gniibe (NIIBE Yutaka)Administrator
User

Projects (7)

Today

  • Clear sailing ahead.

Tuesday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:47 PM (146 w, 6 d)
Roles
Administrator
Availability
Available

Recent Activity

Fri, Jan 17

gniibe committed rG8748c50bfaa8: gpg: Prefer card key on use in multiple subkeys situation. (authored by gniibe).
gpg: Prefer card key on use in multiple subkeys situation.
Fri, Jan 17, 8:12 AM
gniibe committed rG853d5b7677ea: gpg: Prepare enhancement of agent_probe_secret_key. (authored by gniibe).
gpg: Prepare enhancement of agent_probe_secret_key.
Fri, Jan 17, 8:12 AM
gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG853d5b7677ea: gpg: Prepare enhancement of agent_probe_secret_key..
Fri, Jan 17, 8:12 AM · Testing, Feature Request, gnupg
gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG8748c50bfaa8: gpg: Prefer card key on use in multiple subkeys situation..
Fri, Jan 17, 8:12 AM · Testing, Feature Request, gnupg
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option), a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
Fri, Jan 17, 8:12 AM · Testing, gnupg, Feature Request
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option) from Open to Testing.

Implemented in master.

Fri, Jan 17, 8:12 AM · Testing, Feature Request, gnupg
gniibe updated subscribers of D497: Set vZZ.16b register to zero before use in armv8 gcm implementation.

It looks good.

Fri, Jan 17, 12:27 AM · libgcrypt

Thu, Jan 16

lopter awarded T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) a 100 token.
Thu, Jan 16, 6:48 PM · Testing, gnupg, Feature Request
gniibe committed rCd154c1e9e110: Add new curve named sm2p256v1. (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
Add new curve named sm2p256v1.
Thu, Jan 16, 9:16 AM
gniibe committed rCf34de41b9db5: Register DCO for Tianjia Zhang. (authored by gniibe).
Register DCO for Tianjia Zhang.
Thu, Jan 16, 9:16 AM
gniibe raised the priority of T3416: gpg should select available signing key on card (even with -u option) from Normal to High.
Thu, Jan 16, 5:43 AM · Testing, Feature Request, gnupg
gniibe added a comment to T3416: gpg should select available signing key on card (even with -u option).

With new "KEYINFO" command of scdaemon, finally, we can move on to support better selection of signing key.
(Note: having a private key on multiple cards had already been solved in T4301: Handling multiple subkeys on two SmartCards.)

Thu, Jan 16, 5:40 AM · Testing, Feature Request, gnupg
gniibe added a project to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): Testing.
Thu, Jan 16, 5:29 AM · Testing, gnupg, Feature Request
gniibe changed the status of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) from Open to Testing.

In master, it has been implemented.

Thu, Jan 16, 5:29 AM · Testing, gnupg, Feature Request
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys, a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
Thu, Jan 16, 5:25 AM · Testing, gnupg, Feature Request
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys from Open to Testing.
Thu, Jan 16, 5:25 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

The first "SCD SERIALNO" command let scdaemon re-scan smartcards/tokens.

Thu, Jan 16, 5:24 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

With new "KEYINFO" command in scdaemon, a list of card keys can be retrieved by:

Thu, Jan 16, 5:22 AM · Testing, Feature Request, gnupg
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID as Resolved.
Thu, Jan 16, 5:17 AM · scd, Feature Request, gnupg
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID, a subtask of T4695: Remove SERIALNO as an identifier to select keys, as Resolved.
Thu, Jan 16, 5:17 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

There is no use cases for $SIGNKEYID.

Thu, Jan 16, 5:16 AM · scd, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$ENCRKEYID use case have been removed.

