dkg (Daniel Kahn Gillmor)
User

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Friday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:49 PM (78 w, 1 d)
Availability
Available

Recent Activity

Sun, Sep 23

dkg added a comment to T4154: allow setting passphrase from an environment variable.

i note that my patch doesn't include an addition to the test suite, which it probably should, though i'm not fluent in gpgscm. if someone could update it to include a test, i'd appreciate that, and would probably learn from the commit. I imagine the test would do something like:

Sun, Sep 23, 9:31 PM · Feature Request, gnupg (gpg23)
dkg committed rG07c19981da06: gpg: add --passphrase-env VARNAME to read passphrase from environment (authored by dkg).
gpg: add --passphrase-env VARNAME to read passphrase from environment
Sun, Sep 23, 8:58 PM
dkg added a comment to T4154: allow setting passphrase from an environment variable.

I tried to push commit 07c19981da0607dc442fadc4079b1d71fbef8f83 to branch dkg/passphrase-env on playfair, but i got this complaint:

Sun, Sep 23, 8:36 PM · Feature Request, gnupg (gpg23)
dkg created T4154: allow setting passphrase from an environment variable in the S1 Public space.
Sun, Sep 23, 8:32 PM · Feature Request, gnupg (gpg23)

Wed, Sep 12

dkg added a comment to T3464: successful decryption with session key reports failure if public key is unknown.

sorry, i haven't had time to test gpgme with those changes myself. i hope someone can do so.

Wed, Sep 12, 4:53 PM · gnupg (gpg22), gpgme, Bug Report
dkg added a comment to T3464: successful decryption with session key reports failure if public key is unknown.

if gpgme doesn't rely on the return value, but instead on parsing the --status-fd for errors, then there will still be an ERROR printed:

Wed, Sep 12, 4:12 PM · gnupg (gpg22), gpgme, Bug Report
dkg removed a project from T3464: successful decryption with session key reports failure if public key is unknown: Info Needed.

yes, it looks like using --no-keyring does change the return code from 2 to 0 for me.

Wed, Sep 12, 6:13 AM · gnupg (gpg22), gpgme, Bug Report

Fri, Sep 7

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

@aheinecke -- @smueller_chronox.de (author of the comment above) is Stephan Müller from atsec. Glad to see he seems ok with the proposal :)

Fri, Sep 7, 9:49 PM · libgcrypt, gnupg

Wed, Sep 5

dkg committed rC842ff5f60cfa: random: use getrandom() on Linux where available (authored by dkg).
random: use getrandom() on Linux where available
Wed, Sep 5, 9:19 PM
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

well, i tried to push, anyway, but it looks like playfair is rejecting my pushes:

Wed, Sep 5, 4:54 PM · libgcrypt, gnupg
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

@werner -- yes, i am asking for a change that is specific to the way that gcrypt interacts with the Linux kernel. The minor patch i've proposed only affects a codeblock within #if defined(__linux__), so i don't believe it would have an effect on other Unices. I hope that people working with other kernels will propose any necessary fixes for them.

Wed, Sep 5, 4:46 PM · libgcrypt, gnupg

Aug 23 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

@aheinecke thanks for the followup!

Aug 23 2018, 5:59 PM · libgcrypt, gnupg

Aug 2 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

This bug report has been around for several months now. it has a simple patch, a clear explanation, a report of running code, and examples of problems it solves.

Aug 2 2018, 7:34 PM · libgcrypt, gnupg

Jul 22 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

I've now run the proposed patch on a GNU/Linux system where the kernel's RNG is initialized but /proc/sys/kernel/random/entropy_avail shows numbers below 100, and i can confirm that 3072-bit RSA key generation takes roughly 0.8 seconds: 20 sequential default --quick-keygen operations (each creating two secret keys) took ~32s.

Jul 22 2018, 7:54 AM · libgcrypt, gnupg
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

Here is another example of users doing sketchy things to try to "fix" this process:

Jul 22 2018, 5:28 AM · libgcrypt, gnupg
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

Here is an example of the kinds of UI/UX mystery that users face while this decision is unresolved:

Jul 22 2018, 5:22 AM · libgcrypt, gnupg

Jul 14 2018

dkg added a comment to T4072: fix inconsistent CLI.

We do have a history of extending the API, no?

Jul 14 2018, 5:11 AM · Feature Request, gnupg

Jul 12 2018

dkg added a comment to T1800: Allow s2k options for gpg --export-secret-key.

