Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Aug 1 2025

werner changed the status of T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Open to Testing.
Aug 1 2025, 4:37 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Backlog to WIP on the gnupg26 board.
Aug 1 2025, 4:19 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Backlog to WIP on the gpd5x board.

There is a new --keyserver-option update-before-send which is enabled by default.

Aug 1 2025, 4:18 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request

Jul 31 2025

werner changed the status of T7757: Kleopatra: Error "no data" on decryption of tar.gpg archive from Open to Testing.
Jul 31 2025, 11:35 AM · gpd5x (gpd-5.0.0), gnupg26, kleopatra
werner claimed T7757: Kleopatra: Error "no data" on decryption of tar.gpg archive.
Jul 31 2025, 10:51 AM · gpd5x (gpd-5.0.0), gnupg26, kleopatra

Jul 30 2025

werner added a project to T7757: Kleopatra: Error "no data" on decryption of tar.gpg archive: gnupg26.
Jul 30 2025, 7:49 PM · gpd5x (gpd-5.0.0), gnupg26, kleopatra
ebo closed T7709: Decryption with ECC smartcard keys broken as Resolved.
Jul 30 2025, 1:46 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
ebo closed T7709: Decryption with ECC smartcard keys broken, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jul 30 2025, 1:46 PM · gnupg26
ebo moved T7709: Decryption with ECC smartcard keys broken from WIP to Done on the gpd5x board.

tested with Gpg4win-5.0.0-beta357 (GnuPG 2.5.11):

Jul 30 2025, 1:46 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner closed T7719: Release GnuPG 2.5.10 as Resolved.

Note that 2.5.11 fixes a regression in 2.5.10 regarding the use of notations for 3rd party signatures. See T7743

Jul 30 2025, 11:06 AM · Release Info, gnupg, gnupg26

Jul 29 2025

werner added a comment to T7709: Decryption with ECC smartcard keys broken.

The card returned these 32 bytes:

1883ba0d1cacda6f357ad9caa062ebd7b3a07291a7788565caf38973bf414286

agent_card_pkdecrypt however returned 33 bytes:

411883ba0d1cacda6f357ad9caa062ebd7b3a07291a7788565caf38973bf414286

Thus the indicator byte is 0x41. The specs (librepgp, rfc4880bis) say:

Jul 29 2025, 3:26 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report

Jul 25 2025

werner moved T5447: Add feature to delete a key from an LDAP server from WIP to QA on the gnupg26 board.
Jul 25 2025, 5:30 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner moved T7709: Decryption with ECC smartcard keys broken from WIP to QA on the gnupg26 board.
Jul 25 2025, 5:29 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner changed the status of T7719: Release GnuPG 2.5.10 from Open to Testing.
Jul 25 2025, 5:28 PM · Release Info, gnupg, gnupg26
werner updated the task description for T7719: Release GnuPG 2.5.10.
Jul 25 2025, 5:27 PM · Release Info, gnupg, gnupg26
werner moved T5447: Add feature to delete a key from an LDAP server from Backlog to WiP on the vsd33 board.
Jul 25 2025, 3:29 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner moved T5447: Add feature to delete a key from an LDAP server from Backlog to WIP on the gnupg26 board.
Jul 25 2025, 3:04 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner changed the status of T5447: Add feature to delete a key from an LDAP server from Open to Testing.
Jul 25 2025, 3:04 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner triaged T7742: Extend the LDAP scheme for non-NTDS installations as Normal priority.
Jul 25 2025, 2:07 PM · dirmngr, LDAP, gnupg26
werner triaged T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated) as Normal priority.
Jul 25 2025, 10:32 AM · gnupg26, gnupg, Bug Report

