gniibe (NIIBE Yutaka)Administrator
User

Projects (6)

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Thursday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:47 PM (104 w, 21 h)
Roles
Administrator
Availability
Available

Recent Activity

Yesterday

gniibe committed rG8d1b5982138c: libdns: Don't use _[A-Z] which are reserved names. (authored by gniibe).
libdns: Don't use _[A-Z] which are reserved names.
Mon, Mar 25, 11:43 AM
gniibe added a commit to T4420: gnupg-2.2.14: Compilation failure on OpenIndiana: rG8d1b5982138c: libdns: Don't use _[A-Z] which are reserved names..
Mon, Mar 25, 11:43 AM · Solaris, gnupg (gpg22), Bug Report
gniibe claimed T4420: gnupg-2.2.14: Compilation failure on OpenIndiana.
Mon, Mar 25, 11:16 AM · Solaris, gnupg (gpg22), Bug Report
gniibe added a comment to E445: Weekly Standup.
Mon, Mar 25, 4:11 AM
gniibe is attending E445: Weekly Standup.
Mon, Mar 25, 4:09 AM

Fri, Mar 22

gniibe added a comment to T4415: Does not build using gcc 9.

With gcc-9 in Debian experimental, everything goes well.
Yes, the use of pragma is questionable, but let's see.

Fri, Mar 22, 10:39 AM · Bug Report

Mon, Mar 18

gniibe added a comment to E444: Weekly Standup.

Today's topic from me:

  • Shall we release new Poldi version, this year? The last official release is long ago. When we will, I want to remove the feature of authentication with X509 certificate using dirmngr. It may include network access for local authentication, which is questionable (for me).

Last week:

  • Most time spent for internal office work for tax (2018).
  • ECC fingerprint bug for 384-bit:
    • Avoid using AES192 (even if RFC-6637 says it SHOULD)
    • Fix scdaemon side
  • TTXS
    • learn (again) CCID protocol
    • selecting minimum feature set
      • TPDU only, assuming smartcard is modern enough, only +3V3, etc.
      • if more features are needed, adding later
  • Asked about Poldi <-- Debian user

This week:

  • Poldi thing (reply to a bug report to Debian user)
  • libgcrypt X25519 API
  • TTXS
Mon, Mar 18, 8:12 AM
gniibe is attending E444: Weekly Standup.
Mon, Mar 18, 4:09 AM

Thu, Mar 14

gniibe committed rGf199b627ce51: Fix the previous commit. (authored by gniibe).
Fix the previous commit.
Thu, Mar 14, 12:33 AM

Wed, Mar 13

gniibe committed rGaf3efd149f55: g10: Fix symmetric cipher algo constant for ECDH. (authored by gniibe).
g10: Fix symmetric cipher algo constant for ECDH.
Wed, Mar 13, 1:17 AM

Mon, Mar 11

gniibe added a comment to E443: Weekly Standup.
  • Yubikey test version arrived, but it seems they are sending another because of last-minute-bug
  • Last week
    • T4377: gpg-agent does not anymore restart a killed scdaemon: Sorry for trouble
    • TTXS plan
      • I think clear cut for works under g10code and works under Purism is required
        • simpler TPDU CCID reader -> TTXS (test against Gnuk test suite and OpenPGP card V3.3)
        • TTXS port to STM32L (even if USB is not used by Purism): Possibly Partly supported by Purism
        • I can work for CCID on serial communication and its support on host by GnuPG
        • Purism should do their work for UART support for pcscd and test with their hardware (including SIM cards)
    • Testing Scute
    • some minor build patches
  • This week
    • Office work for tax procedure
    • Learn about CCID implementation for TTXS
    • Watch Debian release process
Mon, Mar 11, 7:00 AM
gniibe is attending E443: Weekly Standup.
Mon, Mar 11, 6:50 AM

Wed, Mar 6

gniibe committed rK09a4cfae1439: Update libgcrypt.m4. (authored by gniibe).
Update libgcrypt.m4.
Wed, Mar 6, 7:11 AM
gniibe committed rS5509f2dbcb89: Update libassuan.m4. (authored by gniibe).
Update libassuan.m4.
Wed, Mar 6, 6:36 AM
gniibe changed the status of T4377: gpg-agent does not anymore restart a killed scdaemon from Open to Testing.
Wed, Mar 6, 3:05 AM · gnupg (gpg23), gpgagent, scd
gniibe added a comment to T4377: gpg-agent does not anymore restart a killed scdaemon.

That's my badness. In wait_child_thread, assuan_release may cause thread context switch to agent_reset_scd which accesses scd_local_list; This access should be serialized.
And... in start_scd, calling unlock_scd should be after unlocking start_scd_lock.

