Page MenuHome GnuPG
Feed Advanced Search

Sep 3 2020

werner updated the task description for T5045: Release GnuPG 2.2.23.
Sep 3 2020, 9:57 PM · gnupg, Release Info
werner added a comment to T5050: AEAD preference list overflow in 2.2.

This has CVE-2020-25125

Sep 3 2020, 9:56 PM · gnupg (gpg22), CVE
werner committed rDc36c66a4cba3: web: Announce gnupg 2.2.23 (authored by werner).
web: Announce gnupg 2.2.23
Sep 3 2020, 6:57 PM
werner added a comment to T5050: AEAD preference list overflow in 2.2.

2.2.23 has been released and announced.

Sep 3 2020, 6:49 PM · gnupg (gpg22), CVE
werner closed T5039: 2.2.22 regression: Nitrokey Pro 2 is no longer recognized automatically, requires --card-status as Resolved.
Sep 3 2020, 6:48 PM · Restricted Project, gnupg (gpg22), Bug Report
werner set Version to GnuPG 2.2.23 on T5045: Release GnuPG 2.2.23.
Sep 3 2020, 6:48 PM · gnupg, Release Info
werner shifted T5050: AEAD preference list overflow in 2.2 from the Restricted Space space to the S1 Public space.
Sep 3 2020, 6:44 PM · gnupg (gpg22), CVE
werner committed rDc11481827401: swdb: Release 2.2.23 (authored by werner).
swdb: Release 2.2.23
Sep 3 2020, 6:04 PM
werner committed rG390ae3c3099d: Post release updates (authored by werner).
Post release updates
Sep 3 2020, 5:54 PM
werner committed rGe234d04c3c91: Release 2.2.23 (authored by werner).
Release 2.2.23
Sep 3 2020, 5:54 PM
werner committed rGaeb8272ca8aa: gpg: Fix AEAD preference list overflow (authored by werner).
gpg: Fix AEAD preference list overflow
Sep 3 2020, 5:54 PM
werner committed rG038314665398: po: auto update (authored by werner).
po: auto update
Sep 3 2020, 5:54 PM
werner committed rG1a4b0fd793aa: po: Update Ukrainian translation (authored by Yuri Chornoivan <yurchor@ukr.net>).
po: Update Ukrainian translation
Sep 3 2020, 5:54 PM
werner committed rG93d10403adc6: po: Update Polish translation (authored by Jakub Bogusz <qboosh@pld-linux.org>).
po: Update Polish translation
Sep 3 2020, 5:54 PM
werner committed rGa8a8105bc756: po: Add key-check.c to the list of translatable sources. (authored by werner).
po: Add key-check.c to the list of translatable sources.
Sep 3 2020, 5:54 PM
werner committed rGcad9955ac999: po: Update Czech translation. (authored by petr_p).
po: Update Czech translation.
Sep 3 2020, 5:54 PM
werner created T5052: Release GnuPG 2.2.24.
Sep 3 2020, 5:48 PM · Release Info, gnupg (gpg22)
werner added a comment to T5050: AEAD preference list overflow in 2.2.

The fix will be in the 2.2.23 release (T5045).

Sep 3 2020, 5:20 PM · gnupg (gpg22), CVE
werner created T5050: AEAD preference list overflow in 2.2 in the Restricted Space space.
Sep 3 2020, 3:21 PM · gnupg (gpg22), CVE
werner committed rGa7d006293ec8: sm: Add arg ctrl to keydb_new. (authored by werner).
sm: Add arg ctrl to keydb_new.
Sep 3 2020, 1:50 PM
werner committed rG046f419f8060: sm: New options to prepare the use of keyboxd. (authored by werner).
sm: New options to prepare the use of keyboxd.
Sep 3 2020, 1:50 PM
werner added a comment to T5048: Error handling in libassuan.

To implement this it would be best to have an gpg_strerror variant which does not call dgettext.