About how the keys are actually stored on disk:

Jul 12 2018, 6:31 PM · Feature Request, gnupg

Jul 2 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

ping again…

Jul 2 2018, 4:47 PM · libgcrypt, gnupg

Jun 19 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

could i get feedback on this ticket? a simple, clean patch is available, and i don't understand what is blocking it.

Jun 19 2018, 4:32 PM · libgcrypt, gnupg

Jun 18 2018

dkg created T4031: gpg-check-pattern.1 in Debian generates warnings from test-groff .
Jun 18 2018, 6:01 PM · Debian, gnupg, Bug Report

Jun 14 2018

dkg created T4025: `gpg --with-sig-list --show-keys` does not show all the signature packets from stdin in the S1 Public space.
Jun 14 2018, 5:23 PM
dkg added a comment to T4024: "Clean" does not remove superseded subkey signatures.

i'm having trouble just assembling the two signatures over the subkey with 2.2.8 in a single homedir. in particular, when i try to do the following with a new, clean test GNUPGHOME, then i see only one signature on the subkeys afterward:

Jun 14 2018, 4:56 PM · gnupg
dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

thanks, that works for me. I look forward to seeing the patches :)

Jun 14 2018, 4:11 PM · gnupg, Bug Report
dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

can you let me know what you're planning so i can plan my work on enigmail?

Jun 14 2018, 2:26 PM · gnupg, Bug Report
dkg created T4022: too-large User ID packets result in dropping an entire certificate.
Jun 14 2018, 6:28 AM · gnupg, Bug Report

Jun 13 2018

dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

thus far every packet type has been a three-letter string, right? I'm looking at "Field 1" in doc/DETAILS. adding a 4-letter packet type seems like it could be trouble if someone has done the dumb thing of assuming the field is fixed-length.

Jun 13 2018, 2:49 PM · gnupg, Bug Report
dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

can i get a confirmation that the options you're considering for --with-colons --show-keys when confronted with a revocation certificate will be either:

Jun 13 2018, 12:16 AM · gnupg, Bug Report

Jun 12 2018

dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

By "dummy pub line" I think you're proposing output that looks something like this instead of just the rev: line.:

Jun 12 2018, 3:47 PM · gnupg, Bug Report
dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

Revocation certificates consist of *only* the revocation packet, right? Claiming that the revocation cert contains more than the revocation packet (when it doesn't) seems more troubling from an API perspective than just telling people to expect a single rev: line if they are looking at a revocation certificate.

Jun 12 2018, 9:12 AM · gnupg, Bug Report
dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

thanks for looking into this so quickly. where is your patch? i don't see it on the master branch yet.

Jun 12 2018, 9:05 AM · gnupg, Bug Report
dkg added a task to rGee1fc420fb97: gpg: Print revocation certificate details when showing with-colons.: T4018: gpg --with-colons --show-keys does not show revocation certificates.
Jun 12 2018, 8:50 AM
dkg added a commit to T4018: gpg --with-colons --show-keys does not show revocation certificates: rGee1fc420fb97: gpg: Print revocation certificate details when showing with-colons..
Jun 12 2018, 8:50 AM · gnupg, Bug Report
dkg added a comment to T4018: gpg --with-colons --show-keys does not show revocation certificates.

ee1fc420fb9741b2cfaea6fa820a00be2923f514 contains a proposed fix for this.

Jun 12 2018, 8:50 AM · gnupg, Bug Report
dkg committed rGee1fc420fb97: gpg: Print revocation certificate details when showing with-colons. (authored by dkg).
gpg: Print revocation certificate details when showing with-colons.
Jun 12 2018, 8:48 AM
dkg added a commit to T4019: --export-filter drop-subkey filter type should have usage option property: rGe037657edaf0: gpg: Add new usage option for drop-subkey filters..
Jun 12 2018, 6:49 AM · gnupg, Feature Request
dkg added a task to rGe037657edaf0: gpg: Add new usage option for drop-subkey filters.: T4019: --export-filter drop-subkey filter type should have usage option property.
Jun 12 2018, 6:49 AM
dkg added a comment to T4019: --export-filter drop-subkey filter type should have usage option property.

