• werner renamed T3806: error accessing ldaps key server (TLS vs. STARTTLS) from error accessing ldaps key server to error accessing ldaps key server (TLS vs. STARTTLS).

Apr 17 2018, 8:38 PM · Too Old, LDAP, dirmngr, Bug Report

• werner claimed T3908: Permission denied for root on other user's tty.

Apr 17 2018, 8:37 PM · pinentry

• werner triaged T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms as Normal priority.

Apr 17 2018, 8:34 PM · libgcrypt, gnupg

• werner closed T3842: OpenPGP Smart card V2.1 returns truncated RSA signatures if leading bytes of signature are 0 as Invalid.

Apr 17 2018, 8:33 PM · Not A Bug, scd

• werner triaged T3815: tests fail in 2021 as Normal priority.

Apr 17 2018, 8:30 PM · qt, Python, gpgme, Bug Report

• werner assigned T3815: tests fail in 2021 to BenM.

Ben: We need to use a faked system time thing to make those tests more stable.

Apr 17 2018, 8:29 PM · qt, Python, gpgme, Bug Report

• werner triaged T3801: gpg --import cannot display user ID as High priority.

Apr 17 2018, 8:26 PM · gnupg (gpg23)

• werner triaged T3782: `gpg --sign-key` has prompt implies attempting to sign revoked User IDs even though it won't. as Normal priority.

Apr 17 2018, 8:25 PM · Feature Request, gnupg

• werner closed T3774: Failure to decrypt AEAD-encrypted files in some rare cases as Resolved.

Apr 17 2018, 8:24 PM · gnupg, Bug Report

• werner closed T3764: AES-GCM bug for len(IV) != 96 as Resolved.

I backported the fix for 1.8.3.

Apr 17 2018, 8:23 PM · libgcrypt, Bug Report

• werner triaged T3734: Extract signature key ID with gpgme as Normal priority.

Apr 17 2018, 8:22 PM · gpgme, Feature Request

• werner triaged T3722: gpg "No name" error as Normal priority.

Apr 17 2018, 8:21 PM · dns

• werner triaged T3719: List keys in colon-separated format, i.e. make --list-only respect --with-colons as Normal priority.

The semantics of --list-only are not well defined. Needs some overhaul.

Apr 17 2018, 8:20 PM · gnupg, Feature Request

• werner closed T3408: keccak_permute_32.h : error: 'asm' operand requires impossible reload as Resolved.

Cherry-picked this for 1.8.3.

Apr 17 2018, 8:14 PM · libgcrypt, Bug Report

• werner committed rC22db6237de00: Make BMI2 inline assembly check more robust (authored by jukivili).

Make BMI2 inline assembly check more robust

Apr 17 2018, 8:13 PM

• werner triaged T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch as Normal priority.

Apr 17 2018, 8:08 PM · Support, Documentation

• werner removed a project from T3491: FIPS-enabled libgcrypt traps gnome-keyring daemon in an infinite loop: Bug Report.

Apr 17 2018, 8:07 PM · libgcrypt

• werner triaged T3491: FIPS-enabled libgcrypt traps gnome-keyring daemon in an infinite loop as Low priority.

FIPS rules changed anyway and thus more rework will be needed anyway. I keep this open at low priorirty.

Apr 17 2018, 8:06 PM · libgcrypt

• werner closed T3499: make check fails if --with-agent-pgm is used as Invalid.

This is a build system setup problem with standard solutions.

Apr 17 2018, 8:04 PM · Bug Report

• werner triaged T3517: dirmngr: retry without SRV due to buggy routers as High priority.

An option to ignore SRV records would also be good for debugging. Thus I raised the priority and truned this into a feature request.

Apr 17 2018, 8:03 PM · Feature Request, dns, dirmngr

• werner closed T3546: ERR 219 on --refresh-keys / --send-keys /... as Invalid.

@Beiri22: It was my fault to to tell you to use scdaemon.conf. The correct conf file is of course dirmngr.conf. However, with @BenM comments I don't think that it is a bug at all. I am thus closing this; please feel free to re-open if we were wrong

Apr 17 2018, 8:00 PM · dns, Bug Report

• werner triaged T3659: pinentry falls back to curses on wayland as Normal priority.

Then please set DISPLAY ;-)

Apr 17 2018, 7:55 PM · Restricted Project, Wayland, Feature Request, pinentry

• werner set the icon for Wayland to Tag.

Apr 17 2018, 7:54 PM

• werner triaged T3716: gpg: signing failed: Inappropriate ioctl for device for Thunderbird 52.4.0, gnupg-2.1.20, enigmail-1.9.8.3 for PGP encryption/decryption over emails. as Normal priority.