Jul 17 2025

werner moved T7709: Decryption with ECC smartcard keys broken from Backlog to WIP on the gpd5x board.
Jul 17 2025, 9:12 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner changed the status of T7709: Decryption with ECC smartcard keys broken, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, from Open to Testing.
Jul 17 2025, 9:12 AM · gnupg26
werner changed the status of T7709: Decryption with ECC smartcard keys broken from Open to Testing.
Jul 17 2025, 9:12 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
gniibe added a parent task for T7709: Decryption with ECC smartcard keys broken: T7649: gnupg: Use KEM interface for encryption/decryption.
Jul 17 2025, 4:24 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T7709: Decryption with ECC smartcard keys broken.
Jul 17 2025, 4:24 AM · gnupg26

Jul 16 2025

werner triaged T7728: Support Yubikey attestation certificates as Normal priority.
Jul 16 2025, 3:18 PM · Feature Request, yubikey, gnupg26
gniibe added a comment to T7709: Decryption with ECC smartcard keys broken.

Here is a patch.

diff --git a/agent/divert-scd.c b/agent/divert-scd.c
index 1e5de4671..bb42dd3b4 100644
--- a/agent/divert-scd.c
+++ b/agent/divert-scd.c
@@ -517,6 +517,9 @@ agent_card_ecc_kem (ctrl_t ctrl, const unsigned char *ecc_ct,
Jul 16 2025, 12:09 PM · gpd5x (gpd-5.0.0), gnupg26, Bug Report
werner closed T7083: Show revocation reasons also with a standard -k listing as Resolved.
Jul 16 2025, 12:04 PM · OpenPGP, Feature Request, gnupg26
werner closed T6599: INT2FD and npth_accept, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jul 16 2025, 12:03 PM · Windows 64, Feature Request, gnupg26
werner closed T6599: INT2FD and npth_accept as Resolved.

Several releases since the last commit and no specific bug reports. We can close this task.

Jul 16 2025, 12:03 PM · Windows 64, Feature Request, gnupg26
werner lowered the priority of T7292: gpg-mail-tube: Add more features from Normal to Low.
Jul 16 2025, 12:00 PM · Feature Request, gnupg26
werner lowered the priority of T6956: GnuPG: Allow import of gpgsk files from Normal to Low.
Jul 16 2025, 12:00 PM · gnupg26, Feature Request, Restricted Project
werner moved T7649: gnupg: Use KEM interface for encryption/decryption from Backlog to WIP on the gnupg26 board.
Jul 16 2025, 11:58 AM · gnupg26
werner closed T7698: Add support of secp256k1 for KEM API, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jul 16 2025, 11:58 AM · gnupg26
werner closed T7698: Add support of secp256k1 for KEM API as Resolved.

Should be fixed with 2.5.9. Given that secp256 is an esoteric curve for GnuPG it does not make sense to run the entire QA process.

Jul 16 2025, 11:58 AM · gnupg26
werner closed T7289: Release GnuPG 2.5.2 as Resolved.
Jul 16 2025, 11:55 AM · gnupg, Release Info, gnupg26
werner moved T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from WIP to QA on the gnupg26 board.
Jul 16 2025, 11:54 AM · gnupg26, Bug Report
werner moved T7693: `gpg --fetch-keys` fails because of missing keyserver from WIP to QA on the gnupg26 board.
Jul 16 2025, 11:54 AM · gnupg26
werner added a project to T7709: Decryption with ECC smartcard keys broken: gnupg26.
Jul 16 2025, 11:42 AM · gpd5x (gpd-5.0.0), gnupg26, Bug Report

Jul 10 2025

werner triaged T7719: Release GnuPG 2.5.10 as Normal priority.
Jul 10 2025, 4:27 PM · Release Info, gnupg, gnupg26

Jul 8 2025

werner closed T7715: Dirmngr shall send a User-Agent header as Resolved.
Jul 8 2025, 3:46 PM · Feature Request, gnupg26
werner triaged T7715: Dirmngr shall send a User-Agent header as Normal priority.
Jul 8 2025, 9:50 AM · Feature Request, gnupg26

Jul 3 2025

collinfunk added a comment to T6598: Fix FD2INT for 64-bit Windows.

