Page MenuHome GnuPG
Feed Advanced Search

Aug 12 2022

werner committed rO2ccdc9cfc6f9: po: Minor grammar fix for the German translation (authored by werner).
po: Minor grammar fix for the German translation
Aug 12 2022, 1:08 PM
werner updated subscribers of Gpg4win or GnuPG VS-Desktop Bug Report.
Aug 12 2022, 12:22 PM · gpg4win
werner committed rG1908fa8b835c: gpg: Improve --edit-key setpref. (authored by werner).
gpg: Improve --edit-key setpref.
Aug 12 2022, 11:51 AM
werner added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

Here is an example on how to remove the AEAD preference from a key using GnuPG 2.3:

Aug 12 2022, 11:31 AM · Bug Report, gpg4win
werner added a comment to T6133: Interoperability Issue Between gpg4win - Kleopatra and OpenKeyChain.

As an alternative you may change the preferences on the key to adjust them to your changed/downgraded version.

Aug 12 2022, 11:18 AM · Bug Report, gpg4win

Aug 11 2022

werner added a comment to T5862: authentication with USB token.

While playing with your scripts I figured that it would be useful to enhance the KEYINFO command. With
rG989eae648c8f3d2196517e8fc9cce247b21f9629 we could now

Aug 11 2022, 11:30 AM · gpgagent, Feature Request, scd
werner committed rG40f0fcfaa476: common: New function nvc_get_boolean. (authored by werner).
common: New function nvc_get_boolean.
Aug 11 2022, 11:29 AM
werner committed rG989eae648c8f: agent: New option --need-attr for KEYINFO. (authored by werner).
agent: New option --need-attr for KEYINFO.
Aug 11 2022, 11:29 AM
werner added a comment to T6130: Appimage: Include man pages.

FWIW, the man pages do not carry all the info we have. However, I plan to chnage this and put everyting into man pages. It turned out that even me uses the man pages more than info(1) or gnupg/doc/*.

Aug 11 2022, 9:40 AM · Restricted Project, gpg4win

Aug 10 2022

werner committed rD89f6f4b66547: swdb: gpgme 1.18.0 (authored by werner).
swdb: gpgme 1.18.0
Aug 10 2022, 4:25 PM
werner closed T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python) as Resolved.
Aug 10 2022, 4:01 PM · Python, gpgme, Bug Report
werner closed T6056: Kleopatra: Improve handling of embedded filename as Resolved.
Aug 10 2022, 4:01 PM · Restricted Project, Restricted Project, kleopatra
werner closed T6128: Release GPGME 1.18.0 as Resolved.
Aug 10 2022, 4:00 PM · Release Info, gpgme
werner committed rM7e2ef54b9c07: Post release updates (authored by werner).
Post release updates
Aug 10 2022, 3:33 PM
werner committed rM26ff163bd691: Release 1.18.0 (authored by werner).
Release 1.18.0
Aug 10 2022, 3:33 PM
werner committed rM9ee74b68e688: tests: Make t-edit-sign more robust. (authored by werner).
tests: Make t-edit-sign more robust.
Aug 10 2022, 3:33 PM
werner closed T6129: Yubikey 5C 'not available: card error' regression as Resolved.

We are currently investigating another problem with a new feature. Thus things are delayed. Hopefully we get a new release this month (or at least a new gnupg 2.3 version to install on top of gpg4win).

Aug 10 2022, 2:59 PM · Bug Report, gpg4win
werner updated the task description for T5872: Release GPGME 1.17.1.
Aug 10 2022, 11:04 AM · Release Info, gpgme
werner triaged T6128: Release GPGME 1.18.0 as Normal priority.
Aug 10 2022, 11:03 AM · Release Info, gpgme

Aug 9 2022

werner added a comment to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.

