You are using a somewhat special setup and not what has been tested with gpg (i.e. putty). In particular Cygwin based tools do not interoperate well with non-Cygwin tools.

Oct 28 2022, 3:55 PM · gnupg, Feature Request

• werner added a comment to T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452).

@jukivili: This has been released with 1.10.0 - shall we close this bug?

Oct 28 2022, 3:42 PM · Feature Request, libgcrypt

• werner lowered the priority of T4921: Support import of PKCS#12 encoded ECC private keys. from High to Normal.

Shall we really backport this to 2.2 given that ECC for S/MIME is in most cases a smartcard thing?

Oct 28 2022, 3:38 PM · gnupg22 (gnupg-2.2.42), backport, Feature Request, S/MIME

• werner closed T4098: GpgSM: Add ECC support as Resolved.

Has been release quite some time ago (2.3.8 and earlier)

Oct 28 2022, 3:36 PM · gnupg (gpg23), Feature Request, S/MIME

• werner added a comment to T4938: Support Signature Card V2.0 (NKS15).

Will be released with 2.3.9

Oct 28 2022, 3:34 PM · eIDAS, scd, Feature Request, S/MIME

• werner closed T4938: Support Signature Card V2.0 (NKS15), a subtask of T4098: GpgSM: Add ECC support, as Resolved.

Oct 28 2022, 3:33 PM · gnupg (gpg23), Feature Request, S/MIME

• werner closed T4938: Support Signature Card V2.0 (NKS15) as Resolved.

Oct 28 2022, 3:33 PM · eIDAS, scd, Feature Request, S/MIME

• werner closed T6252: Support ECC for Netkey cards also in 2.2, a subtask of T4938: Support Signature Card V2.0 (NKS15), as Resolved.

Oct 28 2022, 3:32 PM · eIDAS, scd, Feature Request, S/MIME

• werner closed T6252: Support ECC for Netkey cards also in 2.2, a subtask of T6253: GpgSM: Backport ECC support to 2.2, as Resolved.

Oct 28 2022, 3:32 PM · gnupg22 (gnupg-2.2.42), Restricted Project, Feature Request, S/MIME

• werner changed the status of T6253: GpgSM: Backport ECC support to 2.2, a subtask of T4098: GpgSM: Add ECC support, from Open to Testing.

Oct 28 2022, 3:32 PM · gnupg (gpg23), Feature Request, S/MIME

• werner changed the status of T6253: GpgSM: Backport ECC support to 2.2 from Open to Testing.

Oct 28 2022, 3:32 PM · gnupg22 (gnupg-2.2.42), Restricted Project, Feature Request, S/MIME

• werner moved T6253: GpgSM: Backport ECC support to 2.2 from Restricted Project Column to Restricted Project Column on the Restricted Project board.

Oct 28 2022, 9:48 AM · gnupg22 (gnupg-2.2.42), Restricted Project, Feature Request, S/MIME

• werner moved T1235: adding automatic refresh-key from Restricted Project Column to Restricted Project Column on the Restricted Project board.

Oct 28 2022, 9:48 AM · gnupg26, gnupg22, Restricted Project, Feature Request

• werner raised the priority of T1235: adding automatic refresh-key from Normal to High.

Oct 28 2022, 9:48 AM · gnupg26, gnupg22, Restricted Project, Feature Request

Oct 27 2022

jukivili closed T6242: libgcrypt: optimize ECB? (as it may be used to estimate library crypto performance) as Resolved.

Oct 27 2022, 5:07 AM · libgcrypt, Feature Request

Oct 26 2022

• gniibe changed the status of T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP from Open to Testing.

Oct 26 2022, 9:24 AM · Feature Request, scute

• gniibe changed the status of T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent from Open to Testing.

Oct 26 2022, 9:24 AM · Not A Bug, workaround, gnupg24, Windows, ssh

• gniibe added a comment to T6245: GpgOL: build: Update for new gpgrt-config and *.pc.

@aheinecke Please show me how you configure your libassuan-master (and the output which detects host's gpg-error-config erroneously).

Oct 26 2022, 5:11 AM · Windows, gpgol, Feature Request

Oct 25 2022

• aheinecke added a comment to T6245: GpgOL: build: Update for new gpgrt-config and *.pc.

