Page MenuHome GnuPG
Feed All Stories

Jun 24 2022

gniibe added a comment to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.

The change allows internal use of HMAC with shorter key.

Jun 24 2022, 2:59 AM · backport, Testing, libgcrypt, FIPS
gniibe committed rC58c92098d053: hmac,hkdf: Allow use of shorter salt for HKDF. (authored by gniibe).
hmac,hkdf: Allow use of shorter salt for HKDF.
Jun 24 2022, 2:03 AM
gniibe added a comment to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.

Considering again, I concluded the patch above should be applied.
The use of SALT in HKDF may be not secret and there are valid use cases with no last or shorter salt. It's different to the use case of HMAC, where KEY is secret.

Jun 24 2022, 1:59 AM · backport, Testing, libgcrypt, FIPS
gniibe committed rG9e2307ddf0c2: agent: Flush before calling ftruncate. (authored by gniibe).
agent: Flush before calling ftruncate.
Jun 24 2022, 1:51 AM
Saklad5 updated the task description for T6040: Allow embedding preferred keyserver URL in signatures.
Jun 24 2022, 1:38 AM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

I don't see why this is a child task of T6020: the features are similar, but they don't actually impact each other in any way.

Jun 24 2022, 1:38 AM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 renamed T6040: Allow embedding preferred keyserver URL in signatures from Allow embedding default keyserver URL in signatures to Allow embedding preferred keyserver URL in signatures.
Jun 24 2022, 1:37 AM · gnupg (gpg23), Feature Request, Keyserver

Jun 23 2022

ikloecker added a task to D549: qt: make the pin entry dialog float again: T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0).
Jun 23 2022, 1:49 PM
ikloecker added a revision to T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0): D549: qt: make the pin entry dialog float again.
Jun 23 2022, 1:49 PM · Restricted Project, pinentry, Bug Report
ikloecker added a comment to D549: qt: make the pin entry dialog float again.

This patch can be closed, but I seem to lack the permissions to do so.

Jun 23 2022, 1:48 PM
gspr updated the task description for T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0).
Jun 23 2022, 1:47 PM · Restricted Project, pinentry, Bug Report
gspr updated the task description for T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0).
Jun 23 2022, 1:47 PM · Restricted Project, pinentry, Bug Report
ikloecker removed a reviewer for D549: qt: make the pin entry dialog float again: werner.
Jun 23 2022, 1:44 PM
ikloecker accepted D549: qt: make the pin entry dialog float again.

The patch has been applied as part of rPdd9f76525823: qt: Create all widgets in tab order.

Jun 23 2022, 1:43 PM
ikloecker updated the task description for T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0).
Jun 23 2022, 1:39 PM · Restricted Project, pinentry, Bug Report
werner added a comment to T6035: Portability issue: ftruncate.

ACK. P[ease add it also to 2.2.

Jun 23 2022, 10:50 AM · backport, gpgagent, gnupg
werner closed T6015: Default OpenPGP keyserver as Resolved.
Jun 23 2022, 10:48 AM · Support, gpg4win
werner triaged T6020: Make %-expandos available for --default-keyserver-url as Normal priority.
Jun 23 2022, 10:48 AM · Feature Request, gnupg (gpg23), Keyserver
werner added a subtask for T6020: Make %-expandos available for --default-keyserver-url: T6040: Allow embedding preferred keyserver URL in signatures.
Jun 23 2022, 10:47 AM · Feature Request, gnupg (gpg23), Keyserver
werner added a parent task for T6040: Allow embedding preferred keyserver URL in signatures: T6020: Make %-expandos available for --default-keyserver-url.
Jun 23 2022, 10:47 AM · gnupg (gpg23), Feature Request, Keyserver
werner triaged T6040: Allow embedding preferred keyserver URL in signatures as Normal priority.
Jun 23 2022, 10:46 AM · gnupg (gpg23), Feature Request, Keyserver
werner added a project to T6038: gpg-wks-client excludes uid with URL in comment: gnupg (gpg22).
Jun 23 2022, 10:43 AM · gnupg (gpg22), wkd, Bug Report
gspr created T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0).
Jun 23 2022, 10:39 AM · Restricted Project, pinentry, Bug Report
JoeDoe1000 added a comment to T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).

No, unfortunatelly problem is still existing.

Jun 23 2022, 7:42 AM · gpgol, Bug Report, gpg4win
gniibe added a project to T6035: Portability issue: ftruncate: Testing.
Jun 23 2022, 4:27 AM · backport, gpgagent, gnupg
gniibe committed rG99d2931887e5: agent: Flush before calling ftruncate. (authored by gniibe).
agent: Flush before calling ftruncate.
Jun 23 2022, 4:07 AM
gniibe added a comment to T6035: Portability issue: ftruncate.

