Page MenuHome GnuPG
Feed All Stories

Feb 19 2024

werner added projects to T6986: Refresh OpenPGP keys should check WKD: Feature Request, Bug Report.
Feb 19 2024, 5:03 PM · Bug Report, Feature Request, gnupg24, Restricted Project, kleopatra
werner renamed T6986: Refresh OpenPGP keys should check WKD from Kleopatra: Refresh OpenPGP keys should check WKD to Refresh OpenPGP keys should check WKD.
Feb 19 2024, 5:02 PM · Bug Report, Feature Request, gnupg24, Restricted Project, kleopatra
werner added a project to T6986: Refresh OpenPGP keys should check WKD: gnupg24.

I need to come up with a better strategy here. --refresh-keys is a very useful command and it should do what the user expects. Maybe we can adjust the behaviour iff we detect that there is an LDAP keyserver.

Feb 19 2024, 5:02 PM · Bug Report, Feature Request, gnupg24, Restricted Project, kleopatra
werner added a parent task for T7000: Take derive usage into account for pkcs#15 cards.: T7001: Support D-TRUST ECC cards.
Feb 19 2024, 1:54 PM · gnupg24 (gnupg-2.4.5), Bug Report, scd
werner added a subtask for T7001: Support D-TRUST ECC cards: T7000: Take derive usage into account for pkcs#15 cards..
Feb 19 2024, 1:54 PM · gnupg, scd
werner triaged T7001: Support D-TRUST ECC cards as Normal priority.
Feb 19 2024, 1:54 PM · gnupg, scd
werner moved T7000: Take derive usage into account for pkcs#15 cards. from Backlog to WiP on the gnupg24 board.
Feb 19 2024, 1:51 PM · gnupg24 (gnupg-2.4.5), Bug Report, scd
werner triaged T7000: Take derive usage into account for pkcs#15 cards. as Normal priority.
Feb 19 2024, 1:45 PM · gnupg24 (gnupg-2.4.5), Bug Report, scd
TobiasFella committed rKLEOPATRA38f08dcc44f9: Highlight non-encryption keys in group's key list (authored by TobiasFella).
Highlight non-encryption keys in group's key list
Feb 19 2024, 11:50 AM
90 added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

Since there are some files that would simply have to be created each time under $GNUPGHOME, I've been thinking a bit more about what sort of approach to take for "fallbacks."

Feb 19 2024, 11:28 AM · Support, gnupg, Feature Request
aheinecke closed T6915: Kleopatra: Make it more clear that you can use a mail address as a group name, a subtask of T6914: Kleopatra: Make group feature more visible, as Resolved.
Feb 19 2024, 11:24 AM · kleopatra, Restricted Project
aheinecke closed T6915: Kleopatra: Make it more clear that you can use a mail address as a group name as Resolved.

Mh, the problem is that this is really a speciality feature which KMail currently has, that you can configure for a contact to prefer S/MIME over OpenPGP even though you have both keys.

Feb 19 2024, 11:24 AM · kleopatra, Restricted Project
TobiasFella committed rLIBKLEO861195066436: Warn about groups containing sign-only keys in the groups dialog (authored by TobiasFella).
Warn about groups containing sign-only keys in the groups dialog
Feb 19 2024, 11:11 AM
TobiasFella added a comment to T6915: Kleopatra: Make it more clear that you can use a mail address as a group name.

I'm not sure how to approach this.

