User Details
User Details
- User Since
- Mar 27 2017, 4:47 PM (146 w, 6 d)
- Roles
- Administrator
- Availability
- Available
Fri, Jan 17
Fri, Jan 17
gniibe committed rG8748c50bfaa8: gpg: Prefer card key on use in multiple subkeys situation. (authored by gniibe).
gpg: Prefer card key on use in multiple subkeys situation.
gniibe committed rG853d5b7677ea: gpg: Prepare enhancement of agent_probe_secret_key. (authored by gniibe).
gpg: Prepare enhancement of agent_probe_secret_key.
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option), a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option) from Open to Testing.
Implemented in master.
gniibe updated subscribers of D497: Set vZZ.16b register to zero before use in armv8 gcm implementation.
It looks good.
Thu, Jan 16
Thu, Jan 16
gniibe committed rCd154c1e9e110: Add new curve named sm2p256v1. (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
Add new curve named sm2p256v1.
Register DCO for Tianjia Zhang.
gniibe raised the priority of T3416: gpg should select available signing key on card (even with -u option) from Normal to High.
gniibe added a comment to T3416: gpg should select available signing key on card (even with -u option).
With new "KEYINFO" command of scdaemon, finally, we can move on to support better selection of signing key.
(Note: having a private key on multiple cards had already been solved in T4301: Handling multiple subkeys on two SmartCards.)
gniibe changed the status of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) from Open to Testing.
In master, it has been implemented.
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys, a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys from Open to Testing.
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.
The first "SCD SERIALNO" command let scdaemon re-scan smartcards/tokens.
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.
With new "KEYINFO" command in scdaemon, a list of card keys can be retrieved by:
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID, a subtask of T4695: Remove SERIALNO as an identifier to select keys, as Resolved.
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
There is no use cases for $SIGNKEYID.
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
$ENCRKEYID use case have been removed.
gniibe committed rG8edd4b8b8cdc: gpg: Use "SCD KEYINFO" to get available card keys. (authored by gniibe).
gpg: Use "SCD KEYINFO" to get available card keys.
gniibe committed rG8240a70c31a8: gpg: Add agent_scd_keyinfo to retrieve available card keys. (authored by gniibe).
gpg: Add agent_scd_keyinfo to retrieve available card keys.
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
Fixed and backported.
gniibe committed rGa7840777e427: gpg: default-key: Simply don't limit by capability. (authored by gniibe).
gpg: default-key: Simply don't limit by capability.
gniibe committed rG1aa2a0a46dc1: gpg: default-key: Simply don't limit by capability. (authored by gniibe).
gpg: default-key: Simply don't limit by capability.
Wed, Jan 15
Wed, Jan 15
po: Update Japanese Translation.
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
Err.. Just removing the check may be the correct fix; It doesn't make sense to limit capability here.
gniibe committed rG9287f9e87b21: gpg: Cert only key should be usable with --default-key. (authored by gniibe).
gpg: Cert only key should be usable with --default-key.
Tue, Jan 14
Tue, Jan 14
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
I think rGe573e6188dad: gpg: Fix --default-key checks. should be fixed as:
diff --git a/g10/getkey.c b/g10/getkey.c index ad5dd8e01..cc908964e 100644 --- a/g10/getkey.c +++ b/g10/getkey.c @@ -1860,7 +1860,8 @@ parse_def_secret_key (ctrl_t ctrl) PKT_public_key *pk = node->pkt->pkt.public_key;
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
$ export GNUPGHOME=<somewhere> # Create a key with "C"-only capability $ gpg --quick-gen-key "test-user <chuji@gniibe.org>" ed25519 cert # Create another key (or get/import it) $ gpg --quick-gen-key "2020-user <chuji2020@gniibe.org>" ed25519 # Sign with the first key to the second key with --default-key $ gpg --default-key 7694AB44DED1154CEB981059B0B36418AF85C918 --lsign 72FF31542DB059A507BAF81BE05523DEB4B018E6
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
rGe573e6188dad: gpg: Fix --default-key checks. is suspicious.
Mon, Jan 13
Mon, Jan 13
gniibe committed rGc31266716dd6: agent: Extend agent_card_getattr with KEYGRIP. (authored by gniibe).
agent: Extend agent_card_getattr with KEYGRIP.
agent: handle SSH operation by KEYGRIP.
gniibe added a comment to E600: Weekly Standup.
Last week:
- gpg: use "SCD KEYINFO --list=auth" for ssh access (1)
- SSH access change
- GETATTR by KEYGRIP
- READKEY by KEYGRIP
This week:
- [DONE] gpg: use "SCD KEYINFO --list=auth" for ssh access (2)
- Don't use $AUTHKEYID anymore
- Check use case of $ENCRKEYID (other than keygen)
- Do same for $SIGNKEYID
gniibe is attending E600: Weekly Standup.
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
$AUTHKEYID use cases have been removed.
Fri, Jan 10
Fri, Jan 10
gniibe committed rG0cfded4bb148: scd: Implement direct access by KEYGRIP for GETATTR and READKEY. (authored by gniibe).
scd: Implement direct access by KEYGRIP for GETATTR and READKEY.
