Page MenuHome GnuPG
Feed Advanced Search

Aug 25 2020

werner closed T4421: import-export does not remove duplicated subkeys as Resolved.

I implemented subkey collapsing in 2.3. It is enabled by default but you can disable it it with

Aug 25 2020, 10:42 AM · Feature Request, OpenPGP, gnupg (gpg23)

Aug 24 2020

werner added a comment to T5028: gpg --locate-key should refetch via wkd, if configured and no good pubkey found.

if a user decided to use the Web Key Directory, this should be used instead of falling back to whatever has been configured (nothing else by default)

Aug 24 2020, 11:04 AM · gnupg, Feature Request
bernhard added a comment to T5028: gpg --locate-key should refetch via wkd, if configured and no good pubkey found.

On the ml there was another request for this use case

Aug 24 2020, 9:56 AM · gnupg, Feature Request

Aug 22 2020

werner added a comment to T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names..

Unicode file names will now also work - see T4083 and T5030

Aug 22 2020, 11:11 PM · gnupg (gpg22), Feature Request, gpgtar
werner closed T5032: On Becky! Internet Mail's GnuPG Plugin as Invalid.

Unfortunately we can't help you here as this is not a GnuPG problem or one of software we maintain.

Aug 22 2020, 11:08 PM · Feature Request
Romans10910 added a comment to T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names..

Excellent! thanks for having considered this.

Aug 22 2020, 6:40 PM · gnupg (gpg22), Feature Request, gpgtar
Romans10910 created T5032: On Becky! Internet Mail's GnuPG Plugin.
Aug 22 2020, 6:18 PM · Feature Request

Aug 20 2020

werner changed the status of T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names. from Open to Testing.

The options now work as documented. More tests on Window are required and eventually we need to handle non-ascii characters in file names.

Aug 20 2020, 3:56 PM · gnupg (gpg22), Feature Request, gpgtar
werner claimed T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names..
Aug 20 2020, 12:42 PM · gnupg (gpg22), Feature Request, gpgtar

Aug 19 2020

werner triaged T5028: gpg --locate-key should refetch via wkd, if configured and no good pubkey found as Low priority.
Aug 19 2020, 1:06 PM · gnupg, Feature Request

Aug 18 2020

bernhard added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

Hello,
just reading the issue in detail.

Aug 18 2020, 5:50 PM · gnupg (gpg23), Feature Request
werner renamed T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names. from Unable to use "--files-from" to gpgtar's "--files-from" should also handle a LF terminated list of file names..
Aug 18 2020, 11:57 AM · gnupg (gpg22), Feature Request, gpgtar

Aug 12 2020

werner closed T5016: Gnupg should support WAYLAND_DISPLAY variable for pinentry as Resolved.

Thanks. Added to 2.2.

Aug 12 2020, 9:30 AM · gnupg (gpg20), Feature Request

Aug 8 2020

werner added a project to T5016: Gnupg should support WAYLAND_DISPLAY variable for pinentry: gnupg (gpg20).
Aug 8 2020, 10:44 AM · gnupg (gpg20), Feature Request

Aug 7 2020

ya-isakov created T5016: Gnupg should support WAYLAND_DISPLAY variable for pinentry.
Aug 7 2020, 11:28 AM · gnupg (gpg20), Feature Request

Aug 5 2020

gniibe added a comment to T4951: Support point compression in Libgcrypt.

For the reference of full mod_sqrt, see https://eli.thegreenplace.net/2009/03/07/computing-modular-square-roots-in-python/

Aug 5 2020, 3:33 AM · Feature Request, libgcrypt

Jul 30 2020

werner closed T4872: Support opaque MPI with gcry_mpi_print as Resolved.

Patch backported to 2.2

Jul 30 2020, 10:28 AM · Restricted Project, Feature Request, libgcrypt

Jul 29 2020

werner triaged T5006: Kleopatra: Display Names and Key-IDs for certificates after any attempt to import them. as Normal priority.
Jul 29 2020, 1:22 PM · gpd5x, kleopatra, Feature Request
dscotese created T5006: Kleopatra: Display Names and Key-IDs for certificates after any attempt to import them..
Jul 29 2020, 4:43 AM · gpd5x, kleopatra, Feature Request

Jul 28 2020

werner triaged T5001: Card specification enhancement as Normal priority.
Jul 28 2020, 8:54 AM · Feature Request, scd

Jul 20 2020

bvieira added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Any news on this?

