It is possible to disable the mlock thingy and if that is not wanted the application should be modified to be suid(root) during Libgcrypt initialization - this is actually how we handle this in GnuPG. Or maybe I don't understand the bug described here. It seems to be more of a support question.

Jan 7 2021, 11:22 AM · FAQ, Solaris, libgcrypt

• werner closed T4499: Asan finding in libgcrypt as Wontfix.

For security and auditing reasons a Libgcrypt SO may not be "unloaded".

Jan 7 2021, 11:16 AM · libgcrypt

• werner added a subtask for T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297): T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452).

Jan 7 2021, 11:04 AM · Feature Request, libgcrypt

• werner added a parent task for T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452): T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297).

Jan 7 2021, 11:04 AM · Feature Request, libgcrypt

• werner closed T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error as Wontfix.

Jan 7 2021, 11:02 AM · Legacy OS, Fedora, libgcrypt, Bug Report

• werner set the color for Legacy OS to Pink.

Jan 7 2021, 11:02 AM

• werner changed the status of T4293: Add dedicated X25519 function to Libcgrypt from Testing to Open.

gcry_ecc_get_algo_keylen has been added with commit a658c9ccc2c741f40b0b5cdbcd184cfb9a841d17 but documentation is missing.

Jan 7 2021, 10:58 AM · Restricted Project, libgcrypt

bernhard added a comment to T5218: keytocard does not remove secret key as documented.

The user reported to

Jan 7 2021, 10:56 AM · Windows, gnupg (gpg22)

• werner closed T4274: Fail selftests when checksum file is missing in FIPS mode only as Resolved.

Jan 7 2021, 10:52 AM · Restricted Project, libgcrypt, Bug Report

bernhard updated the task description for T5218: keytocard does not remove secret key as documented.

Jan 7 2021, 10:52 AM · Windows, gnupg (gpg22)

• ikloecker created T5220: Kleopatra: Setting the initial SigG PIN fails.

Jan 7 2021, 10:45 AM · kleopatra

• ikloecker added a comment to T5129: Kleopatra: Generate S/MIME CSR for NetKey card key.

Generating a CSR for the standard NetKey card signing key works now, but generating a CSR for the SigG NetKey card key fails (T5219).

Jan 7 2021, 10:37 AM · kleopatra

• ikloecker added a parent task for T5219: scd: Generating CSR for SigG NetKey card key fails: T5129: Kleopatra: Generate S/MIME CSR for NetKey card key.

Jan 7 2021, 10:35 AM · gnupg24, eIDAS, gnupg (gpg23), scd

• ikloecker added a subtask for T5129: Kleopatra: Generate S/MIME CSR for NetKey card key: T5219: scd: Generating CSR for SigG NetKey card key fails.

Jan 7 2021, 10:35 AM · kleopatra

• ikloecker created T5219: scd: Generating CSR for SigG NetKey card key fails.

Jan 7 2021, 10:35 AM · gnupg24, eIDAS, gnupg (gpg23), scd

• werner added a comment to T5218: keytocard does not remove secret key as documented.

Please describe exactly what you did so that we can replicate this.

Jan 7 2021, 10:04 AM · Windows, gnupg (gpg22)

• werner committed rCb66dba37b4ee: doc: Add missing OIDs to the list of supported curves (authored by • werner).

doc: Add missing OIDs to the list of supported curves

Jan 7 2021, 9:55 AM

• werner closed T3220: Missing curve documentation as Resolved.

Thanks. I added the OIDs and the missing curves. To go into 1.9

Jan 7 2021, 9:54 AM · patch, libgcrypt, Bug Report

bernhard created T5218: keytocard does not remove secret key as documented.

Jan 7 2021, 9:54 AM · Windows, gnupg (gpg22)

• gniibe committed rC9d9cebb61240: Add CMAC selftest. (authored by • gniibe).

Add CMAC selftest.

Jan 7 2021, 9:26 AM

• aheinecke committed rW75e2cb24b091: Use KF5_HOST_TOOLING to avoid patching KConfig (authored by • aheinecke).

Use KF5_HOST_TOOLING to avoid patching KConfig

Jan 7 2021, 9:23 AM

• werner lowered the priority of T1303: Please support GCRYSEXP_FMT_BASE64 from Normal to Wishlist.

Jan 7 2021, 9:14 AM · Feature Request, libgcrypt

• gniibe added a comment to T5189: update Chinese translation.

D520 is accepted by me.
If you will have another fixes, please go ahead.
Or else, I'll commit the change to master of GnuPG.

