Blog - GNU Privacy Guard

GnuPG Blog

Goteo Campaign: Preliminary Results

Posted May 12, 2014 by Werner

- -

- Here is a quick campaign status update: After the t-shirts arrived as - expected the week after Eastern, Mechthilde, Michael, Penny, Rainer, - and me met the other day at the FSFE office in D?sseldorf. Due to - Rainer?s excellent preparation we quickly folded, enveloped, and - stamped about 300 t-shirts and snailed them. Kudos to them for - helping with this task. There are still a few t-shirts we have not - been able to sent because some of our contributors did not reply to - several mails asking for missing address details, or the postmaster - returned them due to faulty addresses. If you expected a t-shirt and - did not receive one, please contact me at accounts at GnuPG dot net. - Most of the stickers have also been snailed but a few are still - pending due to uncertain addresses. -

- -

- The main GnuPG site is now - accessible via TLS and plain http access is redirected to the https - address. Strict Transport Security (HSTS) has also been enabled. - In the case of problems with TLS the site may still be accessed - non-encrypted via - http://www.tla-friendly.gnupg.org. -

- -

- To accomplish another promise of the campaign, the website may now be - accessed as TOR hidden service at - http://ic6au7wa3f6naxjq.onion. Being - a well known and intentionally public site, it does not make much - sense to have it as a hidden service. However, if the site is to be - accessed anyway via Tor we can avoid the extra TLS layer and and - allow direct access. Note that lists.gnupg.org and some other - services are not available via an onion address. -

- -

- Finally here are preliminary financial results of the campaign: -

- -

- Our contributors donated a total of 37270 Euro. Due to card and - Paypal processing problems we actually received 36732 Euro. The - preliminary costs for running the campaign are 18590 Euros, so - that 18142 Euro are available for the goals. Here is an overview - of the costs: -

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Goteo fee	2939
Paypal fees	1152
VAT	5212
Campaign manager	5390
300 t-shirts	1852
Envelopes + postage t-shirts	996
Rewards for helper	102
360 Stickers	342
Envelopes + postage sticker	210
Campaign server for 5 months	395
	18590

- Due to missing or incomplete addresses or no response to our mails - we could not ship about 80 stickers and 15 t-shirts. I spend a - substantial amount of time (at least 4 weeks) with direct campaign - related tasks, which were not included in the original plan. That - plan explained how to spend the money: -

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

New website	4054
New content	910
New website design	1435
Releasing 2.1	6000
	12399

- -

- The extra 5743 Euro we received will be used for general - maintenance, to cover the unexpected time I had to spend on the - campaign, and for some giveaways to long time GnuPG hackers. -

- -

- Thank you very much for all your help and please keep on - supporting GnuPG. -

- - -

Mission complete: campaign ends, closing stats

- -

Posted 6th February 2014 by Sam Tuke

- -

Today's donation totals

- -

After 50 days of crowdfunding, the GnuPG campaign for new website and infrastructure will close tomorrow. That means rewards for backers can now be ordered and preparations for dispatch can begin. Here are the results so far:

- -

36.741 EUR raised out of 24.000 target
1.081 people donated in support
350 EUR Largest single donation
33 EUR average donation
365 Stickers claimed
300 T-shirts claimed
191 GnuPG email addresses claimed
793 Additional Twitter followers (from 60)

- -

Goteo, the Free Software platform hosting the campaign, usually required two 40 day rounds of funding, but in our case we're ending early, after just 50 days. This will enable us to deliver the new site and GnuPG 2.1 faster, and is possible thanks to reaching our goal so quickly (in just 26 hours).

- -

We're currently preparing a system for collecting donor preferences for their rewards (sizes, addresses, etc.), so expect to be contacted in the next week or two if that includes you.

- -

Thanks again to all our backers for the overwhelming support that GnuPG has received!

- -

Keysigning at FOSDEM

- - -

Find us at FOSDEM

- -

Posted 27th January 2014 by Sam Tuke

- -

On Friday Werner and Sam are heading to FOSDEM, the largest Free Software conference in Europe, along with many GnuPG hackers, users, and supporters. Get in touch if you'd like to talk about the existing or future campaigns while we're there.

- -

There won't be a GnuPG booth this year, but we shall be busy with meetings and mingling. Notes and contacts for us can be left at the FSFE booth.

- -

And don't forget that you're invited to the continent's biggest keysigning party, organised by FOSDEM volunteers. Today is the last opportunity to submit your key, which is necessary for participation. Get to it!

- -

Bring your ideas. See you there.

- -

How good is Goteo? An appraisal

- -

Posted 30th December 2013 by Sam Tuke

- -

A wall of donor faces on Goteo

- -

"One question: why did you choose the quite unknown Spanish crowdfunding site Goteo?" So shot back the reply to the press release I had just sent to a few dozen selected journalists announcing the launch of the GnuPG crowdfunding campaign. "You won't get any exposure on there, we got a few hundred thousand hits just from being on indiegogo" I was told by one experienced crowdfunder at my favourite Berlin hackerspace last month. "What's Goteo?" has been one of the most frequently asked questions of this campaign from friends and supporters.

- -

I ummed and ahhed over which crowfunding platform to choose. It's a decision that has a huge impact on the campaign - market exposure, transaction costs, and design and layout are just a few of the many factors that have to be taken into account. This is a crowded market - new crowdfunding sites are popping up each week as more companies try to cash in on what is recognised a key tech trend of 2013. An estimated $5bn was raised by crowdfunders this year. That equates to around $35m in commission fees for the platforms hosting these campaigns, who typically charge between 5-10%. It's no surprise that everyone wants a slice.

- -

"Non-economic donations"

- -

Goteo however, is unique. Right now it's the only crowdfunding software that is itself Free Software, allowing everyone to inspect how it works and run their own copy. Even though I don't plan to run my own Kickstarter competitor any time soon, the fact we can check its code, make improvements, and follow the development process is really important. I want Goteo to prosper profitably because, aside from all its other good points, I know some of that profit will be invested in the platform itself, which shall remain free and accessible to everyone under the terms of the AGPL3 license.

- -

Goteo is also the only such site to my knowledge that's built with public money. Funded by Spain's Department for Education, Culture and Sport, Barcelona's City Council, and The University of Andalucia, Goteo exists to host projects which "contribute to the common good, free knowledge, and open code". Everything about the platform and the projects it hosts point to common goods, shared resources, and collaborative effort.

- -

Besides that, these other features make it stand out:

- -

Signup and donation workflow is smooth and simple
Great focus on social media and sharing links (we had hundreds of tweets from these)
Users can login with many social networks, including OpenID and LinkedIn
Clean and professional design with easy access to key information
Built in license chooser for all "goods" projects produce (categories for software, artwork, etc.)
Mandatory delivery timeframe / deadline setter with public calendar
Nice "image wall widget" of donors faces has potential, provides public recognition of donations
Web forms for project creation are comprehensive and well designed
Crowdsourcing of extra skills ("non-economic donations") works well
Donations are guaranteed by PayPal and Goteo, not pledged or retractable
Goteo staff are friendly and knowledgable, providing personal guidance and assistance
Many funding successes, including a few related to hardware, software, and Hackerspaces

- - Many of those benefits are obvious before launching a campaign. However, on the list of problems I experienced with the platform, most weren't discovered until the point of execution (orange = fix in progress): - -

User-set passwords are automatically emailed in plain text after registration (insecure)
Rewards can't be customised, e.g. select t-shirt size
Once a campaign is launched, no aspect can be edited directly (though news can be added)
The order of images for the campaign page is random - the first image visitors see can't be specified
The launch date of the campaign is chosen by Goteo administrators, it can't be specified
No markup is available for text formatting
Pictures are limited and can't be placed between text to break up the page
There's a bug that causes double posting of news items
Shipping for rewards is not configurable - international shipping can't be billed
The website is not mobile friendly (minimum page width is 940px)
HTTPS is not available to donors for transferring personal details

- - Besides that, I spotted a few opportunities for improvement: - -

Send emails to people who didn't complete their donation ("abandoned carts" - indiegogo does this)
Allow managers to specify the content of social media messages

- -

Goteo's license on GitHub

- -

Some of the problems listed are a real pain. Because I couldn't choose the launch date, and hadn't planned for an in-depth human review by Goteo, our project went public days later than I expected, at a time when I was travelling and without connectivity. Goteo's campaigns team is helpful and responsive however, and even in the last few weeks several translation problems have been fixed which I had previously reported. I'm confident that the other most serious issues will be addressed in a timely manner.

- -

In all, we took a gamble by using Goteo, but one that paid off. It's focus on communal work and rewards is unique amongst its competitors, and when it comes to copyleft licensing they stand alone in practicing what they preach. Nearly all the convenient features that you'd expect from more established platforms are included, together with a pleasant functional interface. Donations are worry-free for both donors and recipients (though I can't comment on the final transfer process until later next month).

- -

Best of all perhaps, staff at Goteo are knowledgable and supportive and have time to invest in making projects a success. And when launch day comes and you're expecting the unexpected, that's very reassuring.

- -

16 Years of protecting privacy

Posted 20th December 2013 by Sam Tuke

- -

- Today marks 16 years since the first release of GNU Privacy Guard - (GnuPG). In that time the project has grown from being a hacker?s - hobby into one of the world?s most critical anti-surveillance - tools. Today GnuPG stands at the front line of the battle between - invasive surveillance and civil liberties. -

- -

- ?Time has proven Free Software to be the most trustworthy defender - against companies and governments seeking to undermine citizen - privacy? said Werner Koch, GnuPG Founder and Lead Developer. ?Although - funding our work has not always been easy, the need for universally - accessible privacy tools has never been more apparent?. -

- -

- Some of the world?s top security specialists are now counted among - GnuPG users, including Bruce Schneier, Jacob Appelbaum, and Phil - Zimmerman, inventor of PGP. This summer the world learned of the - extent of Government spying thanks to whistleblowers and journalists - communicating using GnuPG encrypted emails. Market leading servers - from Red Hat and Debian have built their reputation for security on - the foundation of GnuPG-verified software. -

- -

- ?The success of GnuPG?s - first crowdfunding campaign, which received 90% of it?s target in 24 - hours, shows a fresh willingness among users to support GnuPG in it?s - 16th year, and points to new opportunities for the project in future? - said Sam Tuke, GnuPG Campaign Manager. ?The release of GnuPG 2.1 and - the launch of a newly designed website later this year will bring - GnuPG and its clients for Windows, Mac, Gnu/Linux, and Android to new - audiences?. -

- -

- Over the years GnuPG has kept up to date with new algorithms, such as - Elliptic Curve Cryptography, and reactive to new threats, such as key - extraction via acoustic monitoring, which was announced two days ago - by researchers as GnuPG updates were released, in coordination with - developers. Members remain confident of the future of GnuPG and look - forward to facing the privacy threats of tomorrow with community - support. -

- - -

- -

Press release: GnuPG encryption project launches crowdfunding - campaign

Posted 19th December 2013 by Sam Tuke

- - -

Today GNU Privacy Guard (GnuPG) has launched its first - crowdfunding campaign with the aim of building a new - website and long term infrastructure. The 24.000 EUR target will - fund:

- -

Fresh web interfaces for gnupg.org including mobile
Completion and release of GnuPG 2.1
Anonymous Tor network access to the website
A new user friendly download page suitable for all devices
A new server for web services
New pages convening external guides, videos, and handbooks
Facilities for processing recurring donations for long - term project support

- -

Project founder and Lead Developer Werner Koch said ?GnuPG has - seen a huge upsurge in popularity following recent state - spying revelations. After 16 years of continuous development, - we are now asking for community support to capitalise on - consumer demand for privacy, and make GnuPG easy to access for - mainstream audiences?.

- -

GnuPG is one of the few tools remaining above suspicion in the - wake of leaked NSA documents. Edward Snowden and his contacts - including Bruce Schneier switched to GnuPG when they began handling - the secret - documents earlier - this year. The Wall Street Journal, The Committee to Protect - Journalists, - and ProPublica - have all embraced GnuPG for protection of staff and sources. Phil - Zimmermann, original inventor of Pretty Good Privacy (PGP), has also - moved to GnuPG in wake of the news.

- -

?GnuPG is a key part of modern privacy infrastructure? said - Sam Tuke, Campaign Manager, GnuPG. ?Millions of users rely on - GnuPG to work securely on servers, laptops and smartphones, - but 2013 donations totaling 3.000 EUR to date have not even - covered fixed costs. Supporting new algorithms like elliptical - curve and fixing newfound exploits fast takes a lot of work - which is done voluntarily. Now is the time for people to - contribute to making GnuPG slick and more sustainable in - future?.

- -

Jacob Appelbaum, Tor Project developer, added ?GnuPG is - important - it allows us the assurances we need to do our - work. Community funding is a critical part of a confident - outlook for GnuPG in future.?

- - -

For further information, please contact Sam Tuke.
- Email: samtuke [at] gnupg.org
- Phone: +49 176 81923811 -

- -

About GNU Privacy Guard

- -

GnuPG is a leading cryptography app that protects emails and - data from interception. It is developed by a community of Free - Software engineers led by Werner Koch. GnuPG is used and - recommended by the world?s top security experts, including - Bruce Schneier and Phil Zimmermann. It offers best in class - privacy free of charge and restriction. Hundreds of companies - have integrated GnuPG into their products to perform mission - critical security, including Red Hat, Deutsche Bahn, and many - others.

- -

http://gnupg.org

- -

Getting Goteo approval

Posted 18th December 2013 by Sam Tuke

- -

Pending project on Goteo

- -

The targets are set, the rewards are prepared, the press release - has been edited and translated, and now we?re waiting for - approval from the crowdfunding - platform Goteo.

- -

Goteo is like indiegogo, but more forward thinking. It has a - special focus on communal benefits and rewards - projects that - benefit society as a whole, not just project donors (though they - can get special rewards too).

- - -

Every ?good? produced by a campaign on Goteo, be it artwork, - software, event, or manufactured product, has a license assigned - to it, like GPL or Creative Commons, and as well as asking for - money, projects ask for other forms of help called ?non-economic - needs?, like translations or product - testing. Goteo?s own - source code is Free Software too, meaning anyone can run - their own Goteo crowdfunding server. That?s the feature that - swung our decision to use it for GnuPG.

- - -

Because the type of project on Goteo is quite specific - however, the acceptance phase of launching crowdfunding is - taking us longer than expected. Right now we?re working with - Goteo?s small team to answer questions which aren?t on the - webforms you fill out when you design your project with their - system.

- -

I?m hoping to provide what?s necesasry and get acceptance - quickly. As soon as we have it the crowdfunding will launch - and newsletter subscribers - and Twitter followers - will be the first to know.

- -

- - -

Speedups in Libgcrypt 1.6

Posted 15 December 2013 by Werner Koch

- [...] To check how the forthcoming version 1.6.0 of Libgcrypt - compares to the older 1.5 version of Libgcrypt, I did some benchmarks - using a Thinkpad X220 which features an i5-2410M processor at 2.3GHz - running a 64 bit Debian Wheezy. - {more} -

Preparing for launch

- -

Posted 13th December 2013 by Sam Tuke

- -

Mid December, giving season, and nearly time for the GnuPG - Crowdfunding to commence. We've been working hard on - preparations. Drafts of the new mobile website design have been published and met positive feedback, and a community-contibuted - promo video was posted on YouTube. GnuPG coverage on Twitter - continues to grow with many articles - (The - Guardian, Kaspersky - Labs, The - EFF, Lifehacker, - ...) and 252 new followers in 6 weeks.

- -

- Click here - to view the video on YouTube. [embedded video - removed on 2014-04-28 due to privacy issues]

- -

- -

New mobile site draft

- -

Last Friday I announced the crowdfunding to a crowded audience at - Berlin event - "Whatever - happened to privacy", and Markus Beckedahl - (Netzpolitik ) - and Jacob - Appelbaum (Tor Project and Wikileaks) amplified the importance - of supporting the project. Hugo Roy (FSFE) gave a talk on Wednesday - about the campaign at the Paris - 'Hackadon' - a new conference for - Free Software giving, organised by three - crowdfunding - organisations. His slides are online in the - GPG presentations - repository.

- -

Hopefully the crowdfunding page on Goteo (a Free Software - Kickstarter) will be ready for launch next week. Email me if you can - help with translating the press release - we're aiming for at least - three languages. And don't forget you can still sign up for email - updates (form below). Thanks for all your support so far!

- -

[Subscribe code with references to external sites removed - on 2014-04-28 due to privacy issues.]

- - -

Friends tell friends they love GnuPG

- -

Posted 13th November 2013 by Sam Tuke

- -

GnuPG can run almost anywhere

- -

Email encryption is one of those pleasures that can't be enjoyed - alone. Sending yourself messages secured with 4096-bit RSA is great - for proof of concept, but meaningful communication requires two - parties. GnuPG requires both those parties to have their own - keys.

- -

Less than 1% of all email - traffic is PGP encrypted, meaning that those of us who do make our - messages private routinely find ourselves in the frustrating - predicament of having to share our thoughts insecurely, even though - we know they're being intercepted, even though this is easily - avoidable, and even though we've already taken steps to do so. All - because our friends and colleagues don't know the - benefits of GnuPG.

- -

Windows, Gnu/Linux, Mac, and Android all have point and click - GnuPG interfaces - at this point, all bases except iPhone are more - or less covered. That means the reason your contacts aren't OpenPGP - ready is not technical. And because GnuPG is Free - Software (and free of charge), it can't be about price.

- -

A recommendation from you is the most effective way you can - increase the number of GnuPG users, and consequently increase the - percentage of the messages you send that are meaningfully - encrypted. That's why we're asking people in our community to think - of pithy explanations of why GnuPG is important and how it enables - them.

- -

We've already got quotes from some big names like Bruce Schneier, - Jacob Appelbaum, and Richard Stallman. But the chances are - that your name carries more weight among your - peers. Please use it to share your appreciation for GnuPG!

- -

If you use social networks, you can - use #iloveGPG to connect your messages to other - people's, and make is easier for us to find and repeat them.

- -

Look out for weekly quotes posted from the - GnuPG Twitter - and Diaspora - accounts if you need inspiration. Let's fill up - the keyservers - with fresh keys from new users!

- -

Securing the future of GPG

Posted 5th November 2013 by Sam Tuke

- -

If you've noticed some changes around here, there's a good reason - why. We have a plan for securing the long term stability of GnuPG - development by giving more to our users, and asking more from them - in return.

- -

You already know that GnuPG is important, and as months of fresh - government spying revelations go by, it's becoming obvious that - GnuPG is one of the very few tools that can still be trusted to keep - our data safe from the overwhelming efforts of international law - enforcement. But developing GnuPG takes work - regular monitoring - for newfound threats and exploits, and new features to keep it sharp - with the latest encryption algorithms. We also need to reach out to - the millions of potential GnuPG users who are asking themselves how - they can make their email secure. Public-private key cryptography - hasn't yet gained mainstream acceptance, but it could if it were - just a little more appealing and accessible.

- -

To maintain progress within the project we need to make it easier - for GnuPG users to support the work that we do. Ours is an app that - is often hidden from view, relied upon daily by hundreds of - thousands of people, often in life-threatening circumstances, yet - low profile and rarely supported by publicity or donations.

- -

To change that we're going to launch a new - website with a fresh design, more friendly and accessible - information, and new resources to grow and strengthen our user - group. The new site will also allow the project to accept and manage - new forms of financial support, including automatic subscriptions to - sustain development long term.

- -

Designing, building and populating the new site will take a few - months, and in order to cover the costs there will be - a crowd-funding campaign with a modest target, in - early December. We have some rewards up our sleeves for those who - donate.

- -

When that time comes, we'll need your help - - telling your contacts, forwarding the announcement to your - communities, and contributing financially if you can.

- -

You can subscribe to updates about the campaign using this - form. This is separate to other GnuPG mailing lists - update will be - sent here, and only here.

- -

[Subscribe code with references to external sites removed - on 2014-04-28 due to privacy issues.]

- -

New blog, first post

Posted 30th October 2013 by Sam Tuke

- -

Welcome to Gnu Privacy Guard's new blog! We're planning some - major changes to gnupg.org and how the project communicates in - general. I'm Sam, and I'll be writing updates here as our work - progresses. In future this blog will be replaced with a more - beautiful and featureful alternative, but bear with us as we get - from here to there.

- -

For more timely updates you can follow our Twitter - accounts: @GnuPrivacyGuard - and @GnuPG. - That's right, we have two! But I'm going to combine them shortly so - it's easier to keep track [UPDATE: accounts now merged! - Stick with @GnuPG].

- -

For more information, see - our press - contact page hosted on Totem. That's all for now.

- -

]*>$.*$

index.tmp \ + -v newest=${newest#./} ' + // {indon=1; print; insertnewest() } + // {indon=0} + // {indon=1; print; insertindex() } + // {indon=0} + !indon { print } + + function insertnewest () { + inblog = 0 + while (getline < newest) { + if (match ($0, /^

/)) { inblog = 1; continue; } + if (match ($0, /^<\/main>/)) { inblog = 0; break; } + if (! inblog) { continue } + if (match ($0, /^

/)) { continue; } + if (match ($0, /^<\/div>/)) { continue; } + print $0 + } + close(newest) + } + + function insertindex (tag) { + file = "index.headlines.tmp"; + print "

%s\n", a[1], a[2]; + } + print "

" + close (file) + } + ' +mv index.tmp index.html || echo "upload: error updating index.html" >&2 +rm index.headlines.tmp + +echo "upload: Uploading files" >&2 +rsync -vr --links --exclude '*~' --exclude upload --exclude '*tmp' \ + --exclude '*.org' \ . werner at trithemius.gnupg.org:/var/www/www/www.gnupg.org/misc/blog/ #eof diff --git a/web/share/gpgweb.el b/web/share/gpgweb.el index 2091701..1e11a6a 100644 --- a/web/share/gpgweb.el +++ b/web/share/gpgweb.el @@ -208,15 +208,63 @@ if not available." "))) -(defun gpgweb-fixup-blog (info) - "Fix up a a blog entry." - (goto-char (point-min)) - (if (re-search-forward "^

