gnupgProject
ActivePublic

Milestones

Subprojects

Members

  • This project does not have any members.

Recent Activity

Thu, Dec 20

gniibe added a subtask for T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): T4273: agent: Request insertion of smartcard when no card present.
Thu, Dec 20, 12:59 AM · gnupg, Feature Request

Dec 18 2018

werner lowered the priority of T4200: Evaluate sub-addresses in gpg and wkd from High to Normal.
Dec 18 2018, 9:30 AM · gnupg, Feature Request

Dec 17 2018

gniibe added a comment to T4280: gnupg doc doesn't build due to ImageMagick default policy.

It seems it's Ubuntu specific: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1796563

Dec 17 2018, 10:57 AM · gnupg, Documentation, Info Needed, Bug Report
gniibe added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

It became common, because many people now use larger keys.
For RSA-4096, three simultaneous connections for decryption may cause the failure.
In the experimental patch of D472: Limit active connections for gpg-agent, I limit gpg-agent to accept two connections only.

Dec 17 2018, 5:08 AM · gnupg, gpgagent

Dec 16 2018

andy added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Agreed this looks like it should be made default behavior. This has affected many people I work with, and even with searching, this ticket never came up. I only found out about it by making a ticket myself. This issue looks like it has generated at least 3 tickets in this bug tracker, and the agent is raising memory errors during normal usage, which still smells like a bug to me.

Dec 16 2018, 8:18 PM · gnupg, gpgagent

Dec 14 2018

werner added a comment to T4159: Kleopatra fails to create new Key Pair.

The usual reasons for corruptions of binary data are FTP transfers in text mode; or opening a file with a Windows editor.

Dec 14 2018, 2:56 PM · gnupg, Bug Report, gpg4win
aheinecke added a comment to T4159: Kleopatra fails to create new Key Pair.

Got another reliable report in the Wald Forum about this. https://wald.intevation.org/forum/message.php?msg_id=6371&group_id=11

Dec 14 2018, 1:36 PM · gnupg, Bug Report, gpg4win

Dec 12 2018

aheinecke added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Uhm, if this option is useful why isn't it default behavior?

Dec 12 2018, 10:34 AM · gnupg, gpgagent
werner triaged T4105: Inconsistent output for revocation keys in --list-keys --with-colons as Normal priority.
Dec 12 2018, 9:17 AM · Documentation, gnupg, Bug Report
werner triaged T4280: gnupg doc doesn't build due to ImageMagick default policy as Normal priority.
Dec 12 2018, 9:16 AM · gnupg, Documentation, Info Needed, Bug Report
werner closed T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP as Resolved.
Dec 12 2018, 8:30 AM · gnupg, gpgagent
werner closed T3606: failed to build S-Exp (off=0): Cannot allocate memory, a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Dec 12 2018, 8:30 AM · gnupg, gpgagent
werner closed T4146: GPG Agent fails in parallel: "gpg: decryption failed: No secret key", a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Dec 12 2018, 8:28 AM · gnupg, gpgagent
werner closed T3530: Option to auto-increase secmem in gpg-agent, a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Dec 12 2018, 8:28 AM · gnupg, gpgagent
werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Not a bug :-). I should have read my own docs before starting a long debug session. The things is that the auto expanding of the secmem area is only done for xmalloc_secure and the internal MPI allocation functions. It is not dne for any memory which is allocated with xtrymalloc becuase those properly return an error to the caller. The idea is that if the caller wants to get an error back he has also the assurance that them memory is allocated in the non-swappable memory (i.e. not in the expanded parts of the secmem).

Dec 12 2018, 8:24 AM · gnupg, gpgagent
gniibe added a subtask for T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP: T4146: GPG Agent fails in parallel: "gpg: decryption failed: No secret key".
Dec 12 2018, 7:26 AM · gnupg, gpgagent
gniibe added a subtask for T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP: T3606: failed to build S-Exp (off=0): Cannot allocate memory.
Dec 12 2018, 7:23 AM · gnupg, gpgagent
gniibe added a subtask for T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP: T3530: Option to auto-increase secmem in gpg-agent.
Dec 12 2018, 7:22 AM · gnupg, gpgagent
gniibe merged T3529: Connection limit for gpg-agent into T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.
Dec 12 2018, 7:16 AM · gnupg, gpgagent
gniibe added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

For my case, with $GNUPGHOME/gpg-agent.conf having debug-all, I observed that rsa_decrypt failes with 'Cannot allocate memory', after debug output of 'res'.
Reading libgcrypt/cipher/rsa.c, it is line 1439, where it calls sexp_build (MPI of PLAIN into SEXP of R_PLAIN).
I think that it does indeed memory failure here.
Having "auto-expand-secmem" in gpg-agent.conf, it goes well.

Dec 12 2018, 3:47 AM · gnupg, gpgagent

Dec 11 2018

werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

I can easily replicate this; it is a problem somewhere in the secure memory code of Libgcrypt.

Dec 11 2018, 9:08 PM · gnupg, gpgagent
werner closed T4134: GnuPG: Changing the trust model once changes the default trust model as Resolved.

