Page MenuHome GnuPG
Feed All Stories

Oct 25 2019

mgorny created T4728: GnuPG fails to connect to 127.0.0.1 when many domains are specified in /etc/hosts in the S1 Public space.
Oct 25 2019, 10:46 AM · gnupg24, gnupg (gpg23), dns, dirmngr
gniibe committed rC09df1e94fd2d: ecc: Don't need to remove 0x40 for SAFECURVE. (authored by gniibe).
ecc: Don't need to remove 0x40 for SAFECURVE.
Oct 25 2019, 4:35 AM
gniibe committed rC498ab6d9f2f8: ecc: Introduce new dialect: ECC_DIALECT_SAFECURVE. (authored by gniibe).
ecc: Introduce new dialect: ECC_DIALECT_SAFECURVE.
Oct 25 2019, 4:35 AM
gniibe committed rC75e189d2b0cf: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 25 2019, 4:35 AM
gniibe committed rCe63a02efa5b0: ecc: Use more descriptive name for variables. (authored by gniibe).
ecc: Use more descriptive name for variables.
Oct 25 2019, 3:53 AM
gniibe committed rC21c26481037c: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 25 2019, 3:12 AM
gniibe committed rC150aa1c6c819: ecc: Clean up X25519 and X448 support. (authored by gniibe).
ecc: Clean up X25519 and X448 support.
Oct 25 2019, 3:12 AM
gniibe committed rC8ac303ed6763: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 25 2019, 3:12 AM
gniibe committed rC050e0b4accfa: pubkey: Support a method to get data as an opaque MPI. (authored by gniibe).
pubkey: Support a method to get data as an opaque MPI.
Oct 25 2019, 3:12 AM
gniibe committed rCd5bdfe7d3ab4: ecc: Pass an opaque MPI directly to mpi_ec_mul_point. (authored by gniibe).
ecc: Pass an opaque MPI directly to mpi_ec_mul_point.
Oct 25 2019, 3:12 AM
gniibe committed rC2dfedafe08ac: ecc: Make _gcry_mpi_ec_mul_point friendly to X25519 computation. (authored by gniibe).
ecc: Make _gcry_mpi_ec_mul_point friendly to X25519 computation.
Oct 25 2019, 3:12 AM

Oct 24 2019

dkg reopened T4725: Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23 as "Open".

@werner, are you saying that gpgme is not fully supported for use with gpg 1.4?

Oct 24 2019, 9:22 PM · gpgme, Bug Report
dkg added a comment to T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).

@werner, you seem to be saying that -r does not imply "key lookups on remote services". Is that correct?

Oct 24 2019, 8:42 PM · gnupg (gpg22), wkd, Bug Report
dkg added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

There is a growing bit of popular lore in the GnuPG community that "when keyserver operations fail, you solve that problem with killall dirmngr." I believe this suggestion is potentially damaging (the long-running daemon may be in the middle of operations for a client that you don't know about), but i suspect it is circulating as advice because it resolves the situation outlined in this ticket. For whatever ephemeral reason, dirmngr gets stuck, and fails to notice that this situation has resolved itself.

Oct 24 2019, 5:39 PM · Feature Request, Keyserver, dirmngr
justus created T4727: GnuPG creates keys that it cannot use, likely related to AEAD.
Oct 24 2019, 2:35 PM · Bug Report
gniibe committed rC40eff0090933: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 24 2019, 4:59 AM
gniibe committed rCad8927f40169: ecc: Simplify _gcry_ecc_compute_public. (authored by gniibe).
ecc: Simplify _gcry_ecc_compute_public.
Oct 24 2019, 4:58 AM
gniibe committed rC8fce1027c253: ecc: Return an opaque MPI by _gcry_ecc_ec2os. (authored by gniibe).
ecc: Return an opaque MPI by _gcry_ecc_ec2os.
Oct 24 2019, 4:58 AM
gniibe committed rC3d5a05767b84: ecc: Fix handling of point representation in EdDSA. (authored by gniibe).
ecc: Fix handling of point representation in EdDSA.
Oct 24 2019, 4:58 AM
gniibe committed rC05a7d2f262bc: ecc: Support an opaque MPI handling in mpi_from_keyparam. (authored by gniibe).
ecc: Support an opaque MPI handling in mpi_from_keyparam.
Oct 24 2019, 4:58 AM
gniibe committed rC35c1faaea2b0: ecc: String constant fix. (authored by gniibe).
ecc: String constant fix.
Oct 24 2019, 4:58 AM
gniibe committed rC006e51cd83a1: ecc: Fix wrong handling of shorten PK bytes. (authored by gniibe).
ecc: Fix wrong handling of shorten PK bytes.
Oct 24 2019, 2:59 AM