Can't you just use file descriptors everywhere and use _get_osfhandle once you need a HANDLE. That is what I am used to seeing in Windows code in Gnulib (although I do not touch it much).

Jul 3 2025, 4:23 AM · Windows 64, Feature Request, gnupg26

Jul 2 2025

werner reopened T6598: Fix FD2INT for 64-bit Windows as "Open".

Regarding 64bit handles https://learn.microsoft.com/en-us/windows/win32/winprog64/interprocess-communication
tells us:

Jul 2 2025, 4:41 PM · Windows 64, Feature Request, gnupg26
werner reopened T6598: Fix FD2INT for 64-bit Windows, a subtask of T6508: Port GnuPG to 64-bit Windows, as Open.
Jul 2 2025, 4:41 PM · Windows 64, Feature Request, gnupg26
werner triaged T7713: Allow to skip the qualified signature confirmation prompt as Normal priority.
Jul 2 2025, 11:41 AM · S/MIME, Feature Request, gnupg26
werner triaged T7710: Kleopatra: Paperkey can't handle curve448/kyber keys as Normal priority.

This seems to be a good opportunity to replace paperkey with a new tool to take advantage of the smaller ECC keys which allow us to re-generate most stuff.

Jul 2 2025, 9:14 AM · Feature Request, gnupg26, kleopatra

Jun 26 2025

gniibe changed the status of T7698: Add support of secp256k1 for KEM API, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, from Open to Testing.
Jun 26 2025, 6:49 AM · gnupg26
gniibe changed the status of T7698: Add support of secp256k1 for KEM API from Open to Testing.
Jun 26 2025, 6:49 AM · gnupg26

Jun 25 2025

gniibe triaged T7698: Add support of secp256k1 for KEM API as High priority.
Jun 25 2025, 3:19 AM · gnupg26

Jun 24 2025

werner added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

secp256k1 is an --expert option and not supported by other *PGP
implementations. We should actually hide this thing even more and not
even display it with --expert. Thus do no expect an immediate 2.5.9
release to fix this issue.

Jun 24 2025, 8:20 AM · gnupg26
gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

secp256k1 failure:
https://lists.gnupg.org/pipermail/gnupg-users/2025-June/067731.html

Jun 24 2025, 8:07 AM · gnupg26

Jun 18 2025

werner closed T6551: translate_sys2libc_fd_int on Windows 64-bit, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:45 AM · Windows 64, Feature Request, gnupg26
werner closed T6551: translate_sys2libc_fd_int on Windows 64-bit as Resolved.
Jun 18 2025, 9:45 AM · Windows 64, Feature Request, gnupg26
werner closed T6508: Port GnuPG to 64-bit Windows as Resolved.

After several gpg4win-5 betas be can set this task to resolved.

Jun 18 2025, 9:44 AM · Windows 64, Feature Request, gnupg26
werner closed T6580: Use gnupg_fd_t if it's relevant, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:43 AM · Windows 64, Feature Request, gnupg26
werner closed T6580: Use gnupg_fd_t if it's relevant as Resolved.

I claim this resolved given several gpg4win-5 betas.

Jun 18 2025, 9:43 AM · Windows 64, Feature Request, gnupg26
werner closed T6598: Fix FD2INT for 64-bit Windows, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Jun 18 2025, 9:42 AM · Windows 64, Feature Request, gnupg26
werner closed T6598: Fix FD2INT for 64-bit Windows as Resolved.

I claim this resolved given that we had several gpg4win-5 betas and no reported problems was related to this.

Jun 18 2025, 9:42 AM · Windows 64, Feature Request, gnupg26
werner added a subtask for T6465: Store the ECDH parameters in the key file: T5583: Support RSCS dedicated OpenPGP for OID..
Jun 18 2025, 9:39 AM · gnupg26, OpenPGP, scd, Bug Report
werner added a parent task for T5583: Support RSCS dedicated OpenPGP for OID.: T6465: Store the ECDH parameters in the key file.
Jun 18 2025, 9:39 AM · gnupg26, Restricted Project, scd
werner lowered the priority of T5583: Support RSCS dedicated OpenPGP for OID. from Normal to Low.

