Page MenuHome GnuPG

gnupg (gpg23)Milestone
ActivePublic

Members

  • This project does not have any members.
  • View All

Recent Activity

Today

ikloecker created T5718: Provide list of supported/compliant key algorithms.
Mon, Dec 6, 10:04 AM · gnupg (gpg23), Feature Request
gniibe changed the status of T5393: gnupg coverity static analysis reports from Open to Testing.
Mon, Dec 6, 12:59 AM · gnupg (gpg23), Bug Report

Mon, Nov 29

gniibe claimed T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04.
Mon, Nov 29, 10:53 AM · gnupg (gpg23)

Thu, Nov 25

werner added a comment to T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04.

We should only allow this for v5. This way we get incentive to move forward. ed448 requires a newer version anyway and thus it is good to take this as an opportunity to also demand AEAD etc.

Thu, Nov 25, 9:29 AM · gnupg (gpg23)
gniibe added a comment to T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04.

The branch gniibe/v5/448 has the implementation.

Thu, Nov 25, 6:33 AM · gnupg (gpg23)
gniibe triaged T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04 as High priority.
Thu, Nov 25, 6:33 AM · gnupg (gpg23)
gniibe added a comment to T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata.

To be conservative, it's better to output non-zero-removed signature.

Thu, Nov 25, 6:29 AM · gnupg (gpg23), Bug Report
gniibe updated the task description for T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata.
Thu, Nov 25, 5:52 AM · gnupg (gpg23), Bug Report

Wed, Nov 24

gniibe added a comment to T5393: gnupg coverity static analysis reports.

Thank you.

Wed, Nov 24, 2:52 AM · gnupg (gpg23), Bug Report

Tue, Nov 23

Jakuje added a comment to T5393: gnupg coverity static analysis reports.

(forgot to upload the patch to the last comment)

Tue, Nov 23, 3:59 PM · gnupg (gpg23), Bug Report
Jakuje added a comment to T5393: gnupg coverity static analysis reports.

I am fine with either way. The memcmp variant is probably cleaner to make sure all works as expected in all cases.

Tue, Nov 23, 3:59 PM · gnupg (gpg23), Bug Report
werner triaged T5701: Mismatch between enums and config table as High priority.

Thanks for the well written bug report and the fix.

Tue, Nov 23, 1:29 PM · gnupg (gpg23), Bug Report
adriaandegroot added a comment to T5701: Mismatch between enums and config table.

So that you don't need to chase the downstream bug report, the problem from a user's perspective looks like this:

Tue, Nov 23, 12:21 PM · gnupg (gpg23), Bug Report
werner updated the task description for T5058: Review --trusted-key.
Tue, Nov 23, 9:16 AM · gnupg (gpg23)
werner closed T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory as Resolved.
Tue, Nov 23, 9:07 AM · gnupg (gpg23), MacOS, Bug Report
werner added a project to T5701: Mismatch between enums and config table: gnupg (gpg23).
Tue, Nov 23, 9:04 AM · gnupg (gpg23), Bug Report

Mon, Nov 15

gniibe added a comment to T5393: gnupg coverity static analysis reports.

Or, we can use memcmp to avoid arguing semantics of strncmp, and make it a bit cleaner to avoid calling strlen multple times by put_membuf_str.

diff --git a/g10/export.c b/g10/export.c
index 98c4623cf..c7cfcfaa4 100644
--- a/g10/export.c
+++ b/g10/export.c
@@ -2133,14 +2133,15 @@ key_to_sshblob (membuf_t *mb, const char *identifier, ...)
   size_t buflen;
   gcry_mpi_t a;
Mon, Nov 15, 2:08 AM · gnupg (gpg23), Bug Report
gniibe added a comment to T5393: gnupg coverity static analysis reports.

We know that problematic strncmp implementation: T5443
So, I don't blame Coverity. But I think that it's better to fix strncmp implementation.