Oct 23 2019

Laurent Montel <montel@kde.org> committed rLIBKLEOa7a5f8fc35b9: Make it compile without kf5 deprecated methods (authored by Laurent Montel <montel@kde.org>).
Make it compile without kf5 deprecated methods
Oct 23 2019, 2:26 PM
ringelkrat added a comment to T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).

This is a misunderstanding. The extraction of mail addresses is only doe for key lookups on remote services. Thus the -r case is as intended.

Oct 23 2019, 1:26 PM · gnupg (gpg22), wkd, Bug Report
werner added a comment to T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).

This is a misunderstanding. The extraction of mail addresses is only doe for key lookups on remote services. Thus the -r case is as intended.

Oct 23 2019, 11:35 AM · gnupg (gpg22), wkd, Bug Report
werner closed T4725: Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23 as Wontfix.

That seems to be gpg 1.4 which we do not fully support.

Oct 23 2019, 11:32 AM · gpgme, Bug Report
werner closed T4722: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes. as Spite.
Oct 23 2019, 11:31 AM · Bug Report
werner closed T4724: https://twitter.com/charleslewisni4/status/1051021429637025792?s=20 as Spite.
Oct 23 2019, 11:30 AM
gniibe committed rC8cc1ac270ff0: ecc: clean up. (authored by gniibe).
ecc: clean up.
Oct 23 2019, 11:28 AM
gniibe committed rCec7d3d9f780f: ecc: Make sure the size of bytes is same (2). (authored by gniibe).
ecc: Make sure the size of bytes is same (2).
Oct 23 2019, 11:00 AM
gniibe committed rCb280dbf75b99: ecc: Make sure the size of bytes is same. (authored by gniibe).
ecc: Make sure the size of bytes is same.
Oct 23 2019, 10:45 AM
justus added a comment to T4725: Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23.

Sure: https://gitlab.com/sequoia-pgp/openpgp-interoperability-test-suite/blob/master/src/gnupg.rs#L70

Oct 23 2019, 9:31 AM · gpgme, Bug Report
ringelkrat added a comment to T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).

Is this task maybe related to T1927?

Oct 23 2019, 8:07 AM · gnupg (gpg22), wkd, Bug Report
ringelkrat updated subscribers of T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).

Thank you @dkg for creating the bug report! I would like to glean the following information from the above mentioned discussion.

Oct 23 2019, 8:00 AM · gnupg (gpg22), wkd, Bug Report
gniibe closed T4723: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes. as Spite.
Oct 23 2019, 7:48 AM · Bug Report, gpg4win
gniibe committed rC113fe03bedde: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 23 2019, 5:17 AM
gniibe committed rC27e848666b4a: ecc: ECDH clean up for use of ec->nbits. (authored by gniibe).
ecc: ECDH clean up for use of ec->nbits.
Oct 23 2019, 5:12 AM
gniibe committed rCc5a7191c1bd1: ecc: Use opaque MPI for _gcry_ecc_mul_point. (authored by gniibe).
ecc: Use opaque MPI for _gcry_ecc_mul_point.
Oct 23 2019, 5:12 AM
gniibe committed rCbbe15758c893: ecc: Fix _gcry_ecc_mont_decodepoint for data by old implementation. (authored by gniibe).
ecc: Fix _gcry_ecc_mont_decodepoint for data by old implementation.
Oct 23 2019, 5:12 AM
dkg added a comment to T4725: Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23.

@justus can you provide an example of the gpgme code you're using that generates this weirdness?