Thu, Jan 16, 5:14 AM · scd, Feature Request, gnupg
gniibe committed rG8edd4b8b8cdc: gpg: Use "SCD KEYINFO" to get available card keys. (authored by gniibe).
gpg: Use "SCD KEYINFO" to get available card keys.
Thu, Jan 16, 5:10 AM
gniibe committed rG8240a70c31a8: gpg: Add agent_scd_keyinfo to retrieve available card keys. (authored by gniibe).
gpg: Add agent_scd_keyinfo to retrieve available card keys.
Thu, Jan 16, 5:10 AM
gniibe added a commit to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID: rG8edd4b8b8cdc: gpg: Use "SCD KEYINFO" to get available card keys..
Thu, Jan 16, 5:10 AM · scd, Feature Request, gnupg
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..

Fixed and backported.

Thu, Jan 16, 5:04 AM · gnupg (gpg22)
gniibe committed rGa7840777e427: gpg: default-key: Simply don't limit by capability. (authored by gniibe).
gpg: default-key: Simply don't limit by capability.
Thu, Jan 16, 2:32 AM
gniibe added a commit to T4810: A key with only "C" capability cannot be selected as default key.: rGa7840777e427: gpg: default-key: Simply don't limit by capability..
Thu, Jan 16, 2:32 AM · gnupg (gpg22)
gniibe committed rG1aa2a0a46dc1: gpg: default-key: Simply don't limit by capability. (authored by gniibe).
gpg: default-key: Simply don't limit by capability.
Thu, Jan 16, 2:31 AM
gniibe added a commit to T4810: A key with only "C" capability cannot be selected as default key.: rG1aa2a0a46dc1: gpg: default-key: Simply don't limit by capability..
Thu, Jan 16, 2:31 AM · gnupg (gpg22)

Wed, Jan 15

gniibe committed rG6e4f7fe26ea9: po: Update Japanese Translation. (authored by gniibe).
po: Update Japanese Translation.
Wed, Jan 15, 7:52 AM
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..

Err.. Just removing the check may be the correct fix; It doesn't make sense to limit capability here.

Wed, Jan 15, 7:41 AM · gnupg (gpg22)
gniibe committed rG9287f9e87b21: gpg: Cert only key should be usable with --default-key. (authored by gniibe).
gpg: Cert only key should be usable with --default-key.
Wed, Jan 15, 6:33 AM
gniibe added a commit to T4810: A key with only "C" capability cannot be selected as default key.: rG9287f9e87b21: gpg: Cert only key should be usable with --default-key..
Wed, Jan 15, 6:33 AM · gnupg (gpg22)

Tue, Jan 14

gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..

I think rGe573e6188dad: gpg: Fix --default-key checks. should be fixed as:

diff --git a/g10/getkey.c b/g10/getkey.c
index ad5dd8e01..cc908964e 100644
--- a/g10/getkey.c
+++ b/g10/getkey.c
@@ -1860,7 +1860,8 @@ parse_def_secret_key (ctrl_t ctrl)
           PKT_public_key *pk = node->pkt->pkt.public_key;
Tue, Jan 14, 8:28 AM · gnupg (gpg22)
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..
$ export GNUPGHOME=<somewhere>
# Create a key with "C"-only capability
$ gpg --quick-gen-key "test-user <chuji@gniibe.org>" ed25519 cert
# Create another key (or get/import it)
$ gpg --quick-gen-key "2020-user <chuji2020@gniibe.org>" ed25519
# Sign with the first key to the second key with --default-key
$ gpg --default-key 7694AB44DED1154CEB981059B0B36418AF85C918 --lsign 72FF31542DB059A507BAF81BE05523DEB4B018E6
Tue, Jan 14, 8:03 AM · gnupg (gpg22)
gniibe added a comment to T4810: A key with only "C" capability cannot be selected as default key..

rGe573e6188dad: gpg: Fix --default-key checks. is suspicious.

Tue, Jan 14, 7:39 AM · gnupg (gpg22)
gniibe created T4810: A key with only "C" capability cannot be selected as default key..
Tue, Jan 14, 7:38 AM · gnupg (gpg22)

Mon, Jan 13

gniibe committed rGc31266716dd6: agent: Extend agent_card_getattr with KEYGRIP. (authored by gniibe).
agent: Extend agent_card_getattr with KEYGRIP.
Mon, Jan 13, 9:09 AM
gniibe committed rG15028627a165: agent: handle SSH operation by KEYGRIP. (authored by gniibe).
agent: handle SSH operation by KEYGRIP.
Mon, Jan 13, 9:09 AM
gniibe added a comment to E600: Weekly Standup.