Reminder mostly to self: This is about the KDF parameters. In the light of PQC composite algorithms we may want to also prepare for PQC required stuff.

Jun 18 2025, 9:36 AM · gnupg26, Restricted Project, scd
werner added a comment to T7653: Fix gpg's passwd for Kyber with the ecc part on a card.

There should be a workaround by using

Jun 18 2025, 9:32 AM · Bug Report, gnupg26
werner moved T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from Backlog to WIP on the gnupg26 board.
Jun 18 2025, 9:30 AM · gnupg26, Bug Report
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T6815: PQC encryption for GnuPG, as Resolved.
Jun 18 2025, 9:29 AM · OpenPGP, PQC, gnupg
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface as Resolved.

This was release with 2.5.7.

Jun 18 2025, 9:29 AM · gnupg26, gpgagent, Feature Request
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jun 18 2025, 9:29 AM · gnupg26

Jun 17 2025

werner changed the status of T7693: `gpg --fetch-keys` fails because of missing keyserver from Open to Testing.

Funny old bug which shows up only if you don't have any keyserver configured. Note the FIXME in the commit ;-)

Jun 17 2025, 6:37 PM · gnupg26
m.eik created T7693: `gpg --fetch-keys` fails because of missing keyserver.
Jun 17 2025, 4:03 PM · gnupg26
gniibe closed T5964: gnupg should use the KDFs implemented in libgcrypt, a subtask of T7649: gnupg: Use KEM interface for encryption/decryption, as Resolved.
Jun 17 2025, 2:38 AM · gnupg26
gniibe closed T5964: gnupg should use the KDFs implemented in libgcrypt as Resolved.
Jun 17 2025, 2:38 AM · gnupg26, FIPS, Feature Request

Jun 11 2025

werner added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

I stumbled into this problems myself yesterday. Time for a new release.

Jun 11 2025, 11:24 AM · gnupg26, Bug Report

Jun 6 2025

gouttegd added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

Once again, thank you for your reactivity @gniibe !

Jun 6 2025, 11:00 AM · gnupg26, Bug Report
gniibe changed the status of T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token from Open to Testing.
Jun 6 2025, 7:27 AM · gnupg26, Bug Report
gniibe added a comment to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.

My test coverage was not good (even if I daily use Curve25519 on Gnuk Token).
Your analysis is correct.

Jun 6 2025, 7:18 AM · gnupg26, Bug Report
gniibe triaged T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token as High priority.
Jun 6 2025, 7:00 AM · gnupg26, Bug Report
gniibe claimed T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token.
Jun 6 2025, 7:00 AM · gnupg26, Bug Report

Jun 5 2025

gouttegd added a project to T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token: gnupg26.
Jun 5 2025, 7:49 PM · gnupg26, Bug Report

Jun 2 2025

werner added a comment to T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts..

We do this now also for gpg-wks-server. Further gpg-wks-client now sends the current language to the server so that the server can get back to the user with a proper translated text (if configured).

Jun 2 2025, 12:38 PM · Feature Request, gnupg26
werner renamed T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts. from gpg-mail-tube: Allow the use of templates instead of static texts. to gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts..
Jun 2 2025, 12:37 PM · Feature Request, gnupg26

May 30 2025

werner changed the status of T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts., a subtask of T7292: gpg-mail-tube: Add more features, from Open to Testing.
May 30 2025, 2:57 PM · Feature Request, gnupg26
werner changed the status of T7381: gpg-mail-tube,gpg-wks-server: Allow the use of templates instead of static texts. from Open to Testing.

Alright. We use utf-8 in our template files and switch to QP encoding when needed.

