Hint from @gniibe: gpg --with-colons --list-config curve is a workaround.
So it still should be documented and made accessible from a non-esoteric, non-internal way. ;)
Feed All Stories
Apr 16 2018
Apr 16 2018
• aheinecke added a parent task for T3889: GpgOL: Window management does not work well in OL 2010: T3899: Gpg4win 3.1.1.
• aheinecke added a subtask for T3899: Gpg4win 3.1.1: T3889: GpgOL: Window management does not work well in OL 2010.
bernhard updated subscribers of T3906: A way to list the supported ECC curves.
• werner added a comment to T3906: A way to list the supported ECC curves.
gpg --with-colons --list-config curve | cut -d: -f3- |awk 'BEGIN{RS=";"};{print $0}'• werner added a comment to T3906: A way to list the supported ECC curves.
• aheinecke committed rW8fd7462cc92f: Add note about missing mkportable file (authored by • aheinecke).
Add note about missing mkportable file
Add libkf5crash to mkportable
tinkerwolf added a comment to T3381: dirmngr won't start on Windows 10 with admin level account.
Did that help any?
Apr 15 2018
Apr 15 2018
PaSch closed T3905: The COM add-ins "C:\Program Files (x86)\Gpg4win\bin_64\gpgol.dll" is not loaded after Outlook 2016 x64 is restarted. as Resolved.
You can close the report.
I'm working with a restricted user and I installed gpg4win-3.1.0 with admin rights, probably didn't work so well.
• werner committed rG3b1ee413a65b: build: New target "release" to automate the release process. (authored by • werner).
build: New target "release" to automate the release process.
Apr 14 2018
Apr 14 2018
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.
@gouttegd : setting only-urandom at the distro level problematic due to two factors:
catenacyber added a comment to T3900: Memory leak in check_sig_and_print.
You are welcome :-) I did not know about that 39-Arigato
ccharabaruk added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.
I've been working with one of Microsoft's developers on a temporary tool that should bridge the connection between named pipes and the Unix sockets emulation used by gpg-agent but things appear to trip up with sending the nonce. From the position of the tool, the nonce value is successfully sent (send returns 16), but never seems to be picked up by gpg-agent. Instead both gpg-agent and the bridge sit there until whatever tool is using them (I test using ssh-add -l) is terminated, at which point gpg-agent immediately spits up the message
Apr 13 2018
Apr 13 2018
gouttegd added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.
@dkg : Can’t this be solved at the distribution level? I assume the packager/maintainer for Libgcrypt on a given distribution should know whether the getrandom syscall is available on said distribution, so he could install a /etc/gcrypt/random.conf file with the only-urandom option.
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.
Werner wrote:
we already use the getrandom system call if it is available
bernhard updated the task description for T3904: Clarify suggestion for diskperf.
• aheinecke committed rW182c35bec475: Link 3.1.0 release announcement mails (authored by • aheinecke).
Link 3.1.0 release announcement mails
• werner added a comment to T3781: ECC encryption key on-card generation broken.
Neither Brainpool nor NIST curves make any sense unless there is an organizational policy requirement. Thus the --expert requirement is the Right Thing (tm).
• werner renamed T3655: Suggest possible choices instead to error out on a typo from "futuredefault" ( from --quick-gen-key) yields "Unknown elliptic curve" to Suggest possible choices instead to error out on a typo.
core: Tweak STATUS_FAILURE handling.
• aheinecke closed T3854: Multiple file decryption only saves one file, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke added a comment to T3886: attachments can't be removed.
( Apart from the part that was moved out to T3895 )
• aheinecke closed T3886: attachments can't be removed, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3882: gpgol does not decrypt mails send by Evolution, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3885: GpgOL: Malformed S/MIME mails when Exchange 2016 is used, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
• aheinecke closed T3884: Erroneous warning message when re-sending signed message + sending fails and locks GpgOL, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
• aheinecke closed T3884: Erroneous warning message when re-sending signed message + sending fails and locks GpgOL as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3839: Trustdb corrupted after fresh install of Gpg4win, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3875: Sending signed mail fails repeatedly, a subtask of T3864: Gpg4win-3.1.0 Release blocker, as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3865: Kleopatra crashes again in Gpg4win 3.1.0 beta 38, a subtask of T3864: Gpg4win-3.1.0 Release blocker, as Resolved.
• aheinecke closed T3853: GpgOL: S/MIME + Exchange 2016 Can lead to 550 5.6.0 M2MCVT.StorageError.Exeption , a subtask of T3742: Gpg4win 3.1.0, as Resolved.
• aheinecke closed T3853: GpgOL: S/MIME + Exchange 2016 Can lead to 550 5.6.0 M2MCVT.StorageError.Exeption as Resolved.
3.1.0 is released and this issue is to our knowledge fixed.
• aheinecke closed T3853: GpgOL: S/MIME + Exchange 2016 Can lead to 550 5.6.0 M2MCVT.StorageError.Exeption , a subtask of T3864: Gpg4win-3.1.0 Release blocker, as Resolved.
• aheinecke closed T3863: GpgOL: 3.1.0 Beta might send unencrypted mail even if crypto was selcted, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
• aheinecke closed T3863: GpgOL: 3.1.0 Beta might send unencrypted mail even if crypto was selcted, a subtask of T3864: Gpg4win-3.1.0 Release blocker, as Resolved.
• aheinecke added a comment to T3863: GpgOL: 3.1.0 Beta might send unencrypted mail even if crypto was selcted.
3.1.0 is released and this issue is to our knowledge fixed.
3.1.0 is released.
