Page MenuHome GnuPG

gniibe (NIIBE Yutaka)
UserAdministrator

Projects (8)

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:47 PM (238 w, 2 d)
Roles
Administrator
Availability
Available

Recent Activity

Yesterday

gniibe updated the task description for T5665: libgcrypt : Restrict message digest use for FIPS 140-3.
Wed, Oct 20, 12:21 PM · FIPS, Bug Report, libgcrypt
gniibe added a comment to T5665: libgcrypt : Restrict message digest use for FIPS 140-3.

Perhaps, as a library (considering the benefit of users), it would be better to allow signature verification with SHA-1, to defer the decision to application.

Wed, Oct 20, 12:20 PM · FIPS, Bug Report, libgcrypt
gniibe added a comment to T5664: npth-1.6: error: unknown type name ‘pthread_rwlock_t’.

I have a little concern for glibc 2.34 (which has dummy libpthread and all is actually in libc).

Wed, Oct 20, 9:57 AM · npth, Bug Report
gniibe committed rCa23cf78102f3: cipher: Reject SHA-1 for hash+sign/verify when FIPS enabled. (authored by gniibe).
cipher: Reject SHA-1 for hash+sign/verify when FIPS enabled.
Wed, Oct 20, 5:40 AM
gniibe added a comment to T5665: libgcrypt : Restrict message digest use for FIPS 140-3.

(3-1) is implemented: rCa23cf78102f3: cipher: Reject SHA-1 for hash+sign/verify when FIPS enabled.

Wed, Oct 20, 5:13 AM · FIPS, Bug Report, libgcrypt
gniibe updated the task description for T5665: libgcrypt : Restrict message digest use for FIPS 140-3.
Wed, Oct 20, 4:28 AM · FIPS, Bug Report, libgcrypt
gniibe added a comment to T5665: libgcrypt : Restrict message digest use for FIPS 140-3.

For a programmer like me, it is easier the behavior will be:

Wed, Oct 20, 4:26 AM · FIPS, Bug Report, libgcrypt
gniibe triaged T5664: npth-1.6: error: unknown type name ‘pthread_rwlock_t’ as Normal priority.

It was fixed in: rPTH223e59f992f9: build: Define _NPTH_NO_RWLOCK when we can't find pthread_rwlock_t.

Wed, Oct 20, 3:36 AM · npth, Bug Report
gniibe added a comment to T5433: libgcrypt: Do not use SHA1 by default.

The problem is that the SHA-1 as a digest algorithm itself is allowed in FIPS mode (for non-cryptographic digests), but using it as part of approved signature scheme is not allowed

Wed, Oct 20, 3:27 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T5665: libgcrypt : Restrict message digest use for FIPS 140-3.

The current code is inconsistent about its behavior: how non-approved digest algos are supported or not when FIPS enabled.

Wed, Oct 20, 3:17 AM · FIPS, Bug Report, libgcrypt
gniibe added projects to T5665: libgcrypt : Restrict message digest use for FIPS 140-3: libgcrypt, Bug Report, FIPS.

If .fips will mean FIPS 140-3, why not following?

diff --git a/cipher/sha1.c b/cipher/sha1.c
index 3bb24c7e..cb50ef66 100644
--- a/cipher/sha1.c
+++ b/cipher/sha1.c
@@ -759,7 +759,7 @@ static gcry_md_oid_spec_t oid_spec_sha1[] =
Wed, Oct 20, 3:07 AM · FIPS, Bug Report, libgcrypt
gniibe renamed T5244: libgcrypt: Restrict MD5 use from libgcrypt: Restrict message digest use to libgcrypt: Restrict MD5 use.
Wed, Oct 20, 3:04 AM · Bug Report, FIPS, libgcrypt
gniibe added a project to T5244: libgcrypt: Restrict MD5 use: Bug Report.

I created T5665: libgcrypt : Restrict message digest use for FIPS 140-3.