Posted " - (car (plist-get info :date)) - " by " - (car (plist-get info :author)) - "
\n"))) +(defun gpgweb-blog-index (orgfile filelist) + "Return the index of ORGFILE in FILELIST or nil if not found." + (let (found + (i 0)) + (while (and filelist (not found)) + (if (string= orgfile (car filelist)) + (setq found i)) + (setq i (1+ i)) + (setq filelist (cdr filelist))) + found)) + +(defun gpgweb-blog-prev (fileidx filelist) + "Return the chronological previous file at FILEIDX from FILELIST +with the suffixed replaced by \"html\"." + (if (> fileidx 1) + (concat (file-name-sans-extension (nth (1- fileidx) filelist)) ".html"))) + +(defun gpgweb-blog-next (orgfile filelist) + "Return the chronological next file at FILEIDX from FILELIST +with the suffixed replaced by \"html\"." + (if (< fileidx (1- (length filelist))) + (concat (file-name-sans-extension (nth (1+ fileidx) filelist)) ".html"))) + +(defun gpgweb-fixup-blog (info orgfile filelist) + "Insert the blog specific content. INFO is the usual +plist. ORGFILE is the name of the current source file without the +directory part. If FILELIST is a list it has an ordered list of +org filenames." + (let ((authorstr (car (plist-get info :author))) + (datestr (car (plist-get info :date)))) + (goto-char (point-min)) + (if (re-search-forward "^
" nil t) + (let* ((indexp (string= orgfile "index.org")) + (fileidx (if (listp filelist) + (if indexp + (1- (length filelist)) + (gpgweb-blog-index orgfile filelist)))) + (prevfile (if fileidx + (gpgweb-blog-prev fileidx filelist))) + (nextfile (if (and fileidx (not indexp)) + (gpgweb-blog-next fileidx filelist)))) + (move-beginning-of-line nil) + (insert "
\n
\n") + (if prevfile + (insert "
Previous
\n")) + (insert + "
Index
\n") + (if nextfile + (insert "
Next
\n")) + (insert "
\n
\n"))) + (if (and datestr authorstr) + (if (re-search-forward "^
Posted " + datestr + " by " + authorstr + "
\n"))))) (defun gpgweb-insert-footer () @@ -256,6 +304,11 @@ if not available." ;;; - Insert header and footer ;;; - Insert "class=selected" into the active menu entry ;;; - Fixup sitemap. +;;; +;;; If blogmode is not nil the output is rendered as a blog. BLOGMODE +;;; may then contain an ordered list of org file names which are used +;;; to create the previous and Next links for an entry. +;;; (defun gpgweb-postprocess-html (plist orgfile htmlfile blogmode) (let* ((visitingp (find-buffer-visiting htmlfile)) (work-buffer (or visitingp (find-file-noselect htmlfile))) @@ -270,7 +323,9 @@ if not available." (gpgweb-insert-header title committed-at) (gpgweb-insert-menu fname-2) (if blogmode - (gpgweb-fixup-blog plist)) + (gpgweb-fixup-blog plist + (file-name-nondirectory orgfile) + blogmode)) (gpgweb-insert-footer) ; Fixup the sitemap @@ -305,9 +360,10 @@ if not available." ;;; -;;; The specialized publisher for the blog entries. +;;; Turn the current buffer which has an org-mode blog entry into its +;;; rendered form and save it with the suffix .html. ;;; -(defun gpgweb-render-blob () +(defun gpgweb-render-blog (&optional filelist) (interactive) (let* ((extplist '(:language "en" :section-numbers nil @@ -316,7 +372,23 @@ if not available." (orgfile (buffer-file-name)) (plist (org-export-get-environment 'gpgweb nil extplist)) (htmlfile (org-gpgweb-export-to-html nil nil nil t extplist))) - (gpgweb-postprocess-html plist orgfile htmlfile t))) + (gpgweb-postprocess-html plist orgfile htmlfile (if filelist filelist t)))) + + +;;; +;;; Publish all blog entries in the current directory +;;; +(defun gpgweb-publish-blogs () + (interactive) + (let ((orgfiles (directory-files "." nil "^2[0-9]+-.\.org$"))) + (dolist (file (cons "index.org" orgfiles)) + (let ((visitingp (find-buffer-visiting file)) + (work-buffer (or visitingp (find-file-noselect file)))) + (with-current-buffer work-buffer + (gpgweb-render-blog orgfiles) + (basic-save-buffer)) + (unless visitingp + (kill-buffer work-buffer)))))) ----------------------------------------------------------------------- Summary of changes: .gitignore | 3 + README | 32 ++ misc/blog.gnupg.org/index.html | 886 ---------------------------------------- misc/blog.gnupg.org/index.org | 22 + misc/blog.gnupg.org/upload | 73 +++- web/donate/index.org | 11 +- web/share/gpgweb.el | 102 ++++- web/swdb.mac | 18 +- 8 files changed, 234 insertions(+), 913 deletions(-) delete mode 100644 misc/blog.gnupg.org/index.html create mode 100644 misc/blog.gnupg.org/index.org hooks/post-receive -- The GnuPG website and other docs http://git.gnupg.org From cvs at cvs.gnupg.org Fri Dec 12 12:50:59 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Fri, 12 Dec 2014 12:50:59 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.0-72-gf3f9f9b Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via f3f9f9b2844c35f7942ee904d5222523615cdad4 (commit) from 193815030d20716d9a97850013ac3cc8749022c9 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit f3f9f9b2844c35f7942ee904d5222523615cdad4 Author: Werner Koch Date: Fri Dec 12 12:35:45 2014 +0100 gpg: Let --card--status create a shadow key (card key stub). * agent/command.c (cmd_learn): Add option --sendinfo. * agent/learncard.c (agent_handle_learn): Add arg "send" andsend certifciate only if that is set. * g10/call-agent.c (agent_scd_learn): Use --sendinfo. Make INFO optional. (agent_learn): Remove. * g10/keygen.c (gen_card_key): Replace agent_learn by agent_scd_learn. -- The requirement of using --card-status on the first use of card on a new box is a bit annoying but the alternative of always checking whether a card is available before a decryption starts does not sound promising either. Signed-off-by: Werner Koch diff --git a/agent/agent.h b/agent/agent.h index 0c83b27..a1663cd 100644 --- a/agent/agent.h +++ b/agent/agent.h @@ -492,7 +492,7 @@ int agent_card_scd (ctrl_t ctrl, const char cmdline, /-- learncard.c --/ -int agent_handle_learn (ctrl_t ctrl, void assuan_context); +int agent_handle_learn (ctrl_t ctrl, int send, void assuan_context); #endif /AGENT_H/ diff --git a/agent/command.c b/agent/command.c index 3e80663..c875f55 100644 --- a/agent/command.c +++ b/agent/command.c @@ -1619,21 +1619,26 @@ cmd_get_confirmation (assuan_context_t ctx, char line) static const char hlp_learn[] = - "LEARN [--send]\n" + "LEARN [--send][--sendinfo]\n" "\n" "Learn something about the currently inserted smartcard. With\n" - "--send the new certificates are send back."; + "--sendinfo information about the card is returned; with --send\n" + "the available certificates are returned as D lines."; static gpg_error_t cmd_learn (assuan_context_t ctx, char line) { ctrl_t ctrl = assuan_get_pointer (ctx); - int rc; + gpg_error_t err; + int send, sendinfo; + + send = has_option (line, "--send"); + sendinfo = send? 1 : has_option (line, "--sendinfo"); if (ctrl->restricted) return leave_cmd (ctx, gpg_error (GPG_ERR_FORBIDDEN)); - rc = agent_handle_learn (ctrl, has_option (line, "--send")? ctx : NULL); - return leave_cmd (ctx, rc); + err = agent_handle_learn (ctrl, send, sendinfo? ctx : NULL); + return leave_cmd (ctx, err); } diff --git a/agent/learncard.c b/agent/learncard.c index c60b3f4..62569ce 100644 --- a/agent/learncard.c +++ b/agent/learncard.c @@ -296,10 +296,10 @@ send_cert_back (ctrl_t ctrl, const char id, void assuan_context) return 0; } -/ Perform the learn operation. If ASSUAN_CONTEXT is not NULL all new - certificates are send back via Assuan. / +/ Perform the learn operation. If ASSUAN_CONTEXT is not NULL and + SEND is true all new certificates are send back via Assuan. / int -agent_handle_learn (ctrl_t ctrl, void assuan_context) +agent_handle_learn (ctrl_t ctrl, int send, void assuan_context) { int rc; @@ -369,7 +369,7 @@ agent_handle_learn (ctrl_t ctrl, void assuan_context) log_info (" id: %s (type=%d)\n", citem->id, citem->type); - if (assuan_context) + if (assuan_context && send) { rc = send_cert_back (ctrl, citem->id, assuan_context); if (rc) @@ -439,9 +439,9 @@ agent_handle_learn (ctrl_t ctrl, void assuan_context) } if (opt.verbose) - log_info ("stored\n"); + log_info (" id: %s - shadow key created\n", item->id); - if (assuan_context) + if (assuan_context && send) { CERTINFO citem; diff --git a/g10/call-agent.c b/g10/call-agent.c index f5c943d..43a5c4e 100644 --- a/g10/call-agent.c +++ b/g10/call-agent.c @@ -655,6 +655,7 @@ agent_scd_learn (struct agent_card_info_s info) { int rc; struct default_inq_parm_s parm; + struct agent_card_info_s dummyinfo; memset (&parm, 0, sizeof parm); @@ -674,39 +675,22 @@ agent_scd_learn (struct agent_card_info_s info) if (rc) return rc; + if (!info) + info = &dummyinfo; + parm.ctx = agent_ctx; memset (info, 0, sizeof info); - rc = assuan_transact (agent_ctx, "SCD LEARN --force", + rc = assuan_transact (agent_ctx, "LEARN --sendinfo", dummy_data_cb, NULL, default_inq_cb, &parm, learn_status_cb, info); /* Also try to get the key attributes. / if (!rc) agent_scd_getattr ("KEY-ATTR", info); - return rc; -} - - -/ Call the agent to learn about the current smartcard. This is - currently only used to have the agent create the shadow key. / -gpg_error_t -agent_learn (void) -{ - gpg_error_t err; - struct default_inq_parm_s parm; - - memset (&parm, 0, sizeof parm); - - err = start_agent (NULL, 1); - if (err) - return err; - - parm.ctx = agent_ctx; - err = assuan_transact (agent_ctx, "LEARN", - dummy_data_cb, NULL, default_inq_cb, &parm, - NULL, NULL); + if (info == &dummyinfo) + agent_release_card_info (info); - return err; + return rc; } diff --git a/g10/call-agent.h b/g10/call-agent.h index a99cac9..a24941e 100644 --- a/g10/call-agent.h +++ b/g10/call-agent.h @@ -78,9 +78,6 @@ void agent_release_card_info (struct agent_card_info_s info); /* Return card info. / int agent_scd_learn (struct agent_card_info_s info); -/* Let the agent learn about the current card. / -gpg_error_t agent_learn (void); - / Update INFO with the attribute NAME. / int agent_scd_getattr (const char name, struct agent_card_info_s info); diff --git a/g10/keygen.c b/g10/keygen.c index 89cc255..c25caad 100644 --- a/g10/keygen.c +++ b/g10/keygen.c @@ -4447,7 +4447,7 @@ gen_card_key (int algo, int keyno, int is_primary, kbnode_t pub_root, / Send the learn command so that the agent creates a shadow key for card key. We need to do that now so that we are able to create the self-signatures. / - err = agent_learn (); + err = agent_scd_learn (NULL); if (err) { / Oops: Card removed during generation. / ----------------------------------------------------------------------- Summary of changes: agent/agent.h | 2 +- agent/command.c | 15 ++++++++++----- agent/learncard.c | 12 ++++++------ g10/call-agent.c | 32 ++++++++------------------------ g10/call-agent.h | 3 --- g10/keygen.c | 2 +- 6 files changed, 26 insertions(+), 40 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Dec 12 23:50:34 2014 From: cvs at cvs.gnupg.org (by Jussi Kivilinna) Date: Fri, 12 Dec 2014 23:50:34 +0100 Subject: [git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-134-g4f46374 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU crypto library". The branch, master has been updated via 4f46374502eb988d701b904f83819e2cf7b1755c (commit) via 4a0795af021305f9240f23626a3796157db46bd7 (commit) from cbf4c8cb6bbda15eea61885279f2a6f1d4bcedfd (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 4f46374502eb988d701b904f83819e2cf7b1755c Author: Jussi Kivilinna Date: Sat Dec 6 15:09:13 2014 +0200 rijndael: further optimizations for AES-NI accelerated CBC and CFB bulk modes cipher/rijndael-aesni.c (do_aesni_enc, do_aesni_dec): Pass input/output through SSE register XMM0. (do_aesni_cfb): Remove. (_gcry_aes_aesni_encrypt, _gcry_aes_aesni_decrypt): Add loading/storing input/output to/from XMM0. (_gcry_aes_aesni_cfb_enc, _gcry_aes_aesni_cbc_enc) (_gcry_aes_aesni_cfb_dec): Update to use renewed 'do_aesni_enc' and move IV loading/storing outside loop. (_gcry_aes_aesni_cbc_dec): Update to use renewed 'do_aesni_dec'. -- CBC encryption speed is improved ~16% on Intel Haswell and CFB encryption ~8%. Signed-off-by: Jussi Kivilinna diff --git a/cipher/rijndael-aesni.c b/cipher/rijndael-aesni.c index e6c1051..3c367ce 100644 --- a/cipher/rijndael-aesni.c +++ b/cipher/rijndael-aesni.c @@ -340,33 +340,14 @@ _gcry_aes_aesni_prepare_decryption (RIJNDAEL_context ctx) } -/ Encrypt one block using the Intel AES-NI instructions. A and B may - be the same. - - Our problem here is that gcc does not allow the "x" constraint for - SSE registers in asm unless you compile with -msse. The common - wisdom is to use a separate file for SSE instructions and build it - separately. This would require a lot of extra build system stuff, - similar to what we do in mpi/ for the asm stuff. What we do - instead is to use standard registers and a bit more of plain asm - which copies the data and key stuff to the SSE registers and later - back. If we decide to implement some block modes with parallelized - AES instructions, it might indeed be better to use plain asm ala - mpi/. / +/ Encrypt one block using the Intel AES-NI instructions. Block is input + * and output through SSE register xmm0. / static inline void -do_aesni_enc (const RIJNDAEL_context ctx, unsigned char b, - const unsigned char a) +do_aesni_enc (const RIJNDAEL_context ctx) { #define aesenc_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xdc, 0xc1\n\t" #define aesenclast_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xdd, 0xc1\n\t" - / Note: For now we relax the alignment requirement for A and B: It - does not make much difference because in many case we would need - to memcpy them to an extra buffer; using the movdqu is much faster - that memcpy and movdqa. For CFB we know that the IV is properly - aligned but that is a special case. We should better implement - CFB direct in asm. / - asm volatile ("movdqu %[src], %%xmm0\n\t" / xmm0 := a / - "movdqa (%[key]), %%xmm1\n\t" /* xmm1 := key[0] / + asm volatile ("movdqa (%[key]), %%xmm1\n\t" / xmm1 := key[0] / "pxor %%xmm1, %%xmm0\n\t" / xmm0 ^= key[0] / "movdqa 0x10(%[key]), %%xmm1\n\t" aesenc_xmm1_xmm0 @@ -402,10 +383,9 @@ do_aesni_enc (const RIJNDAEL_context ctx, unsigned char b, ".Lenclast%=:\n\t" aesenclast_xmm1_xmm0 - "movdqu %%xmm0, %[dst]\n" - : [dst] "=m" (b) - : [src] "m" (a), - [key] "r" (ctx->keyschenc), + "\n" + : + : [key] "r" (ctx->keyschenc), [rounds] "r" (ctx->rounds) : "cc", "memory"); #undef aesenc_xmm1_xmm0 @@ -413,14 +393,14 @@ do_aesni_enc (const RIJNDAEL_context ctx, unsigned char b, } +/ Decrypt one block using the Intel AES-NI instructions. Block is input + * and output through SSE register xmm0. / static inline void -do_aesni_dec (const RIJNDAEL_context ctx, unsigned char b, - const unsigned char a) +do_aesni_dec (const RIJNDAEL_context ctx) { #define aesdec_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xde, 0xc1\n\t" #define aesdeclast_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xdf, 0xc1\n\t" - asm volatile ("movdqu %[src], %%xmm0\n\t" / xmm0 := a / - "movdqa (%[key]), %%xmm1\n\t" + asm volatile ("movdqa (%[key]), %%xmm1\n\t" "pxor %%xmm1, %%xmm0\n\t" /* xmm0 ^= key[0] / "movdqa 0x10(%[key]), %%xmm1\n\t" aesdec_xmm1_xmm0 @@ -456,10 +436,9 @@ do_aesni_dec (const RIJNDAEL_context ctx, unsigned char b, ".Ldeclast%=:\n\t" aesdeclast_xmm1_xmm0 - "movdqu %%xmm0, %[dst]\n" - : [dst] "=m" (b) - : [src] "m" (a), - [key] "r" (ctx->keyschdec), + "\n" + : + : [key] "r" (ctx->keyschdec), [rounds] "r" (ctx->rounds) : "cc", "memory"); #undef aesdec_xmm1_xmm0 @@ -685,74 +664,6 @@ do_aesni_dec_vec4 (const RIJNDAEL_context ctx) } -/* Perform a CFB encryption or decryption round using the - initialization vector IV and the input block A. Write the result - to the output block B and update IV. IV needs to be 16 byte - aligned. / -static inline void -do_aesni_cfb (const RIJNDAEL_context ctx, int decrypt_flag, - unsigned char iv, unsigned char b, const unsigned char a) -{ -#define aesenc_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xdc, 0xc1\n\t" -#define aesenclast_xmm1_xmm0 ".byte 0x66, 0x0f, 0x38, 0xdd, 0xc1\n\t" - asm volatile ("movdqa %[iv], %%xmm0\n\t" / xmm0 := IV / - "movdqa (%[key]), %%xmm1\n\t" / xmm1 := key[0] / - "pxor %%xmm1, %%xmm0\n\t" / xmm0 ^= key[0] / - "movdqa 0x10(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x20(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x30(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x40(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x50(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x60(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x70(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x80(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0x90(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0xa0(%[key]), %%xmm1\n\t" - "cmpl $10, %[rounds]\n\t" - "jz .Lenclast%=\n\t" - aesenc_xmm1_xmm0 - "movdqa 0xb0(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0xc0(%[key]), %%xmm1\n\t" - "cmpl $12, %[rounds]\n\t" - "jz .Lenclast%=\n\t" - aesenc_xmm1_xmm0 - "movdqa 0xd0(%[key]), %%xmm1\n\t" - aesenc_xmm1_xmm0 - "movdqa 0xe0(%[key]), %%xmm1\n" - - ".Lenclast%=:\n\t" - aesenclast_xmm1_xmm0 - "movdqu %[src], %%xmm1\n\t" / Save input. / - "pxor %%xmm1, %%xmm0\n\t" / xmm0 = input ^ IV / - - "cmpl $1, %[decrypt]\n\t" - "jz .Ldecrypt_%=\n\t" - "movdqa %%xmm0, %[iv]\n\t" / [encrypt] Store IV. / - "jmp .Lleave_%=\n" - ".Ldecrypt_%=:\n\t" - "movdqa %%xmm1, %[iv]\n" / [decrypt] Store IV. / - ".Lleave_%=:\n\t" - "movdqu %%xmm0, %[dst]\n" / Store output. / - : [iv] "+m" (iv), [dst] "=m" (b) - : [src] "m" (a), - [key] "r" (ctx->keyschenc), - [rounds] "g" (ctx->rounds), - [decrypt] "m" (decrypt_flag) - : "cc", "memory"); -#undef aesenc_xmm1_xmm0 -#undef aesenclast_xmm1_xmm0 -} - /* Perform a CTR encryption round using the counter CTR and the input block A. Write the result to the output block B and update CTR. CTR needs to be a 16 byte aligned little-endian value. / @@ -1026,7 +937,15 @@ _gcry_aes_aesni_encrypt (const RIJNDAEL_context ctx, unsigned char dst, const unsigned char src) { aesni_prepare (); - do_aesni_enc (ctx, dst, src); + asm volatile ("movdqu %[src], %%xmm0\n\t" + : + : [src] "m" (src) + : "memory" ); + do_aesni_enc (ctx); + asm volatile ("movdqu %%xmm0, %[dst]\n\t" + : [dst] "=m" (dst) + : + : "memory" ); aesni_cleanup (); return 0; } @@ -1038,12 +957,32 @@ _gcry_aes_aesni_cfb_enc (RIJNDAEL_context ctx, unsigned char outbuf, size_t nblocks) { aesni_prepare (); + + asm volatile ("movdqu %[iv], %%xmm0\n\t" + : /* No output / + : [iv] "m" (iv) + : "memory" ); + for ( ;nblocks; nblocks-- ) { - do_aesni_cfb (ctx, 0, iv, outbuf, inbuf); + do_aesni_enc (ctx); + + asm volatile ("movdqu %[inbuf], %%xmm1\n\t" + "pxor %%xmm1, %%xmm0\n\t" + "movdqu %%xmm0, %[outbuf]\n\t" + : [outbuf] "=m" (outbuf) + : [inbuf] "m" (inbuf) + : "memory" ); + outbuf += BLOCKSIZE; inbuf += BLOCKSIZE; } + + asm volatile ("movdqu %%xmm0, %[iv]\n\t" + : [iv] "=m" (iv) + : + : "memory" ); + aesni_cleanup (); } @@ -1053,45 +992,41 @@ _gcry_aes_aesni_cbc_enc (RIJNDAEL_context ctx, unsigned char outbuf, const unsigned char inbuf, unsigned char iv, size_t nblocks, int cbc_mac) { - unsigned char last_iv; - aesni_prepare (); - last_iv = iv; + asm volatile ("movdqu %[iv], %%xmm5\n\t" + : /* No output / + : [iv] "m" (iv) + : "memory" ); for ( ;nblocks; nblocks-- ) { - /* ~35% speed up on Sandy-Bridge when doing xoring and copying with - SSE registers. / - asm volatile ("movdqu %[iv], %%xmm0\n\t" - "movdqu %[inbuf], %%xmm1\n\t" - "pxor %%xmm0, %%xmm1\n\t" - "movdqu %%xmm1, %[outbuf]\n\t" + asm volatile ("movdqu %[inbuf], %%xmm0\n\t" + "pxor %%xmm5, %%xmm0\n\t" : / No output / - : [iv] "m" (last_iv), - [inbuf] "m" (inbuf), - [outbuf] "m" (outbuf) + : [inbuf] "m" (inbuf) : "memory" ); - do_aesni_enc (ctx, outbuf, outbuf); + do_aesni_enc (ctx); + + asm volatile ("movdqa %%xmm0, %%xmm5\n\t" + "movdqu %%xmm0, %[outbuf]\n\t" + : [outbuf] "=m" (outbuf) + : + : "memory" ); - last_iv = outbuf; inbuf += BLOCKSIZE; if (!cbc_mac) outbuf += BLOCKSIZE; } - if (last_iv != iv) - { - asm volatile ("movdqu %[last], %%xmm0\n\t" - "movdqu %%xmm0, %[iv]\n\t" - : /* No output / - : [last] "m" (last_iv), - [iv] "m" (iv) - : "memory" ); - } + asm volatile ("movdqu %%xmm5, %[iv]\n\t" + : [iv] "=m" (iv) + : + : "memory" ); aesni_cleanup (); + aesni_cleanup_2_6 (); } @@ -1134,7 +1069,15 @@ _gcry_aes_aesni_decrypt (const RIJNDAEL_context ctx, unsigned char dst, const unsigned char src) { aesni_prepare (); - do_aesni_dec (ctx, dst, src); + asm volatile ("movdqu %[src], %%xmm0\n\t" + : + : [src] "m" (src) + : "memory" ); + do_aesni_dec (ctx); + asm volatile ("movdqu %%xmm0, %[dst]\n\t" + : [dst] "=m" (dst) + : + : "memory" ); aesni_cleanup (); return 0; } @@ -1147,19 +1090,23 @@ _gcry_aes_aesni_cfb_dec (RIJNDAEL_context ctx, unsigned char outbuf, { aesni_prepare (); + asm volatile ("movdqu %[iv], %%xmm6\n\t" + : / No output / + : [iv] "m" (iv) + : "memory" ); + /* CFB decryption can be parallelized / for ( ;nblocks >= 4; nblocks -= 4) { asm volatile - ("movdqu (%[iv]), %%xmm1\n\t" / load input blocks / + ("movdqu %%xmm6, %%xmm1\n\t" / load input blocks / "movdqu 016(%[inbuf]), %%xmm2\n\t" "movdqu 116(%[inbuf]), %%xmm3\n\t" "movdqu 216(%[inbuf]), %%xmm4\n\t" - "movdqu 316(%[inbuf]), %%xmm0\n\t" / update IV / - "movdqu %%xmm0, (%[iv])\n\t" + "movdqu 316(%[inbuf]), %%xmm6\n\t" /* update IV / : / No output / - : [inbuf] "r" (inbuf), [iv] "r" (iv) + : [inbuf] "r" (inbuf) : "memory"); do_aesni_enc_vec4 (ctx); @@ -1190,12 +1137,29 @@ _gcry_aes_aesni_cfb_dec (RIJNDAEL_context ctx, unsigned char outbuf, inbuf += 4BLOCKSIZE; } + asm volatile ("movdqu %%xmm6, %%xmm0\n\t" ::: "cc"); + for ( ;nblocks; nblocks-- ) { - do_aesni_cfb (ctx, 1, iv, outbuf, inbuf); + do_aesni_enc (ctx); + + asm volatile ("movdqa %%xmm0, %%xmm6\n\t" + "movdqu %[inbuf], %%xmm0\n\t" + "pxor %%xmm0, %%xmm6\n\t" + "movdqu %%xmm6, %[outbuf]\n\t" + : [outbuf] "=m" (outbuf) + : [inbuf] "m" (inbuf) + : "memory" ); + outbuf += BLOCKSIZE; inbuf += BLOCKSIZE; } + + asm volatile ("movdqu %%xmm0, %[iv]\n\t" + : [iv] "=m" (iv) + : + : "memory" ); + aesni_cleanup (); aesni_cleanup_2_6 (); } @@ -1256,21 +1220,21 @@ _gcry_aes_aesni_cbc_dec (RIJNDAEL_context ctx, unsigned char outbuf, for ( ;nblocks; nblocks-- ) { asm volatile - ("movdqu %[inbuf], %%xmm2\n\t" / use xmm2 as savebuf / + ("movdqu %[inbuf], %%xmm0\n\t" + "movdqa %%xmm0, %%xmm2\n\t" / use xmm2 as savebuf / : / No output / : [inbuf] "m" (inbuf) : "memory"); /* uses only xmm0 and xmm1 / - do_aesni_dec (ctx, outbuf, inbuf); + do_aesni_dec (ctx); asm volatile - ("movdqu %[outbuf], %%xmm0\n\t" - "pxor %%xmm5, %%xmm0\n\t" / xor IV with output / + ("pxor %%xmm5, %%xmm0\n\t" / xor IV with output / "movdqu %%xmm0, %[outbuf]\n\t" "movdqu %%xmm2, %%xmm5\n\t" / store savebuf as new IV / - : / No output / - : [outbuf] "m" (outbuf) + : [outbuf] "=m" (outbuf) + : : "memory"); outbuf += BLOCKSIZE; commit 4a0795af021305f9240f23626a3796157db46bd7 Author: Jussi Kivilinna Date: Sat Dec 6 10:38:36 2014 +0200 GCM: move Intel PCLMUL accelerated implementation to separate file cipher/Makefile.am: Add 'cipher-gcm-intel-pclmul.c'. * cipher/cipher-gcm-intel-pclmul.c: New. * cipher/cipher-gcm.c [GCM_USE_INTEL_PCLMUL] (_gcry_ghash_setup_intel_pclmul, _gcry_ghash_intel_pclmul): New prototypes. [GCM_USE_INTEL_PCLMUL] (gfmul_pclmul, gfmul_pclmul_aggr4): Move to 'cipher-gcm-intel-pclmul.c'. (ghash): Rename to... (ghash_internal): ...this and move GCM_USE_INTEL_PCLMUL part to new function in 'cipher-gcm-intel-pclmul.c'. (setupM): Move GCM_USE_INTEL_PCLMUL part to new function in 'cipher-gcm-intel-pclmul.c'; Add selection of ghash function based on available HW acceleration. (do_ghash_buf): Change use of 'ghash' to 'c->u_mode.gcm.ghash_fn'. * cipher/internal.h (ghash_fn_t): New. (gcry_cipher_handle): Remove 'use_intel_pclmul'; Add 'ghash_fn'. -- Signed-off-by: Jussi Kivilinna diff --git a/cipher/Makefile.am b/cipher/Makefile.am index d7e7773..98142ed 100644 --- a/cipher/Makefile.am +++ b/cipher/Makefile.am @@ -40,8 +40,8 @@ libcipher_la_LIBADD = $(GCRYPT_MODULES) libcipher_la_SOURCES = \ cipher.c cipher-internal.h \ cipher-cbc.c cipher-cfb.c cipher-ofb.c cipher-ctr.c cipher-aeswrap.c \ -cipher-ccm.c cipher-cmac.c cipher-gcm.c cipher-poly1305.c \ -cipher-selftest.c cipher-selftest.h \ +cipher-ccm.c cipher-cmac.c cipher-gcm.c cipher-gcm-intel-pclmul.c \ +cipher-poly1305.c cipher-selftest.c cipher-selftest.h \ pubkey.c pubkey-internal.h pubkey-util.c \ md.c \ mac.c mac-internal.h \ diff --git a/cipher/cipher-gcm-intel-pclmul.c b/cipher/cipher-gcm-intel-pclmul.c new file mode 100644 index 0000000..02e7701 --- /dev/null +++ b/cipher/cipher-gcm-intel-pclmul.c @@ -0,0 +1,395 @@ +/* cipher-gcm-intel-pclmul.c - Intel PCLMUL accelerated Galois Counter Mode + * implementation + * Copyright (C) 2013-2014 Jussi Kivilinna + * + * This file is part of Libgcrypt. + * + * Libgcrypt is free software; you can redistribute it and/or modify + * it under the terms of the GNU Lesser general Public License as + * published by the Free Software Foundation; either version 2.1 of + * the License, or (at your option) any later version. + * + * Libgcrypt is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU Lesser General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public + * License along with this program; if not, see . + / + +#include +#include +#include +#include +#include + +#include "g10lib.h" +#include "cipher.h" +#include "bufhelp.h" +#include "./cipher-internal.h" + + +#ifdef GCM_USE_INTEL_PCLMUL + +/ + Intel PCLMUL ghash based on white paper: + "Intel? Carry-Less Multiplication Instruction and its Usage for Computing the + GCM Mode - Rev 2.01"; Shay Gueron, Michael E. Kounavis. + / +static inline void gfmul_pclmul(void) +{ + / Input: XMM0 and XMM1, Output: XMM1. Input XMM0 stays unmodified. + Input must be converted to little-endian. + / + asm volatile (/ gfmul, xmm0 has operator a and xmm1 has operator b. / + "pshufd $78, %%xmm0, %%xmm2\n\t" + "pshufd $78, %%xmm1, %%xmm4\n\t" + "pxor %%xmm0, %%xmm2\n\t" / xmm2 holds a0+a1 / + "pxor %%xmm1, %%xmm4\n\t" / xmm4 holds b0+b1 / + + "movdqa %%xmm0, %%xmm3\n\t" + "pclmulqdq $0, %%xmm1, %%xmm3\n\t" / xmm3 holds a0b0 / + "movdqa %%xmm0, %%xmm6\n\t" + "pclmulqdq $17, %%xmm1, %%xmm6\n\t" /* xmm6 holds a1b1 / + "movdqa %%xmm3, %%xmm5\n\t" + "pclmulqdq $0, %%xmm2, %%xmm4\n\t" /* xmm4 holds (a0+a1)(b0+b1) / + + "pxor %%xmm6, %%xmm5\n\t" /* xmm5 holds a0b0+a1b1 / + "pxor %%xmm5, %%xmm4\n\t" / xmm4 holds a0b0+a1b1+(a0+a1)(b0+b1) / + "movdqa %%xmm4, %%xmm5\n\t" + "psrldq $8, %%xmm4\n\t" + "pslldq $8, %%xmm5\n\t" + "pxor %%xmm5, %%xmm3\n\t" + "pxor %%xmm4, %%xmm6\n\t" /* holds the result of the + carry-less multiplication of xmm0 + by xmm1 / + + / shift the result by one bit position to the left cope for + the fact that bits are reversed / + "movdqa %%xmm3, %%xmm4\n\t" + "movdqa %%xmm6, %%xmm5\n\t" + "pslld $1, %%xmm3\n\t" + "pslld $1, %%xmm6\n\t" + "psrld $31, %%xmm4\n\t" + "psrld $31, %%xmm5\n\t" + "movdqa %%xmm4, %%xmm1\n\t" + "pslldq $4, %%xmm5\n\t" + "pslldq $4, %%xmm4\n\t" + "psrldq $12, %%xmm1\n\t" + "por %%xmm4, %%xmm3\n\t" + "por %%xmm5, %%xmm6\n\t" + "por %%xmm6, %%xmm1\n\t" + + / first phase of the reduction / + "movdqa %%xmm3, %%xmm6\n\t" + "movdqa %%xmm3, %%xmm7\n\t" + "pslld $31, %%xmm6\n\t" / packed right shifting << 31 / + "movdqa %%xmm3, %%xmm5\n\t" + "pslld $30, %%xmm7\n\t" / packed right shifting shift << 30 / + "pslld $25, %%xmm5\n\t" / packed right shifting shift << 25 / + "pxor %%xmm7, %%xmm6\n\t" / xor the shifted versions / + "pxor %%xmm5, %%xmm6\n\t" + "movdqa %%xmm6, %%xmm7\n\t" + "pslldq $12, %%xmm6\n\t" + "psrldq $4, %%xmm7\n\t" + "pxor %%xmm6, %%xmm3\n\t" / first phase of the reduction + complete / + + / second phase of the reduction / + "movdqa %%xmm3, %%xmm2\n\t" + "movdqa %%xmm3, %%xmm4\n\t" + "psrld $1, %%xmm2\n\t" / packed left shifting >> 1 / + "movdqa %%xmm3, %%xmm5\n\t" + "psrld $2, %%xmm4\n\t" / packed left shifting >> 2 / + "psrld $7, %%xmm5\n\t" / packed left shifting >> 7 / + "pxor %%xmm4, %%xmm2\n\t" / xor the shifted versions / + "pxor %%xmm5, %%xmm2\n\t" + "pxor %%xmm7, %%xmm2\n\t" + "pxor %%xmm2, %%xmm3\n\t" + "pxor %%xmm3, %%xmm1\n\t" / the result is in xmm1 / + ::: "cc" ); +} + + +#ifdef __x86_64__ +static inline void gfmul_pclmul_aggr4(void) +{ + / Input: + H?: XMM0 X_i : XMM6 + H?: XMM8 X_(i-1) : XMM3 + H?: XMM9 X_(i-2) : XMM2 + H?: XMM10 X_(i-3)?Y_(i-4): XMM1 + Output: + Y_i: XMM1 + Inputs XMM0 stays unmodified. + Input must be converted to little-endian. + / + asm volatile (/ perform clmul and merge results... / + "pshufd $78, %%xmm10, %%xmm11\n\t" + "pshufd $78, %%xmm1, %%xmm12\n\t" + "pxor %%xmm10, %%xmm11\n\t" / xmm11 holds 4:a0+a1 / + "pxor %%xmm1, %%xmm12\n\t" / xmm12 holds 4:b0+b1 / + + "pshufd $78, %%xmm9, %%xmm13\n\t" + "pshufd $78, %%xmm2, %%xmm14\n\t" + "pxor %%xmm9, %%xmm13\n\t" / xmm13 holds 3:a0+a1 / + "pxor %%xmm2, %%xmm14\n\t" / xmm14 holds 3:b0+b1 / + + "pshufd $78, %%xmm8, %%xmm5\n\t" + "pshufd $78, %%xmm3, %%xmm15\n\t" + "pxor %%xmm8, %%xmm5\n\t" / xmm1 holds 2:a0+a1 / + "pxor %%xmm3, %%xmm15\n\t" / xmm2 holds 2:b0+b1 / + + "movdqa %%xmm10, %%xmm4\n\t" + "movdqa %%xmm9, %%xmm7\n\t" + "pclmulqdq $0, %%xmm1, %%xmm4\n\t" / xmm4 holds 4:a0b0 / + "pclmulqdq $0, %%xmm2, %%xmm7\n\t" /* xmm7 holds 3:a0b0 / + "pclmulqdq $17, %%xmm10, %%xmm1\n\t" /* xmm1 holds 4:a1b1 / + "pclmulqdq $17, %%xmm9, %%xmm2\n\t" /* xmm9 holds 3:a1b1 / + "pclmulqdq $0, %%xmm11, %%xmm12\n\t" /* xmm12 holds 4:(a0+a1)(b0+b1) / + "pclmulqdq $0, %%xmm13, %%xmm14\n\t" /* xmm14 holds 3:(a0+a1)(b0+b1) / + + "pshufd $78, %%xmm0, %%xmm10\n\t" + "pshufd $78, %%xmm6, %%xmm11\n\t" + "pxor %%xmm0, %%xmm10\n\t" /* xmm10 holds 1:a0+a1 / + "pxor %%xmm6, %%xmm11\n\t" / xmm11 holds 1:b0+b1 / + + "pxor %%xmm4, %%xmm7\n\t" / xmm7 