Even if it is only a single case (of old version of Wine), I think that it is worth to add es_fflush when writing to file.

Jun 23 2022, 4:05 AM · backport, gpgagent, gnupg
gniibe added a comment to T5988: agent: Add new command to update private key fields.

What about rejected changes to "Key:"?

Jun 23 2022, 3:05 AM · Feature Request, ssh, gpgagent
gniibe committed rG26d5a6e862c6: agent: KEYATTR only allows access to attribute. (authored by gniibe).
agent: KEYATTR only allows access to attribute.
Jun 23 2022, 3:04 AM
gniibe committed rG2c47c6662793: agent: Fix KEYATTR command for --delete option. (authored by gniibe).
agent: Fix KEYATTR command for --delete option.
Jun 23 2022, 3:04 AM
Saklad5 changed the edit policy for T6020: Make %-expandos available for --default-keyserver-url.
Jun 23 2022, 1:18 AM · Feature Request, gnupg (gpg23), Keyserver
Saklad5 changed the edit policy for T6040: Allow embedding preferred keyserver URL in signatures.
Jun 23 2022, 1:18 AM · gnupg (gpg23), Feature Request, Keyserver

Jun 22 2022

Saklad5 created T6040: Allow embedding preferred keyserver URL in signatures.
Jun 22 2022, 11:23 PM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 raised the priority of T6020: Make %-expandos available for --default-keyserver-url from Wishlist to Needs Triage.
Jun 22 2022, 11:02 PM · Feature Request, gnupg (gpg23), Keyserver
Diedrichs added a comment to T5926: GPGOL - Leere Nachricht kann nicht signiert werden (empty message email can't be signed or encrypted).

Hat sich das Problem gelöst? Bei mir tritt das seit gestern auf auf. Ich kann nichts mehr signieren oder verschlüsseln. andere Plugins habe ich deaktiviert, es beliebt trotzdem.

Jun 22 2022, 10:11 PM · gpgol, Bug Report, gpg4win
ikloecker added a comment to T5843: Kleopatra: Make certificate details accessible.

Some issues with the dialog:

  • The user id list is in the wrong tab order (just before the Close button).
  • The certificate details are not (easily/separately) accessible for screen readers. (Idea: Use read-only line edits so that they can be assigned to the labels as buddies.)
  • The user id table is not accessible at all (neither the whole rows nor the individual cells).
Jun 22 2022, 4:13 PM · Testing, kleopatra, Restricted Project
ikloecker claimed T5843: Kleopatra: Make certificate details accessible.
Jun 22 2022, 4:07 PM · Testing, kleopatra, Restricted Project
werner added a comment to T5988: agent: Add new command to update private key fields.

What about rejected changes to "Key:"? Other this command would make it too easy to mess up the actual private key.

Jun 22 2022, 2:54 PM · Feature Request, ssh, gpgagent
cklassen committed rW19d69db70558: linking of localize-gpg4win-de (authored by cklassen).
linking of localize-gpg4win-de
Jun 22 2022, 2:03 PM
cklassen committed rW7f95d200daf4: removed redundant word (authored by cklassen).
removed redundant word
Jun 22 2022, 1:58 PM
cklassen committed rW077b7a32915b: translated page for translations into German (authored by cklassen).
translated page for translations into German
Jun 22 2022, 1:58 PM
cklassen committed rW87b20aade04c: typos (authored by cklassen).
typos
Jun 22 2022, 1:58 PM
ikloecker committed rKLEOPATRA01301103c5f7: Ensure that focus for link is announced after focus for label (authored by ikloecker).
Ensure that focus for link is announced after focus for label
Jun 22 2022, 11:34 AM
ikloecker committed rKLEOPATRAdac690311ec9: Factor the anchor cache out into a separate class (authored by ikloecker).
Factor the anchor cache out into a separate class
Jun 22 2022, 11:34 AM
ikloecker committed rKLEOPATRA3dc48f11fd5a: Reuse HtmlLabel for UrlLabel (authored by ikloecker).
Reuse HtmlLabel for UrlLabel
Jun 22 2022, 11:34 AM
gniibe added a project to T5988: agent: Add new command to update private key fields: Testing.
Jun 22 2022, 8:49 AM · Feature Request, ssh, gpgagent
gniibe committed rG30b54a0ebbaa: agent: Add KEYATTR command. (authored by gniibe).
agent: Add KEYATTR command.
Jun 22 2022, 8:49 AM
cklassen committed rWfadfc1b146a0: changed text for GpgEX (authored by cklassen).
changed text for GpgEX
Jun 22 2022, 8:33 AM
gniibe added a project to T6033: Regression in GnuPG 2.2.34 with some ECC keys: Testing.
Jun 22 2022, 6:38 AM · Bug Report, gnupg (gpg22)
gniibe added a project to T5921: No sharing of log_fd between child process: Testing.
Jun 22 2022, 6:37 AM · Bug Report, gnupg (gpg23)
gniibe committed rGfe535cf26592: agent,gpg,tools: Fix use of log_get_fd. (authored by gniibe).
agent,gpg,tools: Fix use of log_get_fd.
Jun 22 2022, 6:37 AM
gniibe added projects to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF: FIPS, libgcrypt.
Jun 22 2022, 3:48 AM · backport, Testing, libgcrypt, FIPS
gniibe renamed T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF from FIPS: Allow salt=NULL for HKDF to FIPS: Allow salt=NULL (or shorter salt) for HKDF.
Jun 22 2022, 3:47 AM · backport, Testing, libgcrypt, FIPS
gniibe updated the task description for T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.
Jun 22 2022, 3:47 AM · backport, Testing, libgcrypt, FIPS
gniibe added a comment to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.

