Page MenuHome GnuPG
Feed Advanced Search

Jan 21 2025

werner added a comment to T6910: pinentry: Possibly add pinentry-gtk with GTK 4, and Drop pinentry-gtk-2.

FWIW, the original idea with Pinentry was to have a stripped down Widget which allows to securely enter the password. For that we even replaced the Gtk text widget to have better control over the code path from keyboard to screen. After a few years more more more stuff was requested and meanwhile the QT version of the Pinentry is probably larger than the gpg-agent process.

Jan 21 2025, 11:04 AM

Jan 20 2025

werner committed rWe7a6bf54dd0b: appimage: Remove legacy patch and don't install pim5 (authored by werner).
appimage: Remove legacy patch and don't install pim5
Jan 20 2025, 5:31 PM
werner committed rW6d1aa1e88ddc: Update gpgme, kleo, libkleo, mtp, gpg4win-tools (authored by werner).
Update gpgme, kleo, libkleo, mtp, gpg4win-tools
Jan 20 2025, 3:36 PM

Jan 19 2025

werner committed rD9866f85398fd: blog: Finally a new blog entry submitted by Andre. (authored by aheinecke).
blog: Finally a new blog entry submitted by Andre.
Jan 19 2025, 2:27 PM

Jan 17 2025

werner added a comment to T7487: libksba/gpgsm: support for RSA-PSS signatures made with a maximum saltLength value.

See this comment which is related to T4538:

Jan 17 2025, 4:29 PM · gnupg, S/MIME, Feature Request
werner added a comment to T4538: Support PSS signed CRLs.
Jan 17 2025, 4:23 PM · dirmngr, S/MIME, libksba
werner added projects to T7487: libksba/gpgsm: support for RSA-PSS signatures made with a maximum saltLength value: S/MIME, gnupg.
Jan 17 2025, 4:17 PM · gnupg, S/MIME, Feature Request

Jan 16 2025

werner committed rW5dd41acdee37: Include more build info into the MSIs (authored by werner).
Include more build info into the MSIs
Jan 16 2025, 12:09 PM
werner committed rW63fd9b21cf91: Update autogen.sh (authored by werner).
Update autogen.sh
Jan 16 2025, 12:09 PM

Jan 14 2025

werner committed rG81e129ab3e5c: speedo: Do not package zlib and bzip2 object files (authored by werner).
speedo: Do not package zlib and bzip2 object files
Jan 14 2025, 5:41 PM
werner added a comment to T7442: Release GnuPG 2.5.3.

Note: The is a bug in the gnupg-w32-2.5.3 tarballs. After untaring cd to the directory as usual but then do:

rm PLAY/src/zlib/*.[oa] PLAY/src/bzip2/*.[oa]

before you run

make -f build-aux/speedo.mk this-native
Jan 14 2025, 5:29 PM · Release Info, gnupg
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q1/000489.html on T7442: Release GnuPG 2.5.3.
Jan 14 2025, 10:53 AM · Release Info, gnupg

Jan 13 2025

werner committed rDdf6c687d4cdd: swdb: Add a missing k suffix to the new gnupg26_w32_ssiz (authored by werner).
swdb: Add a missing k suffix to the new gnupg26_w32_ssiz
Jan 13 2025, 12:13 PM
werner committed rD503be9b3f92d: Fix last commit (authored by werner).
Fix last commit
Jan 13 2025, 11:58 AM
werner created U14 Screenshot Trusted Introducer dialog.
Jan 13 2025, 9:24 AM
werner created M12: Key Certification as Trusted Introducer.
Jan 13 2025, 9:22 AM · kleopatra

Jan 10 2025

werner awarded T7417: show preview of (decrypted) mails in mail view windows when opening mail in outlook a Pterodactyl token.
Jan 10 2025, 5:14 PM · gpgol2
werner updated the task description for T7442: Release GnuPG 2.5.3.
Jan 10 2025, 11:59 AM · Release Info, gnupg
werner committed rGe0a2e9e9c567: build: Also emit the size of the w32 source tarball (authored by werner).
build: Also emit the size of the w32 source tarball
Jan 10 2025, 10:42 AM
werner committed rD05b2aac4dbc1: web: Show also the size of the w32 tarball (authored by werner).
web: Show also the size of the w32 tarball
Jan 10 2025, 10:41 AM

