Page MenuHome GnuPG

gniibe (NIIBE Yutaka)
UserAdministrator

Projects (9)

User Details

User Since
Mar 27 2017, 4:47 PM (417 w, 4 d)
Roles
Administrator
Availability
Busy Busy until Mar 16 2031.

Recent Activity

Wed, Mar 26

gniibe changed the status of T7576: keyboxd: Searching <email@Example.COM> from Open to Testing.
Wed, Mar 26, 8:20 AM · gnupg, Bug Report
gniibe committed rG7fc5b0328fdd: keyboxd: Searching UpperCaseAddress. (authored by gniibe).
keyboxd: Searching UpperCaseAddress.
Wed, Mar 26, 6:30 AM
gniibe added a comment to T7576: keyboxd: Searching <email@Example.COM>.

OK. Relying on SQLite semantics for COLLATE NOCASE would not be good.
Exactly same existing semantics (only care about ASCII uppercase characters) is good.

Wed, Mar 26, 6:26 AM · gnupg, Bug Report

Fri, Mar 21

gniibe added a comment to T7576: keyboxd: Searching <email@Example.COM>.

I changed my mind. SQLite specific patch might be better:

diff --git a/kbx/backend-sqlite.c b/kbx/backend-sqlite.c
index 4c67c3ef7..1db2f2c8d 100644
--- a/kbx/backend-sqlite.c
+++ b/kbx/backend-sqlite.c
@@ -154,7 +154,7 @@ static struct
      /* The full user id - for X.509 the Subject or altSubject.  */
      "uid  TEXT NOT NULL,"
      /* The mail address if available or NULL.  */
-     "addrspec TEXT,"
+     "addrspec TEXT COLLATE NOCASE,"
      /* The type of the public key: 1 = openpgp, 2 = X.509.  */
      "type  INTEGER NOT NULL,"
      /* The order number of the user id within the keyblock or
Fri, Mar 21, 8:50 AM · gnupg, Bug Report
gniibe added a comment to T7576: keyboxd: Searching <email@Example.COM>.

I changed my mind. SQLite specific patch might be better:

diff --git a/kbx/backend-sqlite.c b/kbx/backend-sqlite.c
index 4c67c3ef7..1db2f2c8d 100644
--- a/kbx/backend-sqlite.c
+++ b/kbx/backend-sqlite.c
@@ -154,7 +154,7 @@ static struct
      /* The full user id - for X.509 the Subject or altSubject.  */
      "uid  TEXT NOT NULL,"
      /* The mail address if available or NULL.  */
-     "addrspec TEXT,"
+     "addrspec TEXT COLLATE NOCASE,"
      /* The type of the public key: 1 = openpgp, 2 = X.509.  */
      "type  INTEGER NOT NULL,"
      /* The order number of the user id within the keyblock or
Fri, Mar 21, 8:36 AM · gnupg, Bug Report
gniibe updated the task description for T7576: keyboxd: Searching <email@Example.COM>.
Fri, Mar 21, 8:27 AM · gnupg, Bug Report
gniibe claimed T7576: keyboxd: Searching <email@Example.COM>.

Here is a possible change:

Fri, Mar 21, 8:15 AM · gnupg, Bug Report
gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

I applied some to master (generic improvement parts).

Fri, Mar 21, 7:31 AM · libgcrypt, Bug Report
gniibe committed rC17d5d3262c14: mpi:ec: Use ec_addm to multiply with small integer. (authored by gniibe).
mpi:ec: Use ec_addm to multiply with small integer.
Fri, Mar 21, 7:28 AM
gniibe committed rC191c2340c4a6: mpi:ec: Use mpi_set_ui in _gcry_mpi_ec_mul_point. (authored by gniibe).
mpi:ec: Use mpi_set_ui in _gcry_mpi_ec_mul_point.
Fri, Mar 21, 7:18 AM
gniibe committed rC522566b15a31: mpi:ec: Avoid use mpi_const. (authored by gniibe).
mpi:ec: Avoid use mpi_const.
Fri, Mar 21, 7:02 AM
gniibe committed rC5052efed9f54: mpi:ec: Don't use mpi_powm for small exponent. (authored by gniibe).
mpi:ec: Don't use mpi_powm for small exponent.
Fri, Mar 21, 4:04 AM
gniibe committed rC53993003db9b: mpi:ec: Remove the minor optimization for the case of Z==1. (authored by gniibe).
mpi:ec: Remove the minor optimization for the case of Z==1.
Fri, Mar 21, 3:57 AM

Thu, Mar 20

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

I think that this may be the last update.
Don't use mpi_powm to avoid normalizing (and to be faster).

