Page MenuHome GnuPG
Feed Advanced Search

Oct 31 2016

aheinecke added a comment to T2812: TOFU very slow on Windows.

Sry I accidentally posted an incomplete message with T2812 (aheinecke on Oct 31 2016, 05:08 PM / Roundup) (I used itsalltext
and postet a wrong version).

I wanted to write:

On the command line it's looking good. The second keylist is also down to 5
seconds on Windows.

But used from gpgme it still takes about a minute. If you add --with-colons and
slow down system calls by using strace you can also see this on GNU/Linux:

~> time strace gpg2 --no-default-keyring \

--keyring /usr/share/keyrings/debian-keyring.gpg \
--no-auto-check-trustdb --trust-model pgp \
--with-colons -k >/dev/null 2>&1

2.26s user 0.40s system 102% cpu 2.601 total
~> time strace gpg2 --no-default-keyring \

--keyring /usr/share/keyrings/debian-keyring.gpg \
--no-auto-check-trustdb --trust-model tofu \
--with-colons -k >/dev/null 2>&1

21.43s user 24.47s system 108% cpu 42.451 total

On Windows it's:

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--trust-model tofu --list-keys > $null
}
TotalSeconds : 7.0945596

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--with-colons --trust-model tofu --lis
t-keys > $null }
TotalSeconds : 56.0914993

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--with-colons --trust-model pgp --list
-keys > $null }
TotalSeconds : 1.4855689

I'm also still seeing decryption blocked on Windows while a keylist
--with-colons runs.

I wonder if we should generally check out performance of reading the keyring on
Windows
mabye we could genrally improve it so that it's better cached by Windows.

Oct 31 2016, 5:11 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
neal added a comment to T2812: TOFU very slow on Windows.

7a634e48b13c5d5d295b8fed9b429e1b2109a333 should fix the contention issue.
Please let me know if you are still having issues.

Oct 31 2016, 3:17 AM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
sdl_nexiom.net added a comment to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.

That's awesome aheinecke! Honestly wasn't sure if this issue would ever get much
attention. Thanks for the effort in making Gpg4win a more secure product!

Oct 31 2016, 2:18 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32

Oct 30 2016

neal added a comment to T2812: TOFU very slow on Windows.

eec365a & 614ca00 fixed the performance issue for me here.

us@chu:~/neal/work/gpg/test (GnuPGTest)$ rm tofu.db
us@chu:~/neal/work/gpg/test (GnuPGTest)$ time gpg --no-default-keyring --keyring
/usr/share/keyrings/debian-keyring.gpg -k >/dev/null
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
gpg: Note: signatures using the MD5 algorithm are rejected

real 0m45.569s
user 0m34.316s
sys 0m10.872s
us@chu:~/neal/work/gpg/test (GnuPGTest)$ time gpg --no-default-keyring --keyring
/usr/share/keyrings/debian-keyring.gpg -k >/dev/null
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
gpg: Note: signatures using the MD5 algorithm are rejected

real 0m2.306s
user 0m2.284s
sys 0m0.020s
us@chu:~/neal/work/gpg/test (GnuPGTest)$ time gpg --no-auto-check-trustdb
--trust-model pgp --no-default-keyring --keyring
/usr/share/keyrings/debian-keyring.gpg -k >/dev/null
gpg: NOTE: THIS IS A DEVELOPMENT VERSION!
gpg: It is only intended for test purposes and should NOT be
gpg: used in a production environment or with production keys!
gpg: please do a --check-trustdb
gpg: Note: signatures using the MD5 algorithm are rejected

real 0m2.261s
user 0m2.248s
sys 0m0.012s

Oct 30 2016, 7:12 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
neal added a comment to T2812: TOFU very slow on Windows.

The first time a key is encountered, we need to do a number of checks that
require reading its keyblock. These include checking whether the key is signed
by an ultimately trusted key. So, this cost is pretty much unavoidable, but it
should be a one time thing.

That other gpg processes stall is surprising, and I will investigate this. I
went to a fair amount of trouble to make sure that that doesn't happen in practice.

That the cost is higher on subsequent runs is a bit disconcerting. I will also
investigate this.

Oct 30 2016, 5:21 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU

Oct 28 2016

aheinecke claimed T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.
Oct 28 2016, 10:57 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
aheinecke added a comment to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.