Jan 9 2025

werner committed rG5ac8446ca8bf: tools: Some tweaks to gpg-authcode-sign.sh (authored by werner).
tools: Some tweaks to gpg-authcode-sign.sh
Jan 9 2025, 5:18 PM
werner committed rGcbc7fa0c8e69: gpg: Show the default PIN hint also before "name" and "key-attr" (authored by werner).
gpg: Show the default PIN hint also before "name" and "key-attr"
Jan 9 2025, 11:42 AM
werner committed rDf23b7af0d8a1: swdb: Release GnuPG 2.5.3 (authored by werner).
swdb: Release GnuPG 2.5.3
Jan 9 2025, 10:32 AM
werner committed rGf476370916d7: Post release updates (authored by werner).
Post release updates
Jan 9 2025, 10:02 AM
werner committed rGcc3e34b82a9b: Release 2.5.3 (authored by werner).
Release 2.5.3
Jan 9 2025, 10:02 AM
werner committed rG94045bce4192: po: msgmerge run (authored by werner).
po: msgmerge run
Jan 9 2025, 10:02 AM
werner triaged T7480: Release GnuPG 2.5.4 as Low priority.
Jan 9 2025, 10:01 AM · gnupg26, gnupg, Release Info

Jan 8 2025

werner committed rGa2f2523b99ff: Remove the default keyserver. (authored by werner).
Remove the default keyserver.
Jan 8 2025, 6:18 PM
werner moved T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128 from Backlog to QA on the gnupg26 board.
Jan 8 2025, 5:25 PM · PQC, gnupg26, Bug Report
werner committed rGa04c9360960a: doc: One typo fix. (authored by werner).
doc: One typo fix.
Jan 8 2025, 5:24 PM
werner closed T7479: minor spelling fixes as Wontfix.

2.2 is end-of-life.
There was one actual typo fix which could be used for master, though. Thanks.

Jan 8 2025, 5:23 PM · Bug Report
werner committed rGa019a0fcd8df: Stronger deprecate the --supervised option. (authored by werner).
Stronger deprecate the --supervised option.
Jan 8 2025, 5:16 PM
werner committed rGfaa2d3a2e7a4: Update README and copyright years. (authored by werner).
Update README and copyright years.
Jan 8 2025, 3:36 PM
werner closed T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected as Resolved.
Jan 8 2025, 2:35 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner moved T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected from Backlog to done on the gnupg24 board.
Jan 8 2025, 2:35 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner moved T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected from Backlog to Done on the gnupg26 board.
Jan 8 2025, 2:34 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner committed rGd70a7987f74b: gpg: Print a warning if the card backup key could not be written. (authored by werner).
gpg: Print a warning if the card backup key could not be written.
Jan 8 2025, 2:06 PM
werner added a comment to T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected.

Got a simple fix for this which does two things:

  1. Correctly act upon an error from the backup file writing
  2. Print a warning note.
Jan 8 2025, 2:04 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner committed rGb9028f869da4: gpg: Print a warning if the card backup key could not be written. (authored by werner).
gpg: Print a warning if the card backup key could not be written.
Jan 8 2025, 2:03 PM
werner reopened T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected as "Open".
Jan 8 2025, 11:35 AM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner edited projects for T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected, added: gnupg26, gnupg24; removed gnupg.

There is a regression due to the regression fix in rGb30c15bf7c5336c4abb1f9dcd974cd77ba6c61a7 (from Dec 24 2015) or some related commits:

Jan 8 2025, 11:35 AM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner added a comment to T7478: _gpg_close_all_fds hangs on nwer Linux systems in a simple chroot w/o /proc/self/fd.