Thu, Mar 20, 1:08 AM · libgcrypt, Bug Report

Wed, Mar 19

gniibe updated the task description for T7576: keyboxd: Searching <email@Example.COM>.
Wed, Mar 19, 6:11 AM · gnupg, Bug Report
gniibe updated the task description for T7576: keyboxd: Searching <email@Example.COM>.
Wed, Mar 19, 6:10 AM · gnupg, Bug Report
gniibe added a comment to T7576: keyboxd: Searching <email@Example.COM>.

IIUC, the address is stored with lowercase, but searching is done not converting lowercase.

Wed, Mar 19, 6:08 AM · gnupg, Bug Report
gniibe created T7576: keyboxd: Searching <email@Example.COM>.
Wed, Mar 19, 6:07 AM · gnupg, Bug Report

Tue, Mar 18

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

Here is another update (replacing ecc-no-normalize-2025-03-13.patch).
Further, ec_addm is modified to be less leaky.

Tue, Mar 18, 6:30 AM · libgcrypt, Bug Report

Mon, Mar 17

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

There are three (or more) remaining things:
(1) ec_addm can be improved by adding U and V with mpih_add_lli , subtracting P with mpih_sub_n, and adding back P with mpih_add_n_cond
(2) Places with mpi_const for the argument when calling ec_mulm, ec_add or ec_subm should be fixed (it may modify the const MPI)
(3) make sure mpi_resize within ec_addm, ec_mulm, or ec_subm if needed

Mon, Mar 17, 3:24 AM · libgcrypt, Bug Report

Thu, Mar 13

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

Here is update (replacing ecc-no-normalize-2025-03-07.patch).

Thu, Mar 13, 7:18 AM · libgcrypt, Bug Report
gniibe committed rC636f40cb7858: doc: Add about GCRYCTL_FIPS_SERVICE_INDICATOR. (authored by gniibe).
doc: Add about GCRYCTL_FIPS_SERVICE_INDICATOR.
Thu, Mar 13, 7:08 AM
gniibe committed rCb9eb8f4cb818: fips: Fix GCRY_FIPS_FLAG_REJECT_MD. (authored by gniibe).
fips: Fix GCRY_FIPS_FLAG_REJECT_MD.
Thu, Mar 13, 7:08 AM
gniibe changed the status of T7338: Revamp the FIPS service indicator from Open to Testing.
Thu, Mar 13, 7:05 AM · libgcrypt, FIPS, Feature Request

Wed, Mar 12

gniibe committed rC4ee91a94bcda: md: Make SHA-1 non-FIPS internally for 1.12 API. (authored by gniibe).
md: Make SHA-1 non-FIPS internally for 1.12 API.
Wed, Mar 12, 1:46 AM

Mon, Mar 10

gniibe added a comment to T7541: libassuan AC_DEFINE_UNQUOTED m4 fix needs propagating to pinentry and gnupg2.

GCC allows dollars in identifier, that's the reason why we haven't encountered this issue, I suppose.

Mon, Mar 10, 10:32 AM · gpgme, gnupg, pinentry
gniibe committed rP72b827b33e95: m4: Update libassuan.m4. (authored by gniibe).
m4: Update libassuan.m4.
Mon, Mar 10, 6:55 AM
gniibe committed rM7568566ef3d1: m4: Update libassuan.m4. (authored by gniibe).
m4: Update libassuan.m4.
Mon, Mar 10, 4:46 AM
gniibe changed the status of T7541: libassuan AC_DEFINE_UNQUOTED m4 fix needs propagating to pinentry and gnupg2 from Open to Testing.
Mon, Mar 10, 3:50 AM · gpgme, gnupg, pinentry
gniibe triaged T7541: libassuan AC_DEFINE_UNQUOTED m4 fix needs propagating to pinentry and gnupg2 as Normal priority.
Mon, Mar 10, 3:49 AM · gpgme, gnupg, pinentry
gniibe added a project to T7541: libassuan AC_DEFINE_UNQUOTED m4 fix needs propagating to pinentry and gnupg2: gpgme.

Thank you for your report.

Mon, Mar 10, 3:47 AM · gpgme, gnupg, pinentry

Fri, Mar 7

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

I think that major signal sources for K have been killed so far.