I have pushed the patch, but still it did not work for me properly over everything and I had to add --enable-install-gpg-error-config to libgpg-error. This was because of at least the 64 bit build of libassuan-master it picked up gpg-error-config from my host system. I then tried to add --with-gpg-error-prefix to the assuan call but that failed because it only looked for gpg-error-config in this prefix and not for any gpgrt-config and failed immediately with a command not found error.

Oct 25 2022, 3:48 PM · Windows, gpgol, Feature Request

Oct 24 2022

• ebo closed T6205: GnuPG: Unknown encryption keys should not result in non-compliant encryption on decryption as Resolved.

works as proposed by werner.

Oct 24 2022, 3:27 PM · gnupg (gpg22), Feature Request, Restricted Project

• werner triaged T6235: Problem editing Expiration Time as Normal priority.

Oct 24 2022, 7:19 AM · gnupg24, Feature Request

• werner triaged T6242: libgcrypt: optimize ECB? (as it may be used to estimate library crypto performance) as Low priority.

Go ahead if you want to do that.

Oct 24 2022, 7:19 AM · libgcrypt, Feature Request

Oct 20 2022

• werner edited projects for T6235: Problem editing Expiration Time, added: Feature Request, gnupg (gpg23); removed Bug Report.

Oct 20 2022, 10:10 PM · gnupg24, Feature Request

• werner added a subtask for T6253: GpgSM: Backport ECC support to 2.2: T6252: Support ECC for Netkey cards also in 2.2.

Oct 20 2022, 2:33 PM · gnupg22 (gnupg-2.2.42), Restricted Project, Feature Request, S/MIME

• werner triaged T6253: GpgSM: Backport ECC support to 2.2 as High priority.

Oct 20 2022, 2:32 PM · gnupg22 (gnupg-2.2.42), Restricted Project, Feature Request, S/MIME

• werner changed the status of T6252: Support ECC for Netkey cards also in 2.2, a subtask of T4938: Support Signature Card V2.0 (NKS15), from Open to Testing.

Oct 20 2022, 2:12 PM · eIDAS, scd, Feature Request, S/MIME

• werner added a subtask for T4938: Support Signature Card V2.0 (NKS15): T6252: Support ECC for Netkey cards also in 2.2.

Oct 20 2022, 2:11 PM · eIDAS, scd, Feature Request, S/MIME

Oct 19 2022

• gniibe added a comment to T6248: FIPS compliant RSA OAEP encryption.

Please note that: libgcrypt offers ECDH functionality by gcry_pk_encrypt/gcry_pk_decrypt to construct OpenPGP public-key encryption/decryption.

Oct 19 2022, 9:05 AM · libgcrypt, FIPS, Feature Request

• werner triaged T6248: FIPS compliant RSA OAEP encryption as Normal priority.

So, this is only for OAEP but not for ECDH? FWIW, GnUPG uses OAEP only for S/MIME.

Oct 19 2022, 7:54 AM · libgcrypt, FIPS, Feature Request

• gniibe added a comment to T6242: libgcrypt: optimize ECB? (as it may be used to estimate library crypto performance).

It's not that needed, in my opinion, as nobody actually uses ECB itself (in real use case). But I understand the point of (possibly, students') benchmarking.

Oct 19 2022, 3:19 AM · libgcrypt, Feature Request

Oct 18 2022

Jakuje created T6248: FIPS compliant RSA OAEP encryption.

Oct 18 2022, 11:57 AM · libgcrypt, FIPS, Feature Request

• aheinecke claimed T6245: GpgOL: build: Update for new gpgrt-config and *.pc.

Cool, I will try it out ASAP. You must have read my mind. Only yesterday evening I ran into problems because the current code in src/Makefile.am to symlink the static libs did not work on my new dev system with a lib64 layout and thought that I needed just a patch like this to fix it properly.

Oct 18 2022, 10:50 AM · Windows, gpgol, Feature Request

• gniibe added projects to T6245: GpgOL: build: Update for new gpgrt-config and *.pc: Feature Request, gpgol, Windows.

Oct 18 2022, 9:14 AM · Windows, gpgol, Feature Request

Oct 16 2022

jukivili created T6242: libgcrypt: optimize ECB? (as it may be used to estimate library crypto performance).