Thu, Jan 9
Thu, Jan 9
gniibe committed rG57b8ed61ab93: agent: SSH: SCD KEYINFO to list available keys. (authored by gniibe).
agent: SSH: SCD KEYINFO to list available keys.
Wed, Jan 8
Wed, Jan 8
gniibe added a comment to rEa2674207f7fe: build: Don't use -O0 which is not portable..
The particular part of mkheader compilation with -O0 was introduced by dkg for cross build support.
I believe that -O<number> (where <number> is not zero) is common but -O<something-other> is dependent.
Requesting non-optimization by -O0 seems GCC specific.
(I grep-ped autoconf-archive and observed the use cases of -O0.)
Tue, Jan 7
Tue, Jan 7
build: Don't use -O0 which is not portable.
Mon, Jan 6
Mon, Jan 6
gniibe is attending E597: Weekly Standup.
Mon, Dec 30
Mon, Dec 30
gniibe added a comment to E417: Weekly Standup.
Last week:
- Chopstx USB driver for GD32VF103
- in the master branch of Chopstx
gniibe is attending E417: Weekly Standup.
Fri, Dec 27
Fri, Dec 27
Dec 19 2019
Dec 19 2019
gniibe committed rGb2a2df174b21: scd: Enhance KEYINFO command to limit listing with capability. (authored by gniibe).
scd: Enhance KEYINFO command to limit listing with capability.
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
Considering the concrete use case(s), it is more rational to support listing by capability.
NOTE: exposing capability is orthogonal issue
Dec 18 2019
Dec 18 2019
gniibe renamed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Remove referring by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID to Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
gniibe lowered the priority of T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Unbreak Now! to Normal.
gniibe added a subtask for T4695: Remove SERIALNO as an identifier to select keys: Unknown Object (Maniphest Task).
gniibe added a parent task for T4301: Handling multiple subkeys on two SmartCards: T4695: Remove SERIALNO as an identifier to select keys.
Dec 16 2019
Dec 16 2019
gniibe added a comment to E595: Weekly Standup.
Last week:
- Recover from cold (which I got when I visited elementary school)
- accounting for my business
- a fix of nPth for corner cases
- On GNU/Linux, only expose npth_rwlock* API when __USE_UNIX98 or __USE_XOPEN2K, because PTHREAD_RWLOCK_* is only available in this condition.
This week:
- Investigate remaining SERIALNO issue for scdaemon: T4695: Remove SERIALNO as an identifier to select keys
- Set up my test environment for:
- Scute with Yubikey using PIV
- Are there any site for testing this? Shall we have a page for testing X.509 client certificate authentication?
- Scute with Yubikey using PIV
- USB driver for GD32VF103
gniibe is attending E595: Weekly Standup.
Fix how we expose rwlock API.
Dec 9 2019
Dec 9 2019
po: Update Japanese Translations.
gniibe added a comment to E578: Weekly Standup.
Todays topic from me:
Last week:
- Chasing a bug in: T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads
- If gpg-agent's option auto-expand-secmem can dismiss the pinentry pop-up, my analysis is correct
- fundamentally, the total fix may be possible by serializing cryptographic operations
- simple way is only one operation at most
- ideally, multiple operations at once by measuring amount of available resource
- scan the tasks: Mostly for pinentry and libgpg-error to consolidate common things
- those are not high priority, though
- confirmed that: on GD32VF103
- USART and SPI are as same as GD32F103/STM32F103
- USB is different, it's like STM32F105
This week:
- scan the tasks
- write an invoice to g10code
- considering a proposal (2020) to Purism
- Fully Free (PCB design, firmware) USB Keyboard
- If it is OK, use of GD32VF103 (RISC-V) would be good
gniibe is attending E578: Weekly Standup.
Dec 6 2019
Dec 6 2019
gniibe changed the status of T4678: libassuan.pc missing include dir directive in cflags from Open to Testing.
gniibe added a parent task for T4772: Release libgpg-error 1.37: T4498: Asan findings in tests/t-logging.c.
gniibe added a subtask for T4498: Asan findings in tests/t-logging.c: T4772: Release libgpg-error 1.37.
gniibe changed the status of T4643: gpgrt: enable the environment to set compiler and linker flags for helper tools from Open to Testing.
gniibe added a subtask for T4459: libgpg-error build issue with gawk 5.0.0: T4772: Release libgpg-error 1.37.
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
gniibe added a parent task for T4294: Release Libgcrypt 1.9.0: T4293: Add dedicated X25519 function to Libcgrypt .
gniibe removed a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
gniibe removed a subtask for T4294: Release Libgcrypt 1.9.0: T4293: Add dedicated X25519 function to Libcgrypt .
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4702: Release GnuPG 2.3.0.
gniibe added a parent task for T4702: Release GnuPG 2.3.0: T4293: Add dedicated X25519 function to Libcgrypt .
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.
In 2.2.18, this fix is not included. (partial fix was reverted)
gniibe closed T4362: Replace the exec funtions for photoids in gpg by our standard exec functions., a subtask of T4417: Work needed for gnupg 2.3, as Resolved.