The status bar is now updated in case the VERSION file is loaded after the main window was created.
Feed Advanced Search
May 7 2025
May 7 2025
• ikloecker changed the status of T7639: Kleopatra: Version information sometimes not shown. from Open to Testing.
• ikloecker added a comment to T7639: Kleopatra: Version information sometimes not shown..
Kleopatra does not show version information in the status bar. It does show whatever is stored in the VERSION file under the key statusline in the group [Kleopatra].
timegrid moved T7304: Kleopatra: "All Certificates" key filter gets selected when saving a change to a key filter's appearance from WIP to Done on the gpd5x board.
looks good to me on gpg4win-5.0.0-beta167@win10
• ikloecker moved T7639: Kleopatra: Version information sometimes not shown. from Backlog to WIP on the gpd5x board.
• gniibe added a comment to T7519: libgcrypt: (EC)DSA signature generation should be constant-time.
In libgcrypt/cipher/ecc-ecdsa.c, we have:
mpi_mulm (s, k_1, sum, ec->n); /* s = k^(-1)*(hash+(d*r)) mod n */
collinfunk added a comment to T7638: gpg on Solaris does not print a signal description.
Hi Werner, I submitted a patch right after this bug report using AC_CHECK_DECLS([_sys_siglist]) [1].
May 6 2025
May 6 2025
• ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).
The first call of get_key receives the following key listing from gpg:
2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: sec:-:256:19:C4A24EB0B5F2E025:1746474606:::u:::s 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: cESCA:::D2760001240100000006180489130000::brainp 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: oolP256r1:23::0:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: fpr:::::::::DEC0948C398A6E7B50746EC6C4A24EB0B5F2 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: E025:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: grp:::::::::06BDACFBDEDBC5783A75AE5E7251FA3369C4 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: 0FF4:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: uid:-::::1746474606::2222D8E2F373B9BDEE0DEA2A20A 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: 9402214E9F984::Eric <eric@bktus.com>::::::::::0: 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: <LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: ssb:-:256:19:EAFC5EA29B758B22:1746474606::::::a: 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: ::D2760001240100000006180489130000::brainpoolP25 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: 6r1:23:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: fpr:::::::::1AD596DDEC9B8CF3C1AC6C41EAFC5EA29B75 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: 8B22:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: grp:::::::::52F0797C0B0439BBD718E2534D46656A6C45 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: 6A78:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: ssb:-:256:18:A874804DB497B91C:1746474606::::::e: 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: ::#::brainpoolP256r1:23:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: fpr:::::::::33B273C7BD46E4EB63DD6874A874804DB497 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: B91C:<LF> 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: grp:::::::::34A1F8D9B2AA0CF07C2E042D70E10F9D4EBE 2025-05-05 21:50:23 gpgme[57059] _gpgme_io_read: check: E734:<LF>
Note the line
ssb:-:256:18:A874804DB497B91C:1746474606::::::e:::#::brainpoolP256r1:23:<LF>
where the # marks the subkey as stub.
• werner added a comment to T7638: gpg on Solaris does not print a signal description.
Right now we have
collinfunk added a comment to T7638: gpg on Solaris does not print a signal description.
Interesting, that sounds like a portable method. I am not very familiar with GPG internals, but to me that sounds like quite a bit of work. Unless there is another benefit to doing so, I don't think it is worth it just to print signal names.
collinfunk added a comment to T7631: Building libassuan on AIX warns about missing function declarations..
Yep, I wrote a small client and server just to verify that it is functional.
May 5 2025
May 5 2025
Saturneric added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).
I have now identified the exact conditions and a reproducible path for the issue I previously reported. I will also attach the relevant gpgme.log.
• werner added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).
I doubt that this is a gpgme problem. With a gpgme log we will be able see the exact commands send to gpg and replicate this on the command line.
• ikloecker moved T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t from Backlog to QA for next release on the gpgme board.
Should be fixed.
• ikloecker added a comment to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t.
For gpgme 2 we changed the data types of the time fields to unsigned: rMf2d40473b522e348d96a70c089d2191d0b978098 . Since this change breaks the ABI we use the above change for the 1.24 branch.
• werner triaged T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t as Normal priority.
• werner added a comment to T7628: gpg uses "month" as a synonym for 30 days.