Jan 7 2021, 8:21 AM · gnupg

• gniibe accepted D520: gnupg po: Fix Simplified Chinese Translation.

Jan 7 2021, 8:19 AM

Jan 6 2021

rupor-github added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

I wrote https://github.com/rupor-github/win-gpg-agent to simplify usage on Windows until this issue is resolved - it handles various edge cases on Windows.

Jan 6 2021, 7:25 PM · Not A Bug, workaround, gnupg24, Windows, ssh

cbiedl added a comment to T5215: gnugp1: Fix build errors with gcc-10.

Okay. Now since configure.ac is already touching CFLAGS, it seemed like a good place to add that additional option here. All this is guarded by a test for GCC, and since clang mimics that behaviour, it works for them as well.

Jan 6 2021, 5:42 PM · gnupg (gpg14), patch, Bug Report

• aheinecke committed rWbbf5ae28bdb8: Patch kconfig to allow overriding the executable (authored by • aheinecke).

Patch kconfig to allow overriding the executable

Jan 6 2021, 4:25 PM

• aheinecke committed rW00eb34022bd8: Update KDE Frameworks to 5.77 (authored by • aheinecke).

Update KDE Frameworks to 5.77

Jan 6 2021, 4:25 PM

• aheinecke committed rW924790caade2: Fix qmake in toolchain file (authored by • aheinecke).

Fix qmake in toolchain file

Jan 6 2021, 4:25 PM

• werner added a comment to T5215: gnugp1: Fix build errors with gcc-10.

Take care: gpg is also used on platforms with proprietary compilers which don't support -f options. Thus you need to limit this to gcc.

Jan 6 2021, 4:03 PM · gnupg (gpg14), patch, Bug Report

cbiedl added a comment to T5215: gnugp1: Fix build errors with gcc-10.

After some more checking: LLVM-11 introduced the same behaviour in that regard, but appearently not a pragma/attribute to override this: https://releases.llvm.org/11.0.0/tools/clang/docs/ReleaseNotes.html

Jan 6 2021, 3:55 PM · gnupg (gpg14), patch, Bug Report

• ikloecker committed rG7eef40cc1143: I meant "SHA-2 digests" in the previous commit. (authored by • ikloecker).

I meant "SHA-2 digests" in the previous commit.

Jan 6 2021, 3:06 PM

• ikloecker closed T5184: scd: Generating CSR for NetKey card key fails as Resolved.

Jan 6 2021, 12:22 PM · scd

• ikloecker closed T5184: scd: Generating CSR for NetKey card key fails, a subtask of T5129: Kleopatra: Generate S/MIME CSR for NetKey card key, as Resolved.

Jan 6 2021, 12:22 PM · kleopatra

• ikloecker committed rG8fe976d5b9a0: scd:nks: Add support for signing plain SHA-3 digests. (authored by • ikloecker).

scd:nks: Add support for signing plain SHA-3 digests.

Jan 6 2021, 12:21 PM

• aheinecke committed rWadbac241d3d2: Remove obsolete patch for libgpg-error (authored by • aheinecke).

Remove obsolete patch for libgpg-error

Jan 6 2021, 12:03 PM

• aheinecke added a comment to rKLEOPATRA4e8afe8036ac: Handle tag preferences with kconfig compiler.

This reminds me that I should check if kconfig_compiler nowadays supports cross compiling or add that. Back when I started cross compiling kleopatra in 2015 I was lazy and patched in the generated kconfig files. I never really saw the advantage of them but yeah it's more KDEish to use them.

Jan 6 2021, 10:49 AM

• aheinecke changed the status of T4184: Outlook 2013 Appointments vanish when send as a E-Mail from Open to Testing.

This works now with 0c1bd9076958e584820fadf997ca7d8a248b6888 but needs more testing before this can be relased. It will probably be part of a Gpg4win-4 beta.

Jan 6 2021, 10:29 AM · gpgol, Bug Report, gpg4win

• aheinecke committed rOceaf9a6c09ba: Fix draft encryption for async crypt in OOM (authored by • aheinecke).

Fix draft encryption for async crypt in OOM

Jan 6 2021, 9:58 AM

bobwxc updated the diff for D520: gnupg po: Fix Simplified Chinese Translation.

Jan 6 2021, 8:54 AM

• gniibe added inline comments to D520: gnupg po: Fix Simplified Chinese Translation.

