Page MenuHome GnuPG
Feed Advanced Search

Aug 22 2022

ikloecker closed T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?) as Resolved.

Thanks. QGpgME should now also compile with strict C++11. And C++14'isms shouldn't happen again unnoticed.

Aug 22 2022, 3:07 PM · Restricted Project, clang, C++, gpgme, Bug Report
wrobelda reopened T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?) as "Open".

Also in:

Aug 22 2022, 11:55 AM · Restricted Project, clang, C++, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

I suggest simply removing any -L linker path from the output if it matches the $libdir in gpgrt-config.

Aug 22 2022, 8:21 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Even without libassuan-config installed in libassuan-2.5.5.

$ gpgrt-config --libdir=/usr/lib64 libassuan --libs
-L/usr/lib64 -lassuan

gpg-error is not affected at least.

 gpgrt-config --libdir=/usr/lib64 gpg-error --libs
-lgpg-error

In lang/qt/tests/Makefile:

LIBASSUAN_CONFIG = /usr/bin/gpgrt-config --libdir=/usr/lib64 libassuan
LIBASSUAN_LIBS = -L/usr/lib64 -lassuan
Aug 22 2022, 5:47 AM · gpgrt, gpgme, Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

gpg-error-config and its relatives (libassuan-config, included) were written before pkg-config. The support of cross build, multiarch, and multilib by those are quite limited (and sometimes wrong). Basically, those scripts are deprecated, but it has been kept for backward compatibility.

Aug 22 2022, 2:47 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

It seems the issue is also in libassuan-config.

$ libassuan-config --libs
-L/usr/lib64 -lassuan -lgpg-error

The shell logic here does not seem quite right to me.

Aug 22 2022, 1:40 AM · gpgrt, gpgme, Bug Report

Aug 21 2022

tigernero added a comment to T6129: Yubikey 5C 'not available: card error' regression.

what's new for a possible gnupg 2.3.8 or gpg4win 4.0.4 release?

Aug 21 2022, 2:30 PM · Bug Report, gpg4win
tigernero added a comment to T6070: Yubikey 5C 'not available: card error' regression.

what's new for a possible gnupg 2.3.8 or gpg4win 4.0.4 release?

Aug 21 2022, 2:30 PM · gnupg (gpg23), scd, Bug Report

Aug 19 2022

werner added a comment to T6140: Kleopatra: F5 does not always work in smartcard dialog.

I imported the public key using Kleopatra.

Aug 19 2022, 9:41 PM · Restricted Project, kleopatra, Bug Report
ikloecker changed the status of T6140: Kleopatra: F5 does not always work in smartcard dialog from Open to Testing.

The information should now be updated automatically. F5 still won't change anything if the data on the smart card didn't change, but pressing F5 to update information about locally stored keys shouldn't be necessary in the first place.

Aug 19 2022, 5:29 PM · Restricted Project, kleopatra, Bug Report
ikloecker added a comment to T6140: Kleopatra: F5 does not always work in smartcard dialog.

The Smartcards view is not updated because the data on the card hasn't changed. The update can be forced by removing and re-inserting the card.

Aug 19 2022, 12:12 PM · Restricted Project, kleopatra, Bug Report
ikloecker claimed T6140: Kleopatra: F5 does not always work in smartcard dialog.
Aug 19 2022, 11:59 AM · Restricted Project, kleopatra, Bug Report
ikloecker added a comment to T6140: Kleopatra: F5 does not always work in smartcard dialog.

With GnuPG master and Kleopatra master I'm making (slightly) different observations.

Aug 19 2022, 11:51 AM · Restricted Project, kleopatra, Bug Report
ikloecker closed T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?) as Resolved.
Aug 19 2022, 11:12 AM · Restricted Project, clang, C++, gpgme, Bug Report
ikloecker added a comment to T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).

Thanks for the report! Should be fixed.

Aug 19 2022, 11:08 AM · Restricted Project, clang, C++, gpgme, Bug Report
ikloecker closed T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration as Resolved.

Thanks for reporting and testing my fixes.