Last week:

  • gpg: use "SCD KEYINFO --list=auth" for ssh access (1)
    • SSH access change
    • GETATTR by KEYGRIP
    • READKEY by KEYGRIP

This week:

  • [DONE] gpg: use "SCD KEYINFO --list=auth" for ssh access (2)
    • Don't use $AUTHKEYID anymore
  • Check use case of $ENCRKEYID (other than keygen)
  • Do same for $SIGNKEYID
Mon, Jan 13, 9:03 AM
gniibe is attending E600: Weekly Standup.
Mon, Jan 13, 9:00 AM
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$AUTHKEYID use cases have been removed.

Mon, Jan 13, 8:53 AM · scd, Feature Request, gnupg

Fri, Jan 10

gniibe committed rG0cfded4bb148: scd: Implement direct access by KEYGRIP for GETATTR and READKEY. (authored by gniibe).
scd: Implement direct access by KEYGRIP for GETATTR and READKEY.
Fri, Jan 10, 8:02 AM

Thu, Jan 9

gniibe committed rG57b8ed61ab93: agent: SSH: SCD KEYINFO to list available keys. (authored by gniibe).
agent: SSH: SCD KEYINFO to list available keys.
Thu, Jan 9, 4:01 AM

Wed, Jan 8

gniibe added a comment to rEa2674207f7fe: build: Don't use -O0 which is not portable..

The particular part of mkheader compilation with -O0 was introduced by dkg for cross build support.
I believe that -O<number> (where <number> is not zero) is common but -O<something-other> is dependent.
Requesting non-optimization by -O0 seems GCC specific.
(I grep-ped autoconf-archive and observed the use cases of -O0.)

Wed, Jan 8, 1:28 AM

Tue, Jan 7

gniibe committed rEa2674207f7fe: build: Don't use -O0 which is not portable. (authored by gniibe).
build: Don't use -O0 which is not portable.
Tue, Jan 7, 9:27 AM

Mon, Jan 6

gniibe added a comment to E597: Weekly Standup.

Last week: Basically off

Mon, Jan 6, 7:14 AM
gniibe is attending E597: Weekly Standup.
Mon, Jan 6, 12:18 AM

Mon, Dec 30

gniibe added a comment to E417: Weekly Standup.

Last week:

  • Chopstx USB driver for GD32VF103
    • in the master branch of Chopstx
Mon, Dec 30, 5:24 AM
gniibe is attending E417: Weekly Standup.
Mon, Dec 30, 4:52 AM

Fri, Dec 27

jheeb awarded T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) a Love token.
Fri, Dec 27, 5:54 PM · Testing, gnupg, Feature Request

Dec 19 2019

gniibe committed rGb2a2df174b21: scd: Enhance KEYINFO command to limit listing with capability. (authored by gniibe).
scd: Enhance KEYINFO command to limit listing with capability.
Dec 19 2019, 10:07 AM
gniibe added a commit to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID: rGb2a2df174b21: scd: Enhance KEYINFO command to limit listing with capability..
Dec 19 2019, 10:07 AM · scd, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

Considering the concrete use case(s), it is more rational to support listing by capability.

NOTE: exposing capability is orthogonal issue
Dec 19 2019, 12:23 AM · scd, Feature Request, gnupg

Dec 18 2019

gniibe renamed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Remove referring by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID to Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
Dec 18 2019, 2:36 AM · scd, Feature Request, gnupg
gniibe lowered the priority of T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID from Unbreak Now! to Normal.
Dec 18 2019, 2:30 AM · scd, Feature Request, gnupg
gniibe created T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.
Dec 18 2019, 2:22 AM · scd, Feature Request, gnupg
gniibe added a subtask for T4695: Remove SERIALNO as an identifier to select keys: Unknown Object (Maniphest Task).
Dec 18 2019, 1:36 AM · Testing, Feature Request, gnupg
gniibe added a parent task for T4301: Handling multiple subkeys on two SmartCards: T4695: Remove SERIALNO as an identifier to select keys.
Dec 18 2019, 1:35 AM · gnupg, scd, Bug Report
gniibe added a subtask for T4695: Remove SERIALNO as an identifier to select keys: T4301: Handling multiple subkeys on two SmartCards.
Dec 18 2019, 1:35 AM · Testing, Feature Request, gnupg

Dec 16 2019

gniibe added a comment to E595: Weekly Standup.