Jan 6 2021, 2:40 AM

Jan 5 2021

• ikloecker committed rKLEOPATRA35f24bc67d5d: Fix build with gpgme < 1.15.0 (authored by • ikloecker).

Fix build with gpgme < 1.15.0

Jan 5 2021, 6:47 PM

• ikloecker committed rKLEOPATRA66efcb74b419: Fix build with gpgme < 1.14.1 (authored by • ikloecker).

Fix build with gpgme < 1.14.1

Jan 5 2021, 6:36 PM

• ikloecker committed rKLEOPATRA2fe6ffd20762: Make filtering by tags (and display of tags) work in key selection (authored by • ikloecker).

Make filtering by tags (and display of tags) work in key selection

Jan 5 2021, 6:02 PM

• ikloecker committed rKLEOPATRA021cd34fe098: Fix display of tags in key details for secret keys (authored by • ikloecker).

Fix display of tags in key details for secret keys

Jan 5 2021, 6:02 PM

• ikloecker committed rKLEOPATRA2c35da3ddbcf: Use domain term "tag[s]" instead of "remark[s]" as much as possible (authored by • ikloecker).

Use domain term "tag[s]" instead of "remark[s]" as much as possible

Jan 5 2021, 6:02 PM

• ikloecker committed rKLEOPATRA4e8afe8036ac: Handle tag preferences with kconfig compiler (authored by • ikloecker).

Handle tag preferences with kconfig compiler

Jan 5 2021, 6:02 PM

• ikloecker committed rKLEOPATRA4b6f8f4b5a01: Do not disable tag support if Tags column is disabled/not shown (authored by • ikloecker).

Do not disable tag support if Tags column is disabled/not shown

Jan 5 2021, 6:02 PM

• ikloecker closed T3580: GPGME: Keylist mode sigs combined with secret does not work (anymore?) as Resolved.

Jan 5 2021, 5:54 PM · gpgme

• ikloecker committed rM5137d7fc214d: core: Make listing of signatures work if only secret keys are listed (authored by • ikloecker).

core: Make listing of signatures work if only secret keys are listed

Jan 5 2021, 5:49 PM

• ikloecker claimed T3580: GPGME: Keylist mode sigs combined with secret does not work (anymore?).

Taking since I ran into this problem while working on T5174. In Kleopatra, if one opens the certificate details of one's own keys (i.e. secret key is available), then the tags vanish from the key list.

Jan 5 2021, 5:08 PM · gpgme

• werner added a comment to T3505: Port GPGME's Python bindings to Windows.

The C++, CL, Javascript and QT Bindings are all written by hand.

Jan 5 2021, 4:06 PM · Feature Request, gpgme, Python

• aheinecke committed rO28b05072198e: Handle protected-headers also on multipart parts (authored by • aheinecke).

Handle protected-headers also on multipart parts

Jan 5 2021, 3:51 PM

• aheinecke committed rOe81efc2bffa6: Change crypto state names to be descriptive (authored by • aheinecke).

Change crypto state names to be descriptive

Jan 5 2021, 3:51 PM

• aheinecke committed rO097606999554: Another statename change (authored by • aheinecke).

Another statename change

Jan 5 2021, 3:51 PM

• aheinecke committed rOd120e866e04e: Unify WantsSend states to CryptFinished (authored by • aheinecke).

Unify WantsSend states to CryptFinished

Jan 5 2021, 3:51 PM

• aheinecke committed rO93be368dc258: Fix broken encryptSignStart invocation. (authored by • aheinecke).

Fix broken encryptSignStart invocation.

Jan 5 2021, 3:51 PM

• aheinecke committed rOc67dda95eec6: Remove NeedsFirstAfterWrite state (authored by • aheinecke).

Remove NeedsFirstAfterWrite state

Jan 5 2021, 3:51 PM

• aheinecke committed rO795277c7da5c: Log early if a mail is read only (authored by • aheinecke).

Log early if a mail is read only

Jan 5 2021, 3:51 PM

• aheinecke committed rO2baf54b2c2fe: Minor change of a debug statement (authored by • aheinecke).

Minor change of a debug statement

Jan 5 2021, 3:51 PM

• werner committed rEa235d43ccc2e: doc: Add a description for GPG_ERR_USE_CONDITIONS. (authored by • werner).

doc: Add a description for GPG_ERR_USE_CONDITIONS.

Jan 5 2021, 3:51 PM

cbiedl committed rG068a4482c741: Empty test commit message (authored by cbiedl).

