Mailing List Archive: 1 year and 1 day

1 year and 1 day

Dec 23, 1998, 10:16 AM

Post #1 of 6 (403 views)

... after the very first release of GnuPG I have just released 0.9.

This is a big step in the numbering but not as huge as some vendors
do it :-) The reason is that I want to make clear that GnuPG has
grown up and we are now going to fix the bugs to prepare a stable 1.0
version.

Noteworthy changes in version 0.9.0
-----------------------------------

* --export does now only exports rfc2440 compatible keys; the
old behavious is available with --export-all.
Generation of v3 ElGamal (sign and encrypt) keys is not longer
supported.

* Fixed the uncompress bug.

* Rewrote the rndunix module. There are two environment variables
used for debugging now: GNUPG_RNDUNIX_DBG give the file to write
debugging information (use "-" for stdout) and if GNUPG_RNDUNIX_DBGALL
is set, all programs which are only tried are also printed.

* New option --escape-from-lines to "dash-escape" "From " lines to
prevent mailers to change them to ">From ". This is not enabled by
default because it is not in compliance with rfc2440 - however, you
should turn it on.

And here are the major points from TODO
---------------------------------------

Bugs
----
* clearsig: keep lineendings as they are. Remember that trailings
blanks are not hashed. Funny: pgp263in works fine even with
a source file with CR,LF but GnuPG and pgp263in has problems
if the clearsign has been created by pgp263ia.
Needs more investigation - anyone?

Important
----------
* Check revocation and expire stuff. PLEASE: THIS MUST BE TESTED!

* Check calculation of key validity. PLEASE: IT IS IMPORTED THAT
THIS GET TESTED.

* It has been reported that lockfiles are not removed in all cases.
cleanup is done with atexit() and all signals trigger exit() -
anything wrong with this?

* I noticed, that we sometimes have only 3 items in a trustrecord, but
a next pointer ro more records - check wehther the reuse code really
works. Maybe this is the reason for the "Hmmm public key lost"

Needed
------
* remove more "Fixmes"

* Replace Blowfish by Twofish and add the new encrypted packet typ
which has a MACing option (append SHA1 hash to the plaintext and
encrypt this all) - We need an identifier for Twofish to put this
one into the cipher preferences.

Get GnuPG from the usual places:

ftp://ftp.gnupg.org/pub/gcrypt/gnupg-0.9.0.tar.gz (945k)
ftp://ftp.gnupg.org/pub/gcrypt/diffs/gnupg-0.9.0.diff.gz (196k)

or use one of the mirrors:

http://www.gnupg.org/mirrors.html

Currently ftp.gnupg.org is the same as ftp.guug.de and www.gnupg.org
redirects to the well known ULURL(*) so there is no need to update
your bookmarks.

Merry Christmas,

Werner

(*) Ugly Long URL

Re: 1 year and 1 day [ In reply to ]

Dec 23, 1998, 3:09 PM

Post #2 of 6 (405 views)

>>>>> "Werner" == Werner Koch "1 year and 1 day"
>>>>> Wed, 23 Dec 1998 18:16:07 +0100

Werner> ... after the very first release of GnuPG I have just
Werner> released 0.9.

Making check in checks
make[2]: Entering directory `/home/jamsrc/gnupg-0.9.0/checks'
../g10/gpgm --yes --dearmor -o ./pubring.gpg ./pubring.asc
../g10/gpgm --yes --dearmor -o ./secring.gpg ./secring.asc
../g10/gpgm --yes --dearmor -o ./plain-1 ./plain-1o.asc
../g10/gpgm --yes --dearmor -o ./plain-2 ./plain-2o.asc
../g10/gpgm --yes --dearmor -o ./plain-3 ./plain-3o.asc
../g10/gpgm --yes --dearmor -o ./pubring.pkr ./pubring.pkr.asc
../g10/gpgm --yes --dearmor -o ./secring.skr ./secring.skr.asc
../tools/mk-tdata 500 >data-500
../tools/mk-tdata 9000 >data-9000
../tools/mk-tdata 32000 >data-32000
../tools/mk-tdata 80000 >data-80000
echo timestamp >./prepared.stamp
make check-TESTS
make[3]: Entering directory `/home/jamsrc/gnupg-0.9.0/checks'
gpg (GnuPG) 0.9.0
Copyright (C) 1998 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.

