATRA762f28274f39: Unify spelling of "user ID" (authored by ikloecker).
Unify spelling of "user ID"
Apr 8 2022, 5:16 PM
ikloecker committed rKLEOPATRAacfab27b0746: Use modern quick-adduid instead of "adduid" edit-key command (authored by ikloecker).
Use modern quick-adduid instead of "adduid" edit-key command
Apr 8 2022, 5:16 PM
ikloecker committed rKLEOPATRA301f02e601a0: Impose less strict restrictions on the name component of a new user id (authored by ikloecker).
Impose less strict restrictions on the name component of a new user id
Apr 8 2022, 5:16 PM
ikloecker created T5927: gpg: quick-gen-key and quick-add-uid require --check-trustdb to make trust in user ids "ultimate".
Apr 8 2022, 4:50 PM · Feature Request, gnupg, Bug Report
JoeDoe1000 added a comment to T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).

gpgol.txt221 KBDownload

gpgol.txt uploaded

Apr 8 2022, 4:19 PM · gpgol, Bug Report, gpg4win
werner committed rG198fad9fc1f3: doc: Typo fix in comment (authored by werner).
doc: Typo fix in comment
Apr 8 2022, 4:09 PM
werner committed rG8945f1aedfd7: gpg: Remove restrictions for the name part of a user-id. (authored by werner).
gpg: Remove restrictions for the name part of a user-id.
Apr 8 2022, 4:09 PM
werner committed rGca3e46a587f6: tpm: Fix recently introduced syntax error (authored by werner).
tpm: Fix recently introduced syntax error
Apr 8 2022, 4:09 PM
aheinecke committed rW724f8859b178: MSI: Add optional install mode (authored by aheinecke).
MSI: Add optional install mode
Apr 8 2022, 3:05 PM
aheinecke committed rW7f316adeacd0: MSI: Filter out most noisy ICE warnings (authored by aheinecke).
MSI: Filter out most noisy ICE warnings
Apr 8 2022, 3:05 PM
aheinecke committed rW7e7b2458f615: Appimage: Use Qt Harfbuzz (authored by aheinecke).
Appimage: Use Qt Harfbuzz
Apr 8 2022, 3:05 PM
aheinecke added a comment to T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).

Have you selected an Output file in a location where you can write files with your permissions?

Apr 8 2022, 2:56 PM · gpgol, Bug Report, gpg4win
JoeDoe1000 added a comment to T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).

I had already tried both, to deselct all other add-ins and to select all possible add-ins.
No change of the behaviour.

Apr 8 2022, 2:55 PM · gpgol, Bug Report, gpg4win
aheinecke triaged T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted) as Normal priority.

Could you please create a log file using the debug settings with Outlook Object Model debugging enabled?

Apr 8 2022, 2:27 PM · gpgol, Bug Report, gpg4win
Laurent Montel <montel@kde.org> committed rLIBKLEObfbd0b37ea11: GIT_SILENT: prepare 5.20.0 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 5.20.0
Apr 8 2022, 1:22 PM
aheinecke raised the priority of T4087: Kleopatra: Revoke User-ID from Wishlist to Normal.

We should give this higher priority as users need to change their e-mail through kleopatra. A customer also wishes this.

Apr 8 2022, 1:16 PM · Restricted Project, Restricted Project, gpg4win, kleopatra, Feature Request
ikloecker committed rLIBKLEO104c6c391c3f: Bump library version (authored by ikloecker).
Bump library version
Apr 8 2022, 12:53 PM
ikloecker committed rLIBKLEOdfe52921c849: Make the comment argument optional (authored by ikloecker).
Make the comment argument optional
Apr 8 2022, 12:53 PM
ikloecker committed rKLEOPATRA69a36d040fcd: Do not let the validators be fooled by leading or trailing whitespace (authored by ikloecker).
Do not let the validators be fooled by leading or trailing whitespace
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRAaedb5797b39e: Add input validation to the Add User ID dialog (authored by ikloecker).
Add input validation to the Add User ID dialog
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRAdf5f8bb4b082: Add class wrapping a text input used in a form-like dialog (authored by ikloecker).
Add class wrapping a text input used in a form-like dialog
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRA93e93df6f081: GnuPG wants at least 5 characters for the name (authored by ikloecker).
GnuPG wants at least 5 characters for the name
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRA4e7c53815587: Share duplicated accessibility-related local helpers (authored by ikloecker).
Share duplicated accessibility-related local helpers
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRA1a2b258b2051: Port validators to QRegularExpression (authored by ikloecker).
Port validators to QRegularExpression
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRAaddbfad36724: Optionally make the validators accept empty values (authored by ikloecker).
Optionally make the validators accept empty values
Apr 8 2022, 12:47 PM
ikloecker committed rKLEOPATRA29a4359fe359: Simplify the Add User ID dialog (authored by ikloecker).
Simplify the Add User ID dialog
Apr 8 2022, 12:47 PM
JoeDoe1000 created T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).
Apr 8 2022, 12:32 PM · gpgol, Bug Report, gpg4win
gniibe committed rA84ae2b1d27ce: Add assuan_sock_accept function. (authored by gniibe).
Add assuan_sock_accept function.
Apr 8 2022, 4:39 AM
gniibe updated the task description for T5925: libassuan: Add assuan_sock_accept function to the API.
Apr 8 2022, 4:30 AM · Feature Request, libassuan
gniibe triaged T5925: libassuan: Add assuan_sock_accept function to the API as Wishlist priority.
Apr 8 2022, 4:24 AM · Feature Request, libassuan
gniibe added a comment to T5924: libassuan: uses of socklen_t in assuan.h are inconsistent.

