Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Jul 25 2025

werner triaged T7742: Extend the LDAP scheme for non-NTDS installations as Normal priority.
Jul 25 2025, 2:07 PM · dirmngr, LDAP, gnupg26
werner triaged T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated) as Normal priority.
Jul 25 2025, 10:32 AM · gnupg26, gnupg, Bug Report

Jul 17 2025

werner moved T7709: Decryption with ECC smartcard keys broken from Backlog to WIP on the gpd5x board.
Jul 17 2025, 9:12 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner changed the status of T7709: Decryption with ECC smartcard keys broken, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, from Open to Testing.
Jul 17 2025, 9:12 AM · gnupg26
werner changed the status of T7709: Decryption with ECC smartcard keys broken from Open to Testing.
Jul 17 2025, 9:12 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
gniibe added a parent task for T7709: Decryption with ECC smartcard keys broken: T7649: gnupg: Use KEM interface for encryption/decryption.
Jul 17 2025, 4:24 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T7709: Decryption with ECC smartcard keys broken.
Jul 17 2025, 4:24 AM · gnupg26

Jul 16 2025

werner triaged T7728: Support Yubikey attestation certificates as Normal priority.
Jul 16 2025, 3:18 PM · Feature Request, yubikey, gnupg26
gniibe added a comment to T7709: Decryption with ECC smartcard keys broken.

Here is a patch.

diff --git a/agent/divert-scd.c b/agent/divert-scd.c
index 1e5de4671..bb42dd3b4 100644
--- a/agent/divert-scd.c
+++ b/agent/divert-scd.c
@@ -517,6 +517,9 @@ agent_card_ecc_kem (ctrl_t ctrl, const unsigned char *ecc_ct,
Jul 16 2025, 12:09 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner closed T7083: Show revocation reasons also with a standard -k listing as Resolved.
Jul 16 2025, 12:04 PM · OpenPGP, Feature Request, gnupg26
werner closed T6599: INT2FD and npth_accept, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jul 16 2025, 12:03 PM · Windows 64, Feature Request, gnupg26
werner closed T6599: INT2FD and npth_accept as Resolved.

Several releases since the last commit and no specific bug reports. We can close this task.

Jul 16 2025, 12:03 PM · Windows 64, Feature Request, gnupg26
werner lowered the priority of T7292: gpg-mail-tube: Add more features from Normal to Low.
Jul 16 2025, 12:00 PM · Feature Request, gnupg26
werner lowered the priority of T6956: GnuPG: Allow import of gpgsk files from Normal to Low.
Jul 16 2025, 12:00 PM · gnupg26, Feature Request, Restricted Project
werner moved T7649: gnupg: Use KEM interface for encryption/decryption from Backlog to WIP on the gnupg26 board.
Jul 16 2025, 11:58 AM · gnupg26
werner closed T7698: Add support of secp256k1 for KEM API, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jul 16 2025, 11:58 AM · gnupg26
werner closed T7698: Add support of secp256k1 for KEM API as Resolved.

Should be fixed with 2.5.9. Given that secp256 is an esoteric curve for GnuPG it does not make sense to run the entire QA process.

Jul 16 2025, 11:58 AM · gnupg26
werner closed T7289: Release GnuPG 2.5.2 as Resolved.
Jul 16 2025, 11:55 AM · gnupg, Release Info, gnupg26
werner moved T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from WIP to QA on the gnupg26 board.
Jul 16 2025, 11:54 AM · gnupg26, Bug Report
werner moved T7693: `gpg --fetch-keys` fails because of missing keyserver from WIP to QA on the gnupg26 board.
Jul 16 2025, 11:54 AM · gnupg26
werner added a project to T7709: Decryption with ECC smartcard keys broken: gnupg26.
Jul 16 2025, 11:42 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report

Jul 10 2025

werner triaged T7719: Release GnuPG 2.5.10 as Normal priority.
Jul 10 2025, 4:27 PM · Release Info, gnupg, gnupg26

Jul 8 2025

werner closed T7715: Dirmngr shall send a User-Agent header as Resolved.
Jul 8 2025, 3:46 PM · Feature Request, gnupg26
werner triaged T7715: Dirmngr shall send a User-Agent header as Normal priority.
Jul 8 2025, 9:50 AM · Feature Request, gnupg26

Jul 3 2025

collinfunk added a comment to T6598: Fix FD2INT for 64-bit Windows.

