Page MenuHome GnuPG
Feed Advanced Search

Jul 15 2020

werner added a comment to T4854: gpgme 1.13.1: test suite is failing.

It might be related to T4257 - try with -j4 for now which is what I use for building.
For further investigations we need to enable tracing using

GPGME_DEBUG=8:gpgme.trc  make check
Jul 15 2020, 11:03 PM · gpgme, Bug Report
werner claimed T4310: GPGME: Add ssh export mode.
Jul 15 2020, 6:27 PM · gpgme (gpgme 1.23.x), Feature Request
werner moved T4578: python3 gpg module should offer an "encrypt" function that takes an email.message.EmailMessage and returns a new one from Backlog to Python stuff on the gpgme board.
Jul 15 2020, 4:55 PM · gpgme, Python, Feature Request
werner merged T4650: Kleopatra crashed with an application error (Windows) into T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.
Jul 15 2020, 4:53 PM · S/MIME, gpgme
werner merged task T4650: Kleopatra crashed with an application error (Windows) into T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.
Jul 15 2020, 4:53 PM · gpgme, kleopatra, Bug Report, gpg4win
werner added a comment to T4650: Kleopatra crashed with an application error (Windows).

Probably the same as T4257

Jul 15 2020, 4:52 PM · gpgme, kleopatra, Bug Report, gpg4win
werner moved T4820: gpgme's json test fails with gpg 2.2.19 from Backlog to QA for next release on the gpgme board.
Jul 15 2020, 4:46 PM · gpgme (gpgme 1.23.x), Bug Report
werner closed T4982: [PATCH] qt libraries should be linked with -fPIC instead of -fpic as Wontfix.

We can't do anything about it except for corner cases which we won't do right now. In case there will be an easy solution to help Debian please re-open this bug.

Jul 15 2020, 4:45 PM · Debian, gpgme
werner moved T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification from Backlog to For a future release on the gpgme board.
Jul 15 2020, 4:42 PM · S/MIME, gpgme
werner moved T4939: GPGME: Add KEYLIST_MODE_WITH_KEYGRIP from Backlog to QA for next release on the gpgme board.
Jul 15 2020, 4:40 PM · gpgme (gpgme 1.23.x)
werner added a comment to T4854: gpgme 1.13.1: test suite is failing.

Sorry, I can't replicate this

Jul 15 2020, 4:39 PM · gpgme, Bug Report
werner committed rMc8048bf8eb98: core: New keylist mode GPGME_KEYLIST_MODE_WITH_KEYGRIP. (authored by werner).
core: New keylist mode GPGME_KEYLIST_MODE_WITH_KEYGRIP.
Jul 15 2020, 4:36 PM
werner committed rM858909168298: core: Deprecate the non-working trustlist functions. (authored by werner).
core: Deprecate the non-working trustlist functions.
Jul 15 2020, 4:36 PM
werner closed T4834: gpgme library calls gpg with --list-trust-path as Resolved.

From 1.14.0 on these functions will return a Not Implemented error and the documentation has been removed.

Jul 15 2020, 4:36 PM · gpgme, Bug Report
werner edited projects for T4982: [PATCH] qt libraries should be linked with -fPIC instead of -fpic, added: Debian; removed Info Needed, Bug Report.
Jul 15 2020, 12:19 PM · Debian, gpgme
werner moved T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification from QA for next release to Backlog on the gpgme board.
Jul 15 2020, 12:18 PM · S/MIME, gpgme
werner added a comment to T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.

Its a year since I worked on the mentioned wait code change (wk/new-wait branch) and I more or less forgot about it. it will to risky to release that as 1.14 so this change and the fix to this bug needs to be postponed to 1.15. Sorry.

Jul 15 2020, 12:18 PM · S/MIME, gpgme

Jul 14 2020

werner committed rM32b80cf3c7d2: python: Workaround for a regression in GnuPG 2.2.21 (authored by werner).
python: Workaround for a regression in GnuPG 2.2.21
Jul 14 2020, 5:58 PM
werner closed T4991: gpgme: Fails to build with latest gpg-2.2.21 update as Resolved.
Jul 14 2020, 2:49 PM · gpgme, Bug Report
werner added a comment to T4991: gpgme: Fails to build with latest gpg-2.2.21 update.

I have also relaxed the test in gpgme for that GnuPG version.