Jul 20 2020, 12:48 AM · Not A Bug, workaround, gnupg24, Windows, ssh

Jul 17 2020

werner closed T4310: GPGME: Add ssh export mode as Resolved.

C++ interface is also availabale in 1.14.0 (see rM690d967196d9).

Jul 17 2020, 12:06 PM · gpgme (gpgme 1.23.x), Feature Request

Jul 16 2020

werner added a project to T3794: GPGME: Make it possible to switch trust model per context: Feature Request.
Jul 16 2020, 3:21 PM · Feature Request, gpgol, gpgme
werner closed T3396: use swig to generate Ruby bindings for gpgme as Wontfix.

As of today we don't want to maintain another binding; see T3395

Jul 16 2020, 2:52 PM · Feature Request, gpgme
werner closed T3395: use swig to generate Perl bindings for gpgme as Wontfix.

The Python bindings are troublesome enough; as of today we don't want to maintain a Perl module.

Jul 16 2020, 2:51 PM · Feature Request, gpgme
werner moved T3272: Make groups available through GPGME from Backlog to For a future release on the gpgme board.
Jul 16 2020, 2:43 PM · gpgme, Feature Request
werner lowered the priority of T4195: Fix time API in gpgme from Normal to Low.
Jul 16 2020, 2:38 PM · gnupg, kleopatra, Restricted Project, gpgme, Feature Request
werner moved T4310: GPGME: Add ssh export mode from Backlog to QA for next release on the gpgme board.
Jul 16 2020, 2:36 PM · gpgme (gpgme 1.23.x), Feature Request
werner reassigned T4310: GPGME: Add ssh export mode from werner to aheinecke.

C part done; C++ interface is not yet done.

Jul 16 2020, 2:35 PM · gpgme (gpgme 1.23.x), Feature Request

Jul 15 2020

werner claimed T4310: GPGME: Add ssh export mode.
Jul 15 2020, 6:27 PM · gpgme (gpgme 1.23.x), Feature Request
werner moved T4578: python3 gpg module should offer an "encrypt" function that takes an email.message.EmailMessage and returns a new one from Backlog to Python stuff on the gpgme board.
Jul 15 2020, 4:55 PM · gpgme, Python, Feature Request

Jul 13 2020

gniibe added a comment to T4951: Support point compression in Libgcrypt.
  • compressed representation of EC point can be used in:
    • public key
    • (exporting) private key
    • signature
    • ECDH ephemeral key
  • Accepting compressed representation,for the initial implementation, I'd like to limit our effort for curves of NIST and Brainpool, except NIST P-224, which p = 3 mod 4.
Jul 13 2020, 10:06 AM · Feature Request, libgcrypt
n0542344 created T4993: Delete only private signing key from within gpg (without reimporting subkeys or 'rm ~/.gnupg/private-keys-v1.d/KEYGRIP.key').
Jul 13 2020, 9:50 AM · FAQ, gnupg (gpg22)

Jul 10 2020

werner added a comment to T4951: Support point compression in Libgcrypt.

Creating is not that useful - we prefer modern curves anyway.

Jul 10 2020, 9:21 AM · Feature Request, libgcrypt
werner added a comment to T4951: Support point compression in Libgcrypt.

I think that retrieving a parameter in compressed format is all what we need as per API.

Jul 10 2020, 9:20 AM · Feature Request, libgcrypt
gniibe added a comment to T4951: Support point compression in Libgcrypt.

(3) _gcry_ecc_os2ec in libgcrypt/cipher/ecc-misc.c should be modified to support parsing compressed representation.

Jul 10 2020, 8:19 AM · Feature Request, libgcrypt
gniibe claimed T4951: Support point compression in Libgcrypt.
Jul 10 2020, 3:41 AM · Feature Request, libgcrypt
gniibe added a comment to T4951: Support point compression in Libgcrypt.

What kind of API should we offer?
(1) offering something like q@comp name for gcry_mpi_ec_get_mpi
But...
If the intended use case will be in create_request function in gpg/sm/certreqgen.c, the 'q' is already generated in the form of SEXP.
It is up to an application (gpgsm), to convert non-compressed point representation to compressed point representation, here.

Jul 10 2020, 3:40 AM · Feature Request, libgcrypt

Jul 9 2020

werner closed T2103: Improve the pinentry password quality indication as Resolved.
Jul 9 2020, 1:16 PM · gnupg (gpg23), Feature Request
werner closed T4856: GPG: Key Exchange Put public OpenPGP key into signature as Resolved.
Jul 9 2020, 1:15 PM · Feature Request, gpgol, Keyserver, gnupg
gniibe added a parent task for T4160: ed488 support: T4417: Work needed for gnupg 2.3.
Jul 9 2020, 7:00 AM · gnupg24, gnupg (gpg23), Feature Request
gniibe changed the status of T4160: ed488 support from Open to Testing.