Mon, Nov 15, 1:13 AM · gnupg (gpg23), Bug Report

Sat, Nov 13

werner edited projects for T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata, added: gnupg (gpg23); removed gnupg (gpg22).
Sat, Nov 13, 2:38 PM · gnupg (gpg23), Bug Report

Fri, Nov 12

gniibe added a comment to T5393: gnupg coverity static analysis reports.

Under C11, it seems OK (strncmp).
https://stackoverflow.com/questions/38878195/does-this-usage-of-strncmp-contain-an-out-of-bounds-read

Fri, Nov 12, 7:45 AM · gnupg (gpg23), Bug Report
gniibe added a comment to T5393: gnupg coverity static analysis reports.

I applied most of gnupg-coverity.patch.

  • Part 1 is not applied; It should be handled later.
  • Part 2: applied
  • Part 3: applied
  • Part 4: applied, but spell fixes not require ChangeLog entry
  • Part 5
  • Part 6: applied
  • Part 7: applied, but empty initializer is GNU extension (or the way of C++), so first 0
  • Part 8: applied
  • Part 9: applied, but one more fix
Fri, Nov 12, 7:28 AM · gnupg (gpg23), Bug Report

Wed, Nov 10

jcross added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

Friendly ping @werner

Wed, Nov 10, 1:32 AM · gnupg (gpg23), Bug Report

Nov 4 2021

ikloecker abandoned D538: gpgconf: Make gpg/keyserver option available again.

Has been merged into master.

Nov 4 2021, 12:09 PM · gnupg (gpg23)
ikloecker closed T5462: gpgconf: Make gpg/keyserver option available again as Resolved.
Nov 4 2021, 12:07 PM · gnupg (gpg23), Restricted Project
ikloecker added a comment to D538: gpgconf: Make gpg/keyserver option available again.
In D538#5324, @werner wrote:

Having it invisible is okay for me. But we should not support the keyserver option in gpg.conf via Kleopatra anymore. This option needs to be faded out.

Nov 4 2021, 8:36 AM · gnupg (gpg23)
werner added a comment to D538: gpgconf: Make gpg/keyserver option available again.

Having it invisible is okay for me. But we should not support the keyserver option in gpg.conf via Kleopatra anymore. This option needs to be faded out. Actually there are more problems in 2.2 here: In particular the global options are not manageable by a gpgconf. Thus there is no guarantee that the keyserver option actually shows the correct value if global options are used.

Nov 4 2021, 8:00 AM · gnupg (gpg23)

Nov 3 2021

ikloecker added a comment to D538: gpgconf: Make gpg/keyserver option available again.

Pushed to branch ikloecker/t5462 for easier integration as rG0a7d772a5c43: gpgconf: Allow changing gpg's deprecated keyserver option.

Nov 3 2021, 3:28 PM · gnupg (gpg23)
ikloecker added a task to D538: gpgconf: Make gpg/keyserver option available again: T5462: gpgconf: Make gpg/keyserver option available again.
Nov 3 2021, 3:24 PM · gnupg (gpg23)
ikloecker added a revision to T5462: gpgconf: Make gpg/keyserver option available again: D538: gpgconf: Make gpg/keyserver option available again.
Nov 3 2021, 3:24 PM · gnupg (gpg23), Restricted Project
ikloecker requested review of D538: gpgconf: Make gpg/keyserver option available again.
Nov 3 2021, 3:24 PM · gnupg (gpg23)
ikloecker placed T5653: de-vs and GnuPG 2.3.3 error up for grabs.
Nov 3 2021, 9:50 AM · Restricted Project, gnupg (gpg23), kleopatra

Oct 27 2021

werner changed the status of T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory from Open to Testing.

I think we can close this bug. The warning will now only be printed as part of the the regression test and after all it is just a warning.

Oct 27 2021, 1:02 PM · gnupg (gpg23), MacOS, Bug Report
werner added a subtask for T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory: T5671: (MYPROC_SELF_EXE): Support illumos and Solaris.
Oct 27 2021, 12:58 PM · gnupg (gpg23), MacOS, Bug Report

Oct 26 2021

ikloecker changed the status of T5653: de-vs and GnuPG 2.3.3 error from Open to Testing.