Jul 14 2020, 2:49 PM · gpgme, Bug Report
werner committed rGc5ab1dcd543f: gpgsm: Make rsaPSS a compliant scheme in de-vs mode. (authored by werner).
gpgsm: Make rsaPSS a compliant scheme in de-vs mode.
Jul 14 2020, 12:31 PM
werner committed rG5fe3cdfc7646: gpgsm: Make rsaPSS a compliant scheme in de-vs mode. (authored by werner).
gpgsm: Make rsaPSS a compliant scheme in de-vs mode.
Jul 14 2020, 12:28 PM
werner added a comment to T4991: gpgme: Fails to build with latest gpg-2.2.21 update.

See T4897 for a patch to gnupg.

Jul 14 2020, 11:32 AM · gpgme, Bug Report
werner added a comment to T4897: Release GnuPG 2.2.21.

It turns out that a test case in GPGME fails with that version. This is due to a regression I introduced in the passphrase repetition code for symmetric encryption. This will be fixed with the next GnuPG version; in the meantime you may use the patch F1646254.

Jul 14 2020, 11:31 AM · gnupg (gpg22), Release Info
werner committed rG0a6af6dc1299: agent: Fix regression with --newsymkey in loopback mode. (authored by werner).
agent: Fix regression with --newsymkey in loopback mode.
Jul 14 2020, 11:06 AM
werner committed rG3e730c55e7d7: gpg: Reword warning about decryption w/o using a non-encrypt key. (authored by werner).
gpg: Reword warning about decryption w/o using a non-encrypt key.
Jul 14 2020, 11:06 AM
werner committed rGd9ea47f70284: agent: Fix regression with --newsymkey in loopback mode. (authored by werner).
agent: Fix regression with --newsymkey in loopback mode.
Jul 14 2020, 10:54 AM
werner closed T4979: enable-ssh-support in windows is broken. as Invalid.
Jul 14 2020, 10:32 AM · ssh, Duplicate, Bug Report

Jul 13 2020

werner triaged T4991: gpgme: Fails to build with latest gpg-2.2.21 update as High priority.

It is a pecularity of the test case. A new release is long overdue anyway, so please have a few days patience for a new release with a foxed test case.

Jul 13 2020, 1:44 PM · gpgme, Bug Report
werner triaged T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key') as Normal priority.

To change the expiration date, I would suggest to use

Jul 13 2020, 1:36 PM · FAQ, gnupg (gpg22)

Jul 10 2020

werner added a comment to T4991: gpgme: Fails to build with latest gpg-2.2.21 update.

Pretty please write a useful bug report; we need information on versions, OSes, compilers, any special environment, and all the steps you did to get the build failure. The configure run already prints a lot of useful information; you may want to extract them or provide a complete build log.

Jul 10 2020, 8:57 PM · gpgme, Bug Report
werner added a comment to T4951: Support point compression in Libgcrypt.

Creating is not that useful - we prefer modern curves anyway.

Jul 10 2020, 9:21 AM · Feature Request, libgcrypt
werner added a comment to T4951: Support point compression in Libgcrypt.

I think that retrieving a parameter in compressed format is all what we need as per API.

Jul 10 2020, 9:20 AM · Feature Request, libgcrypt

Jul 9 2020

werner added a comment to T4933: Incorrect expiration time of created subkey.

Because a few minutes don't matter. If you have the time to figure the reason out, please go ahead. It might be that we take the timestamp in the addkey case earlier and only set the expiration date after the key has been created.

Jul 9 2020, 7:31 PM · gnupg (gpg22), Bug Report
werner added a comment to T4988: Kleopatra key generation does not use default algorithms 3072 but 2048.

The default for GnuPG 2.2 is still 2048 (Debian changed that in their distributed version). The reason for this is that we don't want to generate such keys but move on to Curve25519 for the new defaults.