Oct 16 2022, 4:57 PM · libgcrypt, Feature Request

Oct 14 2022

• gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

Pushed the change, although it is not enabled yet (since the feature will be only available by newer libgcrypt, 1.11).

Oct 14 2022, 7:53 AM · gnupg26, FIPS, Feature Request

• gniibe changed the status of T5897: Fix MinGW compilation error with 'struct _stat32' in common/sysutils.c from gnupg-2.3.4 from Open to Testing.

Pushed.

Oct 14 2022, 7:10 AM · gnupg24, toolchain, Feature Request, patch

• gniibe added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Pushed to master.

Oct 14 2022, 7:03 AM · Not A Bug, workaround, gnupg24, Windows, ssh

• gniibe added a comment to T6236: libassuan: Support sendfd/recvfd (possibly by new API) on Windows.

By 1/N...5/N, it works. And it shows the API needs clarification and possible modification/fixes; As written in the comment of system-w32.c, fd == POSIX fd semantics is good, which asks API/ABI break.

Oct 14 2022, 4:57 AM · Windows, libassuan, Feature Request

Oct 12 2022

• gniibe added parent tasks for T6236: libassuan: Support sendfd/recvfd (possibly by new API) on Windows: T4655: Windows 64-bit: gnupg_fd_t, assuan_fd_t and int for fd in the API, and casts, T4656: Windows 64-bit: functions which use pid_t.

Oct 12 2022, 3:44 AM · Windows, libassuan, Feature Request

• gniibe claimed T6236: libassuan: Support sendfd/recvfd (possibly by new API) on Windows.

Oct 12 2022, 3:43 AM · Windows, libassuan, Feature Request

• gniibe created T6236: libassuan: Support sendfd/recvfd (possibly by new API) on Windows.

Oct 12 2022, 3:43 AM · Windows, libassuan, Feature Request

Oct 11 2022

• gniibe changed the status of T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified from Open to Testing.

Oct 11 2022, 8:16 AM · LDAP, dirmngr, gnupg (gpg23), Feature Request

Oct 10 2022

• werner triaged T6234: Implement access to smartcards via a generic pkcs#11 interface as Normal priority.

Oct 10 2022, 7:32 AM · gnupg, Feature Request, scd

Oct 9 2022

margirou added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

In T5790#163980, @manonfgoo wrote:

@margirou:

Can you test the Patch, does it work for you ?

Kind regards,
Manon

Oct 9 2022, 11:39 AM · gnupg24, gnupg (gpg23), scd, Feature Request

Oct 8 2022

manonfgoo added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

In T5790#163886, @werner wrote:

[Merging didn't work]

Oct 8 2022, 8:44 PM · gnupg24, gnupg (gpg23), scd, Feature Request

manonfgoo added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

Can you test the Patch, does it work for you ?

Oct 8 2022, 8:41 PM · gnupg24, gnupg (gpg23), scd, Feature Request

manonfgoo created T6233: Extract Card Holder Information for the PIV card from the "Printed Information" Object.

Oct 8 2022, 8:33 PM · gnupg, scd, Feature Request

Oct 7 2022

• werner changed the status of T6224: Mirror internal LDAP to a WKD from Open to Testing.

Oct 7 2022, 5:46 PM · Restricted Project, Feature Request, gnupg (gpg23)

manonfgoo updated the task description for T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

Oct 7 2022, 2:46 PM · gnupg24, gnupg (gpg23), scd, Feature Request

manonfgoo added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

Here is the patch as file:

piv.patch3 KBDownload

Oct 7 2022, 10:49 AM · gnupg24, gnupg (gpg23), scd, Feature Request

manonfgoo added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

The patch applies with -p1 to the master brach, alternatively I could push a commit, but my user does not seam to be allowed to do so:

Oct 7 2022, 10:37 AM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

[Merging didn't work]

Oct 7 2022, 9:37 AM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner reopened T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey as "Open".

Oct 7 2022, 9:36 AM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner reopened T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey, a subtask of T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys), as Open.