GpgOL is built with DEP and and ASLR now. Need to enable this for GpgEX and some
other parts of Gpg4win, too. So not yet fully resolved but I keep it in mind.

Oct 28 2016, 10:57 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32

Oct 25 2016

aheinecke added a project to T2812: TOFU very slow on Windows: TOFU.
Oct 25 2016, 2:23 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
ticho added projects to T2814: Fallback to CSIDL_PROGRAM_FILESX86 doesn't work: Windows, Windows 64, Bug Report, gpgme.
Oct 25 2016, 10:50 AM · gpgme, Bug Report, Windows 64, Windows

Oct 24 2016

aheinecke added a comment to T2812: TOFU very slow on Windows.

Under GNU/Linux you can compare the strace output to see that there is a problem
even if it's quick because it is cached:

~> time strace gpg2 --no-auto-check-trustdb --trust-model pgp -k 2>&1 |wc -l
33383
strace gpg2 --no-auto-check-trustdb --trust-model pgp -k 2>&1 1.04s user 0.45s
system 104% cpu 1.433 total
wc -l 0.02s user 0.16s system 12% cpu 1.433 total

~> time strace gpg2 --no-auto-check-trustdb --trust-model tofu -k 2>&1 |wc -l
558528
strace gpg2 --no-auto-check-trustdb --trust-model tofu -k 2>&1 9.60s user 8.47s
system 106% cpu 17.022 total
wc -l 0.60s user 2.34s system 17% cpu 17.022 total

This is with my normal pubring that contains 790 public keys.

Oct 24 2016, 2:14 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU

Oct 21 2016

aheinecke added projects to T2812: TOFU very slow on Windows: Windows, Windows 32, gnupg, Bug Report.
Oct 21 2016, 12:09 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
aheinecke updated subscribers of T2812: TOFU very slow on Windows.
Oct 21 2016, 12:09 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU

Oct 17 2016

shtrom added a comment to T2167: Unplugging USB Smartcard/Yubikey causes problems with scdaemon.

I run in the same issue as PRab whenever I suspend or hibernate my machine. The
machine as Broadcom BCM5880 with a smart-card reader, so I cannot unplug it.
Quickest workaround is to kill/restart scdaemon.

Is there/could there be a command that could be sent to scdaemon via the agent
so a reset could be triggered? It should be easy enough to line that up as part
of the resume scripts.

Oct 17 2016, 11:17 AM · gnupg (gpg22), Restricted Project, patch, Windows 64, scd, Windows, Windows 32, Bug Report

Sep 30 2016

werner added projects to T2731: es_poll not supported under W32: Windows, gnupg (gpg22), Windows 32, gpgrt, Bug Report.
Sep 30 2016, 10:32 AM · Bug Report, gpgrt, Windows 32, gnupg (gpg22), Windows
werner updated subscribers of T2731: es_poll not supported under W32.
Sep 30 2016, 10:32 AM · Bug Report, gpgrt, Windows 32, gnupg (gpg22), Windows

Sep 28 2016

werner added a project to T2110: Gpgsm 2.1 external key search gives duplicated results: S/MIME.
Sep 28 2016, 9:46 AM · gnupg (gpg22), S/MIME, Bug Report, gpg4win, Windows, Windows 32
JochenSaalfeld added a comment to T2448: dirmngr fails to load crl when imported manually.

It is now patched in gpg4win and I think aheinecke pushed the patch also to linux.

The Bug iteself has been resolved with that patch, but is yet unreleased.

Sep 28 2016, 7:30 AM · gnupg, Windows 32, Windows, Bug Report
JochenSaalfeld closed T2448: dirmngr fails to load crl when imported manually as Resolved.
Sep 28 2016, 7:30 AM · gnupg, Windows 32, Windows, Bug Report
JochenSaalfeld added a project to T2448: dirmngr fails to load crl when imported manually: Unreleased.
Sep 28 2016, 7:30 AM · gnupg, Windows 32, Windows, Bug Report

Sep 19 2016

JochenSaalfeld added a comment to T2448: dirmngr fails to load crl when imported manually.

I'm on T2448 (aheinecke on Sep 05 2016, 02:14 PM / Roundup).

Sep 19 2016, 11:28 AM · gnupg, Windows 32, Windows, Bug Report
bernhard added a comment to T2448: dirmngr fails to load crl when imported manually.