And the US administration might even change the definition of a year to, say, 100 months so that potus can rightfully keep his promise that there won't be more election in the foreseeable future ;-)
• ikloecker added a comment to T7628: gpg uses "month" as a synonym for 30 days.
By the way, "years" is also "incorrect" once in ~4 years because it uses n*365 days. Werner's advice still applies. Enter an ISO date if you want an exact date. Or use a UI tool like Kleopatra.
svuorela added a comment to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t.
tested @ikloecker's patch succesful on amdahl.
• ikloecker added a comment to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t.
The following patch for gpgme 1.24 should fix the test.
diff --git a/lang/cpp/src/key.cpp b/lang/cpp/src/key.cpp index 42046aa..2b14d90 100644 --- a/src/key.cpp +++ b/src/key.cpp @@ -633,7 +633,7 @@ time_t Subkey::creationTime() const
svuorela added a comment to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t.
I did a local change (on amdahl.d.o) changing _gpgme_subkey.expires to long long (ABI-break) and all tests succeeded.
svuorela added a comment to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t.
It looks like the entirety of gpgme timestamping was missed when the 64bit time transition happened in Debian and Ubuntu.
• ikloecker edited projects for T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t, added: gpgme; removed gpgmeqt, qt.
This looks like a problem in gpgme. struct _gpgme_subkey stores the expiration date as long int expires which is a signed 32-bit value on all 32-bit architectures. gpgmepp casts this to time_t, but that doesn't help if the 32-bit value is already negative. The same problem exists with all other timestamps in gpgme (i.e. key creation date, signature expiration date, etc.).
• werner triaged T7631: Building libassuan on AIX warns about missing function declarations. as Normal priority.
But the function works and returns the peer's credentials?
• werner triaged T7633: libgcrypt fails to build on NetBSD due to the systems bswap32 macro defintion. as High priority.
• werner triaged T7634: libgcrypt's test t-thread-local fails to link on some platforms. as High priority.
The main problem here was that this all is not async-safe and thus I once implemented only the standard cases I could test easily.
• ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).
The logs of gpgme would be helpful, i.e. run your test program with GPGME_DEBUG=8:$(pwd)/gpgme-$(date +"%Y-%m-%d-%H%M%S").log to create a log file with gpgme's logs.
• werner changed the status of T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept from Open to Testing.
May 4 2025
May 4 2025
May 2 2025
May 2 2025
• werner added a comment to T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept.
Yes, this is related to T7547. With my last fix for that I overlooked that we use PUBKEY_USAGE_CERT to internally request the primary key but that one is not set because in general USAGE_SIG means the same (except for some case in PGP7 mode).
• werner added a project to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard: ssh.
• werner added a project to T7634: libgcrypt's test t-thread-local fails to link on some platforms.: NetBSD.
• werner added a project to T7631: Building libassuan on AIX warns about missing function declarations.: AIX.
• werner triaged T7629: gcc 15 warns about -Wunterminated-string-initialization in gnupg as Low priority.
collinfunk added a project to T7629: gcc 15 warns about -Wunterminated-string-initialization in gnupg: gnupg.
May 1 2025
May 1 2025
collinfunk added a comment to T7631: Building libassuan on AIX warns about missing function declarations..
Correction, the _ALL_SOURCE definition only applies if __cplusplus is defined... Strange platform...
Apr 30 2025
Apr 30 2025
collinfunk added a comment to T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later.
I think you are correct.
Apr 28 2025
Apr 28 2025
• ebo moved T6646: GpgOL: signature not displayed if mail is saved in the filesystem from Restricted Project Column to Restricted Project Column on the Restricted Project board.
• werner added a project to T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t: gpgmeqt.
Apr 27 2025
Apr 27 2025
• werner edited projects for T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t, added: qt; removed gpgme.
The report is correct but it does not make sense to fix it. If you want to use a concrete expiration date just enter the IS date at the prompt; use ? at the prompt for a short description.
Apr 26 2025
Apr 26 2025
Apr 25 2025
Apr 25 2025
• ebo added a comment to T6646: GpgOL: signature not displayed if mail is saved in the filesystem.
Fixed:
• ebo moved T6646: GpgOL: signature not displayed if mail is saved in the filesystem from Backlog to QA on the vsd33 board.