• aheinecke closed T3864: Gpg4win-3.1.0 Release blocker, a subtask of T3742: Gpg4win 3.1.0, as Resolved.
Update website for 3.1.0
swdb: Add Gpg4win 3.1.0
• gniibe added a comment to T3900: Memory leak in check_sig_and_print.
Thanks again. Good catch.
In Japanese 39 sounds like "Thank You!", that's indeed appropriate to your report. :-)
• gniibe committed rGf747b8f07343: g10: Fix memory leak in check_sig_and_print. (authored by • gniibe).
g10: Fix memory leak in check_sig_and_print.
Post release version bump
Update NEWS for todays release
• aheinecke committed rWa5e64ba2e76d: Add patch to fix libgpg-error build (authored by • aheinecke).
Add patch to fix libgpg-error build
• gniibe committed rE792877a08ca7: doc: Fix yat2m build for cross compilation. (authored by • gniibe).
doc: Fix yat2m build for cross compilation.
• aheinecke reassigned T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access from • aheinecke to • werner.
Werner it would be great if you could look into this. This is currently my most annoying 2.1. regression. Especially with auto-key-locate it is unintuitive when the Firewall question pops up and appears to come out of nowhere (e.g. adding recipients in GpgOL or in Kleopatra).
• aheinecke claimed T3896: Latest GPG signed/encoded mail in Inbox and any X.509 signed message can't be moved to folder.
I think you are running in the infamous T3459 "As long as the decrypted content of a crypto mail is loaded a mail can't be moved" You have to unselect the mail and then move it without opening it. E.g. by right clicking it. I know this is horrible and it's a major problem but I don't see how we can fix it in our architecture. As we replace the mail content with the decrypted stuff we have to prevent "Write" Events by Outlook. For Move if you block a write event, the move fails. But we don't have any idea in our addon when a write comes from a move. I spent a lot of time on this and have not yet found a good solution. But I think the workaround is kinda ok.
• aheinecke claimed T3897: GpgOL: Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails and error is not shown.
The Bug is here that the Error is not shown properly. In the log:
• aheinecke renamed T3897: GpgOL: Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails and error is not shown from Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails to GpgOL: Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails and error is not shown.
• gniibe renamed T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date) from GnuPG 2.1 cannot import secret keys from GnuPG secring.gpg directly (if it is expired by original expiration date) to GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date).
• gniibe added a comment to T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date).
I changed the title to express the problem.
• gniibe renamed T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date) from GnuPG 2.1 cannot import secret keys with missing primary key to GnuPG 2.1 cannot import secret keys from GnuPG secring.gpg directly (if it is expired by original expiration date).
• gniibe added a comment to T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date).
Thanks for the script.
I confirmed that secring.gpg is not updated when importing key with updated expiration date, by GPG1.
So, for GPG2, it is expired key.
• gniibe added a comment to T3779: pinentry-curses broken when launched from tig that's launched from mc.
When a command is invoked from Midnight Commander, pseudo tty is used.
You can confirm that by typing tty and see the output of the command after exiting from mc and again typing tty.
• gniibe added a comment to T3878: not all calloc performed in libgcrypt covered by gcry_set_allocation_handler.
I am currently considering improvement of finalizer of libgcrypt, so, this matters.
Looking code, it would be better not to allocate and free the constant,
but use compile time constant data in .text section; Something like: const unsigned char ctr_null[DBRG_CTR_NULL_LEN].
Applied to STABLE-BRANCH-1-4, too.
• gniibe committed rG0f8fd95ab32a: g10: Push compress filter only if compressed. (authored by • gniibe).
g10: Push compress filter only if compressed.
• gniibe committed rGc31abf84659d: g10: Push compress filter only if compressed. (authored by • gniibe).
g10: Push compress filter only if compressed.
Good catch. Thanks. Fixed in STABLE-BRANCH-2-2.
• gniibe triaged T3759: Compile test fails, Libassuan v2.5.1 - Ubuntu 14.04 - fdpassing[7693]: assuan_pipe_connect failed: End of file as Normal priority.
Apparently, your /lib/x86_64-linux-gnu/libgpg-error.so.0 is not the one you installed (I mean, libgpg-error version 1.27).
You need to install your new version of libgpg-error so that it is usable.
Please check your ldconfig or LD_LIBRARY_PATH, etc.
Apr 12 2018
Apr 12 2018
dkg committed rG40fcddd3a98b: po: Update Spanish translation (authored by emma peel <emma.peel@aktivix.org>).
po: Update Spanish translation
Update gpgme to latest master
catenacyber added a comment to T3898: Memory leak in g10 handle_compressed.
Bug can be reproduced with gpg --verify leak-a702b3e5612e12163f056f41feb9e95a8b3836bb
web: Typo fix in recent news.
core: Tweak STATUS_FAILURE handling.
• werner committed rM478d1650bbef: core: For a failed verification return the sig's fingerprint. (authored by • werner).
core: For a failed verification return the sig's fingerprint.
• werner committed rG69c3e7acb744: gpg: Extend the "sig" record in --list-mode. (authored by • werner).
gpg: Extend the "sig" record in --list-mode.
• werner committed rG23a714598c24: gpg: Extend the ERRSIG status line with a fingerprint. (authored by • werner).
gpg: Extend the ERRSIG status line with a fingerprint.
• werner committed rMee8fad3ea0cb: tests: Avoid segv in run-verify due to Policy URLs (authored by • werner).
tests: Avoid segv in run-verify due to Policy URLs
• werner committed rMbdf7cd2e2843: tests: Add another check to gpg/t-verify. (authored by • werner).
tests: Add another check to gpg/t-verify.