Supported algorithms:
Cipher: 3DES, CAST5, BLOWFISH, BLOWFISH160
Pubkey: ELG-E, DSA, ELG
Hash: MD5, SHA1, RIPEMD160, TIGER
PASS: version.test
PASS: mds.test
gpg: ./trustdb.gpg: trust-db created
PASS: decrypt.test << gave C-c Cc after several minutes of inactivity
(../g10/gpg --homedir . --keyring ./pubring.pkr --secret-keyring ./secring.skr -o y --yes ./plain-1-pgp.asc) failed
gpg: NOTE: secret key 2E5FA4F4 is NOT protected.
gpg: NOTE: secret key 439F02CA is NOT protected.
gpg: waiting for lock (hold by 13169) ...
[[ 2364 lines deleted]]

gpg: Interrupt caught ... exiting
FAIL: decrypt-dsa.test
PASS: sigs.test
<< gave C-c C-c again
[jam@athene gnupg-0.9.0]$ (../g10/gpg --homedir . --keyring ./pubring.pkr --secret-keyring ./secring.skr -s -o x --yes -u pgp5 plain-1) failed
gpg: NOTE: secret key 2E5FA4F4 is NOT protected.
gpg: NOTE: secret key 439F02CA is NOT protected.
gpg: waiting for lock (hold by 13169) ...
[[ 1243 lines deleted ]]

gpg: Interrupt caught ... exiting
FAIL: sigs-dsa.test
PASS: encrypt.test
<< I give up, it's just sitting there

There seems to be no 13169 process

/home/jam/src/gnupg-0.9.0/checks:
total 418
drwxr-xr-x 2 jam jam 2048 Dec 23 16:53 .
-rw-r--r-- 1 jam jam 11 Dec 23 15:36 .#lk.athene.jamux.com.13194
-rw-r--r-- 1 jam jam 11 Dec 23 16:28 .#lk.athene.jamux.com.13703
-rw-r--r-- 1 jam jam 11 Dec 23 16:53 .#lk.athene.jamux.com.13999
drwxr-xr-x 14 jam jam 1024 Dec 23 15:03 ..

That's it.

jam

Re: 1 year and 1 day [ In reply to ]

Dec 26, 1998, 6:47 AM

Post #3 of 6 (404 views)

>>>>> "jam" == John A Martin "Re: 1 year and 1 day "
>>>>> Wed, 23 Dec 1998 17:09:41 -0500

>>>>> "Werner" == Werner Koch "1 year and 1 day"
>>>>> Wed, 23 Dec 1998 18:16:07 +0100

Werner> ... after the very first release of GnuPG I have just
Werner> released 0.9.

jam> Making check in checks
jam> make[2]: Entering directory `/home/jamsrc/gnupg-0.9.0/checks'

[[ much stuff leading to perpetual "gpg: waiting for lock
(hold by 13169) ..." ]]

It looks like the fault has something to do with 'trustdb' and
'trustdb.lock' in the checks directory, if I have spelt the file names
correctly from memory. However, no amount of my futzing with those
files has produced a successful check.

At this point I'm beginning to view 'make check' as being somewhat
hateful if not downright evil because it seems rather troublesome when
something goes awry. For example I saw a handful of processes running
a couple of days after I had thought I had aborted a 'make check' and
some were replaced by others immediately after being killed. Also, it
is not obvious how to run individual tests or some tests and not
others.

This is gcc 2.7.2.1 and libc 5.3.12.

jam

Re: 1 year and 1 day [ In reply to ]

Dec 27, 1998, 3:38 AM

Post #4 of 6 (394 views)

"John A. Martin" <jam@jamux.com> writes:

> [[ much stuff leading to perpetual "gpg: waiting for lock
> (hold by 13169) ..." ]]

remove the "lock-once" in checks/defs.inc where options is created.

> something goes awry. For example I saw a handful of processes running
> a couple of days after I had thought I had aborted a 'make check' and

Any help is is greatly appreciated.

> is not obvious how to run individual tests or some tests and not
> others.

$ cd checks
$ srcdir=. ./sometest.test

or

$ srcdir=. show_cmds=1 ./sometest.test

to see the commands.

Re: 1 year and 1 day [ In reply to ]

Dec 27, 1998, 3:41 AM

Post #5 of 6 (405 views)

Stainless Steel Rat <ratinox@peorth.gweep.net> writes:

> 1083c1083
> < "Comment: For info see www.gnupg.org");
> ---
> > "Comment: For info see www.gnupg.org\n");

Ooops, This is more than cosmetic.

Workaround is to use "--comment "my comment string""

Thanks,

Werner

Re: 1 year and 1 day [ In reply to ]

Dec 27, 1998, 7:39 AM

Post #6 of 6 (393 views)

>>>>> "Werner" == Werner Koch "Re: 1 year and 1 day"
>>>>> Sun, 27 Dec 1998 11:38:09 +0100

Werner> "John A. Martin" <jam@jamux.com> writes:
>> [[ much stuff leading to perpetual "gpg: waiting for lock (hold
>> by 13169) ..." ]]

Werner> remove the "lock-once" in checks/defs.inc where options is
Werner> created.

Works for me. Thanx.

jam