Should go into 1.10 too

Aug 9 2022, 11:12 AM · backport, libgcrypt, FIPS
werner added a project to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF: backport.
Aug 9 2022, 11:11 AM · backport, libgcrypt, FIPS

Aug 5 2022

werner added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

Firefox nicely shows the 3 NIST certificates from my Telesec card but not the important Brainpool certificate for eIDAS. It turns out that Firefox does not support Brainpool, despite that a patch has been provided 8 years ago. See https://bugzilla.mozilla.org/show_bug.cgi?id=943639 . Thus there is currently no way to use LibreOffice or Okular to signe PDFs because they rely on NSS.

Aug 5 2022, 2:06 PM · Feature Request, scute

Aug 4 2022

werner added a project to T6123: Gpg Encryption and Signing - infinite Loop: Support.
Aug 4 2022, 9:01 PM · Support, gpgagent, gpg4win, Bug Report
werner awarded T6122: GnuPG: misleading error message keytocard a Cup of Joe token.
Aug 4 2022, 6:22 PM · Bug Report, gnupg (gpg22)
werner added a project to T6122: GnuPG: misleading error message keytocard: Restricted Project.
Aug 4 2022, 12:46 PM · Bug Report, gnupg (gpg22)
werner committed rGf2a81e374501: gpg: Fix wrong error message for keytocard. (authored by werner).
gpg: Fix wrong error message for keytocard.
Aug 4 2022, 12:46 PM
werner added a comment to T6122: GnuPG: misleading error message keytocard.

With my patch I see the expected status message:

Aug 4 2022, 12:43 PM · Bug Report, gnupg (gpg22)
werner committed rG189102ac17dc: gpg: Fix wrong error message for keytocard. (authored by werner).
gpg: Fix wrong error message for keytocard.
Aug 4 2022, 12:43 PM
werner added a comment to T6122: GnuPG: misleading error message keytocard.

The problem seems to be that we don't return a status code with the
actual error via the --command-fd interface:

Aug 4 2022, 12:23 PM · Bug Report, gnupg (gpg22)
werner triaged T6122: GnuPG: misleading error message keytocard as Normal priority.
Aug 4 2022, 12:07 PM · Bug Report, gnupg (gpg22)

Aug 3 2022

werner committed rG6583abedf3f0: common: Silence warnings from AllowSetForegroundWindow. (authored by werner).
common: Silence warnings from AllowSetForegroundWindow.
Aug 3 2022, 11:15 AM
werner committed rG94908857e1f5: dirmngr: Fix failed malloc error message. (authored by werner).
dirmngr: Fix failed malloc error message.
Aug 3 2022, 11:15 AM
werner committed rG4ef8516a79f9: common: Silence warnings from AllowSetForegroundWindow. (authored by werner).
common: Silence warnings from AllowSetForegroundWindow.
Aug 3 2022, 11:11 AM
werner committed rG5fb2306b9760: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Aug 3 2022, 10:50 AM
werner committed rGb067285d595a: dirmngr: Fix failed malloc error message. (authored by werner).
dirmngr: Fix failed malloc error message.
Aug 3 2022, 10:50 AM
werner committed rGebb736b2c310: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Aug 3 2022, 9:29 AM

Aug 2 2022

werner added a project to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data: Restricted Project.

Fixed in 2.2 and master. Did a couple of manual tests using 2.2 on Linux. gpgsplit comes handy to add a couple more tag-3 packets (same algos or one patched to camellia for the negative test)

Aug 2 2022, 6:55 PM · gnupg, Restricted Project
werner committed rG171725c9717c: g13: Remove unused variable. (authored by werner).
g13: Remove unused variable.
Aug 2 2022, 6:46 PM
werner committed rGea7aba6e605d: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Aug 2 2022, 6:46 PM
werner committed rGe542c4af182d: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Aug 2 2022, 6:46 PM
werner committed rGe8011a7ceca7: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Aug 2 2022, 6:37 PM
werner added a comment to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.

This also points out that the cipher algos and modes of the symmetric encrypted session key packets where never checked for compliance. We only checked the compliance of the bulk encryption cipher algo.