• ebo reopened T6646: GpgOL: signature not displayed if mail is saved in the filesystem as "Testing".
Apr 24 2025
Apr 24 2025
Thanks for the patch but I think it is better to fix this in yat2m. I created a new tag for bugs related to it.
Apr 23 2025
Apr 23 2025
• werner closed T7622: `gpg --encrypt --default-recipient-self` emits wrong message about "signing" as Wontfix.
This is really a minor thing and and it is actually true if you also sign something.
• gniibe changed the status of T7624: libksba: __non_string for GCC 15 or later, a subtask of T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later, from Open to Testing.
• gniibe changed the status of T7624: libksba: __non_string for GCC 15 or later from Open to Testing.
• gniibe changed the status of T7621: libgpg-error: __non_string for GCC 15 or later, a subtask of T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later, from Open to Testing.
• gniibe changed the status of T7621: libgpg-error: __non_string for GCC 15 or later from Open to Testing.
• gniibe changed the status of T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later from Open to Testing.
• gniibe changed the status of T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later) from Open to Testing.
• gniibe changed the status of T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later), a subtask of T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later, from Open to Testing.
Apr 22 2025
Apr 22 2025
• ebo triaged T7609: GpgOL: Certificates imported from WKD are always shown as level 2 as Normal priority.
• gniibe added a comment to T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later).
doc/HACKING says it's OK to use variadic arg macros (from C99 features).
If it's OK, this patch can fix the initialization (which silences GCC 15 warnings):
• gniibe renamed T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later) from gpgscm: Don't use fixed size characters (for portability, specifically for GCC 15 or later) to gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later).
• gniibe triaged T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later) as Normal priority.
Apr 21 2025
Apr 21 2025
Apr 20 2025
Apr 20 2025
Apr 19 2025
Apr 19 2025
ametzler1 reopened T1421: GnuPG should verify --homedir option before creating a key as "Open".
Good morning,
I stumbled upon this when digging through old Debian bug reports against 1.4 and checking whether they still applied to 2.4. This one really still applies.
Apr 18 2025
Apr 18 2025
• gniibe added a comment to T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later.
IIUC, it's GCC 8 which starts the support of __nonstring__ attribute.
• gniibe set External Link to https://gcc.gnu.org/bugzilla/show_bug.cgi?id=117178 on T7617: libgcrypt: Add __nonstring__ attribute for data for GCC 15 or later.
Apr 17 2025
Apr 17 2025
• ebo added a project to T7609: GpgOL: Certificates imported from WKD are always shown as level 2: gpd5x.
dkg updated the task description for T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.
dkg updated the task description for T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.
• ebo edited projects for T7212: Problems with certificate colors / styles, added: gpd5x; removed Restricted Project.
Apr 15 2025
Apr 15 2025
andreasstieger added a comment to T7605: [PATCH] mail-to-translators, gpg-authcode-sign.sh: convert legacy egrep.
POSIX specifies and requires grep -E, but only mentions egrep as old.
• werner triaged T7605: [PATCH] mail-to-translators, gpg-authcode-sign.sh: convert legacy egrep as Low priority.
Removing egrep from a Unix system will break all kind of stuff. I am not even sure whether old Unices support grep -E.
Apr 14 2025
Apr 14 2025
andreasstieger updated the task description for T7605: [PATCH] mail-to-translators, gpg-authcode-sign.sh: convert legacy egrep.
• ebo added a project to T7596: GpgOL: Draft is not decrypted after cancelling decryption once: gpd5x.
Apr 12 2025
Apr 12 2025
dkg added a comment to T7603: gpgv has unnecessary dependency on libassuan and NPth.
And, one more update, to fix win32 builds under --disable-npth. This is a roll-up patch that i think covers everything, you can disregard the earlier patches posted here.
dkg renamed T7603: gpgv has unnecessary dependency on libassuan and NPth from gpgv has unnecessary dependency on libassuan to gpgv has unnecessary dependency on libassuan and NPth.
dkg added a comment to T7603: gpgv has unnecessary dependency on libassuan and NPth.
Hm, we probably should avoid gpgv linking to npth as well, as that's also a sticking point in debian. This updated patch (also targeting the 2.4 branch) also has gpgv building against libcommon instead of libcommonpth, which appears to remove the dependency for me.