Fri, Mar 7, 5:35 AM · libgcrypt, Bug Report

Thu, Mar 6

gniibe added a comment to T7490: libgcrypt: constant-time modular exponentiation.

We should only enable least leak implementation for 64-bit, as it's not as fast on 32-bit architecture.

Thu, Mar 6, 2:47 AM · libgcrypt
gniibe committed rC71d17c0b4c01: mpi: Use const-time modular exponentiation on 64-bit arch. (authored by gniibe).
mpi: Use const-time modular exponentiation on 64-bit arch.
Thu, Mar 6, 2:46 AM
gniibe added a comment to T7490: libgcrypt: constant-time modular exponentiation.

We should only enable least leak implementation for 64-bit, as it's not as fast on 32-bit architecture.

Thu, Mar 6, 2:42 AM · libgcrypt
gniibe committed rCca8bf05e111b: cipher,fips: Fix for random-override. (authored by gniibe).
cipher,fips: Fix for random-override.
Thu, Mar 6, 2:28 AM
gniibe committed rC234eb316b0a0: cipher,visibility: Differentiate use of random-override in the SLI (authored by Lucas Mulling via Gcrypt-devel <gcrypt-devel@gnupg.org>).
cipher,visibility: Differentiate use of random-override in the SLI
Thu, Mar 6, 2:28 AM
gniibe committed rC755e6dce7279: cipher,ecc: Fix for supplied K. (authored by gniibe).
cipher,ecc: Fix for supplied K.
Thu, Mar 6, 2:28 AM
gniibe committed rC0414e126b939: fips,cipher: Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS. (authored by gniibe).
fips,cipher: Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS.
Thu, Mar 6, 2:28 AM

Wed, Mar 5

gniibe committed rCcc0a40bd7412: cipher: Differentiate no-blinding flag in the SLI (authored by Lucas Mulling via Gcrypt-devel <gcrypt-devel@gnupg.org>).
cipher: Differentiate no-blinding flag in the SLI
Wed, Mar 5, 6:43 AM
gniibe committed rC3bdb59c21b77: cipher: Differentiate igninvflag in the SLI (authored by Lucas Mulling via Gcrypt-devel <gcrypt-devel@gnupg.org>).
cipher: Differentiate igninvflag in the SLI
Wed, Mar 5, 6:43 AM

Tue, Mar 4

gniibe claimed T7541: libassuan AC_DEFINE_UNQUOTED m4 fix needs propagating to pinentry and gnupg2.
Tue, Mar 4, 11:19 AM · gpgme, gnupg, pinentry
gniibe committed rCbe57179f42f8: cipher: Add KAT for non-rfc6979 ECDSA with fixed k (authored by Lucas Mulling via Gcrypt-devel <gcrypt-devel@gnupg.org>).
cipher: Add KAT for non-rfc6979 ECDSA with fixed k
Tue, Mar 4, 6:00 AM
gniibe committed rC2f6d2db1a4c2: cipher: Differentiate use of label K in the SLI (authored by Lucas Mulling via Gcrypt-devel <gcrypt-devel@gnupg.org>).
cipher: Differentiate use of label K in the SLI
Tue, Mar 4, 5:55 AM
gniibe committed rC8404a048b7c5: tests: Allow tests with !USE_RSA. (authored by gniibe).
tests: Allow tests with !USE_RSA.
Tue, Mar 4, 5:55 AM
gniibe committed rCce4755d5c550: md: Use check_digest_algo_spec in _gcry_md_selftest. (authored by gniibe).
md: Use check_digest_algo_spec in _gcry_md_selftest.
Tue, Mar 4, 4:05 AM
gniibe committed rC54a6617b3679: fips,cipher: Do the computation when marking non-compliant. (authored by gniibe).
fips,cipher: Do the computation when marking non-compliant.
Tue, Mar 4, 4:05 AM
gniibe committed rCe5989e08a556: tests: Update t-fips-service-ind using GCRY_MD_SHA256 for KDF tests. (authored by gniibe).
tests: Update t-fips-service-ind using GCRY_MD_SHA256 for KDF tests.
Tue, Mar 4, 4:05 AM
gniibe added a reverting change for rC13a71215c255: md: Make SHA1 non-FIPS and differentiate in the SLI: rC1e815a00c302: Revert "md: Make SHA1 non-FIPS and differentiate in the SLI".
Tue, Mar 4, 4:05 AM
gniibe committed rC1e815a00c302: Revert "md: Make SHA1 non-FIPS and differentiate in the SLI" (authored by gniibe).
Revert "md: Make SHA1 non-FIPS and differentiate in the SLI"
Tue, Mar 4, 4:05 AM
gniibe committed rC2f17a98a80b1: md: Fix gcry_md_algo_info to mark/reject under FIPS mode. (authored by gniibe).
md: Fix gcry_md_algo_info to mark/reject under FIPS mode.
Tue, Mar 4, 4:05 AM
gniibe committed rC60e5039793c2: cipher:rsa: Mark/reject SHA1/unknown with RSA signature generation. (authored by gniibe).
cipher:rsa: Mark/reject SHA1/unknown with RSA signature generation.
Tue, Mar 4, 4:05 AM