Wed, Oct 20, 3:03 AM · Bug Report, FIPS, libgcrypt
gniibe triaged T5665: libgcrypt : Restrict message digest use for FIPS 140-3 as High priority.
Wed, Oct 20, 2:59 AM · FIPS, Bug Report, libgcrypt
gniibe removed a project from T5244: libgcrypt: Restrict MD5 use: Testing.

Let me move this ticket as DONE (now Testing status), as the subject was solved (MD5 and soft/forced/inactive things).

Wed, Oct 20, 2:54 AM · Bug Report, FIPS, libgcrypt

Tue, Oct 19

gniibe added a comment to T5433: libgcrypt: Do not use SHA1 by default.

I investigated if the possible change above (if applied) constitutes an ABI change: Indeed, it will be an ABI change, and an API change; code should be modified and build.

Tue, Oct 19, 8:58 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T5433: libgcrypt: Do not use SHA1 by default.

Sorry, I was wrong. We don't need any changes.

Tue, Oct 19, 8:07 AM · FIPS, libgcrypt, Bug Report

Mon, Oct 18

gniibe added a comment to T5433: libgcrypt: Do not use SHA1 by default.

I am going to implement rejecting SHA-1 through new API (hash+sign, hash+verify).

Mon, Oct 18, 11:24 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to E891: Weekly Standup.

Last week:

  • libgcrypt
  • libksba: Bison and its yylex: T5616
  • pinentry-curses: color support: T5631 and others
  • dirmngr - dns: T565
  • New Gnuk release for PC/SC and emulated Gnuk

This week:

  • openpgp
    • Implement writing side of new448
  • libgcrypt
    • more on constructor / global_init
  • gnupg
    • consider PC/SC heuristic T5644 and use of virtual PC/SC driver
Mon, Oct 18, 9:44 AM
gniibe is attending E891: Weekly Standup.
Mon, Oct 18, 9:35 AM

Fri, Oct 15

gniibe added a comment to T5636: Run integrity checks + selftests from library constructor in FIPS.

It seems for me that the patches to random/ was written in old days.

  • Now, we have getentropy in libc
    • This is most reliable one
    • better than urandom, because it may block when kernel is not yet seeded
    • better than random, because it never blocks once kernel is seeded
  • So, the real path in rndlinux.c is actually, call to getentropy
  • No access to /dev/random or /dev/urandom any more, in fact
  • Although old code remains, non-touched
    • like use of syscall when getentropy function is not available
Fri, Oct 15, 8:42 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation.

Add doc in gcrypt.texi.

Fri, Oct 15, 8:02 AM · FIPS, libgcrypt, Feature Request
gniibe committed rC8f31f652d453: doc: Add entries for hash+sign functions. (authored by gniibe).
doc: Add entries for hash+sign functions.
Fri, Oct 15, 8:01 AM
gniibe committed rCd45db4ad16fe: fips: Improve selftests invocation. (authored by Jakuje).
fips: Improve selftests invocation.
Fri, Oct 15, 4:37 AM
gniibe added a comment to T5617: fips: Check library integrity before running selftests.

Thank you. Applied.

Fri, Oct 15, 4:37 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

Thanks for testing. I pushed a fix for my typo: rPb713f31c5b04: curses: Fix the previous commit.

Fri, Oct 15, 4:20 AM · Testing, pinentry
gniibe committed rPb713f31c5b04: curses: Fix the previous commit. (authored by gniibe).
curses: Fix the previous commit.
Fri, Oct 15, 4:18 AM
gniibe committed rG48359c723206: dns: Make reading resolv.conf more robust. (authored by gniibe).
dns: Make reading resolv.conf more robust.
Fri, Oct 15, 3:56 AM
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

I don't know if it's same in your case, but to fix my case, I pushed a change {rG41eef36dc}

Fri, Oct 15, 3:52 AM · Info Needed, Bug Report, dns, dirmngr
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

I managed to create a case. Put a line:

Fri, Oct 15, 3:28 AM · Info Needed, Bug Report, dns, dirmngr
gniibe triaged T5658: pinentry-curses color option as Normal priority.
Fri, Oct 15, 2:29 AM · Documentation, pinentry
gniibe triaged T5659: pinentry-curses disable colors as Normal priority.
Fri, Oct 15, 2:27 AM · pinentry, Feature Request
gniibe updated the task description for T5659: pinentry-curses disable colors.
Fri, Oct 15, 2:27 AM · pinentry, Feature Request
gniibe updated the task description for T5658: pinentry-curses color option.
Fri, Oct 15, 2:26 AM · Documentation, pinentry
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

BTW, in your screen shot (log is preferred here), it shows 1c00, that must be actually written as AAAA (0x1c). In the bug T3803, we saw byte sequence like that, additional 00 was added then resulted malformed DNS packet.

Fri, Oct 15, 2:17 AM · Info Needed, Bug Report, dns, dirmngr

Thu, Oct 14

gniibe triaged T5617: fips: Check library integrity before running selftests as Normal priority.

OK, let us start discussion by applying the patch first.

Thu, Oct 14, 9:53 AM · FIPS, libgcrypt, Bug Report
gniibe committed rCb496868dc37d: fips: Fix the previous commit. (authored by gniibe).
fips: Fix the previous commit.
Thu, Oct 14, 9:45 AM
gniibe committed rCd2c68849d19b: fips: Verify library integrity before running selftests. (authored by Jakuje).
fips: Verify library integrity before running selftests.
Thu, Oct 14, 9:38 AM
gniibe changed the status of T5645: RSA/DSA keygen modification for FIPS/ACVP testing from Open to Testing.
Thu, Oct 14, 9:29 AM · Testing, libgcrypt, FIPS, Bug Report
gniibe added a project to T5645: RSA/DSA keygen modification for FIPS/ACVP testing: Testing.
Thu, Oct 14, 9:28 AM · Testing, libgcrypt, FIPS, Bug Report
gniibe added a comment to T5645: RSA/DSA keygen modification for FIPS/ACVP testing.

Applied the RSA part.

Thu, Oct 14, 9:28 AM · Testing, libgcrypt, FIPS, Bug Report
gniibe committed rCbba63fab1a22: cipher: Allow generation of RSA keys > 2k (authored by Jakuje).
cipher: Allow generation of RSA keys > 2k
Thu, Oct 14, 8:51 AM
gniibe moved T5550: Fix check_binary_integrity from Next to Done on the FIPS board.
Thu, Oct 14, 8:13 AM · Testing, FIPS, libgcrypt
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

Ah, other possible case is .. in hostname.

Thu, Oct 14, 7:50 AM · Info Needed, Bug Report, dns, dirmngr
gniibe added a project to T5657: dirmngr: libdns sends malformed dns requests: Info Needed.
Thu, Oct 14, 7:45 AM · Info Needed, Bug Report, dns, dirmngr
gniibe added a comment to T5657: dirmngr: libdns sends malformed dns requests.

It's hard to investigate your problem, with no information of host for the query.
I mean, there is no case to replicate (for us).

Thu, Oct 14, 7:44 AM · Info Needed, Bug Report, dns, dirmngr

Wed, Oct 13

gniibe committed rKf3b7dd416777: ASN.1 parser: Provide token table (no more %token-table). (authored by gniibe).
ASN.1 parser: Provide token table (no more %token-table).
Wed, Oct 13, 11:03 AM
gniibe added a project to T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared: Testing.
Wed, Oct 13, 10:03 AM · Testing, toolchain, libksba, Bug Report
gniibe committed rPd937ccfe4445: curses: Specify fg/bg when an extention of Ncurses is not available. (authored by gniibe).
curses: Specify fg/bg when an extention of Ncurses is not available.
Wed, Oct 13, 4:06 AM
gniibe closed T4848: Usage of git in configure.ac for pinentry/gpa finds incorrect repositories as Resolved.
Wed, Oct 13, 3:54 AM · pinentry, gpa, toolchain, Bug Report
gniibe closed T5628: v5: verify with signing sub key as Resolved.
Wed, Oct 13, 3:53 AM · gnupg (gpg23)
gniibe closed T5630: With GCC 4.2 gnupg-2.3.2/kbx/backend-support.c cannot be compiled Mac OS X 10.4.11, "Tiger" as Resolved.