Jochen, is T2448 (aheinecke on Sep 05 2016, 02:14 PM / Roundup) something you could do?

Sep 19 2016, 10:26 AM · gnupg, Windows 32, Windows, Bug Report
bernhard changed Version from 2.1.11 to 2.1.15 on T2448: dirmngr fails to load crl when imported manually.
Sep 19 2016, 10:26 AM · gnupg, Windows 32, Windows, Bug Report
bernhard reassigned T2448: dirmngr fails to load crl when imported manually from werner to JochenSaalfeld.
Sep 19 2016, 10:26 AM · gnupg, Windows 32, Windows, Bug Report

Sep 5 2016

aheinecke removed a project from T2448: dirmngr fails to load crl when imported manually: Restricted Project.
Sep 5 2016, 2:14 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2448: dirmngr fails to load crl when imported manually.

Jochen: I'd rather you (manually) patch the dirmngr tarball included in
gpg4win-2 and create a testinstaller and try that one out.

I found the Problem in this issue and tested that the attached patch solves the
problem, yes It would have worked on GNU/Linux as the "b" has no effect there.
Finding out since when the problem existed appears moot to me and you would have
to check in dirmngr's SVN and likely always existed.

But maybe there are additional problems (as this is imo a very exotic feature)
so it would probably make sense to test it again on Windows before preparing the
next stable Gpg4win release.

Sep 5 2016, 2:14 PM · gnupg, Windows 32, Windows, Bug Report
bernhard added a comment to T2448: dirmngr fails to load crl when imported manually.

Jochen, can you please find out:
a) Does this still work on GNU/Linux?
b) Did this work with elder Gpg4win version? With binary search you

should find out qickley when this broke.
Sep 5 2016, 12:28 PM · gnupg, Windows 32, Windows, Bug Report

Aug 29 2016

JochenSaalfeld added a comment to T2448: dirmngr fails to load crl when imported manually.

this also affects version 2.1.15 (latest gpg4win beta) and 1.1.1 (latest gpg4win
stable)

Aug 29 2016, 9:59 AM · gnupg, Windows 32, Windows, Bug Report

Aug 26 2016

bernhard added a comment to T2448: dirmngr fails to load crl when imported manually.

Okay, if this transfers line endings because of the textmode read, it will
depend on the contents of the CRL in question. This explains why the defect was
not seen in earlier testing.

And pem does not work for this (I guess and tried on a GNU system).
It is okay that pem does not work, because this is a rarely used function I think.

Aug 26 2016, 9:21 AM · gnupg, Windows 32, Windows, Bug Report

Aug 25 2016

aheinecke lowered the priority of T2448: dirmngr fails to load crl when imported manually from High to Normal.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added projects to T2448: dirmngr fails to load crl when imported manually: Windows, Restricted Project, Windows 32.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke updated subscribers of T2448: dirmngr fails to load crl when imported manually.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke assigned T2448: dirmngr fails to load crl when imported manually to werner.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report

Aug 18 2016

werner renamed T2024: "Unknown IPC command" in many situations (gpg4win/gnupg conflict?) from "Unknown IPC command" in many situations to "Unknown IPC command" in many situations (gpg4win/gnupg conflict?).
Aug 18 2016, 12:56 PM · Windows 32, Windows, Bug Report, gnupg

Aug 12 2016

ralfbergs added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

Interesting...

The Kaspersky issue is about Outlook 2007... Is that supposed bug really already
THAT old?!

Aug 12 2016, 10:05 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke added projects to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried: gpg4win, Windows 32.
Aug 12 2016, 6:24 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

This could be a nasty one. The crash occurs after the data structure of the mail
was unloaded in outlook and GpgOL already completely detached it's event
handlers from the object and frees up the memory. GpgOL is not executing any
code when the crash occurs. That outlook blames GpgOL is likely because it jumps
into an invalid memory region that was allocated for GpgOL but is no longer
valid. This shouldn't happen though as we have already successfully unregistered
all our callbacks.

So I currently think that somehow when using send from explorer outlook through
some side effect / bug does a callback into GpgOL's event handling code which
was already destroyed. I'll try to confirm that theory on monday by keeping the
event handlers around after the unload event occurred.