Oct 23 2019, 3:43 AM · gpgme, Bug Report
dkg created T4726: auto-key-locate only works with raw e-mail addresses (not angle-brackets).
Oct 23 2019, 3:24 AM · gnupg (gpg22), wkd, Bug Report

Oct 22 2019

justus created T4725: Dubious filename in literal data packet when encrypting with GPGME/GnuPGv1.4.23.
Oct 22 2019, 1:23 PM · gpgme, Bug Report
Charles86 accepted rCe921ad5b3ad0: ecc: Add NAME member to struct mpi_ec_ctx_s..
Oct 22 2019, 12:28 PM
Charles86 accepted rC975de3879691: ecc: Fix for NBITS support..
Oct 22 2019, 12:27 PM
Charles86 created T4724: https://twitter.com/charleslewisni4/status/1051021429637025792?s=20 in the S1 Public space.
Oct 22 2019, 12:17 PM
Charles86 claimed T4723: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes..

Oct 22 2019, 12:15 PM · Bug Report, gpg4win
Charles86 created T4723: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes..
Oct 22 2019, 12:15 PM · Bug Report, gpg4win
Charles86 added a comment to T4722: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes..

https://twitter.com/charleslewisni4/status/1051021429637025792?s=20

Oct 22 2019, 12:13 PM · Bug Report
Charles86 awarded T4722: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes. a 100 token.
Oct 22 2019, 12:12 PM · Bug Report
Charles86 created T4722: Gmail by GoogleServer Error We're sorry, but Gmail is temporarily unavailable. We're currently working to fix the problem -- please try logging in to your account in a few minutes..
Oct 22 2019, 12:12 PM · Bug Report
gniibe committed rC13b9dcd65424: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 22 2019, 8:57 AM
gniibe committed rC82441bbb8290: ecc: Fix key generation for ECDH. (authored by gniibe).
ecc: Fix key generation for ECDH.
Oct 22 2019, 8:55 AM
gniibe committed rC89cc25994963: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 22 2019, 8:23 AM
gniibe committed rCc34e3e9257a2: Merge branch 'master' into gniibe/x448 (authored by gniibe).
Merge branch 'master' into gniibe/x448
Oct 22 2019, 8:23 AM
gniibe committed rC6d93812aa312: ecc: Fix debug output. (authored by gniibe).
ecc: Fix debug output.
Oct 22 2019, 8:23 AM
gniibe committed rC6a30a9a2cc48: ecc: Simplify using mpi_ec_t directly. (authored by gniibe).
ecc: Simplify using mpi_ec_t directly.
Oct 22 2019, 8:23 AM
gniibe committed rCe921ad5b3ad0: ecc: Add NAME member to struct mpi_ec_ctx_s. (authored by gniibe).
ecc: Add NAME member to struct mpi_ec_ctx_s.
Oct 22 2019, 8:23 AM
gniibe committed rC5415bc578080: ecc: Consolidate with _gcry_mpi_ec_internal_new. (authored by gniibe).
ecc: Consolidate with _gcry_mpi_ec_internal_new.
Oct 22 2019, 8:23 AM
gniibe committed rC975de3879691: ecc: Fix for NBITS support. (authored by gniibe).
ecc: Fix for NBITS support.
Oct 22 2019, 8:23 AM
gniibe committed rCc7b97ac9bdf9: ecc: Add new function _gcry_mpi_ec_internal_new. (authored by gniibe).
ecc: Add new function _gcry_mpi_ec_internal_new.
Oct 22 2019, 8:23 AM
gniibe committed rC488704be6e04: ecc: Add key generation support to mpi_ec_get_elliptic_curve. (authored by gniibe).
ecc: Add key generation support to mpi_ec_get_elliptic_curve.
Oct 22 2019, 8:23 AM
gniibe committed rCc2aa333dd88b: ecc: Support flags and debug print in _gcry_mpi_ec_internal_new. (authored by gniibe).
ecc: Support flags and debug print in _gcry_mpi_ec_internal_new.
Oct 22 2019, 8:23 AM
gniibe committed rC10b8cc280a53: ecc: Simplify ecc_encrypt_raw and ecc_decrypt_raw. (authored by gniibe).
ecc: Simplify ecc_encrypt_raw and ecc_decrypt_raw.
Oct 22 2019, 8:23 AM
gniibe committed rCa258ae728de6: ecc: Simply use unsigned int for cofactor, not MPI. (authored by gniibe).
ecc: Simply use unsigned int for cofactor, not MPI.
Oct 22 2019, 8:23 AM
gniibe committed rC61a051828253: ecc: More fixes for cofactor with PUBKEY_FLAG_PARAM. (authored by gniibe).
ecc: More fixes for cofactor with PUBKEY_FLAG_PARAM.
Oct 22 2019, 8:23 AM

Oct 21 2019

rjhansen committed rDf5e0951e3e4e: Modified the PGPNET email address to reflect its new home. (authored by rjhansen).
Modified the PGPNET email address to reflect its new home.
Oct 21 2019, 7:12 AM

Oct 19 2019

paz added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

On July, 19th, @werner wrote:

You need to wait a bit more.