It's in master (to be gnupg 2.3).
Enjoy.

Jul 9 2020, 6:53 AM · gnupg24, gnupg (gpg23), Feature Request

Jul 8 2020

werner added a comment to T2103: Improve the pinentry password quality indication.

The qualitybar has now been removed from 2.2 and master.

Jul 8 2020, 4:18 PM · gnupg (gpg23), Feature Request

Jul 6 2020

werner added a comment to T4951: Support point compression in Libgcrypt.

We will need this for 1.9

Jul 6 2020, 10:49 AM · Feature Request, libgcrypt
werner added a comment to T4694: manage first-party attestations.

Yes, its on my agenda.

Jul 6 2020, 9:13 AM · Keyserver, Feature Request

Jul 5 2020

scy added a comment to T1849: Show revocation certificate details.

Since this issue is what I came across when googling for gpg inspect revocation certificate, I thought I’d add what I found out:

Jul 5 2020, 9:44 PM · gnupg, Feature Request
Valodim added a comment to T4694: manage first-party attestations.

I'd be interested, is this is still on the agenda?

Jul 5 2020, 8:46 PM · Keyserver, Feature Request

Jul 2 2020

werner added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

Your welcome.

Jul 2 2020, 9:19 PM · i18n, FreeBSD, Feature Request
Walter_von_Entferndt closed T4981: internationalization (support UNICODE/UTF-8 character set) as Invalid.
Jul 2 2020, 6:58 PM · i18n, FreeBSD, Feature Request
Walter_von_Entferndt added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

I regret to have distracted your attention. All the above applies to a terminal window (KDE's konsole) in my GUI KDE. On the bare FreeBSD console, everything is fine. So this is a bug in some KDE library or konsole. I'm sorry I did not have the idea to test that on the bare console right away. I'll close this bug here.

Jul 2 2020, 6:57 PM · i18n, FreeBSD, Feature Request
Walter_von_Entferndt added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

Hello Mr. Niibe,

Jul 2 2020, 12:15 PM · i18n, FreeBSD, Feature Request
gniibe added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

It seems that nl_langinfo(CODESET) returns US-ASCII on your system.

Jul 2 2020, 8:16 AM · i18n, FreeBSD, Feature Request

Jun 29 2020

werner added projects to T4981: internationalization (support UNICODE/UTF-8 character set): FreeBSD, i18n.
Jun 29 2020, 1:27 PM · i18n, FreeBSD, Feature Request
werner added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

My FreeBSD box is currently not up, so I can't test right now. You may want to look into gnupg/common/utf8conv.c and there set_native_charset(). For historical reasons we start off with latin-1 but then swicth to the selected charset and intialize iconv accordingly. In the case of an error we sometimes fallback to utf-8. You may want to add some debug code (log_debug ("foo bar string=%s\n", some_string);)

Jun 29 2020, 1:25 PM · i18n, FreeBSD, Feature Request
Walter_von_Entferndt added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

in your test, which you did on Linux I guess, utf-8 is written downcase, whereas on my system, it is written uppercase 'UTF-8, conforming to what I find elsewhere (e.g. Wikipedia and RFC 3629). I do not know though, if there is a recommended way to spell it. So the bug might be: gpg does not compare the RFC spelling uppercase, but the linuxism: utf-8 witten downcase. Then the correct fix would be to compare uppercase UTF-8 only, and let Linux fix their system to use the correct uppercase throughout the system... ;)
2nd, I know that FreeBSD has some issues with internationalization: it does not support charsets in their POSIX meaning, but emulates them by combining all available locales and (matching) CODESETs. Usually, this is not a problem, and most translations and handling of UTF-8 works as expected. Maybe this has some subtle effect causing this issue.

Jun 29 2020, 12:34 PM · i18n, FreeBSD, Feature Request
Walter_von_Entferndt added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

Hello Werner,

Jun 29 2020, 12:12 PM · i18n, FreeBSD, Feature Request

Jun 28 2020

werner added a comment to T4981: internationalization (support UNICODE/UTF-8 character set).

OpenPGP specifies the use of UTF-8 for all meta data (ie. everything except for the signed/encrypted data). GnuPG has always supported this. I don't known on which OS you are but some don't have UTF-8 support on the command line or tty so you need to tweak your environment first.