Aug 19 2022, 10:54 AM · Restricted Project, qt, gpgme, Bug Report

Aug 18 2022

andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Our tests are fine as of rM2e7a61b898fc.

Aug 18 2022, 10:32 PM · Restricted Project, qt, gpgme, Bug Report
smlx added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

Yes, that patch is not a great solution. Ideally there would be an interactive choice in the gpg CLI between encrypting/signing subkey during the add-existing-subkey operation.

Aug 18 2022, 4:23 PM · gnupg24, Bug Report
mpilgrem created T6142: On Windows, gpg 2.3.7 thinks the certificates of major keyservers have expired.
Aug 18 2022, 1:32 PM · workaround, gnupg, Keyserver, Bug Report
ikloecker triaged T6140: Kleopatra: F5 does not always work in smartcard dialog as Normal priority.

Yeah. F5 only refreshes the smart cards. It doesn't refresh Kleopatra's key cache.

Aug 18 2022, 1:30 PM · Restricted Project, kleopatra, Bug Report
ikloecker claimed T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).
Aug 18 2022, 1:28 PM · Restricted Project, clang, C++, gpgme, Bug Report
tnn2 created T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).
Aug 18 2022, 11:51 AM · Restricted Project, clang, C++, gpgme, Bug Report
werner added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

It will be a lot of work to change this in gpg. Thus ISO dates were only introduced with gpgsm after the former glibc maintainer refused to switch to a 64 bit time_t - which would have been easy enough at that time (about the year 2001).

Aug 18 2022, 11:47 AM · Restricted Project, qt, gpgme, Bug Report
werner created T6140: Kleopatra: F5 does not always work in smartcard dialog.
Aug 18 2022, 11:01 AM · Restricted Project, kleopatra, Bug Report
ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Yes, it's a problem in gpg. gpg asks for the expiration date of the subkey

[  277s] EditInteractor: 4 -> nextState( GET_LINE, keygen.valid ) -> 5

gpgme replies with an ISO date

[  277s] EditInteractor: action result "21000101T120000"

Then gpg asks again for the expiration date

[  277s] EditInteractor: 5 -> nextState( GET_LINE, keygen.valid ) -> 4294967295

which gpgme doesn't expect, so that gpgme return a "general error".

Aug 18 2022, 10:17 AM · Restricted Project, qt, gpgme, Bug Report
Jakuje added a comment to T6127: FIPS 140-3 final review comments.

For the record, the changeset in the attached merge request is final and waiting for reviews.

Aug 18 2022, 8:42 AM · FIPS, libgcrypt, Bug Report
gniibe triaged T6097: SC-HSM 4K Compatibility as Low priority.

Thank you for your log.

Aug 18 2022, 3:57 AM · Bug Report

Aug 17 2022

ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Thanks! It seems that we pass the correct expiration date to gpg:

EditInteractor: action result "21000101T120000"

So, it's maybe a problem in gpg now.

Aug 17 2022, 11:55 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

relevant items start at line 4900 ...

[  274s] + pushd lang/qt/tests
Aug 17 2022, 9:29 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Hmm. Please run the test with

GPGMEPP_INTERACTOR_DEBUG=stderr GPGME_DEBUG=8 TESTS="initial.test t-addexistingsubkey final.test" make -e check-TESTS

in lang/qt/tests under the build folder to get (a lot of) debug output.

Aug 17 2022, 8:28 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

WIP with those three patches:

Aug 17 2022, 7:09 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker triaged T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration as Normal priority.
Aug 17 2022, 6:50 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker moved T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Aug 17 2022, 4:56 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker claimed T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Aug 17 2022, 4:56 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

This patch breaks adding existing ECDH encryption subkeys to a key because now gpg tries to treat the encryption subkey as signing subkey. This can be reproduced with test t-addexistingsubkey in gpgme.

Aug 17 2022, 2:26 PM · gnupg24, Bug Report
margirou added a comment to T6097: SC-HSM 4K Compatibility.