Wed, Mar 6, 3:05 AM · gnupg (gpg23), gpgagent, scd
gniibe committed rG2abad7585a00: agent: Fix detection of exit of scdaemon. (authored by gniibe).
agent: Fix detection of exit of scdaemon.
Wed, Mar 6, 3:00 AM
gniibe added a commit to T4377: gpg-agent does not anymore restart a killed scdaemon: rG2abad7585a00: agent: Fix detection of exit of scdaemon..
Wed, Mar 6, 3:00 AM · gnupg (gpg23), gpgagent, scd

Mon, Mar 4

gniibe committed rP6ddcc92cf6e9: Update gpg-error.m4 and libassuan.m4 from corresponding repos. (authored by gniibe).
Update gpg-error.m4 and libassuan.m4 from corresponding repos.
Mon, Mar 4, 9:46 AM
gniibe added a commit to T3949: pinentry looks for gpg-error-config and libassuan-config in ${SYSROOT}/bin but they are in ${SYSROOT}/usr/bin: rP6ddcc92cf6e9: Update gpg-error.m4 and libassuan.m4 from corresponding repos..
Mon, Mar 4, 9:46 AM · Cross-Compiler, pinentry, Bug Report
gniibe added a comment to E441: Weekly Standup.
Mon, Mar 4, 7:30 AM
gniibe is attending E441: Weekly Standup.
Mon, Mar 4, 7:17 AM

Thu, Feb 28

gniibe added inline comments to rG0173b249cfb7: agent: PKSIGN should return signature in same format for card..
Thu, Feb 28, 12:59 AM

Wed, Feb 27

gniibe committed rKf37361f86d22: Revert wrong fix for ECDSA. (authored by gniibe).
Revert wrong fix for ECDSA.
Wed, Feb 27, 6:53 AM
gniibe committed rK9fea74575085: Don't remove leading zero byte. (authored by gniibe).
Don't remove leading zero byte.
Wed, Feb 27, 3:18 AM
gniibe added a commit to T4104: gpgsm/ksba removes leading zeros from signature byte array: rK9fea74575085: Don't remove leading zero byte..
Wed, Feb 27, 3:18 AM · Testing, libksba, S/MIME, Bug Report
gniibe claimed T4104: gpgsm/ksba removes leading zeros from signature byte array.

We also need to fix for encryption and signature in CSR.

Wed, Feb 27, 3:17 AM · Testing, libksba, S/MIME, Bug Report
gniibe committed rG0173b249cfb7: agent: PKSIGN should return signature in same format for card. (authored by gniibe).
agent: PKSIGN should return signature in same format for card.
Wed, Feb 27, 2:49 AM

Tue, Feb 26

gniibe committed rK5d9278f3d130: Fixing ECDSA, support EdDSA signatures in CSRs. (authored by gniibe).
Fixing ECDSA, support EdDSA signatures in CSRs.
Tue, Feb 26, 7:29 AM
gniibe claimed T4367: gnupg fails to build with gcc9.

Fixed in master, by removing use of compound literals. Compound literals are not portable feature (even for C99 code), so, it's good to avoid when we can.
Still dns.c uses C99 features of struct initializer with name.

Tue, Feb 26, 4:36 AM · gnupg (gpg22), Bug Report
gniibe committed rG371ae25f8f6f: libdns: Avoid using compound literals (8). (authored by gniibe).
libdns: Avoid using compound literals (8).
Tue, Feb 26, 4:33 AM
gniibe committed rGd661acd48323: libdns: Avoid using compound literals (7). (authored by gniibe).
libdns: Avoid using compound literals (7).
Tue, Feb 26, 4:33 AM
gniibe committed rGa1ccfe2b3784: libdns: Avoid using compound literals (5). (authored by gniibe).
libdns: Avoid using compound literals (5).
Tue, Feb 26, 4:33 AM
gniibe committed rG6501e59d3685: libdns: Avoid using compound literals (6). (authored by gniibe).
libdns: Avoid using compound literals (6).
Tue, Feb 26, 4:33 AM
gniibe committed rG7313a112f9c7: libdns: Avoid using compound literals (4). (authored by gniibe).
libdns: Avoid using compound literals (4).
Tue, Feb 26, 4:33 AM
gniibe committed rG72efb7840258: libdns: Avoid using compound literals (3). (authored by gniibe).
libdns: Avoid using compound literals (3).
Tue, Feb 26, 4:33 AM
gniibe committed rG455ef62d29a1: libdns: Avoid using compound literals (2). (authored by gniibe).
libdns: Avoid using compound literals (2).
Tue, Feb 26, 4:33 AM
gniibe committed rG1c405499388f: libdns: Avoid using compound literals. (authored by gniibe).
libdns: Avoid using compound literals.
Tue, Feb 26, 4:33 AM

