by Werner Koch | 16 Apr 15:03 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-63-g773e236

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  773e23698218755e9172d2507031a8263c47cc0b (commit)
      from  ae1fbce6dacf14747af0126e640bd4e54cb8c680 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 773e23698218755e9172d2507031a8263c47cc0b
Author: Werner Koch <wk <at> gnupg.org>
Date:   Tue Apr 15 16:40:48 2014 +0200

    pubkey: Re-map all depreccated RSA algo numbers.

    * cipher/pubkey.c (map_algo): Mape RSA_E and RSA_S.

diff --git a/cipher/pubkey.c b/cipher/pubkey.c
index 9aeaced..e3842c0 100644
--- a/cipher/pubkey.c
+++ b/cipher/pubkey.c
 <at>  <at>  -57,18 +57,16  <at>  <at>  map_algo (int algo)
 {
  switch (algo)
    {
-   case GCRY_PK_ECDSA:
(Continue reading)

NIIBE Yutaka | 16 Apr 06:22 2014

25519 is 255-bit?

I don't know if we should "fix" this or not, but I think that
it's 255-bit.

GnuPG uses this information when it tries to send private key to
smartcard.  In development version of Gnuk, the key attribute says
it's 255-bit.  And I encounter the mismatch.

Here is a patch to show the issue.  It is no problem for me to modify
Gnuk side.

diff --git a/cipher/ecc-curves.c b/cipher/ecc-curves.c
index 0f622f7..13e043e 100644
--- a/cipher/ecc-curves.c
+++ b/cipher/ecc-curves.c
 <at>  <at>  -118,7 +118,7  <at>  <at>  static const ecc_domain_parms_t domain_parms[] =
   {
     {
       /* (-x^2 + y^2 = 1 + dx^2y^2) */
-      "Ed25519", 256, 0,
+      "Ed25519", 255, 0,
       MPI_EC_EDWARDS, ECC_DIALECT_ED25519,
       "0x7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFED",
       "-0x01",
--

-- 
by Werner Koch | 15 Apr 22:21 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-62-gae1fbce

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  ae1fbce6dacf14747af0126e640bd4e54cb8c680 (commit)
      from  b76b632a453b8d100d024e2439b4358454dc286e (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit ae1fbce6dacf14747af0126e640bd4e54cb8c680
Author: Werner Koch <wk <at> gnupg.org>
Date:   Tue Apr 15 16:40:48 2014 +0200

    cipher: Fix possible NULL dereference.

    * cipher/md.c (_gcry_md_selftest): Check for spec being NULL.
    --

    Also removed left-over code in unused file cipher/test-getrusage.c.

    Found by Hans-Christoph Steiner with cppcheck.

diff --git a/cipher/md.c b/cipher/md.c
index 461ad64..5ab89cb 100644
--- a/cipher/md.c
+++ b/cipher/md.c
(Continue reading)

by Jussi Kivilinna | 4 Apr 17:07 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-61-gb76b632

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  b76b632a453b8d100d024e2439b4358454dc286e (commit)
      from  50aeee51a0b1a09dd9fff2bb71749a816fe7a791 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit b76b632a453b8d100d024e2439b4358454dc286e
Author: Jussi Kivilinna <jussi.kivilinna <at> iki.fi>
Date:   Sun Mar 30 18:11:09 2014 +0300

    3des: add amd64 assembly implementation for 3DES
    
    * cipher/Makefile.am: Add 'des-amd64.S'.
    * cipher/cipher-selftests.c (_gcry_selftest_helper_cbc)
    (_gcry_selftest_helper_cfb, _gcry_selftest_helper_ctr): Handle failures
    from 'setkey' function.
    * cipher/cipher.c (_gcry_cipher_open_internal) [USE_DES]: Setup bulk
    functions for 3DES.
    * cipher/des-amd64.S: New file.
    * cipher/des.c (USE_AMD64_ASM, ATTR_ALIGNED_16): New macros.
    [USE_AMD64_ASM] (_gcry_3des_amd64_crypt_block)
    (_gcry_3des_amd64_ctr_enc), _gcry_3des_amd64_cbc_dec)
    (_gcry_3des_amd64_cfb_dec): New prototypes.
(Continue reading)

Hanno Böck | 2 Apr 10:41 2014
Picon

Key import segfault in libgcrypt

Hello,

On my system if I try to import this key
http://pgp.mit.edu/pks/lookup?op=get&search=0x98EEB6F7D87171CF
with gnupg it segfaults.