I am attaching the files. The "gpgconf --list-config" gave the error "gpgconf: can't open global config file 'C:\\ProgramData\\GNU\\etc\\gnupg\\gpgconf.conf': No such file or directory", so I tried the "gpgconf --show-configs".

Aug 17 2022, 8:52 AM · Bug Report
werner added a comment to T6097: SC-HSM 4K Compatibility.

ACS readers simply don't work reliable under Linux.

Aug 17 2022, 7:36 AM · Bug Report
werner updated the task description for T6097: SC-HSM 4K Compatibility.
Aug 17 2022, 7:32 AM · Bug Report
werner added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

There is a reason that we switched to ISO Date strings in large parts of GnuPG ;-)

Aug 17 2022, 7:30 AM · Restricted Project, qt, gpgme, Bug Report
margirou renamed T6097: SC-HSM 4K Compatibility from scdaemon cannot recognise SC-HSM to SC-HSM 4K Compatibility.
Aug 17 2022, 5:44 AM · Bug Report
margirou raised the priority of T6097: SC-HSM 4K Compatibility from Low to Needs Triage.

Hello again,

Aug 17 2022, 5:41 AM · Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

@ikloecker Thank you. You're right. Please go ahead.

Aug 17 2022, 1:44 AM · gpgrt, gpgme, Bug Report
andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Aug 17 2022, 12:23 AM · Restricted Project, qt, gpgme, Bug Report

Aug 16 2022

andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Aug 16 2022, 11:40 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Aug 16 2022, 11:24 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger created T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Aug 16 2022, 11:24 PM · Restricted Project, qt, gpgme, Bug Report

Aug 15 2022

ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

It seems that the case $libdir = '${exec_prefix}/lib64' is not handled correctly, i.e. I get

prefix=/usr
exec_prefix=${prefix}
includedir=${prefix}/include
libdir=${exec_prefix}/lib64
[...]
Libs: -L${libdir} -lgpg-error

in gpg-error.pc.

Aug 15 2022, 10:58 AM · gpgrt, gpgme, Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Note that gpgrt-config supports the PKG_CONFIG_PATH and PKG_CONFIG_LIBDIR environment variables.

Aug 15 2022, 10:12 AM · gpgrt, gpgme, Bug Report
gniibe closed T5438: gpgme_op_keylist_from_data_start ignores GPGME_KEYLIST_MODE_SIGS as Resolved.

It's in 1.18.0.

Aug 15 2022, 2:57 AM · gpgme (gpgme 1.23.x), OpenPGP, Bug Report
gniibe closed T5825: [gpgme] [python] possible dangling reference to passphrase as Resolved.

It's in 1.18.0.

Aug 15 2022, 2:56 AM · patch, gpgme, Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Please note that with newer libgpg-error releases, you can safely not install or can safely remove installed gpg-error-config. For GnuPG and its friends (including gpgme), gpgrt-config with gpg-error.pc are used instead (when no gpg-error-config).

Aug 15 2022, 2:37 AM · gpgrt, gpgme, Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

gpg-error-config (which is old shell script to offer functionality of pkg-config) gives -L/usr/lib64 when it is configured at the build time.
gpg-error-config hasn't got improved, but kept its behavior (for backward compatibility and lesser surprise), while we are moving to the support of gpg-error.pc (by pkg-config and/or gpgrt-config).

Aug 15 2022, 1:48 AM · gpgrt, gpgme, Bug Report

Aug 14 2022

orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Maybe the solution would be to stop using gpg-error-config and start using pkgconfig instead?

$ pkgconf --libs gpg-error
-lgpg-error
Aug 14 2022, 5:37 PM · gpgrt, gpgme, Bug Report
ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Another problem seems to be that libtool/automake does not differentiate between library dependencies needed for building the library itself and library dependencies that should be exported to users of the library. There's just mylib_la_LIBADD for specifying the internal/private library dependencies and those also end up as dependencies in the .la file. Or maybe the dependencies in the .la file are used by the original libtool only for building static libraries and it's slibtool's fault to also copy the dependencies verbatim when building a shared library.