I think that good approach as of 2022 is:

Apr 8 2022, 3:55 AM · libassuan
gniibe triaged T5924: libassuan: uses of socklen_t in assuan.h are inconsistent as Wishlist priority.
Apr 8 2022, 3:38 AM · libassuan
gniibe committed rCe5260b6b9f38: build: Remove configure checking for socklen_t. (authored by gniibe).
build: Remove configure checking for socklen_t.
Apr 8 2022, 3:18 AM
gniibe committed rMb10791b055f0: doc: Remove explanation about AM_PATH_GPGME_PTH for GNU Pth. (authored by gniibe).
doc: Remove explanation about AM_PATH_GPGME_PTH for GNU Pth.
Apr 8 2022, 2:21 AM
gniibe closed T5699: libgpg-error 1.43 fails t-lock-single-thread test on x86_64 with musl and macOS as Resolved.

libgpg-error 1.45 is out with the fix.

Apr 8 2022, 2:10 AM · gpgrt, Bug Report

Apr 7 2022

werner added a comment to T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).

Updated the copy on our mirror as welll as the gpg4win and swdb packages files.

Apr 7 2022, 11:45 AM · gnupg (gpg22), CVE, gpg4win
werner committed rWa7d49129a241: packages: Update zlib to 1.2.12 (authored by werner).
packages: Update zlib to 1.2.12
Apr 7 2022, 11:42 AM
werner committed rDf7cdcbd7057e: swdb: Updated mirrored zlib to 1.2.12 (authored by werner).
swdb: Updated mirrored zlib to 1.2.12
Apr 7 2022, 11:39 AM
werner committed rW35bb72337710: packages: Update gpgrt and ntbtls (authored by werner).
packages: Update gpgrt and ntbtls
Apr 7 2022, 11:37 AM
werner committed rT660c2f89dc38: Post release updates (authored by werner).
Post release updates
Apr 7 2022, 11:21 AM
werner committed rT802494e014c8: Release 0.3.1 (authored by werner).
Release 0.3.1
Apr 7 2022, 11:21 AM
werner committed rDa727cc944ce8: swdb: gpgrt 1.45 and ntbtls 0.3.1 (authored by werner).
swdb: gpgrt 1.45 and ntbtls 0.3.1
Apr 7 2022, 11:08 AM
werner closed T5802: Release libgpg-error 1.45 as Resolved.
Apr 7 2022, 10:52 AM · Release Info, gpgrt
werner reopened T5923: Release Libgpg-error 1.46 as "Open".
Apr 7 2022, 10:51 AM · Release Info, gpgrt
werner closed T5923: Release Libgpg-error 1.46 as Resolved.
Apr 7 2022, 10:49 AM · Release Info, gpgrt
werner committed rE038d34656f5b: Post release updates (authored by werner).
Post release updates
Apr 7 2022, 10:46 AM
werner committed rEff3b2ea8858a: Merge branch 'master' of ssh+git://playfair.gnupg.org/git/libgpg-error (authored by werner).
Merge branch 'master' of ssh+git://playfair.gnupg.org/git/libgpg-error
Apr 7 2022, 10:46 AM
werner committed rEdbac537e5e86: Release 1.45 (authored by werner).
Release 1.45
Apr 7 2022, 10:46 AM
werner triaged T5923: Release Libgpg-error 1.46 as Low priority.
Apr 7 2022, 10:39 AM · Release Info, gpgrt
werner triaged T5919: libgcrypt tests/basic.c and tests/keygen.c occasionally fail with "error generating RSA key: Number is not prime" as Normal priority.

The set_bit is obvious but we should cross check with the specs. In the non-fips mode we also try w/o a limit.