Feb 19 2024, 11:08 AM · kleopatra, Restricted Project
TobiasFella committed rKLEOPATRA04f6239a90f7: Work (authored by TobiasFella).
Work
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRA81ed568a1b57: Use std::erase_if (authored by TobiasFella).
Use std::erase_if
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRA7fb79b6fbfca: Only allow creating a group i all selected keys can encrypt (authored by TobiasFella).
Only allow creating a group i all selected keys can encrypt
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRA8b12b38a1e14: Apply suggestions (authored by TobiasFella).
Apply suggestions
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRAf4481e6faccf: Add dialog informing the user about invalid keys (authored by TobiasFella).
Add dialog informing the user about invalid keys
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRA4e0e055cd9a6: Add command for creating key groups from selected certificates (authored by TobiasFella).
Add command for creating key groups from selected certificates
Feb 19 2024, 11:00 AM
TobiasFella committed rKLEOPATRA3144e2602a4d: Move if (authored by TobiasFella).
Move if
Feb 19 2024, 9:36 AM
TobiasFella committed rKLEOPATRA4b68dd40ee01: Prevent the user from exporting groups containing sign-only keys (authored by TobiasFella).
Prevent the user from exporting groups containing sign-only keys
Feb 19 2024, 9:36 AM
TobiasFella committed rKLEOPATRA7936ff5c661b: Change text to "Groups" (authored by TobiasFella).
Change text to "Groups"
Feb 19 2024, 9:11 AM
TobiasFella committed rKLEOPATRA03089054a19f: Add "Configure Groups" to toolbar (authored by TobiasFella).
Add "Configure Groups" to toolbar
Feb 19 2024, 9:11 AM
mlaurent committed rMTPe549885a054d: Not necessary to use 6 suffix (authored by mlaurent).
Not necessary to use 6 suffix
Feb 19 2024, 8:34 AM
mlaurent committed rMTP41eb78002b00: GIT_SILENT: it compiles fine without QT 6.6.1 deprecated methods (authored by mlaurent).
GIT_SILENT: it compiles fine without QT 6.6.1 deprecated methods
Feb 19 2024, 8:06 AM
mlaurent committed rKLEOPATRA79ff4291e6d2: GIT_SILENT: it compiles fine without QT 6.6.1 deprecated methods (authored by mlaurent).
GIT_SILENT: it compiles fine without QT 6.6.1 deprecated methods
Feb 19 2024, 8:06 AM
mlaurent committed rLIBKLEOe915090afdfc: Qt::escape is not used (authored by mlaurent).
Qt::escape is not used
Feb 19 2024, 7:40 AM
mlaurent committed rKLEOPATRA708e91411c5f: Remove Qt::escape (authored by mlaurent).
Remove Qt::escape
Feb 19 2024, 7:32 AM
mlaurent committed rKLEOPATRA0ed4e7710c23: We don't use Qt::escape anywhere (authored by mlaurent).
We don't use Qt::escape anywhere
Feb 19 2024, 7:31 AM
l10n daemon script <scripty@kde.org> committed rMTP3d378fbe010e: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 19 2024, 2:28 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA11858af01e71: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 19 2024, 2:22 AM
Angel added a comment to T5444: "gpg: key generation failed: Unknown elliptic curve" from "Key-Type: default".

Interesting. So the problem is not actually the Key-Type, but that the default key-type requires a Key-Curve parameter which has no value by default

Feb 19 2024, 2:15 AM · gnupg24, gnupg (gpg23)
l10n daemon script <scripty@kde.org> committed rKLEOPATRA48955d9603af: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Feb 19 2024, 1:38 AM

Feb 18 2024

l10n daemon script <scripty@kde.org> committed rKLEOPATRA2def3b5fa391: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 18 2024, 3:59 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO6761498bf52c: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 18 2024, 2:25 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA8ec8919ef652: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 18 2024, 2:22 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA021d531be321: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Feb 18 2024, 1:39 AM

Feb 17 2024

Scarlett Moore <sgmoore@kde.org> committed rKLEOPATRA0e68d3717bb8: snapcraft: Fix build env. (authored by Scarlett Moore <sgmoore@kde.org>).
snapcraft: Fix build env.
Feb 17 2024, 2:55 PM
Scarlett Moore <sgmoore@kde.org> committed rKLEOPATRA3801c221b33b: snapcraft: New content pack. (authored by Scarlett Moore <sgmoore@kde.org>).
snapcraft: New content pack.
Feb 17 2024, 2:46 PM
Scarlett Moore <sgmoore@kde.org> committed rKLEOPATRAd77c4107ecb9: snapcraft: Initial import snapcraft files. (authored by Scarlett Moore <sgmoore@kde.org>).
snapcraft: Initial import snapcraft files.
Feb 17 2024, 2:46 PM
gniibe added inline comments to rG848546b05ab0: dirmngr: Fix the regression of use of proxy for TLS connection..
Feb 17 2024, 4:05 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAc845148ed8e3: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 17 2024, 2:21 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAe7ef44189695: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Feb 17 2024, 1:38 AM

Feb 16 2024

ikloecker changed the status of T6984: Kleopatra: Add icon for folder encryption from Open to Testing.