Fixed in 2.3.3.

Wed, Oct 13, 3:50 AM · gnupg (gpg23), Bug Report
gniibe removed a project from T5628: v5: verify with signing sub key: Testing.

Fixed in GnuPG 2.3.3.

Wed, Oct 13, 3:48 AM · gnupg (gpg23)
gniibe closed T5609: keydb_get_keyblock failed with cv448 key as Resolved.

Fixed in GnuPG 2.3.3.

Wed, Oct 13, 3:45 AM · Testing, OpenPGP, gnupg (gpg23)
gniibe edited projects for T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly, added: Testing; removed Support.
Wed, Oct 13, 3:26 AM · Testing, pinentry
gniibe added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

Thank you for locating the bug!

Wed, Oct 13, 3:25 AM · Testing, pinentry
gniibe added a comment to T5590: OpenPGP: Curve 448, modernize?.

I should have explain the context.
No, there is no discussion about this in the WG.

Wed, Oct 13, 2:17 AM · OpenPGP, gnupg (gpg23)

Tue, Oct 12

gniibe added a comment to T5590: OpenPGP: Curve 448, modernize?.

I'm reading RFC5297, which says:

SIV can be used as a drop-in replacement for any specification that uses [RFC3394] or [RFC3217], including the aforementioned use. It is a more general purpose solution as it allows for associated data to be specified.

Tue, Oct 12, 1:35 PM · OpenPGP, gnupg (gpg23)
gniibe claimed T5616: asn1-parse.y:861:20: error: 'yytoknum' undeclared.

I think that a simple way is defining a table (string -> token) by ourselves in yylex, not enabling %token-table.
(Then, we don't need to depend on the feature of string with %token, which is not supported by POSIX yacc.)

Tue, Oct 12, 9:50 AM · Testing, toolchain, libksba, Bug Report
gniibe added a comment to T5550: Fix check_binary_integrity.

Now configure with
--enable-hmac-binary-check="I know engineers. They love to change things." works.

Tue, Oct 12, 8:25 AM · Testing, FIPS, libgcrypt
gniibe added a project to T5550: Fix check_binary_integrity: Testing.
Tue, Oct 12, 8:24 AM · Testing, FIPS, libgcrypt
gniibe committed rC10e02b90f65f: build: Support specifying HMAC key by --enable-hmac-binary-check. (authored by gniibe).
build: Support specifying HMAC key by --enable-hmac-binary-check.
Tue, Oct 12, 8:24 AM
gniibe added a comment to T5644: Heuristic for default reader detection.

Please tell me reader names to skip.

Tue, Oct 12, 7:23 AM · Feature Request, gnupg (gpg22)

Mon, Oct 11

gniibe moved T5645: RSA/DSA keygen modification for FIPS/ACVP testing from Backlog to Next on the FIPS board.
Mon, Oct 11, 11:06 AM · Testing, libgcrypt, FIPS, Bug Report
gniibe claimed T5645: RSA/DSA keygen modification for FIPS/ACVP testing.
Mon, Oct 11, 10:57 AM · Testing, libgcrypt, FIPS, Bug Report
gniibe added a comment to T5550: Fix check_binary_integrity.

I push a change: rC070935965763: build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check..

Mon, Oct 11, 10:34 AM · Testing, FIPS, libgcrypt
gniibe committed rC070935965763: build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check. (authored by gniibe).
build: Use KEY_FOR_BINARY_CHECK for --enable-hmac-binary-check.
Mon, Oct 11, 10:32 AM
gniibe moved T5576: New set of API for public key cryptography from Next to Backlog on the FIPS board.
Mon, Oct 11, 7:19 AM · FIPS, libgcrypt, Feature Request
gniibe added a comment to E890: Weekly Standup.