Backtrace (see below) indicates that the crash happens somewhere in
libgcrypt, so I'm posting it here.

My libgcrypt version is 1.6.1, gnupg is 2.0.22.

I can reproduce it on another system with libgcrypt 1.5.3. Both are
Gentoo.

Can anyone else reproduce? Any more info needed?

cu, Hanno Böck

Backtrace:
0x00007ffff731c130 in _gcry_mpi_get_flag ()
from /usr/lib64/libgcrypt.so.20 (gdb) bt
#0  0x00007ffff731c130 in _gcry_mpi_get_flag ()
from /usr/lib64/libgcrypt.so.20 #1  0x00007ffff7286509 in
do_vsexp_sscan () from /usr/lib64/libgcrypt.so.20 #2
0x00007ffff7287aac in _gcry_sexp_vbuild ()
from /usr/lib64/libgcrypt.so.20 #3  0x00007ffff7281382 in
gcry_sexp_build () from /usr/lib64/libgcrypt.so.20 #4
0x0000000000432fba in pk_verify () #5  0x000000000042e1d8 in do_check
() #6  0x000000000042efc2 in check_key_signature2 () #7
0x000000000042f1bb in check_key_signature () #8  0x000000000044b526 in
(Continue reading)

Jussi Kivilinna | 30 Mar 17:27 2014
Picon
Picon

[PATCH] 3des: add amd64 assembly implementation for 3DES

* cipher/Makefile.am: Add 'des-amd64.S'.
* cipher/cipher-selftests.c (_gcry_selftest_helper_cbc)
(_gcry_selftest_helper_cfb, _gcry_selftest_helper_ctr): Handle failures
from 'setkey' function.
* cipher/cipher.c (_gcry_cipher_open_internal) [USE_DES]: Setup bulk
functions for 3DES.
* cipher/des-amd64.S: New file.
* cipher/des.c (USE_AMD64_ASM, ATTR_ALIGNED_16): New macros.
[USE_AMD64_ASM] (_gcry_3des_amd64_crypt_block)
(_gcry_3des_amd64_ctr_enc), _gcry_3des_amd64_cbc_dec)
(_gcry_3des_amd64_cfb_dec): New prototypes.
[USE_AMD64_ASM] (tripledes_ecb_crypt): New function.
(TRIPLEDES_ECB_BURN_STACK): New macro.
(_gcry_3des_ctr_enc, _gcry_3des_cbc_dec, _gcry_3des_cfb_dec)
(bulk_selftest_setkey, selftest_ctr, selftest_cbc, selftest_cfb): New
functions.
(selftest): Add call to CTR, CBC and CFB selftest functions.
(do_tripledes_encrypt, do_tripledes_decrypt): Use
TRIPLEDES_ECB_BURN_STACK.
* configure.ac [host=x86-64]: Add 'des-amd64.lo'.
* src/cipher.h (_gcry_3des_ctr_enc, _gcry_3des_cbc_dec)
(_gcry_3des_cfb_dec): New prototypes.
--

Add non-parallel functions for small speed-up and 3-way parallel functions for
modes of operation that support parallel processing.

Old vs new (Intel Core i5-4570):
================================
        enc    dec
(Continue reading)

Konstantin Pavlov | 25 Mar 10:55 2014

x86_64 Darwin build fix

This patch fixes build error observed on current Darwin platform with asm
enabled:

libtool: compile:  gcc -DHAVE_CONFIG_H -I. -I.. -I../src -I../src
-g -O2 -MT mpih-mul1-asm.lo -MD -MP -MF .deps/mpih-mul1-asm.Tpo -c
mpih-mul1-asm.S -fno-common -DPIC -o .libs/mpih-mul1-asm.o
mpih-mul1-asm.S:43:9: error: invalid alignment value
 .align 1<<(5)
         ^
make[2]: *** [mpih-mul1-asm.lo] Error 1

--

-- 
VideoLAN
Konstantin Pavlov
http://www.videolan.org
Mobile: +7 926 165 45 31
Skype: cryothresh
Twitter:  <at> cryothresh
_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel <at> gnupg.org
http://lists.gnupg.org/mailman/listinfo/gcrypt-devel
Dmitry Eremin-Solenikov | 23 Mar 21:18 2014
Picon

Parameters/gcryctl to digest algorithms?

Hello,

I'm trying to extend GOST R 34.11-94 support in libgcrypt.
The problem is a selection of S-box to be used in compression function.
Currently algo is limited to the S-Box defined in the standard itself.