May 30 2025, 2:57 PM · Feature Request, gnupg26

May 28 2025

werner moved T7663: Certificated signed using SHA-1 isn't trusted, but needs --force-sign-key to re-sign. from Backlog to QA on the gnupg26 board.
May 28 2025, 10:47 AM · gnupg26, Feature Request

May 27 2025

gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

Another possible change will be use of KEM interface for gpgsm.
Not high priority, but for long term code maintenance.

May 27 2025, 3:38 AM · gnupg26

May 26 2025

werner edited projects for T7663: Certificated signed using SHA-1 isn't trusted, but needs --force-sign-key to re-sign., added: Feature Request, gnupg26, gnupg24; removed Bug Report.
May 26 2025, 6:08 PM · gnupg26, Feature Request
gniibe added a parent task for T5964: gnupg should use the KDFs implemented in libgcrypt: T7649: gnupg: Use KEM interface for encryption/decryption.
May 26 2025, 6:34 AM · gnupg26, FIPS, Feature Request
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T5964: gnupg should use the KDFs implemented in libgcrypt.
May 26 2025, 6:34 AM · gnupg26
gniibe added a parent task for T7014: agent: Enhancement of PKDECRYPT for KEM interface: T7649: gnupg: Use KEM interface for encryption/decryption.
May 26 2025, 6:33 AM · gnupg26, gpgagent, Feature Request
gniibe added a subtask for T7649: gnupg: Use KEM interface for encryption/decryption: T7014: agent: Enhancement of PKDECRYPT for KEM interface.
May 26 2025, 6:33 AM · gnupg26
gniibe changed the status of T5964: gnupg should use the KDFs implemented in libgcrypt from Open to Testing.

Done by T7649: gnupg: Use KEM interface for encryption/decryption

May 26 2025, 6:32 AM · gnupg26, FIPS, Feature Request

May 24 2025

collinfunk added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

@werner I think these changes caused an ASAN failure that I reported in T7664. I think it would be good to get that sorted before a release.

May 24 2025, 9:13 PM · gnupg26

May 23 2025

werner closed T7506: GnuPG: Error when adding ECDSA subkey in batch mode with quick-add-key "Wrong key usage" as Resolved.
May 23 2025, 11:59 AM · gnupg26, gnupg24, Bug Report
gniibe added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

Clean up finished by rG681d75404300: gpg,agent: Clean up around using ECC KEM.
Tested by make check and decrypting tests/openpgp/samplemsgs/pqc-sample-*.enc.asc.

May 23 2025, 10:27 AM · gnupg26
gniibe closed T7457: gpg --full-gen-key doesn't show list of keys on card (regression) as Resolved.
May 23 2025, 10:18 AM · gnupg26, gnupg24, Bug Report

May 22 2025

werner added a comment to T7649: gnupg: Use KEM interface for encryption/decryption.

FYI: I'd like to get a new release out after these changes.

May 22 2025, 10:35 AM · gnupg26
gniibe changed the status of T7649: gnupg: Use KEM interface for encryption/decryption from Open to Testing.

Pushed all changes needed. Actually, agent side too.
Clean up will be done.

May 22 2025, 8:05 AM · gnupg26

May 19 2025

gniibe renamed T7649: gnupg: Use KEM interface for encryption/decryption from gnupg: Use KEM interface for decryption to gnupg: Use KEM interface for encryption/decryption.
May 19 2025, 2:35 AM · gnupg26

May 14 2025

werner triaged T7653: Fix gpg's passwd for Kyber with the ecc part on a card as Normal priority.
May 14 2025, 10:05 AM · Bug Report, gnupg26

May 13 2025

werner added a project to T7649: gnupg: Use KEM interface for encryption/decryption: gnupg26.
May 13 2025, 3:24 PM · gnupg26
werner closed T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN" as Resolved.

Meanwhile we have some support for an empty subject but gpgsm still prints an error notice. See the T7171 for more.

May 13 2025, 3:00 PM · gnupg26, S/MIME, Feature Request
First
Prev
Next