Jul 9 2020, 3:55 PM · kleopatra
werner committed rGb4501fc82625: doc: Add news entries from the latest 2.2 releases. (authored by werner).
doc: Add news entries from the latest 2.2 releases.
Jul 9 2020, 2:47 PM
werner committed rDf06a29dccd90: web: Link release infos of GnuPG 2.2.21 and Libgcrypt 1.8.6. (authored by werner).
web: Link release infos of GnuPG 2.2.21 and Libgcrypt 1.8.6.
Jul 9 2020, 2:29 PM
werner closed T2103: Improve the pinentry password quality indication as Resolved.
Jul 9 2020, 1:16 PM · gnupg (gpg23), Feature Request
werner closed T4908: ECDH with AES-128 decryption failure when fully padded as Resolved.
Jul 9 2020, 1:16 PM · Restricted Project, gnupg (gpg22), Bug Report
werner closed T4856: GPG: Key Exchange Put public OpenPGP key into signature as Resolved.
Jul 9 2020, 1:15 PM · Feature Request, gpgol, Keyserver, gnupg
werner committed rDf5b6fe90d09f: swdb: Release GnuPG 2.2.21 (authored by werner).
swdb: Release GnuPG 2.2.21
Jul 9 2020, 1:15 PM
werner closed T4897: Release GnuPG 2.2.21 as Resolved.
Jul 9 2020, 1:13 PM · gnupg (gpg22), Release Info
werner committed rG68dd4f43988b: Post release updates (authored by werner).
Post release updates
Jul 9 2020, 1:06 PM
werner committed rGbe6fc39ed9b4: Release 2.2.21 (authored by werner).
Release 2.2.21
Jul 9 2020, 1:06 PM
werner committed rG211465ed63b8: po: Auto update (authored by werner).
po: Auto update
Jul 9 2020, 1:06 PM
werner committed rGca9eb912d6aa: po: Minor update to the Hungarian translation (authored by Nagy Ferenc László <nfl@nfllab.com>).
po: Minor update to the Hungarian translation
Jul 9 2020, 1:06 PM
werner committed rG3a6eaf89e02f: po: Update the German translation (authored by werner).
po: Update the German translation
Jul 9 2020, 1:06 PM
werner edited subtasks for T4989: Gpg4win-4.0.0, added: T4702: Deadline for the GnuPG 2.3.0 release; removed: T4990: Release GnuPG 2.3.0.
Jul 9 2020, 12:23 PM · gpg4win, Release Info
werner added a parent task for T4702: Deadline for the GnuPG 2.3.0 release: T4989: Gpg4win-4.0.0.
Jul 9 2020, 12:23 PM · Restricted Project, gpg4win, gnupg
werner removed a parent task for T4990: Release GnuPG 2.3.0: T4989: Gpg4win-4.0.0.
Jul 9 2020, 12:23 PM · gnupg (gpg23), Release Info
werner closed T4990: Release GnuPG 2.3.0 as Spite.

Duplicate - see T4702 instead

Jul 9 2020, 12:23 PM · gnupg (gpg23), Release Info
werner closed T4990: Release GnuPG 2.3.0, a subtask of T4989: Gpg4win-4.0.0, as Spite.
Jul 9 2020, 12:23 PM · gpg4win, Release Info
werner changed Due Date from Dec 20 2019, 12:00 AM to Sep 30 2020, 12:00 AM on T4702: Deadline for the GnuPG 2.3.0 release.
Jul 9 2020, 12:21 PM · Restricted Project, gpg4win, gnupg
werner created T4990: Release GnuPG 2.3.0.
Jul 9 2020, 12:19 PM · gnupg (gpg23), Release Info
werner closed T4959: confusing output when running `gpg --delete-secrete-keys` without name as Resolved.
Jul 9 2020, 11:28 AM · gnupg (gpg22), Bug Report
werner committed rG5cb0156504df: gpg: Print a note if no args are given to --delete-key (authored by werner).
gpg: Print a note if no args are given to --delete-key
Jul 9 2020, 11:26 AM
werner committed rG212f9b20b5f7: gpg: Print a note if no args are given to --delete-key (authored by werner).
gpg: Print a note if no args are given to --delete-key
Jul 9 2020, 11:25 AM
werner closed T4825: gpg --weak-digest SHA1 incurs a serious performance cost for `--check-trustdb` as Invalid.
Jul 9 2020, 11:02 AM · gnupg (gpg22), Bug Report
werner closed T4933: Incorrect expiration time of created subkey as Wontfix.

I won't fix it. In fact it can't anyway be completely fixed because gpg has code to make sure that a new key is at least one second newer than the previous generated.

Jul 9 2020, 11:00 AM · gnupg (gpg22), Bug Report
werner closed T4971: Pass setrepeat to pinentry for symmetric encryption, too as Resolved.