Apr 7 2022, 10:04 AM · backport, FIPS, libgcrypt, Bug Report
gniibe committed rG90000819641c: agent: Fix for possible support of Cygwin OpenSSH. (authored by gniibe).
agent: Fix for possible support of Cygwin OpenSSH.
Apr 7 2022, 9:44 AM
gniibe added projects to T5919: libgcrypt tests/basic.c and tests/keygen.c occasionally fail with "error generating RSA key: Number is not prime": libgcrypt, FIPS.

I think that it is OK to loop forever until we find a prime.

Apr 7 2022, 9:19 AM · backport, FIPS, libgcrypt, Bug Report
gniibe committed rE74e6afcc36b2: logging: Fix the previous commit. (authored by gniibe).
logging: Fix the previous commit.
Apr 7 2022, 9:00 AM
gniibe committed rE5ef201c10b1c: logging: Fix gpgrt_log_get_fd for file. (authored by gniibe).
logging: Fix gpgrt_log_get_fd for file.
Apr 7 2022, 9:00 AM
gniibe added projects to T5921: No sharing of log_fd between child process: gnupg (gpg23), Bug Report.
Apr 7 2022, 8:39 AM · Bug Report, gnupg (gpg23)
gniibe added projects to T5922: libgpg-error: gpgrt_log_get_fd always returns -1 even if it's not tcp/socket.: gpgrt, Bug Report.
Apr 7 2022, 8:38 AM · Bug Report, gpgrt
gniibe triaged T5922: libgpg-error: gpgrt_log_get_fd always returns -1 even if it's not tcp/socket. as Normal priority.
Apr 7 2022, 8:38 AM · Bug Report, gpgrt
gniibe updated the task description for T5921: No sharing of log_fd between child process.
Apr 7 2022, 6:33 AM · Bug Report, gnupg (gpg23)
gniibe triaged T5921: No sharing of log_fd between child process as Normal priority.
Apr 7 2022, 6:25 AM · Bug Report, gnupg (gpg23)
gniibe updated the task description for T5920: libassuan: Don't inherit handles for Windows.
Apr 7 2022, 3:58 AM · libassuan
gniibe triaged T5920: libassuan: Don't inherit handles for Windows as Wishlist priority.
Apr 7 2022, 3:57 AM · libassuan

Apr 6 2022

jukivili committed rCa7c3e0b9b0ff: doc: Fix missing ARM hardware features (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
doc: Fix missing ARM hardware features
Apr 6 2022, 9:34 PM
jukivili committed rC9a63cfd61753: chacha20: add AVX512 implementation (authored by jukivili).
chacha20: add AVX512 implementation
Apr 6 2022, 9:34 PM
jukivili committed rC972aae9fc337: build: Fix for arm crypto support (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
build: Fix for arm crypto support
Apr 6 2022, 9:34 PM
jukivili committed rCcd3ed4977076: poly1305: add AVX512 implementation (authored by jukivili).
poly1305: add AVX512 implementation
Apr 6 2022, 9:34 PM
werner committed rDb6d49e1b67e5: verein: fix links. (authored by werner).
verein: fix links.
Apr 6 2022, 9:18 AM
gniibe committed rAc93eb901e58d: w32: Store a flag if it's socket or not in Assuan CTX. (authored by gniibe).
w32: Store a flag if it's socket or not in Assuan CTX.
Apr 6 2022, 7:06 AM
gniibe committed rGb47a23f5fac5: w32: Exclude tests with HOME. (authored by gniibe).
w32: Exclude tests with HOME.
Apr 6 2022, 6:33 AM
gniibe committed rG39d478f5ba5d: w32: Fix for make check. (authored by gniibe).
w32: Fix for make check.
Apr 6 2022, 4:33 AM

Apr 5 2022

Heiko Becker <heiko.becker@kde.org> committed rKLEOPATRA32479a04d29b: GIT_SILENT Upgrade release service version to 22.03.90. (authored by Heiko Becker <heiko.becker@kde.org>).
GIT_SILENT Upgrade release service version to 22.03.90.
Apr 5 2022, 9:43 PM
ikloecker committed rKLEOPATRAca1f44eb5f96: Require GpgME version 1.16.0 (authored by ikloecker).
Require GpgME version 1.16.0
Apr 5 2022, 7:09 PM
ikloecker committed rKLEOPATRA301f2f3618e7: Require GpgME version 1.16.0 (authored by ikloecker).
Require GpgME version 1.16.0
Apr 5 2022, 7:01 PM
ikloecker committed rKLEOPATRA6bd834193027: Simplify the Add User ID dialog (authored by ikloecker).
Simplify the Add User ID dialog
Apr 5 2022, 7:01 PM
ikloecker committed rKLEOPATRA26fe7b5bf16d: Remove the simple Add Email dialog (authored by ikloecker).
Remove the simple Add Email dialog
Apr 5 2022, 7:01 PM
ikloecker committed rKLEOPATRA7aae07cb961f: Prevent empty lines in the revocation comment (authored by ikloecker).
Prevent empty lines in the revocation comment
Apr 5 2022, 2:09 PM
gniibe added a comment to T5919: libgcrypt tests/basic.c and tests/keygen.c occasionally fail with "error generating RSA key: Number is not prime".