Mon, Feb 25

gniibe is attending E439: Weekly Standup.
Mon, Feb 25, 11:12 AM
gniibe added projects to T3381: dirmngr won't start on Windows 10 with admin level account: Testing, libassuan.
Mon, Feb 25, 3:37 AM · libassuan, Testing, gpg4win, dirmngr, Windows, Bug Report
gniibe added a comment to E439: Weekly Standup.
Mon, Feb 25, 3:33 AM
gniibe committed rGe140c6d4f581: gpgscm: Build well even if NDEBUG defined. (authored by gniibe).
gpgscm: Build well even if NDEBUG defined.
Mon, Feb 25, 2:51 AM
gniibe added a commit to T3959: Syntax errors in scheme.c: rGe140c6d4f581: gpgscm: Build well even if NDEBUG defined..
Mon, Feb 25, 2:51 AM · Bug Report
gniibe committed rG8161afb9ddda: gpgscm: Build well even if NDEBUG defined. (authored by gniibe).
gpgscm: Build well even if NDEBUG defined.
Mon, Feb 25, 2:51 AM
gniibe added a commit to T3959: Syntax errors in scheme.c: rG8161afb9ddda: gpgscm: Build well even if NDEBUG defined..
Mon, Feb 25, 2:50 AM · Bug Report
gniibe closed T3959: Syntax errors in scheme.c as Resolved.

Thanks, applied to GnuPG 2.2, master, and libgpg-error.

Mon, Feb 25, 2:49 AM · Bug Report
gniibe committed rCad133fc79757: fips: Only test check_binary_integrity when fips_mode is enabled. (authored by gniibe).
fips: Only test check_binary_integrity when fips_mode is enabled.
Mon, Feb 25, 1:43 AM
gniibe added a commit to T4274: Fail selftests when checksum file is missing in FIPS mode only: rCad133fc79757: fips: Only test check_binary_integrity when fips_mode is enabled..
Mon, Feb 25, 1:43 AM · Testing, libgcrypt, Bug Report
gniibe triaged T4274: Fail selftests when checksum file is missing in FIPS mode only as Normal priority.

Fixed in master.

Mon, Feb 25, 1:10 AM · Testing, libgcrypt, Bug Report
gniibe claimed T4274: Fail selftests when checksum file is missing in FIPS mode only.

Thanks for your report.
I think that your patch is too generous to run HMAC even if fips_mode is not enabled; Simply, we can stop calling integrity check when fips_mode is not active.

Mon, Feb 25, 1:09 AM · Testing, libgcrypt, Bug Report

Feb 22 2019

gniibe committed rG611faf1579a5: scd: internal driver: Submit SET_INTERFACE control transfer. (authored by gniibe).
scd: internal driver: Submit SET_INTERFACE control transfer.
Feb 22 2019, 12:14 PM

Feb 21 2019

gniibe committed rG2013cb5ee667: scd: Clear CHV status on timeout error. (authored by gniibe).
scd: Clear CHV status on timeout error.
Feb 21 2019, 7:53 AM
gniibe committed rGbd15aa34ab8a: scd: Handle ack button timeout as GPG_ERR_TIMEOUT. (authored by gniibe).
scd: Handle ack button timeout as GPG_ERR_TIMEOUT.
Feb 21 2019, 7:18 AM
gniibe committed rG64b7c6fd1945: tests: Add "disable-scdaemon" in gpg-agent.conf. (authored by gniibe).
tests: Add "disable-scdaemon" in gpg-agent.conf.
Feb 21 2019, 4:35 AM
gniibe added a comment to T4363: Availability of FST-01SZ in Europe.

I use BBG-SWD (my own tool to flash MCU) for transparency of the process. It's up to you to choice a tool for initial flashing.
Just in case, here are resources to be reproducible.

Feb 21 2019, 3:08 AM · Verein

Feb 19 2019

gniibe changed the status of T2011: gnupg should notify cancellation of its operation to gpg-agent to kill pinentry from Open to Testing.
Feb 19 2019, 8:17 AM · Bug Report, gpgagent
gniibe added a comment to T4198: Pinentry doesn't capture input correctly, crashes terminal instead.

Original issue (of pinentry-curses, which should be killed by CTRL-C) is related to T2011: gnupg should notify cancellation of its operation to gpg-agent to kill pinentry, I suppose. It is fixed in master and testing.
I don't know about the second one with pinentry-tty.