In rC76aad97dd312: fips: Reject shorter key for HMAC in FIPS mode., I added rejection, but it would be good to move the check to src/visibility.c to allow internal use.

Jun 22 2022, 3:46 AM · backport, Testing, libgcrypt, FIPS
gniibe triaged T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF as Normal priority.
Jun 22 2022, 3:41 AM · backport, Testing, libgcrypt, FIPS

Jun 21 2022

cklassen committed rW0db3170a0b36: grammar (authored by cklassen).
grammar
Jun 21 2022, 8:05 PM
cklassen committed rWfebe250cecf8: wording (authored by cklassen).
wording
Jun 21 2022, 8:05 PM
cklassen committed rW16ed62b0454b: typo (authored by cklassen).
typo
Jun 21 2022, 8:05 PM
cklassen committed rW4fc775d7f393: grammar (authored by cklassen).
grammar
Jun 21 2022, 8:05 PM
cklassen committed rW3d23c9b5abe8: typo + phrasing (authored by cklassen).
typo + phrasing
Jun 21 2022, 8:05 PM
cklassen committed rW0cf89e517dd1: added missing sentence (authored by cklassen).
added missing sentence
Jun 21 2022, 7:52 PM
cklassen committed rW1c4a4fb49dc2: grammar (authored by cklassen).
grammar
Jun 21 2022, 7:48 PM
cklassen committed rW4ec80a146656: typo (authored by cklassen).
typo
Jun 21 2022, 7:45 PM
cklassen committed rW7ce83dbeee21: edited part of description (authored by cklassen).
edited part of description
Jun 21 2022, 7:09 PM
cklassen committed rWe9b3239299c8: removed string that doesnt belong there (authored by cklassen).
removed string that doesnt belong there
Jun 21 2022, 6:46 PM
werner committed rG4c14bbf56fb5: sm: Update pkcs#12 module from master (authored by werner).
sm: Update pkcs#12 module from master
Jun 21 2022, 6:29 PM
werner committed rGd21ced1e3596: common: Add an easy to use DER builder. (authored by werner).
common: Add an easy to use DER builder.
Jun 21 2022, 6:29 PM
gniibe added a comment to T6035: Portability issue: ftruncate.

Looking illumos-gate, Solaris variants have no issues.

Jun 21 2022, 12:46 PM · backport, gpgagent, gnupg
gniibe added a comment to T6035: Portability issue: ftruncate.

Wine 5.0.3 (on Debian bullseye) fails.
Wine 6.0.3 Debian testing does no failure.

Jun 21 2022, 10:35 AM · backport, gpgagent, gnupg
ikloecker added a comment to T6038: gpg-wks-client excludes uid with URL in comment.

This problem does not seem to exist in GnuPG 2.3.6.

Jun 21 2022, 9:49 AM · gnupg (gpg22), wkd, Bug Report
gniibe committed rC07722d89bac1: kdf,fips: Modify HKDF test for FIPS mode. (authored by gniibe).
kdf,fips: Modify HKDF test for FIPS mode.
Jun 21 2022, 8:40 AM
gniibe added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

My intention to refer rG7b1db7192 was to specify the HEAD of STABLE-BRANCH-2-2, meaning "the head of STABLE-BRANCH-2-2 today". The commit itself has no meaning.

Jun 21 2022, 7:32 AM · Bug Report, gnupg (gpg22)
gniibe committed rCe0f0c788dc0f: kdf: Add input check for hkdf. (authored by gniibe).
kdf: Add input check for hkdf.
Jun 21 2022, 7:21 AM
l0s created T6038: gpg-wks-client excludes uid with URL in comment.
Jun 21 2022, 7:03 AM · gnupg (gpg22), wkd, Bug Report
gniibe added a comment to T6035: Portability issue: ftruncate.