It has now been implemented for all types of symmetric encryption (not just -cs). To go into 2.2.21

Jul 9 2020, 10:54 AM · gnupg (gpg22)
werner added a comment to T4246: GnuPG master does not allow decryption with bad usage flags (regression).

The first, I guess. The problem is that you are technical capable of _decryption_ but gpg does not allow this because for some reasons the key is arbitrary limited to signing. A warning message should be printed in thus a case but decryption should succeed.

Jul 9 2020, 10:41 AM · Restricted Project, Bug Report, gnupg (gpg23)

Jul 8 2020

werner committed rGb451c4f5ea67: Do not use the pinentry's qualitybar (authored by werner).
Do not use the pinentry's qualitybar
Jul 8 2020, 4:21 PM
werner committed rGd9e2dfa4c585: agent: New option --newsymkey for GET_PASSPHRASE (authored by werner).
agent: New option --newsymkey for GET_PASSPHRASE
Jul 8 2020, 4:21 PM
werner committed rGae8b88c63542: gpg: Use integrated passphrase repeat entry also for -c. (authored by werner).
gpg: Use integrated passphrase repeat entry also for -c.
Jul 8 2020, 4:21 PM
werner committed rG7b6071a45fbf: gpg: Fix flaw in symmetric algorithm selection in mixed mode. (authored by werner).
gpg: Fix flaw in symmetric algorithm selection in mixed mode.
Jul 8 2020, 4:21 PM
werner added a comment to T2103: Improve the pinentry password quality indication.

The qualitybar has now been removed from 2.2 and master.

Jul 8 2020, 4:18 PM · gnupg (gpg23), Feature Request
werner committed rG999d25d47d45: Do not use the pinentry's qualitybar (authored by werner).
Do not use the pinentry's qualitybar
Jul 8 2020, 2:54 PM
werner committed rGeace4bbe1ded: agent: New option --newsymkey for GET_PASSPHRASE (authored by werner).
agent: New option --newsymkey for GET_PASSPHRASE
Jul 8 2020, 2:45 PM
werner committed rGa6a4bbf6debd: gpg: Use integrated passphrase repeat entry also for -c. (authored by werner).
gpg: Use integrated passphrase repeat entry also for -c.
Jul 8 2020, 2:45 PM
werner committed rG9ee975d588ee: gpgsm: Replace all assert calls by log_assert. (authored by werner).
gpgsm: Replace all assert calls by log_assert.
Jul 8 2020, 2:45 PM

Jul 7 2020

werner committed rG6864bba78e76: gpg: Fix flaw in symmetric algorithm selection in mixed mode. (authored by werner).
gpg: Fix flaw in symmetric algorithm selection in mixed mode.
Jul 7 2020, 1:00 PM

Jul 6 2020

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000445.html on T4985: Release Libgcrypt 1.8.6.
Jul 6 2020, 6:46 PM · libgcrypt, Release Info
werner committed rD77bb6be9879a: swdb: libgcrypt 1.8.6 (authored by werner).
swdb: libgcrypt 1.8.6
Jul 6 2020, 6:42 PM
werner added a project to T4985: Release Libgcrypt 1.8.6: libgcrypt.
Jul 6 2020, 4:10 PM · libgcrypt, Release Info
werner closed T4869: constant-time mpi_invm as Resolved.
Jul 6 2020, 4:10 PM · libgcrypt
werner closed T4818: libgcrypt build failures on several platforms as Resolved.
Jul 6 2020, 4:09 PM · Solaris, libgcrypt, Bug Report
werner closed T4985: Release Libgcrypt 1.8.6 as Resolved.
Jul 6 2020, 4:09 PM · libgcrypt, Release Info
werner committed rC31bb4f3210df: mpi: Consider +0 and -0 the same in mpi_cmp. (authored by werner).
mpi: Consider +0 and -0 the same in mpi_cmp.
Jul 6 2020, 3:57 PM
werner committed rCc917ebb48d1b: Post release updates (authored by werner).
Post release updates
Jul 6 2020, 3:57 PM
werner committed rCcfdc44bf08a3: Release 1.8.6 (authored by werner).
Release 1.8.6
Jul 6 2020, 3:57 PM
werner committed rC1f3a92e103d4: mpi: Consider +0 and -0 the same in mpi_cmp. (authored by werner).
mpi: Consider +0 and -0 the same in mpi_cmp.
Jul 6 2020, 12:50 PM
werner created T4986: Libgcrypt bug in GCM for arm64 troubles OMEMO.
Jul 6 2020, 11:10 AM
werner created T4985: Release Libgcrypt 1.8.6.
Jul 6 2020, 10:58 AM · libgcrypt, Release Info
werner closed T4833: libgcrypt: bug in _gcry_poly1305_armv7_neon_init_ext as Resolved.
Jul 6 2020, 10:54 AM · libgcrypt, Bug Report
werner added a comment to T4951: Support point compression in Libgcrypt.