Aug 2 2022, 6:04 PM · gnupg, Restricted Project
werner committed rE745d333cf7b5: w32: Convert REG_DWORD values to a string. (authored by werner).
w32: Convert REG_DWORD values to a string.
Aug 2 2022, 3:19 PM
werner committed rG6bc959231802: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Aug 2 2022, 12:27 PM

Aug 1 2022

werner added projects to T5371: Handle invalid compliance settings: Restricted Project, Feature Request.

Has this been implemented?

Aug 1 2022, 3:15 PM · Feature Request, Restricted Project, kleopatra
werner edited projects for T5990: Option to ignore the user trustlist.txt, added: Restricted Project; removed backport.
Aug 1 2022, 3:12 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
werner committed rG10f42f313ca7: tests: Install links for tpm2daemon (authored by werner).
tests: Install links for tpm2daemon
Aug 1 2022, 3:11 PM
werner lowered the priority of T6023: Check how GnuPG handles several keys from WKD from High to Normal.

I don't think that we need to fix things here. Important is that the WKD import uses a filter which imports only keys with the requested mail address. However, if a key with the same fingerprint already exists it will be merged.

Aug 1 2022, 11:33 AM · gnupg24, g10, common, Documentation, wkd
werner closed T6098: Path traversal bug in gpg-wks-server as Resolved.
Aug 1 2022, 11:20 AM · wkd, gnupg
werner triaged T6114: Support Installable test suites in gpg-crypt as Normal priority.
Aug 1 2022, 11:18 AM · Tests, dev.gnupg.org, Feature Request
werner committed rG8e63e813c740: common: Add a default OpenPGP ECC mapping. (authored by werner).
common: Add a default OpenPGP ECC mapping.
Aug 1 2022, 10:35 AM
werner committed rG67e510cbf7b1: scd:opengpg: Minor vendor name fix (authored by werner).
scd:opengpg: Minor vendor name fix
Aug 1 2022, 10:35 AM

Jul 29 2022

werner edited projects for T5119: TOFU messages are not completely and correctly localized to German, added: gnupg (gpg23); removed gnupg (gpg22).

It is unlikely that the tofu stuff will get into widespread use in the 2.2 version - if at all.

Jul 29 2022, 4:23 PM · gnupg24, gnupg (gpg23), i18n, Bug Report
werner closed T5359: Kleopatra: Loop in DeviceInfoWatcher with GnuPG 2.3 on Windows as Resolved.

Fixed quite some time ago.

Jul 29 2022, 4:19 PM · Restricted Project, scd, Restricted Project, kleopatra
werner moved T5990: Option to ignore the user trustlist.txt from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 29 2022, 4:17 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent

Jul 28 2022

werner closed T6063: GnuPG: Ignore invalid hash algorithm preferences when signing & encrypting combined as Resolved.

Fixed with commits
rGeb675fbc4e4db52c3276bc0748b49df8a213fbc4
rG890e616593af5d1e0f2eb932768205ef90928e5e

Jul 28 2022, 11:31 AM · gnupg, Restricted Project
werner added a comment to rG890e616593af: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference..

The referenced bug should have been T6063

Jul 28 2022, 11:28 AM
werner committed rG890e616593af: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference. (authored by werner).
gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference.
Jul 28 2022, 11:08 AM
werner committed rGeb675fbc4e4d: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference. (authored by werner).
gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference.
Jul 28 2022, 11:08 AM
werner added a comment to T6063: GnuPG: Ignore invalid hash algorithm preferences when signing & encrypting combined.

In de-vs mode we could change the implict algorithm from SHA-1 to SHA-256. That should solve the problem.

Jul 28 2022, 10:30 AM · gnupg, Restricted Project
werner committed rG6d9c8a1cbc37: scd:openpgp: New vendor (authored by werner).
scd:openpgp: New vendor
Jul 28 2022, 9:02 AM

Jul 27 2022

werner committed rGd0bd91ba73a7: agent: New option --no-user-trustlist and --sys-trustlist-name. (authored by werner).
agent: New option --no-user-trustlist and --sys-trustlist-name.
Jul 27 2022, 5:24 PM
werner committed rGabe69b2094dd: gpg: Look up user ID to revoke by UID hash (authored by ikloecker).
gpg: Look up user ID to revoke by UID hash
Jul 27 2022, 5:24 PM
werner changed the status of T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid from Open to Testing.