@gniibe: Please see gpgme/src/posix-io.c where we have this:

Jan 8 2025, 9:06 AM · Linux, gnupg, gpgrt, Bug Report
werner triaged T7477: Add a proper title for pineentry on Windows as Normal priority.
Jan 8 2025, 8:51 AM · Windows, gpd5x, pinentry
werner added a project to T7477: Add a proper title for pineentry on Windows: Windows.
Jan 8 2025, 8:51 AM · Windows, gpd5x, pinentry
werner added a project to T7478: _gpg_close_all_fds hangs on nwer Linux systems in a simple chroot w/o /proc/self/fd: Linux.
Jan 8 2025, 8:51 AM · Linux, gnupg, gpgrt, Bug Report
werner renamed T7478: _gpg_close_all_fds hangs on nwer Linux systems in a simple chroot w/o /proc/self/fd from `_gpg_close_all_fds` hangs on modern Linux when `/proc/self/fd` is unavailable; spawning a process without `GPGRT_SPAWN_INHERIT_FILE` takes > 1 hour to _gpg_close_all_fds hangs on nwer Linux systems in a simple chroot w/o /proc/self/fd.
Jan 8 2025, 8:50 AM · Linux, gnupg, gpgrt, Bug Report
werner created Linux.
Jan 8 2025, 8:50 AM

Jan 7 2025

werner added a comment to T7477: Add a proper title for pineentry on Windows.

Check out the GTK version which scans /proc for the process to find the command line. Very handy for ssh sessions.

Jan 7 2025, 6:59 PM · Windows, gpd5x, pinentry
werner committed rO48ef4638be91: Post release updates (authored by werner).
Post release updates
Jan 7 2025, 11:27 AM
werner committed rO2d067cfd91aa: Release 2.5.15 (authored by werner).
Release 2.5.15
Jan 7 2025, 11:27 AM
werner committed rG89b3ef325973: Post release updates (authored by werner).
Post release updates
Jan 7 2025, 10:38 AM
werner committed rG7e48331afb61: Release 2.2.46 (authored by werner).
Release 2.2.46
Jan 7 2025, 10:38 AM
werner committed rG076ed89deed4: po: msgmerge (authored by werner).
po: msgmerge
Jan 7 2025, 10:38 AM
werner closed T7314: Release GnuPG 2.2.46 as Resolved.
Jan 7 2025, 10:37 AM · gnupg22 (gnupg-2.2.46), Release Info
werner committed rW10b6c134cf2d: Update gpgol (authored by werner).
Update gpgol
Jan 7 2025, 10:12 AM
werner committed rWe0c9811254c4: Update gnupg, kleopatra, libkleo, and gpg4win-tools (authored by werner).
Update gnupg, kleopatra, libkleo, and gpg4win-tools
Jan 7 2025, 10:06 AM
werner committed rW278a7826fd79: Update GUIDs from the last beta build. (authored by werner).
Update GUIDs from the last beta build.
Jan 7 2025, 10:06 AM
werner triaged T7368: dirmngr/dns.c files to compile due to type-mismatch caused by missing _XOPEN_SOURCE on Solaris and derivatives as Normal priority.
Jan 7 2025, 8:35 AM · gnupg26, dns, Solaris, Bug Report
werner triaged T7459: 5.0.0-beta: Pinentry crashes with 0x000007b as Normal priority.
Jan 7 2025, 8:34 AM · Windows, pinentry, Bug Report, gpg4win
werner added a comment to T7459: 5.0.0-beta: Pinentry crashes with 0x000007b.

Note that that Beta uses a 64 bit Kleopatra but the GnuPG engine was accidentally build for 32 bit. This will be fixed with the next Beta. That might increase the confusion a bit.

Jan 7 2025, 8:33 AM · Windows, pinentry, Bug Report, gpg4win
werner closed T7469: gnupg fr.po updates as Resolved.

All applied.

Jan 7 2025, 8:27 AM · i18n, gnupg
werner committed rG09613aebf303: po: Update french translation. (authored by bubu <bubub@no-log.org>).
po: Update french translation.
Jan 7 2025, 8:22 AM