holds 3+4:a0b0 / + "pxor %%xmm2, %%xmm1\n\t" /* xmm1 holds 3+4:a1b1 / + "pxor %%xmm14, %%xmm12\n\t" /* xmm12 holds 3+4:(a0+a1)(b0+b1) / + + "movdqa %%xmm8, %%xmm13\n\t" + "pclmulqdq $0, %%xmm3, %%xmm13\n\t" /* xmm13 holds 2:a0b0 / + "pclmulqdq $17, %%xmm8, %%xmm3\n\t" /* xmm3 holds 2:a1b1 / + "pclmulqdq $0, %%xmm5, %%xmm15\n\t" /* xmm15 holds 2:(a0+a1)(b0+b1) / + + "pxor %%xmm13, %%xmm7\n\t" /* xmm7 holds 2+3+4:a0b0 / + "pxor %%xmm3, %%xmm1\n\t" /* xmm1 holds 2+3+4:a1b1 / + "pxor %%xmm15, %%xmm12\n\t" /* xmm12 holds 2+3+4:(a0+a1)(b0+b1) / + + "movdqa %%xmm0, %%xmm3\n\t" + "pclmulqdq $0, %%xmm6, %%xmm3\n\t" /* xmm3 holds 1:a0b0 / + "pclmulqdq $17, %%xmm0, %%xmm6\n\t" /* xmm6 holds 1:a1b1 / + "movdqa %%xmm11, %%xmm4\n\t" + "pclmulqdq $0, %%xmm10, %%xmm4\n\t" /* xmm4 holds 1:(a0+a1)(b0+b1) / + + "pxor %%xmm7, %%xmm3\n\t" /* xmm3 holds 1+2+3+4:a0b0 / + "pxor %%xmm1, %%xmm6\n\t" /* xmm6 holds 1+2+3+4:a1b1 / + "pxor %%xmm12, %%xmm4\n\t" /* xmm4 holds 1+2+3+4:(a0+a1)(b0+b1) / + + /* aggregated reduction... / + "movdqa %%xmm3, %%xmm5\n\t" + "pxor %%xmm6, %%xmm5\n\t" / xmm5 holds a0b0+a1b1 / + "pxor %%xmm5, %%xmm4\n\t" / xmm4 holds a0b0+a1b1+(a0+a1)(b0+b1) / + "movdqa %%xmm4, %%xmm5\n\t" + "psrldq $8, %%xmm4\n\t" + "pslldq $8, %%xmm5\n\t" + "pxor %%xmm5, %%xmm3\n\t" + "pxor %%xmm4, %%xmm6\n\t" /* holds the result of the + carry-less multiplication of xmm0 + by xmm1 / + + / shift the result by one bit position to the left cope for + the fact that bits are reversed / + "movdqa %%xmm3, %%xmm4\n\t" + "movdqa %%xmm6, %%xmm5\n\t" + "pslld $1, %%xmm3\n\t" + "pslld $1, %%xmm6\n\t" + "psrld $31, %%xmm4\n\t" + "psrld $31, %%xmm5\n\t" + "movdqa %%xmm4, %%xmm1\n\t" + "pslldq $4, %%xmm5\n\t" + "pslldq $4, %%xmm4\n\t" + "psrldq $12, %%xmm1\n\t" + "por %%xmm4, %%xmm3\n\t" + "por %%xmm5, %%xmm6\n\t" + "por %%xmm6, %%xmm1\n\t" + + / first phase of the reduction / + "movdqa %%xmm3, %%xmm6\n\t" + "movdqa %%xmm3, %%xmm7\n\t" + "pslld $31, %%xmm6\n\t" / packed right shifting << 31 / + "movdqa %%xmm3, %%xmm5\n\t" + "pslld $30, %%xmm7\n\t" / packed right shifting shift << 30 / + "pslld $25, %%xmm5\n\t" / packed right shifting shift << 25 / + "pxor %%xmm7, %%xmm6\n\t" / xor the shifted versions / + "pxor %%xmm5, %%xmm6\n\t" + "movdqa %%xmm6, %%xmm7\n\t" + "pslldq $12, %%xmm6\n\t" + "psrldq $4, %%xmm7\n\t" + "pxor %%xmm6, %%xmm3\n\t" / first phase of the reduction + complete / + + / second phase of the reduction / + "movdqa %%xmm3, %%xmm2\n\t" + "movdqa %%xmm3, %%xmm4\n\t" + "psrld $1, %%xmm2\n\t" / packed left shifting >> 1 / + "movdqa %%xmm3, %%xmm5\n\t" + "psrld $2, %%xmm4\n\t" / packed left shifting >> 2 / + "psrld $7, %%xmm5\n\t" / packed left shifting >> 7 / + "pxor %%xmm4, %%xmm2\n\t" / xor the shifted versions / + "pxor %%xmm5, %%xmm2\n\t" + "pxor %%xmm7, %%xmm2\n\t" + "pxor %%xmm2, %%xmm3\n\t" + "pxor %%xmm3, %%xmm1\n\t" / the result is in xmm1 / + :::"cc"); +} +#endif + + +void +_gcry_ghash_setup_intel_pclmul (gcry_cipher_hd_t c, byte h) +{ + u64 tmp[2]; + + /* Swap endianness of hsub. / + tmp[0] = buf_get_be64(c->u_mode.gcm.u_ghash_key.key + 8); + tmp[1] = buf_get_be64(c->u_mode.gcm.u_ghash_key.key + 0); + buf_cpy (c->u_mode.gcm.u_ghash_key.key, tmp, GCRY_GCM_BLOCK_LEN); + +#ifdef __x86_64__ + asm volatile ("movdqu %[h_1], %%xmm0\n\t" + "movdqa %%xmm0, %%xmm1\n\t" + : + : [h_1] "m" (tmp)); + + gfmul_pclmul (); /* H?H => H? / + + asm volatile ("movdqu %%xmm1, 016(%[h_234])\n\t" + "movdqa %%xmm1, %%xmm8\n\t" + : + : [h_234] "r" (c->u_mode.gcm.gcm_table) + : "memory"); + + gfmul_pclmul (); /* H?H? => H? / + + asm volatile ("movdqa %%xmm8, %%xmm0\n\t" + "movdqu %%xmm1, 116(%[h_234])\n\t" + "movdqa %%xmm8, %%xmm1\n\t" + : + : [h_234] "r" (c->u_mode.gcm.gcm_table) + : "memory"); + + gfmul_pclmul (); /* H??H? => H? / + + asm volatile ("movdqu %%xmm1, 216(%[h_234])\n\t" + : + : [h_234] "r" (c->u_mode.gcm.gcm_table) + : "memory"); + + /* Clear used registers. / + asm volatile( "pxor %%xmm0, %%xmm0\n\t" + "pxor %%xmm1, %%xmm1\n\t" + "pxor %%xmm2, %%xmm2\n\t" + "pxor %%xmm3, %%xmm3\n\t" + "pxor %%xmm4, %%xmm4\n\t" + "pxor %%xmm5, %%xmm5\n\t" + "pxor %%xmm6, %%xmm6\n\t" + "pxor %%xmm7, %%xmm7\n\t" + "pxor %%xmm8, %%xmm8\n\t" + ::: "cc" ); +#endif + + wipememory (tmp, sizeof(tmp)); +} + + +unsigned int +_gcry_ghash_intel_pclmul (gcry_cipher_hd_t c, byte result, const byte buf, + size_t nblocks) +{ + static const unsigned char be_mask[16] attribute ((aligned (16))) = + { 15, 14, 13, 12, 11, 10, 9, 8, 7, 6, 5, 4, 3, 2, 1, 0 }; + const unsigned int blocksize = GCRY_GCM_BLOCK_LEN; + + if (nblocks == 0) + return 0; + + / Preload hash and H1. / + asm volatile ("movdqu %[hash], %%xmm1\n\t" + "movdqa %[hsub], %%xmm0\n\t" + "pshufb %[be_mask], %%xmm1\n\t" / be => le / + : + : [hash] "m" (result), [be_mask] "m" (be_mask), + [hsub] "m" (c->u_mode.gcm.u_ghash_key.key)); + +#ifdef __x86_64__ + if (nblocks >= 4) + { + do + { + asm volatile ("movdqa %[be_mask], %%xmm4\n\t" + "movdqu 016(%[buf]), %%xmm5\n\t" + "movdqu 116(%[buf]), %%xmm2\n\t" + "movdqu 216(%[buf]), %%xmm3\n\t" + "movdqu 316(%[buf]), %%xmm6\n\t" + "pshufb %%xmm4, %%xmm5\n\t" /* be => le / + + / Load H2, H3, H4. / + "movdqu 216(%[h_234]), %%xmm10\n\t" + "movdqu 116(%[h_234]), %%xmm9\n\t" + "movdqu 016(%[h_234]), %%xmm8\n\t" + + "pxor %%xmm5, %%xmm1\n\t" + "pshufb %%xmm4, %%xmm2\n\t" /* be => le / + "pshufb %%xmm4, %%xmm3\n\t" / be => le / + "pshufb %%xmm4, %%xmm6\n\t" / be => le / + : + : [buf] "r" (buf), [be_mask] "m" (be_mask), + [h_234] "r" (c->u_mode.gcm.gcm_table)); + + gfmul_pclmul_aggr4 (); + + buf += 4 * blocksize; + nblocks -= 4; + } + while (nblocks >= 4); + + /* Clear used x86-64/XMM registers. / + asm volatile( "pxor %%xmm8, %%xmm8\n\t" + "pxor %%xmm9, %%xmm9\n\t" + "pxor %%xmm10, %%xmm10\n\t" + "pxor %%xmm11, %%xmm11\n\t" + "pxor %%xmm12, %%xmm12\n\t" + "pxor %%xmm13, %%xmm13\n\t" + "pxor %%xmm14, %%xmm14\n\t" + "pxor %%xmm15, %%xmm15\n\t" + ::: "cc" ); + } +#endif + + while (nblocks--) + { + asm volatile ("movdqu %[buf], %%xmm2\n\t" + "pshufb %[be_mask], %%xmm2\n\t" / be => le / + "pxor %%xmm2, %%xmm1\n\t" + : + : [buf] "m" (buf), [be_mask] "m" (be_mask)); + + gfmul_pclmul (); + + buf += blocksize; + } + + / Store hash. / + asm volatile ("pshufb %[be_mask], %%xmm1\n\t" / be => le / + "movdqu %%xmm1, %[hash]\n\t" + : [hash] "=m" (result) + : [be_mask] "m" (be_mask)); + + / Clear used registers. / + asm volatile( "pxor %%xmm0, %%xmm0\n\t" + "pxor %%xmm1, %%xmm1\n\t" + "pxor %%xmm2, %%xmm2\n\t" + "pxor %%xmm3, %%xmm3\n\t" + "pxor %%xmm4, %%xmm4\n\t" + "pxor %%xmm5, %%xmm5\n\t" + "pxor %%xmm6, %%xmm6\n\t" + "pxor %%xmm7, %%xmm7\n\t" + ::: "cc" ); + + return 0; +} + +#endif / GCM_USE_INTEL_PCLMUL / diff --git a/cipher/cipher-gcm.c b/cipher/cipher-gcm.c index 0534761..f89b81e 100644 --- a/cipher/cipher-gcm.c +++ b/cipher/cipher-gcm.c @@ -29,6 +29,15 @@ #include "bufhelp.h" #include "./cipher-internal.h" + +#ifdef GCM_USE_INTEL_PCLMUL +extern void _gcry_ghash_setup_intel_pclmul (gcry_cipher_hd_t c, byte h); + +extern unsigned int _gcry_ghash_intel_pclmul (gcry_cipher_hd_t c, byte result, + const byte buf, size_t nblocks); +#endif + + #ifdef GCM_USE_TABLES static const u16 gcmR[256] = { 0x0000, 0x01c2, 0x0384, 0x0246, 0x0708, 0x06ca, 0x048c, 0x054e, @@ -348,325 +357,18 @@ do_ghash (unsigned char hsub, unsigned char result, const unsigned char buf) #endif / !GCM_USE_TABLES / -#ifdef GCM_USE_INTEL_PCLMUL -/ - Intel PCLMUL ghash based on white paper: - "Intel? Carry-Less Multiplication Instruction and its Usage for Computing the - GCM Mode - Rev 2.01"; Shay Gueron, Michael E. Kounavis. - / -static inline void gfmul_pclmul(void) -{ - / Input: XMM0 and XMM1, Output: XMM1. Input XMM0 stays unmodified. - Input must be converted to little-endian. - / - asm volatile (/ gfmul, xmm0 has operator a and xmm1 has operator b. / - "pshufd $78, %%xmm0, %%xmm2\n\t" - "pshufd $78, %%xmm1, %%xmm4\n\t" - "pxor %%xmm0, %%xmm2\n\t" / xmm2 holds a0+a1 / - "pxor %%xmm1, %%xmm4\n\t" / xmm4 holds b0+b1 / - - "movdqa %%xmm0, %%xmm3\n\t" - "pclmulqdq $0, %%xmm1, %%xmm3\n\t" / xmm3 holds a0b0 / - "movdqa %%xmm0, %%xmm6\n\t" - "pclmulqdq $17, %%xmm1, %%xmm6\n\t" /* xmm6 holds a1b1 / - "movdqa %%xmm3, %%xmm5\n\t" - "pclmulqdq $0, %%xmm2, %%xmm4\n\t" /* xmm4 holds (a0+a1)(b0+b1) / - - "pxor %%xmm6, %%xmm5\n\t" /* xmm5 holds a0b0+a1b1 / - "pxor %%xmm5, %%xmm4\n\t" / xmm4 holds a0b0+a1b1+(a0+a1)(b0+b1) / - "movdqa %%xmm4, %%xmm5\n\t" - "psrldq $8, %%xmm4\n\t" - "pslldq $8, %%xmm5\n\t" - "pxor %%xmm5, %%xmm3\n\t" - "pxor %%xmm4, %%xmm6\n\t" /* holds the result of the - carry-less multiplication of xmm0 - by xmm1 / - - / shift the result by one bit position to the left cope for - the fact that bits are reversed / - "movdqa %%xmm3, %%xmm4\n\t" - "movdqa %%xmm6, %%xmm5\n\t" - "pslld $1, %%xmm3\n\t" - "pslld $1, %%xmm6\n\t" - "psrld $31, %%xmm4\n\t" - "psrld $31, %%xmm5\n\t" - "movdqa %%xmm4, %%xmm1\n\t" - "pslldq $4, %%xmm5\n\t" - "pslldq $4, %%xmm4\n\t" - "psrldq $12, %%xmm1\n\t" - "por %%xmm4, %%xmm3\n\t" - "por %%xmm5, %%xmm6\n\t" - "por %%xmm6, %%xmm1\n\t" - - / first phase of the reduction / - "movdqa %%xmm3, %%xmm6\n\t" - "movdqa %%xmm3, %%xmm7\n\t" - "pslld $31, %%xmm6\n\t" / packed right shifting << 31 / - "movdqa %%xmm3, %%xmm5\n\t" - "pslld $30, %%xmm7\n\t" / packed right shifting shift << 30 / - "pslld $25, %%xmm5\n\t" / packed right shifting shift << 25 / - "pxor %%xmm7, %%xmm6\n\t" / xor the shifted versions / - "pxor %%xmm5, %%xmm6\n\t" - "movdqa %%xmm6, %%xmm7\n\t" - "pslldq $12, %%xmm6\n\t" - "psrldq $4, %%xmm7\n\t" - "pxor %%xmm6, %%xmm3\n\t" / first phase of the reduction - complete / - - / second phase of the reduction / - "movdqa %%xmm3, %%xmm2\n\t" - "movdqa %%xmm3, %%xmm4\n\t" - "psrld $1, %%xmm2\n\t" / packed left shifting >> 1 / - "movdqa %%xmm3, %%xmm5\n\t" - "psrld $2, %%xmm4\n\t" / packed left shifting >> 2 / - "psrld $7, %%xmm5\n\t" / packed left shifting >> 7 / - "pxor %%xmm4, %%xmm2\n\t" / xor the shifted versions / - "pxor %%xmm5, %%xmm2\n\t" - "pxor %%xmm7, %%xmm2\n\t" - "pxor %%xmm2, %%xmm3\n\t" - "pxor %%xmm3, %%xmm1\n\t" / the result is in xmm1 / - ::: "cc" ); -} - -#ifdef __x86_64__ -static inline void gfmul_pclmul_aggr4(void) -{ - / Input: - H?: XMM0 X_i : XMM6 - H?: XMM8 X_(i-1) : XMM3 - H?: XMM9 X_(i-2) : XMM2 - H?: XMM10 X_(i-3)?Y_(i-4): XMM1 - Output: - Y_i: XMM1 - Inputs XMM0 stays unmodified. - Input must be converted to little-endian. - / - asm volatile (/ perform clmul and merge results... / - "pshufd $78, %%xmm10, %%xmm11\n\t" - "pshufd $78, %%xmm1, %%xmm12\n\t" - "pxor %%xmm10, %%xmm11\n\t" / xmm11 holds 4:a0+a1 / - "pxor %%xmm1, %%xmm12\n\t" / xmm12 holds 4:b0+b1 / - - "pshufd $78, %%xmm9, %%xmm13\n\t" - "pshufd $78, %%xmm2, %%xmm14\n\t" - "pxor %%xmm9, %%xmm13\n\t" / xmm13 holds 3:a0+a1 / - "pxor %%xmm2, %%xmm14\n\t" / xmm14 holds 3:b0+b1 / - - "pshufd $78, %%xmm8, %%xmm5\n\t" - "pshufd $78, %%xmm3, %%xmm15\n\t" - "pxor %%xmm8, %%xmm5\n\t" / xmm1 holds 2:a0+a1 / - "pxor %%xmm3, %%xmm15\n\t" / xmm2 holds 2:b0+b1 / - - "movdqa %%xmm10, %%xmm4\n\t" - "movdqa %%xmm9, %%xmm7\n\t" - "pclmulqdq $0, %%xmm1, %%xmm4\n\t" / xmm4 holds 4:a0b0 / - "pclmulqdq $0, %%xmm2, %%xmm7\n\t" /* xmm7 holds 3:a0b0 / - "pclmulqdq $17, %%xmm10, %%xmm1\n\t" /* xmm1 holds 4:a1b1 / - "pclmulqdq $17, %%xmm9, %%xmm2\n\t" /* xmm9 holds 3:a1b1 / - "pclmulqdq $0, %%xmm11, %%xmm12\n\t" /* xmm12 holds 4:(a0+a1)(b0+b1) / - "pclmulqdq $0, %%xmm13, %%xmm14\n\t" /* xmm14 holds 3:(a0+a1)(b0+b1) / - - "pshufd $78, %%xmm0, %%xmm10\n\t" - "pshufd $78, %%xmm6, %%xmm11\n\t" - "pxor %%xmm0, %%xmm10\n\t" /* xmm10 holds 1:a0+a1 / - "pxor %%xmm6, %%xmm11\n\t" / xmm11 holds 1:b0+b1 / - - "pxor %%xmm4, %%xmm7\n\t" / xmm7 holds 3+4:a0b0 / - "pxor %%xmm2, %%xmm1\n\t" /* xmm1 holds 3+4:a1b1 / - "pxor %%xmm14, %%xmm12\n\t" /* xmm12 holds 3+4:(a0+a1)(b0+b1) / - - "movdqa %%xmm8, %%xmm13\n\t" - "pclmulqdq $0, %%xmm3, %%xmm13\n\t" /* xmm13 holds 2:a0b0 / - "pclmulqdq $17, %%xmm8, %%xmm3\n\t" /* xmm3 holds 2:a1b1 / - "pclmulqdq $0, %%xmm5, %%xmm15\n\t" /* xmm15 holds 2:(a0+a1)(b0+b1) / - - "pxor %%xmm13, %%xmm7\n\t" /* xmm7 holds 2+3+4:a0b0 / - "pxor %%xmm3, %%xmm1\n\t" /* xmm1 holds 2+3+4:a1b1 / - "pxor %%xmm15, %%xmm12\n\t" /* xmm12 holds 2+3+4:(a0+a1)(b0+b1) / - - "movdqa %%xmm0, %%xmm3\n\t" - "pclmulqdq $0, %%xmm6, %%xmm3\n\t" /* xmm3 holds 1:a0b0 / - "pclmulqdq $17, %%xmm0, %%xmm6\n\t" /* xmm6 holds 1:a1b1 / - "movdqa %%xmm11, %%xmm4\n\t" - "pclmulqdq $0, %%xmm10, %%xmm4\n\t" /* xmm4 holds 1:(a0+a1)(b0+b1) / - - "pxor %%xmm7, %%xmm3\n\t" /* xmm3 holds 1+2+3+4:a0b0 / - "pxor %%xmm1, %%xmm6\n\t" /* xmm6 holds 1+2+3+4:a1b1 / - "pxor %%xmm12, %%xmm4\n\t" /* xmm4 holds 1+2+3+4:(a0+a1)(b0+b1) / - - /* aggregated reduction... / - "movdqa %%xmm3, %%xmm5\n\t" - "pxor %%xmm6, %%xmm5\n\t" / xmm5 holds a0b0+a1b1 / - "pxor %%xmm5, %%xmm4\n\t" / xmm4 holds a0b0+a1b1+(a0+a1)(b0+b1) / - "movdqa %%xmm4, %%xmm5\n\t" - "psrldq $8, %%xmm4\n\t" - "pslldq $8, %%xmm5\n\t" - "pxor %%xmm5, %%xmm3\n\t" - "pxor %%xmm4, %%xmm6\n\t" /* holds the result of the - carry-less multiplication of xmm0 - by xmm1 / - - / shift the result by one bit position to the left cope for - the fact that bits are reversed / - "movdqa %%xmm3, %%xmm4\n\t" - "movdqa %%xmm6, %%xmm5\n\t" - "pslld $1, %%xmm3\n\t" - "pslld $1, %%xmm6\n\t" - "psrld $31, %%xmm4\n\t" - "psrld $31, %%xmm5\n\t" - "movdqa %%xmm4, %%xmm1\n\t" - "pslldq $4, %%xmm5\n\t" - "pslldq $4, %%xmm4\n\t" - "psrldq $12, %%xmm1\n\t" - "por %%xmm4, %%xmm3\n\t" - "por %%xmm5, %%xmm6\n\t" - "por %%xmm6, %%xmm1\n\t" - - / first phase of the reduction / - "movdqa %%xmm3, %%xmm6\n\t" - "movdqa %%xmm3, %%xmm7\n\t" - "pslld $31, %%xmm6\n\t" / packed right shifting << 31 / - "movdqa %%xmm3, %%xmm5\n\t" - "pslld $30, %%xmm7\n\t" / packed right shifting shift << 30 / - "pslld $25, %%xmm5\n\t" / packed right shifting shift << 25 / - "pxor %%xmm7, %%xmm6\n\t" / xor the shifted versions / - "pxor %%xmm5, %%xmm6\n\t" - "movdqa %%xmm6, %%xmm7\n\t" - "pslldq $12, %%xmm6\n\t" - "psrldq $4, %%xmm7\n\t" - "pxor %%xmm6, %%xmm3\n\t" / first phase of the reduction - complete / - - / second phase of the reduction / - "movdqa %%xmm3, %%xmm2\n\t" - "movdqa %%xmm3, %%xmm4\n\t" - "psrld $1, %%xmm2\n\t" / packed left shifting >> 1 / - "movdqa %%xmm3, %%xmm5\n\t" - "psrld $2, %%xmm4\n\t" / packed left shifting >> 2 / - "psrld $7, %%xmm5\n\t" / packed left shifting >> 7 / - "pxor %%xmm4, %%xmm2\n\t" / xor the shifted versions / - "pxor %%xmm5, %%xmm2\n\t" - "pxor %%xmm7, %%xmm2\n\t" - "pxor %%xmm2, %%xmm3\n\t" - "pxor %%xmm3, %%xmm1\n\t" / the result is in xmm1 / - :::"cc"); -} -#endif - -#endif /GCM_USE_INTEL_PCLMUL/ - - static unsigned int -ghash (gcry_cipher_hd_t c, byte result, const byte buf, - size_t nblocks) +ghash_internal (gcry_cipher_hd_t c, byte result, const byte buf, + size_t nblocks) { const unsigned int blocksize = GCRY_GCM_BLOCK_LEN; - unsigned int burn; - - if (nblocks == 0) - return 0; - - if (0) - ; -#ifdef GCM_USE_INTEL_PCLMUL - else if (c->u_mode.gcm.use_intel_pclmul) - { - static const unsigned char be_mask[16] attribute ((aligned (16))) = - { 15, 14, 13, 12, 11, 10, 9, 8, 7, 6, 5, 4, 3, 2, 1, 0 }; - - / Preload hash and H1. / - asm volatile ("movdqu %[hash], %%xmm1\n\t" - "movdqa %[hsub], %%xmm0\n\t" - "pshufb %[be_mask], %%xmm1\n\t" / be => le / - : - : [hash] "m" (result), [be_mask] "m" (be_mask), - [hsub] "m" (c->u_mode.gcm.u_ghash_key.key)); - -#ifdef __x86_64__ - if (nblocks >= 4) - { - do - { - asm volatile ("movdqa %[be_mask], %%xmm4\n\t" - "movdqu 016(%[buf]), %%xmm5\n\t" - "movdqu 116(%[buf]), %%xmm2\n\t" - "movdqu 216(%[buf]), %%xmm3\n\t" - "movdqu 316(%[buf]), %%xmm6\n\t" - "pshufb %%xmm4, %%xmm5\n\t" /* be => le / - - / Load H2, H3, H4. / - "movdqu 216(%[h_234]), %%xmm10\n\t" - "movdqu 116(%[h_234]), %%xmm9\n\t" - "movdqu 016(%[h_234]), %%xmm8\n\t" - - "pxor %%xmm5, %%xmm1\n\t" - "pshufb %%xmm4, %%xmm2\n\t" /* be => le / - "pshufb %%xmm4, %%xmm3\n\t" / be => le / - "pshufb %%xmm4, %%xmm6\n\t" / be => le / - : - : [buf] "r" (buf), [be_mask] "m" (be_mask), - [h_234] "r" (c->u_mode.gcm.gcm_table)); - - gfmul_pclmul_aggr4 (); - - buf += 4 * blocksize; - nblocks -= 4; - } - while (nblocks >= 4); - - /* Clear used x86-64/XMM registers. / - asm volatile( "pxor %%xmm8, %%xmm8\n\t" - "pxor %%xmm9, %%xmm9\n\t" - "pxor %%xmm10, %%xmm10\n\t" - "pxor %%xmm11, %%xmm11\n\t" - "pxor %%xmm12, %%xmm12\n\t" - "pxor %%xmm13, %%xmm13\n\t" - "pxor %%xmm14, %%xmm14\n\t" - "pxor %%xmm15, %%xmm15\n\t" - ::: "cc" ); - } -#endif - - while (nblocks--) - { - asm volatile ("movdqu %[buf], %%xmm2\n\t" - "pshufb %[be_mask], %%xmm2\n\t" / be => le / - "pxor %%xmm2, %%xmm1\n\t" - : - : [buf] "m" (buf), [be_mask] "m" (be_mask)); - - gfmul_pclmul (); - - buf += blocksize; - } + unsigned int burn = 0; - / Store hash. / - asm volatile ("pshufb %[be_mask], %%xmm1\n\t" / be => le / - "movdqu %%xmm1, %[hash]\n\t" - : [hash] "=m" (result) - : [be_mask] "m" (be_mask)); - - / Clear used registers. / - asm volatile( "pxor %%xmm0, %%xmm0\n\t" - "pxor %%xmm1, %%xmm1\n\t" - "pxor %%xmm2, %%xmm2\n\t" - "pxor %%xmm3, %%xmm3\n\t" - "pxor %%xmm4, %%xmm4\n\t" - "pxor %%xmm5, %%xmm5\n\t" - "pxor %%xmm6, %%xmm6\n\t" - "pxor %%xmm7, %%xmm7\n\t" - ::: "cc" ); - burn = 0; - } -#endif - else + while (nblocks) { - while (nblocks) - { - burn = GHASH (c, result, buf); - buf += blocksize; - nblocks--; - } + burn = GHASH (c, result, buf); + buf += blocksize; + nblocks--; } return burn + (burn ? 5sizeof(void) : 0); @@ -681,63 +383,15 @@ setupM (gcry_cipher_hd_t c, byte h) #ifdef GCM_USE_INTEL_PCLMUL else if (_gcry_get_hw_features () & HWF_INTEL_PCLMUL) { - u64 tmp[2]; - - c->u_mode.gcm.use_intel_pclmul = 1; - - /* Swap endianness of hsub. / - tmp[0] = buf_get_be64(c->u_mode.gcm.u_ghash_key.key + 8); - tmp[1] = buf_get_be64(c->u_mode.gcm.u_ghash_key.key + 0); - buf_cpy (c->u_mode.gcm.u_ghash_key.key, tmp, GCRY_GCM_BLOCK_LEN); - -#ifdef __x86_64__ - asm volatile ("movdqu %[h_1], %%xmm0\n\t" - "movdqa %%xmm0, %%xmm1\n\t" - : - : [h_1] "m" (tmp)); - - gfmul_pclmul (); /* H?H => H? / - - asm volatile ("movdqu %%xmm1, 016(%[h_234])\n\t" - "movdqa %%xmm1, %%xmm8\n\t" - : - : [h_234] "r" (c->u_mode.gcm.gcm_table) - : "memory"); - - gfmul_pclmul (); /* H?H? => H? / - - asm volatile ("movdqa %%xmm8, %%xmm0\n\t" - "movdqu %%xmm1, 116(%[h_234])\n\t" - "movdqa %%xmm8, %%xmm1\n\t" - : - : [h_234] "r" (c->u_mode.gcm.gcm_table) - : "memory"); - - gfmul_pclmul (); /* H??H? => H? / - - asm volatile ("movdqu %%xmm1, 216(%[h_234])\n\t" - : - : [h_234] "r" (c->u_mode.gcm.gcm_table) - : "memory"); - - /* Clear used registers. / - asm volatile( "pxor %%xmm0, %%xmm0\n\t" - "pxor %%xmm1, %%xmm1\n\t" - "pxor %%xmm2, %%xmm2\n\t" - "pxor %%xmm3, %%xmm3\n\t" - "pxor %%xmm4, %%xmm4\n\t" - "pxor %%xmm5, %%xmm5\n\t" - "pxor %%xmm6, %%xmm6\n\t" - "pxor %%xmm7, %%xmm7\n\t" - "pxor %%xmm8, %%xmm8\n\t" - ::: "cc" ); -#endif - - wipememory (tmp, sizeof(tmp)); + c->u_mode.gcm.ghash_fn = _gcry_ghash_intel_pclmul; + _gcry_ghash_setup_intel_pclmul(c, h); } #endif else - fillM (c, h); + { + c->u_mode.gcm.ghash_fn = ghash_internal; + fillM (c, h); + } } @@ -810,6 +464,7 @@ do_ghash_buf(gcry_cipher_hd_t c, byte hash, const byte buf, { unsigned int blocksize = GCRY_GCM_BLOCK_LEN; unsigned int unused = c->u_mode.gcm.mac_unused; + ghash_fn_t ghash_fn = c->u_mode.gcm.ghash_fn; size_t nblocks, n; unsigned int burn = 0; @@ -843,7 +498,7 @@ do_ghash_buf(gcry_cipher_hd_t c, byte hash, const byte buf, gcry_assert (unused == blocksize); / Process one block from macbuf. / - burn = ghash (c, hash, c->u_mode.gcm.macbuf, 1); + burn = ghash_fn (c, hash, c->u_mode.gcm.macbuf, 1); unused = 0; } @@ -851,7 +506,7 @@ do_ghash_buf(gcry_cipher_hd_t c, byte hash, const byte buf, if (nblocks) { - burn = ghash (c, hash, buf, nblocks); + burn = ghash_fn (c, hash, buf, nblocks); buf += blocksize nblocks; buflen -= blocksize * nblocks; } diff --git a/cipher/cipher-internal.h b/cipher/cipher-internal.h index f6bda66..fef0ecb 100644 --- a/cipher/cipher-internal.h +++ b/cipher/cipher-internal.h @@ -42,7 +42,7 @@ #define GCM_USE_TABLES 1 -/* GCM_USE_INTEL_PCLMUL inidicates whether to compile GCM with Intel PCLMUL +/* GCM_USE_INTEL_PCLMUL indicates whether to compile GCM with Intel PCLMUL code. / #undef GCM_USE_INTEL_PCLMUL #if defined(ENABLE_PCLMUL_SUPPORT) && defined(GCM_USE_TABLES) @@ -54,6 +54,10 @@ #endif / GCM_USE_INTEL_PCLMUL / +typedef unsigned int (ghash_fn_t) (gcry_cipher_hd_t c, byte result, + const byte buf, size_t nblocks); + + /* A VIA processor with the Padlock engine as well as the Intel AES_NI instructions require an alignment of most data on a 16 byte boundary. Because we trick out the compiler while allocating the @@ -188,6 +192,7 @@ struct gcry_cipher_handle unsigned char macbuf[GCRY_CCM_BLOCK_LEN]; int mac_unused; /* Number of unprocessed bytes in MACBUF. / + / byte counters for GCM / u32 aadlen[2]; u32 datalen[2]; @@ -209,10 +214,8 @@ struct gcry_cipher_handle unsigned char key[MAX_BLOCKSIZE]; } u_ghash_key; -#ifdef GCM_USE_INTEL_PCLMUL - / Use Intel PCLMUL instructions for accelerated GHASH. / - unsigned int use_intel_pclmul:1; -#endif + / GHASH implementation in use. / + ghash_fn_t ghash_fn; / Pre-calculated table for GCM. */ #ifdef GCM_USE_TABLES ----------------------------------------------------------------------- Summary of changes: cipher/Makefile.am | 4 +- cipher/cipher-gcm-intel-pclmul.c | 395 ++++++++++++++++++++++++++++++++++++++ cipher/cipher-gcm.c | 395 +++----------------------------------- cipher/cipher-internal.h | 13 +- cipher/rijndael-aesni.c | 244 ++++++++++------------- 5 files changed, 534 insertions(+), 517 deletions(-) create mode 100644 cipher/cipher-gcm-intel-pclmul.c hooks/post-receive -- The GNU crypto library http://git.gnupg.org From cvs at cvs.gnupg.org Sun Dec 14 22:37:30 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Sun, 14 Dec 2014 22:37:30 +0100 Subject: [git] gnupg-doc - branch, master, updated. 4b80ae2446dac4b4eacf5e9b29170b9fdc763f8c Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GnuPG website and other docs". The branch, master has been updated via 4b80ae2446dac4b4eacf5e9b29170b9fdc763f8c (commit) from 3154925789c7576d4f654acbfc694217f384d222 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 4b80ae2446dac4b4eacf5e9b29170b9fdc763f8c Author: Werner Koch Date: Sun Dec 14 22:23:07 2014 +0100 blog: Add new article. Also adjusted the CSS for tables a bit. diff --git a/misc/blog.gnupg.org/20141214-gnupg-and-g10.org b/misc/blog.gnupg.org/20141214-gnupg-and-g10.org new file mode 100644 index 0000000..6d2d838 --- /dev/null +++ b/misc/blog.gnupg.org/20141214-gnupg-and-g10.org @@ -0,0 +1,76 @@ +# About GnupG and g10 code +#+AUTHOR: Werner +#+DATE: 14th December 2014 + +** GnuPG and g10^code + +After the release of GnuPG 1.0 in 1999 it turned out that this was not +a write once and forget project. The unrestricted availability of the +software and public concerns about the acquirement of /PGP Inc./ by +/NAI Inc./ (coincidentally at the time of the initial GnuPG release in +December 1997) raised a lot of interest by those who always cared +about privacy issues. + +Fortunately the funding of the Windows port by the German Ministry of +Economics helped to finance the maintenance and further developments +in 1999 and 2000. After that I decided to keep on working on GnuPG +full time and founded [[https://g10code.com][g10^code GmbH]] in 2001 as a legal framework for +it. The company is owned entirely by my brother [[http://www.u32.de][Walter]] and myself and +I like to thank him for his long time support and waive of profit +distribution. If you ever wondered about the name: /g10/ is a +reference on the German constitution article on freedom of +communication (Grundgesetz [[http://de.wikipedia.org/wiki/Artikel_10_des_Grundgesetzes_f%C3%BCr_die_Bundesrepublik_Deutschland][Artikel 10]]) and a pun on the [[http://en.wikipedia.org/wiki/Gesetz_zur_Beschr%C3%A4nkung_des_Brief-,_Post-_und_Fernmeldegeheimnisses][G-10]] law which +allows the secret services to bypass these constitutional guaranteed +freedoms. + +The best known project of g10^code is probably version 2 of GnuPG, +which started under the name /NewPG/ as part of the broader /Aegypten/ +project. The main goal of Aegypten was to provide support for S/MIME +under GNU/Linux and integrate that cleanly with other mail clients, +most notably KMail. This project was due to a public tender of the +[[http://www.bsi.de/EN/][BSI]] (German federal office for information security) and awarded to a +consortium of g10^code, [[https://intevation.de/index.en.html][Intevation]], and [[https://kdab.com][KDAB]]. Another large project +is [[http://www.gpg4win.org][Gpg4win]] which has its roots in a port of GnuPG-2 to Windows done by +g10^code as part of a health research project. Another tender awarded +to the same consortium extended this port to the now mostly used GnuPG +distribution for Windows. + +Now, how viable is it to run a company for the development of free +security software? Not very good I had to realize: the original plan +of selling support contracts did not worked out too well due to the +lack of resources for marketing. Larger development projects raised +most of the revenues but they are not easy to acquire. In the last +years we had problems to get new GnuPG related development contracts +which turned the company into a one-person show by fall 2012. I +actually planned to shut it down in 2013 and to take a straight coder +job somewhere. However, as a side effect of Edward Snowden?s brave +actions, there was more public demand for privacy tools and thus I +concluded that it is worth to keep on working on GnuPG. + +#+ATTR_HTML: :cellpadding 2 + | year | profit | wages | n | balance | + |------+--------+-------+---+---------| + | 2001 | -12000 | 11000 | 2 | 31000 | + | 2002 | 3000 | 40000 | 3 | 32000 | + | 2003 | -16000 | 26000 | 3 | 35000 | + | 2004 | 3000 | 45000 | 4 | 52000 | + | 2005 | 0 | 44000 | 4 | 56000 | + | 2006 | 2000 | 48000 | 3 | 49000 | + | 2007 | 50000 | 57000 | 2 | 99000 | + | 2008 | 11000 | 75000 | 3 | 94000 | + | 2009 | -23000 | 72000 | 3 | 68000 | + | 2010 | 28000 | 74000 | 2 | 78000 | + | 2011 | -41000 | 63000 | 2 | 81000 | + | 2012 | -16000 | 54000 | 2 | 45000 | + | 2013 | -10000 | 32000 | 1 | 44000 | + | 2014 | 12000 | 32000 | 1 | 47000 | + +The table above is a summary of g10^{code}?s balance sheets (in Euro, +2014 are estimations). /profit/ gives the annual net profit or loss, +/wages/ are the gross salary costs for the /n/ employed developers, +and /balance/ is the balance sheet total. Despite of our low wages we +accumulated an estimated loss of 9000 Euro over the last 3 years. The +crowdfunding campaign last year proved that there are many people who +like to see GnuPG alive and maintained. Despite the huge [[file:20140512-rewards-sent.org][costs]] of the +campaign it allowed me to keep working on GnuPG and I am confident +that there will be ways to continue work in 2015. diff --git a/web/share/site.css b/web/share/site.css index 768844f..f91beef 100644 --- a/web/share/site.css +++ b/web/share/site.css @@ -519,6 +519,11 @@ span.sansserif { /* Table related rules as used by org-mode. / +table { + margin-left: 5%; +} + + .left { margin-left: 0px; margin-right: auto; @@ -551,6 +556,7 @@ th.right { td.left { text-align:left; + padding-left: 10px; } td.center { @@ -559,6 +565,7 @@ td.center { td.right { text-align:right; + padding-right: 10px; } ----------------------------------------------------------------------- Summary of changes: misc/blog.gnupg.org/20141214-gnupg-and-g10.org | 76 ++++++++++++++++++++++++ web/share/site.css | 7 +++ 2 files changed, 83 insertions(+) create mode 100644 misc/blog.gnupg.org/20141214-gnupg-and-g10.org hooks/post-receive -- The GnuPG website and other docs http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 09:50:36 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 15 Dec 2014 09:50:36 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.0-76-gfc9a35d Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via fc9a35d2dec2f838abac831fd88dca494773e082 (commit) via b4e402cb5c6d7fc507e8d5131969145b49640e50 (commit) via 38b583ab3cead59cd1d924cfe05b6bd15695ac36 (commit) via 68b4e7c9e4de0dc3580ca5af3cfd0f20a2691b5e (commit) from f3f9f9b2844c35f7942ee904d5222523615cdad4 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit fc9a35d2dec2f838abac831fd88dca494773e082 Author: Werner Koch Date: Mon Dec 15 09:50:19 2014 +0100 gpg: Fix regression in notation data regression. g10/misc.c (pct_expando): Reorder conditions for clarity. * g10/sign.c (write_signature_packets): Fix notation data creation. -- Also re-added the check for signature version > 3. Reported-by: MFPA Signed-off-by: Werner Koch diff --git a/g10/misc.c b/g10/misc.c index c47d6dc..6a45c69 100644 --- a/g10/misc.c +++ b/g10/misc.c @@ -867,23 +867,25 @@ pct_expando(const char string,struct expando_args args) } break; - case 'p': /* primary pk fingerprint of a sk / - case 'f': / pk fingerprint / - case 'g': / sk fingerprint / + case 'f': / Fingerprint of key being signed / + case 'p': / Fingerprint of the primary key making the signature. / + case 'g': / Fingerprint of thge key making the signature. / { byte array[MAX_FINGERPRINT_LEN]; size_t len; int i; - if(((ch+1))=='p' && args->pksk) + if (((ch+1))=='f' && args->pk) + fingerprint_from_pk (args->pk, array, &len); + else if (((ch+1))=='p' && args->pksk) { if(args->pksk->flags.primary) fingerprint_from_pk (args->pksk, array, &len); else if (args->pksk->main_keyid[0] || args->pksk->main_keyid[1]) { - /* FIXME: Document teh code and check whether - it is still needed. / + / Not the primary key: Find the fingerprint + of the primary key. / PKT_public_key pk= xmalloc_clear(sizeof(PKT_public_key)); @@ -893,11 +895,9 @@ pct_expando(const char string,struct expando_args args) memset (array, 0, (len=MAX_FINGERPRINT_LEN)); free_public_key (pk); } - else + else /* Oops: info about the primary key missing. / memset(array,0,(len=MAX_FINGERPRINT_LEN)); } - else if(((ch+1))=='f' && args->pk) - fingerprint_from_pk (args->pk, array, &len); else if(((ch+1))=='g' && args->pksk) fingerprint_from_pk (args->pksk, array, &len); else diff --git a/g10/sign.c b/g10/sign.c index 2e62f04..2724513 100644 --- a/g10/sign.c +++ b/g10/sign.c @@ -700,8 +700,11 @@ write_signature_packets (SK_LIST sk_list, IOBUF out, gcry_md_hd_t hash, if (gcry_md_copy (&md, hash)) BUG (); - build_sig_subpkt_from_sig (sig); - mk_notation_policy_etc (sig, pk, NULL); + if (sig->version >= 4) + { + build_sig_subpkt_from_sig (sig); + mk_notation_policy_etc (sig, NULL, pk); + } hash_sigversion_to_magic (md, sig); gcry_md_final (md); commit b4e402cb5c6d7fc507e8d5131969145b49640e50 Author: Werner Koch Date: Mon Dec 15 09:47:21 2014 +0100 gpg: Avoid extra LF in notaion data listing. g10/keylist.c (show_notation): Use log_printf. diff --git a/g10/keylist.c b/g10/keylist.c index 75def77..0255f00 100644 --- a/g10/keylist.c +++ b/g10/keylist.c @@ -393,7 +393,12 @@ show_notation (PKT_signature * sig, int indent, int mode, int which) print_utf8_buffer (fp, nd->name, strlen (nd->name)); es_fprintf (fp, "="); print_utf8_buffer (fp, nd->value, strlen (nd->value)); - es_fprintf (fp, "\n"); + /* (We need to use log_printf so that the next call to a + log function does not insert an extra LF.) / + if (mode) + log_printf ("\n"); + else + es_putc ('\n', fp); } } commit 38b583ab3cead59cd1d924cfe05b6bd15695ac36 Author: Werner Koch Date: Sun Dec 14 12:15:21 2014 +0100 doc: Typo fixes. -- diff --git a/doc/a-decade-of-gnupg.txt b/doc/a-decade-of-gnupg.txt index 17209ba..f632a2c 100644 --- a/doc/a-decade-of-gnupg.txt +++ b/doc/a-decade-of-gnupg.txt @@ -26,17 +26,17 @@ history: To help political activists Phil Zimmermann published a software called Pretty Good Privacy (PGP) in 1991. PGP was designed as an easy to use encryption tool with no backdoors and disclosed source code. PGP was indeed intended to be cryptographically strong -and not just pretty good; however it had a couple of inital bugs, most +and not just pretty good; however it had a couple of initial bugs, most of all a home designed cipher algorithm. With the availability of the source code a community of hackers (Branko Lankester, Colin Plumb, Derek Atkins, Hal Finney, Peter Gutmann and others) helped him to fix these flaws and a get a solid version 2 out. -Soon after that the trouble started. As in many counties the use or +Soon after that the trouble started. As in many countries the use or export of cryptographic devices and software was also strongly restricted in the USA. Only weak cryptography was generally allowed. PGP was much stronger and due to the Usenet and the availability of -FTP servers and BBSs, PGP accidently leaked out of the country and +FTP servers and BBSs, PGP accidentally leaked out of the country and soon Phil was sued for unlicensed munitions export. Those export control laws were not quite up to the age of software with the funny effect that exporting the software in printed form seemed not to be @@ -58,7 +58,7 @@ the PGP product was later continued by the new PGP Corporation). Also often claimed to be Free Software, PGP has never fulfilled the requirements for it: PGP-5 is straight proprietary software; the -availability of the source code alonedoes not make it free. PGP-2 has +availability of the source code alone does not make it free. PGP-2 has certain restrictions on commercial use [2] and thus puts restrictions on the software which makes it also non-free. Another problem with PGP-2 is that it requires the use of the patented RSA and IDEA @@ -80,8 +80,8 @@ such software in their country or even by US citizens working abroad. Thus he told the European hackers that they are in the unique position to help the GNU with crypto software. -Being tired of writing SMGL conversion software and without a current -fun project, I soon found my self hacking on PGP-2 parsing code based +Being tired of writing SGML conversion software and without a current +fun project, I soon found myself hacking on PGP-2 parsing code based on the description in RFC-1991 and the pgformat.txt file. As this turned out to be easy I continued and finally came up with code to decrypt and create PGP-2 data. After I told the GNU towers that I @@ -101,7 +101,7 @@ and wrote an announcement [5]. Right the next day Peter Gutmann offered to allow the use of his random number code for systems without a /dev/random. This eventually helped a lot to make GnuPG portable to many platforms. The next two -months were filled with code updates and a lengthly discussion on the +months were filled with code updates and a lengthily discussion on the name; we finally settled for Anand Kumria's suggestion of GnuPG and made the first release under this name (gnupg-0.2.8) on Feb 24 [6]. Just a few days later an experimental version with support for Windows @@ -117,7 +117,7 @@ copyright concerns with the reference code). Michael Roth contributed a Triple-DES implementation later the year and thus completed the required set of OpenPGP algorithms. Over the next year the usual problems were solved, features discussed, complaints noticed and -support for gpg in various other software was introduced by their +support for GPG in various other software was introduced by their respective authors. Finally, on September 7, 1999 the current code was released as version @@ -206,7 +206,7 @@ In a reply to this mail Alan Olsen remarked on the ML: determined that the only difference was that RSAREF2 had fixed a number of buffer overflows and other security flaws. There were no added features.) - + If I remember correctly, 2.5 had RSAREF2 and 2.6 had RSAREF1. One of the main reasons for the creation of the "International version" was the use of RSAREF. (Besides the security issues, it was pretty commit 68b4e7c9e4de0dc3580ca5af3cfd0f20a2691b5e Author: Werner Koch Date: Fri Dec 12 20:08:45 2014 +0100 scd: Fix possibly inhibited checkpin of the admin pin. scd/app-openpgp.c (do_check_pin): Do not check a byte of a released buffer. Signed-off-by: Werner Koch diff --git a/scd/app-openpgp.c b/scd/app-openpgp.c index 663b7d3..ac290c9 100644 --- a/scd/app-openpgp.c +++ b/scd/app-openpgp.c @@ -4286,7 +4286,7 @@ do_check_pin (app_t app, const char keyidstr, log_info (_("card is permanently locked!\n")); return gpg_error (GPG_ERR_BAD_PIN); } - else if (value[6] < 3) + else if (count < 3) { log_info (_("verification of Admin PIN is currently prohibited " "through this command\n")); ----------------------------------------------------------------------- Summary of changes: doc/a-decade-of-gnupg.txt | 18 +++++++++--------- g10/keylist.c | 7 ++++++- g10/misc.c | 18 +++++++++--------- g10/sign.c | 7 +++++-- scd/app-openpgp.c | 2 +- 5 files changed, 30 insertions(+), 22 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 11:46:37 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 15 Dec 2014 11:46:37 +0100 Subject: [git] GPG-ERROR - branch, master, updated. libgpg-error-1.17-11-g754a987 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "Error codes used by GnuPG et al.". The branch, master has been updated via 754a987f6df59e2ba0e69aada65ae4aaf593c148 (commit) via 923c4b174520c401a827d8198ebd2dc83666000f (commit) from 149fe98e1279b065edb06958d9a73a0c013c2db9 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 754a987f6df59e2ba0e69aada65ae4aaf593c148 Author: Werner Koch Date: Mon Dec 15 11:44:20 2014 +0100 Add configure option --disable-doc Makefile.am (doc) [!BUILD_DOC]: Do not recurse into doc/. * configure.ac (BUILD_DOC): New am_conditional and new option. -- We have this option already for GnuPG and should use it for all projects. Embedded platforms usually do not require documentation and being able to disable the building avoids a lot of build dependencies. Suggested-by: Hans-Christoph Steiner diff --git a/Makefile.am b/Makefile.am index c6edd12..42cd0c4 100644 --- a/Makefile.am +++ b/Makefile.am @@ -33,7 +33,13 @@ else lang_subdirs = endif -SUBDIRS = m4 src doc tests po $(lang_subdirs) +if BUILD_DOC +doc = doc +else +doc = +endif + +SUBDIRS = m4 src $(doc) tests po $(lang_subdirs) dist-hook: gen-ChangeLog diff --git a/configure.ac b/configure.ac index 9683c81..27fda63 100644 --- a/configure.ac +++ b/configure.ac @@ -508,10 +508,17 @@ AC_DEFINE_UNQUOTED(BUILD_TIMESTAMP, "$BUILD_TIMESTAMP", -AC_ARG_ENABLE(languages, -[ --disable-languages do not build support for other languages than C]) +AC_ARG_ENABLE(languages, AC_HELP_STRING([--disable-languages], + [do not build support for other languages than C])) AM_CONDITIONAL([LANGUAGES_SOME], [test "x$enable_languages" != xno]) +build_doc=yes +AC_ARG_ENABLE([doc], AC_HELP_STRING([--disable-doc], + [do not build the documentation]), + build_doc=$enableval, build_doc=yes) +AM_CONDITIONAL([BUILD_DOC], [test "x$enable_languages" != xno]) + + # # Substitution # commit 923c4b174520c401a827d8198ebd2dc83666000f Author: Werner Koch Date: Mon Dec 15 11:40:27 2014 +0100 Add GPG_ERR_OBJ_TERM_STATE. diff --git a/NEWS b/NEWS index d6a3eb4..01eb0fb 100644 --- a/NEWS +++ b/NEWS @@ -4,6 +4,7 @@ Noteworthy changes in version 1.18 (unreleased) [C13/A13/R_] * Interface changes relative to the 1.17 release: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ GPG_ERR_FORBIDDEN NEW. + GPG_ERR_OBJ_TERM_STATE NEW. Noteworthy changes in version 1.17 (2014-10-15) [C13/A13/R0] diff --git a/doc/errorref.txt b/doc/errorref.txt index 886a304..15a2013 100644 --- a/doc/errorref.txt +++ b/doc/errorref.txt @@ -509,11 +509,6 @@ GPG_ERR_TOO_MANY Too many objects maximum Assuan line length would overflow. GPGME: - To many patterns in gpgme-tools's KEYLIST command. -GPG_ERR_NO_KEYSERVER No keyserver available - - No keyserver configured or no keyserver available due to - missing support for the requested protocol. Found in Dirmngr. - GPG_ERR_LIMIT_REACHED Limit reached A programmed limit has been reached. @@ -529,7 +524,11 @@ GPG_ERR_NOT_INITIALIZED Not initialized fulfilled. 185 GPG_ERR_MISSING_ISSUER_CERT Missing issuer certificate -186 GPG_ERR_NO_KEYSERVER No keyserver available + +GPG_ERR_NO_KEYSERVER No keyserver available + + No keyserver configured or no keyserver available due to + missing support for the requested protocol. Found in Dirmngr. GPG_ERR_INV_CURVE Invalid elliptic curve @@ -612,6 +611,11 @@ GPG_ERR_MAC_ALGO 213 GPG_ERR_SEXP_BAD_OCT_CHAR Bad octal character in S-expression +GPG_ERR_OBJ_TERM_STATE Object is in termination state + + For cards this is the ISO status word 0x6285 (file is in + termnation state). + GPG_ERR_NO_CERT_CHAIN No certificate chain diff --git a/src/err-codes.h.in b/src/err-codes.h.in index 5990bd0..11699cf 100644 --- a/src/err-codes.h.in +++ b/src/err-codes.h.in @@ -247,8 +247,9 @@ 212 GPG_ERR_SEXP_ODD_HEX_NUMBERS Odd hexadecimal numbers in S-expression 213 GPG_ERR_SEXP_BAD_OCT_CHAR Bad octal character in S-expression -# 214 to 225 are free to be used. +# 214 to 224 are free to be used. +225 GPG_ERR_OBJ_TERM_STATE Object is in termination state 226 GPG_ERR_NO_CERT_CHAIN No certificate chain 227 GPG_ERR_CERT_TOO_LARGE Certificate is too large 228 GPG_ERR_INV_RECORD Invalid record ----------------------------------------------------------------------- Summary of changes: Makefile.am | 8 +++++++- NEWS | 1 + configure.ac | 11 +++++++++-- doc/errorref.txt | 16 ++++++++++------ src/err-codes.h.in | 3 ++- 5 files changed, 29 insertions(+), 10 deletions(-) hooks/post-receive -- Error codes used by GnuPG et al. http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 11:55:44 2014 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 15 Dec 2014 11:55:44 +0100 Subject: [git] GPGME - branch, master, updated. gpgme-1.5.3-2-gc32fab4 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "GnuPG Made Easy". The branch, master has been updated via c32fab44f86921ef3f6d42e128e8ba6d287a7718 (commit) from a813c09cc792bfeed945f8573e4fd36da99a88c8 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit c32fab44f86921ef3f6d42e128e8ba6d287a7718 Author: Daniel Kahn Gillmor Date: Sat Sep 6 01:04:07 2014 -0400 doc: Update gpl.texi to match version from gnupg -- Somehow the doc/gpl.texi from gpgme and gnupg drifted out of sync. This patch to gpgme's file brings it in line with gnupg's master branch, and avoids the following errors during make: ./gpl.texi:667: @section seen before @end enumerate ./gpl.texi:724: unmatched `@end enumerate' ./gpl.texi:1: warning: node next `Copying' in menu `Concept Index' and in sectioning `Function and Data Index' differ diff --git a/doc/gpl.texi b/doc/gpl.texi index 1b29a81..d13e9e4 100644 --- a/doc/gpl.texi +++ b/doc/gpl.texi @@ -1,4 +1,5 @@ @node Copying + @unnumbered GNU General Public License @center Version 3, 29 June 2007 @@ -11,7 +12,7 @@ Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. @end display - at section Preamble + at unnumberedsec Preamble The GNU General Public License is a free, copyleft license for software and other kinds of works. @@ -77,7 +78,7 @@ The precise terms and conditions for copying, distribution and modification follow. @iftex - at section TERMS AND CONDITIONS + at unnumberedsec TERMS AND CONDITIONS @end iftex @ifinfo @center TERMS AND CONDITIONS @@ -227,7 +228,7 @@ terms of section 4, provided that you also meet all of these conditions: @enumerate a - at item + at item The work must carry prominent notices stating that you modified it, and giving a relevant date. @@ -658,13 +659,16 @@ an absolute waiver of all civil liability in connection with the Program, unless a warranty or assumption of liability accompanies a copy of the Program in return for a fee. + at end enumerate + @iftex @heading END OF TERMS AND CONDITIONS @end iftex @ifinfo @center END OF TERMS AND CONDITIONS @end ifinfo - at section How to Apply These Terms to Your New Programs + + at unnumberedsec How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it @@ -674,9 +678,11 @@ terms. To do so, attach the following notices to the program. It is safest to attach them to the start of each source file to most effectively state the exclusion of warranty; and each file should have at least -the ``copyright'' line and a pointer to where the full notice is found. - at smallexample - at var{one line to give the program's name and a brief idea of what it does.} +the ``copyright'' line and a pointer to where the full notice is +found. + + at example + at var{one line to give the program's name and a brief idea of what it does.} Copyright (C) @var{year} @var{name of author} This program is free software: you can redistribute it and/or modify @@ -691,17 +697,21 @@ General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see @url{http://www.gnu.org/licenses/}. - at end smallexample + at end example + at noindent Also add information on how to contact you by electronic and paper mail. + at noindent If the program does terminal interaction, make it output a short notice like this when it starts in an interactive mode: @smallexample - at var{program} Copyright (C) @var{year} @var{name of author} -This program comes with ABSOLUTELY NO WARRANTY; for details type @samp{show w}. -This is free software, and you are welcome to redistribute it under certain conditions; type @samp{show c} for details. + at var{program} Copyright (C) @var{year} @var{name of author} +This program comes with ABSOLUTELY NO WARRANTY; for details +type @samp{show w}. This is free software, and you are +welcome to redistribute it under certain conditions; +type @samp{show c} for details. @end smallexample The hypothetical commands @samp{show w} and @samp{show c} should show @@ -720,5 +730,3 @@ library, you may consider it more useful to permit linking proprietary applications with the library. If this is what you want to do, use the GNU Lesser General Public License instead of this License. But first, please read @url{http://www.gnu.org/philosophy/why-not-lgpl.html}. - - at end enumerate ----------------------------------------------------------------------- Summary of changes: doc/gpl.texi | 34 +++++++++++++++++++++------------- 1 file changed, 21 insertions(+), 13 deletions(-) hooks/post-receive -- GnuPG Made Easy http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 12:15:04 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 15 Dec 2014 12:15:04 +0100 Subject: [git] GPG-ERROR - branch, master, updated. libgpg-error-1.17-12-gbcd9295 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "Error codes used by GnuPG et al.". The branch, master has been updated via bcd9295d5b9c9f46478bff0680f57bd71b4061f8 (commit) from 754a987f6df59e2ba0e69aada65ae4aaf593c148 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit bcd9295d5b9c9f46478bff0680f57bd71b4061f8 Author: Werner Koch Date: Mon Dec 15 12:15:44 2014 +0100 Fix commit 754a987. * Makefile.am (DISTCHECK_CONFIGURE_FLAGS): New. (AUTOMAKE_OPTIONS): Move options to ... * configure.ac (AM_INIT_AUTOMAKE): .. here. (BUILD_DOC): Fix commit 754a987. diff --git a/Makefile.am b/Makefile.am index 42cd0c4..e5f3f56 100644 --- a/Makefile.am +++ b/Makefile.am @@ -17,7 +17,7 @@ # License along with this program; if not, see . ACLOCAL_AMFLAGS = -I m4 -AUTOMAKE_OPTIONS = dist-bzip2 +DISTCHECK_CONFIGURE_FLAGS = --enable-doc # (A suitable gitlog-to-changelog script can be found in GnuPG master.) GITLOG_TO_CHANGELOG=gitlog-to-changelog diff --git a/configure.ac b/configure.ac index 27fda63..c1ea013 100644 --- a/configure.ac +++ b/configure.ac @@ -65,7 +65,7 @@ VERSION_NUMBER=m4_esyscmd(printf "0x%02x%02x00" mym4_version_major \ AC_SUBST(VERSION_NUMBER) AC_CONFIG_AUX_DIR([build-aux]) -AM_INIT_AUTOMAKE +AM_INIT_AUTOMAKE([dist-bzip2]) AM_MAINTAINER_MODE AC_CONFIG_SRCDIR([src/err-sources.h.in]) AC_CONFIG_HEADER([config.h]) @@ -516,7 +516,7 @@ build_doc=yes AC_ARG_ENABLE([doc], AC_HELP_STRING([--disable-doc], [do not build the documentation]), build_doc=$enableval, build_doc=yes) -AM_CONDITIONAL([BUILD_DOC], [test "x$enable_languages" != xno]) +AM_CONDITIONAL([BUILD_DOC], [test "x$build_doc" != xno]) # ----------------------------------------------------------------------- Summary of changes: Makefile.am | 2 +- configure.ac | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) hooks/post-receive -- Error codes used by GnuPG et al. http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 12:15:43 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 15 Dec 2014 12:15:43 +0100 Subject: [git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-135-gad50e36 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU crypto library". The branch, master has been updated via ad50e360ef4851e66e51a03fc420175636336b58 (commit) from 4f46374502eb988d701b904f83819e2cf7b1755c (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit ad50e360ef4851e66e51a03fc420175636336b58 Author: Werner Koch Date: Mon Dec 15 12:05:32 2014 +0100 build: Add configure option --disable-doc. * Makefile.am (AUTOMAKE_OPTIONS): Remove. (doc) [!BUILD_DOC]: Do not recurse into the dir. * configure.ac (AM_INIT_AUTOMAKE): Add option formerly in Makefile.am. (BUILD_DOC): Add new am_conditional. diff --git a/Makefile.am b/Makefile.am index 937bdaf..2d7ca43 100644 --- a/Makefile.am +++ b/Makefile.am @@ -18,15 +18,21 @@ # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA ACLOCAL_AMFLAGS = -I m4 -AUTOMAKE_OPTIONS = dist-bzip2 -DISTCHECK_CONFIGURE_FLAGS = --disable-random-daemon \ +DISTCHECK_CONFIGURE_FLAGS = --disable-random-daemon --enable-doc \ --enable-ciphers=arcfour:blowfish:cast5:des:aes:twofish:serpent:rfc2268:seed:camellia # (A suitable gitlog-to-changelog script can be found in GnuPG master.) GITLOG_TO_CHANGELOG=gitlog-to-changelog +if BUILD_DOC +doc = doc +else +doc = +endif + + DIST_SUBDIRS = m4 compat mpi cipher random src doc tests -SUBDIRS = compat mpi cipher random src doc tests +SUBDIRS = compat mpi cipher random src $(doc) tests EXTRA_DIST = autogen.sh autogen.rc README.GIT LICENSES \ ChangeLog-2011 build-aux/ChangeLog-2011 doc/ChangeLog-2011 \ diff --git a/configure.ac b/configure.ac index c979d57..a4ea990 100644 --- a/configure.ac +++ b/configure.ac @@ -75,7 +75,7 @@ VERSION=$PACKAGE_VERSION AC_CONFIG_AUX_DIR([build-aux]) AC_CONFIG_SRCDIR([src/libgcrypt.vers]) -AM_INIT_AUTOMAKE +AM_INIT_AUTOMAKE([dist-bzip2]) AC_CONFIG_HEADER(config.h) AC_CONFIG_MACRO_DIR([m4]) AC_CONFIG_LIBOBJ_DIR([compat]) @@ -2090,6 +2090,16 @@ AC_SUBST([GCRYPT_HWF_MODULES]) # +# Option to disable building of doc file +# +build_doc=yes +AC_ARG_ENABLE([doc], AC_HELP_STRING([--disable-doc], + [do not build the documentation]), + build_doc=$enableval, build_doc=yes) +AM_CONDITIONAL([BUILD_DOC], [test "x$build_doc" != xno]) + + +# # Provide information about the build. # BUILD_REVISION="mym4_revision" ----------------------------------------------------------------------- Summary of changes: Makefile.am | 12 +++++++++--- configure.ac | 12 +++++++++++- 2 files changed, 20 insertions(+), 4 deletions(-) hooks/post-receive -- The GNU crypto library http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 17:39:28 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 15 Dec 2014 17:39:28 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.0-77-gdd65e21 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via dd65e21cb4934b40e6f2f7a8095f39fd6d9971bc (commit) from fc9a35d2dec2f838abac831fd88dca494773e082 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit dd65e21cb4934b40e6f2f7a8095f39fd6d9971bc Author: Werner Koch Date: Mon Dec 15 17:38:40 2014 +0100 gpg: Add sub-command "factory-reset" to --card-edit. * common/util.h (GPG_ERR_OBJ_TERM_STATE): New. * scd/iso7816.c (map_sw): Add this error code. * scd/app-openpgp.c (do_getattr): Return the life cycle indicator. * scd/app.c (select_application): Allow a return value of GPG_ERR_OBJ_TERM_STATE. * scd/scdaemon.c (set_debug): Print the DBG_READER value. * g10/call-agent.c (start_agent): Print a status line for the termination state. (agent_scd_learn): Make arg "info" optional. (agent_scd_apdu): New. * g10/card-util.c (send_apdu): New. (factory_reset): New. (card_edit): Add command factory-reset. Signed-off-by: Werner Koch diff --git a/common/util.h b/common/util.h index a6f8606..94878bc 100644 --- a/common/util.h +++ b/common/util.h @@ -38,7 +38,8 @@ /* These error codes are used but not defined in the required libgpg-error version. Define them here. / #if GPG_ERROR_VERSION_NUMBER < 0x011200 / 1.18 */ -# define GPG_ERR_FORBIDDEN 251 +# define GPG_ERR_OBJ_TERM_STATE 225 +# define GPG_ERR_FORBIDDEN 251 #endif diff --git a/doc/DETAILS b/doc/DETAILS index 9ad616c..ba2725f 100644 --- a/doc/DETAILS +++ b/doc/DETAILS @@ -765,6 +765,7 @@ pkd:0:1024:B665B1435F4C2 .... FF26ABB: - 4 :: No card available - 5 :: No card reader available - 6 :: No card support available + - 7 :: Card is in termination state *** SC_OP_FAILURE [] An operation on a smartcard definitely failed. Currently there is diff --git a/g10/call-agent.c b/g10/call-agent.c index 43a5c4e..0450b81 100644 --- a/g10/call-agent.c +++ b/g10/call-agent.c @@ -343,6 +343,9 @@ start_agent (ctrl_t ctrl, int for_card) case GPG_ERR_NO_SCDAEMON: write_status_text (STATUS_CARDCTRL, "6"); break; + case GPG_ERR_OBJ_TERM_STATE: + write_status_text (STATUS_CARDCTRL, "7"); + break; default: write_status_text (STATUS_CARDCTRL, "4"); log_info ("selecting openpgp failed: %s\n", gpg_strerror (rc)); @@ -586,6 +589,8 @@ learn_status_cb (void opaque, const char line) parm->extcap.ki = abool; else if (!strcmp (p, "aac")) parm->extcap.aac = abool; + else if (!strcmp (p, "si")) + parm->status_indicator = strtoul (p2, NULL, 10); } } xfree (buf); @@ -657,6 +662,9 @@ agent_scd_learn (struct agent_card_info_s info) struct default_inq_parm_s parm; struct agent_card_info_s dummyinfo; + if (!info) + info = &dummyinfo; + memset (info, 0, sizeof info); memset (&parm, 0, sizeof parm); rc = start_agent (NULL, 1); @@ -675,11 +683,7 @@ agent_scd_learn (struct agent_card_info_s info) if (rc) return rc; - if (!info) - info = &dummyinfo; - parm.ctx = agent_ctx; - memset (info, 0, sizeof info); rc = assuan_transact (agent_ctx, "LEARN --sendinfo", dummy_data_cb, NULL, default_inq_cb, &parm, learn_status_cb, info); @@ -694,6 +698,63 @@ agent_scd_learn (struct agent_card_info_s info) } +/ Send an APDU to the current card. On success the status word is + stored at R_SW. With HEXAPDU being NULL only a RESET command is + send to scd. With HEXAPDU being the string "undefined" the command + "SERIALNO undefined" is send to scd. / +gpg_error_t +agent_scd_apdu (const char hexapdu, unsigned int r_sw) +{ + gpg_error_t err; + + / Start the agent but not with the card flag so that we do not + autoselect the openpgp application. / + err = start_agent (NULL, 0); + if (err) + return err; + + if (!hexapdu) + { + err = assuan_transact (agent_ctx, "SCD RESET", + NULL, NULL, NULL, NULL, NULL, NULL); + + } + else if (!strcmp (hexapdu, "undefined")) + { + err = assuan_transact (agent_ctx, "SCD SERIALNO undefined", + NULL, NULL, NULL, NULL, NULL, NULL); + } + else + { + char line[ASSUAN_LINELENGTH]; + membuf_t mb; + unsigned char data; + size_t datalen; + + init_membuf (&mb, 256); + + snprintf (line, DIM(line)-1, "SCD APDU %s", hexapdu); + err = assuan_transact (agent_ctx, line, + membuf_data_cb, &mb, NULL, NULL, NULL, NULL); + if (!err) + { + data = get_membuf (&mb, &datalen); + if (!data) + err = gpg_error_from_syserror (); + else if (datalen < 2) /* Ooops / + err = gpg_error (GPG_ERR_CARD); + else + { + r_sw = (data[datalen-2] << 8) | data[datalen-1]; + } + xfree (data); + } + } + + return err; +} + + int agent_keytocard (const char hexgrip, int keyno, int force, const char serialno, const char timestamp) diff --git a/g10/call-agent.h b/g10/call-agent.h index a24941e..bcb5ae9 100644 --- a/g10/call-agent.h +++ b/g10/call-agent.h @@ -61,6 +61,7 @@ struct agent_card_info_s unsigned int ki:1; / Key import available. / unsigned int aac:1; / Algorithm attributes are changeable. / } extcap; + unsigned int status_indicator; }; struct agent_card_genkey_s { @@ -78,6 +79,9 @@ void agent_release_card_info (struct agent_card_info_s info); /* Return card info. / int agent_scd_learn (struct agent_card_info_s info); +/* Send an APDU to the card. / +gpg_error_t agent_scd_apdu (const char hexapdu, unsigned int r_sw); + / Update INFO with the attribute NAME. / int agent_scd_getattr (const char name, struct agent_card_info_s info); diff --git a/g10/card-util.c b/g10/card-util.c index 0535c1d..b030fad 100644 --- a/g10/card-util.c +++ b/g10/card-util.c @@ -1635,6 +1635,169 @@ card_store_subkey (KBNODE node, int use) } + +/ Direct sending of an hex encoded APDU with error printing. / +static gpg_error_t +send_apdu (const char hexapdu, const char desc, unsigned int ignore) +{ + gpg_error_t err; + unsigned int sw; + + err = agent_scd_apdu (hexapdu, &sw); + if (err) + tty_printf ("sending card command %s failed: %s\n", desc, + gpg_strerror (err)); + else if (!hexapdu || !strcmp (hexapdu, "undefined")) + ; + else if (ignore == 0xffff) + ; / Ignore all status words. / + else if (sw != 0x9000) + { + switch (sw) + { + case 0x6285: err = gpg_error (GPG_ERR_OBJ_TERM_STATE); break; + case 0x6982: err = gpg_error (GPG_ERR_BAD_PIN); break; + case 0x6985: err = gpg_error (GPG_ERR_USE_CONDITIONS); break; + default: err = gpg_error (GPG_ERR_CARD); + } + if (!(ignore && ignore == sw)) + tty_printf ("card command %s failed: %s (0x%04x)\n", desc, + gpg_strerror (err), sw); + } + return err; +} + + +/ Do a factory reset after confirmation. / +static void +factory_reset (void) +{ + struct agent_card_info_s info; + gpg_error_t err; + char answer = NULL; + int termstate = 0; + int i; + + /* The code below basically does the same what this + gpg-connect-agent script does: + + scd reset + scd serialno undefined + scd apdu 00 A4 04 00 06 D2 76 00 01 24 01 + scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 81 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 + scd apdu 00 20 00 83 08 40 40 40 40 40 40 40 40 + scd apdu 00 e6 00 00 + scd reset + scd serialno undefined + scd apdu 00 A4 04 00 06 D2 76 00 01 24 01 + scd apdu 00 44 00 00 + /echo Card has been reset to factory defaults + + but tries to find out something about the card first. + / + + err = agent_scd_learn (&info); + if (gpg_err_code (err) == GPG_ERR_OBJ_TERM_STATE + && gpg_err_source (err) == GPG_ERR_SOURCE_SCD) + termstate = 1; + else if (err) + { + log_error (_("OpenPGP card not available: %s\n"), gpg_strerror (err)); + return; + } + + if (!termstate) + { + log_info (_("OpenPGP card no. %s detected\n"), + info.serialno? info.serialno : "[none]"); + if (!(info.status_indicator == 3 || info.status_indicator == 5)) + { + / Note: We won't see status-indicator 3 here because it is not + possible to select a card application in termination state. / + log_error (_("This command is not supported by this card\n")); + goto leave; + } + + tty_printf ("\n"); + log_info (_("Note: This command destroys all keys stored on the card!