Oct 19 2019, 8:21 PM · gnupg (gpg23), Feature Request

Oct 18 2019

JJworx added a comment to T4278: Signed mails not visible in Exchange web interface (owa).

Still unresolved...

Oct 18 2019, 10:52 AM · Not A Bug, gpgol, Bug Report, gpg4win
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

Or... it could be a feature, not bug, so that failure of -e -r someone can be examined by --locate-keys someone.

Oct 18 2019, 9:10 AM · Restricted Project, gnupg (gpg23)
gniibe committed rC579d5d6017d6: ecc: Simplify compute_keygrip. (authored by gniibe).
ecc: Simplify compute_keygrip.
Oct 18 2019, 4:25 AM
gniibe committed rC95cc9b8f4483: ecc: Clean up key generation code. (authored by gniibe).
ecc: Clean up key generation code.
Oct 18 2019, 2:56 AM
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

Let me clarify the point.

Oct 18 2019, 12:11 AM · Restricted Project, gnupg (gpg23)

Oct 17 2019

werner committed rG76d606d95dc1: doc: Typo fix for gpg.texi in desc of --local-sigs. (authored by werner).
doc: Typo fix for gpg.texi in desc of --local-sigs.
Oct 17 2019, 4:41 PM
Valodim added a comment to T4593: dirmngr should not apply Kristian's CA when fetching from a keyserver that is not `hkps.pool.sks-keyservers.net`.

GnuPG ships a non-PKI certificate, specifically to authenticate hkps.pool.sks-keyservers.net. Now due to an implementation detail, this has been shown to potentially lead to authentication of other domains by this certificate, if a maintainer changes the default keyserver via the DIRMNGR_DEFAULT_KEYSERVER variable in configure.ac. Now arguably, this variable isn't exposed via ./configure, so it's not "officially" configurable - but evidently maintainers do want to change it. A trivial one-line patch was supplied to change the unintended and potentially security-problematic behavior into the (I believe) obviously intended one.

Oct 17 2019, 12:23 PM · gnupg (gpg22), Bug Report, dirmngr
gniibe committed rGe2c2b0fb2d9b: gpg: More fix of get_best_pubkey_byname. (authored by gniibe).
gpg: More fix of get_best_pubkey_byname.
Oct 17 2019, 3:48 AM
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

I think that we should apply further change:

diff --git a/g10/getkey.c b/g10/getkey.c
index 077209415..1c337149c 100644
--- a/g10/getkey.c
+++ b/g10/getkey.c
@@ -1369,7 +1369,7 @@ get_best_pubkey_byname (ctrl_t ctrl, enum get_pubkey_modes mode,
     *retctx = NULL;
Oct 17 2019, 3:38 AM · Restricted Project, gnupg (gpg23)
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

I found more wrong cases of get_best_pubkey_byname.
For ranking results,
(1) It may return non-encryption primary key as the most relevant key, when its validity is higher.
(2) It may not select encryption primary key even if its creation time is newer.

Oct 17 2019, 2:32 AM · Restricted Project, gnupg (gpg23)
gniibe committed rG627a990f8e30: doc: Fix documentation about --locate-keys. (authored by gniibe).
doc: Fix documentation about --locate-keys.
Oct 17 2019, 2:32 AM
gniibe committed rG286d4c607574: gpg: Fix two other cases in get_best_pubkey_byname. (authored by gniibe).
gpg: Fix two other cases in get_best_pubkey_byname.
Oct 17 2019, 2:32 AM

Oct 16 2019

jukivili committed rC7e1383cfd43f: Fix building t-lock for WIN32 (authored by jukivili).
Fix building t-lock for WIN32
Oct 16 2019, 10:22 PM
jukivili committed rCf9d8b5a0369c: hash-common: avoid integer division to reduce call overhead (authored by jukivili).
hash-common: avoid integer division to reduce call overhead
Oct 16 2019, 10:22 PM
werner added a comment to T4713: Bug in get_best_pubkey_byname.