Feb 19 2019, 8:14 AM · pinentry, Bug Report
gniibe committed rG14e5435afb50: gpg: Fix comparison. (authored by Neal H. Walfield <neal@g10code.com>).
gpg: Fix comparison.
Feb 19 2019, 7:56 AM
gniibe committed rG005e951714ff: agent: Fix cancellation handling for scdaemon. (authored by gniibe).
agent: Fix cancellation handling for scdaemon.
Feb 19 2019, 7:56 AM
gniibe committed rG90e5f49b6a2e: scd: Distinguish cancel by user and protocol error. (authored by gniibe).
scd: Distinguish cancel by user and protocol error.
Feb 19 2019, 7:56 AM
gniibe committed rG6e422b5135c7: common: Fix gnupg_wait_processes. (authored by gniibe).
common: Fix gnupg_wait_processes.
Feb 19 2019, 7:56 AM
gniibe added a comment to T2011: gnupg should notify cancellation of its operation to gpg-agent to kill pinentry.

Fixed in master.

Feb 19 2019, 6:42 AM · Bug Report, gpgagent
gniibe committed rGc395f8315362: agent: Terminate pinentry process gracefully, by watching socket. (authored by gniibe).
agent: Terminate pinentry process gracefully, by watching socket.
Feb 19 2019, 6:41 AM
gniibe added a commit to T2011: gnupg should notify cancellation of its operation to gpg-agent to kill pinentry: rGc395f8315362: agent: Terminate pinentry process gracefully, by watching socket..
Feb 19 2019, 6:41 AM · Bug Report, gpgagent
gniibe committed rG99aa54323f97: agent: Minor change for pinentry status handling. (authored by gniibe).
agent: Minor change for pinentry status handling.
Feb 19 2019, 6:41 AM
gniibe committed rGada797f477f9: agent: Factor out the getpin interaction. (authored by gniibe).
agent: Factor out the getpin interaction.
Feb 19 2019, 3:58 AM
gniibe claimed T2011: gnupg should notify cancellation of its operation to gpg-agent to kill pinentry.
Feb 19 2019, 3:55 AM · Bug Report, gpgagent
gniibe closed T3600: Support ACKNOWLEDGE button for OpenPGP card and/or Token as Resolved.

Gnuk implements the feature, and newer GnuPG shows a dialog to request pushing the ack button.

Feb 19 2019, 2:50 AM · scd
gniibe closed T4217: {libksba,libgcrypt,ntbtls,libassuan,npth}.m4, {libksba,libgcrypt,ntbtls,libassuan}-config script and gpg-error-config as Resolved.
Feb 19 2019, 2:48 AM · npth, libassuan, ntbtls, libgcrypt, libksba
gniibe closed T4245: 2019: Use of gpg-error-config scrypt (symbolic link) for {libassuan,libksba,npth,libgcrypt,ntbtls,gpgme}-config as Resolved.
Feb 19 2019, 2:46 AM
gniibe closed T4340: gpg-agent should support clearing passphrase cache for SSH as Resolved.
Feb 19 2019, 2:45 AM · gpgagent
gniibe closed T4348: When pinentry cache is used, gpg-agent should clear the cache if it failed at unprotect, a subtask of T4340: gpg-agent should support clearing passphrase cache for SSH, as Resolved.
Feb 19 2019, 2:45 AM · gpgagent
gniibe closed T4348: When pinentry cache is used, gpg-agent should clear the cache if it failed at unprotect as Resolved.
Feb 19 2019, 2:45 AM · gpgagent
gniibe lowered the priority of T4319: New 2017 MAC permission isues on gpg-agent from High to Low.

Your problem is apparently not an issue of upstream development of GnuPG; It is your setup script (agent.sh?) which specifies /dev/shm/SOMETHING.
Standard GnuPG never does that. We have no idea about use of /dev/shm/SOMETHING.

Feb 19 2019, 2:37 AM · MacOS, gpgagent, gnupg (gpg22)

Feb 18 2019

gniibe added a comment to E438: Weekly Standup.

Last week:

  • Review Damien's change, applied (not yet finished): libksba & gpg
  • My notebook computer (Chromebook) is being broken (keyboard).
Feb 18 2019, 9:38 AM
gniibe is attending E438: Weekly Standup.
Feb 18 2019, 9:30 AM
gniibe added a comment to T4363: Availability of FST-01SZ in Europe.

Some of my terminology: I call "case", "shell", and "board".