\n")); + tty_printf ("\n"); + if (!cpr_get_answer_is_yes ("cardedit.factory-reset.proceed", + _("Continue? (y/N) "))) + goto leave; + + + answer = cpr_get ("cardedit.factory-reset.really", + _("Really do a factory reset? (enter \"yes\") ")); + cpr_kill_prompt (); + trim_spaces (answer); + if (strcmp (answer, "yes")) + goto leave; + + / We need to select a card application before we can send APDUs + to the card without scdaemon doing anything on its own. / + err = send_apdu (NULL, "RESET", 0); + if (err) + goto leave; + err = send_apdu ("undefined", "dummy select ", 0); + if (err) + goto leave; + + / Select the OpenPGP application. / + err = send_apdu ("00A4040006D27600012401", "SELECT AID", 0); + if (err) + goto leave; + + / Do some dummy verifies with wrong PINs to set the retry + counter to zero. We can't easily use the card version 2.1 + feature of presenting the admin PIN to allow the terminate + command because there is no machinery in scdaemon to catch + the verify command and ask for the PIN when the "APDU" + command is used. / + for (i=0; i < 4; i++) + send_apdu ("00200081084040404040404040", "VERIFY", 0xffff); + for (i=0; i < 4; i++) + send_apdu ("00200083084040404040404040", "VERIFY", 0xffff); + + / Send terminate datafile command. / + err = send_apdu ("00e60000", "TERMINATE DF", 0x6985); + if (err) + goto leave; + } + + / The card is in termination state - reset and select again. / + err = send_apdu (NULL, "RESET", 0); + if (err) + goto leave; + err = send_apdu ("undefined", "dummy select", 0); + if (err) + goto leave; + + / Select the OpenPGP application. (no error checking here). / + send_apdu ("00A4040006D27600012401", "SELECT AID", 0xffff); + + / Send activate datafile command. This is used without + confirmation if the card is already in termination state. / + err = send_apdu ("00440000", "ACTIVATE DF", 0); + if (err) + goto leave; + + / Finally we reset the card reader once more. / + err = send_apdu (NULL, "RESET", 0); + if (err) + goto leave; + + leave: + xfree (answer); + agent_release_card_info (&info); +} + + / Data used by the command parser. This needs to be outside of the function scope to allow readline based command completion. / @@ -1644,7 +1807,7 @@ enum cmdids cmdQUIT, cmdADMIN, cmdHELP, cmdLIST, cmdDEBUG, cmdVERIFY, cmdNAME, cmdURL, cmdFETCH, cmdLOGIN, cmdLANG, cmdSEX, cmdCAFPR, cmdFORCESIG, cmdGENERATE, cmdPASSWD, cmdPRIVATEDO, cmdWRITECERT, - cmdREADCERT, cmdUNBLOCK, + cmdREADCERT, cmdUNBLOCK, cmdFACTORYRESET, cmdINVCMD }; @@ -1676,6 +1839,7 @@ static struct { "passwd" , cmdPASSWD, 0, N_("menu to change or unblock the PIN")}, { "verify" , cmdVERIFY, 0, N_("verify the PIN and list all data")}, { "unblock" , cmdUNBLOCK,0, N_("unblock the PIN using a Reset Code") }, + { "factory-reset", cmdFACTORYRESET, 1, N_("destroy all keys and data")}, / Note, that we do not announce these command yet. / { "privatedo", cmdPRIVATEDO, 0, NULL }, { "readcert", cmdREADCERT, 0, NULL }, @@ -1848,7 +2012,7 @@ card_edit (ctrl_t ctrl, strlist_t commands) for (i=0; cmds[i].name; i++ ) if(cmds[i].desc && (!cmds[i].admin_only || (cmds[i].admin_only && allow_admin))) - tty_printf("%-10s %s\n", cmds[i].name, _(cmds[i].desc) ); + tty_printf("%-14s %s\n", cmds[i].name, _(cmds[i].desc) ); break; case cmdADMIN: @@ -1953,6 +2117,10 @@ card_edit (ctrl_t ctrl, strlist_t commands) change_pin (1, allow_admin); break; + case cmdFACTORYRESET: + factory_reset (); + break; + case cmdQUIT: goto leave; diff --git a/scd/apdu.h b/scd/apdu.h index 2e518b1..7e30f76 100644 --- a/scd/apdu.h +++ b/scd/apdu.h @@ -53,7 +53,7 @@ enum { SW_CLA_NOT_SUP = 0x6e00, SW_SUCCESS = 0x9000, - / The follwoing statuswords are no real ones but used to map host + /* The following statuswords are no real ones but used to map host OS errors into status words. A status word is 16 bit so that those values can't be issued by a card. / SW_HOST_OUT_OF_CORE = 0x10001, / No way yet to differentiate diff --git a/scd/app-openpgp.c b/scd/app-openpgp.c index ac290c9..daf0310 100644 --- a/scd/app-openpgp.c +++ b/scd/app-openpgp.c @@ -1073,10 +1073,10 @@ do_getattr (app_t app, ctrl_t ctrl, const char name) } if (table[idx].special == -2) { - char tmp[100]; + char tmp[110]; snprintf (tmp, sizeof tmp, - "gc=%d ki=%d fc=%d pd=%d mcl3=%u aac=%d sm=%d", + "gc=%d ki=%d fc=%d pd=%d mcl3=%u aac=%d sm=%d si=%u", app->app_local->extcap.get_challenge, app->app_local->extcap.key_import, app->app_local->extcap.change_force_chv, @@ -1085,7 +1085,8 @@ do_getattr (app_t app, ctrl_t ctrl, const char name) app->app_local->extcap.algo_attr_change, (app->app_local->extcap.sm_supported ? (app->app_local->extcap.sm_aes128? 7 : 2) - : 0)); + : 0), + app->app_local->status_indicator); send_status_info (ctrl, table[idx].name, tmp, strlen (tmp), NULL, 0); return 0; } diff --git a/scd/app.c b/scd/app.c index 1694ea1..5fa06b0 100644 --- a/scd/app.c +++ b/scd/app.c @@ -389,7 +389,7 @@ select_application (ctrl_t ctrl, int slot, const char name, app_t r_app) err = app_select_dinsig (app); if (err && is_app_allowed ("sc-hsm") && (!name || !strcmp (name, "sc-hsm"))) err = app_select_sc_hsm (app); - if (err && name) + if (err && name && gpg_err_code (err) != GPG_ERR_OBJ_TERM_STATE) err = gpg_error (GPG_ERR_NOT_SUPPORTED); leave: diff --git a/scd/iso7816.c b/scd/iso7816.c index f1dbcff..3c43a4c 100644 --- a/scd/iso7816.c +++ b/scd/iso7816.c @@ -64,7 +64,7 @@ map_sw (int sw) switch (sw) { case SW_EEPROM_FAILURE: ec = GPG_ERR_HARDWARE; break; - case SW_TERM_STATE: ec = GPG_ERR_CARD; break; + case SW_TERM_STATE: ec = GPG_ERR_OBJ_TERM_STATE; break; case SW_WRONG_LENGTH: ec = GPG_ERR_INV_VALUE; break; case SW_SM_NOT_SUP: ec = GPG_ERR_NOT_SUPPORTED; break; case SW_CC_NOT_SUP: ec = GPG_ERR_NOT_SUPPORTED; break; diff --git a/scd/scdaemon.c b/scd/scdaemon.c index 763ce2d..7c786c2 100644 --- a/scd/scdaemon.c +++ b/scd/scdaemon.c @@ -344,7 +344,7 @@ set_debug (const char level) gcry_control (GCRYCTL_SET_VERBOSITY, (int)opt.verbose); if (opt.debug) - log_info ("enabled debug flags:%s%s%s%s%s%s%s%s%s\n", + log_info ("enabled debug flags:%s%s%s%s%s%s%s%s%s%s\n", (opt.debug & DBG_COMMAND_VALUE)? " command":"", (opt.debug & DBG_MPI_VALUE )? " mpi":"", (opt.debug & DBG_CRYPTO_VALUE )? " crypto":"", @@ -353,7 +353,8 @@ set_debug (const char level) (opt.debug & DBG_MEMSTAT_VALUE)? " memstat":"", (opt.debug & DBG_HASHING_VALUE)? " hashing":"", (opt.debug & DBG_ASSUAN_VALUE )? " assuan":"", - (opt.debug & DBG_CARD_IO_VALUE)? " cardio":""); + (opt.debug & DBG_CARD_IO_VALUE)? " cardio":"", + (opt.debug & DBG_READER_VALUE )? " reader":""); } ----------------------------------------------------------------------- Summary of changes: common/util.h | 3 +- doc/DETAILS | 1 + g10/call-agent.c | 69 +++++++++++++++++++-- g10/call-agent.h | 4 ++ g10/card-util.c | 172 ++++++++++++++++++++++++++++++++++++++++++++++++++++- scd/apdu.h | 2 +- scd/app-openpgp.c | 7 ++- scd/app.c | 2 +- scd/iso7816.c | 2 +- scd/scdaemon.c | 5 +- 10 files changed, 252 insertions(+), 15 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 15 18:12:17 2014 From: cvs at cvs.gnupg.org (by Andre Heinecke) Date: Mon, 15 Dec 2014 18:12:17 +0100 Subject: [git] Pinentry - branch, master, updated. pinentry-0.9.0-4-gbb42362 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The standard pinentry collection". The branch, master has been updated via bb423620fca82159e60ab25de3c608a0243088b0 (commit) via c911657710893643558f91ec497fac2831d91040 (commit) from 484465338ea6f5f12eb1341ca0ef84aa79224ed4 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit bb423620fca82159e60ab25de3c608a0243088b0 Author: Andre Heinecke Date: Mon Dec 15 18:07:32 2014 +0100 qt4: Improve moc handling * configure.ac: Disable pinentry-qt4 or exit if moc not found. * m4/qt.m4: Look for and prefer moc-qt4. * qt4/Makefile.am: Add moc files to nodist and clean them. -- Files generated by MOC vary over the used Qt versions (even inside a Major release). Distributing them leads to errors if a different qt version is installed. GnuPG-bug-id: 1784 diff --git a/configure.ac b/configure.ac index c2644c9..1cbd8b2 100644 --- a/configure.ac +++ b/configure.ac @@ -335,7 +335,19 @@ fi) fi if test "$pinentry_qt4" != "no"; then + QT_PATH_MOC +if test "$have_moc" != "yes"; then + if test "$pinentry_qt4" = "yes"; then + AC_MSG_ERROR([[ + * + * Qt moc is required. + ***]]) + else + pinentry_qt4=no + fi +fi + PKG_CHECK_MODULES(QT4_GUI, QtGui,, if test "$pinentry_qt4" = "yes"; then AC_MSG_ERROR([[ diff --git a/m4/qt.m4 b/m4/qt.m4 index 42f33e1..a6b849b 100644 --- a/m4/qt.m4 +++ b/m4/qt.m4 @@ -59,7 +59,7 @@ AC_DEFUN([QT_PATH_MOC], qt_bindirs="$ac_qt_bindir:$qt_bindirs" fi - AC_PATH_PROG(MOC, moc, no, [$qt_bindirs]) + AC_PATH_PROGS(MOC, [moc-qt4 moc], no, [$qt_bindirs]) if test "$MOC" = no; then #AC_MSG_ERROR([No Qt meta object compiler (moc) found! #Please check whether you installed Qt correctly. diff --git a/qt4/Makefile.am b/qt4/Makefile.am index 6dd5f25..e52169c 100644 --- a/qt4/Makefile.am +++ b/qt4/Makefile.am @@ -44,16 +44,15 @@ pinentry_qt4_LDADD = $(QT4_CORE_LIBS) $(QT4_GUI_LIBS) $(libcurses) \ BUILT_SOURCES = \ pinentryconfirm.moc qsecurelineedit.moc pinentrydialog.moc -MAINTAINERCLEANFILES = \ +CLEANFILES = \ pinentryconfirm.moc qsecurelineedit.moc pinentrydialog.moc -EXTRA_DIST += \ - pinentryconfirm.moc qsecurelineedit.moc pinentrydialog.moc - pinentry_qt4_SOURCES = pinentrydialog.h pinentrydialog.cpp \ main.cpp secstring.h secstring.cpp qsecurelineedit.h \ qsecurelineedit.cpp qrc_pinentry.cpp \ - qsecurelineedit_p.h pinentryconfirm.cpp pinentryconfirm.h \ + qsecurelineedit_p.h pinentryconfirm.cpp pinentryconfirm.h + +nodist_pinentry_qt4_SOURCES = \ pinentryconfirm.moc qsecurelineedit.moc pinentrydialog.moc .h.moc: commit c911657710893643558f91ec497fac2831d91040 Author: Andre Heinecke Date: Mon Dec 15 17:38:05 2014 +0100 doc: Update gpl.texi to match version from gcrypt * doc/gpl.texi: Use version from gcrypt. -- This fixes build errors with texinfo 5.2 diff --git a/doc/gpl.texi b/doc/gpl.texi index ca0508f..6eb301e 100644 --- a/doc/gpl.texi +++ b/doc/gpl.texi @@ -1,5 +1,5 @@ @node Copying - at appendix GNU GENERAL PUBLIC LICENSE + at unnumbered GNU General Public License @cindex GPL, GNU General Public License @center Version 2, June 1991 @@ -12,7 +12,7 @@ Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. @end display - at appendixsubsec Preamble + at heading Preamble The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public @@ -63,7 +63,7 @@ patent must be licensed for everyone's free use or not licensed at all. modification follow. @iftex - at appendixsubsec TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION + at heading TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION @end iftex @ifinfo @center TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION @@ -287,12 +287,7 @@ make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally. - at iftex - at heading NO WARRANTY - at end iftex - at ifinfo @center NO WARRANTY - at end ifinfo @item BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY @@ -325,7 +320,7 @@ POSSIBILITY OF SUCH DAMAGES. @end ifinfo @page - at unnumberedsec How to Apply These Terms to Your New Programs + at heading How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it @@ -364,7 +359,7 @@ when it starts in an interactive mode: Gnomovision version 69, Copyright (C) 19 at var{yy} @var{name of author} Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'. This is free software, and you are welcome -to redistribute it under certain conditions; type `show c' +to redistribute it under certain conditions; type `show c' for details. @end smallexample @@ -382,7 +377,7 @@ necessary. Here is a sample; alter the names: @group Yoyodyne, Inc., hereby disclaims all copyright interest in the program `Gnomovision' -(which makes passes at compilers) written +(which makes passes at compilers) written by James Hacker. @var{signature of Ty Coon}, 1 April 1989 ----------------------------------------------------------------------- Summary of changes: configure.ac | 12 ++++++++++++ doc/gpl.texi | 17 ++++++----------- m4/qt.m4 | 2 +- qt4/Makefile.am | 9 ++++----- 4 files changed, 23 insertions(+), 17 deletions(-) hooks/post-receive -- The standard pinentry collection http://git.gnupg.org From cvs at cvs.gnupg.org Tue Dec 16 10:37:28 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Tue, 16 Dec 2014 10:37:28 +0100 Subject: [git] gnupg-doc - branch, master, updated. c4e8dde54e3ba7f91c484612c4ed0d2978bcdb13 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GnuPG website and other docs". The branch, master has been updated via c4e8dde54e3ba7f91c484612c4ed0d2978bcdb13 (commit) via 25ce7c92239477fdcc83e59c7159f13548fd7105 (commit) via 2b1e6cc2d57fb5aed1e01935f23e1a3218581ae8 (commit) from 4b80ae2446dac4b4eacf5e9b29170b9fdc763f8c (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit c4e8dde54e3ba7f91c484612c4ed0d2978bcdb13 Author: Werner Koch Date: Tue Dec 16 10:38:26 2014 +0100 web: Fixed the layout of people/. This fixes a regression due to the change of the "figure" class for the blogs. diff --git a/web/people/index.org b/web/people/index.org index 246c21d..af24b66 100644 --- a/web/people/index.org +++ b/web/people/index.org @@ -15,8 +15,9 @@ Werner Koch - #+ATTR_HTML: :class people :title Werner Koch - [[file:werner.png]] + #+HTML: + #+HTML: + #+HTML: /Core components maintainer/ @@ -33,8 +34,9 @@ David Shaw - #+ATTR_HTML: :class people :title David Shaw - [[file:david.png]] + #+HTML: + #+HTML: + #+HTML: /Master of the classic branch/ @@ -49,8 +51,9 @@ Marcus Brinkmann - #+ATTR_HTML: :class people :title Marcus Brinkmann - [[file:marcus.png]] + #+HTML: + #+HTML: + #+HTML: /Hacker emeritus/ @@ -64,8 +67,9 @@ NIIBE Yutaka - #+ATTR_HTML: :class people :title NIIBE Yutaka - [[file:gniibe.png]] + #+HTML: + #+HTML: + #+HTML: /Smartcards and Libgcrypt/ @@ -77,8 +81,9 @@ ** Jussi Kivilinna - #+ATTR_HTML: :class people :title Jussi Kivilinna - [[file:jussi.png]] + #+HTML: + #+HTML: + #+HTML: /Optimization/ diff --git a/web/share/site.css b/web/share/site.css index 8678c06..c2b816a 100644 --- a/web/share/site.css +++ b/web/share/site.css @@ -124,13 +124,6 @@ img.rfloat { margin-left: 1em; } -img.people { - float: left; - margin-right: 1em; - margin-bottom: 1em; - min-width: 120px; -} - /* The figure class is used by the blog entries. We use display to suppress the figure number inserted by org-mode. / @@ -622,6 +615,16 @@ td.right { } +/ Used by the list of people. / +.people { + float: left; + margin-top: 1em; + margin-right: 1em; + margin-bottom: 1em; + min-width: 120px; +} + + / Forms / .inputpanel { background-color: #FAEBD7; commit 25ce7c92239477fdcc83e59c7159f13548fd7105 Author: Werner Koch Date: Tue Dec 16 10:13:19 2014 +0100 web: Add fundraising message diff --git a/web/donate/index.org b/web/donate/index.org index d92e5dc..793af3b 100644 --- a/web/donate/index.org +++ b/web/donate/index.org @@ -31,14 +31,19 @@ Ways to donate - Paying using a credit card is currently our preferred choice. [[https://en.wikipedia.org/wiki/Single_Euro_Payments_Area][SEPA]] - payments will soon be acceptable but we have not yet automated this - process. If you have a Paypal account you may use that too. + Paying using a credit card is currently our preferred choice. If + you have a Paypal account you may use that too. Because the GnuPG project is not tax exempted, we are not able to - send you a respective donation receipt. However, if you represent a - company, you may want to enter into a support contract with [[https://g10code.com][g10^code]] - or ask for other service options. + send you a respective donation receipt. If you can benefit from a + donation receipt by a Germany charity you may donate to the GnuPG + account at the [[https://www.wauland.de/en/donation.html#61][Wau Holland Stiftung]]; they will use the money raised + to pay for development work on GnuPG and Enigmail. If you want to + be listed on our [[https://www.gnupg.org/donate/kudos.html][thank you]] page you should indicate this by adding a + comment of the form =List me as: NAME= to your donation. + + If you represent a company, you may also enter into a support + contract with [[https://g10code.com][g10^code]] or ask for other service options. Donation form @@ -51,15 +56,16 @@ #+BEGIN_HTML - + Keep this field clear: - + @@ -88,6 +94,7 @@ + + How much do you want to donate? - (choosing ?other? allows to donate in other currencies) How much do you want to donate? + (choosing ?other? allows + to donate in other currencies) Amount: Pay using: @@ -103,6 +110,7 @@ value="pp" />PayPal diff --git a/web/index.org b/web/index.org index d692170..0e1b493 100644 --- a/web/index.org +++ b/web/index.org @@ -2,6 +2,40 @@ #+STARTUP: showall #+SETUPFILE: "share/setup.inc" + + Securing the future of GnuPG + +Work on GnuPG is mostly financed from donations. To continue +maintaining GnuPG so to keep it strong and secure against the ever +increasing mass surveillance we need your support. Until the end of +November we received a total of 6584\thinsp\euro (~5500 net) donations +for this year. Along with the 18000\thinsp\euro net from the [[https://www.gnupg.org/blog/20140512-rewards-sent.html][Goteo +campaign]] this paid for less less than 50% of the costs for one +developer. + +#+BEGIN_HTML + + + + + + + + + + + +#+END_HTML + +For a critical project of this size two experienced developers are +required for proper operation. This requires gross revenues of 120000 +Euro per year. Unfortunately there is currently only one underpaid +full time developer who is barely able to keep up with the work. +Please help to secure the future of GnuPG and consider to [[file:donate/index.org][donate]] to +this project [[file:donate/index.org][now]]. + + * The GNU Privacy Guard #+index: GnuPG #+index: GPG @@ -21,13 +55,18 @@ GnuPG is [[http://www.gnu.org/philosophy/free-sw.html][Free Software]] (meaning be freely used, modified and distributed under the terms of the [[http://www.gnu.org/copyleft/gpl.html][GNU General Public License]] . -GnuPG comes in two flavours: [[download][{{{gnupg1_ver}}}]] is the old and very -portable standalone version, whereas [[download][{{{gnupg_ver}}}]] is the enhanced -and modern version and suggested for most users. +GnuPG comes in three flavours: + + - {{{gnupg_ver}}} is the /stable/ version suggested for most users, -Project [[http://www.gpg4win.org][Gpg4win]] provides a Windows version of GnuPG. It is nicely -integrated into an installer and features several frontends as well as -English and German manuals. + - {{{gnupg21_ver}}} is the brand-new /modern/ version with support + for [[https://en.wikipedia.org/wiki/Elliptic_curve_cryptography][ECC]] and many other new features, + + - and {{{gnupg1_ver}}} is the /classic/ portable version. + +Project [[http://www.gpg4win.org][Gpg4win]] provides a Windows version of GnuPG /stable/. It is +nicely integrated into an installer and features several frontends as +well as English and German manuals. * Reconquer your privacy @@ -40,7 +79,6 @@ used to uncover his secrets about the NSA. Please visit the [[https://emailselfdefense.fsf.org][Email Self-Defense]] site to learn how and why you should use GnuPG for your electronic communication. - * Latest news #+index: News diff --git a/web/share/site.css b/web/share/site.css index f91beef..8678c06 100644 --- a/web/share/site.css +++ b/web/share/site.css @@ -454,6 +454,10 @@ h3 { font-size: 0.8em; } +.smallnote { + font-size: 0.8em; +} + #footer { border-top: 2px solid #5c6064; margin-top: 5em; @@ -618,6 +622,11 @@ td.right { } +/* Forms / +.inputpanel { + background-color: #FAEBD7; +} + / Donation stuff. / .buttonbox { commit 2b1e6cc2d57fb5aed1e01935f23e1a3218581ae8 Author: Werner Koch Date: Mon Dec 15 20:48:41 2014 +0100 tools: Add --test option to mkkudos and include the main page. diff --git a/tools/mkkudos.sh b/tools/mkkudos.sh index ae1831e..d477d69 100755 --- a/tools/mkkudos.sh +++ b/tools/mkkudos.sh @@ -2,25 +2,20 @@ set -e -htdocs="/var/www/www/www.gnupg.org/htdocs" -#htdocs="/home/wk/s/gnupg-doc/web" - -donors="$htdocs/donate/donors.dat" -donations="$htdocs/donate/donations.dat" - - usage() { cat <&2; @@ -62,13 +70,17 @@ monyear=$(echo "$tmp" | awk -F: 'BEGIN { m[1] = "January"; m[6] = "June"; m[7] = "July"; m[8] = "August"; m[9] = "September"; m[10] = "October"; m[11] = "November"; m[12] = "December"; } {printf "%s %d", m[$2] , $1}') -euro=$(echo "$tmp" | awk -F: '{printf "%d Euro", int($8 + 0.5)}') -euroyr=$(echo "$tmp" | awk -F: '{printf "%d Euro", int($10 + 0.5)}') +euro=$(echo "$tmp" | awk -F: '{printf "%d €", int($8 + 0.5)}') +euroyr=$(echo "$tmp" | awk -F: '{printf "%d €", int($10 + 0.5)}') n=$(echo "$tmp" | awk -F: '{printf "%d", $7}') nyr=$(echo "$tmp" | awk -F: '{printf "%d", $9}') +goal="120000" +percent=$(echo "$euro:$goal" | awk -F: '{printf "%d",(int($1)100)/int($2)}') for file in "$htdocs/donate/"kudos-????.html "$htdocs/donate/"kudos.html \ - "$htdocs/donate/"index.html; do + "$htdocs/donate/"index.html \ + "$htdocs/"index.html + do if [ $force = no ]; then [ "$file" -ot "$donors" ] || continue fi @@ -82,7 +94,7 @@ for file in "$htdocs/donate/"kudos-????.html "$htdocs/donate/"kudos.html \ [ -f "$file.tmp" ] && rm "$file.tmp" awk -F: -v year=$year -v donors="$donors" \ -v monyear="$monyear" -v euro="$euro" -v euroyr="$euroyr" \ - -v n="$n" -v nyr="$nyr" \ + -v n="$n" -v nyr="$nyr" -v goal="$goal" -v percent="$percent" \ <"$file" >"$file.tmp" ' // {indon=1; print; insert("") } // {indon=0} @@ -110,6 +122,20 @@ for file in "$htdocs/donate/"kudos-????.html "$htdocs/donate/"kudos.html \ printf " %s\n", nyr; next } + // { + printf "%s\n", + euro; + next + } + // { + printf "goal: %s €\n", goal; + next + } + // { + printf "style=\"width: %d%%\"\n", + percent; + next + } !indon { print } function insert (tag) { ----------------------------------------------------------------------- Summary of changes: tools/mkkudos.sh | 48 +++++++++++++++++++++++++++++++++++----------- web/donate/index.org | 26 ++++++++++++++++--------- web/index.org | 52 +++++++++++++++++++++++++++++++++++++++++++------- web/people/index.org | 25 ++++++++++++++---------- web/share/site.css | 26 ++++++++++++++++++------- 5 files changed, 133 insertions(+), 44 deletions(-) hooks/post-receive -- The GnuPG website and other docs http://git.gnupg.org From cvs at cvs.gnupg.org Tue Dec 16 17:47:48 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Tue, 16 Dec 2014 17:47:48 +0100 Subject: [git] gnupg-doc - branch, master, updated. 47aa329b0ba798717e09a413f197ca6a0fc7e403 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GnuPG website and other docs". The branch, master has been updated via 47aa329b0ba798717e09a413f197ca6a0fc7e403 (commit) from c4e8dde54e3ba7f91c484612c4ed0d2978bcdb13 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 47aa329b0ba798717e09a413f197ca6a0fc7e403 Author: Werner Koch Date: Tue Dec 16 17:41:00 2014 +0100 web: Update for the release of 2.1.1 diff --git a/web/download/index.org b/web/download/index.org index a0ec6aa..ede8133 100644 --- a/web/download/index.org +++ b/web/download/index.org @@ -101,7 +101,7 @@ |---------+--------------------+---------------------------------------------| | | <18> | | | Windows | [[http://gpg4win.org/download.html][Gpg4win]] | Installers for /GnuPG stable/ | - | | --- | Simple installer for /GnuPG modern/ | + | | {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32-{{{gnupg21_w32_ver}}}.exe{{{ftpclose}}} {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32-{{{gnupg21_w32_ver}}}.exe.sig{{{ftpcloseS}}} | Simple installer for /GnuPG modern/ | | | {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32cli-{{{gnupg1_w32cli_ver}}}.exe{{{ftpclose}}} {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32cli-{{{gnupg1_w32cli_ver}}}.exe.sig{{{ftpcloseS}}} | Simple installer for /GnuPG classic/ | | OS X | [[http://gpgtools.org][Mac GPG]] | Installer from the gpgtools project | | Debian | [[https://www.debian.org][Debian site]] | GnuPG stable and classic are part of Debian | @@ -111,6 +111,5 @@ | RISC OS | [[http://www.sbellon.de/gnupg.html][home page]] | Sources and binaries for RISC OS | |---------+--------------------+---------------------------------------------| -# | | {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32-{{{gnupg21_w32_ver}}}.exe{{{ftpclose}}} {{{ftpopen}}}{{{ftp_base}}}/binary/gnupg-w32-{{{gnupg21_w32_ver}}}.exe.sig{{{ftpcloseS}}} | Simple installer for /GnuPG modern/ | # eof # diff --git a/web/index.org b/web/index.org index 0e1b493..7eaae07 100644 --- a/web/index.org +++ b/web/index.org @@ -89,6 +89,12 @@ all [[file:news.org][news of previous years]] is also available. # GnuPG's latest news are available as [[http://feedvalidator.org/check.cgi?url%3Dhttps://www.gnupg.org/news.en.rss][RSS 2.0 compliant]] feed. Just # point or paste the [[news.en.rss][RSS file]] into your aggregator. + GnuPG 2.1.1 released (2014-12-16) + +This is the second release of the /modern/ branch of GnuPG. It fixes +a lot of bugs and brings some new features. Read more about 2.1 at +the [[file:faq/whats-new-in-2.1.org][feature overview]] page and in the [[http://lists.gnupg.org/pipermail/gnupg-announce/2014q4/000360.html][announcement]] mail. + Libksba 1.3.2 released :important: diff --git a/web/swdb.mac b/web/swdb.mac index 41d48df..9dbf061 100644 --- a/web/swdb.mac +++ b/web/swdb.mac @@ -17,14 +17,14 @@ # # GnuPG-2.1 # -#+macro: gnupg21_ver 2.1.0 +#+macro: gnupg21_ver 2.1.1 #+macro: gnupg21_branch master -#+macro: gnupg21_size 3039k -#+macro: gnupg21_sha1 2fcd0ca6889ef6cb59e3275e8411f8b7778c2f33 +#+macro: gnupg21_size 4689k +#+macro: gnupg21_sha1 3d11fd150cf86f842d077437edb119a775c7325d # -#+macro: gnupg21_w32_ver 2.1.0_20141105 -#+macro: gnupg21_w32_size 6225k -#+macro: gnupg21_w32_sha1 9907cb6509a0e63331b27a92e25c1ef956caaf3b +#+macro: gnupg21_w32_ver 2.1.1_20141216 +#+macro: gnupg21_w32_size 6364k +#+macro: gnupg21_w32_sha1 fb541b8685b78541c9b2fadb026787f535863b4a # ----------------------------------------------------------------------- Summary of changes: web/download/index.org | 3 +-- web/index.org | 6 ++++++ web/swdb.mac | 12 ++++++------ 3 files changed, 13 insertions(+), 8 deletions(-) hooks/post-receive -- The GnuPG website and other docs http://git.gnupg.org From cvs at cvs.gnupg.org Wed Dec 17 01:56:35 2014 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Wed, 17 Dec 2014 01:56:35 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-2-gb1b1923 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via b1b1923b06acbe9d0b653445548530e949ea5b9a (commit) from 22168c83599f2411755e669d767f569dccc6cc87 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b1b1923b06acbe9d0b653445548530e949ea5b9a Author: NIIBE Yutaka Date: Wed Dec 17 09:54:19 2014 +0900 po: Update Japanese Translation. -- Investigated who is P.KATOH, and fixed the header, accordingly. diff --git a/po/ja.po b/po/ja.po index b0b3386..e603c3f 100644 --- a/po/ja.po +++ b/po/ja.po @@ -1,15 +1,16 @@ # Japanese messages for GnuPG # Copyright (C) 1999, 2000, 2002, 2003, 2004, 2013 Free Software Foundation, Inc. +# This file is distributed under the same license as the GnuPG package. # IIDA Yosiaki , 1999, 2000, 2002, 2003, 2004. # Yoshihiro Kajiki , 1999. -# This file is distributed under the same license as the GnuPG package. -# Special thanks to "Takashi P.KATOH". +# Takashi P.KATOH, 2002. +# NIIBE Yutaka , 2013, 2014. # msgid "" msgstr "" -"Project-Id-Version: gnupg 2.1\n" +"Project-Id-Version: gnupg 2.1.1\n" "Report-Msgid-Bugs-To: translations at gnupg.org\n" -"PO-Revision-Date: 2014-11-18 13:01+0900\n" +"PO-Revision-Date: 2014-12-17 09:43+0900\n" "Last-Translator: NIIBE Yutaka \n" "Language-Team: none\n" "Language: ja\n" @@ -762,10 +763,8 @@ msgstr "agent???????%d?????\n" msgid "connection to agent established\n" msgstr "??????????????????\n" -#, fuzzy -#| msgid "connection to agent established\n" msgid "connection to agent is in restricted mode\n" -msgstr "??????????????????\n" +msgstr "???????????????????\n" #, c-format msgid "no running Dirmngr - starting '%s'\n" @@ -1314,23 +1313,17 @@ msgstr "?????????????????:\n" msgid "KEYTOCARD failed: %s\n" msgstr "KEYTOCARD???????: %s\n" -#, fuzzy -#| msgid "This command is not allowed while in %s mode.\n" msgid "This command is not supported by this card\n" -msgstr "%s????????????????\n" +msgstr "???????????????????????????\n" -#, fuzzy -#| msgid "Note: keys are already stored on the card!\n" msgid "Note: This command destroys all keys stored on the card!\n" -msgstr "??: ??????????????????!\n" +msgstr "??: ????????????????????????????!\n" -#, fuzzy -#| msgid "Continue? (Y/n) " msgid "Continue? (y/N) " -msgstr "?????? (Y/n) " +msgstr "?????? (y/N) " msgid "Really do a factory reset? (enter \"yes\") " -msgstr "" +msgstr "??????????????? (???? \"yes\" ???) " msgid "quit this menu" msgstr "?????????" @@ -1381,7 +1374,7 @@ msgid "unblock the PIN using a Reset Code" msgstr "PIN?Reset Code??????" msgid "destroy all keys and data" -msgstr "" +msgstr "???????????????" msgid "gpg/card> " msgstr "gpg/card> " @@ -2270,10 +2263,8 @@ msgstr "%lu?????\n" msgid "Total number processed: %lu\n" msgstr " ??????: %lu\n" -#, fuzzy, c-format -#| msgid " skipped new keys: %lu\n" msgid " skipped PGP-2 keys: %lu\n" -msgstr "??????????: %lu\n" +msgstr "??????PGP-2?: %lu\n" #, c-format msgid " skipped new keys: %lu\n" @@ -5375,10 +5366,8 @@ msgstr "RSA?? %s ??????????%d????????? msgid "failed to store the key: %s\n" msgstr "???????????: %s\n" -#, fuzzy -#| msgid "unsupported inquiry '%s'\n" msgid "unsupported curve\n" -msgstr "???????????????: '%s'\n" +msgstr "????????????\n" msgid "please wait while key is being generated ...\n" msgstr "????????????? ...\n" @@ -5481,10 +5470,8 @@ msgstr "fd %d????????????\n" msgid "invalid radix64 character %02x skipped\n" msgstr "???64???%02X?????????\n" -#, fuzzy -#| msgid "no gpg-agent running in this session\n" msgid "no dirmngr running in this session\n" -msgstr "????????gpg-agent??????????\n" +msgstr "????????dirmngr??????????