Can't you just use file descriptors everywhere and use _get_osfhandle once you need a HANDLE. That is what I am used to seeing in Windows code in Gnulib (although I do not touch it much).

Jul 3 2025, 4:23 AM · Windows 64, Feature Request, gnupg26

Jul 2 2025

werner reopened T6598: Fix FD2INT for 64-bit Windows as "Open".

Regarding 64bit handles https://learn.microsoft.com/en-us/windows/win32/winprog64/interprocess-communication
tells us:

Jul 2 2025, 4:41 PM · Windows 64, Feature Request, gnupg26
werner reopened T6598: Fix FD2INT for 64-bit Windows, a subtask of T6508: Port GnuPG to 64-bit Windows, as Open.
Jul 2 2025, 4:41 PM · Windows 64, Feature Request, gnupg26
werner triaged T7713: Allow to skip the qualified signature confirmation prompt as Normal priority.
Jul 2 2025, 11:41 AM · S/MIME, Feature Request, gnupg26
werner triaged T7710: Kleopatra: Paperkey can't handle curve448/kyber keys as Normal priority.

This seems to be a good opportunity to replace paperkey with a new tool to take advantage of the smaller ECC keys which allow us to re-generate most stuff.

Jul 2 2025, 9:14 AM · Feature Request, gnupg26, kleopatra

Jun 26 2025

gniibe changed the status of T7698: Add support of secp256k1 for KEM API, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, from Open to Testing.
Jun 26 2025, 6:49 AM · gnupg26
gniibe changed the status of T7698: Add support of secp256k1 for KEM API from Open to Testing.
Jun 26 2025, 6:49 AM · gnupg26

Jun 25 2025

gniibe triaged T7698: Add support of secp256k1 for KEM API as High priority.
Jun 25 2025, 3:19 AM · gnupg26

Jun 24 2025

werner added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

secp256k1 is an --expert option and not supported by other *PGP
implementations. We should actually hide this thing even more and not
even display it with --expert. Thus do no expect an immediate 2.5.9
release to fix this issue.

Jun 24 2025, 8:20 AM · gnupg26
gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

secp256k1 failure:
https://lists.gnupg.org/pipermail/gnupg-users/2025-June/067731.html

Jun 24 2025, 8:07 AM · gnupg26

Jun 18 2025

werner closed T6551: translate_sys2libc_fd_int on Windows 64-bit, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:45 AM · Windows 64, Feature Request, gnupg26
werner closed T6551: translate_sys2libc_fd_int on Windows 64-bit as Resolved.
Jun 18 2025, 9:45 AM · Windows 64, Feature Request, gnupg26
werner closed T6508: Port GnuPG to 64-bit Windows as Resolved.

After several gpg4win-5 betas be can set this task to resolved.

Jun 18 2025, 9:44 AM · Windows 64, Feature Request, gnupg26
werner closed T6580: Use gnupg_fd_t if it's relevant, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:43 AM · Windows 64, Feature Request, gnupg26
werner closed T6580: Use gnupg_fd_t if it's relevant as Resolved.

I claim this resolved given several gpg4win-5 betas.

Jun 18 2025, 9:43 AM · Windows 64, Feature Request, gnupg26
werner closed T6598: Fix FD2INT for 64-bit Windows, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:42 AM · Windows 64, Feature Request, gnupg26
werner closed T6598: Fix FD2INT for 64-bit Windows as Resolved.

I claim this resolved given that we had several gpg4win-5 betas and no reported problems was related to this.