I've just pushed e037657edaf0b3ee9d2e30f6fe3edf6879976472 on the fix-T4019 branch

Jun 12 2018, 6:49 AM · gnupg, Feature Request
dkg committed rGe037657edaf0: gpg: Add new usage option for drop-subkey filters. (authored by dkg).
gpg: Add new usage option for drop-subkey filters.
Jun 12 2018, 6:49 AM
dkg renamed T4019: --export-filter drop-subkey filter type should have usage option property from --export-filter drop-subkey filter type should have usage_flag option property to --export-filter drop-subkey filter type should have usage option property.
Jun 12 2018, 6:43 AM · gnupg, Feature Request
dkg created T4019: --export-filter drop-subkey filter type should have usage option property.
Jun 12 2018, 3:41 AM · gnupg, Feature Request
dkg updated the task description for T4018: gpg --with-colons --show-keys does not show revocation certificates.
Jun 12 2018, 1:11 AM · gnupg, Bug Report
dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

see e051c279216ecd4ec9a48e13ccc695f5ab667b2a

Jun 12 2018, 1:02 AM · gnupg, Bug Report
dkg committed rGe051c279216e: gpg: set full --dry-run when used with --show-keys (authored by dkg).
gpg: set full --dry-run when used with --show-keys
Jun 12 2018, 1:02 AM
dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

I note that --import-options show-only --import has the same effect as --show-keys -- that is, the revocation cert is imported. so the error is in the import-options code itself. I'll push a fix-T4017 branch shortly with a proposed correction.

Jun 12 2018, 1:00 AM · gnupg, Bug Report

Jun 11 2018

dkg created T4018: gpg --with-colons --show-keys does not show revocation certificates in the S1 Public space.
Jun 11 2018, 11:34 PM · gnupg, Bug Report
dkg created T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).
Jun 11 2018, 11:10 PM · gnupg, Bug Report

Jun 9 2018

dkg created T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities.
Jun 9 2018, 12:33 AM · gpgv, gnupg, Bug Report
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

I've heard no critique of the logic above. could we get this fix landed? it is concretely useful for doing key generation on modern GNU/Linux systems.

Jun 9 2018, 12:03 AM · libgcrypt, gnupg

Jun 8 2018

dkg added a comment to T3844: Able to certify public keys without a certify key present when using smartcard..

fwiw, i agree that if there's any security vulnerability here, it is in the verification side, not the creation side.

Jun 8 2018, 11:58 PM · gnupg (gpg22), Bug Report

May 29 2018

dkg added a comment to T3277: decrypting data symmetrically doesn't reliably convey confidentiality property.

@werner, what protocol design rule do you think is not being followed specifically?

May 29 2018, 11:31 PM · Feature Request, gnupg (gpg22)
dkg committed rE619abb6211e8: po: More Spanish translations. (authored by emma peel <emmapeel@aktivix.org>).
po: More Spanish translations.
May 29 2018, 5:12 PM

May 25 2018

dkg committed rG3308d5e3f4e2: g10: Make force-mdc the default. (authored by dkg).
g10: Make force-mdc the default.
May 25 2018, 7:21 PM
dkg committed rG49e4908652c4: po: Update Spanish translation. (authored by emma peel <emmapeel@aktivix.org>).
po: Update Spanish translation.
May 25 2018, 7:21 PM
dkg committed rG64597e1bd9ff: po: Update Spanish translation. (authored by emma peel <emmapeel@aktivix.org>).
po: Update Spanish translation.
May 25 2018, 7:21 PM
dkg added a comment to T3995: make --force-mdc the default.

please see the branch dkg/fix-T3995 with rG3308d5e3f4e25dce5168c4a7cb2f545424c6d185

May 25 2018, 6:34 PM · gnupg, Bug Report
dkg created T3995: make --force-mdc the default.
May 25 2018, 3:48 PM · gnupg, Bug Report

May 1 2018

dkg committed rE7e2517a29619: po: new Spanish translation (authored by emma peel <emma.peel@riseup.net>).
po: new Spanish translation
May 1 2018, 4:19 PM

Apr 28 2018

dkg committed rEa498adfc84c9: po: new Spanish translation (authored by emma peel <emma.peel@riseup.net>).
po: new Spanish translation
Apr 28 2018, 10:26 PM

Apr 26 2018

dkg added a comment to T3942: Can't unregister a non-existent private key.

I note that this problem could also affect a user with multiple identities, one of which has their decryption keys on a smartcard. If a message arrives encrypted to both identities, but the user does not have their smartcard available, they will hit the same issue.

Apr 26 2018, 5:31 PM · gnupg (gpg22), Bug Report

Apr 19 2018

dkg added a comment to T3775: enable mixed hidden/non-hidden recipients during encryption.