Oct 7 2022, 9:36 AM · yubikey, Feature Request

• werner added a parent task for T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey: T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 7 2022, 9:36 AM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner added a subtask for T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys): T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

Oct 7 2022, 9:36 AM · yubikey, Feature Request

• werner merged T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey into T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 7 2022, 9:35 AM · yubikey, Feature Request

• werner merged task T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey into T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 7 2022, 9:35 AM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner merged T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey into T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 7 2022, 9:34 AM · yubikey, Feature Request

• werner merged task T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey into T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 7 2022, 9:34 AM · gnupg24, gnupg (gpg23), scd, Feature Request

Oct 6 2022

manonfgoo added a comment to T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

In T6229#163870, @werner wrote:

The other key slots are claimed to be used for expired or archived keys as you rightfully mention. We need to figure out the real world semantic behind this before we can repurpose such keys.

Oct 6 2022, 10:44 PM · yubikey, Feature Request

manonfgoo added a comment to T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Pleaee have a look at https://dev.gnupg.org/T5790, i added a patch.

Oct 6 2022, 10:30 PM · yubikey, Feature Request

manonfgoo added a comment to T5790: Cannot use "Retired Cert Key Mgm [1-20]” Slots on YubiKey.

Attached you find a patch to this issue. This Patch sets the "keypair" attribute to the keys 0x82 to 0x95 unconditionaly.

Oct 6 2022, 10:29 PM · gnupg24, gnupg (gpg23), scd, Feature Request

• werner triaged T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys) as Low priority.

The other key slots are claimed to be used for expired or archived keys as you rightfully mention. We need to figure out the real world semantic behind this before we can repurpose such keys.

Oct 6 2022, 6:44 PM · yubikey, Feature Request

margirou created T6229: Include ability to use any/all of the keys stored on YubiKey's PIV applet ("retired" keys).

Oct 6 2022, 5:53 PM · yubikey, Feature Request

Oct 4 2022

• werner closed T6226: Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.) as Wontfix.

Most PCKS#11 drivers are proprietary software which do not fit well into a free software system. Thus we avoid them. And of course we provide pcksc#11 support: Install Scute. There are no workarounds like alternative gpg-agent's - those things don't work reliable and are not supported.

Oct 4 2022, 8:57 PM · Feature Request

margirou updated the task description for T6226: Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.).

Oct 4 2022, 5:49 PM · Feature Request

margirou added a comment to T6226: Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.).

Oct 4 2022, 5:04 PM · Feature Request

margirou created T6226: Native PKCS#11 support, by attaching any module/library, without having to use workarounds (alternative gpg-agent etc.).

Oct 4 2022, 5:01 PM · Feature Request

Sep 29 2022

• werner added a project to T6223: GPGME incorrectly parses the signature class in SIG_CREATED status lines: Feature Request.

Let's don't forget that we need to have a sig_class replacement.

Sep 29 2022, 10:42 AM · Feature Request, gpgme, Bug Report

• werner triaged T6224: Mirror internal LDAP to a WKD as Normal priority.

Sep 29 2022, 8:21 AM · Restricted Project, Feature Request, gnupg (gpg23)

• gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

Merged the changes in t6002 branch into master.

Sep 29 2022, 3:16 AM · Feature Request, scute

• gniibe added a comment to T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified.

Applied and pushed the change from @joeyberkovitz in rG3257385378bb: dirmngr: Interrogate LDAP server when base DN specified..

Sep 29 2022, 3:10 AM · LDAP, dirmngr, gnupg (gpg23), Feature Request

Sep 26 2022

• werner added a comment to T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified.

BTW, I have also in mind to use an AD entry to figure out the used keyserver. It turned out that people don't like to modify the schema of their AD but instead use a separate LDS.

Sep 26 2022, 9:41 AM · LDAP, dirmngr, gnupg (gpg23), Feature Request

• gniibe added a comment to T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified.

To proceed, I pushed an initial part as rG993820c31521: dirmngr: Factor out interrogate_ldap_dn function., which doesn't change any behavior.
Then, the point of the change will be clearer.

Sep 26 2022, 9:03 AM · LDAP, dirmngr, gnupg (gpg23), Feature Request

• gniibe added a comment to T6160: pinentry Emacs support assumes socket location at ${TMPDIR}/emacs${UID}, fails to connect (need to respect XDG_RUNTIME_DIR).

pinentry-emacs is obsolete. It's for older Emacs (<= 25, IIUC) which had lisp/pinentry.el.
For Emacs 26 and newer, you can simply use epa-pinentry-mode having the value of loopback.

Sep 26 2022, 8:11 AM · Feature Request, pinentry, Emacs