Aug 14 2022, 1:21 PM · gpgrt, gpgme, Bug Report
ikloecker updated subscribers of T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

I have checked where -L/usr/lib64 comes from. Ultimately, it seems to come from gpg-error-config --libs which outputs -L/usr/lib64 -lgpg-error. I have no idea why gpg-error-config --libs adds the -L/usr/lib64, but this seems very dangerous to me and was bound to cause trouble because a -L applies to everything that follows and not just to the following -l.

Aug 14 2022, 1:07 PM · gpgrt, gpgme, Bug Report

Aug 13 2022

orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

One idea would be that gpgme installs its libraries in a directory like /usr/lib64/gpgme/, but that might be too disruptive?

Aug 13 2022, 6:23 PM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Yes, you are correct.

[pid  1252] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid  1252] access("../../cpp/src/.libs/libqgpgme.so", F_OK) = -1 ENOENT (No such file or directory)
[pid  1252] access("../../cpp/src/.libs/libqgpgme.a", F_OK) = -1 ENOENT (No such file or directory)
[pid  1252] access("../../cpp/src/../../../src/.libs/libqgpgme.so", F_OK) = -1 ENOENT (No such file or directory)
[pid  1252] access("../../cpp/src/../../../src/.libs/libqgpgme.a", F_OK) = -1 ENOENT (No such file or directory)
[pid  1252] access("/usr/lib64/libqgpgme.so", F_OK) = 0
[pid  1252] openat(AT_FDCWD, "/usr/lib64/libqgpgme.so", O_RDONLY|O_CLOEXEC) = 3
[pid  1252] newfstatat(3, "", {st_mode=S_IFREG|0755, st_size=1253896, ...}, AT_EMPTY_PATH) = 0
[pid  1252] mmap(NULL, 1253896, PROT_READ, MAP_PRIVATE|MAP_NORESERVE, 3, 0) = 0x7fe6f6ffa000
[pid  1252] rt_sigprocmask(SIG_SETMASK, ~[RTMIN RT_1], [], 8) = 0
[pid  1252] close(3)                    = 0

As it shows it checks the linker path in the order they are passed to the compiler and then finds the old system library before the newly built library. GNU libtool also sets the /usr/lib64 path before the using libqgpgme library, but avoids this by using the .so file directly. Presumably this is only on compatible platforms and maybe even a problem on less compatible platforms? I'm not sure the ramifications of slibtool trying to reorder the library paths itself. Hopefully the slibtool dev has some time to also share their thought soon.

Aug 13 2022, 6:17 PM · gpgrt, gpgme, Bug Report
ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

You probably have to call strace with -f, so that processes started by clang are also straced.

Aug 13 2022, 5:16 PM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

I attached the strace log of the failing clang command, but I am not seeing anywhere where it finds libqgpgme on the system, Maybe I'm doing something wrong?

Aug 13 2022, 4:53 PM · gpgrt, gpgme, Bug Report
ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Your observations seem to confirm that the linking picks up the old 1.17.1 version of libqgpgme instead of the newly built one. You could use strace to dispel last doubts. In any case this very much looks like a problem in slibtool.

Aug 13 2022, 3:51 PM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

In retrospect this might be better handled in slibtool itself. I'll try to contact the main dev behind the slibtool project, but they have been very busy lately so it might take some time.

Aug 13 2022, 2:29 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Additionally, moving the -L../src/.libs -lqgpgme earlier in the command line works.

clang++ t-revokekey.o t-support.o -g -O2 -L../../cpp/src/.libs -lgpgmepp -L../../cpp/src/../../../src/.libs -lgpgme -L../src/.libs -lqgpgme -L/usr/lib64 -lassuan -lgpg-error -lassuan -L../src/../../cpp/src/.libs -lgpgmepp -L../src/../../cpp/src/../../../src/.libs -lgpgme -lassuan -lgpg-error -L../src/../../../src/.libs -lQt5Core -L../../../src/.libs -lgpgme -lassuan -lgpg-error -lQt5Test -lQt5Core -lstdc++ -o .libs/t-revokekey
Aug 13 2022, 2:07 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

After some experimenting I found how GNU libtool avoids this.