I think i can understand why this decision was made, but i'm not convinced it's a great solution. In particular, string-based arguments for C libraries are asking for trouble, and compound string arguments of the type described above are even more risky.

Apr 19 2018, 9:01 PM · gpgme, Feature Request

Apr 16 2018

dkg committed rG21b2e88a7e6c: po: correct attribution for Spanish translation (authored by emma peel <emma.peel@aktivix.org>).
po: correct attribution for Spanish translation
Apr 16 2018, 10:01 PM
dkg committed rGacd6d5ff7436: po: more updates to Spanish translation (authored by emma peel <emma.peel@aktivix.org>).
po: more updates to Spanish translation
Apr 16 2018, 10:01 PM
dkg committed rGa5290dace7f8: po: correct label tags in Polish translation (authored by emma peel <emma.peel@aktivix.org>).
po: correct label tags in Polish translation
Apr 16 2018, 10:01 PM
dkg committed rGe12475429578: po: correct label tags in Finnish translation (authored by emma peel <emma.peel@aktivix.org>).
po: correct label tags in Finnish translation
Apr 16 2018, 10:01 PM
dkg created T3912: generate_keypair() in g10/keygen.c seems unclear.
Apr 16 2018, 9:52 PM · Documentation, gnupg (gpg22)

Apr 14 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

See also Filippo Valsorda's 32c3 talk about CSPRNGs.

Apr 14 2018, 6:45 PM · libgcrypt, gnupg
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

@gouttegd : setting only-urandom at the distro level problematic due to two factors:

Apr 14 2018, 6:42 PM · libgcrypt, gnupg

Apr 13 2018

dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

Werner wrote:

we already use the getrandom system call if it is available

Apr 13 2018, 9:05 PM · libgcrypt, gnupg

Apr 12 2018

dkg committed rG40fcddd3a98b: po: Update Spanish translation (authored by emma peel <emma.peel@aktivix.org>).
po: Update Spanish translation
Apr 12 2018, 9:32 PM

Apr 11 2018

dkg created T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.
Apr 11 2018, 8:01 PM · libgcrypt, gnupg

Apr 10 2018

dkg added a task to rG381c46818ffa: agent: unknown flags on ssh signing requests cause an error.: T3880: gpg-agent's ssh-agent does not handle flags in signing requests properly.
Apr 10 2018, 8:07 AM
dkg added a commit to T3880: gpg-agent's ssh-agent does not handle flags in signing requests properly: rG381c46818ffa: agent: unknown flags on ssh signing requests cause an error..
Apr 10 2018, 8:07 AM · ssh, gpgagent, Bug Report
dkg reopened T3880: gpg-agent's ssh-agent does not handle flags in signing requests properly as "Open".

Thanks for the fix! however, the fix only addresses the two flags we currently know about. I've pushed a branch T3880-fix that tries to implement the If the agent does not support the requested flags […] It must reply with a SSH_AGENT_FAILURE message part of the spec.

Apr 10 2018, 12:14 AM · ssh, gpgagent, Bug Report
dkg committed rG381c46818ffa: agent: unknown flags on ssh signing requests cause an error. (authored by dkg).
agent: unknown flags on ssh signing requests cause an error.
Apr 10 2018, 12:12 AM
dkg committed rG55435cdd4fe4: agent: change documentation reference for ssh-agent protocol. (authored by dkg).
agent: change documentation reference for ssh-agent protocol.
Apr 10 2018, 12:12 AM

Apr 5 2018

dkg created T3880: gpg-agent's ssh-agent does not handle flags in signing requests properly.
Apr 5 2018, 5:43 PM · ssh, gpgagent, Bug Report

Mar 27 2018

dkg added a comment to T2019: Order of magnitude degradation in performance in gpg2 cf gpg.

The severe delay caused by check-trustdb continues to cause problems elsewhere in the ecosystem. It would be great to try to address this so that GnuPG was more responsive for routine tasks like importing a single key.

Mar 27 2018, 10:40 PM · Stalled, Bug Report, gnupg

Feb 27 2018

dkg created T3816: please expose "change-usage" subcommand for --edit-key.
Feb 27 2018, 9:49 PM · gnupg (gpg22), Feature Request

Feb 23 2018

dkg added a comment to T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary.

This is similar to T3622, but it's not the same thing.

