Page MenuHome GnuPG
Feed Advanced Search

Feb 2 2021

werner committed rG3491faa3bb62: gpg: Remove experimental feature to export w/o user-ids. (authored by werner).
gpg: Remove experimental feature to export w/o user-ids.
Feb 2 2021, 1:16 PM
werner committed rGa06c79b6143f: card: List keys of pkcs#15 cards. (authored by werner).
card: List keys of pkcs#15 cards.
Feb 2 2021, 12:56 PM
werner committed rG0c080ed5791e: scd:p15: Read PuKDF and minor refactoring. (authored by werner).
scd:p15: Read PuKDF and minor refactoring.
Feb 2 2021, 12:56 PM
werner committed rG0737dc8187a0: sm: Add a few OIDs and merge OID tables. (authored by werner).
sm: Add a few OIDs and merge OID tables.
Feb 2 2021, 12:56 PM
werner triaged T5280: gnupg.org webpage advertises the use of insecure git:// protocol at various places as Low priority.
Feb 2 2021, 10:17 AM · gpgweb

Feb 1 2021

werner committed rMc8fd8870b3bf: core: Remove experimental feature GPGME_EXPORT_MODE_NOUID. (authored by werner).
core: Remove experimental feature GPGME_EXPORT_MODE_NOUID.
Feb 1 2021, 7:13 PM
werner added a comment to T5280: gnupg.org webpage advertises the use of insecure git:// protocol at various places.

Git repos are development only and developers need to find a way to establish some trust in the source before building it. All kind of mischief can happen with arbitrary sources. https does not help at all. You need to find a way to establish trust - how you do that is up to you. For example looking at signed commits and try to figure out whether you can trust this key.

Feb 1 2021, 6:37 PM · gpgweb
werner added a comment to T5284: Allow gpgme to export w/o attributes.

A public keyblock without a user id packet is non-compliant. I see no reason to provide a feature to created crippled data. We had all this discussions back in the early 90s regarding to self-signatures. OpenPGP spoke a final word on this in 1998 by making user ids and corresponding self-signatures mandatory.

Feb 1 2021, 5:51 PM · Feature Request, gpgme
werner committed rKe51873b567d9: Support Brainpoolp512r1 certs specified with ECDomainParameters. (authored by werner).
Support Brainpoolp512r1 certs specified with ECDomainParameters.
Feb 1 2021, 5:01 PM
werner triaged T5284: Allow gpgme to export w/o attributes as Normal priority.

Oops, that was an experimental feature never intended for a released version. Will be removed in a way that it does not leas to compile problems - just to be extra cautiousness.

Feb 1 2021, 4:50 PM · Feature Request, gpgme
werner added a project to T5282: ecc: No check for broken public key when verify signature (ECDSA, ECDSA for SM and GOST): backport.

I think that a backport to 1.8. also makes sense

Feb 1 2021, 11:17 AM · libgcrypt

Jan 30 2021

werner triaged T5281: gpg-agent / pinentry: allow to pause/mute passphrase requests for a while as Normal priority.
Jan 30 2021, 12:10 PM · gpgagent, pinentry, Feature Request

Jan 29 2021

werner triaged T5277: libgcrypt 1.9.1 fails to build with --disable-asm as Normal priority.
Jan 29 2021, 4:43 PM · MacOS, libgcrypt, Bug Report
werner updated the task description for T4702: Deadline for the GnuPG 2.3.0 release.
Jan 29 2021, 4:42 PM · Restricted Project, gpg4win, gnupg
werner changed Due Date from Sep 30 2020, 12:00 AM to Mar 31 2021, 12:00 AM on T4702: Deadline for the GnuPG 2.3.0 release.
Jan 29 2021, 4:41 PM · Restricted Project, gpg4win, gnupg
werner closed T5280: gnupg.org webpage advertises the use of insecure git:// protocol at various places as Invalid.

Stick to your channels and get back after you have learned basic some basic developer workflows.

Jan 29 2021, 2:40 PM · gpgweb
werner closed T5279: Buffer Overread in selftest_pbkdf2() in kdf.c/libgcrypt as Invalid.

@hanno, this is a bug tracker and not yet another media for your rants.

Jan 29 2021, 2:38 PM · Duplicate, Bug Report
werner changed External Link from https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000455.html to https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html on T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 12:34 PM · CVE, libgcrypt
werner removed Due Date on T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 12:27 PM · Release Info, libgcrypt
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html on T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 12:27 PM · Release Info, libgcrypt
werner committed rD026b36f22f75: web: Fix a typo on the libgcrypt page. (authored by werner).
web: Fix a typo on the libgcrypt page.
Jan 29 2021, 11:32 AM
werner triaged T5263: cipher/sha512.c: build failure without arm neon asm as Normal priority.
Jan 29 2021, 11:30 AM · libgcrypt, Bug Report
werner closed T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial as Resolved.
Jan 29 2021, 11:27 AM · Ubuntu, Bug Report, libgcrypt
werner changed the status of T5275: Exploitable overflow in Libgcrypt 1.9.0 from Open to Testing.