I created minimized test:

Jun 21 2022, 4:38 AM · backport, gpgagent, gnupg

Jun 20 2022

werner removed a reviewer for D556: Disallow compressed signatures and certificates: werner.
Jun 20 2022, 8:29 PM
DemiMarie abandoned D555: g10: Disallow compressed signatures and certificates.

Closing in favor of D556.

Jun 20 2022, 6:41 PM · gnupg
DemiMarie updated the diff for D556: Disallow compressed signatures and certificates.

When failing due to a bad packet in a detached signature, log the
packet's type.

Jun 20 2022, 6:40 PM
DemiMarie requested review of D556: Disallow compressed signatures and certificates.
Jun 20 2022, 6:32 PM
DemiMarie added a revision to T5993: gpg should reject compressed packets outside of messages: D556: Disallow compressed signatures and certificates.
Jun 20 2022, 6:32 PM · Feature Request, gnupg
werner committed rG52f9e13c0cb3: sm: Improve pkcs#12 debug output. (authored by werner).
sm: Improve pkcs#12 debug output.
Jun 20 2022, 5:34 PM
werner committed rGa4e04375e84e: sm: Rework the PKCS#12 parser to support DFN issued keys. (authored by werner).
sm: Rework the PKCS#12 parser to support DFN issued keys.
Jun 20 2022, 5:34 PM
werner triaged T6037: Allow import of nwer DFN generated P12 files as Normal priority.
Jun 20 2022, 4:43 PM · gnupg (gpg22), S/MIME
ikloecker committed rKLEOPATRAf3e3435bb115: Remove workaround for missing focus indicator for text labels (authored by ikloecker).
Remove workaround for missing focus indicator for text labels
Jun 20 2022, 3:46 PM
ikloecker committed rKLEOPATRA052383e08c62: Add a focus frame to labels that receive keyboard focus (authored by ikloecker).
Add a focus frame to labels that receive keyboard focus
Jun 20 2022, 3:26 PM
ikloecker moved T6036: Kleopatra: Show focus indicator for (text) labels that got focus from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 20 2022, 3:19 PM · Testing, kleopatra, Restricted Project
ikloecker triaged T6036: Kleopatra: Show focus indicator for (text) labels that got focus as Normal priority.
Jun 20 2022, 3:19 PM · Testing, kleopatra, Restricted Project
werner triaged T6035: Portability issue: ftruncate as Normal priority.
Jun 20 2022, 1:08 PM · backport, gpgagent, gnupg
werner added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

I fixed the title, because it is not a Windows only issue.

Jun 20 2022, 1:07 PM · Bug Report, gnupg (gpg22)
werner renamed T6033: Regression in GnuPG 2.2.34 with some ECC keys from Regression in GnuPG 2.2.34 on Windows to Regression in GnuPG 2.2.34 with some ECC keys.
Jun 20 2022, 1:06 PM · Bug Report, gnupg (gpg22)
werner added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

The mentioned "g10: Fix garbled status messages in NOTATION_DATA" has nothing to do with the problem. So it can'r be the actual cause. Anway, I hope to get a 2.2.36 out this week.

Jun 20 2022, 1:05 PM · Bug Report, gnupg (gpg22)
werner added a comment to T6035: Portability issue: ftruncate.

iirc, we use ftruncate for ages now. The problem with the name ftruncate is that it looks to similar to the stdio functions. But sure, things should be flushed first.

Jun 20 2022, 12:59 PM · backport, gpgagent, gnupg
gniibe added projects to T6035: Portability issue: ftruncate: gnupg, gpgagent.
Jun 20 2022, 10:33 AM · backport, gpgagent, gnupg
gniibe created T6035: Portability issue: ftruncate.
Jun 20 2022, 10:33 AM · backport, gpgagent, gnupg
ikloecker moved T6034: Kleopatra: Make links in label text accessible from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 20 2022, 9:40 AM · Testing, kleopatra, Restricted Project
gniibe added a comment to E929: Weekly Standup.

Last week:

  • Scute
    • trying to introduce major change to support multiple devices: T6002
    • it works for me with Chromium and Firefox
  • libgcrypt
    • hkdf implementation
    • T5976 to 1.10 branch (HPPA)
  • gnupg
    • T5964 for gnupg (in future), a branch named t5964
Jun 20 2022, 9:04 AM
gniibe is attending E929: Weekly Standup.
Jun 20 2022, 8:59 AM
gniibe added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

I can replicate the error by 2.2.35, but I cannot replicate it with rG7b1db7192.
I tested:

  • GNU/Linux
    • i686
    • x86_64
  • Windows
    • i686
Jun 20 2022, 8:33 AM · Bug Report, gnupg (gpg22)
werner removed a reviewer for D555: g10: Disallow compressed signatures and certificates: gniibe.
Jun 20 2022, 8:05 AM · gnupg