Jun 18 2025, 9:42 AM · Windows 64, Feature Request, gnupg26
werner added a subtask for T6465: Store the ECDH parameters in the key file: T5583: Support RSCS dedicated OpenPGP for OID..
Jun 18 2025, 9:39 AM · gnupg26, OpenPGP, scd, Bug Report
werner added a parent task for T5583: Support RSCS dedicated OpenPGP for OID.: T6465: Store the ECDH parameters in the key file.
Jun 18 2025, 9:39 AM · gnupg26, Restricted Project, scd
werner lowered the priority of T5583: Support RSCS dedicated OpenPGP for OID. from Normal to Low.

Reminder mostly to self: This is about the KDF parameters. In the light of PQC composite algorithms we may want to also prepare for PQC required stuff.

Jun 18 2025, 9:36 AM · gnupg26, Restricted Project, scd
werner added a comment to T7653: Fix gpg's passwd for Kyber with the ecc part on a card.

There should be a workaround by using

Jun 18 2025, 9:32 AM · Bug Report, gnupg26
werner moved T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from Backlog to WIP on the gnupg26 board.
Jun 18 2025, 9:30 AM · gnupg26, Bug Report
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T6815: PQC encryption for GnuPG, as Resolved.
Jun 18 2025, 9:29 AM · OpenPGP, PQC, gnupg
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface as Resolved.

This was release with 2.5.7.

Jun 18 2025, 9:29 AM · gnupg26, gpgagent, Feature Request
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jun 18 2025, 9:29 AM · gnupg26

Jun 17 2025

werner changed the status of T7693: `gpg --fetch-keys` fails because of missing keyserver from Open to Testing.

Funny old bug which shows up only if you don't have any keyserver configured. Note the FIXME in the commit ;-)

Jun 17 2025, 6:37 PM · gnupg26
m.eik created T7693: `gpg --fetch-keys` fails because of missing keyserver.
Jun 17 2025, 4:03 PM · gnupg26
gniibe closed T5964: gnupg should use the KDFs implemented in libgcrypt, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jun 17 2025, 2:38 AM · gnupg26
gniibe closed T5964: gnupg should use the KDFs implemented in libgcrypt as Resolved.
Jun 17 2025, 2:38 AM · gnupg26, FIPS, Feature Request

Jun 11 2025

werner added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

I stumbled into this problems myself yesterday. Time for a new release.

Jun 11 2025, 11:24 AM · gnupg26, Bug Report

Jun 6 2025

gouttegd added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

Once again, thank you for your reactivity @gniibe !

Jun 6 2025, 11:00 AM · gnupg26, Bug Report
gniibe changed the status of T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from Open to Testing.
Jun 6 2025, 7:27 AM · gnupg26, Bug Report
gniibe added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

My test coverage was not good (even if I daily use Curve25519 on Gnuk Token).
Your analysis is correct.

Jun 6 2025, 7:18 AM · gnupg26, Bug Report
gniibe triaged T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token as High priority.
Jun 6 2025, 7:00 AM · gnupg26, Bug Report
gniibe claimed T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.
Jun 6 2025, 7:00 AM · gnupg26, Bug Report

Jun 5 2025

gouttegd added a project to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token: gnupg26.
Jun 5 2025, 7:49 PM · gnupg26, Bug Report

Jun 2 2025

werner added a comment to T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts..

We do this now also for gpg-wks-server. Further gpg-wks-client now sends the current language to the server so that the server can get back to the user with a proper translated text (if configured).

Jun 2 2025, 12:38 PM · Feature Request, gnupg26
werner renamed T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts. from gpg-mail-tube: Allow the use of templates instead of static texts. to gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts..
Jun 2 2025, 12:37 PM · Feature Request, gnupg26

May 30 2025

werner changed the status of T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts., a subtask of T7292: gpg-mail-tube: Add more features, from Open to Testing.
May 30 2025, 2:57 PM · Feature Request, gnupg26
werner changed the status of T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts. from Open to Testing.

Alright. We use utf-8 in our template files and switch to QP encoding when needed.

May 30 2025, 2:57 PM · Feature Request, gnupg26

May 28 2025

werner moved T7663: Certificated signed using SHA-1 isn't trusted, but needs --force-sign-key to re-sign. from Backlog to QA on the gnupg26 board.
May 28 2025, 10:47 AM · gnupg26, Feature Request

May 27 2025

gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

Another possible change will be use of KEM interface for gpgsm.
Not high priority, but for long term code maintenance.