Jan 6 2025

werner committed rE652328c786f3: New Windows API gpgrt_w32_reg_get_string. (authored by werner).
New Windows API gpgrt_w32_reg_get_string.
Jan 6 2025, 9:18 PM
werner committed rG4c7e7a416539: po: Update French translation (authored by werner).
po: Update French translation
Jan 6 2025, 7:04 PM
werner committed rG80828512b6ec: gpg: Allow smaller session keys with Kyber (authored by Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>).
gpg: Allow smaller session keys with Kyber
Jan 6 2025, 6:30 PM
werner committed rG72e3fddbfe7b: gpg: Force the use of AES-256 in some cases (authored by Damien Goutte-Gattat via Gnupg-devel <gnupg-devel@gnupg.org>).
gpg: Force the use of AES-256 in some cases
Jan 6 2025, 6:30 PM
werner moved T7293: spawn API glitch from WiP to gnupg-2.2.45 on the gnupg22 board.
Jan 6 2025, 12:20 PM · gnupg22 (gnupg-2.2.45), gnupg24, gpgrt, Bug Report
werner added a comment to T7328: Add Kleopatra configs to gpgconf -X.

it would be best to add an API to gpgrt to iterate over registry entries.

Jan 6 2025, 12:14 PM · vsd, gpd5x, Windows, gnupg, Feature Request
werner closed T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO as Resolved.
Jan 6 2025, 12:11 PM · gnupg22 (gnupg-2.2.46), Bug Report
werner moved T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO from QA to gnupg-2.2.46 on the gnupg22 board.
Jan 6 2025, 12:11 PM · gnupg22 (gnupg-2.2.46), Bug Report
werner moved T7363: gpgme testsuite error against gnupg 2.2.45 from QA to gnupg-2.2.46 on the gnupg22 board.
Jan 6 2025, 12:10 PM · gnupg22 (gnupg-2.2.46), Bug Report
werner moved T7314: Release GnuPG 2.2.46 from Backlog to gnupg-2.2.46 on the gnupg22 board.
Jan 6 2025, 12:10 PM · gnupg22 (gnupg-2.2.46), Release Info
werner archived gnupg22 (gnupg-2.2.44).
Jan 6 2025, 12:10 PM
werner created gnupg22 (gnupg-2.2.46).
Jan 6 2025, 12:09 PM

Jan 3 2025

werner added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

But keep https://www.cs.auckland.ac.nz/~pgut001/pubs/heffalump_crypto.pdf in mind ;-)

Jan 3 2025, 10:04 AM · PQC, gnupg26, Bug Report

Jan 2 2025

werner committed rG647fa16be740: po: Update French translation (authored by bubu <bubub@no-log.org>).
po: Update French translation
Jan 2 2025, 5:14 PM
werner committed rDbab04fe64de5: Mark GnuPG 2.2 and Libgcrypt 1.8 as end-of-life (authored by werner).
Mark GnuPG 2.2 and Libgcrypt 1.8 as end-of-life
Jan 2 2025, 4:33 PM
werner added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

That is what I expected. Meanwhile I re-read the code and history and can tell that the comment is not correct. I wrote it with PQC security level in mind which requires AES256 for the session key as well. However, during the migration phase and as long as --require-pqc-encryption is not enable we should allow an AES-128 session key. This is for the rare case that encryption is also done for non pqc keys which don't have the AES-256 capability set.

Jan 2 2025, 4:23 PM · PQC, gnupg26, Bug Report
werner triaged T7471: gpgme testsuite timebomb as Normal priority.
Jan 2 2025, 3:34 PM · gpgme, Bug Report
werner triaged T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128 as High priority.

At gnupg/g10/pubkey-enc.c you will find

Jan 2 2025, 3:33 PM · PQC, gnupg26, Bug Report
werner added a comment to T7118: gpgme: Add support for designated revokers.

@ikloecker: Do you still have the private key for tests/json/key-with-revokers.asc somewhere? We need to remove the expiration date due to T7471.

Jan 2 2025, 9:45 AM · gpgme, Restricted Project, kleopatra
werner closed T6965: WKD fail: gpg/dimngr fails to retrieve public key as Resolved.
Jan 2 2025, 9:31 AM · Support, dirmngr

Dec 20 2024

werner closed T7466: gpg4win: Installer creates GnuPG dir regardless of chosen install target as Resolved.

Actually I would like to remove the option to install gpg4win at non-standard places because this is somewhat troublesome. However some users rely on this and thus we better don't remove i.