Fix has been released. Keeping this in testing state for easier visibility of this task.

Jan 29 2021, 11:27 AM · CVE, libgcrypt
werner committed rDaa7d43725fa6: swdb: Libgcrypt 1.9.1 (authored by werner).
swdb: Libgcrypt 1.9.1
Jan 29 2021, 11:26 AM
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5157: libgcrypt: ARM64 Builds on macOS fail, from Open to Testing.
Jan 29 2021, 11:25 AM · toolchain, MacOS, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5243: libgcrypt "check if fips_is_operational and error return if not" patch for FIPS 140, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5251: Compile error on ARMv7 for libgcrypt , from Open to Testing.
Jan 29 2021, 11:25 AM · asm, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5254: libgcrypt 1.9.0 fails make check (selftest), from Open to Testing.
Jan 29 2021, 11:25 AM · patch, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1 from Open to Testing.

Release done.

Jan 29 2021, 11:25 AM · Release Info, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5159: make check fails for libgcrypt on Apple Silicon / ARM Mac, from Open to Testing.
Jan 29 2021, 11:25 AM · Restricted Project, MacOS, libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5264: libgcrypt 1.9.0 does not compile on old Mac OS X, versions 10.5.8 (Leopard) and 10.4.11 (Tiger), both on PPC hardware, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5267: Ed25519 backward compatible private key support for preceding ZERO(s), from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0, from Open to Testing.
Jan 29 2021, 11:25 AM · Bug Report, Cross-Compiler, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5263: cipher/sha512.c: build failure without arm neon asm, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO, from Open to Testing.
Jan 29 2021, 11:25 AM · asm, libgcrypt, clang, Bug Report
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial, from Open to Testing.
Jan 29 2021, 11:25 AM · Ubuntu, Bug Report, libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5269: failure of modular inverse, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5268: macOS getentropy, from Open to Testing.
Jan 29 2021, 11:25 AM · libgcrypt, MacOS
werner changed the status of T5259: Release Libgcrypt 1.9.1, a subtask of T5275: Exploitable overflow in Libgcrypt 1.9.0, from Open to Testing.
Jan 29 2021, 11:25 AM · CVE, libgcrypt
werner updated the task description for T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 11:24 AM · Release Info, libgcrypt
werner committed rCd50bdfbc10e0: Post release updates (authored by werner).
Post release updates
Jan 29 2021, 11:09 AM
werner committed rC466299b1ceb8: Release 1.9.1 (authored by werner).
Release 1.9.1
Jan 29 2021, 11:09 AM
werner created T5276: Release Libgcrypt 1.9.2.
Jan 29 2021, 11:07 AM · Release Info, libgcrypt
werner added a parent task for T5259: Release Libgcrypt 1.9.1: T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 29 2021, 10:21 AM · Release Info, libgcrypt
werner added a subtask for T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:21 AM · Ubuntu, Bug Report, libgcrypt
werner removed a subtask for T5259: Release Libgcrypt 1.9.1: T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 29 2021, 10:20 AM · Release Info, libgcrypt
werner removed a parent task for T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:20 AM · Ubuntu, Bug Report, libgcrypt
werner added a subtask for T5275: Exploitable overflow in Libgcrypt 1.9.0: T5259: Release Libgcrypt 1.9.1.
Jan 29 2021, 10:14 AM · CVE, libgcrypt
werner added a parent task for T5259: Release Libgcrypt 1.9.1: T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 10:14 AM · Release Info, libgcrypt
werner created T5275: Exploitable overflow in Libgcrypt 1.9.0.
Jan 29 2021, 10:13 AM · CVE, libgcrypt
werner updated the task description for T4294: Release Libgcrypt 1.9.0.
Jan 29 2021, 9:06 AM · Release Info, libgcrypt