Moving back to WiP and setting status to Testing. Moving to QA shall be done when an installer to test this is available. See https://dev.gnupg.org/w/gpgcom/

Feb 16 2024, 6:09 PM · vsd33, Restricted Project, kleopatra
ikloecker added a comment to T6977: gpgme_op_verify from libgpgme hang without returning anything when verifying corrupted file signature.

Can you make this corrupted file available to us?

Feb 16 2024, 6:05 PM · gpgme, Bug Report
CarlSchwan moved T6984: Kleopatra: Add icon for folder encryption from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Feb 16 2024, 5:46 PM · vsd33, Restricted Project, kleopatra
CarlSchwan committed rKLEOPATRA367f0a897c35: Use new folder-edit-sign-encrypt icon (authored by CarlSchwan).
Use new folder-edit-sign-encrypt icon
Feb 16 2024, 5:45 PM
CarlSchwan committed rKLEOPATRA7ed504c2ad22: Use new folder-edit-sign-encrypt icon (authored by CarlSchwan).
Use new folder-edit-sign-encrypt icon
Feb 16 2024, 5:45 PM
CarlSchwan committed rMTPe61529ca2bca: Remove pgp hidden part (authored by CarlSchwan).
Remove pgp hidden part
Feb 16 2024, 4:15 PM
CarlSchwan committed rMTPf3f21991e823: Remove pgp hidden part (authored by CarlSchwan).
Remove pgp hidden part
Feb 16 2024, 4:14 PM
Karam added a comment to T6977: gpgme_op_verify from libgpgme hang without returning anything when verifying corrupted file signature.

Hello,
So after testing on gpgme-1.17.1, with run-verify under tests as you mentioned, with corrupted file it hangs forever.
Now we can say it's a bug in gpgme_op_verify.

Feb 16 2024, 3:28 PM · gpgme, Bug Report
aheinecke created P43 (An Untitled Masterwork).
Feb 16 2024, 3:22 PM
TobiasFella committed rKLEOPATRA73b57a8c8030: Warn the user when deleting keys that are part of a keygroup (authored by TobiasFella).
Warn the user when deleting keys that are part of a keygroup
Feb 16 2024, 1:39 PM
TobiasFella committed rKLEOPATRA09e6b2dbdb06: Warn the user when deleting keys that are part of a keygroup (authored by TobiasFella).
Warn the user when deleting keys that are part of a keygroup
Feb 16 2024, 1:38 PM
TobiasFella committed rLIBKLEO10d58943bfa8: :) (authored by TobiasFella).
:)
Feb 16 2024, 1:33 PM
TobiasFella committed rLIBKLEOabaf1b970867: Only add icon for correct columns (authored by TobiasFella).
Only add icon for correct columns
Feb 16 2024, 1:31 PM
TobiasFella committed rLIBKLEO398862f83203: Warn about groups containing sign-only keys in the groups dialog (authored by TobiasFella).
Warn about groups containing sign-only keys in the groups dialog
Feb 16 2024, 12:10 PM
TobiasFella committed rLIBKLEOf41c290430a5: Warn about groups containing sign-only keys in the groups dialog (authored by TobiasFella).
Warn about groups containing sign-only keys in the groups dialog
Feb 16 2024, 12:08 PM
TobiasFella claimed T6913: Kleopatra: Put groups into toolbar menu.
Feb 16 2024, 11:57 AM · vsd33, kleopatra, Restricted Project
TobiasFella committed rKLEOPATRAfa8af258096e: Add "Configure Groups" to toolbar (authored by TobiasFella).
Add "Configure Groups" to toolbar
Feb 16 2024, 11:55 AM
TobiasFella claimed T6403: Kleopatra: Warn if a certificate in a group is deleted.
Feb 16 2024, 11:36 AM · vsd33 (vsd-3.3.0), Restricted Project, Feature Request, kleopatra
TobiasFella committed rKLEOPATRA1ba561ebca00: Fix update check for gpg4win (authored by TobiasFella).
Fix update check for gpg4win
Feb 16 2024, 11:31 AM
TobiasFella committed rKLEOPATRAde420ea0a5e3: Show a warning when the user imports a group containing sign-only keys (authored by TobiasFella).
Show a warning when the user imports a group containing sign-only keys
Feb 16 2024, 11:14 AM
TobiasFella committed rKLEOPATRA9d63bf92afcd: Apply 1 suggestion(s) to 1 file(s) (authored by ikloecker).
Apply 1 suggestion(s) to 1 file(s)
Feb 16 2024, 11:11 AM
TobiasFella committed rKLEOPATRA259b452dfa8d: Warn the user when deleting keys that are part of a keygroup (authored by TobiasFella).
Warn the user when deleting keys that are part of a keygroup
Feb 16 2024, 10:59 AM
TobiasFella committed rKLEOPATRAdc2a9ea3dddd: Warn the user when deleting keys that are part of a keygroup (authored by TobiasFella).
Warn the user when deleting keys that are part of a keygroup
Feb 16 2024, 10:55 AM
werner added inline comments to rG848546b05ab0: dirmngr: Fix the regression of use of proxy for TLS connection..
Feb 16 2024, 10:11 AM
werner closed T6999: Are you aware of implementations which would generate signatures with 0x0001 lbits in signature? as Resolved.