Also does not appear that we are the first ones with that problem:
https://forum.kaspersky.com/index.php?showtopic=225375

:-/

Aug 12 2016, 6:24 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
ralfbergs added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

Thanks! :-)

Aug 12 2016, 4:18 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

Thanks for the report. I am able to reproduce the problem.

Looking into it.

Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke lowered the priority of T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried from Unbreak Now! to High.
Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke claimed T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.
Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows

Jul 25 2016

justus added a comment to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.

Ah, I misunderstood your problem. In the future, please paste all program interactions in one chunk
in the right order. We did merge some changes related to exporting of secret keys, so it may very
well be solved by that.

Thanks for caring :)

Jul 25 2016, 11:02 AM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
justus closed T2355: --import of a keypair together with --batch results in no pinentry and i/o errors as Resolved.
Jul 25 2016, 11:02 AM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry

Jul 22 2016

dranft added a comment to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.

I think the problem is that your key export fails, because you pointed
--homedir at the (presumably) empty directory "%tmp%\_tempKeyring".

The export did not use any filter and tried to export a key as can be seen in
Msg8313 "error receiving key from agent"
The import itself also stated no errors as it can be seen in T2355 (dranft on May 12 2016, 03:00 PM / Roundup), but this
imported secret key cannot be used (or exported) anymore.
Also important: This is no longer reproducible in 2.1.14 (which might be enough
to set the bug to fixed)

Jul 22 2016, 3:11 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
justus claimed T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.
Jul 22 2016, 2:48 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
justus added a comment to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.

I don't believe this demonstrates a bug.

I think the problem is that your key export fails, because you pointed --homedir at the (presumably)
empty directory "%tmp%\_tempKeyring". This leads to the not very helpful error message about the
eof. If the export were successful, gpg would have written the key to stdout.

For reference, here is what I tried. First GNUPGHOME points to a home with the key I want to export:

    $ echo $GNUPGHOME
    /tmp/tmp.T7I4M9RIc3
    $ g10/gpg --list-keys alpha
    gpg: please do a --check-trustdb
    pub   dsa1024 1999-03-08 [SCA]
          A0FF4590BB6122EDEF6E3C542D727CC768697734
    uid           [ unknown] Alfa Test (demo key) <alfa@example.net>
    uid           [ unknown] Alpha Test (demo key) <alpha@example.net>
    uid           [ unknown] Alice (demo key)
    sub   elg1024 1999-03-08 [E]

You need some kind of pinentry program, because you may be asked for the current passphrase or an
export passphrase:

    $ cat $GNUPGHOME/gpg-agent.conf
    pinentry-program /usr/bin/pinentry-x11

Now export the key:

    $ g10/gpg --export-secret-keys alpha >/tmp/alpha.gpg

Now I create an empty home, and import the key in batch mode:

    $ export GNUPGHOME=$(mktemp -d)
    $ g10/gpg --batch --import /tmp/alpha.gpg
    gpg: keybox '/tmp/tmp.bL2caQmZri/pubring.kbx' created
    gpg: /tmp/tmp.bL2caQmZri/trustdb.gpg: trustdb created
    gpg: key 2D727CC768697734: public key "Alfa Test (demo key) <alfa@example.net>" imported
    gpg: key 2D727CC768697734: secret key imported
    gpg: Total number processed: 3
    gpg:               imported: 1
    gpg:       secret keys read: 3
    gpg:   secret keys imported: 2

Could you please check if that works for you?

Jul 22 2016, 2:48 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry

Jul 13 2016

ralfbergs added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

To make it clear: I'm not even trying to sign or encrypt, just send a plaintext
message with attachment also in the clear.

Jul 13 2016, 12:48 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
ralfbergs set Version to 1.4.1.5 on T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.
Jul 13 2016, 12:16 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
ralfbergs added projects to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried: Windows, gpgol, Windows 64, Bug Report.
Jul 13 2016, 12:16 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows

Jul 5 2016

aheinecke closed T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office as Resolved.
Jul 5 2016, 2:47 PM · Windows 64, Windows, Feature Request, gpgol
aheinecke added a comment to T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office.

Gpg4win 2.3.1 and 2.3.2 included 64 bit versions of gpgol.

Jul 5 2016, 2:47 PM · Windows 64, Windows, Feature Request, gpgol

May 27 2016

werner lowered the priority of T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL from High to Normal.
May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
werner added a comment to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.