Jan 28 2021

werner committed rG6e258babe7cc: Include the library version in the compliance checks. (authored by werner).
Include the library version in the compliance checks.
Jan 28 2021, 4:02 PM
werner committed rG90c514868ff5: Include the library version in the compliance checks. (authored by werner).
Include the library version in the compliance checks.
Jan 28 2021, 3:51 PM
werner committed rG1e197c29ed95: scd:p15: Make file selection more robust. (authored by werner).
scd:p15: Make file selection more robust.
Jan 28 2021, 3:51 PM
werner committed rG7620473cd007: scd: Define new status word (authored by werner).
scd: Define new status word
Jan 28 2021, 3:51 PM
werner committed rG5bcbc8cee310: scd:p15: Factor the commonKeyAttributes parser out. (authored by werner).
scd:p15: Factor the commonKeyAttributes parser out.
Jan 28 2021, 3:51 PM
werner committed rCaa3f595341eb: Add a compliance keyword to gcry_get_config. (authored by werner).
Add a compliance keyword to gcry_get_config.
Jan 28 2021, 3:41 PM
werner changed the status of T5263: cipher/sha512.c: build failure without arm neon asm from Open to Testing.
Jan 28 2021, 10:30 AM · libgcrypt, Bug Report
werner changed the status of T5251: Compile error on ARMv7 for libgcrypt from Open to Testing.
Jan 28 2021, 10:30 AM · asm, libgcrypt, Bug Report
werner renamed T5254: libgcrypt 1.9.0 fails make check (selftest) from libgcrypt 1.9.0 fails make check to libgcrypt 1.9.0 fails make check (selftest).
Jan 28 2021, 10:22 AM · patch, libgcrypt, Bug Report
werner created T5271: libgcrypt 1.9.0 compilation fails on Ubuntu xenial.
Jan 28 2021, 7:30 AM · Ubuntu, Bug Report, libgcrypt
werner changed the Can Bulk Edit Tasks policy for application Maniphest from All Users to Administrators.
Jan 28 2021, 7:08 AM
werner changed the Can Bulk Edit Tasks policy for application Maniphest from Restricted Project (Project) to All Users.
Jan 28 2021, 7:05 AM

Jan 27 2021

werner changed the Can Bulk Edit Tasks policy for application Maniphest from Administrators to Restricted Project (Project).
Jan 27 2021, 12:33 PM
werner changed the Can Bulk Edit Tasks policy for application Maniphest from All Users to Administrators.
Jan 27 2021, 12:23 PM
werner committed rGb08418d22cc8: gpg: Fix ugly error message for an unknown symkey algorithm. (authored by werner).
gpg: Fix ugly error message for an unknown symkey algorithm.
Jan 27 2021, 11:49 AM
werner committed rGfb84674d6c64: scd:p15: Factor the commonObjectAttributes parser out. (authored by werner).
scd:p15: Factor the commonObjectAttributes parser out.
Jan 27 2021, 11:49 AM
werner committed rGfc287c0552b0: scd:p15: First step towards real CardOS 5 support. (authored by werner).
scd:p15: First step towards real CardOS 5 support.
Jan 27 2021, 11:49 AM
werner committed rG9037be5f40da: gpg: Fix ugly error message for an unknown symkey algorithm. (authored by werner).
gpg: Fix ugly error message for an unknown symkey algorithm.
Jan 27 2021, 11:48 AM

Jan 26 2021

werner added a comment to T3891: kdf-setup does not set admin and user PIN codes.

T4702 is our release info task for 2.3.0

Jan 26 2021, 4:42 PM · Restricted Project, scd, Bug Report
werner added a comment to T5266: gnupg: checked HTTP links in source code.

Sorry, we won't apply such changes. A couple of years we did this and all we earned were a few extra bugs aqnd useless diffs. Further many of those changes are in files which will be updated from upstream time to time and your chnages would be lost.

Jan 26 2021, 4:38 PM · Documentation, gnupg
werner triaged T5266: gnupg: checked HTTP links in source code as Low priority.

Thanks. However, we need to go over the list one by one to decide this. For example
"http://gnupg.org/.well-known/openpgpkey/hu/12345678" is actually expected to return a 404 and test code may very well use http:

Jan 26 2021, 8:15 AM · Documentation, gnupg

Jan 25 2021

werner added a comment to T5264: libgcrypt 1.9.0 does not compile on old Mac OS X, versions 10.5.8 (Leopard) and 10.4.11 (Tiger), both on PPC hardware.

BTW, we should better get back to the classic/GNU-coding-style pattern:

Jan 25 2021, 2:43 PM · libgcrypt, Bug Report
werner committed rG224e26cf7b67: agent: Support ssh-agent extensions for environment variables. (authored by werner).
agent: Support ssh-agent extensions for environment variables.
Jan 25 2021, 10:53 AM
werner committed rG60499d98940d: scd:p15: Show the ATR as part of the TokenInfo diagnostics. (authored by werner).
scd:p15: Show the ATR as part of the TokenInfo diagnostics.
Jan 25 2021, 10:53 AM
werner committed rG9500432b7ae1: Require Libgcrypt 1.9 (authored by werner).
Require Libgcrypt 1.9
Jan 25 2021, 10:53 AM
werner added a comment to T4659: Release Pinentry-1.1.1.
  • Please see T5262 if you want to build with Qt4.
Jan 25 2021, 10:43 AM · pinentry, Release Info
werner added a project to T5264: libgcrypt 1.9.0 does not compile on old Mac OS X, versions 10.5.8 (Leopard) and 10.4.11 (Tiger), both on PPC hardware: libgcrypt.