May 27 2025, 3:38 AM · gnupg26

May 26 2025

werner edited projects for T7663: Certificated signed using SHA-1 isn't trusted, but needs --force-sign-key to re-sign., added: Feature Request, gnupg26, gnupg24; removed Bug Report.
May 26 2025, 6:08 PM · gnupg26, Feature Request
gniibe added a parent task for T5964: gnupg should use the KDFs implemented in libgcrypt: T7649: gnupg: Use KEM interface for encryption/decryption.
May 26 2025, 6:34 AM · gnupg26, FIPS, Feature Request
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T5964: gnupg should use the KDFs implemented in libgcrypt.
May 26 2025, 6:34 AM · gnupg26
gniibe added a parent task for T7014: agent: Enhancement of PKDECRYPT for KEM interface: T7649: gnupg: Use KEM interface for encryption/decryption.
May 26 2025, 6:33 AM · gnupg26, gpgagent, Feature Request
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T7014: agent: Enhancement of PKDECRYPT for KEM interface.
May 26 2025, 6:33 AM · gnupg26
gniibe changed the status of T5964: gnupg should use the KDFs implemented in libgcrypt from Open to Testing.

Done by T7649: gnupg: Use KEM interface for encryption/decryption

May 26 2025, 6:32 AM · gnupg26, FIPS, Feature Request

May 24 2025

collinfunk added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

@werner I think these changes caused an ASAN failure that I reported in T7664. I think it would be good to get that sorted before a release.

May 24 2025, 9:13 PM · gnupg26

May 23 2025

werner closed T7506: GnuPG: Error when adding ECDSA subkey in batch mode with quick-add-key "Wrong key usage" as Resolved.
May 23 2025, 11:59 AM · gnupg26, gnupg24, Bug Report
gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

Clean up finished by rG681d75404300: gpg,agent: Clean up around using ECC KEM.
Tested by make check and decrypting tests/openpgp/samplemsgs/pqc-sample-*.enc.asc.

May 23 2025, 10:27 AM · gnupg26
gniibe closed T7457: gpg --full-gen-key doesn't show list of keys on card (regression) as Resolved.
May 23 2025, 10:18 AM · gnupg26, gnupg24, Bug Report

May 22 2025

werner added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

FYI: I'd like to get a new release out after these changes.

May 22 2025, 10:35 AM · gnupg26
gniibe changed the status of T7649: gnupg: Use KEM interface for encryption/decryption from Open to Testing.

Pushed all changes needed. Actually, agent side too.
Clean up will be done.

May 22 2025, 8:05 AM · gnupg26

May 19 2025

gniibe renamed T7649: gnupg: Use KEM interface for encryption/decryption from gnupg: Use KEM interface for decryption to gnupg: Use KEM interface for encryption/decryption.
May 19 2025, 2:35 AM · gnupg26

May 14 2025

werner triaged T7653: Fix gpg's passwd for Kyber with the ecc part on a card as Normal priority.
May 14 2025, 10:05 AM · Bug Report, gnupg26

May 13 2025

werner added a project to T7649: gnupg: Use KEM interface for encryption/decryption: gnupg26.
May 13 2025, 3:24 PM · gnupg26
werner closed T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN" as Resolved.

Meanwhile we have some support for an empty subject but gpgsm still prints an error notice. See the T7171 for more.

May 13 2025, 3:00 PM · gnupg26, S/MIME, Feature Request
werner added a parent task for T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN": T7171: Allow for empty Subject in X.509.
May 13 2025, 2:58 PM · gnupg26, S/MIME, Feature Request
gniibe closed T6512: keyboxd with data pipe as Resolved.
May 13 2025, 3:07 AM · gnupg26, Bug Report

May 9 2025

gniibe added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

(2) Update the documentation of default-cache-ttl zero value disabling caching.