Dec 20 2024, 3:54 PM · FAQ, Support, gpg4win
werner added a comment to T7459: 5.0.0-beta: Pinentry crashes with 0x000007b.

gpg: [stdin]: clear-sign failed: No pinentrysrc/libwinpty/winpty.cc, line 924

Dec 20 2024, 10:54 AM · Windows, pinentry, Bug Report, gpg4win

Dec 19 2024

werner committed rS512ed39637a7: doc: Add Evolution setup information to Scute manual. (authored by pert).
doc: Add Evolution setup information to Scute manual.
Dec 19 2024, 3:59 PM
werner committed rS93da7798730b: Silence cc warning about unused function. (authored by werner).
Silence cc warning about unused function.
Dec 19 2024, 3:59 PM
werner committed rS343cfbd8f62f: Update NEWS and texi (authored by werner).
Update NEWS and texi
Dec 19 2024, 3:59 PM
werner raised the priority of T3979: GPGSM: Authenticated encryption from Wishlist to Normal.
Dec 19 2024, 10:33 AM · gnupg26, S/MIME

Dec 18 2024

werner reopened T7454: Kleopatra: GnuPG System settings’ translations are not pulled as "Open".
Dec 18 2024, 5:25 PM · Not A Bug, gnupg, Bug Report
werner closed T7454: Kleopatra: GnuPG System settings’ translations are not pulled as Resolved.

Actually not a bug: In my tests I forgot to unset LANGUAGES and LANG before calling gpg.

Dec 18 2024, 3:28 PM · Not A Bug, gnupg, Bug Report
werner added a comment to T7454: Kleopatra: GnuPG System settings’ translations are not pulled.

I can replicate this. A quick strace with LC_MESSAGES=de_DE shows (gnupg master)

Dec 18 2024, 3:12 PM · Not A Bug, gnupg, Bug Report

Dec 16 2024

werner added a comment to T7454: Kleopatra: GnuPG System settings’ translations are not pulled.

show English or Turkish strings?

Dec 16 2024, 3:06 PM · Not A Bug, gnupg, Bug Report
werner added a project to T7459: 5.0.0-beta: Pinentry crashes with 0x000007b: pinentry.
Dec 16 2024, 3:04 PM · Windows, pinentry, Bug Report, gpg4win
werner added a comment to T7459: 5.0.0-beta: Pinentry crashes with 0x000007b.

Jan, you please run something like

Dec 16 2024, 3:04 PM · Windows, pinentry, Bug Report, gpg4win
werner renamed T7460: "Refresh the keyring" in the GPA keyring dialog locks up program from "Refresh the keyring" in the #gpa keyring dialog locks up program to "Refresh the keyring" in the GPA keyring dialog locks up program.
Dec 16 2024, 3:02 PM · gpa, Bug Report
werner renamed T7460: "Refresh the keyring" in the GPA keyring dialog locks up program from "Refresh the keyring" in the keyring dialog locks up program to "Refresh the keyring" in the #gpa keyring dialog locks up program.
Dec 16 2024, 3:02 PM · gpa, Bug Report
werner triaged T7460: "Refresh the keyring" in the GPA keyring dialog locks up program as Normal priority.

I am sorry, that I can't give it a high priority. See the discussion on the mailing list. I'll try my best, though.

Dec 16 2024, 3:01 PM · gpa, Bug Report

Dec 13 2024

werner closed T7450: Check for updates does not work, i.e.: "No updates found" when updates exist as Resolved.

@uwi: We removed the ciphersuite from the server and tested with 4.2.0 that you get an update notification now. Because of some caching you may need to

Dec 13 2024, 3:58 PM · dev.gnupg.org, Bug Report, gpg4win
werner added a project to T7450: Check for updates does not work, i.e.: "No updates found" when updates exist: dev.gnupg.org.

This is due to an update of the server providing the version info. The server (Apache) uses a smaller hash than the ECC key. This is allowed behaviour and was fixed in our TLS library in 2022; see T6059. However, the new library was released only early this year an. We will check whether we can tell our Apache to use a more correct hash algorithm.

Dec 13 2024, 9:24 AM · dev.gnupg.org, Bug Report, gpg4win
werner added a comment to rAcc6c29735d59: w32: Fix errno for assuan_sock_bind failure..

What do you thing of storing the last WSAGetLAstError value also in the context and extend assuan_sock_get_flag to return this error value? The thing here is that I fear the mapped information is not enough to find the problem with the bind call.

Dec 13 2024, 8:57 AM