Aug 13 2022, 1:58 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Another interesting detail is that this is reproduced when trying to update to 1.18.0 from 1.17.1 which is installed on the system, but if 1.17.1 is built without qt5 support and 1.18.0 is then this issue is not reproducible.

Aug 13 2022, 1:19 AM · gpgrt, gpgme, Bug Report
orbea added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

revokekeyjob.moc is included by job.cpp (as many other *job.moc files). The missing symbols should be available in the built libqgpgme.so

Aug 13 2022, 1:03 AM · gpgrt, gpgme, Bug Report

Aug 12 2022

ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

Hmm. There is a -L/usr/lib64 before -L../src/.libs. I guess this causes problems if there is a /usr/lib64/libqgpgme.la because this will be found before the newly built libqgpgme.la in the build directory.

Aug 12 2022, 10:48 PM · gpgrt, gpgme, Bug Report
ikloecker triaged T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject as Normal priority.
Aug 12 2022, 10:10 PM · gpgrt, gpgme, Bug Report
ikloecker added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

revokekeyjob.moc is included by job.cpp (as many other *job.moc files). The missing symbols should be available in the built libqgpgme.so. The command line

rdlibtool: link: clang++ t-revokekey.o t-support.o -g -O2 -L../../cpp/src/.libs -lgpgmepp -L../../cpp/src/../../../src/.libs -lgpgme -L/usr/lib64 -lassuan -lgpg-error -lassuan -L../src/.libs -lqgpgme -L../src/../../cpp/src/.libs -lgpgmepp -L../src/../../cpp/src/../../../src/.libs -lgpgme -lassuan -lgpg-error -L../src/../../../src/.libs -lQt5Core -L../../../src/.libs -lgpgme -lassuan -lgpg-error -lQt5Test -lQt5Core -lstdc++ -o .libs/t-revokekey

includes -L../src/.libs -lqgpgme. So it should link against the newly built library and not against an installed library.

Aug 12 2022, 10:09 PM · gpgrt, gpgme, Bug Report
orbea created T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.
Aug 12 2022, 9:23 PM · gpgrt, gpgme, Bug Report
GPGNewbie9000 added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Dear ikloecker,

Aug 12 2022, 8:10 PM · Bug Report, gpg4win
ikloecker added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

I have no idea why OpenKeyChain cannot decrypt TestFileB.pdf.gpg. Here is the packet list (with automatic decryption).

$ gpg --list-packets TestFileB.pdf.gpg
gpg: encrypted with rsa3072 key, ID B29C3E00B6EF27FA, created 2022-08-12
      "TestKey4 <TestKey4@Email>"
# off=0 ctb=85 tag=1 hlen=3 plen=396
:pubkey enc packet: version 3, algo 1, keyid B29C3E00B6EF27FA
        data: [3071 bits]
# off=399 ctb=d2 tag=18 hlen=2 plen=0 partial new-ctb
:encrypted data packet:
        length: unknown
        mdc_method: 2
# off=420 ctb=a3 tag=8 hlen=1 plen=0 indeterminate
:compressed packet: algo=1
# off=422 ctb=90 tag=4 hlen=2 plen=13
:onepass_sig packet: keyid BBF1585AFE6385A9
        version 3, sigclass 0x00, digest 10, pubkey 1, last=1
# off=437 ctb=cb tag=11 hlen=2 plen=0 partial new-ctb
:literal data packet:
        mode b (62), created 1660319025, name="",
        raw data: unknown length
Aug 12 2022, 7:57 PM · Bug Report, gpg4win
ikloecker added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.
$ gpg --list-packets TestFileA.pdf.gpg 
gpg: encrypted with ECDH key, ID 8594A0FBC4AFAF88
gpg: public key decryption failed: No secret key
gpg: decryption failed: No secret key
# off=0 ctb=84 tag=1 hlen=2 plen=94
:pubkey enc packet: version 3, algo 18, keyid 8594A0FBC4AFAF88
        data: [263 bits]
        data: [392 bits]
# off=96 ctb=d4 tag=20 hlen=2 plen=0 partial new-ctb
:aead encrypted packet: cipher=9 aead=2 cb=16
        length: unknown

-> This still uses AEAD. It seems Werner's method to remove the AEAD feature doesn't work. At least not with gpg 2.3.7.