Jun 28 2020, 4:30 PM · i18n, FreeBSD, Feature Request

Jun 26 2020

Walter_von_Entferndt created T4981: internationalization (support UNICODE/UTF-8 character set).
Jun 26 2020, 4:23 PM · i18n, FreeBSD, Feature Request

Jun 9 2020

werner changed the status of T4735: Please provide an option to make --verify accept only signatures from specific trusted UID from Open to Testing.
Jun 9 2020, 6:31 PM · gnupg (gpg23), Feature Request
werner added a comment to T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.

Shall we backport this to 2.2 which is our LTS release?

Jun 9 2020, 6:31 PM · gnupg (gpg23), Feature Request

Jun 8 2020

werner added a comment to T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.

With the recent change the --sender option has an effect on the selection of the User ID used for the key validity check and the TRUST_ status lines:

Jun 8 2020, 8:43 PM · gnupg (gpg23), Feature Request

Jun 5 2020

aheinecke added a comment to T4609: GpgOL: Add "Save decrypted copy".

MAPI Namespace has a pickFolder method which can be used here.

Jun 5 2020, 11:17 AM · Feature Request, gpgol

Jun 4 2020

werner triaged T4735: Please provide an option to make --verify accept only signatures from specific trusted UID as High priority.
Jun 4 2020, 12:20 PM · gnupg (gpg23), Feature Request
werner updated subscribers of T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.
Jun 4 2020, 10:48 AM · gnupg (gpg23), Feature Request

Jun 3 2020

werner added a comment to T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.

We already have the option --sender which does what @mgorny requests but only in the TOFU case. I need to revisit the system to see whether we can extend it to WoT and direct key signatures.

Jun 3 2020, 5:49 PM · gnupg (gpg23), Feature Request
werner claimed T4735: Please provide an option to make --verify accept only signatures from specific trusted UID.
Jun 3 2020, 5:45 PM · gnupg (gpg23), Feature Request

Jun 2 2020

aheinecke added projects to T4773: Option to always permanently decrypt: gpgol, gpg4win.
Jun 2 2020, 2:58 PM · gpg4win, gpgol, Feature Request
JJworx added a comment to T4773: Option to always permanently decrypt.

no prob

Jun 2 2020, 2:47 PM · gpg4win, gpgol, Feature Request
aheinecke added a comment to T4773: Option to always permanently decrypt.

Uh, I just noticed that this issue is from dec. 2019 I am unsure why I overlooked this and only noticed it in my regular tracker check today.

Jun 2 2020, 11:47 AM · gpg4win, gpgol, Feature Request
aheinecke claimed T4773: Option to always permanently decrypt.

@JJworx Thanks for the suggestion / feature request.

Jun 2 2020, 11:45 AM · gpg4win, gpgol, Feature Request

May 29 2020

werner added a comment to T4788: System wide configuration of the GnuPG system.
May 29 2020, 3:16 PM · gnupg (gpg23), Feature Request, gpg4win, g10code
werner added a comment to T4635: ship gpgscm and necessary *.scm files from gpgrt.

FYIL This is delayed because there are some dependencies to internals of gnupg.

May 29 2020, 2:32 PM · Tests, gpgrt, Feature Request
werner closed T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS as Resolved.

Merged. Thanks.

May 29 2020, 2:29 PM · gpgrt, Feature Request

May 28 2020

PWRzTOtacorTPq7KNW4oFec8F added a comment to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)).

Is there a blogpost or similar where the use of several smartcards following this improvement is explained to n00bs like me? :) For now all I find is this thread and some SE answers saying it does not work yet (https://security.stackexchange.com/questions/154702/gpg-encryption-subkey-on-multiple-smart-cards-issue) . If somebody could post a new answer on SE / write a small blog post or similar that would be great. Useful would be to have 1) from which versions and over is that available 2) how this works / how to use.

May 28 2020, 10:18 PM · Restricted Project, gnupg, Feature Request

May 27 2020

werner added a comment to T4098: GpgSM: Add ECC support.

GnuTLS seems to have some CMS support; see https://gitlab.com/gnutls/gnutls/-/issues/227 .

May 27 2020, 10:35 AM · gnupg (gpg23), Feature Request, S/MIME

May 22 2020

gniibe claimed T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.
May 22 2020, 2:05 AM · gpgrt, Feature Request

May 21 2020

gniibe added a comment to T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.

libgpg-error used to be blamed because of this kind of architectural support in earlier stage of building operating system.
T4774 is my try to fix the problem.