Fix was released with 2.2.11

Dec 11 2018, 3:51 PM · gpg4win, gpgol, Bug Report, gnupg
werner closed T1166: Connecting once-per-key for keys with keyserver preference vs server violate reconnection limit as Wontfix.
Dec 11 2018, 12:39 PM · Ubuntu, gnupg, Feature Request
werner closed T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver as Resolved.

Thanks.

Dec 11 2018, 12:34 PM · gnupg, dirmngr
werner added a commit to T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver: rGf7ff25edadd4: gpg: In search-keys return "Not found" instead of "No Data"..
Dec 11 2018, 12:33 PM · gnupg, dirmngr
werner added a commit to T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver: rGe7252ae57f3c: gpg: In search-keys return "Not found" instead of "No Data"..
Dec 11 2018, 12:31 PM · gnupg, dirmngr

Dec 3 2018

werner claimed T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.
Dec 3 2018, 3:05 PM · gnupg, gpgagent

Nov 19 2018

aheinecke closed T4227: Gpg4win 3.1.5, a subtask of T3967: dirmngr: "flush" does not flush in memory CRL's, as Resolved.
Nov 19 2018, 10:28 AM · kleopatra, S/MIME, gnupg

Nov 16 2018

werner closed T4259: Invalid version check as Resolved.

Pretty obvious. Thanks.

Nov 16 2018, 9:19 AM · gnupg, Bug Report
werner added a commit to T4259: Invalid version check: rG1e700961ddf4: gpg: Start using OCB mode by default with Libgcrypt 1.9..
Nov 16 2018, 9:19 AM · gnupg, Bug Report

Nov 15 2018

stm created T4259: Invalid version check.
Nov 15 2018, 7:04 PM · gnupg, Bug Report
werner triaged T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP as High priority.
Nov 15 2018, 4:07 PM · gnupg, gpgagent
werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Hmmm

Nov 15 2018, 4:06 PM · gnupg, gpgagent
aheinecke assigned T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads to werner.

You seem to accept it. So Normal Prio and assigned to you :-p

Nov 15 2018, 3:24 PM · gnupg, gpgagent
aheinecke added a comment to T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads.

Just as a note: I think the main selling point of GnuPG is that its stable. We care about backwards compatibility and we (are || want to be) rock solid. Even if there is a rare race. With millions of installations, that race will happen regularly. So I really would like us to get all this fixed without losing to much performance by locking to much.

Nov 15 2018, 3:23 PM · gnupg, gpgagent
aheinecke added a comment to T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads.

Happens though. With the test invocation above there is only one key in the keyring.

Nov 15 2018, 3:12 PM · gnupg, gpgagent
aheinecke added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

1.9.0-beta68

Nov 15 2018, 3:11 PM · gnupg, gpgagent
werner added a comment to T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads.

Well, it should not happen if you always use the same key.

Nov 15 2018, 3:06 PM · gnupg, gpgagent
werner added a comment to T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads.

There is indeed a race condition between the passphrase cache and the pinentry invocation. There is even a comment on this somewhere in the code. The problem is that we would need to lock almost everything to avoid this rare condition.

Nov 15 2018, 3:05 PM · gnupg, gpgagent
werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Which Libgcrypt version?

Nov 15 2018, 3:02 PM · gnupg, gpgagent
aheinecke added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Forgot to mention. run-threaded is a new test tool in GPGME.

Nov 15 2018, 12:15 PM · gnupg, gpgagent
aheinecke created T4256: gpg-agent: Spurious pinentries for an already unlocked key when decryption OpenPGP in 10 threads.
Nov 15 2018, 12:14 PM · gnupg, gpgagent
aheinecke created T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.
Nov 15 2018, 12:13 PM · gnupg, gpgagent

Nov 12 2018

aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rG678e4706ee61: dirmngr: Add FLUSHCRLs command.
Nov 12 2018, 2:00 PM · kleopatra, S/MIME, gnupg
aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rKLEOPATRA05fb82066b18: Use new FLUSHCRLS command on windows.
Nov 12 2018, 1:56 PM · kleopatra, S/MIME, gnupg
aheinecke closed T3967: dirmngr: "flush" does not flush in memory CRL's as Resolved.
Nov 12 2018, 1:18 PM · kleopatra, S/MIME, gnupg
aheinecke added a subtask for T3967: dirmngr: "flush" does not flush in memory CRL's: T4227: Gpg4win 3.1.5.
Nov 12 2018, 1:18 PM · kleopatra, S/MIME, gnupg
aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rG00321a025f90: dirmngr: Add FLUSHCRLs command.
Nov 12 2018, 12:43 PM · kleopatra, S/MIME, gnupg
aheinecke assigned T4249: No connection to Keyserver possible to werner.

I can reproduce it if I enter your or an unknown IP address.

Nov 12 2018, 10:25 AM · gnupg, dirmngr, Bug Report, gpg4win
werner added a commit to T4200: Evaluate sub-addresses in gpg and wkd: rG6b9f77291462: common: Prepare for parsing mail sub-addresses..
Nov 12 2018, 7:45 AM · gnupg, Feature Request