Do you have a chance to try with a more recent pinentry; ie. 1.10 ? This may give better diagnostics.
Another thing I would suggest is to debug the invocation of pinentry: Put

Apr 17 2018, 7:51 PM · Enigmail, Bug Report

• werner triaged T3817: make tls certificate problems more understandable as Wishlist priority.

Apr 17 2018, 7:38 PM · dirmngr

• werner triaged T3914: Integration with oss-fuzz as Normal priority.

Thanks for the description and the patch. I know what fuzzing is and GnuPG underwent quite some public and non-public fuzzing already. You may want to check with Hanno Böck to see how fuzzing can be done with gpg.

Apr 17 2018, 7:26 PM · Feature Request

catenacyber added a comment to T3914: Integration with oss-fuzz.

Sorry myself.
I will try to be clearer :

Apr 17 2018, 6:19 PM · Feature Request

• werner committed rCbbf88f0e9d48: AES-KW: fix in-place encryption (authored by smueller_chronox.de).

AES-KW: fix in-place encryption

Apr 17 2018, 5:57 PM

• werner committed rCa0e016e29409: mpi: Fix for buidling for MIPS64 with Clang (authored by • werner).

mpi: Fix for buidling for MIPS64 with Clang

Apr 17 2018, 5:54 PM

• werner committed rC06fdc074eb29: hmac: Use xtrymalloc. (authored by • gniibe).

hmac: Use xtrymalloc.

Apr 17 2018, 5:54 PM

• werner committed rCe1695a8f6ca1: random: Don't assume that _WIN64 implies x86_64 (authored by Martin Storsjö <martin@martin.st>).

random: Don't assume that _WIN64 implies x86_64

Apr 17 2018, 5:54 PM

• werner committed rC4e11e9d98818: Improve constant-time buffer compare (authored by jukivili).

Improve constant-time buffer compare

Apr 17 2018, 5:54 PM

• werner committed rC0da4a237661c: random: Protect another use of jent_rng_collector. (authored by • gniibe).

random: Protect another use of jent_rng_collector.

Apr 17 2018, 5:54 PM

• werner committed rC1900853f2aee: doc: Clarify the value range of the use-rsa-e parameter. (authored by • werner).

doc: Clarify the value range of the use-rsa-e parameter.

Apr 17 2018, 5:54 PM

• werner committed rCc114ffd6da83: doc: fix double "See" in front of reference (authored by jukivili).

doc: fix double "See" in front of reference

Apr 17 2018, 5:54 PM

• werner committed rC0a391b259adc: Fix incorrect counter overflow handling for GCM (authored by jukivili).

Fix incorrect counter overflow handling for GCM

Apr 17 2018, 5:54 PM

• werner committed rCe7ae0ae243c8: mpi: Fix for buidling for MIPS64 with Clang (authored by • werner).

mpi: Fix for buidling for MIPS64 with Clang

Apr 17 2018, 5:54 PM

catenacyber added a comment to T3913: left shift of negative value in iobuf.c.

Ok, thanks for the reply

Apr 17 2018, 5:48 PM · Bug Report

loader added a comment to T3915: Allow building with Clang on MIPS64.

Thank you :)

Apr 17 2018, 5:27 PM · libgcrypt, Bug Report

• werner added a comment to T3915: Allow building with Clang on MIPS64.

Thanks. I only now noticed that this is the same as we already use for 32 bit MIPS. I have no more questions. Will push to master and the 1.8 branch.

Apr 17 2018, 5:24 PM · libgcrypt, Bug Report

• werner closed T3913: left shift of negative value in iobuf.c as Invalid.

That is all intended. You can always create broken messages which don't result in _one_ clear error code.

Apr 17 2018, 5:15 PM · Bug Report

loader added a comment to T3915: Allow building with Clang on MIPS64.

Clang doesn't support the "h" inline asm constraint and the C version of umul_ppmm() works on MIPS64.

Apr 17 2018, 5:11 PM · libgcrypt, Bug Report

• werner added a comment to T3914: Integration with oss-fuzz.

Sorry, I do not understand your request. Please describe what you want; linking to some arbitrary external sites is not sufficient.

Apr 17 2018, 5:09 PM · Feature Request

• werner triaged T3915: Allow building with Clang on MIPS64 as Normal priority.

Apr 17 2018, 3:55 PM · libgcrypt, Bug Report

• werner added a comment to T3915: Allow building with Clang on MIPS64.

Your patch indicates that all clang versions for MIPS64 support this feature. Is my reading correct?

Apr 17 2018, 3:55 PM · libgcrypt, Bug Report

loader created T3915: Allow building with Clang on MIPS64.

Apr 17 2018, 2:53 PM · libgcrypt, Bug Report

• werner committed rM01435da498af: core: Extend decryption result with symkey_algo. (authored by • werner).

core: Extend decryption result with symkey_algo.