Feb 25 2025

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

One more change for _gcry_dsa_gen_k in rC54caef02afa9: cipher:(EC)DSA: Simply use mpi_clear_highbit in _gcry_dsa_gen_k.

Feb 25 2025, 3:47 AM · libgcrypt, Bug Report
gniibe committed rC54caef02afa9: cipher:(EC)DSA: Simply use mpi_clear_highbit in _gcry_dsa_gen_k. (authored by gniibe).
cipher:(EC)DSA: Simply use mpi_clear_highbit in _gcry_dsa_gen_k.
Feb 25 2025, 3:46 AM
gniibe committed rCc1da86e45a6e: mpi: Avoid normalizing MPI in _gcry_mpi_invm. (authored by gniibe).
mpi: Avoid normalizing MPI in _gcry_mpi_invm.
Feb 25 2025, 3:45 AM
gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

One more change for mpi_invm in rCc1da86e45a6e: mpi: Avoid normalizing MPI in _gcry_mpi_invm.

Feb 25 2025, 3:25 AM · libgcrypt, Bug Report

Feb 20 2025

gniibe committed rC88ae76d069c3: cipher,mpi: Expose some MPI helper functions by mpi.h. (authored by gniibe).
cipher,mpi: Expose some MPI helper functions by mpi.h.
Feb 20 2025, 7:23 AM

Feb 19 2025

gniibe changed the status of T7519: libgcrypt: (EC)DSA signature generation should be constant-time from Open to Testing.

All changes are pushed to master.

Feb 19 2025, 5:36 AM · libgcrypt, Bug Report
gniibe changed the status of T7490: libgcrypt: constant-time modular exponentiation, a subtask of T3264: Possible RSA improvement, from Open to Testing.
Feb 19 2025, 5:35 AM · libgcrypt
gniibe changed the status of T7490: libgcrypt: constant-time modular exponentiation from Open to Testing.

Pushed the changes by the commit rC2039d93289db: mpi: Add MPI helper modular exponentiation, Least Leak Intended.

Feb 19 2025, 5:35 AM · libgcrypt
gniibe committed rC58aca75a295d: mpi: Add a comment on _gcry_mpih_lookup_lli. (authored by gniibe).
mpi: Add a comment on _gcry_mpih_lookup_lli.
Feb 19 2025, 3:02 AM
gniibe committed rCbd53c51b0338: mpi: Fix _gcry_mpih_add_lli, as macro. (authored by gniibe).
mpi: Fix _gcry_mpih_add_lli, as macro.
Feb 19 2025, 2:35 AM
gniibe committed rC8fd2aab881c7: mpi: Add MPH helper of table lookup, Least Leak Intended. (authored by gniibe).
mpi: Add MPH helper of table lookup, Least Leak Intended.
Feb 19 2025, 1:03 AM
gniibe committed rC2039d93289db: mpi: Add MPI helper modular exponentiation, Least Leak Intended. (authored by gniibe).
mpi: Add MPI helper modular exponentiation, Least Leak Intended.
Feb 19 2025, 1:03 AM

Feb 18 2025

gniibe committed rCbb5e893456b1: cipher:(EC)DSA: Fix _gcry_dsa_gen_*k not to normalize MPI. (authored by gniibe).
cipher:(EC)DSA: Fix _gcry_dsa_gen_*k not to normalize MPI.
Feb 18 2025, 3:18 AM
gniibe committed rC0b794c208db3: cipher:(EC)DSA: Avoid MPI normalize by mpi_rshift. (authored by gniibe).
cipher:(EC)DSA: Avoid MPI normalize by mpi_rshift.
Feb 18 2025, 3:18 AM
gniibe committed rCd05cdb31689a: cipher:(EC)DSA: Fix _gcry_dsa_modify_k to least leak. (authored by gniibe).
cipher:(EC)DSA: Fix _gcry_dsa_modify_k to least leak.
Feb 18 2025, 3:18 AM