\n" #, c-format msgid "validation model requested by certificate: %s" ----------------------------------------------------------------------- Summary of changes: po/ja.po | 41 ++++++++++++++--------------------------- 1 file changed, 14 insertions(+), 27 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Wed Dec 17 10:38:40 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Wed, 17 Dec 2014 10:38:40 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-3-g5cb6df8 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 5cb6df8996623c00eaa2a39e3037101585442f7e (commit) from b1b1923b06acbe9d0b653445548530e949ea5b9a (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 5cb6df8996623c00eaa2a39e3037101585442f7e Author: Werner Koch Date: Wed Dec 17 10:36:24 2014 +0100 gpgconf: Exit with failure if --launch fails. * tools/gpgconf-comp.c (gc_component_launch): Return an error code. * tools/gpgconf.c (main): Exit if launch failed. -- GnuPG-bug-id: 1791 diff --git a/tools/gpgconf-comp.c b/tools/gpgconf-comp.c index 77139bb..8c47b2e 100644 --- a/tools/gpgconf-comp.c +++ b/tools/gpgconf-comp.c @@ -1142,7 +1142,7 @@ dirmngr_runtime_change (int killflag) /* Launch the gpg-agent or the dirmngr if not already running. */ -void +gpg_error_t gc_component_launch (int component) { gpg_error_t err; @@ -1176,6 +1176,7 @@ gc_component_launch (int component) " NOP", gpg_strerror (err)); gnupg_release_process (pid); + return err; } diff --git a/tools/gpgconf.c b/tools/gpgconf.c index 31804f5..423a66c 100644 --- a/tools/gpgconf.c +++ b/tools/gpgconf.c @@ -281,9 +281,17 @@ main (int argc, char **argv) exit (1); } else if (cmd == aLaunch) - gc_component_launch (idx); + { + if (gc_component_launch (idx)) + exit (1); + } else - gc_component_kill (idx); + { + /* We don't error out if the kill failed because this + command should do nothing if the component is not + running. / + gc_component_kill (idx); + } } break; diff --git a/tools/gpgconf.h b/tools/gpgconf.h index 0286c27..d63833d 100644 --- a/tools/gpgconf.h +++ b/tools/gpgconf.h @@ -45,7 +45,7 @@ char gc_percent_escape (const char src); void gc_error (int status, int errnum, const char fmt, ...); /* Launch given component. / -void gc_component_launch (int component); +gpg_error_t gc_component_launch (int component); / Kill given component. / void gc_component_kill (int component); ----------------------------------------------------------------------- Summary of changes: tools/gpgconf-comp.c | 3 ++- tools/gpgconf.c | 12 ++++++++++-- tools/gpgconf.h | 2 +- 3 files changed, 13 insertions(+), 4 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Dec 19 13:08:19 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Fri, 19 Dec 2014 13:08:19 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-6-g14601ea Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 14601eacb51f6c8a60d3d57aee1be11debd94c68 (commit) via aad8963f7b9d13b319abd413db8f42ec467db913 (commit) via abec64f3cb04e49ca48cc476a5830a920e2ebf8f (commit) from 5cb6df8996623c00eaa2a39e3037101585442f7e (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 14601eacb51f6c8a60d3d57aee1be11debd94c68 Author: Werner Koch Date: Fri Dec 19 13:07:09 2014 +0100 agent: Keep the session environment for restricted connections. agent/command-ssh.c (setup_ssh_env): Move code to ... * agent/gpg-agent.c (agent_copy_startup_env): .. new function. Change calllers. * agent/command.c (start_command_handler): Call that fucntion for restricted connections. -- A remote connection is and should not be able to setup the local session environment. However, unless --keep-display is used we would be left without an environment and thus pinentry can't be used. The fix is the same as used for ssh-agent connection: We use the default environment as used at the startup of the agent. Signed-off-by: Werner Koch diff --git a/agent/agent.h b/agent/agent.h index a1663cd..c7c65af 100644 --- a/agent/agent.h +++ b/agent/agent.h @@ -278,6 +278,7 @@ typedef int (lookup_ttl_t)(const char hexgrip); /-- gpg-agent.c --/ void agent_exit (int rc) JNLIB_GCC_A_NR; /* Also implemented in other tools / +gpg_error_t agent_copy_startup_env (ctrl_t ctrl); const char get_agent_socket_name (void); const char get_agent_ssh_socket_name (void); #ifdef HAVE_W32_SYSTEM diff --git a/agent/command-ssh.c b/agent/command-ssh.c index 2d00512..51d2c54 100644 --- a/agent/command-ssh.c +++ b/agent/command-ssh.c @@ -3578,38 +3578,6 @@ ssh_request_process (ctrl_t ctrl, estream_t stream_sock) } -/ Because the ssh protocol does not send us information about the - current TTY setting, we use this function to use those from startup - or those explictly set. / -static gpg_error_t -setup_ssh_env (ctrl_t ctrl) -{ - static const char names[] = - {"GPG_TTY", "DISPLAY", "TERM", "XAUTHORITY", "PINENTRY_USER_DATA", NULL}; - gpg_error_t err = 0; - int idx; - const char value; - - for (idx=0; !err && names[idx]; idx++) - if ((value = session_env_getenv (opt.startup_env, names[idx]))) - err = session_env_setenv (ctrl->session_env, names[idx], value); - - if (!err && !ctrl->lc_ctype && opt.startup_lc_ctype) - if (!(ctrl->lc_ctype = xtrystrdup (opt.startup_lc_ctype))) - err = gpg_error_from_syserror (); - - if (!err && !ctrl->lc_messages && opt.startup_lc_messages) - if (!(ctrl->lc_messages = xtrystrdup (opt.startup_lc_messages))) - err = gpg_error_from_syserror (); - - if (err) - log_error ("error setting default session environment: %s\n", - gpg_strerror (err)); - - return err; -} - - / Start serving client on SOCK_CLIENT. / void start_command_handler_ssh (ctrl_t ctrl, gnupg_fd_t sock_client) @@ -3618,7 +3586,7 @@ start_command_handler_ssh (ctrl_t ctrl, gnupg_fd_t sock_client) gpg_error_t err; int ret; - err = setup_ssh_env (ctrl); + err = agent_copy_startup_env (ctrl); if (err) goto out; @@ -3681,7 +3649,7 @@ serve_mmapped_ssh_request (ctrl_t ctrl, u32 msglen; estream_t request_stream, response_stream; - if (setup_ssh_env (ctrl)) + if (agent_copy_startup_env (ctrl)) goto leave; / Error setting up the environment. / if (maxreqlen < 5) diff --git a/agent/command.c b/agent/command.c index eba766b..da7e508 100644 --- a/agent/command.c +++ b/agent/command.c @@ -3113,6 +3113,12 @@ start_command_handler (ctrl_t ctrl, gnupg_fd_t listen_fd, gnupg_fd_t fd) int rc; assuan_context_t ctx = NULL; + if (ctrl->restricted) + { + if (agent_copy_startup_env (ctrl)) + return; + } + rc = assuan_new (&ctx); if (rc) { diff --git a/agent/gpg-agent.c b/agent/gpg-agent.c index de40e3b..b053fc5 100644 --- a/agent/gpg-agent.c +++ b/agent/gpg-agent.c @@ -1386,6 +1386,39 @@ agent_deinit_default_ctrl (ctrl_t ctrl) } +/ Because the ssh protocol does not send us information about the + current TTY setting, we use this function to use those from startup + or those explictly set. This is also used for the restricted mode + where we ignore requests to change the environment. / +gpg_error_t +agent_copy_startup_env (ctrl_t ctrl) +{ + static const char names[] = + {"GPG_TTY", "DISPLAY", "TERM", "XAUTHORITY", "PINENTRY_USER_DATA", NULL}; + gpg_error_t err = 0; + int idx; + const char value; + + for (idx=0; !err && names[idx]; idx++) + if ((value = session_env_getenv (opt.startup_env, names[idx]))) + err = session_env_setenv (ctrl->session_env, names[idx], value); + + if (!err && !ctrl->lc_ctype && opt.startup_lc_ctype) + if (!(ctrl->lc_ctype = xtrystrdup (opt.startup_lc_ctype))) + err = gpg_error_from_syserror (); + + if (!err && !ctrl->lc_messages && opt.startup_lc_messages) + if (!(ctrl->lc_messages = xtrystrdup (opt.startup_lc_messages))) + err = gpg_error_from_syserror (); + + if (err) + log_error ("error setting default session environment: %s\n", + gpg_strerror (err)); + + return err; +} + + / Reread parts of the configuration. Note, that this function is obviously not thread-safe and should only be called from the PTH signal handler. diff --git a/common/session-env.c b/common/session-env.c index 478d5e3..8f78c10 100644 --- a/common/session-env.c +++ b/common/session-env.c @@ -56,7 +56,7 @@ struct session_environment_s }; -/* A list of environment vribales we pass from the acual user +/* A list of environment vribales we pass from the actual user (e.g. gpgme) down to the pinentry. We do not handle the locale settings because they do not only depend on envvars. / static struct commit aad8963f7b9d13b319abd413db8f42ec467db913 Author: Werner Koch Date: Fri Dec 19 12:03:38 2014 +0100 agent: Fix string prepended to remotely initiated prompts. agent/command.c (cmd_setkeydesc): Use %0A and not \n. Make translatable. Signed-off-by: Werner Koch diff --git a/agent/command.c b/agent/command.c index c875f55..eba766b 100644 --- a/agent/command.c +++ b/agent/command.c @@ -731,7 +731,7 @@ cmd_setkeydesc (assuan_context_t ctx, char line) if (ctrl->restricted) ctrl->server_local->keydesc = strconcat - ("Note: Request from a remote site.\n\n", desc, NULL); + (_("Note: Request from a remote site."), "%0A%0A", desc, NULL); else ctrl->server_local->keydesc = xtrystrdup (desc); if (!ctrl->server_local->keydesc) commit abec64f3cb04e49ca48cc476a5830a920e2ebf8f Author: Werner Koch Date: Thu Dec 18 09:38:41 2014 +0100 build: Remove option to build without agent. configure.ac (build-agent): Set to yes. diff --git a/configure.ac b/configure.ac index 09e683d..16843f4 100644 --- a/configure.ac +++ b/configure.ac @@ -110,7 +110,8 @@ large_secmem=no GNUPG_BUILD_PROGRAM(gpg, yes) GNUPG_BUILD_PROGRAM(gpgsm, yes) -GNUPG_BUILD_PROGRAM(agent, yes) +# The agent is a required part and can't be disabled anymore. +build_agent=yes GNUPG_BUILD_PROGRAM(scdaemon, yes) GNUPG_BUILD_PROGRAM(g13, yes) GNUPG_BUILD_PROGRAM(dirmngr, yes) ----------------------------------------------------------------------- Summary of changes: agent/agent.h | 1 + agent/command-ssh.c | 36 ++---------------------------------- agent/command.c | 8 +++++++- agent/gpg-agent.c | 33 +++++++++++++++++++++++++++++++++ common/session-env.c | 2 +- configure.ac | 3 ++- 6 files changed, 46 insertions(+), 37 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Fri Dec 19 13:27:44 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Fri, 19 Dec 2014 13:27:44 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-7-g7614014 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 76140141699b545f7a988bf5fc101063917e8ce3 (commit) from 14601eacb51f6c8a60d3d57aee1be11debd94c68 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 76140141699b545f7a988bf5fc101063917e8ce3 Author: Werner Koch Date: Fri Dec 19 13:28:14 2014 +0100 agent: Make sure --max-cache-ttl is >= --default-cache-ttl. * agent/gpg-agent.c (finalize_rereadable_options): New. (main, reread_configuration): Call it. -- This change should help to avoid surprising behaviour. Signed-off-by: Werner Koch diff --git a/NEWS b/NEWS index 4bf2a44..f4a6918 100644 --- a/NEWS +++ b/NEWS @@ -1,6 +1,10 @@ Noteworthy changes in version 2.1.2 (unreleased) ------------------------------------------------ + * agent: When setting --default-cache-ttl the value for + --max-cache-ttl is adjusted to be not lower than the former. + + Noteworthy changes in version 2.1.1 (2014-12-16) ------------------------------------------------ diff --git a/agent/gpg-agent.c b/agent/gpg-agent.c index b053fc5..918c72b 100644 --- a/agent/gpg-agent.c +++ b/agent/gpg-agent.c @@ -628,6 +628,20 @@ parse_rereadable_options (ARGPARSE_ARGS pargs, int reread) } +/ Fixup some options after all have been processed. / +static void +finalize_rereadable_options (void) +{ + / It would be too surprising if the max-cache-ttl is lower than the + default-cache-ttl - thus we silently correct that. / + if (opt.def_cache_ttl > opt.max_cache_ttl) + opt.max_cache_ttl = opt.def_cache_ttl; + if (opt.def_cache_ttl_ssh > opt.max_cache_ttl_ssh) + opt.max_cache_ttl_ssh = opt.def_cache_ttl_ssh; +} + + + / The main entry point. / int main (int argc, char argv ) @@ -916,6 +930,8 @@ main (int argc, char argv ) if (log_get_errorcount(0)) exit(2); + finalize_rereadable_options (); + / Turn the homedir into an absolute one. / opt.homedir = make_absfilename (opt.homedir, NULL); @@ -1461,6 +1477,7 @@ reread_configuration (void) parse_rereadable_options (&pargs, 1); } fclose (fp); + finalize_rereadable_options (); set_debug (); } ----------------------------------------------------------------------- Summary of changes: NEWS | 4 ++++ agent/gpg-agent.c | 17 +++++++++++++++++ 2 files changed, 21 insertions(+) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 01:29:45 2014 From: cvs at cvs.gnupg.org (by NIIBE Yutaka) Date: Mon, 22 Dec 2014 01:29:45 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-8-gbdc8efb Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via bdc8efbdd124d836c36cf482216e375421f72891 (commit) from 76140141699b545f7a988bf5fc101063917e8ce3 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit bdc8efbdd124d836c36cf482216e375421f72891 Author: NIIBE Yutaka Date: Mon Dec 22 09:27:00 2014 +0900 scd: ECDH Support. agent/divert-scd.c (divert_pkdecrypt): Support ECDH. * scd/app-openpgp.c (get_algo_byte, store_fpr): Support ECDH. (send_key_attr): Support ECDH. Fix EdDSA algorithm value. (retrieve_key_material): Initialize fields. (get_public_key, ecc_writekey, do_writekey): Support ECDH. (ecdh_writekey): Remove. (do_decipher): Support ECDH. (parse_algorithm_attribute): Support ECDH. Fix EdDSA. -- Following the gpg-agent protocol, SCDaemon's counter part is now implemented. diff --git a/agent/divert-scd.c b/agent/divert-scd.c index ceef588..1408d65 100644 --- a/agent/divert-scd.c +++ b/agent/divert-scd.c @@ -417,17 +417,45 @@ divert_pkdecrypt (ctrl_t ctrl, n = snext (&s); if (!n) return gpg_error (GPG_ERR_INV_SEXP); - if (!smatch (&s, n, "rsa")) + if (smatch (&s, n, "rsa")) + { + if (s != '(') + return gpg_error (GPG_ERR_UNKNOWN_SEXP); + s++; + n = snext (&s); + if (!n) + return gpg_error (GPG_ERR_INV_SEXP); + if (!smatch (&s, n, "a")) + return gpg_error (GPG_ERR_UNKNOWN_SEXP); + n = snext (&s); + } + else if (smatch (&s, n, "ecdh")) + { + if (s != '(') + return gpg_error (GPG_ERR_UNKNOWN_SEXP); + s++; + n = snext (&s); + if (!n) + return gpg_error (GPG_ERR_INV_SEXP); + if (smatch (&s, n, "s")) + { + n = snext (&s); + s += n; + if (s++ != ')') + return gpg_error (GPG_ERR_INV_SEXP); + if (s++ != '(') + return gpg_error (GPG_ERR_UNKNOWN_SEXP); + n = snext (&s); + if (!n) + return gpg_error (GPG_ERR_INV_SEXP); + } + if (!smatch (&s, n, "e")) + return gpg_error (GPG_ERR_UNKNOWN_SEXP); + n = snext (&s); + } + else return gpg_error (GPG_ERR_UNSUPPORTED_ALGORITHM); - if (s != '(') - return gpg_error (GPG_ERR_UNKNOWN_SEXP); - s++; - n = snext (&s); - if (!n) - return gpg_error (GPG_ERR_INV_SEXP); - if (!smatch (&s, n, "a")) - return gpg_error (GPG_ERR_UNKNOWN_SEXP); - n = snext (&s); + if (!n) return gpg_error (GPG_ERR_UNKNOWN_SEXP); ciphertext = s; diff --git a/scd/app-openpgp.c b/scd/app-openpgp.c index daf0310..475d844 100644 --- a/scd/app-openpgp.c +++ b/scd/app-openpgp.c @@ -120,8 +120,7 @@ static struct { / Type of keys. / typedef enum { - KEY_TYPE_ECDH, - KEY_TYPE_ECDSA, + KEY_TYPE_ECC, KEY_TYPE_EDDSA, KEY_TYPE_RSA, } @@ -236,15 +235,10 @@ struct app_local_s { } rsa; struct { int curve; - } ecdsa; + } ecc; struct { int curve; } eddsa; - struct { - int curve; - int hashalgo; - int cipheralgo; - } ecdh; }; } keyattr[3]; }; @@ -745,11 +739,11 @@ parse_login_data (app_t app) static unsigned char -get_algo_byte (key_type_t key_type) +get_algo_byte (int keynumber, key_type_t key_type) { - if (key_type == KEY_TYPE_ECDSA) + if (key_type == KEY_TYPE_ECC && keynumber != 1) return 19; - else if (key_type == KEY_TYPE_ECDH) + else if (key_type == KEY_TYPE_ECC && keynumber == 1) return 18; else if (key_type == KEY_TYPE_EDDSA) return 22; @@ -777,13 +771,10 @@ store_fpr (app_t app, int keynumber, u32 timestamp, int i; n = 6; / key packet version, 4-byte timestamps, and algorithm / - if (key_type == KEY_TYPE_RSA || key_type == KEY_TYPE_ECDSA - || key_type == KEY_TYPE_EDDSA) - argc = 2; - else if (key_type == KEY_TYPE_ECDH) + if (keynumber == 1 && key_type == KEY_TYPE_ECC) argc = 3; else - return gpg_error (GPG_ERR_NOT_IMPLEMENTED); + argc = 2; va_start (ap, key_type); for (i = 0; i < argc; i++) @@ -812,7 +803,7 @@ store_fpr (app_t app, int keynumber, u32 timestamp, p++ = timestamp >> 16; p++ = timestamp >> 8; p++ = timestamp; - p++ = get_algo_byte (key_type); + p++ = get_algo_byte (keynumber, key_type); for (i = 0; i < argc; i++) { @@ -977,27 +968,18 @@ send_key_attr (ctrl_t ctrl, app_t app, const char keyword, int number) app->app_local->keyattr[number].rsa.n_bits, app->app_local->keyattr[number].rsa.e_bits, app->app_local->keyattr[number].rsa.format); - else if (app->app_local->keyattr[number].key_type == KEY_TYPE_ECDSA) + else if (app->app_local->keyattr[number].key_type == KEY_TYPE_ECC) { - get_ecc_key_parameters (app->app_local->keyattr[number].ecdsa.curve, + get_ecc_key_parameters (app->app_local->keyattr[number].ecc.curve, &n_bits, &curve_oid); - snprintf (buffer, sizeof buffer, "%d 19 %u %s", - number+1, n_bits, curve_oid); - } - else if (app->app_local->keyattr[number].key_type == KEY_TYPE_ECDH) - { - get_ecc_key_parameters (app->app_local->keyattr[number].ecdh.curve, - &n_bits, &curve_oid); - snprintf (buffer, sizeof buffer, "%d 18 %u %s %d %d", - number+1, n_bits, curve_oid, - app->app_local->keyattr[number].ecdh.hashalgo, - app->app_local->keyattr[number].ecdh.cipheralgo); + snprintf (buffer, sizeof buffer, "%d %d %u %s", + number+1, number==1? 18: 19, n_bits, curve_oid); } else if (app->app_local->keyattr[number].key_type == KEY_TYPE_EDDSA) { get_ecc_key_parameters (app->app_local->keyattr[number].eddsa.curve, &n_bits, &curve_oid); - snprintf (buffer, sizeof buffer, "%d 105 %u %s", + snprintf (buffer, sizeof buffer, "%d 22 %u %s", number+1, n_bits, curve_oid); } else @@ -1215,7 +1197,7 @@ retrieve_key_material (FILE fp, const char hexkeyid, for (;;) { char p; - char fields[6]; + char fields[6] = { NULL, NULL, NULL, NULL, NULL, NULL }; int nfields; size_t max_length; gcry_mpi_t mpi; @@ -1530,10 +1512,10 @@ get_public_key (app_t app, int keyno) gcry_sexp_sprint (s_pkey, GCRYSEXP_FMT_CANON, keybuf, len); gcry_sexp_release (s_pkey); } - else if (app->app_local->keyattr[keyno].key_type == KEY_TYPE_ECDSA) + else if (app->app_local->keyattr[keyno].key_type == KEY_TYPE_ECC) { const char curve_name - = get_curve_name (app->app_local->keyattr[keyno].ecdsa.curve); + = get_curve_name (app->app_local->keyattr[keyno].ecc.curve); err = gcry_sexp_build (&s_pkey, NULL, "(public-key(ecc(curve%s)(q%b)))", @@ -3227,23 +3209,6 @@ rsa_writekey (app_t app, gpg_error_t (pincb)(void, const char , char **), static gpg_error_t -ecdh_writekey (app_t app, gpg_error_t (pincb)(void, const char *, char **), - void pincb_arg, int keyno, - const unsigned char buf, size_t buflen, int depth) -{ - (void)app; - (void)pincb; - (void)pincb_arg; - (void)keyno; - (void)buf; - (void)buflen; - (void)depth; - - return GPG_ERR_NOT_IMPLEMENTED; -} - - -static gpg_error_t ecc_writekey (app_t app, gpg_error_t (pincb)(void, const char *, char **), void pincb_arg, int keyno, const unsigned char buf, size_t buflen, int depth) @@ -3419,15 +3384,15 @@ ecc_writekey (app_t app, gpg_error_t (pincb)(void, const char *, char **), } err = store_fpr (app, keyno, created_at, fprbuf, app->card_version, - curve == CURVE_ED25519 ? KEY_TYPE_EDDSA : KEY_TYPE_ECDSA, + curve == CURVE_ED25519 ? KEY_TYPE_EDDSA : KEY_TYPE_ECC, curve == CURVE_ED25519 ? "\x09\x2b\x06\x01\x04\x01\xda\x47\x0f\x01" : curve == CURVE_NIST_P256 ? "\x08\x2a\x86\x48\xce\x3d\x03\x01\x07" - : "\05\x2b\x81\x04\x00\x0a", + : "\x05\x2b\x81\x04\x00\x0a", curve == CURVE_ED25519 ? 10 : curve == CURVE_NIST_P256? 9 : 6, - ecc_q, ecc_q_len); + ecc_q, ecc_q_len, "\x03\x01\x08\x07", 4); if (err) goto leave; @@ -3501,14 +3466,11 @@ do_writekey (app_t app, ctrl_t ctrl, goto leave; if (tok && toklen == 3 && memcmp ("rsa", tok, toklen) == 0) err = rsa_writekey (app, pincb, pincb_arg, keyno, buf, buflen, depth); - else if ((tok && toklen == 3 && memcmp ("ecc", tok, toklen) == 0 - && (keyno == 0 || keyno == 2)) - || (tok && toklen == 5 && memcmp ("ecdsa", tok, toklen) == 0)) + else if (tok + && ((toklen == 3 && memcmp ("ecc", tok, toklen) == 0) + || (toklen == 4 && memcmp ("ecdh", tok, toklen) == 0) + || (toklen == 5 && memcmp ("ecdsa", tok, toklen) == 0))) err = ecc_writekey (app, pincb, pincb_arg, keyno, buf, buflen, depth); - else if ((tok && toklen == 3 && memcmp ("ecc", tok, toklen) == 0 - && keyno == 1) - || (tok && toklen == 4 && memcmp ("ecdh", tok, toklen) == 0)) - err = ecdh_writekey (app, pincb, pincb_arg, keyno, buf, buflen, depth); else { err = gpg_error (GPG_ERR_WRONG_PUBKEY_ALGO); @@ -3995,7 +3957,7 @@ do_auth (app_t app, const char keyidstr, && indatalen > 101) / For a 2048 bit key. / return gpg_error (GPG_ERR_INV_VALUE); - if (app->app_local->keyattr[2].key_type == KEY_TYPE_ECDSA + if (app->app_local->keyattr[2].key_type == KEY_TYPE_ECC && (indatalen == 51 || indatalen == 67 || indatalen == 83)) { const char p = (const char )indata + 19; @@ -4083,6 +4045,8 @@ do_decipher (app_t app, const char keyidstr, int n; const char fpr = NULL; int exmode, le_value; + unsigned char fixbuf = NULL; + int padind = 0; if (!keyidstr || !keyidstr || !indatalen) return gpg_error (GPG_ERR_INV_VALUE); @@ -4124,11 +4088,12 @@ do_decipher (app_t app, const char keyidstr, return rc; rc = verify_chv2 (app, pincb, pincb_arg); - if (!rc) + if (rc) + return rc; + + if (app->app_local->keyattr[1].key_type == KEY_TYPE_RSA) { int fixuplen; - unsigned char fixbuf = NULL; - int padind = 0; / We might encounter a couple of leading zeroes in the cryptogram. Due to internal use of MPIs these leading zeroes @@ -4180,33 +4145,37 @@ do_decipher (app_t app, const char keyidstr, / We use the extra leading zero as the padding byte. / padind = -1; } + } + else if (app->app_local->keyattr[1].key_type == KEY_TYPE_ECC) + padind = -1; + else + return gpg_error (GPG_ERR_INV_VALUE); - if (app->app_local->cardcap.ext_lc_le && indatalen > 254 ) - { - exmode = 1; / Extended length w/o a limit. / - le_value = app->app_local->extcap.max_rsp_data; - } - else if (app->app_local->cardcap.cmd_chaining && indatalen > 254) - { - exmode = -254; / Command chaining with max. 254 bytes. / - le_value = 0; - } - else - exmode = le_value = 0; + if (app->app_local->cardcap.ext_lc_le && indatalen > 254 ) + { + exmode = 1; / Extended length w/o a limit. / + le_value = app->app_local->extcap.max_rsp_data; + } + else if (app->app_local->cardcap.cmd_chaining && indatalen > 254) + { + exmode = -254; / Command chaining with max. 254 bytes. / + le_value = 0; + } + else + exmode = le_value = 0; - rc = iso7816_decipher (app->slot, exmode, - indata, indatalen, le_value, padind, - outdata, outdatalen); - xfree (fixbuf); + rc = iso7816_decipher (app->slot, exmode, + indata, indatalen, le_value, padind, + outdata, outdatalen); + xfree (fixbuf); - if (gpg_err_code (rc) == GPG_ERR_CARD / actual SW is 0x640a / - && app->app_local->manufacturer == 5 - && app->card_version == 0x0200) - log_info ("NOTE: Cards with manufacturer id 5 and s/n <= 346 (0x15a)" - " do not work with encryption keys > 2048 bits\n"); + if (gpg_err_code (rc) == GPG_ERR_CARD / actual SW is 0x640a / + && app->app_local->manufacturer == 5 + && app->card_version == 0x0200) + log_info ("NOTE: Cards with manufacturer id 5 and s/n <= 346 (0x15a)" + " do not work with encryption keys > 2048 bits\n"); - r_info |= APP_DECIPHER_INFO_NOPAD; - } + r_info |= APP_DECIPHER_INFO_NOPAD; return rc; } @@ -4455,25 +4424,25 @@ parse_algorithm_attribute (app_t app, int keyno) app->app_local->keyattr[keyno].rsa.format == RSA_CRT? "crt" : app->app_local->keyattr[keyno].rsa.format == RSA_CRT_N?"crt+n":"?"); } - else if (buffer == 19) /* ECDSA / + else if (buffer == 18 || buffer == 19) / ECDH or ECDSA / { - app->app_local->keyattr[keyno].key_type = KEY_TYPE_ECDSA; - app->app_local->keyattr[keyno].ecdsa.curve + app->app_local->keyattr[keyno].key_type = KEY_TYPE_ECC; + app->app_local->keyattr[keyno].ecc.curve = parse_ecc_curve (buffer + 1, buflen - 1); + if (opt.verbose) + log_printf + ("ECC, curve=%s\n", + get_curve_name (app->app_local->keyattr[keyno].ecc.curve)); } - else if (buffer == 18 && buflen == 11) /* ECDH / - { - app->app_local->keyattr[keyno].key_type = KEY_TYPE_ECDH; - app->app_local->keyattr[keyno].ecdh.hashalgo = buffer[1]; - app->app_local->keyattr[keyno].ecdh.cipheralgo = buffer[2]; - app->app_local->keyattr[keyno].ecdh.curve - = parse_ecc_curve (buffer + 3, buflen - 3); - } - else if (buffer == 105) /* EdDSA (experimental) / + else if (buffer == 22) /* EdDSA / { app->app_local->keyattr[keyno].key_type = KEY_TYPE_EDDSA; app->app_local->keyattr[keyno].eddsa.curve = parse_ecc_curve (buffer + 1, buflen - 1); + if (opt.verbose) + log_printf + ("EdDSA, curve=%s\n", + get_curve_name (app->app_local->keyattr[keyno].eddsa.curve)); } else if (opt.verbose) log_printhex ("", buffer, buflen); ----------------------------------------------------------------------- Summary of changes: agent/divert-scd.c | 48 +++++++++++---- scd/app-openpgp.c | 169 +++++++++++++++++++++------------------------------- 2 files changed, 107 insertions(+), 110 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 12:38:21 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 22 Dec 2014 12:38:21 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-11-g5a556e4 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 5a556e4e88bcbc926c0922070acaf5f7b25d18fb (commit) via 0d5cb55402c44fb5f731ecf85705f845f3091aa7 (commit) via abd5f6752d693b7f313c19604f0723ecec4d39a6 (commit) from bdc8efbdd124d836c36cf482216e375421f72891 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 5a556e4e88bcbc926c0922070acaf5f7b25d18fb Author: Werner Koch Date: Mon Dec 22 12:34:57 2014 +0100 dirmngr: Fix memory leak. dirmngr/server.c (cmd_ks_search, cmd_ks_get): Fix memory leak. * dirmngr/ks-engine-hkp.c (ks_hkp_mark_host): Remove double check. -- Reported-by: Joshua Rogers Signed-off-by: Werner Koch diff --git a/dirmngr/ks-engine-hkp.c b/dirmngr/ks-engine-hkp.c index bd98eed..3c6a003 100644 --- a/dirmngr/ks-engine-hkp.c +++ b/dirmngr/ks-engine-hkp.c @@ -674,7 +674,7 @@ ks_hkp_mark_host (ctrl_t ctrl, const char name, int alive) member in another pool. / for (idx3=0; idx3 < hosttable_size; idx3++) { - if (hosttable[idx3] && hosttable[idx3] + if (hosttable[idx3] && hosttable[idx3]->pool && idx3 != idx && host_in_pool_p (hosttable[idx3]->pool, n)) diff --git a/dirmngr/server.c b/dirmngr/server.c index 9b4cdb2..6094bc9 100644 --- a/dirmngr/server.c +++ b/dirmngr/server.c @@ -1586,7 +1586,6 @@ cmd_ks_search (assuan_context_t ctx, char line) if (!sl) { err = gpg_error_from_syserror (); - free_strlist (list); goto leave; } sl->flags = 0; @@ -1607,6 +1606,7 @@ cmd_ks_search (assuan_context_t ctx, char line) } leave: + free_strlist (list); return leave_cmd (ctx, err); } @@ -1647,7 +1647,6 @@ cmd_ks_get (assuan_context_t ctx, char line) if (!sl) { err = gpg_error_from_syserror (); - free_strlist (list); goto leave; } sl->flags = 0; @@ -1668,6 +1667,7 @@ cmd_ks_get (assuan_context_t ctx, char line) } leave: + free_strlist (list); return leave_cmd (ctx, err); } commit 0d5cb55402c44fb5f731ecf85705f845f3091aa7 Author: Werner Koch Date: Mon Dec 22 12:29:32 2014 +0100 dirmngr: Remove un-needed check. * dirmngr/crlfetch.c (crl_fetch): Check that URL is not NULL. -- Reported-by: Joshua Rogers "Remove un-needed check. If 'url' were not to be true, http_parse_uri(parse_uri(do_parse_uri))) would fail, leaving 'err' false." In addition I added an explicit check for the URL arg not beeing NULL. Signed-off-by: Werner Koch diff --git a/dirmngr/crlfetch.c b/dirmngr/crlfetch.c index 2471ca2..2c4a247 100644 --- a/dirmngr/crlfetch.c +++ b/dirmngr/crlfetch.c @@ -163,10 +163,13 @@ crl_fetch (ctrl_t ctrl, const char url, ksba_reader_t reader) reader = NULL; + if (!url) + return gpg_error (GPG_ERR_INV_ARG); + once_more: err = http_parse_uri (&uri, url, 0); http_release_parsed_uri (uri); - if (err && url && !strncmp (url, "https:", 6)) + if (err && !strncmp (url, "https:", 6)) { / Our HTTP code does not support TLS, thus we can't use this scheme and it is frankly not useful for CRL retrieval anyway. commit abd5f6752d693b7f313c19604f0723ecec4d39a6 Author: Werner Koch Date: Mon Dec 22 12:16:46 2014 +0100 dirmngr,gpgsm: Return NULL on fail * dirmngr/ldapserver.c (ldapserver_parse_one): Set SERVER to NULL. * sm/gpgsm.c (parse_keyserver_line): Ditto. -- Reported-by: Joshua Rogers "If something inside the ldapserver_parse_one function failed, 'server' would be freed, then returned, leading to a use-after-free. This code is likely copied from sm/gpgsm.c, which was also susceptible to this bug." Signed-off-by: Werner Koch diff --git a/dirmngr/ldapserver.c b/dirmngr/ldapserver.c index 20a574c..5808c5b 100644 --- a/dirmngr/ldapserver.c +++ b/dirmngr/ldapserver.c @@ -125,6 +125,7 @@ ldapserver_parse_one (char line, { log_info (_("%s:%u: skipping this line\n"), filename, lineno); ldapserver_list_free (server); + server = NULL; } return server; diff --git a/sm/gpgsm.c b/sm/gpgsm.c index 3398d17..72bceb4 100644 --- a/sm/gpgsm.c +++ b/sm/gpgsm.c @@ -862,6 +862,7 @@ parse_keyserver_line (char line, { log_info (_("%s:%u: skipping this line\n"), filename, lineno); keyserver_list_free (server); + server = NULL; } return server; ----------------------------------------------------------------------- Summary of changes: dirmngr/crlfetch.c | 5 ++++- dirmngr/ks-engine-hkp.c | 2 +- dirmngr/ldapserver.c | 1 + dirmngr/server.c | 4 ++-- sm/gpgsm.c | 1 + 5 files changed, 9 insertions(+), 4 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 12:43:53 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 22 Dec 2014 12:43:53 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-12-g6056d24 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 6056d2467310260ddc0db2fe65b737ace6febcaa (commit) from 5a556e4e88bcbc926c0922070acaf5f7b25d18fb (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 6056d2467310260ddc0db2fe65b737ace6febcaa Author: Werner Koch Date: Mon Dec 22 12:44:13 2014 +0100 doc: Fix memory leak in yat2m. * doc/yat2m.c (write_th): Free NAME. -- Reported-by: Joshua Rogers diff --git a/doc/yat2m.c b/doc/yat2m.c index f780952..86c3c70 100644 --- a/doc/yat2m.c +++ b/doc/yat2m.c @@ -656,6 +656,7 @@ write_th (FILE fp) p++ = 0; fprintf (fp, ".TH %s %s %s \"%s\" \"%s\"\n", name, p, isodatestring (), opt_release, opt_source); + free (name); return 0; } ----------------------------------------------------------------------- Summary of changes: doc/yat2m.c | 1 + 1 file changed, 1 insertion(+) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 12:56:46 2014 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 22 Dec 2014 12:56:46 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-14-g628b111 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via 628b111fa679612e23c0d46505b1ecbbf091897d (commit) via 351bca9047d748c3c4f7e9a3cdc476af127b1da3 (commit) from 6056d2467310260ddc0db2fe65b737ace6febcaa (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 628b111fa679612e23c0d46505b1ecbbf091897d Author: Daniel Kahn Gillmor Date: Fri Dec 19 17:12:37 2014 -0500 avoid double-close in unusual dotlock situations * common/dotlock.c: (dotlock_create_unix) avoid double-close() in unusual situations. -- close(2) says: close() should not be retried after an EINTR since this may cause a reused descriptor from another thread to be closed. Before this patch was applied, if close(fd) failed with EINTR, it would be closed again in the write_failed: block. It could also have been closed a second time in the case that (use_hardlinks_p (h->tname)) evaluated to something other than 0 or 1. This patch avoids both of those scenarios. Note that close() could still be called twice on the same file descriptor if the first close(fd) fails but errno is not EINTR. I'm not sure the right thing to do in that scenario. An alternate resolution could be to unequivocally set fd to -1 after the first failed close(fd), avoiding the errno == EINTR test. Debian-Bug-Id: 773423 diff --git a/common/dotlock.c b/common/dotlock.c index c5520db..a9963d1 100644 --- a/common/dotlock.c +++ b/common/dotlock.c @@ -680,7 +680,12 @@ dotlock_create_unix (dotlock_t h, const char file_to_lock) if ( write (fd, "\n", 1 ) != 1 ) goto write_failed; if ( close (fd) ) - goto write_failed; + { + if ( errno == EINTR ) + fd = -1; + goto write_failed; + } + fd = -1; / Check whether we support hard links. / switch (use_hardlinks_p (h->tname)) @@ -718,7 +723,8 @@ dotlock_create_unix (dotlock_t h, const char file_to_lock) all_lockfiles = h->next; UNLOCK_all_lockfiles (); my_error_2 (_("error writing to '%s': %s\n"), h->tname, strerror (errno)); - close (fd); + if ( fd != -1 ) + close (fd); unlink (h->tname); jnlib_free (h->tname); jnlib_free (h); commit 351bca9047d748c3c4f7e9a3cdc476af127b1da3 Author: Daniel Kahn Gillmor Date: Fri Dec 19 17:12:05 2014 -0500 gpgkey2ssh: clean up varargs * tools/gpgkey2ssh.c (key_to_blob) : ensure that va_end is called. -- stdarg(3) says: Each invocation of va_start() must be matched by a corresponding invocation of va_end() in the same function. Observed by Joshua Rogers Debian-Bug-Id: 773415 diff --git a/tools/gpgkey2ssh.c b/tools/gpgkey2ssh.c index 903fb5b..d22c5ac 100644 --- a/tools/gpgkey2ssh.c +++ b/tools/gpgkey2ssh.c @@ -224,6 +224,8 @@ key_to_blob (unsigned char **blob, size_t blob_n, const char identifier, ...) assert (ret == 1); } + va_end (ap); + blob_new_n = ftell (stream); rewind (stream); ----------------------------------------------------------------------- Summary of changes: common/dotlock.c | 10 ++++++++-- tools/gpgkey2ssh.c | 2 ++ 2 files changed, 10 insertions(+), 2 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 13:17:36 2014 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 22 Dec 2014 13:17:36 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-16-gb0b3803 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via b0b3803e8c2959dd67ca96debc54b5c6464f0d41 (commit) via 367b073ab5f439ccf0750461d10c69f36998bd62 (commit) from 628b111fa679612e23c0d46505b1ecbbf091897d (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit b0b3803e8c2959dd67ca96debc54b5c6464f0d41 Author: Daniel Kahn Gillmor Date: Fri Dec 19 18:07:55 2014 -0500 scd: Avoid double-free on error condition in scd * scd/command.c (cmd_readkey): avoid double-free of cert -- When ksba_cert_new() fails, cert will be double-freed. Debian-Bug-Id: 773471 Original patch changed by wk to do the free only at leave. diff --git a/scd/command.c b/scd/command.c index dd4191f..1cc580a 100644 --- a/scd/command.c +++ b/scd/command.c @@ -804,10 +804,8 @@ cmd_readkey (assuan_context_t ctx, char line) rc = ksba_cert_new (&kc); if (rc) - { - xfree (cert); - goto leave; - } + goto leave; + rc = ksba_cert_init_from_mem (kc, cert, ncert); if (rc) { commit 367b073ab5f439ccf0750461d10c69f36998bd62 Author: Daniel Kahn Gillmor Date: Fri Dec 19 17:53:36 2014 -0500 avoid future chance of using uninitialized memory common/iobuf.c: (iobuf_open): initialize len -- In iobuf_open, IOBUFCTRL_DESC and IOBUFCTRL_INIT commands are invoked (via file_filter()) on fcx, passing in a pointer to an uninitialized len. With these two commands, file_filter doesn't actually do anything with the value of len, so there's no actual risk of use of uninitialized memory in the code as it stands. However, some static analysis tools might flag this situation with a warning, and initializing the value doesn't hurt anything, so i think this trivial cleanup is warranted. Debian-Bug-Id: 773469 diff --git a/common/iobuf.c b/common/iobuf.c index 3c68ce5..badbf78 100644 --- a/common/iobuf.c +++ b/common/iobuf.c @@ -1301,7 +1301,7 @@ iobuf_open (const char fname) iobuf_t a; gnupg_fd_t fp; file_filter_ctx_t fcx; - size_t len; + size_t len = 0; int print_only = 0; int fd; ----------------------------------------------------------------------- Summary of changes: common/iobuf.c | 2 +- scd/command.c | 6 ++---- 2 files changed, 3 insertions(+), 5 deletions(-) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 14:17:48 2014 From: cvs at cvs.gnupg.org (by Daniel Kahn Gillmor) Date: Mon, 22 Dec 2014 14:17:48 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-17-ged8383c Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via ed8383c618e124cfa708c9ee87563fcdf2f4649c (commit) from b0b3803e8c2959dd67ca96debc54b5c6464f0d41 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit ed8383c618e124cfa708c9ee87563fcdf2f4649c Author: Daniel Kahn Gillmor Date: Fri Dec 19 18:53:34 2014 -0500 sm: Avoid double-free on iconv failure * sm/minip12.c: (p12_build) if jnlib_iconv_open fails, avoid double-free of pwbuf. -- Observed by Joshua Rogers , who proposed a slightly different fix. Debian-Bug-Id: 773472 Added fix at a second place - wk. diff --git a/sm/minip12.c b/sm/minip12.c index 01b91b7..ca4d248 100644 --- a/sm/minip12.c +++ b/sm/minip12.c @@ -2422,6 +2422,7 @@ p12_build (gcry_mpi_t kparms, const void cert, size_t certlen, " requested charset '%s': %s\n", charset, strerror (errno)); gcry_free (pwbuf); + pwbuf = NULL; goto failure; } @@ -2436,6 +2437,7 @@ p12_build (gcry_mpi_t kparms, const void cert, size_t certlen, " requested charset '%s': %s\n", charset, strerror (errno)); gcry_free (pwbuf); + pwbuf = NULL; jnlib_iconv_close (cd); goto failure; } ----------------------------------------------------------------------- Summary of changes: sm/minip12.c | 2 ++ 1 file changed, 2 insertions(+) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 14:26:35 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 22 Dec 2014 14:26:35 +0100 Subject: [git] GnuPG - branch, master, updated. gnupg-2.1.1-18-gd2d8481 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU Privacy Guard". The branch, master has been updated via d2d8481e3866124c143cac165dea8453001e2905 (commit) from ed8383c618e124cfa708c9ee87563fcdf2f4649c (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit d2d8481e3866124c143cac165dea8453001e2905 Author: Werner Koch Date: Mon Dec 22 14:27:33 2014 +0100 Register DCO for Joshua Rogers. -- diff --git a/AUTHORS b/AUTHORS index eb42043..554c10a 100644 --- a/AUTHORS +++ b/AUTHORS @@ -179,6 +179,9 @@ Hans of Guardian Jonas Borgstr?m 2013-08-29:521F1E7A.5080602 at borgstrom.se: +Joshua Rogers +2014-12-22:5497FE75.7010503 at internot.info: + Kyle Butt 2013-05-29:CAAODAYLbCtqOG6msLLL0UTdASKWT6u2ptxsgUQ1JpusBESBoNQ at mail.gmail.com: ----------------------------------------------------------------------- Summary of changes: AUTHORS | 3 +++ 1 file changed, 3 insertions(+) hooks/post-receive -- The GNU Privacy Guard http://git.gnupg.org From cvs at cvs.gnupg.org Mon Dec 22 18:32:46 2014 From: cvs at cvs.gnupg.org (by Werner Koch) Date: Mon, 22 Dec 2014 18:32:46 +0100 Subject: [git] gnupg-doc - branch, master, updated. 450481c63872bf79f03399128070bff768fae5b0 Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GnuPG website and other docs". The branch, master has been updated via 450481c63872bf79f03399128070bff768fae5b0 (commit) via f89a36b71126c4912c904129d7cfe0910043d1ad (commit) from 47aa329b0ba798717e09a413f197ca6a0fc7e403 (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 450481c63872bf79f03399128070bff768fae5b0 Author: Werner Koch Date: Mon Dec 22 18:32:15 2014 +0100 web: Minor content changes. diff --git a/tools/mkkudos.sh b/tools/mkkudos.sh index d477d69..9ab6e26 100755 --- a/tools/mkkudos.sh +++ b/tools/mkkudos.sh @@ -8,6 +8,7 @@ usage() Usage: $0 [OPTIONS] Options: --force Force re-creation of files. + --verbose Run in verbose mode --test Run in test environment EOF exit $1 @@ -15,6 +16,7 @@ EOF force=no +verbose=no testmode=no while [ $# -gt 0 ]; do case "$1" in @@ -31,6 +33,9 @@ while [ $# -gt 0 ]; do --force) force=yes ;; + --verbose) + verbose=yes + ;; --test) testmode=yes ;; @@ -90,7 +95,7 @@ for file in "$htdocs/donate/"kudos-????.html "$htdocs/donate/"kudos.html \ year=${file#$htdocs/donate/kudos-} year=${year%.html} fi - echo "processing $file" >&2 + [ $verbose = yes ] && echo "processing $file" >&2 [ -f "$file.tmp" ] && rm "$file.tmp" awk -F: -v year=$year -v donors="$donors" \ -v monyear="$monyear" -v euro="$euro" -v euroyr="$euroyr" \ diff --git a/web/donate/index.org b/web/donate/index.org index 793af3b..f4cc20b 100644 --- a/web/donate/index.org +++ b/web/donate/index.org @@ -42,6 +42,9 @@ be listed on our [[https://www.gnupg.org/donate/kudos.html][thank you]] page you should indicate this by adding a comment of the form =List me as: NAME= to your donation. + If you like to donate Bitcoins you may use the [[https://www.wauland.de/en/donation.html#61][Wau Holland Stiftung]] + account too. + If you represent a company, you may also enter into a support contract with [[https://g10code.com][g10^code]] or ask for other service options. diff --git a/web/index.org b/web/index.org index 7eaae07..b21c029 100644 --- a/web/index.org +++ b/web/index.org @@ -10,7 +10,7 @@ maintaining GnuPG so to keep it strong and secure against the ever increasing mass surveillance we need your support. Until the end of November we received a total of 6584\thinsp\euro (~5500 net) donations for this year. Along with the 18000\thinsp\euro net from the [[https://www.gnupg.org/blog/20140512-rewards-sent.html][Goteo -campaign]] this paid for less less than 50% of the costs for one +campaign]] this paid for less than 50% of the costs for one developer. #+BEGIN_HTML @@ -31,9 +31,9 @@ style="width: 0%"> For a critical project of this size two experienced developers are required for proper operation. This requires gross revenues of 120000 Euro per year. Unfortunately there is currently only one underpaid -full time developer who is barely able to keep up with the work. -Please help to secure the future of GnuPG and consider to [[file:donate/index.org][donate]] to -this project [[file:donate/index.org][now]]. +full time developer who is barely able to keep up with the work; see +this [[file:blog/20141214-gnupg-and-g10.org][blog entry]] for some backgound. Please help to secure the +future of GnuPG and consider to [[file:donate/index.org][donate]] to this project [[file:donate/index.org][now]]. * The GNU Privacy Guard commit f89a36b71126c4912c904129d7cfe0910043d1ad Author: Andre Heinecke Date: Fri Dec 19 16:52:19 2014 +0100 web: Move hover menu slightly up -- This prevents the hover menu from closing when moving the mouse down over the border. diff --git a/web/share/site.css b/web/share/site.css index c2b816a..48815f3 100644 --- a/web/share/site.css +++ b/web/share/site.css @@ -279,7 +279,7 @@ nav ul li:hover ul.sub-menu { z-index: 99; border-radius: 0px; position: absolute; - top: 41px; + top: 39px; left: 0; } nav ul ul li { ----------------------------------------------------------------------- Summary of changes: tools/mkkudos.sh | 7 ++++++- web/donate/index.org | 3 +++ web/index.org | 8 ++++---- web/share/site.css | 2 +- 4 files changed, 14 insertions(+), 6 deletions(-) hooks/post-receive -- The GnuPG website and other docs http://git.gnupg.org From cvs at cvs.gnupg.org Sun Dec 28 14:57:43 2014 From: cvs at cvs.gnupg.org (by Jussi Kivilinna) Date: Sun, 28 Dec 2014 14:57:43 +0100 Subject: [git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-139-g520070e Message-ID: This is an automated email from the git hooks/post-receive script. It was generated because a ref change was pushed to the repository containing the project "The GNU crypto library". The branch, master has been updated via 520070e02e2e6ee7228945015573a6e1f4895ec3 (commit) via 11b8d2d449a7bc664b4371ae14c57caa6704d272 (commit) from c964321c8a1328e89d636d899a45d68802f5ac9f (commit) Those revisions listed above that are new to this repository have not appeared on any other notification email; so we list those revisions in full, below. - Log ----------------------------------------------------------------- commit 520070e02e2e6ee7228945015573a6e1f4895ec3 Author: Jussi Kivilinna Date: Sun Dec 21 17:36:59 2014 +0200 Poly1305-AEAD: updated implementation to match draft-irtf-cfrg-chacha20-poly1305-03 * cipher/cipher-internal.h (gcry_cipher_handle): Use separate byte counters for AAD and data in Poly1305. * cipher/cipher-poly1305.c (poly1305_fill_bytecount): Remove. (poly1305_fill_bytecounts, poly1305_do_padding): New. (poly1305_aad_finish): Fill padding to Poly1305 and do not fill AAD length. (_gcry_cipher_poly1305_authenticate, _gcry_cipher_poly1305_encrypt) (_gcry_cipher_poly1305_decrypt): Update AAD and data length separately. (_gcry_cipher_poly1305_tag): Fill padding and bytecounts to Poly1305. (_gcry_cipher_poly1305_setkey, _gcry_cipher_poly1305_setiv): Reset AAD and data byte counts; only allow 96-bit IV. * cipher/cipher.c (_gcry_cipher_open_internal): Limit Poly1305-AEAD to ChaCha20 cipher. * tests/basic.c (_check_poly1305_cipher): Update test-vectors. (check_ciphers): Limit Poly1305-AEAD checks to ChaCha20. * tests/bench-slope.c (cipher_bench_one): Ditto. -- Latest Internet-Draft version for "ChaCha20 and Poly1305 for IETF protocols" has added additional padding to Poly1305-AEAD and limited support IV size to 96-bits: https://www.ietf.org/rfcdiff?url1=draft-nir-cfrg-chacha20-poly1305-03&difftype=--html&submit=Go!&url2=draft-irtf-cfrg-chacha20-poly1305-03 Patch makes Poly1305-AEAD implementation to match the changes and limits Poly1305-AEAD to ChaCha20 only. Signed-off-by: Jussi Kivilinna diff --git a/cipher/cipher-internal.h b/cipher/cipher-internal.h index fef0ecb..650d813 100644 --- a/cipher/cipher-internal.h +++ b/cipher/cipher-internal.h @@ -163,8 +163,11 @@ struct gcry_cipher_handle /* Mode specific storage for Poly1305 mode. / struct { - / byte counter for AAD and data. / - u32 bytecount[2]; + / byte counter for AAD. / + u32 aadcount[2]; + + / byte counter for data. / + u32 datacount[2]; unsigned int aad_finalized:1; unsigned int bytecount_over_limits:1; diff --git a/cipher/cipher-poly1305.c b/cipher/cipher-poly1305.c index a22ffa3..f283333 100644 --- a/cipher/cipher-poly1305.c +++ b/cipher/cipher-poly1305.c @@ -53,12 +53,14 @@ poly1305_bytecounter_add (u32 ctr[2], size_t add) static void -poly1305_fill_bytecount (gcry_cipher_hd_t c) +poly1305_fill_bytecounts (gcry_cipher_hd_t c) { - u32 lenbuf[2]; + u32 lenbuf[4]; - lenbuf[0] = le_bswap32(c->u_mode.poly1305.bytecount[0]); - lenbuf[1] = le_bswap32(c->u_mode.poly1305.bytecount[1]); + lenbuf[0] = le_bswap32(c->u_mode.poly1305.aadcount[0]); + lenbuf[1] = le_bswap32(c->u_mode.poly1305.aadcount[1]); + lenbuf[2] = le_bswap32(c->u_mode.poly1305.datacount[0]); + lenbuf[3] = le_bswap32(c->u_mode.poly1305.datacount[1]); _gcry_poly1305_update (&c->u_mode.poly1305.ctx, (byte)lenbuf, sizeof(lenbuf)); @@ -67,15 +69,33 @@ poly1305_fill_bytecount (gcry_cipher_hd_t c) static void +poly1305_do_padding (gcry_cipher_hd_t c, u32 ctr[2]) +{ + static const byte zero_padding_buf[15] = {}; + u32 padding_count; + + /* Padding to 16 byte boundary. / + if (ctr[0] % 16 > 0) + { + padding_count = 16 - ctr[0] % 16; + + _gcry_poly1305_update (&c->u_mode.poly1305.ctx, zero_padding_buf, + padding_count); + } +} + + +static void poly1305_aad_finish (gcry_cipher_hd_t c) { - / Start of encryption marks end of AAD stream. / - poly1305_fill_bytecount(c); + / After AAD, feed padding bytes so we get 16 byte alignment. / + poly1305_do_padding (c, c->u_mode.poly1305.aadcount); + / Start of encryption marks end of AAD stream. / c->u_mode.poly1305.aad_finalized = 1; - c->u_mode.poly1305.bytecount[0] = 0; - c->u_mode.poly1305.bytecount[1] = 0; + c->u_mode.poly1305.datacount[0] = 0; + c->u_mode.poly1305.datacount[1] = 0; } @@ -102,7 +122,7 @@ _gcry_cipher_poly1305_authenticate (gcry_cipher_hd_t c, if (!c->marks.iv) poly1305_set_zeroiv(c); - if (poly1305_bytecounter_add(c->u_mode.poly1305.bytecount, aadbuflen)) + if (poly1305_bytecounter_add(c->u_mode.poly1305.aadcount, aadbuflen)) { c->u_mode.poly1305.bytecount_over_limits = 1; return GPG_ERR_INV_LENGTH; @@ -138,7 +158,7 @@ _gcry_cipher_poly1305_encrypt (gcry_cipher_hd_t c, if (!c->u_mode.poly1305.aad_finalized) poly1305_aad_finish(c); - if (poly1305_bytecounter_add(c->u_mode.poly1305.bytecount, inbuflen)) + if (poly1305_bytecounter_add(c->u_mode.poly1305.datacount, inbuflen)) { c->u_mode.poly1305.bytecount_over_limits = 1; return GPG_ERR_INV_LENGTH; @@ -176,7 +196,7 @@ _gcry_cipher_poly1305_decrypt (gcry_cipher_hd_t c, if (!c->u_mode.poly1305.aad_finalized) poly1305_aad_finish(c); - if (poly1305_bytecounter_add(c->u_mode.poly1305.bytecount, inbuflen)) + if (poly1305_bytecounter_add(c->u_mode.poly1305.datacount, inbuflen)) { c->u_mode.poly1305.bytecount_over_limits = 1; return GPG_ERR_INV_LENGTH; @@ -212,8 +232,11 @@ _gcry_cipher_poly1305_tag (gcry_cipher_hd_t c, if (!c->marks.tag) { - / Write data-length to poly1305. / - poly1305_fill_bytecount(c); + / After data, feed padding bytes so we get 16 byte alignment. / + poly1305_do_padding (c, c->u_mode.poly1305.datacount); + + / Write byte counts to poly1305. / + poly1305_fill_bytecounts(c); _gcry_poly1305_finish(&c->u_mode.poly1305.ctx, c->u_iv.iv); @@ -247,8 +270,11 @@ _gcry_cipher_poly1305_check_tag (gcry_cipher_hd_t c, const unsigned char intag, void _gcry_cipher_poly1305_setkey (gcry_cipher_hd_t c) { - c->u_mode.poly1305.bytecount[0] = 0; - c->u_mode.poly1305.bytecount[1] = 0; + c->u_mode.poly1305.aadcount[0] = 0; + c->u_mode.poly1305.aadcount[1] = 0; + + c->u_mode.poly1305.datacount[0] = 0; + c->u_mode.poly1305.datacount[1] = 0; c->u_mode.poly1305.bytecount_over_limits = 0; c->u_mode.poly1305.aad_finalized = 0; @@ -260,16 +286,20 @@ _gcry_cipher_poly1305_setkey (gcry_cipher_hd_t c) gcry_err_code_t _gcry_cipher_poly1305_setiv (gcry_cipher_hd_t c, const byte iv, size_t ivlen) { - byte tmpbuf[64]; / size of ChaCha20/Salsa20 block / + byte tmpbuf[64]; / size of ChaCha20 block / gcry_err_code_t err; - if (!iv && ivlen > 0) + / IV must be 96-bits / + if (!iv && ivlen != (96 / 8)) return GPG_ERR_INV_ARG; memset(&c->u_mode.poly1305.ctx, 0, sizeof(c->u_mode.poly1305.ctx)); - c->u_mode.poly1305.bytecount[0] = 0; - c->u_mode.poly1305.bytecount[1] = 0; + c->u_mode.poly1305.aadcount[0] = 0; + c->u_mode.poly1305.aadcount[1] = 0; + + c->u_mode.poly1305.datacount[0] = 0; + c->u_mode.poly1305.datacount[1] = 0; c->u_mode.poly1305.bytecount_over_limits = 0; c->u_mode.poly1305.aad_finalized = 0; @@ -279,7 +309,7 @@ _gcry_cipher_poly1305_setiv (gcry_cipher_hd_t c, const byte iv, size_t ivlen) /* Set up IV for stream cipher. / c->spec->setiv (&c->context.c, iv, ivlen); - / Get the first block from ChaCha20/Salsa20. / + / Get the first block from ChaCha20. / memset(tmpbuf, 0, sizeof(tmpbuf)); c->spec->stencrypt(&c->context.c, tmpbuf, tmpbuf, sizeof(tmpbuf)); diff --git a/cipher/cipher.c b/cipher/cipher.c index 5c44c0d..78cad21 100644 --- a/cipher/cipher.c +++ b/cipher/cipher.c @@ -421,9 +421,7 @@ _gcry_cipher_open_internal (gcry_cipher_hd_t handle, case GCRY_CIPHER_MODE_POLY1305: if (!spec->stencrypt || !spec->stdecrypt || !spec->setiv) err = GPG_ERR_INV_CIPHER_MODE; - else if (spec->algo != GCRY_CIPHER_SALSA20 && - spec->algo != GCRY_CIPHER_SALSA20R12 && - spec->algo != GCRY_CIPHER_CHACHA20) + else if (spec->algo != GCRY_CIPHER_CHACHA20) err = GPG_ERR_INV_CIPHER_MODE; break; diff --git a/tests/basic.c b/tests/basic.c index e406db4..ef8260f 100644 --- a/tests/basic.c +++ b/tests/basic.c @@ -1625,27 +1625,59 @@ _check_poly1305_cipher (unsigned int step) struct tv { int algo; - char key[MAX_DATA_LEN]; - char iv[MAX_DATA_LEN]; + const char key; + const char iv; int ivlen; - unsigned char aad[MAX_DATA_LEN]; + const char aad; int aadlen; - unsigned char plaintext[MAX_DATA_LEN]; + const char plaintext; int inlen; - char out[MAX_DATA_LEN]; - char tag[MAX_DATA_LEN]; + const char out; + const char tag; } tv[] = { - /* draft-agl-tls-chacha20poly1305-04 / + / draft-irtf-cfrg-chacha20-poly1305-03 / { GCRY_CIPHER_CHACHA20, - "\x42\x90\xbc\xb1\x54\x17\x35\x31\xf3\x14\xaf\x57\xf3\xbe\x3b\x50" - "\x06\xda\x37\x1e\xce\x27\x2a\xfa\x1b\x5d\xbd\xd1\x10\x0a\x10\x07", - "\xcd\x7c\xf6\x7b\xe3\x9c\x79\x4a", 8, - "\x87\xe2\x29\xd4\x50\x08\x45\xa0\x79\xc0", 10, - "\x86\xd0\x99\x74\x84\x0b\xde\xd2\xa5\xca", 10, - "\xe3\xe4\x46\xf7\xed\xe9\xa1\x9b\x62\xa4", - "\x67\x7d\xab\xf4\xe3\xd2\x4b\x87\x6b\xb2\x84\x75\x38\x96\xe1\xd6" }, - / draft-nir-cfrg-chacha20-poly1305-03 / + "\x1c\x92\x40\xa5\xeb\x55\xd3\x8a\xf3\x33\x88\x86\x04\xf6\xb5\xf0" + "\x47\x39\x17\xc1\x40\x2b\x80\x09\x9d\xca\x5c\xbc\x20\x70\x75\xc0", + "\x00\x00\x00\x00\x01\x02\x03\x04\x05\x06\x07\x08", 12, + "\xf3\x33\x88\x86\x00\x00\x00\x00\x00\x00\x4e\x91", 12, + "\x49\x6e\x74\x65\x72\x6e\x65\x74\x2d\x44\x72\x61\x66\x74\x73\x20" + "\x61\x72\x65\x20\x64\x72\x61\x66\x74\x20\x64\x6f\x63\x75\x6d\x65" + "\x6e\x74\x73\x20\x76\x61\x6c\x69\x64\x20\x66\x6f\x72\x20\x61\x20" + "\x6d\x61\x78\x69\x6d\x75\x6d\x20\x6f\x66\x20\x73\x69\x78\x20\x6d" + "\x6f\x6e\x74\x68\x73\x20\x61\x6e\x64\x20\x6d\x61\x79\x20\x62\x65" + "\x20\x75\x70\x64\x61\x74\x65\x64\x2c\x20\x72\x65\x70\x6c\x61\x63" + "\x65\x64\x2c\x20\x6f\x72\x20\x6f\x62\x73\x6f\x6c\x65\x74\x65\x64" + "\x20\x62\x79\x20\x6f\x74\x68\x65\x72\x20\x64\x6f\x63\x75\x6d\x65" + "\x6e\x74\x73\x20\x61\x74\x20\x61\x6e\x79\x20\x74\x69\x6d\x65\x2e" + "\x20\x49\x74\x20\x69\x73\x20\x69\x6e\x61\x70\x70\x72\x6f\x70\x72" + "\x69\x61\x74\x65\x20\x74\x6f\x20\x75\x73\x65\x20\x49\x6e\x74\x65" + "\x72\x6e\x65\x74\x2d\x44\x72\x61\x66\x74\x73\x20\x61\x73\x20\x72" + "\x65\x66\x65\x72\x65\x6e\x63\x65\x20\x6d\x61\x74\x65\x72\x69\x61" + "\x6c\x20\x6f\x72\x20\x74\x6f\x20\x63\x69\x74\x65\x20\x74\x68\x65" + "\x6d\x20\x6f\x74\x68\x65\x72\x20\x74\x68\x61\x6e\x20\x61\x73\x20" + "\x2f\xe2\x80\x9c\x77\x6f\x72\x6b\x20\x69\x6e\x20\x70\x72\x6f\x67" + "\x72\x65\x73\x73\x2e\x2f\xe2\x80\x9d", 265, + "\x64\xa0\x86\x15\x75\x86\x1a\xf4\x60\xf0\x62\xc7\x9b\xe6\x43\xbd" + "\x5e\x80\x5c\xfd\x34\x5c\xf3\x89\xf1\x08\x67\x0a\xc7\x6c\x8c\xb2" + "\x4c\x6c\xfc\x18\x75\x5d\x43\xee\xa0\x9e\xe9\x4e\x38\x2d\x26\xb0" + "\xbd\xb7\xb7\x3c\x32\x1b\x01\x00\xd4\xf0\x3b\x7f\x35\x58\x94\xcf" + "\x33\x2f\x83\x0e\x71\x0b\x97\xce\x98\xc8\xa8\x4a\xbd\x0b\x94\x81" + "\x14\xad\x17\x6e\x00\x8d\x33\xbd\x60\xf9\x82\xb1\xff\x37\xc8\x55" + "\x97\x97\xa0\x6e\xf4\xf0\xef\x61\xc1\x86\x32\x4e\x2b\x35\x06\x38" + "\x36\x06\x90\x7b\x6a\x7c\x02\xb0\xf9\xf6\x15\x7b\x53\xc8\x67\xe4" + "\xb9\x16\x6c\x76\x7b\x80\x4d\x46\xa5\x9b\x52\x16\xcd\xe7\xa4\xe9" + "\x90\x40\xc5\xa4\x04\x33\x22\x5e\xe2\x82\xa1\xb0\xa0\x6c\x52\x3e" + "\xaf\x45\x34\xd7\xf8\x3f\xa1\x15\x5b\x00\x47\x71\x8c\xbc\x54\x6a" + "\x0d\x07\x2b\x04\xb3\x56\x4e\xea\x1b\x42\x22\x73\xf5\x48\x27\x1a" + "\x0b\xb2\x31\x60\x53\xfa\x76\x99\x19\x55\xeb\xd6\x31\x59\x43\x4e" + "\xce\xbb\x4e\x46\x6d\xae\x5a\x10\x73\xa6\x72\x76\x27\x09\x7a\x10" + "\x49\xe6\x17\xd9\x1d\x36\x10\x94\xfa\x68\xf0\xff\x77\x98\x71\x30" + "\x30\x5b\xea\xba\x2e\xda\x04\xdf\x99\x7b\x71\x4d\x6c\x6f\x2c\x29" + "\xa6\xad\x5c\xb4\x02\x2b\x02\x70\x9b", + "\xee\xad\x9d\x67\x89\x0c\xbb\x22\x39\x23\x36\xfe\xa1\x85\x1f\x38" }, + / draft-irtf-cfrg-chacha20-poly1305-03 / { GCRY_CIPHER_CHACHA20, "\x80\x81\x82\x83\x84\x85\x86\x87\x88\x89\x8a\x8b\x8c\x8d\x8e\x8f" "\x90\x91\x92\x93\x94\x95\x96\x97\x98\x99\x9a\x9b\x9c\x9d\x9e\x9f", @@ -1661,11 +1693,11 @@ _check_poly1305_cipher (unsigned int step) "\xfa\xb3\x24\xe4\xfa\xd6\x75\x94\x55\x85\x80\x8b\x48\x31\xd7\xbc" "\x3f\xf4\xde\xf0\x8e\x4b\x7a\x9d\xe5\x76\xd2\x65\x86\xce\xc6\x4b" "\x61\x16", - "\x18\xfb\x11\xa5\x03\x1a\xd1\x3a\x7e\x3b\x03\xd4\x6e\xe3\xa6\xa7" } + "\x1a\xe1\x0b\x59\x4f\x09\xe2\x6a\x7e\x90\x2e\xcb\xd0\x60\x06\x91" }, }; gcry_cipher_hd_t hde, hdd; - unsigned char out[MAX_DATA_LEN]; + unsigned char out[1024]; unsigned char tag[16]; int i, keylen; gcry_error_t err = 0; @@ -4333,9 +4365,7 @@ check_ciphers (void) gcry_cipher_algo_name (algos2[i])); check_one_cipher (algos2[i], GCRY_CIPHER_MODE_STREAM, 0); - if (algos2[i] == GCRY_CIPHER_CHACHA20 || - algos2[i] == GCRY_CIPHER_SALSA20 || - algos2[i] == GCRY_CIPHER_SALSA20R12) + if (algos2[i] == GCRY_CIPHER_CHACHA20) check_one_cipher (algos2[i], GCRY_CIPHER_MODE_POLY1305, 0); } / we have now run all cipher's selftests / diff --git a/tests/bench-slope.c b/tests/bench-slope.c index 7bf587f..ebf672e 100644 --- a/tests/bench-slope.c +++ b/tests/bench-slope.c @@ -1147,10 +1147,8 @@ cipher_bench_one (int algo, struct bench_cipher_mode pmode) mode.name = mode.ops == &encrypt_ops ? "STREAM enc" : "STREAM dec"; } - /* Poly1305 has restrictions for cipher algorithm / - if (mode.mode == GCRY_CIPHER_MODE_POLY1305 && - (algo != GCRY_CIPHER_SALSA20 && algo != GCRY_CIPHER_SALSA20R12 && - algo != GCRY_CIPHER_CHACHA20)) + / Poly1305 has restriction for cipher algorithm / + if (mode.mode == GCRY_CIPHER_MODE_POLY1305 && algo != GCRY_CIPHER_CHACHA20) return; / CCM has restrictions for block-size / commit 11b8d2d449a7bc664b4371ae14c57caa6704d272 Author: Jussi Kivilinna Date: Sun Dec 21 17:36:59 2014 +0200 chacha20: allow setting counter for stream random access cipher/chacha20.c (CHACHA20_CTR_SIZE): New. (chacha20_ivsetup): Add setup for full counter. (chacha20_setiv): Allow ivlen == CHACHA20_CTR_SIZE. -- Signed-off-by: Jussi Kivilinna diff --git a/cipher/chacha20.c b/cipher/chacha20.c index c1847aa..2eaeffd 100644 --- a/cipher/chacha20.c +++ b/cipher/chacha20.c @@ -45,6 +45,7 @@ #define CHACHA20_BLOCK_SIZE 64 /* Bytes. / #define CHACHA20_MIN_IV_SIZE 8 / Bytes. / #define CHACHA20_MAX_IV_SIZE 12 / Bytes. / +#define CHACHA20_CTR_SIZE 16 / Bytes. / #define CHACHA20_INPUT_LENGTH (CHACHA20_BLOCK_SIZE / 4) / USE_SSE2 indicates whether to compile with Intel SSE2 code. / @@ -312,22 +313,30 @@ chacha20_keysetup (CHACHA20_context_t ctx, const byte * key, static void chacha20_ivsetup (CHACHA20_context_t * ctx, const byte * iv, size_t ivlen) { - ctx->input[12] = 0; - - if (ivlen == CHACHA20_MAX_IV_SIZE) + if (ivlen == CHACHA20_CTR_SIZE) + { + ctx->input[12] = buf_get_le32 (iv + 0); + ctx->input[13] = buf_get_le32 (iv + 4); + ctx->input[14] = buf_get_le32 (iv + 8); + ctx->input[15] = buf_get_le32 (iv + 12); + } + else if (ivlen == CHACHA20_MAX_IV_SIZE) { + ctx->input[12] = 0; ctx->input[13] = buf_get_le32 (iv + 0); ctx->input[14] = buf_get_le32 (iv + 4); ctx->input[15] = buf_get_le32 (iv + 8); } else if (ivlen == CHACHA20_MIN_IV_SIZE) { + ctx->input[12] = 0; ctx->input[13] = 0; ctx->input[14] = buf_get_le32 (iv + 0); ctx->input[15] = buf_get_le32 (iv + 4); } else { + ctx->input[12] = 0; ctx->input[13] = 0; ctx->input[14] = 0; ctx->input[15] = 0; @@ -402,10 +411,12 @@ chacha20_setiv (void context, const byte iv, size_t ivlen) CHACHA20_context_t ctx = (CHACHA20_context_t ) context; /* draft-nir-cfrg-chacha20-poly1305-02 defines 96-bit and 64-bit nonce. */ - if (iv && ivlen != CHACHA20_MAX_IV_SIZE && ivlen != CHACHA20_MIN_IV_SIZE) + if (iv && ivlen != CHACHA20_MAX_IV_SIZE && ivlen != CHACHA20_MIN_IV_SIZE + && ivlen != CHACHA20_CTR_SIZE) log_info ("WARNING: chacha20_setiv: bad ivlen=%u\n", (u32) ivlen); - if (iv && (ivlen == CHACHA20_MAX_IV_SIZE || ivlen == CHACHA20_MIN_IV_SIZE)) + if (iv && (ivlen == CHACHA20_MAX_IV_SIZE || ivlen == CHACHA20_MIN_IV_SIZE + || ivlen == CHACHA20_CTR_SIZE)) chacha20_ivsetup (ctx, iv, ivlen); else chacha20_ivsetup (ctx, NULL, 0); ----------------------------------------------------------------------- Summary of changes: cipher/chacha20.c | 21 ++++++++++---- cipher/cipher-internal.h | 7 +++-- cipher/cipher-poly1305.c | 70 +++++++++++++++++++++++++++++++++------------- cipher/cipher.c | 4 +-- tests/basic.c | 70 +++++++++++++++++++++++++++++++++------------- tests/bench-slope.c | 6 ++-- 6 files changed, 124 insertions(+), 54 deletions(-) hooks/post-receive -- The GNU crypto library http://git.gnupg.org