No, I am not aware. I can't remember whether PGP once had such a bug because @dshaw did most cross-testing and fixing for PGP bugs. I would suggest to remove any such checks. IIRC, this was introduced by PGP 2 to speed up signature checking. 30 years ago RSA operations were quite expensive.

Feb 16 2024, 10:01 AM · Documentation, gnupg
gniibe added a comment to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy.

I was wrong for the semantics of proxy->outtoken. It is zero when run_proxy_connect is called and enabled during the negotiation.

Feb 16 2024, 8:28 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe committed rG2810b934647e: dirmngr: Fix keep-alive flag handling. (authored by gniibe).
dirmngr: Fix keep-alive flag handling.
Feb 16 2024, 8:27 AM
mlaurent committed rMTPfcf989b607e5: Increase version. Libkleo already required it (authored by mlaurent).
Increase version. Libkleo already required it
Feb 16 2024, 8:17 AM
gniibe added a comment to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy.

@hlein Thanks a lot for quick testing.

Feb 16 2024, 8:14 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
mlaurent committed rMTP861cd41a3deb: Use === operator (authored by mlaurent).
Use === operator
Feb 16 2024, 7:20 AM
mlaurent committed rMTPf69de16c5864: Don't export private method + coding style + use [[nodiscard]] (authored by mlaurent).
Don't export private method + coding style + use [[nodiscard]]
Feb 16 2024, 7:17 AM
mlaurent committed rMTPf2867f0d5541: Fix variable is unused (authored by mlaurent).
Fix variable is unused
Feb 16 2024, 7:06 AM
mlaurent committed rMTP0d6b1843f7fd: Not necessary to use 2 suffix (authored by mlaurent).
Not necessary to use 2 suffix
Feb 16 2024, 7:06 AM
hlein added a comment to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy.

Thank you @gniibe! Applied the rG848546b05ab0: dirmngr: Fix the regression of use of proxy for TLS connection. changes here, and 2.4.4 works here now.

Feb 16 2024, 5:22 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe added a comment to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy.

IIUC, the code for keep_alive is for negotiation of proxy. If so, something like this is the fix:

Feb 16 2024, 5:17 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe moved T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy from WiP to QA on the gnupg24 board.
Feb 16 2024, 3:51 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe reassigned T6811: gpgv: Read-only trustedkeys.kbx should not be compressed from gniibe to werner.
Feb 16 2024, 3:45 AM · gnupg24 (gnupg-2.4.5), gpgv, Bug Report
gniibe reassigned T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy from gniibe to werner.
Feb 16 2024, 3:44 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe added a project to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy: gnupg22.