We will need this for 1.9

Jul 6 2020, 10:49 AM · Feature Request, libgcrypt
werner added a comment to T4966: Jitter entropy RNG disable on non-x86?.

Yes please.

Jul 6 2020, 10:45 AM · libgcrypt, Bug Report
werner added a comment to T4694: manage first-party attestations.

Yes, its on my agenda.

Jul 6 2020, 9:13 AM · Keyserver, Feature Request

Jul 3 2020

werner committed rG4a36adaa6431: sm: Exclude rsaPSS from de-vs compliance mode. (authored by werner).
sm: Exclude rsaPSS from de-vs compliance mode.
Jul 3 2020, 5:11 PM
werner committed rG969abcf40cdf: sm: Exclude rsaPSS from de-vs compliance mode. (authored by werner).
sm: Exclude rsaPSS from de-vs compliance mode.
Jul 3 2020, 4:18 PM

Jul 2 2020

werner added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

Your welcome.

Jul 2 2020, 9:19 PM · i18n, FreeBSD, Feature Request
werner committed rGc1663c690b29: scd:nks: Implement writecert for the Signature card v2. (authored by werner).
scd:nks: Implement writecert for the Signature card v2.
Jul 2 2020, 6:36 PM
werner committed rGdaca1a011b0e: dirmngr: Silence annoying warning for missing default ldap server file. (authored by werner).
dirmngr: Silence annoying warning for missing default ldap server file.
Jul 2 2020, 4:22 PM
werner committed rGf55a05a69ba0: dirmngr: Silence annoying warning for missing default ldap server file. (authored by werner).
dirmngr: Silence annoying warning for missing default ldap server file.
Jul 2 2020, 4:19 PM
werner closed T4758: gnupg-2.2.18/dirmngr/ldap-parse-uri.c:57:27: style: Same expression on both sides of '||'. as Resolved.

Fixed; In master the code already uses our generic scheme parser.

Jul 2 2020, 4:10 PM · LDAP, dirmngr, Bug Report
werner committed rG0795ab1c8f95: dirmngr: Fix case handling of "ldapi" scheme. (authored by werner).
dirmngr: Fix case handling of "ldapi" scheme.
Jul 2 2020, 4:07 PM
werner committed rGd70b8769c888: Support a history file in gpg-card and gpg-connect-agent. (authored by werner).
Support a history file in gpg-card and gpg-connect-agent.
Jul 2 2020, 3:54 PM

Jul 1 2020

werner closed T4618: DANE OpenPGP certificate retrieval does not verify DNSSEC signatures as Wontfix.
Jul 1 2020, 2:10 PM · dns, dirmngr
werner added a comment to T4618: DANE OpenPGP certificate retrieval does not verify DNSSEC signatures.

DANE for OpenPGP is an experimental RFC (RFC-7929) and it is likely that we will remove the support because it is too hard for most users to add keys to a zone. Further a validating resolver on the desktop is too hard to maintain and the cause of too many other failures. And no, unbound etc is not an option because it is not usable by the majority of GnuPG users.

Jul 1 2020, 2:10 PM · dns, dirmngr

Jun 30 2020

werner committed rG07aef873ebc7: scd:nks: Fix certificate read problem with TCOS signature card v2. (authored by werner).
scd:nks: Fix certificate read problem with TCOS signature card v2.
Jun 30 2020, 2:42 PM
werner committed rGfb10b6cba43f: card: Better detect removed cards. Add TCOS PIN menu. (authored by werner).
card: Better detect removed cards. Add TCOS PIN menu.
Jun 30 2020, 2:42 PM