Duplicate of T2171

May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
werner removed a project from T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL: Bug Report.
May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
werner added a project to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL: Duplicate.
May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
werner added a comment to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.

You can now. Thus is not a bug but a feature request.

Note that we do not use Microsoft compilers but use gcc and in cross build
environment.

May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
werner added a project to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL: Feature Request.
May 27 2016, 9:54 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32

May 23 2016

sdl_nexiom.net added projects to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL: Windows 32, Windows, gpg4win, gpgol, Windows 64, Bug Report.
May 23 2016, 4:48 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32

May 12 2016

dranft renamed T2355: --import of a keypair together with --batch results in no pinentry and i/o errors from --import of a keypair together with --batch and --homedir results in no pinentry and i/o errors to --import of a keypair together with --batch results in no pinentry and i/o errors.
May 12 2016, 3:07 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
dranft added a comment to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.

PS: forget the --homedir thing, it is even reprodicable in the default folder in
%appdata%.

May 12 2016, 3:07 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
dranft added a comment to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.

Sorry, forgot my import cmdline:

C:\Program Files (x86)\GNU\GnuPG\2.1.12\bin>gpg --batch --homedir
%tmp%\_tempKeyring --import "P:\2EEC2B65A2B4B3EF.sec.asc"
gpg: Die "Keybox" `C:/Users/ranftd/AppData/Local/Temp/_tempKeyring/pubring.kbx'
wurde erstellt
gpg: C:/Users/ranftd/AppData/Local/Temp/_tempKeyring/trustdb.gpg: trust-db erzeugt
gpg: Schlüssel A2B4B3EF: Öffentlicher Schlüssel "Daniel Ranft (Giegerich &
Partner GmbH)" importiert
gpg: Schlüssel A2B4B3EF: "Daniel Ranft (Giegerich & Partner GmbH)" nicht geändert
gpg: Schlüssel A2B4B3EF: geheimer Schlüssel importiert
gpg: Anzahl insgesamt bearbeiteter Schlüssel: 4
gpg: importiert: 1
gpg: unverändert: 1
gpg: gelesene geheime Schlüssel: 3
gpg: unveränderte geh. Schl.: 2
gpg: keine ultimativ vertrauenswürdigen Schlüssel gefunden

May 12 2016, 3:00 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
dranft set Version to 2.1.12 on T2355: --import of a keypair together with --batch results in no pinentry and i/o errors.
May 12 2016, 2:58 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry
dranft added projects to T2355: --import of a keypair together with --batch results in no pinentry and i/o errors: pinentry, Windows 32, gnupg, Windows, gnupg (gpg21), gpgagent, Bug Report.
May 12 2016, 2:58 PM · Bug Report, gpgagent, gnupg (gpg21), Windows, gnupg, Windows 32, pinentry

May 10 2016

werner added a project to T2338: gpa "no keys found": Support.
May 10 2016, 8:45 AM · Support, Windows 32, Windows, Bug Report, gpa

May 3 2016

werner lowered the priority of T2338: gpa "no keys found" from Unbreak Now! to Normal.
May 3 2016, 12:50 PM · Support, Windows 32, Windows, Bug Report, gpa
werner added projects to T2338: gpa "no keys found": Windows, Windows 32.
May 3 2016, 12:50 PM · Support, Windows 32, Windows, Bug Report, gpa
werner removed a project from T2338: gpa "no keys found": In Progress.
May 3 2016, 12:50 PM · Support, Windows 32, Windows, Bug Report, gpa
werner added a comment to T2338: gpa "no keys found".

Please explain the version number you entered and from where you downloaded GPA

May 3 2016, 12:50 PM · Support, Windows 32, Windows, Bug Report, gpa

Mar 29 2016

werner removed a project from T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office: Bug Report.
Mar 29 2016, 1:22 PM · Windows 64, Windows, Feature Request, gpgol
werner added a comment to T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office.

Actually we are working on a 64 bit version.