Fixed. See parent task for details.

Oct 26 2021, 6:03 PM · Restricted Project, gnupg (gpg23), kleopatra

Oct 25 2021

smillernl added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

It seems like this warning does break some usages of gnupg on macOS.
We found one when packaging this in Homebrew: https://github.com/tadfisher/pass-otp/issues/147

Oct 25 2021, 9:37 AM · gnupg (gpg23), MacOS, Bug Report

Oct 21 2021

ikloecker claimed T5653: de-vs and GnuPG 2.3.3 error.
Oct 21 2021, 12:54 PM · Restricted Project, gnupg (gpg23), kleopatra

Oct 20 2021

werner added a parent task for T5653: de-vs and GnuPG 2.3.3 error: T5362: Kleopatra: Add warning in compliance mode if gnupg version is not compliant.
Oct 20 2021, 12:18 PM · Restricted Project, gnupg (gpg23), kleopatra

Oct 19 2021

gahr added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

Thanks for the clarification. So it's just a matter of not emitting the warning I guess?

Oct 19 2021, 12:47 PM · gnupg (gpg23), MacOS, Bug Report
ikloecker added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

gnupg_bindir() uses unix_rootdir() falling back to the builtin configure time path if unix_rootdir() returns NULL. So, there is no difference.

Oct 19 2021, 12:26 PM · gnupg (gpg23), MacOS, Bug Report
gahr added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

I second this. This is problematic on (Free)BSD too, where /proc is usually optional and might not be mounted at all. I concur that this should be silenced if not running in debug mode.

Oct 19 2021, 9:56 AM · gnupg (gpg23), MacOS, Bug Report

Oct 17 2021

werner added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

Urgs, I already implemented this:

Oct 17 2021, 6:46 PM · gnupg (gpg23), MacOS, Bug Report
werner added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

On macOS _NSGetExecutablePath could be used, but iiuc this requires linking against dyld. For other OSes we would also need more code. I doubt that this makes a lot of sense these days; but we should come up with a solution, even if that means we need an envvar to specify the location of that open gpgconf.ctl file.

Oct 17 2021, 6:41 PM · gnupg (gpg23), MacOS, Bug Report

Oct 13 2021

werner updated the task description for T5565: Release GnuPG 2.3.3.
Oct 13 2021, 8:23 PM · gnupg (gpg23), Release Info
ikloecker added a comment to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory.

No, the error is harmless. I guess it shouldn't be printed (except when debugging).

Oct 13 2021, 5:18 PM · gnupg (gpg23), MacOS, Bug Report
werner added projects to T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory: MacOS, gnupg (gpg23).

We now require a way to get the actual image of a process. For macOS the BSD method is used and we obviously need to find another way for macOS.

Oct 13 2021, 5:03 PM · gnupg (gpg23), MacOS, Bug Report
bernhard added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@rupor-github no problem for the delay. Thanks for explaining!

Oct 13 2021, 9:00 AM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
gniibe closed T5628: v5: verify with signing sub key as Resolved.
Oct 13 2021, 3:53 AM · gnupg (gpg23)
gniibe closed T5630: With GCC 4.2 gnupg-2.3.2/kbx/backend-support.c cannot be compiled Mac OS X 10.4.11, "Tiger" as Resolved.

Fixed in 2.3.3.

Oct 13 2021, 3:50 AM · gnupg (gpg23), Bug Report
gniibe removed a project from T5628: v5: verify with signing sub key: Testing.

Fixed in GnuPG 2.3.3.

Oct 13 2021, 3:48 AM · gnupg (gpg23)
gniibe closed T5609: keydb_get_keyblock failed with cv448 key as Resolved.

Fixed in GnuPG 2.3.3.

Oct 13 2021, 3:45 AM · Testing, OpenPGP, gnupg (gpg23)