Feb 17 2025

gniibe committed rC58e72af4eac4: mpi: Add _gcry_mpih_add_lli. (authored by gniibe).
mpi: Add _gcry_mpih_add_lli.
Feb 17 2025, 6:35 AM
gniibe committed rC459a6c9c81ee: mpi: Add _gcry_mpih_cmp_lli, Least Leak Intended. (authored by gniibe).
mpi: Add _gcry_mpih_cmp_lli, Least Leak Intended.
Feb 17 2025, 6:35 AM
gniibe committed rC06de5bc27753: mpi: Add _gcry_mpih_add_1_lli as Least Leak Intended. (authored by gniibe).
mpi: Add _gcry_mpih_add_1_lli as Least Leak Intended.
Feb 17 2025, 6:35 AM
gniibe committed rC13a71215c255: md: Make SHA1 non-FIPS and differentiate in the SLI (authored by Lucas Mulling <lucas.mulling@suse.com>).
md: Make SHA1 non-FIPS and differentiate in the SLI
Feb 17 2025, 5:23 AM

Feb 14 2025

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

Use of mpi_cmp is now being fixed, by providing _gcry_mpih_cmp_lli function.
Along with that, we need to fix use of mpi_cmp_ui, since it's skips earlier depending its limbs.

diff --git a/cipher/dsa-common.c b/cipher/dsa-common.c
index 170dce12..e010e182 100644
--- a/cipher/dsa-common.c
+++ b/cipher/dsa-common.c
@@ -25,6 +25,7 @@
Feb 14 2025, 1:32 AM · libgcrypt, Bug Report

Feb 10 2025

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

And then, we need to use less leaky version of mpi_cmp (because mpi_cmp calls mpi_normalize, it's not good).

Feb 10 2025, 5:37 AM · libgcrypt, Bug Report
gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

And this is for less leak for _gcry_dsa_modify_k:

Feb 10 2025, 5:36 AM · libgcrypt, Bug Report
gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

This is needed before we remove leaks by mpi_add in _gcry_dsa_modify_k :

Feb 10 2025, 3:34 AM · libgcrypt, Bug Report
gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

Commit rC35a6a6feb9dc: Fix _gcry_dsa_modify_k. is related, but it doesn't matter for usual compilers (it's an issue for MSVC).

Feb 10 2025, 3:24 AM · libgcrypt, Bug Report

Feb 7 2025

gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.

This is needed for RFC6979 flag support.

Feb 7 2025, 6:42 AM · libgcrypt, Bug Report
gniibe claimed T7519: libgcrypt: (EC)DSA signature generation should be constant-time.
Feb 7 2025, 6:37 AM · libgcrypt, Bug Report
gniibe created T7519: libgcrypt: (EC)DSA signature generation should be constant-time.
Feb 7 2025, 6:37 AM · libgcrypt, Bug Report

Feb 6 2025

gniibe committed rC35a6a6feb9dc: Fix _gcry_dsa_modify_k. (authored by gniibe).
Fix _gcry_dsa_modify_k.
Feb 6 2025, 8:42 AM
gniibe committed rEdbf1e0dc4722: gpgrt-config: Append default directory to PKG_CONFIG_PATH. (authored by gniibe).
gpgrt-config: Append default directory to PKG_CONFIG_PATH.
Feb 6 2025, 2:36 AM

Feb 3 2025

gniibe committed rW542d002295ab: Add Japanese Translation. (authored by gniibe).
Add Japanese Translation.
Feb 3 2025, 3:29 AM
gniibe committed rCff6c905bea7b: mpi: Rename _gcry_mpih_mod as the one of Least Leak Intended. (authored by gniibe).
mpi: Rename _gcry_mpih_mod as the one of Least Leak Intended.
Feb 3 2025, 1:28 AM
gniibe committed rC5c5089ba3620: mpi: Add _gcry_mpih_mul_lli as Least Leak Intended. (authored by gniibe).
mpi: Add _gcry_mpih_mul_lli as Least Leak Intended.
Feb 3 2025, 1:21 AM

Jan 31 2025

gniibe added a comment to T7490: libgcrypt: constant-time modular exponentiation.