Initially I have hacked a version supporting CryptoPro S-Box (as required
by RFC4357) just by introducing another algorithm using that s-box.
However after looking at Ukrainian (DSTU) standards (order #114 dating
12.06.2007), I decided that it might be not so good idea. That order
defines several more s-boxes, with at least one of them used for
digest calculation. I can add another algo for that s-box, however I fear
that it would be an overkill. I was also thinking about reusing
flags part of md_open() call, but also couldn't come up with a good
enough solution.

What would be your thoughts?

--

-- 
With best wishes
Dmitry
Stephan Mueller | 19 Mar 08:25 2014
Picon

[PATCH v3 0/7] SP800-90A Deterministic Random Bit Generator

Hi,

the following set of patches against the current GIT development tree of
libgcrypt implements the SP800-90A DRBG and integrates it with libgcrypt.

Changes v2:

 * reorganizing DRBG code to make it leaner
 * steamlining user interface

Thanks to Rafael Aquini for comments.

Stephan Mueller (8):
  SP800-90A Deterministic Random Bit Generator
  Compile DRBG
  Function definitions of interfaces for random.c
  Invoke DRBG from common libgcrypt RNG code
  Function definitions for gcry_control callbacks
  DRBG specific gcry_control requests
  User interface to DRBG

 Makefile.am            |    4 +-
 configure.ac           |    1 -
 random/Makefile.am     |    1 +
 random/drbg.c          | 2257 +++++++++++++++++++++++++++++++++++++++++++++++++++
 random/rand-internal.h |    9 +
 random/random.c        |   33 +-
 random/random.h        |    4 +-
 src/gcrypt.h.in        |  157 +++-
 src/global.c           |    9 +
(Continue reading)

by Werner Koch | 13 Mar 12:06 2014
Picon

[git] GCRYPT - branch, master, updated. libgcrypt-1.6.0-60-g50aeee5

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "The GNU crypto library".

The branch, master has been updated
       via  50aeee51a0b1a09dd9fff2bb71749a816fe7a791 (commit)
      from  5a8e1504bf8a2ffbc018be576dea77b685200444 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 50aeee51a0b1a09dd9fff2bb71749a816fe7a791
Author: Werner Koch <wk <at> gnupg.org>
Date:   Thu Mar 13 12:06:55 2014 +0100

    tests: Print diagnostics for skipped tests.

    * tests/basic.c (show_note): New.
    (show_md_not_available):
    (show_old_hmac_not_available):
    (show_mac_not_available):
    (check_digests): Remove USE_foo cpp tests from the test table.  Call
    show_md_not_available if algo is not available.
    (check_hmac): Likewise.
    (check_mac): Likewise.

    Signed-off-by: Werner Koch <wk <at> gnupg.org>

(Continue reading)

Dmitry Eremin-Solenikov | 12 Mar 19:10 2014
Picon

[PATCH] Limit digest checks to enabled algorithms

* tests/basic.c (check_digests): put #ifdef USE_xxx around checks to
  disable checks for algorithms being compiled out.

Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov <at> gmail.com>
---
The actual error was triggered by md2 algo which is disabled by default.
 tests/basic.c | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

diff --git a/tests/basic.c b/tests/basic.c
index 0eb0f77..ebfe5ee 100644
--- a/tests/basic.c
+++ b/tests/basic.c
 <at>  <at>  -3784,18 +3784,23  <at>  <at>  check_digests (void)
     const char *expect;
   } algos[] =
     {
+#ifdef USE_MD2
       { GCRY_MD_MD2, "",
         "\x83\x50\xe5\xa3\xe2\x4c\x15\x3d\xf2\x27\x5c\x9f\x80\x69\x27\x73" },
       { GCRY_MD_MD2, "a",
         "\x32\xec\x01\xec\x4a\x6d\xac\x72\xc0\xab\x96\xfb\x34\xc0\xb5\xd1" },
       {	GCRY_MD_MD2, "message digest",
         "\xab\x4f\x49\x6b\xfb\x2a\x53\x0b\x21\x9f\xf3\x30\x31\xfe\x06\xb0" },
+#endif
+#ifdef USE_MD4
       { GCRY_MD_MD4, "",
 	"\x31\xD6\xCF\xE0\xD1\x6A\xE9\x31\xB7\x3C\x59\xD7\xE0\xC0\x89\xC0" },
       { GCRY_MD_MD4, "a",
 	"\xbd\xe5\x2c\xb3\x1d\xe3\x3e\x46\x24\x5e\x05\xfb\xdb\xd6\xfb\x24" },
(Continue reading)


Gmane