$ gpg --edit-key 8594A0FBC4AFAF88
Secret key is available.
Aug 12 2022, 7:52 PM · Bug Report, gpg4win
GPGNewbie9000 added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Hello All,

Aug 12 2022, 6:10 PM · Bug Report, gpg4win
aheinecke added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

@werner @ikloecker I tend to agree with the original reporter that this is an issue. Not a Bug, but an issue that causes problems for our Users. At least we should have some way in Kleopatra to disable "Advanced Features". Then users could be pointed to some screenshots how to disable AEAD.

Aug 12 2022, 3:27 PM · Bug Report, gpg4win
werner added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Here is an example on how to remove the AEAD preference from a key using GnuPG 2.3:

Aug 12 2022, 11:31 AM · Bug Report, gpg4win
werner added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

As an alternative you may change the preferences on the key to adjust them to your changed/downgraded version.

Aug 12 2022, 11:18 AM · Bug Report, gpg4win
ikloecker closed T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain as Wontfix.

Observations:

  • TestKey1 (gpg 2.3) is an ECC-key (ed25519/cv25519) while TestKey3 (OpenKeyChain) is an RSA-key (rsa3072). I assume that OpenKeyChain supports ed25519/cv25519.
  • TestKey1 (gpg 2.3) states that it supports some advanced OpenPGP features: features: 07 (= 0x04 + 0x02 + 0x01).
  • TestKey3 (OpenKeyChain) states that it only supports one advanced OpenPGP feature: features: 01
Aug 12 2022, 9:26 AM · Bug Report, gpg4win
ikloecker added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Some details about TestKey3:

$ gpg --show-keys backup_2022-08-11.sec
pub   rsa3072/BBF1585AFE6385A9 2022-08-12 [SC]
      4AFA1B0808A82E3EF941B067BBF1585AFE6385A9
uid                            TestKey3 <TestKey3@Email>
sub   rsa3072/F3E9DFE37D777AEF 2022-08-12 [E]
Aug 12 2022, 9:08 AM · Bug Report, gpg4win
ikloecker added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Some details about TestKey1_0x31B038AA:

$ gpg --show-keys --verbose TestKey1_0x31B038AA_public.asc 
pub   ed25519/CD1E530031B038AA 2022-08-12 [SC] [expires: 2024-08-11]
      A438C95B6CAA724BC9F3DEB9CD1E530031B038AA
uid                            TestKey1 <TestKey1@Email>
sub   cv25519/B390B84B58866C6A 2022-08-12 [E] [expires: 2024-08-11]
Aug 12 2022, 9:07 AM · Bug Report, gpg4win
GPGNewbie9000 added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Here are two keys that I created on OpenKeyChain. They are in an encrypted backup file:

Aug 12 2022, 4:36 AM · Bug Report, gpg4win
GPGNewbie9000 added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Here are two test keys I created with gpg4win 4.0.3 after reinstalling.

Aug 12 2022, 4:15 AM · Bug Report, gpg4win
GPGNewbie9000 updated the task description for T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.
Aug 12 2022, 12:12 AM · Bug Report, gpg4win
GPGNewbie9000 created T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.
Aug 12 2022, 12:02 AM · Bug Report, gpg4win

Aug 11 2022

ikloecker closed T6132: Files Encrypted By gpg4win / Kleopatra Will Not Decrypt With OpenKeyChain as Invalid.

Please don't yell at us!

Aug 11 2022, 10:29 PM · Bug Report, gpg4win
GPGNewbie9000 created T6132: Files Encrypted By gpg4win / Kleopatra Will Not Decrypt With OpenKeyChain.
Aug 11 2022, 9:31 PM · Bug Report, gpg4win
ebeiersdorfer added a comment to T6014: Add support for relative redirect URI-references to dirmngr.