Right. I was wrong assuming the code in 2.2 branch is stable (that is: well tested).

Feb 16 2024, 3:40 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
gniibe committed rG848546b05ab0: dirmngr: Fix the regression of use of proxy for TLS connection. (authored by gniibe).
dirmngr: Fix the regression of use of proxy for TLS connection.
Feb 16 2024, 3:39 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAf0cf4faacd94: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Feb 16 2024, 3:32 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA72dab7023c6d: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Feb 16 2024, 2:22 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA4e1420152086: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Feb 16 2024, 1:38 AM
heirecka committed rKLEOPATRAc7b91c7a2cef: GIT_SILENT Upgrade release service version to 24.02.0. (authored by heirecka).
GIT_SILENT Upgrade release service version to 24.02.0.
Feb 16 2024, 12:34 AM
heirecka committed rKLEOPATRAe959fda99097: GIT_SILENT Update Appstream for new release (authored by heirecka).
GIT_SILENT Update Appstream for new release
Feb 16 2024, 12:34 AM
heirecka committed rKLEOPATRAbb10cd23fa96: GIT_SILENT Update Appstream for new release (authored by heirecka).
GIT_SILENT Update Appstream for new release
Feb 16 2024, 12:34 AM

Feb 15 2024

thesamesam added a comment to T6997: gnupg-2.4.4 breaks dirmngr fetching keys via hkps:// from behind a proxy.

Per https://dev.gnupg.org/rG04cbc3074aa98660b513a80f623a7e9f0702c7c9#83517, it looks like the fix might be incomplete?

Feb 15 2024, 10:43 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.5), Bug Report
hlein raised a concern with rG04cbc3074aa9: dirmngr: Fix proxy with TLS..

Thank you for the quick attention!

Feb 15 2024, 9:47 PM
onickolay created T6999: Are you aware of implementations which would generate signatures with 0x0001 lbits in signature?.
Feb 15 2024, 6:27 PM · Documentation, gnupg
werner added a comment to T6755: libgcrypt: KEM API.

Although, we don't use our usual s-expressions we need to add a way to derive a keygrip from Kyber et al and also to wrap the key into an s-expression to that it can be stored by gpg-agent in its usual files. An exported new API to get the keygrip of a KEM key would be good to avoid encapsulation but for other purposes an encapsulation is still required.

Feb 15 2024, 6:00 PM · PQC, libgcrypt
werner added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

That is simply because your XDG_RUNTIME is set to the same directory gnupg uses. See gnupg/common/homedir.c:_gnupg_socketdir_internal

Feb 15 2024, 5:44 PM · Support, gnupg, Feature Request
90 added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

Funnily enough, runtime sockets already adhere to the XDGBDS somewhat by using $XDG_RUNTIME_DIR/gnupg as their path, while everything else uses strictly $GNUPGHOME or ~/.gnupg with no other alternative. Of course, I completely understand that the priority for this is rather low, but I am still happy to look into providing a patch myself that would add these fallbacks if it would help expedite the whole process.

Feb 15 2024, 5:36 PM · Support, gnupg, Feature Request
alexk triaged T6998: Kleopatra: simplify key creation window as Normal priority.
Feb 15 2024, 4:59 PM · vsd33, Restricted Project, kleopatra
TobiasFella committed rKLEOPATRAca91c4cafd67: Prevent the user from exporting groups containing sign-only keys (authored by TobiasFella).
Prevent the user from exporting groups containing sign-only keys
Feb 15 2024, 3:44 PM
TobiasFella committed rKLEOPATRA4b6d9bf0d0d4: Warn user about exporting groups with sign-only keys instead of prohibiting it (authored by TobiasFella).
Warn user about exporting groups with sign-only keys instead of prohibiting it
Feb 15 2024, 3:37 PM
TobiasFella committed rKLEOPATRAdbbfe1403602: Use std::erase_if (authored by TobiasFella).
Use std::erase_if
Feb 15 2024, 3:12 PM