Mar 29 2016, 1:22 PM · Windows 64, Windows, Feature Request, gpgol
werner added a project to T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office: Feature Request.
Mar 29 2016, 1:22 PM · Windows 64, Windows, Feature Request, gpgol
werner lowered the priority of T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office from Unbreak Now! to Wishlist.
Mar 29 2016, 1:22 PM · Windows 64, Windows, Feature Request, gpgol

Mar 25 2016

RAnders00 added projects to T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office: Windows, Windows 64.
Mar 25 2016, 1:21 PM · Windows 64, Windows, Feature Request, gpgol
bernhard added a project to T2293: gpg-agent + smartcard not asking for PIN with PUTTY: Not A Bug.
Mar 25 2016, 11:36 AM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
bernhard added a comment to T2293: gpg-agent + smartcard not asking for PIN with PUTTY.

Thanks for testing 2.1 and for reporting the results.
Good to know that it works now.

Mar 25 2016, 11:36 AM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
bernhard closed T2293: gpg-agent + smartcard not asking for PIN with PUTTY as Resolved.
Mar 25 2016, 11:36 AM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
timtim added a comment to T2293: gpg-agent + smartcard not asking for PIN with PUTTY.

I have good news : gpg 2.1 rocks !
Problem solved and here is the solution :

As Sijie said, the "smartcard compatible" pageant was loading the SIG key and
the AUTH key.

Unfortunately, under gpg 2.0.x, when you export a public key and use gpg2ssh,
the output is the ssh key for the SIG key (and not the auth).

So when using gpg-agent, it was waiting for putty to request the AUTH key and
not the SIG key (as it should !). The "smartcard enabled" pageant was sending
the SIG key so it was working with it.

Now for the good part : with gpg 2.1, we can now natively use --export-ssh-key,
and this command export the AUTH key, so in the end, it works :)

Thank you everyone for the help, and I hope it can helps other people too !

Can we close this bug please ?

Regards

Mar 25 2016, 9:07 AM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg

Mar 24 2016

timtim added a comment to T2293: gpg-agent + smartcard not asking for PIN with PUTTY.

For history purpose, and trying to maximize information, I have been asked to post some part of the discussion I have
on the mailing list about this problem. Here it is :

I tried older version (of gpg4win) (which, at the time, worked for people with the
same setup as myself), but I can try new version too of course.

That is helpful, because development right now is concentrating more
on Gpg4win 3 with the new GnuPG 2.1 (to become 2.2) and this is where
gpg-agent and pinentry is handled slightly differently. So making sure that
it works with the new version is better for the future.

Ok, I installed gpg4win 3.0.0 BETA 128.
The problem stay the same, no pin is asked.

In the mean time, I tried this tool : http://smartcard-auth.de/ssh-en.html
It replace the pageant.exe that ships with putty. And it works. When I
log on the server with putty, I got asked for the PIN. So I think this
is not a problem with the smartcard or with keys. It seems that it's
only that gpg-agent doesn't trigger the pinentry.

I tried witht gpg-agent on another computer (fresh install) running Windows 7 x64, and
with another smartcard, same problem : no pinentry asked.

Mar 24 2016, 5:40 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
timtim added a comment to T2293: gpg-agent + smartcard not asking for PIN with PUTTY.

Yes gpg-agent is started before, I can see it in the process list (and even the scdaemon process).

In fact, pageant can't be started at the same time as gpg-agent (I suppose it share the same mutex because it
says "pageant is already running" when I try to start pageant while gpg-agent is already running).

Mar 24 2016, 5:33 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
werner updated subscribers of T2293: gpg-agent + smartcard not asking for PIN with PUTTY.
Mar 24 2016, 5:15 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
werner added a comment to T2293: gpg-agent + smartcard not asking for PIN with PUTTY.

Did you start gpg-agent before putty or pageant?

Mar 24 2016, 5:15 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
bernhard updated subscribers of T2293: gpg-agent + smartcard not asking for PIN with PUTTY.
Mar 24 2016, 2:26 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg
bernhard added projects to T2293: gpg-agent + smartcard not asking for PIN with PUTTY: Windows, gpg4win, gnupg (gpg20), Windows 64.
Mar 24 2016, 2:26 PM · Windows 64, gnupg (gpg20), Bug Report, gpg4win, Windows, Not A Bug, gnupg