Last week:

This week:

  • libgcrypt: T5645, T5636
  • Argon2 in libgcrypt? possibly ask jussi about his idea/experience
Mon, Oct 11, 7:19 AM
gniibe is attending E890: Weekly Standup.
Mon, Oct 11, 7:07 AM
gniibe claimed T5644: Heuristic for default reader detection.
Mon, Oct 11, 6:47 AM · Feature Request, gnupg (gpg22)

Thu, Oct 7

gniibe added a comment to T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation.

Pushed the change: rC082ea0efa9b1: cipher: Add sign+hash, verify+hash, and random-override API.

Thu, Oct 7, 8:25 AM · FIPS, libgcrypt, Feature Request
gniibe committed rC16a9eaad5d1a: cipher:dsa,ecdsa: Support supplying K externally. (authored by gniibe).
cipher:dsa,ecdsa: Support supplying K externally.
Thu, Oct 7, 7:14 AM
gniibe committed rC082ea0efa9b1: cipher: Add sign+hash, verify+hash, and random-override API. (authored by gniibe).
cipher: Add sign+hash, verify+hash, and random-override API.
Thu, Oct 7, 7:14 AM

Wed, Oct 6

gniibe claimed T5609: keydb_get_keyblock failed with cv448 key .
Wed, Oct 6, 5:43 AM · Testing, OpenPGP, gnupg (gpg23)
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

Major problem here (before the change) was that clock_gettime returned an error with no valid value of the time, which confuses gpg-agent's calibration of time. This occurred on (not newest) Solaris kernel, as it offers clock_gettime function in the library and CLOCK_THREAD_CPUTIME_ID constant in the header.

Wed, Oct 6, 2:23 AM · Solaris, gnupg (gpg23)

Tue, Oct 5

gniibe committed rC71d4d592d891: build,gcrypt.h: Don't define gcry_socklen_t. (authored by gniibe).
build,gcrypt.h: Don't define gcry_socklen_t.
Tue, Oct 5, 9:07 AM
gniibe committed rC0f43570af93e: build,gcrypt.h: Remove INSERT_SYS_SELECT_H. (authored by gniibe).
build,gcrypt.h: Remove INSERT_SYS_SELECT_H.
Tue, Oct 5, 9:07 AM
gniibe committed rC7da42a8e8cc5: random: Use poll instead of select. (authored by gniibe).
random: Use poll instead of select.
Tue, Oct 5, 9:07 AM
gniibe committed rG3918fa1a9488: agent,dirmngr,kbx,scd,tpm2d: Use gnupg_sleep. (authored by gniibe).
agent,dirmngr,kbx,scd,tpm2d: Use gnupg_sleep.
Tue, Oct 5, 7:09 AM
gniibe set External Link to https://src.fedoraproject.org/rpms/libgcrypt/blob/rawhide/f/libgcrypt-1.8.4-use-poll.patch on T5637: Use poll for libgcrypt (support more than 1024 fds).
Tue, Oct 5, 6:32 AM · gpgrt, Feature Request, gpgme
gniibe triaged T5637: Use poll for libgcrypt (support more than 1024 fds) as High priority.
Tue, Oct 5, 6:31 AM · gpgrt, Feature Request, gpgme
gniibe committed rGeeb25df6f8fc: agent: Fix calibrate_get_time use of clock_gettime. (authored by gniibe).
agent: Fix calibrate_get_time use of clock_gettime.
Tue, Oct 5, 5:13 AM
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

FreeBSD has _POSIX_THREAD_CPUTIME > 0.
GNU/Linux has _POSIX_THREAD_CPUTIME == 0, because older kernel doesn't support the system call.