I don't know the exact procedure by FIPS, but just setting the least significant bit in the generation (after _gcry_mpi_randomize) can reduce the probability by half.

Apr 5 2022, 1:05 PM · backport, FIPS, libgcrypt, Bug Report
ikloecker committed rKLEOPATRA228cccad5cbd: GIT_SILENT: Make gcc happy (authored by ikloecker).
GIT_SILENT: Make gcc happy
Apr 5 2022, 12:34 PM
werner lowered the priority of T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) from Unbreak Now! to High.

The fix is from 2018 but was not picked up widely; see
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531

Apr 5 2022, 12:14 PM · gnupg (gpg22), CVE, gpg4win
neverpanic created T5919: libgcrypt tests/basic.c and tests/keygen.c occasionally fail with "error generating RSA key: Number is not prime".
Apr 5 2022, 11:54 AM · backport, FIPS, libgcrypt, Bug Report
bernhard added a comment to T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).

(Werner just told me that I was mistaken and he needs to take a look. There was a mixup because of the 2018 CVE number.)

Apr 5 2022, 11:52 AM · gnupg (gpg22), CVE, gpg4win
werner added a comment to T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).

Sorry, that was a misunderstanding. My fault.

Apr 5 2022, 11:43 AM · gnupg (gpg22), CVE, gpg4win
werner reopened T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) as "Open".
Apr 5 2022, 11:39 AM · gnupg (gpg22), CVE, gpg4win
ikloecker moved T5916: Kleopatra: Change Add E-Mail to add name and E-Mail and remove advanced mode from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Apr 5 2022, 10:51 AM · Restricted Project, kleopatra
ikloecker changed the status of T5859: Kleopatra: Revoke own key from Open to Testing.
Apr 5 2022, 10:50 AM · kleopatra, Restricted Project
ikloecker moved T5859: Kleopatra: Revoke own key from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Apr 5 2022, 10:50 AM · kleopatra, Restricted Project
ikloecker added a comment to T5859: Kleopatra: Revoke own key.

"Revoke certificate" is now available in the "Certificates" menu and the context menu in the certificate list. Don't confuse it with the "Revoke certification" entry. ;-) Maybe we should reword "Revoke certification" even if for me it says exactly what it does.

Apr 5 2022, 10:49 AM · kleopatra, Restricted Project
ikloecker committed rKLEOPATRAbbb8e56d8f7b: Do not show success message if operation was canceled (authored by ikloecker).
Do not show success message if operation was canceled
Apr 5 2022, 10:43 AM
ikloecker committed rKLEOPATRAfeb5db2dba27: Allow revocation of own OpenPGP keys (authored by ikloecker).
Allow revocation of own OpenPGP keys
Apr 5 2022, 10:43 AM
gniibe committed rA5b77d39672ac: Fix API break. (authored by gniibe).
Fix API break.
Apr 5 2022, 10:35 AM
Jakuje created T5918: Disable RSA PKCS #1.5 encryption in FIPS mode.
Apr 5 2022, 10:31 AM · backport, libgcrypt, FIPS, Bug Report
gniibe committed rC5f357784662a: doc: Update yat2m from libgpg-error. (authored by gniibe).
doc: Update yat2m from libgpg-error.
Apr 5 2022, 10:19 AM
ikloecker committed rM102024f7e656: qt,doc: Fix typo and grammar in API documentation (authored by ikloecker).
qt,doc: Fix typo and grammar in API documentation
Apr 5 2022, 10:18 AM
ikloecker committed rMdb532eca8ebd: cpp: Return actual error if revocation fails (authored by ikloecker).
cpp: Return actual error if revocation fails
Apr 5 2022, 10:18 AM
ikloecker committed rM28cdbfdccb34: cpp: Handle canceling of an edit operation (authored by ikloecker).
cpp: Handle canceling of an edit operation
Apr 5 2022, 10:18 AM
ikloecker committed rM4beb6f419954: cpp: Do not export symbols of the Private class (authored by ikloecker).
cpp: Do not export symbols of the Private class
Apr 5 2022, 10:18 AM
ikloecker committed rMc965b45bcd91: cpp: Add internal utility function for splitting strings (authored by ikloecker).
cpp: Add internal utility function for splitting strings
Apr 5 2022, 10:18 AM
First
Prev
Next