The commit rC58c11aa8 is the improved version by k-ary exponentiation (while rC6dffd105e2e2 is 1-bit at a time) and using heap.

Jan 31 2025, 2:43 AM · libgcrypt
gniibe committed rC639b0fca1505: cipher:prime: Fix long standing bug for PRIME % 2 == 0. (authored by gniibe).
cipher:prime: Fix long standing bug for PRIME % 2 == 0.
Jan 31 2025, 2:14 AM

Jan 27 2025

gniibe committed rGPGMEPP8880b461a48a: build: With LD_LIBRARY_PATH defined, use --disable-new-dtags. (authored by gniibe).
build: With LD_LIBRARY_PATH defined, use --disable-new-dtags.
Jan 27 2025, 10:39 AM
gniibe committed rC9f0fd2656d7d: cipher: Check and mark non-compliant cipher modes in the SLI (authored by Lucas Mulling <lucas.mulling@suse.com>).
cipher: Check and mark non-compliant cipher modes in the SLI
Jan 27 2025, 1:05 AM

Jan 25 2025

gniibe added a comment to T7490: libgcrypt: constant-time modular exponentiation.

I created https://dev.gnupg.org/source/libgcrypt/history/gniibe%252Ft7490/
The commit rC6dffd105e2e2 works for me.
It is a bit of exponent at time Montgomery exponentiation.
I don't put an optimization for the reduction as I don't know if it's OK for patent-wise (looks like expired, though).

Jan 25 2025, 3:04 AM · libgcrypt

Jan 22 2025

gniibe committed rEb6df31136813: Skip gpg-error-config-test.sh for specific incompatible pkg-config. (authored by gniibe).
Skip gpg-error-config-test.sh for specific incompatible pkg-config.
Jan 22 2025, 3:11 AM
gniibe changed the status of T7486: libgcrypt: Remove WindowsCE support from Open to Testing.
Jan 22 2025, 3:06 AM · libgcrypt
gniibe committed rW8a73ec62d5e1: Translate update (ja). (authored by gniibe).
Translate update (ja).
Jan 22 2025, 1:20 AM

Jan 21 2025

gniibe committed rC24a2ca672b21: Remove WindowsCE support. (authored by gniibe).
Remove WindowsCE support.
Jan 21 2025, 1:49 AM
gniibe triaged T7490: libgcrypt: constant-time modular exponentiation as Wishlist priority.
Jan 21 2025, 1:44 AM · libgcrypt
gniibe added a comment to T6425: improve pinentry behavior and texts in smart card context .

For command line, reported issues have been fixed; Confusions for wrong errors are gone, it correctly reports appropriate errors of:

  • GPG_ERR_PIN_BLOCKED
  • GPG_ERR_NO_RESET_CODE
  • GPG_ERR_BAD_PIN
Jan 21 2025, 1:21 AM · gnupg24 (gnupg-2.4.5), scd, Bug Report, Restricted Project
gniibe added a comment to T6910: pinentry: Possibly add pinentry-gtk with GTK 4, and Drop pinentry-gtk-2.

Do you think it's too difficult for a beginner to write a pinentry-gtk4?

Jan 21 2025, 1:10 AM

Jan 20 2025

gniibe committed rGb1857a2836c9: gpg: Fix handling with no CRC armor. (authored by gniibe).
gpg: Fix handling with no CRC armor.
Jan 20 2025, 7:16 AM
gniibe changed the status of T7071: gpg: Support of No CRC in ASCII armor from Open to Testing.

Reported gnupg channel on IRC.
An ascii armored file in question was: https://github.com/syncthing/syncthing/releases/download/v1.29.2/sha256sum.txt.asc

Jan 20 2025, 7:13 AM · gnupg, Bug Report
gniibe added a comment to T7071: gpg: Support of No CRC in ASCII armor.

Fixed in: rGb1857a2836c9: gpg: Fix handling with no CRC armor.

Jan 20 2025, 7:11 AM · gnupg, Bug Report
gniibe reopened T7071: gpg: Support of No CRC in ASCII armor as "Open".

When CHECKCRC == 0 (no CRC), ->any_data was not set, resulted

	no valid OpenPGP data found.

wrongly.

Jan 20 2025, 7:10 AM · gnupg, Bug Report