Empty test commit message

Jan 5 2021, 3:19 PM

bernhard added a comment to T3505: Port GPGME's Python bindings to Windows.

Hi Werner,

we do it for the other bindings as well.

can you elaborate?

Jan 5 2021, 3:01 PM · Feature Request, gpgme, Python

• aheinecke added a comment to rKLEOPATRA536ed69534e8: Try to fill out name and email for new key on win.

Ok. I've just added with rev 69539cea316f2d2998eefbd14539f8def3fc07ab more platform specific code for userinformation so this makes even more sense.

Jan 5 2021, 1:36 PM

• aheinecke committed rKLEOPATRA69539cea316f: Prevent process elevation on Windows (authored by • aheinecke).

Prevent process elevation on Windows

Jan 5 2021, 1:33 PM

• aheinecke added a comment to T5212: Kleopatra: Check if run with elevated privileges and exit in that case.

Have you tried on the command line: "gpg --gen-key" ? Maybe this gives more helpful debug output. But in the case of "permission denied" this really sounds like a local setup issue as there are also no other reports related to this. Still I'll add the saveguard to make the check in kleo more explicit.

Jan 5 2021, 1:28 PM · Feature Request, Restricted Project, kleopatra

bobwxc added a comment to T5189: update Chinese translation.

In T5189#140853, @gniibe wrote:
Please check following translations:
"do not detach from the console"
"do not use the internal CCID driver"
"do not use a reader's pinpad"
Those are explanation for the options to instruct gpg-agent or scdaemon, not do something.
It's not a text to users.

Jan 5 2021, 11:56 AM · gnupg

bobwxc created D520: gnupg po: Fix Simplified Chinese Translation.

Jan 5 2021, 11:53 AM

• werner reassigned T5184: scd: Generating CSR for NetKey card key fails from • werner to • ikloecker.

It seems you have a pretty good understanding and also test cases at hand. May I ask you to apply the suggested pacthes to master?

Jan 5 2021, 11:08 AM · scd

• werner lowered the priority of T3505: Port GPGME's Python bindings to Windows from High to Normal.

Given all the resources we had put on this Python bindings I'd suggest to bite the bullet and replace Swig by handcrafted bindings. More work but we do it for the other bindings as well.

Jan 5 2021, 10:59 AM · Feature Request, gpgme, Python

• werner lowered the priority of T4571: Outlook sometimes crashes when activating encrypted mail with (partial) non-encrypted appendix from High to Low.

I'd suggest to first try the current version to see whether the bug has been solved.

Jan 5 2021, 10:56 AM · gpgol, Bug Report, gpg4win

• werner lowered the priority of T4695: Remove SERIALNO as an identifier to select keys from High to Normal.

I think we can close this one, right?

Jan 5 2021, 10:54 AM · Restricted Project, Feature Request, gnupg

wiktor-k added a comment to T4694: manage first-party attestations.

For the context of all subscribed parties I think Werner refers to what Hockeypuck is doing: https://lists.gnupg.org/pipermail/gnupg-users/2020-December/064441.html

Jan 5 2021, 10:45 AM · Keyserver, Feature Request

• werner lowered the priority of T4694: manage first-party attestations from High to Low.

Meanwhile there are simpler ideas and code on how to do only authenticated uploads. Thus lowering the prio.

Jan 5 2021, 10:41 AM · Keyserver, Feature Request

• aheinecke added a comment to T5103: GPG4Win Executes through Personal (having admin rights ) account only.

I think the option you are looking for is "--homedir" with that option on the command line you can redirect where GnuPG looks for options and keys.

Jan 5 2021, 10:41 AM · Support, gpg4win

• werner closed T5103: GPG4Win Executes through Personal (having admin rights ) account only as Invalid.

Jan 5 2021, 10:38 AM · Support, gpg4win

• werner added a comment to T5103: GPG4Win Executes through Personal (having admin rights ) account only.

@glr thanks for the offer. Right now the number of support requests is low enough that we can handle them during the normal triage.

Jan 5 2021, 9:42 AM · Support, gpg4win

• werner triaged T5190: g10 Compiler error as Low priority.

Jan 5 2021, 9:40 AM · AIX, toolchain, gnupg

• werner assigned T5101: Translate GpgOL in Italian to • aheinecke.

Jan 5 2021, 9:38 AM · i18n, gpgol

All StoriesUse ResultsEdit QueryHide Query

Jan 7 2021

Jan 6 2021

Jan 5 2021

All Stories
Use Results
Edit Query
Hide Query