Last week:

  • Recover from cold (which I got when I visited elementary school)
  • accounting for my business
  • a fix of nPth for corner cases
    • On GNU/Linux, only expose npth_rwlock* API when __USE_UNIX98 or __USE_XOPEN2K, because PTHREAD_RWLOCK_* is only available in this condition.

This week:

  • Investigate remaining SERIALNO issue for scdaemon: T4695: Remove SERIALNO as an identifier to select keys
  • Set up my test environment for:
    • Scute with Yubikey using PIV
      • Are there any site for testing this? Shall we have a page for testing X.509 client certificate authentication?
  • USB driver for GD32VF103
Dec 16 2019, 8:57 AM
gniibe is attending E595: Weekly Standup.
Dec 16 2019, 8:44 AM
gniibe committed rPTH09a12a679ec0: Fix how we expose rwlock API. (authored by gniibe).
Fix how we expose rwlock API.
Dec 16 2019, 6:02 AM

Dec 9 2019

gniibe committed rE9280ce104efd: po: Update Japanese Translations. (authored by gniibe).
po: Update Japanese Translations.
Dec 9 2019, 10:35 AM
gniibe created T4774: Cross compilation friendly libgpg-error.
Dec 9 2019, 7:58 AM · gpgrt
gniibe added a comment to E578: Weekly Standup.

Todays topic from me:

Last week:

  • Chasing a bug in: T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads
    • If gpg-agent's option auto-expand-secmem can dismiss the pinentry pop-up, my analysis is correct
    • fundamentally, the total fix may be possible by serializing cryptographic operations
      • simple way is only one operation at most
      • ideally, multiple operations at once by measuring amount of available resource
  • scan the tasks: Mostly for pinentry and libgpg-error to consolidate common things
    • those are not high priority, though
  • confirmed that: on GD32VF103
    • USART and SPI are as same as GD32F103/STM32F103
    • USB is different, it's like STM32F105

This week:

  • scan the tasks
  • write an invoice to g10code
  • considering a proposal (2020) to Purism
    • Fully Free (PCB design, firmware) USB Keyboard
    • If it is OK, use of GD32VF103 (RISC-V) would be good
Dec 9 2019, 2:17 AM
gniibe is attending E578: Weekly Standup.
Dec 9 2019, 1:52 AM