I also think this makes the most sense.

Oct 16 2019, 10:52 AM · Restricted Project, gnupg (gpg23)
gniibe added a comment to T4713: Bug in get_best_pubkey_byname.

In my opinion, --locate-key should locate encryption key.

Oct 16 2019, 9:08 AM · Restricted Project, gnupg (gpg23)
gniibe committed rGf2734381ae14: gpg: Fix get_best_pubkey_byname to consider the first match. (authored by gniibe).
gpg: Fix get_best_pubkey_byname to consider the first match.
Oct 16 2019, 9:04 AM

Oct 15 2019

rjhansen added a reverting change for rD841a985f2a22: October 2019 review. See discussion in GnuPG-Users.: rD6f9f2ca94823: Revert "October 2019 review. See discussion in GnuPG-Users.".
Oct 15 2019, 11:16 PM
rjhansen committed rD6f9f2ca94823: Revert "October 2019 review. See discussion in GnuPG-Users." (authored by rjhansen).
Revert "October 2019 review. See discussion in GnuPG-Users."
Oct 15 2019, 11:16 PM
rjhansen committed rDb514e66bad27: Revert "October 2019 review. See discussion in GnuPG-Users." (authored by rjhansen).
Revert "October 2019 review. See discussion in GnuPG-Users."
Oct 15 2019, 11:16 PM
rjhansen added a reverting change for rD1c23025c02e3: October 2019 review. See discussion in GnuPG-Users.: rDb514e66bad27: Revert "October 2019 review. See discussion in GnuPG-Users.".
Oct 15 2019, 11:16 PM
rjhansen committed rD1c23025c02e3: October 2019 review. See discussion in GnuPG-Users. (authored by rjhansen).
October 2019 review. See discussion in GnuPG-Users.
Oct 15 2019, 9:35 PM
rjhansen committed rD841a985f2a22: October 2019 review. See discussion in GnuPG-Users. (authored by rjhansen).
October 2019 review. See discussion in GnuPG-Users.
Oct 15 2019, 9:35 PM
pow added a comment to T4654: Gemalto Ezio Shield (CT710): CCID command failed: Parameter error at offset 7.

@gniibe oh, I see thanks for pointing out precisely main the problem. I will check the hardware supply chain RoHS 2002/95/EC

Oct 15 2019, 6:14 PM · scd, Restricted Project, Bug Report
werner changed the status of T4713: Bug in get_best_pubkey_byname from Testing to Open.

There are some problems with the definition of --locate-key. Further discussion required.

Oct 15 2019, 2:47 PM · Restricted Project, gnupg (gpg23)
werner triaged T4721: expose import filter through gpgme as Normal priority.
Oct 15 2019, 2:44 PM · Feature Request, gpgme
werner closed T4593: dirmngr should not apply Kristian's CA when fetching from a keyserver that is not `hkps.pool.sks-keyservers.net` as Wontfix.
Oct 15 2019, 2:43 PM · gnupg (gpg22), Bug Report, dirmngr
werner changed the status of T4665: gpg --delete-key of subkey leaves dangling subkey binding signature from Open to Testing.
Oct 15 2019, 2:41 PM · gnupg (gpg22), Bug Report
werner lowered the priority of T4665: gpg --delete-key of subkey leaves dangling subkey binding signature from Normal to Wishlist.
Oct 15 2019, 2:39 PM · gnupg (gpg22), Bug Report
werner committed rGd8052db74a0d: gpg: Also delete key-binding signature when deleting a subkey. (authored by werner).
gpg: Also delete key-binding signature when deleting a subkey.
Oct 15 2019, 2:38 PM
werner committed rGd1bc12d1b66e: gpg: Also delete key-binding signature when deleting a subkey. (authored by werner).
gpg: Also delete key-binding signature when deleting a subkey.
Oct 15 2019, 2:33 PM
gniibe committed rG2906636b929f: Revert "gpg: The first key should be in candidates." (authored by gniibe).
Revert "gpg: The first key should be in candidates."
Oct 15 2019, 1:54 PM
gniibe added a reverting change for rG66eb953f4380: gpg: The first key should be in candidates.: rG2906636b929f: Revert "gpg: The first key should be in candidates.".
Oct 15 2019, 1:54 PM