Sep 3 2020, 10:01 AM · gpgrt, libassuan
werner added a comment to T5048: Error handling in libassuan.

re 1: Correct utf-8 truncation would be quite some work. In this case the message is in the Assuan interface is a debugging aid. Translation is not necessary so we can try to disable it.

Sep 3 2020, 9:55 AM · gpgrt, libassuan
werner closed T5047: can not find the runtime library libgcc_s_sjlj-1.dll as Invalid.

You need to get you toolchain correctly installed.

Sep 3 2020, 8:37 AM · Bug Report, gpg4win

Sep 2 2020

werner created T5045: Release GnuPG 2.2.23.
Sep 2 2020, 4:41 PM · gnupg, Release Info
werner added a comment to T5030: Release GnuPG 2.2.22 .

A bug was reported against this version which could happen also to older versions of GnuPG 2.2. In case of a crash please apply the patch over at rG8ec9573e57866dda5efb4677d4454161517484bc or wait for 2.2.23

Sep 2 2020, 4:16 PM · gnupg (gpg22), Release Info
werner committed rG896c528ba055: gpg: Fix segv importing certain keys. (authored by werner).
gpg: Fix segv importing certain keys.
Sep 2 2020, 4:12 PM
werner added a comment to rG8ec9573e5786: gpg: Fix segv importing certain keys..

See https://bugzilla.opensuse.org/show_bug.cgi?id=1176034 for the original bug report. I was not able to replicate the crash but the bad reads. The error is pretty obvious: The code expects that all fields are zeroed out.

Sep 2 2020, 4:10 PM
werner committed rG8ec9573e5786: gpg: Fix segv importing certain keys. (authored by werner).
gpg: Fix segv importing certain keys.
Sep 2 2020, 4:07 PM
werner committed rG497db0b5bcd6: keyboxd: Restructure client access code. (authored by werner).
keyboxd: Restructure client access code.
Sep 2 2020, 4:07 PM
werner committed rG4d839f5a8083: keyboxd: Fix user id based queries (authored by werner).
keyboxd: Fix user id based queries
Sep 2 2020, 4:07 PM
werner committed rG2042f5a4641f: common: New helper function gnupg_close_pipe. (authored by werner).
common: New helper function gnupg_close_pipe.
Sep 2 2020, 4:07 PM
werner edited projects for T5042: File deletion during encryption, added: Feature Request, gpg4win; removed Bug Report.
Sep 2 2020, 10:36 AM · gpg4win, Feature Request

Sep 1 2020

werner committed rG2cd8bae23d73: Use only one copy of the warn_server_mismatch function. (authored by werner).
Use only one copy of the warn_server_mismatch function.
Sep 1 2020, 8:45 PM
werner added a project to T5041: gpg-agent/scdaemon/gnuk unable to sign ssh certificate (Couldn't certify key … via agent: agent refused operation): ssh.

gpg-agent has only very limited support for ssh certificates which is the reason that your command fails.

Sep 1 2020, 2:47 PM · Restricted Project, ssh, Bug Report
werner added a comment to T5039: 2.2.22 regression: Nitrokey Pro 2 is no longer recognized automatically, requires --card-status.

I should add a test with Gnuk to my Windows quick test after a release.

Sep 1 2020, 8:50 AM · Restricted Project, gnupg (gpg22), Bug Report

Aug 31 2020

avemilia awarded T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent a Love token.
Aug 31 2020, 5:17 PM · Not A Bug, workaround, gnupg24, Windows, ssh
werner added a comment to T3362: Prevent Smartcard from caching PIN when cache-ttl is set accordingly.

There is not a lot of demand for this, thus we have not continued to think about it.

Aug 31 2020, 4:24 PM · Feature Request
werner added a project to T5039: 2.2.22 regression: Nitrokey Pro 2 is no longer recognized automatically, requires --card-status: gnupg (gpg22).
Aug 31 2020, 12:54 PM · Restricted Project, gnupg (gpg22), Bug Report
werner added a comment to T5030: Release GnuPG 2.2.22 .