Apr 17 2018, 1:56 PM

catenacyber created T3914: Integration with oss-fuzz.

Apr 17 2018, 1:35 PM · Feature Request

• werner placed T3354: gpgme only builds against two versions of python at once up for grabs.

Apr 17 2018, 12:48 PM · Python, gpgme, Bug Report

• werner committed rM3589da0500f1: core: New keyword --file for OpenPGP recpstring. (authored by • werner).

core: New keyword --file for OpenPGP recpstring.

Apr 17 2018, 12:47 PM

• werner closed T3325: Allow encryption/signing in GPGME using a specified subkey as Resolved.

With the recpstring feature in 1.11 this is now possible because the args are passed verbatim to gpg.

Apr 17 2018, 12:44 PM · gpgme

catenacyber added a comment to T3913: left shift of negative value in iobuf.c.

With this example, the problem happens at
a->size |= iobuf_get (chain) << 8;
iobuf_get (chain)returns -1 and -1 << 8 is not well defined.

Apr 17 2018, 11:37 AM · Bug Report

• werner triaged T3912: generate_keypair() in g10/keygen.c seems unclear as Low priority.

Apr 17 2018, 11:29 AM · Documentation, gnupg (gpg22)

• werner added a comment to T3913: left shift of negative value in iobuf.c.

Sorry, I can replicate this with current 2.2 nor with master (on amd64 Linux):

Apr 17 2018, 11:27 AM · Bug Report

• werner closed T3831: Extend GPGME's offline mode to the OpenPGP engine as Resolved.

Implemented in gpgme 1.11.0 if gpg >= 2.1.23 is used.

Apr 17 2018, 11:14 AM · gpgme, Feature Request

• werner committed rMc143ab692c7f: core: For OpenPGP let offline mode disable dirmngr. (authored by • werner).

core: For OpenPGP let offline mode disable dirmngr.

Apr 17 2018, 11:13 AM

catenacyber created T3913: left shift of negative value in iobuf.c.

Apr 17 2018, 11:00 AM · Bug Report

• werner triaged T3471: gpgme decryptverify indicating wrongly an error. as Normal priority.

Apr 17 2018, 10:43 AM · Not A Bug, gnupg, Bug Report

• werner closed T3451: gpgme should report whether a given User ID is marked as "primary" or not. as Wontfix.

Apr 17 2018, 10:39 AM · gpgme, Feature Request

• werner triaged T3813: GPGME error: "invalid crypto engine" in the MSYS2 version as Low priority.

We never tried to build gpgme with MSYS2 and I would also say this is not supported. A wild guess is that this mixes platform specific code.

Apr 17 2018, 10:37 AM · Python, gpgme, Bug Report

• werner renamed T3813: GPGME error: "invalid crypto engine" in the MSYS2 version from GPGME error: invalid crypto engine to GPGME error: "invalid crypto engine" in the MSYS2 version.

Apr 17 2018, 10:34 AM · Python, gpgme, Bug Report

• werner closed T3892: python: Fix crash by leaving struct members intact as Resolved.

To attach a file use the cloud-with-arrow icon in the edit toolbox.

Apr 17 2018, 10:31 AM · gpgme, Bug Report

• werner committed rMbbfa7c42337b: python: Fix crash by leaving struct members intact (authored by 4tmuelle).

python: Fix crash by leaving struct members intact

Apr 17 2018, 10:30 AM

• werner closed T3526: Missing function to calculate wkdhash as Wontfix.

Apr 17 2018, 10:22 AM · Feature Request, gpgme

• werner closed T3775: enable mixed hidden/non-hidden recipients during encryption as Resolved.

1.11 features a set of extended encryption functions which may optionally take a string as key specifications. In contrast to the array of key objects this string is a linefeed delimited list of key specifications which are passed verbatim to gpg. For OpenPGP a keyword feature is supported. For example the string

Apr 17 2018, 10:20 AM · gpgme, Feature Request

• werner committed rM4bba3b8e2c35: core: Allow for --hidden keyword in OpenPGP recpstrings. (authored by • werner).

core: Allow for --hidden keyword in OpenPGP recpstrings.

Apr 17 2018, 10:11 AM

• werner committed rM86efba2be270: core: New encryption flag GPGME_ENCRYPT_WANT_ADDRESS. (authored by • werner).

core: New encryption flag GPGME_ENCRYPT_WANT_ADDRESS.

Apr 17 2018, 9:48 AM

• werner committed rMa1f76b3b54b7: core: Add extended versions of the encrypt functions. (authored by • werner).

core: Add extended versions of the encrypt functions.