Apologies for the delay here, but the particular user claimed it was no longer an issue and it fell off my radar. However I now have a new individual with the same problem.

Aug 11 2022, 2:42 PM · gnupg24, dirmngr, Bug Report

Aug 10 2022

tigernero added a comment to T6129: Yubikey 5C 'not available: card error' regression.

We are currently investigating another problem with a new feature. Thus things are delayed. Hopefully we get a new release this month (or at least a new gnupg 2.3 version to install on top of gpg4win).

Aug 10 2022, 5:42 PM · Bug Report, gpg4win
werner closed T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python) as Resolved.
Aug 10 2022, 4:01 PM · Python, gpgme, Bug Report
werner closed T6129: Yubikey 5C 'not available: card error' regression as Resolved.

We are currently investigating another problem with a new feature. Thus things are delayed. Hopefully we get a new release this month (or at least a new gnupg 2.3 version to install on top of gpg4win).

Aug 10 2022, 2:59 PM · Bug Report, gpg4win
tigernero added a comment to T6129: Yubikey 5C 'not available: card error' regression.

Is it possible to have a gpg4win ETA that fixes this bug? thank you

Aug 10 2022, 1:43 PM · Bug Report, gpg4win
tigernero created T6129: Yubikey 5C 'not available: card error' regression.
Aug 10 2022, 1:42 PM · Bug Report, gpg4win

Aug 9 2022

Jakuje created T6127: FIPS 140-3 final review comments.
Aug 9 2022, 11:25 AM · FIPS, libgcrypt, Bug Report
gniibe added a comment to T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python).

Indeed, you are right. The object created by with can be valid even after the context (when referenced by another object).

Aug 9 2022, 1:52 AM · Python, gpgme, Bug Report

Aug 8 2022

jap added a comment to T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python).

Not sure if that is the complete fix - if you do something like:

with gpg.Context(...) as context:
    ...
... cause an exception after the context has been closed ...

then context will still be a valid reference to the gpg.Context instance, and may cause segfaults when something tries to access things inside it (f.e. for serialisation).
I like your previous solution with the accessor checks, because that actually fixes the issue.
Stylistically, maybe __del__ should just be renamed to cleanup or free, and then make sure to call that function from both __exit__ and __del__.

Aug 8 2022, 1:14 PM · Python, gpgme, Bug Report
gniibe added a comment to T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python).

I think the fix should be something like this:

diff --git a/lang/python/src/core.py b/lang/python/src/core.py
index 81f961d9..95fd0cba 100644
--- a/lang/python/src/core.py
+++ b/lang/python/src/core.py
@@ -1189,8 +1189,9 @@ class Context(GpgmeWrapper):
     def __enter__(self):
         return self
Aug 8 2022, 10:54 AM · Python, gpgme, Bug Report
gniibe added a comment to T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python).

@jap Thank you.

Aug 8 2022, 10:04 AM · Python, gpgme, Bug Report
ikloecker closed T5569: pinentry qt4 fails to compile in pinentry 1.2.0 as Resolved.

Should be fixed. A copy of an older version of pinentry's source code that can be built with Q4 is now included and will result in a pinentry-qt4 executable. Note that while we won't break this pinentry intentionally we won't maintain it either.

Aug 8 2022, 9:58 AM · Bug Report, pinentry
jap added a comment to T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python).

Can confirm, we've been running into this as well, but never filed a bug report. Our solution is to have this in our codebase:

Aug 8 2022, 9:02 AM · Python, gpgme, Bug Report

Aug 5 2022

gniibe moved T5438: gpgme_op_keylist_from_data_start ignores GPGME_KEYLIST_MODE_SIGS from For a future release to QA for next release on the gpgme board.
Aug 5 2022, 8:12 AM · gpgme (gpgme 1.23.x), OpenPGP, Bug Report
gniibe moved T5825: [gpgme] [python] possible dangling reference to passphrase from Backlog to Python stuff on the gpgme board.
Aug 5 2022, 8:10 AM · patch, gpgme, Bug Report