GnuPG Blog

Goteo Campaign: Preliminary Results

Posted May 12, 2014 by Werner

Mission complete: campaign ends, closing stats

Posted 6th February 2014 by Sam Tuke

Find us at FOSDEM

Posted 27th January 2014 by Sam Tuke

How good is Goteo? An appraisal

Posted 30th December 2013 by Sam Tuke

16 Years of protecting privacy

Posted 20th December 2013 by Sam Tuke

Press release: GnuPG encryption project launches crowdfunding - campaign

Posted 19th December 2013 by Sam Tuke

About GNU Privacy Guard

Getting Goteo approval

Posted 18th December 2013 by Sam Tuke

Speedups in Libgcrypt 1.6

Posted 15 December 2013 by Werner Koch

Preparing for launch

Posted 13th December 2013 by Sam Tuke

Friends tell friends they love GnuPG

Posted 13th November 2013 by Sam Tuke

Securing the future of GPG

Posted 5th November 2013 by Sam Tuke

New blog, first post

Posted 30th October 2013 by Sam Tuke

The GnuPG blog

]>\(.\)

GnuPG Blog

Goteo Campaign: Preliminary Results

Posted May 12, 2014 by Werner

Mission complete: campaign ends, closing stats

Posted 6th February 2014 by Sam Tuke

Find us at FOSDEM

Posted 27th January 2014 by Sam Tuke

How good is Goteo? An appraisal

Posted 30th December 2013 by Sam Tuke

16 Years of protecting privacy

Posted 20th December 2013 by Sam Tuke

Press release: GnuPG encryption project launches crowdfunding - campaign

Posted 19th December 2013 by Sam Tuke

About GNU Privacy Guard

Getting Goteo approval

Posted 18th December 2013 by Sam Tuke

Speedups in Libgcrypt 1.6

Posted 15 December 2013 by Werner Koch

Preparing for launch

Posted 13th December 2013 by Sam Tuke

Friends tell friends they love GnuPG

Posted 13th November 2013 by Sam Tuke

Securing the future of GPG

Posted 5th November 2013 by Sam Tuke

New blog, first post

Posted 30th October 2013 by Sam Tuke

The GnuPG blog

]*>\(.*\)

]>\(.\)