Feb 18 2019, 9:27 AM · Verein
gniibe committed rG3cbdf896e691: sm: Support generation of card-based ed25519 CSR. (authored by Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>).
sm: Support generation of card-based ed25519 CSR.
Feb 18 2019, 3:37 AM
gniibe added a commit to T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix: rG3cbdf896e691: sm: Support generation of card-based ed25519 CSR..
Feb 18 2019, 3:37 AM · S/MIME, Feature Request, libksba

Feb 15 2019

gniibe committed rG74e9b579ca27: sm: Support generation of card-based ECDSA CSR. (authored by Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>).
sm: Support generation of card-based ECDSA CSR.
Feb 15 2019, 3:02 AM
gniibe added a commit to T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: rG74e9b579ca27: sm: Support generation of card-based ECDSA CSR..
Feb 15 2019, 3:02 AM · Feature Request, S/MIME

Feb 14 2019

gniibe committed rK98882064f457: Support multi-valued signatures in CSRs. (authored by Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>).
Support multi-valued signatures in CSRs.
Feb 14 2019, 2:32 AM
gniibe added a commit to T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: rK98882064f457: Support multi-valued signatures in CSRs..
Feb 14 2019, 2:32 AM · Feature Request, S/MIME

Feb 13 2019

gniibe accepted D451: agent: Fix S2K calibration..

Final fix was rG380bce13d94f: agent: Use clock or clock_gettime for calibration., with clock.
Closing this patch.

Feb 13 2019, 10:52 AM

Feb 12 2019

gniibe added a comment to T4363: Availability of FST-01SZ in Europe.

The metal case, I bought from here (it's expensive CNY3.00, for individuals): https://item.taobao.com/item.htm?id=550180089286

Feb 12 2019, 7:56 AM · Verein
gniibe added a comment to T4363: Availability of FST-01SZ in Europe.

For prototype, I used:

Feb 12 2019, 7:55 AM · Verein
gniibe triaged T4363: Availability of FST-01SZ in Europe as Wishlist priority.
Feb 12 2019, 7:51 AM · Verein
gniibe added a comment to T4363: Availability of FST-01SZ in Europe.
Feb 12 2019, 7:50 AM · Verein
gniibe created T4363: Availability of FST-01SZ in Europe.
Feb 12 2019, 7:29 AM · Verein

Feb 11 2019

gniibe added a comment to E437: Weekly Standup.

Last week:

  • GnuPG 2.2: applied patches (minimum) from master. Update ja.po
    • for 2.2.13
    • Debian freeze (soft freeze will be tomorrow!)
Feb 11 2019, 7:28 AM
gniibe is attending E437: Weekly Standup.
Feb 11 2019, 7:24 AM

Feb 6 2019

gniibe committed rGc16685b2f502: po: Update Japanese translation. (authored by gniibe).
po: Update Japanese translation.
Feb 6 2019, 9:31 AM
gniibe committed rG9109bb9919f8: agent: Clear bogus pinentry cache, when it causes an error. (authored by gniibe).
agent: Clear bogus pinentry cache, when it causes an error.
Feb 6 2019, 9:31 AM
gniibe added a commit to T4348: When pinentry cache is used, gpg-agent should clear the cache if it failed at unprotect: rG9109bb9919f8: agent: Clear bogus pinentry cache, when it causes an error..
Feb 6 2019, 9:31 AM · gpgagent
gniibe committed rG7f4c3eb0a039: dirmngr: Fix initialization of assuan's nPth hook. (authored by gniibe).
dirmngr: Fix initialization of assuan's nPth hook.
Feb 6 2019, 9:31 AM

Feb 4 2019

gniibe added a comment to E435: Weekly Standup.

I tried to express no attendance of telco today, but it seems that the event itself is canceled?, sorry.
I will join Godot conference today. I don't think there is quiet space.

Feb 4 2019, 7:00 AM
gniibe added a comment to E435: Weekly Standup.
  • Last week
    • FOSDEM
      • I will share info about the metal shell
      • I will make sure to share all other info of FST-01SZ
      • I will do CCID firmware, which should include
        • Chopstx port to Cortex-M4
        • USB driver for STM32L4xx
  • This week
    • Backport some important changes to 2.2 for the release
    • Chinese New Year
Feb 4 2019, 6:57 AM
gniibe cancelled E435: Weekly Standup.
Feb 4 2019, 6:53 AM

Jan 28 2019

gniibe added a comment to E434: Weekly Standup.

Topics:

  • FST-01SZ: bare version (board+metal enclosure) now available. In addition, I have samples for case.
Jan 28 2019, 6:28 AM
gniibe is attending E434: Weekly Standup.
Jan 28 2019, 5:27 AM