Tue, Oct 5, 4:59 AM · Solaris, gnupg (gpg23)
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

Reading pages of the following links:
https://pubs.opengroup.org/onlinepubs/9699919799/functions/clock_gettime.html
https://docs.oracle.com/cd/E36784_01/html/E36873/unistd.h-3head.html

Tue, Oct 5, 3:26 AM · Solaris, gnupg (gpg23)
gniibe lowered the priority of T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly from Normal to Low.

Thank you for your investigation.

Tue, Oct 5, 2:24 AM · Testing, pinentry

Mon, Oct 4

gniibe added a comment to T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation.

How about:

  • Only when hash-handle is used for multiple purposes, a user needs to compose SEXP
  • when hash-handle is used for a single purpose, a user doesn't need to compose SEXP, but static one.
Mon, Oct 4, 10:24 AM · FIPS, libgcrypt, Feature Request
gniibe added a comment to E889: Weekly Standup.

Last week:

This week:

  • Fix needed: Gnuk Token emulation with PC/SC
    • because of USBIP protocol and use of libusb_bulk_transfer in libccid
  • openpgp-dt meeting
  • if needed, I can work for T2385: support more than 1024 fds. just only for GNU/Linux (not Windows)
Mon, Oct 4, 9:48 AM
gniibe added a comment to T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation.

In the original SuSE's patch, _gcry_pk_sign_md function gets data template as SEXP as an argument, and the implementation does decomposing SEXP to get hash-algo. (A user of the function needs to compose SEXP with hash-algo.)

Mon, Oct 4, 9:29 AM · FIPS, libgcrypt, Feature Request
gniibe is attending E889: Weekly Standup.
Mon, Oct 4, 9:15 AM
gniibe claimed T5632: gpg-agent 2.3.2 conflicts with pcscd.

For 2.3, when you use PC/SC, please use the disable-ccid option in your .gnupg/scdaemon.conf.

Mon, Oct 4, 4:07 AM · Not A Bug, yubikey, scd, gnupg (gpg23)

Sat, Oct 2

gniibe added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

Another link: http://hea-www.harvard.edu/~fine/opinions/xterm-problems.html

Sat, Oct 2, 4:20 AM · Testing, pinentry

Fri, Oct 1

gniibe added a comment to T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

@moony Just in case when it's color related problem, could you try to cut&paste the screen when pinentry should display a dialog box?

Fri, Oct 1, 5:38 AM · Testing, pinentry
gniibe claimed T5631: pinentry-curses on OpenIndiana (Illumos distro) doesn't display correctly.

I found some links:
XTerm FAQ:
https://invisible-island.net/xterm/xterm.faq.html
Why not just use TERM set to "xterm"?
https://invisible-island.net/ncurses/ncurses.faq.html#xterm_generic
What $TERM should I use?
https://tools.ietf.org/doc/xterm/xterm.faq.html#xterm_terminfo

Fri, Oct 1, 5:36 AM · Testing, pinentry
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

do you want me to open a separate bug report for the pinentry issue and reference this bug report?

Fri, Oct 1, 4:38 AM · Solaris, gnupg (gpg23)
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

Thank you for locating the bug for (1).

Fri, Oct 1, 4:00 AM · Solaris, gnupg (gpg23)

Thu, Sep 30

gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

s2k-count matters when you import the key.

Thu, Sep 30, 10:15 AM · Solaris, gnupg (gpg23)
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

When I run the gpg-connect-agent, it starts the agent and then hangs without responding with the time:

Thu, Sep 30, 10:07 AM · Solaris, gnupg (gpg23)
gniibe added a comment to T5623: gpg2 hangs on many tasks on OpenIndiana (Illumos).

It seems that there are some problems: https://bugs.python.org/issue35455

Thu, Sep 30, 8:43 AM · Solaris, gnupg (gpg23)
gniibe committed rPd22c49140b86: curses: Handle an error at curses initialization. (authored by gniibe).
curses: Handle an error at curses initialization.
Thu, Sep 30, 8:27 AM