Feb 23 2018, 12:28 AM · gnupg (gpg22)
dkg created T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary in the S1 Public space.
Feb 23 2018, 12:28 AM · gnupg (gpg22)

Feb 21 2018

dkg added a comment to T3803: dirmngr issues malformed DNS queries.

hm, i think this is the file:

Feb 21 2018, 8:34 PM · dns, dirmngr, Bug Report
dkg created T3803: dirmngr issues malformed DNS queries.
Feb 21 2018, 8:32 PM · dns, dirmngr, Bug Report

Feb 6 2018

dkg created T3783: gpg-connect-agent: `HELP` lists `SIGKEY <hexstring_with_keygrip>` but only shows `SETKEY`.
Feb 6 2018, 10:36 PM · gpgagent, Bug Report
dkg created T3782: `gpg --sign-key` has prompt implies attempting to sign revoked User IDs even though it won't..
Feb 6 2018, 7:59 PM · Feature Request, gnupg
dkg committed rP822c66815b50: tqt: use UTF-8 instead of ISO-8859-1 (authored by dkg).
tqt: use UTF-8 instead of ISO-8859-1
Feb 6 2018, 4:42 AM

Feb 4 2018

dkg created T3775: enable mixed hidden/non-hidden recipients during encryption.
Feb 4 2018, 10:08 PM · gpgme, Feature Request

Feb 2 2018

dkg created T3772: gpg-zip fails with recipient names that have whitespace in them.
Feb 2 2018, 11:47 PM · gpgtar, Bug Report

Jan 31 2018

dkg created T3767: simplify sharing dirmngr's across multiple GNUPGHOMEs in the S1 Public space.
Jan 31 2018, 7:56 PM · Documentation, Feature Request, gnupg, dirmngr
dkg added a comment to T3348: gpgsm: should default to --disable-crl-checks.

it is the decision of the user to use such a certificate.

Jan 31 2018, 5:04 PM · gpgme, gnupg, S/MIME

Jan 30 2018

dkg added a comment to T3348: gpgsm: should default to --disable-crl-checks.

Additionally, we might want some sort of delayed or batched CRL-checking that doesn't block signature verification with another network interaction, but would protect the user against future problems.

Jan 30 2018, 5:46 PM · gpgme, gnupg, S/MIME

Jan 12 2018

dkg added a comment to T3354: gpgme only builds against two versions of python at once.

it's too bad that this is not considered something worth fixing upstream -- at the moment, debian's python3-gpg will only work with one specific version of python3 because of this, which makes package transitions more complex than they should be.

Jan 12 2018, 8:14 PM · Python, gpgme, Bug Report

Jan 11 2018

dkg created T3734: Extract signature key ID with gpgme.
Jan 11 2018, 2:46 PM · gpgme, Feature Request

Jan 3 2018

dkg added a comment to T3622: --export-options export-minimal,export-clean includes unusable subkeys.

Agreed, Signing subkeys can be useful for checking historical signatures. And even encryption subkeys *can* be useful after their expiration, e.g. when doing historical auditing.

Jan 3 2018, 1:08 AM · Feature Request, gnupg (gpg22)

Dec 31 2017

dkg reopened T3655: Suggest possible choices instead to error out on a typo as "Open".

When i read the manpage, nroff-formatted against an 80-column terminal, it says, literally:

Dec 31 2017, 2:02 AM · gnupg (gpg22), Bug Report

Dec 29 2017

dkg added a comment to T3655: Suggest possible choices instead to error out on a typo.

Any fix for this should be included in the test suite to avoid a regression :)

Dec 29 2017, 9:55 PM · gnupg (gpg22), Bug Report
dkg created T3655: Suggest possible choices instead to error out on a typo.
Dec 29 2017, 9:54 PM · gnupg (gpg22), Bug Report

Dec 21 2017

dkg created T3622: --export-options export-minimal,export-clean includes unusable subkeys.
Dec 21 2017, 7:52 PM · Feature Request, gnupg (gpg22)

Nov 30 2017

dkg committed rG8a2917345ba8: doc: clarify that --encrypt refers to public key encryption (authored by dkg).
doc: clarify that --encrypt refers to public key encryption
Nov 30 2017, 4:26 PM

Nov 21 2017

dkg committed rG91eb242d635f: doc: clarify that --encrypt refers to public key encryption (authored by dkg).
doc: clarify that --encrypt refers to public key encryption
Nov 21 2017, 5:15 PM