May 9 2025, 10:02 AM · keyboxd, gpgagent, gnupg26
werner renamed T7645: Kleopatra: Encoding errors in signature verification audit log (timestamps) from Kleopatra: Encoding errors in signature verification audit log to Kleopatra: Encoding errors in signature verification audit log (timestamps).
May 9 2025, 9:26 AM · gnupg26, gpd5x, Bug Report
werner triaged T7645: Kleopatra: Encoding errors in signature verification audit log (timestamps) as Low priority.

I think we have another report on this in the tracker. The problem is indeed the ugly Windows time functions to print a string. Let me only remind that until a few years, Windows had the opinion that Germany uses the Westeuropäische Zeit like Portugal or the UK.

May 9 2025, 9:25 AM · gnupg26, gpd5x, Bug Report
gniibe added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

I am going to do:
(1) Recover old behavior with max-cache-ttl = 0
(2) Update the documentation of default-cache-ttl zero value disabling caching.

May 9 2025, 4:37 AM · keyboxd, gpgagent, gnupg26

May 8 2025

werner closed T7547: signatures from revoked or expired keys show up as missing keys as Resolved.
May 8 2025, 3:29 PM · gnupg26, gnupg24, Bug Report
werner added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

I can't see any documentation that a value of 0 disables the cache. The user might have used some undefined behaviour. For example in the old code we did a housecleaning when we were idle but the new code uses a timer and another thread for flushing the cache. We could open a feature request to entire disable the cache but I bet that we will get a lot of new bug reports because users will then need to enter their passphrase too often for one operation.

May 8 2025, 9:14 AM · keyboxd, gpgagent, gnupg26
gniibe added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

It's not my intention. I didn't know the feature of disabling caching by max-cache-ttl to 0.
Well, it's a regression if a user intends so.

May 8 2025, 4:00 AM · keyboxd, gpgagent, gnupg26

May 7 2025

werner added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

Lucas Mülling commented yesterday on gnupg-devel:

May 7 2025, 11:40 AM · keyboxd, gpgagent, gnupg26

May 2 2025

bernhard added a comment to T6234: Implement access to smartcards via a generic pkcs#11 interface.

A brief update: This feature has not made it onto the roadmap of specific things to implement so far.

May 2 2025, 3:51 PM · gnupg, Feature Request, scd

Apr 22 2025

werner triaged T7618: gpgsm: Allow selecting keys by SHA2 fpr as Normal priority.

BTW, fingerprints for X.509 are not well defined because you get a different one when changing the *unsigned" attributes. Not a common case but one should be aware of it.

Apr 22 2025, 9:33 AM · S/MIME, gnupg26, Feature Request

Apr 9 2025

werner changed the status of T7547: signatures from revoked or expired keys show up as missing keys from Open to Testing.
Apr 9 2025, 1:54 PM · gnupg26, gnupg24, Bug Report

Apr 2 2025

werner triaged T7593: Check the trustlist de-vs flag in the per key compliance check as High priority.
Apr 2 2025, 11:43 AM · gpd5x, gnupg26, vsd, Feature Request

Mar 14 2025

werner moved T7457: gpg --full-gen-key doesn't show list of keys on card (regression) from Backlog to QA on the gnupg24 board.

Done

Mar 14 2025, 1:20 PM · gnupg26, gnupg24, Bug Report
ikloecker reopened T7457: gpg --full-gen-key doesn't show list of keys on card (regression) as "Open".

Re-opening because I think rGaa36f6ae8bae needs to be backported to GnuPG 2.4 (see T7568). The fix for T7309 which introduced the regression has been backported to GnuPG 2.4.

Mar 14 2025, 8:54 AM · gnupg26, gnupg24, Bug Report
dkg added a comment to T7547: signatures from revoked or expired keys show up as missing keys.

I've offered https://github.com/bestpractical/gnupg-interface/pull/16 to GnuPG::Interface, and am testing it out in debian unstable.

Mar 14 2025, 12:33 AM · gnupg26, gnupg24, Bug Report

Mar 13 2025

dkg added a comment to T7547: signatures from revoked or expired keys show up as missing keys.

I'll work on making a patch to offer a flexible test suite.

Mar 13 2025, 6:21 PM · gnupg26, gnupg24, Bug Report
First
Prev
Next