As a workaround please run

Aug 31 2020, 10:36 AM · gnupg (gpg22), Release Info
werner added a comment to D501: VPMSUMD accelleration for GCM mode on PPC.

Let's continue discussion at T5040

Aug 31 2020, 9:31 AM
werner created T5040: Improve PPC code using code from CRYPTOGRAMs.
Aug 31 2020, 9:31 AM · legal, libgcrypt
werner added a comment to T5030: Release GnuPG 2.2.22 .

There seems to be a problem with Gnuk and thus Nitrokey tokens with 2.2.22. We are investigating this. See T5039.

Aug 31 2020, 9:22 AM · gnupg (gpg22), Release Info

Aug 30 2020

werner committed rGPAee215574aa10: Adding key size 4096 for key generation. (authored by DebXWoody <stefan@debxwoody.de>).
Adding key size 4096 for key generation.
Aug 30 2020, 7:14 PM
werner added a comment to D501: VPMSUMD accelleration for GCM mode on PPC.

If we can use the code please first commit the original code to the repo and only then apply code style fixes.

Aug 30 2020, 11:01 AM
werner added a comment to D501: VPMSUMD accelleration for GCM mode on PPC.

We need to clarify two things:

Aug 30 2020, 10:59 AM

Aug 29 2020

werner triaged T5038: UTF-8 handling in the command line as Normal priority.
Aug 29 2020, 5:19 PM · gnupg
werner edited projects for T5033: dirmngr does not seem to use the default .gnupg directory if GNUPGHOME is not set, added: Not A Bug, gnupg; removed Info Needed, Bug Report.
Aug 29 2020, 5:18 PM · gnupg, Not A Bug
werner added a comment to T5037: dn.cpp:181: suspicious loop.

FWIW, here an example of warnings we use. Yes it starts with -Wall but there are a couple of more specific warnings and at a few places we even use pragmas to disable warnings. And it depends on the compiler version used.

Aug 29 2020, 5:16 PM · gnupg, gpgme, Bug Report

Aug 28 2020

werner added a comment to T5037: dn.cpp:181: suspicious loop.

-Wall is not a good idea in general because it is too unspecific. This is why we have a list of useful warning and warnings we ignore with gcc.

Aug 28 2020, 12:43 PM · gnupg, gpgme, Bug Report
werner committed rGbcae9cd4e3c3: po: Minor update to the Hungarian translation. (authored by Nagy Ferenc László <nfl@nfllab.com>).
po: Minor update to the Hungarian translation.
Aug 28 2020, 12:37 PM
werner committed rMb088d81cefe4: qt: Fix an rfc2253 parser flaw (authored by werner).
qt: Fix an rfc2253 parser flaw
Aug 28 2020, 9:20 AM
werner closed T5037: dn.cpp:181: suspicious loop as Resolved.

Fixed in gnupg and gpgme. it is not serious because that is just a failsafe check; libksba creates these strings and it does it correctly.

Aug 28 2020, 9:15 AM · gnupg, gpgme, Bug Report
werner committed rGd2fe2ffd7537: sm: Fix a bug in the rfc2253 parser (authored by werner).
sm: Fix a bug in the rfc2253 parser
Aug 28 2020, 9:10 AM
werner committed rG16c1d8a14e98: sm: Fix a bug in the rfc2253 parser (authored by werner).
sm: Fix a bug in the rfc2253 parser
Aug 28 2020, 9:09 AM
werner committed rGd45e92cf8855: doc: Fix typos (authored by glr).
doc: Fix typos
Aug 28 2020, 9:09 AM
werner added a project to T5037: dn.cpp:181: suspicious loop: gnupg.

We have the same flaw in gnupg.

Aug 28 2020, 9:00 AM · gnupg, gpgme, Bug Report
werner claimed T5037: dn.cpp:181: suspicious loop.
Aug 28 2020, 8:54 AM · gnupg, gpgme, Bug Report
werner added a comment to T4838: add configure check for zlib to ntbtls.

I think we should make zlib a mandatory dependency.