May 21 2020, 6:46 AM · gpgrt, Feature Request
gniibe added a comment to T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.

Thank you for your work. Please go ahead.

May 21 2020, 6:43 AM · gpgrt, Feature Request

May 20 2020

dkg added a comment to T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.

If there's no objection to this in a few days, i'll go ahead and merge it to master.

May 20 2020, 10:00 PM · gpgrt, Feature Request
anarcat added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

I had assumed that GnuPG prioritized the safety of its users over strict adherence to a particular view of a cryptographic protocol

May 20 2020, 4:12 AM · gnupg (gpg23), Feature Request

May 19 2020

dkg added a comment to T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.

branch dkg/fix-4952 contains this fix in an easily applicable form as 0db8c768843db3e85935b972f1ed9d1b98159c46

May 19 2020, 8:49 PM · gpgrt, Feature Request
dkg created T4952: libgpg-error/gpgrt lock-obj for big-endian 64-bit MIPS.
May 19 2020, 7:41 PM · gpgrt, Feature Request
werner closed T4920: Support ECDH in Libksba as Resolved.
May 19 2020, 4:49 PM · libksba, Feature Request, S/MIME
werner closed T4920: Support ECDH in Libksba, a subtask of T4098: GpgSM: Add ECC support, as Resolved.
May 19 2020, 4:49 PM · gnupg (gpg23), Feature Request, S/MIME
werner lowered the priority of T4896: ksba: Ed25519 support from High to Normal.

Parsing and creating of certs does now work. I was not able to find sample CMS objects so this part is not yet finished.

May 19 2020, 3:12 PM · Info Needed, libksba, Feature Request, S/MIME
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed, a subtask of T4888: GpgSM: Support ECC key generation by gpgsm_genkey, as Resolved.
May 19 2020, 2:43 PM · Restricted Project, Feature Request, S/MIME
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed as Resolved.
May 19 2020, 2:43 PM · Restricted Project, Feature Request, S/MIME
werner added a comment to T4888: GpgSM: Support ECC key generation by gpgsm_genkey.

Finished if an existing key is used. See rG6dc3846d78192e393be73c16c72750734a9174d1 for examples.

May 19 2020, 2:42 PM · Restricted Project, Feature Request, S/MIME
werner added a comment to T4098: GpgSM: Add ECC support.

See rG6dc3846d78192e393be73c16c72750734a9174d1 for examples on how to create a cert

May 19 2020, 2:41 PM · gnupg (gpg23), Feature Request, S/MIME
werner created T4951: Support point compression in Libgcrypt.
May 19 2020, 2:25 PM · Feature Request, libgcrypt
aheinecke removed a subtask for T4388: GpgOL: Add draft encryption as an option.: T4660: Gpg4win 3.1.11.
May 19 2020, 11:49 AM · Feature Request, gpg4win, gpgol
aheinecke changed the status of T4388: GpgOL: Add draft encryption as an option. from Testing to Open.

I'm moving this from testing to open again. Especially the deletion is an issue. I had a report that even for a sent mail Outlook.com also stores an unencrypted variant in the "Trash Bin".

May 19 2020, 11:49 AM · Feature Request, gpg4win, gpgol
aheinecke closed T4660: Gpg4win 3.1.11, a subtask of T4388: GpgOL: Add draft encryption as an option., as Resolved.
May 19 2020, 11:46 AM · Feature Request, gpg4win, gpgol

May 14 2020

werner removed a subtask for T4098: GpgSM: Add ECC support: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:50 AM · gnupg (gpg23), Feature Request, S/MIME
werner removed a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:50 AM · Restricted Project, Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4888: GpgSM: Support ECC key generation by gpgsm_genkey.
May 14 2020, 10:50 AM · Restricted Project, Feature Request, S/MIME
werner added a subtask for T4888: GpgSM: Support ECC key generation by gpgsm_genkey: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:50 AM · Restricted Project, Feature Request, S/MIME
werner added a subtask for T4098: GpgSM: Add ECC support: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:47 AM · gnupg (gpg23), Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:47 AM · Restricted Project, Feature Request, S/MIME
werner closed T4487: libksba: please refresh ASN.1 components from more recent RFCs with BSD licensing as Wontfix.

Won't fix because there is no need for it. ASN.1 modules are the formal description of a protocol and as such not copyrightable.

May 14 2020, 9:45 AM · libksba, Feature Request