Mar 17 2016

werner added a project to T2088: create revocation certificate on cp850 consoles [windows]: Won't Fix.
Mar 17 2016, 3:54 PM · Won't Fix, Bug Report, gnupg (gpg14), Windows, gnupg, Windows 32
werner closed T2088: create revocation certificate on cp850 consoles [windows] as Resolved.
Mar 17 2016, 3:54 PM · Won't Fix, Bug Report, gnupg (gpg14), Windows, gnupg, Windows 32
werner removed a project from T2088: create revocation certificate on cp850 consoles [windows]: Windows 64.
Mar 17 2016, 3:54 PM · Won't Fix, Bug Report, gnupg (gpg14), Windows, gnupg, Windows 32
werner added a comment to T2088: create revocation certificate on cp850 consoles [windows].

and there is no w64 version of 1.4

Mar 17 2016, 3:54 PM · Won't Fix, Bug Report, gnupg (gpg14), Windows, gnupg, Windows 32
werner added a comment to T2088: create revocation certificate on cp850 consoles [windows].

We won't fix such things for 1.4 (Windows)

Mar 17 2016, 3:54 PM · Won't Fix, Bug Report, gnupg (gpg14), Windows, gnupg, Windows 32

Mar 16 2016

PRab added a comment to T2167: Unplugging USB Smartcard/Yubikey causes problems with scdaemon.

I believe I have also seen this issue (or something very similar) on my Windows
7 64bit machine. I am running gpg 2.1.11. I hope this isn't redundant, but it
seems that I need to restart scdaemon anytime I unplug/replug my yubikey or
suspend/resume my computer.

Sometimes it doesn't recover even after restarting scdaemon. In those cases, I
am able to fix it by stopping scdaemon, removing the yubikey, starting scdaemon,
and finally reinserting the yubikey.

Mar 16 2016, 9:01 PM · gnupg (gpg22), Restricted Project, patch, Windows 64, scd, Windows, Windows 32, Bug Report

Feb 24 2016

aheinecke added a comment to T2135: Keyring locking on Windows broken.

I've tested it with pubring now too and it works.
Justus mentioned in jabber that he noticed some more errors after this patch in
the scheme tests. I've not tried them.

Feb 24 2016, 3:39 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner lowered the priority of T2135: Keyring locking on Windows broken from High to Normal.
Feb 24 2016, 2:24 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner added a comment to T2135: Keyring locking on Windows broken.

Okay, so I can backport this to 2.0 ?

Feb 24 2016, 2:24 PM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Feb 22 2016

aheinecke added a comment to T2135: Keyring locking on Windows broken.

Tested this with keybox and it appears to be working. When running a keylist
while importing the import holds for a bit and continues after the keylist.
Not tested this with keyring yet.

Feb 22 2016, 11:14 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32

Jan 29 2016

bernhard updated subscribers of T1801: GPG4win Outlook 2010 GPgol doesn't detect Kleopatra.
Jan 29 2016, 3:23 PM · Windows 32, Windows, Info Needed, Bug Report, gpgol
bernhard added a comment to T1801: GPG4win Outlook 2010 GPgol doesn't detect Kleopatra.

MDK7MX, did you retry ?

Jan 29 2016, 3:23 PM · Windows 32, Windows, Info Needed, Bug Report, gpgol

Jan 26 2016

werner added a project to T1624: Gpgtar fails when files have non ASCII characters: Restricted Project.
Jan 26 2016, 10:02 AM · gnupg, Windows 32, Windows, Bug Report
werner added a comment to T1624: Gpgtar fails when files have non ASCII characters.

I commited an adjusted patch for GnuPG 2.1 (3e50236).

Jan 26 2016, 10:02 AM · gnupg, Windows 32, Windows, Bug Report

Jan 15 2016

werner lowered the priority of T1624: Gpgtar fails when files have non ASCII characters from High to Normal.
Jan 15 2016, 9:57 AM · gnupg, Windows 32, Windows, Bug Report
werner added a project to T2135: Keyring locking on Windows broken: In Progress.
Jan 15 2016, 9:54 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner added a project to T2135: Keyring locking on Windows broken: backport.
Jan 15 2016, 9:54 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32
werner added a comment to T2135: Keyring locking on Windows broken.

I have pushed chnages to master to fix this problem. One drawback is that
during an import another process "gpg -k" may rarely see no keys at all. A full
fix would either require that we lock the keyrings during all read-only
operations, which would severely hit on the performance of all common
operations, or change the whole system to use a new key access daemon.

If this works the changes need to be backported to 2.0.

Jan 15 2016, 9:54 AM · Bug Report, gpg4win, Windows, gnupg, Windows 32