Aug 28 2020, 7:54 AM · ntbtls, Bug Report

Aug 27 2020

werner committed rDbc245f461505: swdb: Release GnuPG 2.2.22 (authored by werner).
swdb: Release GnuPG 2.2.22
Aug 27 2020, 3:31 PM
werner closed T5030: Release GnuPG 2.2.22 as Resolved.
Aug 27 2020, 3:21 PM · gnupg (gpg22), Release Info
werner closed T4843: REGEXP support for all systems as Resolved.
Aug 27 2020, 3:04 PM · Restricted Project, gnupg
werner closed T4083: gpgtar, Kleopatra: Unicode filenames that are not native 8 bit on Windows don't work as Resolved.
Aug 27 2020, 3:04 PM · Bug Report, gpg4win, kleopatra, gpgtar
werner closed T4977: dirmngr not working with linux kernel parameter ipv6.disable=1 as Resolved.
Aug 27 2020, 3:03 PM · Restricted Project, gnupg (gpg22), dirmngr, Bug Report
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000447.html on T5030: Release GnuPG 2.2.22 .
Aug 27 2020, 3:03 PM · gnupg (gpg22), Release Info
werner committed rGf799b3ddbb4a: Post release updates (authored by werner).
Post release updates
Aug 27 2020, 2:56 PM
werner committed rGf9c120a29986: Release 2.2.22 (authored by werner).
Release 2.2.22
Aug 27 2020, 2:56 PM
werner committed rG27652e0ca75f: doc: Fix typos (authored by glr).
doc: Fix typos
Aug 27 2020, 2:56 PM
werner closed T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names. as Resolved.
Aug 27 2020, 2:24 PM · gnupg (gpg22), Feature Request, gpgtar
werner added a project to T5018: Export keys to secure card failure: gpg: KEYTOCARD failed: Unusable secret key: Info Needed.
Aug 27 2020, 12:55 PM · Info Needed, Bug Report
werner closed T5035: Doc fix: simple typos as Resolved.

Thanks. Applied to 2.2 and master.

Aug 27 2020, 12:54 PM · Bug Report
werner committed rGb5de213efe77: doc: Add a remark about keyservers. (authored by werner).
doc: Add a remark about keyservers.
Aug 27 2020, 12:51 PM
werner committed rGcde92d3e2341: doc: Add a remark about keyservers. (authored by werner).
doc: Add a remark about keyservers.
Aug 27 2020, 12:51 PM
werner committed rGa0a4744bd064: scd: New option to APDU command to return the ATR as data. (authored by werner).
scd: New option to APDU command to return the ATR as data.
Aug 27 2020, 11:56 AM
werner committed rG95b5a852e269: scd: Fix reading of the ATR for card type detection. (authored by werner).
scd: Fix reading of the ATR for card type detection.
Aug 27 2020, 11:54 AM
werner triaged T5029: server socket/pipe handling in GnuPG as Normal priority.

I still don't think that it is correct. We would also need to turn fd from an int to a gnupg_fd_t (ie. a HANDLE under Windows) which requires other changes and should be done in the other parts of the code as well. assuan_sock_close also delegates to the system specific function and on Windows removes the fd also from the cygwin table. This may trigger other bugs so I'd like to keep it as it is to go with the code which has been in active use for a long time - at least for 2.2

Aug 27 2020, 11:01 AM · Windows, scd, gnupg (gpg23)
werner added a project to T5033: dirmngr does not seem to use the default .gnupg directory if GNUPGHOME is not set: Info Needed.
Aug 27 2020, 10:47 AM · gnupg, Not A Bug
werner closed T4597: Support GCM modes for ntbtls. as Resolved.