Apr 17 2018, 9:02 AM

Apr 16 2018

dkg committed rG21b2e88a7e6c: po: correct attribution for Spanish translation (authored by emma peel <emma.peel@aktivix.org>).

po: correct attribution for Spanish translation

Apr 16 2018, 10:01 PM

dkg committed rGacd6d5ff7436: po: more updates to Spanish translation (authored by emma peel <emma.peel@aktivix.org>).

po: more updates to Spanish translation

Apr 16 2018, 10:01 PM

dkg committed rGa5290dace7f8: po: correct label tags in Polish translation (authored by emma peel <emma.peel@aktivix.org>).

po: correct label tags in Polish translation

Apr 16 2018, 10:01 PM

dkg committed rGe12475429578: po: correct label tags in Finnish translation (authored by emma peel <emma.peel@aktivix.org>).

po: correct label tags in Finnish translation

Apr 16 2018, 10:01 PM

dkg created T3912: generate_keypair() in g10/keygen.c seems unclear.

Apr 16 2018, 9:52 PM · Documentation, gnupg (gpg22)

powerman added a comment to T3908: Permission denied for root on other user's tty.

Just tested 1.1.0 - no difference. BTW, check references issues, they contain strace output and mention why this happens: dropped root capabilities to ignore file permissions.

Apr 16 2018, 6:08 PM · pinentry

gouttegd closed T3748: GPA is stuck if keyring is too big and trust-model is tofu+pgp as Resolved.

Thanks @werner for applying the patch. Closing here, since I have been using that patch for several weeks now without ever encountering the bug again.

Apr 16 2018, 3:41 PM · TOFU, gnupg (gpg22), gpa

• werner committed rD9e4065b60ff6: web: Add note about GPGME patch for GnuPG 2.2.6. (authored by • werner).

web: Add note about GPGME patch for GnuPG 2.2.6.

Apr 16 2018, 2:34 PM

• aheinecke added a comment to T3911: Kleopatra: Improve refresh-keys.

A reason we did not touch it in the past is that Ideally we don't want users to have to mess with refresh keys but would rather have this done automatically in the background by dirmngr.

Apr 16 2018, 2:15 PM · gpg4win, kleopatra

• aheinecke created T3911: Kleopatra: Improve refresh-keys.

Apr 16 2018, 2:12 PM · gpg4win, kleopatra

• aheinecke created T3910: Kleopatra: Direct way to WKD Lookup a key.

Apr 16 2018, 2:04 PM · Restricted Project, kleopatra

• aheinecke added a comment to T3907: Internal error when encrypting to cacert certificate.

I wonder if CACert intentionally sabotages X509 / CMS.

Apr 16 2018, 1:39 PM · Bug Report, S/MIME, gpg4win

• werner added a comment to T3908: Permission denied for root on other user's tty.

Would you be able to test with pinentry 1.1.0 which has a few things to make debugging easier and is also what I am testing against. To check what permissions are wronf I would suggest to run under strace.

Apr 16 2018, 12:47 PM · pinentry

• werner committed rGPA069e354d8265: Add a User ID notebook page. (authored by • werner).

Add a User ID notebook page.

Apr 16 2018, 12:33 PM

• werner committed rGPA38aeb4b18890: Load the secret keyring before the public one. (authored by gouttegd).

Load the secret keyring before the public one.

Apr 16 2018, 12:33 PM

• aheinecke created T3909: Gpg4win Kompendium: Update Keyserver setup documentation.

Apr 16 2018, 12:03 PM · Documentation, gpg4win

bernhard added a comment to T3904: Clarify suggestion for diskperf.

Got the question about this note from a user (in a internal email) and I see the problem that users do not have enough information to decide this. They do not know what the consequences of this note are (and suspect it to be the cause of error of they see it together with other problems). So to me it is more than a 'wish' as it will generate questions and leaves users in a situation where they cannot progress by their own in most of the situations.

Apr 16 2018, 12:00 PM · Windows, libgcrypt

• werner triaged T3904: Clarify suggestion for diskperf as Wishlist priority.

Apr 16 2018, 11:41 AM · Windows, libgcrypt

• werner added a comment to T3904: Clarify suggestion for diskperf.

It is not an error or even a warning but just a NOTE. Thus the user should decide. it is not even translated and most systems this is enabled anyway.

Apr 16 2018, 11:41 AM · Windows, libgcrypt

powerman created T3908: Permission denied for root on other user's tty in the S1 Public space.

Apr 16 2018, 11:38 AM · pinentry

• aheinecke added a parent task for T3876: Kleopatra: Clipboard actions should have shortcuts: T3899: Gpg4win 3.1.1.

Apr 16 2018, 11:19 AM · gpg4win, kleopatra

• aheinecke added a subtask for T3899: Gpg4win 3.1.1: T3876: Kleopatra: Clipboard actions should have shortcuts.

Apr 16 2018, 11:19 AM · gpg4win