Do not use -fno-common

Jan 25 2021, 10:39 AM · libgcrypt, Bug Report

Jan 22 2021

werner added a comment to T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO.

Should we add this to the hints in the README? After all this does not seem to be the standard system compiler or it has not been properly setup as replacement.

Jan 22 2021, 5:47 PM · asm, libgcrypt, clang, Bug Report
werner raised the priority of T3211: [website] Atom/RSS feed for releases, news and/or blog from Wishlist to Normal.
Jan 22 2021, 12:04 PM · Feature Request
werner committed rDab5d0860f4a9: swdb: Pinentry 1.1.1 (authored by werner).
swdb: Pinentry 1.1.1
Jan 22 2021, 8:16 AM

Jan 21 2021

werner changed the status of T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0 from Open to Testing.
Jan 21 2021, 10:32 AM · Bug Report, Cross-Compiler, libgcrypt
werner committed rC269250870a48: Merge branch 'LIBGCRYPT-1.9-BRANCH' (authored by werner).
Merge branch 'LIBGCRYPT-1.9-BRANCH'
Jan 21 2021, 8:37 AM

Jan 20 2021

werner added a comment to T4550: Test certificates with valid CA.

Do you mean self-signed certs or what kind of certs do not work?

Jan 20 2021, 7:31 PM · Tests
werner updated the task description for T4294: Release Libgcrypt 1.9.0.
Jan 20 2021, 2:51 PM · Release Info, libgcrypt
werner created T5259: Release Libgcrypt 1.9.1.
Jan 20 2021, 2:50 PM · Release Info, libgcrypt
werner added a comment to T5254: libgcrypt 1.9.0 fails make check (selftest).

Sure. Thanks for testing. The problem with new versions is that ppl don't like to test release candidates and thus we need do real releases and wait for the outfall. ;-)

Jan 20 2021, 2:43 PM · patch, libgcrypt, Bug Report
werner merged T5258: KeePassXC fails to start after upgrade to libgcrypt 1.9.0 into T5254: libgcrypt 1.9.0 fails make check (selftest).
Jan 20 2021, 2:42 PM · patch, libgcrypt, Bug Report
werner merged task T5258: KeePassXC fails to start after upgrade to libgcrypt 1.9.0 into T5254: libgcrypt 1.9.0 fails make check (selftest).
Jan 20 2021, 2:42 PM · libgcrypt, Bug Report
werner triaged T5256: libgcrypt, convert Intel syntax x86_64 assembly files to AT&T syntax as Normal priority.
Jan 20 2021, 2:11 PM · asm, clang, libgcrypt
werner created T5257: 32 bit cross build fails on asm code in gcrypt 1.9.0.
Jan 20 2021, 1:30 PM · Bug Report, Cross-Compiler, libgcrypt
werner committed rC880aa91cfb64: doc: Fix wrong CVE id in NEWS (authored by werner).
doc: Fix wrong CVE id in NEWS
Jan 20 2021, 12:53 PM
werner updated the task description for T4294: Release Libgcrypt 1.9.0.
Jan 20 2021, 12:53 PM · Release Info, libgcrypt
werner triaged T5254: libgcrypt 1.9.0 fails make check (selftest) as High priority.
Jan 20 2021, 9:34 AM · patch, libgcrypt, Bug Report
werner triaged T5255: libgcrypt: build "error: invalid operand for instruction" when compiling with Clang & LTO as Normal priority.
Jan 20 2021, 9:33 AM · asm, libgcrypt, clang, Bug Report
werner triaged T5253: expiration changes during interactive expire date verification as Low priority.

Thanks for the reports. IIRC, we had similar reports in the past either here or on a ML.

Jan 20 2021, 9:32 AM · gnupg24, gnupg (gpg23), Bug Report
werner triaged T5252: bad expiration value when using --batch Creation-Date/Expire-Date as Low priority.
Jan 20 2021, 9:29 AM · gnupg, Bug Report
werner triaged T5251: Compile error on ARMv7 for libgcrypt as Normal priority.
Jan 20 2021, 9:28 AM · asm, libgcrypt, Bug Report
werner added a comment to T4294: Release Libgcrypt 1.9.0.
  • For build problems on Raspberry PI see T5251 for a patch
  • If you run into "selftest" error see T5254 for a patch (which should be applied in any case)
Jan 20 2021, 9:26 AM · Release Info, libgcrypt