0.2.0 was just released with support for GCM. Tested against openpgpkeys.pm.me

Aug 27 2020, 9:34 AM · Restricted Project, Feature Request, ntbtls
werner committed rD91b230451226: swdb: Take signing key from ~/.gnupg-autogen.rc (authored by werner).
swdb: Take signing key from ~/.gnupg-autogen.rc
Aug 27 2020, 9:30 AM
werner committed rDa6c7b484c7a0: swdb: Release ntbtls 0.2.0 (authored by werner).
swdb: Release ntbtls 0.2.0
Aug 27 2020, 9:22 AM
werner committed rT6a4ffcc68cb0: Release 0.2.0 (authored by werner).
Release 0.2.0
Aug 27 2020, 9:18 AM
werner committed rT56061b8dd685: Post release updates (authored by werner).
Post release updates
Aug 27 2020, 9:18 AM
werner committed rT8b3a059e8a81: Fix printf error in debug output. (authored by werner).
Fix printf error in debug output.
Aug 27 2020, 9:18 AM
werner committed rTf10e83874e86: Add public function ntbtls_get_last_alert. (authored by werner).
Add public function ntbtls_get_last_alert.
Aug 27 2020, 9:18 AM
werner committed rG45499b2ca3e8: dirmngr: Print the last alert message returned by NTBTLS. (authored by werner).
dirmngr: Print the last alert message returned by NTBTLS.
Aug 27 2020, 9:05 AM
werner committed rG05358d738411: dirmngr: Print the last alert message returned by NTBTLS. (authored by werner).
dirmngr: Print the last alert message returned by NTBTLS.
Aug 27 2020, 9:03 AM

Aug 26 2020

werner committed rT408d5b469a2a: Silence some compiler warnings (authored by werner).
Silence some compiler warnings
Aug 26 2020, 9:33 PM
werner committed rT1003f94975ec: Improve debug messages for alerts. (authored by werner).
Improve debug messages for alerts.
Aug 26 2020, 9:33 PM
werner added a comment to T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE.

I am always glad to fix such bugs before a release (I am about to prepare 2.2.22).

Aug 26 2020, 3:48 PM · Wayland, pinentry
werner merged T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE into T4137: IPC syntax error when `gpg` starts `gpg-agent` without `$TERM` variable.
Aug 26 2020, 3:19 PM · gnupg, Bug Report
werner merged task T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE into T4137: IPC syntax error when `gpg` starts `gpg-agent` without `$TERM` variable.
Aug 26 2020, 3:19 PM · Wayland, pinentry
werner added a comment to T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE.

rG4c8d5eb0bdd3: agent: Allow TERM="".

Aug 26 2020, 3:19 PM · Wayland, pinentry
werner added a comment to T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE.

Mails crossed ;-)

Aug 26 2020, 3:16 PM · Wayland, pinentry
werner committed rG90a87d96eaf5: build: Silence gcc warning -Wformat-zero-length (authored by werner).
build: Silence gcc warning -Wformat-zero-length
Aug 26 2020, 3:15 PM
werner committed rG4699911f047c: speedo: Allow customizing the release process (authored by werner).
speedo: Allow customizing the release process
Aug 26 2020, 3:15 PM
werner committed rG4c8d5eb0bdd3: agent: Allow TERM="". (authored by gniibe).
agent: Allow TERM="".
Aug 26 2020, 3:14 PM
werner committed rG0be5decc0972: build: Silence gcc warning -Wformat-zero-length (authored by werner).
build: Silence gcc warning -Wformat-zero-length
Aug 26 2020, 3:14 PM
werner added a comment to T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE.

Ah wait. This has been fixed in master a year ago but was not backported to 2.2; see T4137. I'll add it to the forthcoming 2.2.22. Thanks for the report.

Aug 26 2020, 3:11 PM · Wayland, pinentry
werner added a comment to T5036: pinentry won't launch when gpg is invoked by Firefox when Firefox runs with native wayland support in a wayland DE.

The warning above is harmless. Both strings are actually the same but stem from different versions of the autotools helper scripts

Aug 26 2020, 3:05 PM · Wayland, pinentry
werner committed rG2969525a600f: speedo: Allow customizing the release process (authored by werner).
speedo: Allow customizing the release process
Aug 26 2020, 2:44 PM