Dec 6 2019

gniibe changed the status of T4678: libassuan.pc missing include dir directive in cflags from Open to Testing.
Dec 6 2019, 5:31 AM · libassuan
gniibe added a parent task for T4772: Release libgpg-error 1.37: T4498: Asan findings in tests/t-logging.c.
Dec 6 2019, 5:28 AM · Release Info, gpgrt
gniibe added a subtask for T4498: Asan findings in tests/t-logging.c: T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:28 AM · gpgrt
gniibe changed the status of T4498: Asan findings in tests/t-logging.c from Open to Testing.
Dec 6 2019, 5:28 AM · gpgrt
gniibe changed the status of T4643: gpgrt: enable the environment to set compiler and linker flags for helper tools from Open to Testing.
Dec 6 2019, 5:27 AM · gpgrt, Feature Request
gniibe added a subtask for T4643: gpgrt: enable the environment to set compiler and linker flags for helper tools: T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:26 AM · gpgrt, Feature Request
gniibe added a parent task for T4772: Release libgpg-error 1.37: T4643: gpgrt: enable the environment to set compiler and linker flags for helper tools.
Dec 6 2019, 5:26 AM · Release Info, gpgrt
gniibe added a subtask for T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r: T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:25 AM · gpgrt, Feature Request
gniibe added a subtask for T4574: Change #!/bin/sh to #!/bin/bash in libgpg-error-1.36/src/gpg-error-config-test.sh: T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:25 AM · Bug Report
gniibe added a subtask for T4459: libgpg-error build issue with gawk 5.0.0: T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:25 AM · Gentoo, gpgrt, MacOS, Bug Report
gniibe added parent tasks for T4772: Release libgpg-error 1.37: T4574: Change #!/bin/sh to #!/bin/bash in libgpg-error-1.36/src/gpg-error-config-test.sh, T4459: libgpg-error build issue with gawk 5.0.0, T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r.
Dec 6 2019, 5:25 AM · Release Info, gpgrt
gniibe added a project to T4772: Release libgpg-error 1.37: Release Info.
Dec 6 2019, 5:23 AM · Release Info, gpgrt
gniibe created T4772: Release libgpg-error 1.37.
Dec 6 2019, 5:23 AM · Release Info, gpgrt
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Dec 6 2019, 5:22 AM · Testing, libgcrypt
gniibe added a parent task for T4294: Release Libgcrypt 1.9.0: T4293: Add dedicated X25519 function to Libcgrypt .
Dec 6 2019, 5:22 AM · Release Info, libgcrypt
gniibe removed a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Dec 6 2019, 5:21 AM · Testing, libgcrypt
gniibe removed a subtask for T4294: Release Libgcrypt 1.9.0: T4293: Add dedicated X25519 function to Libcgrypt .
Dec 6 2019, 5:21 AM · Release Info, libgcrypt
gniibe added a subtask for T4293: Add dedicated X25519 function to Libcgrypt : T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:20 AM · Testing, libgcrypt
gniibe added a parent task for T4702: Release GnuPG 2.3.0: T4293: Add dedicated X25519 function to Libcgrypt .
Dec 6 2019, 5:20 AM · Release Info, gpg4win, gnupg
gniibe added a project to T4293: Add dedicated X25519 function to Libcgrypt : Testing.
Dec 6 2019, 5:20 AM · Testing, libgcrypt
gniibe closed T4698: Results from clang analyzer as Resolved.
Dec 6 2019, 5:11 AM · gpgrt, Bug Report
gniibe added a parent task for T4702: Release GnuPG 2.3.0: T4713: Bug in get_best_pubkey_byname.
Dec 6 2019, 5:09 AM · Release Info, gpg4win, gnupg
gniibe added a subtask for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:09 AM · Testing, gnupg (gpg23)
gniibe removed a parent task for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:09 AM · Testing, gnupg (gpg23)
gniibe removed a subtask for T4702: Release GnuPG 2.3.0: T4713: Bug in get_best_pubkey_byname.
Dec 6 2019, 5:09 AM · Release Info, gpg4win, gnupg
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

In 2.2.18, this fix is not included. (partial fix was reverted)

Dec 6 2019, 5:05 AM · Testing, gnupg (gpg23)
gniibe added a parent task for T4713: Bug in get_best_pubkey_byname: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 5:05 AM · Testing, gnupg (gpg23)
gniibe added a subtask for T4702: Release GnuPG 2.3.0: T4713: Bug in get_best_pubkey_byname.
Dec 6 2019, 5:05 AM · Release Info, gpg4win, gnupg
gniibe closed T4362: Replace the exec funtions for photoids in gpg by our standard exec functions. as Resolved.
Dec 6 2019, 3:38 AM · gnupg, Feature Request
gniibe closed T4362: Replace the exec funtions for photoids in gpg by our standard exec functions., a subtask of T4417: Work needed for gnupg 2.3, as Resolved.
Dec 6 2019, 3:38 AM · gnupg (gpg23)
gniibe added a subtask for T4362: Replace the exec funtions for photoids in gpg by our standard exec functions.: T4702: Release GnuPG 2.3.0.
Dec 6 2019, 3:37 AM · gnupg, Feature Request
gniibe added a parent task for T4702: Release GnuPG 2.3.0: T4362: Replace the exec funtions for photoids in gpg by our standard exec functions..
Dec 6 2019, 3:37 AM · Release Info, gpg4win, gnupg