Backported for for 2.2.37

Jul 27 2022, 4:37 PM · gnupg (gpg23), Restricted Project, Feature Request
werner changed the status of T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid, a subtask of T4087: Kleopatra: Revoke User-ID, from Open to Testing.
Jul 27 2022, 4:37 PM · Restricted Project, Restricted Project, gpg4win, kleopatra, Feature Request
werner triaged T6109: Kleopatra: Better way to show expired subkeys as Normal priority.
Jul 27 2022, 3:22 PM · Feature Request, OpenPGP, kleopatra
werner changed the status of T6098: Path traversal bug in gpg-wks-server from Open to Testing.

Fix will go into 2.2.37 and 2.3.8.

Jul 27 2022, 12:33 PM · wkd, gnupg
werner committed rG73a98c139691: wkd: Bind the address to the nonce. (authored by werner).
wkd: Bind the address to the nonce.
Jul 27 2022, 12:31 PM
werner shifted T6098: Path traversal bug in gpg-wks-server from the Restricted Space space to the S1 Public space.
Jul 27 2022, 11:43 AM · wkd, gnupg
werner committed rG4c8792fa10b6: wkd: Bind the address to the nonce. (authored by werner).
wkd: Bind the address to the nonce.
Jul 27 2022, 11:43 AM
werner committed rG77090e5260e4: tests: Add missing file for tpm2d tests to the tarball. (authored by werner).
tests: Add missing file for tpm2d tests to the tarball.
Jul 27 2022, 11:43 AM
werner closed T6107: Completely lost ability to create PGP Keys as Resolved.
Jul 27 2022, 8:37 AM · Support
werner updated the task description for T6098: Path traversal bug in gpg-wks-server.
Jul 27 2022, 8:26 AM · wkd, gnupg
werner renamed T6098: Path traversal bug in gpg-wks-server from Pass traversal bug in gpg-wks-server to Path traversal bug in gpg-wks-server.
Jul 27 2022, 8:20 AM · wkd, gnupg

Jul 26 2022

werner closed T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) as Resolved.
Jul 26 2022, 9:17 PM · gnupg (gpg22), CVE, gpg4win
werner closed T5977: Smartcard PIN stays in clear in memory as Resolved.
Jul 26 2022, 9:17 PM · backport, libassuan, pinentry, scd, gnupg (gpg22), Bug Report
werner added a project to T6052: gnupg2 tpm2d tests do not work: Tests.
Jul 26 2022, 9:15 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner added a project to T6052: gnupg2 tpm2d tests do not work: TPM.
Jul 26 2022, 9:14 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner created TPM.
Jul 26 2022, 9:14 PM
werner closed T6052: gnupg2 tpm2d tests do not work as Resolved.
Jul 26 2022, 9:12 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner claimed T6052: gnupg2 tpm2d tests do not work.
Jul 26 2022, 9:12 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner triaged T6071: Duplicated output (repeated nearly once) of the GnuPG console-output to "stdout" on Windows-Console if "Legacy-Console" with any TrueType Fonts is activated under Windows as Normal priority.
Jul 26 2022, 9:07 PM · Windows, gnupg, Bug Report
werner triaged T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0) as Normal priority.
Jul 26 2022, 9:07 PM · Restricted Project, pinentry, Bug Report
werner closed T6038: gpg-wks-client excludes uid with URL in comment as Resolved.

Probably fixed meanwhile in 2.2.
Please re-open if experience this problem also with a decent gnupg 2.2 versions.

Jul 26 2022, 9:06 PM · gnupg (gpg22), wkd, Bug Report
werner closed T6014: Add support for relative redirect URI-references to dirmngr as Resolved.

Probably an invalid specified keyserver

Jul 26 2022, 9:03 PM · gnupg24, dirmngr, Bug Report
werner triaged T6051: Allow revoking last UID of primary key with expert mode as Low priority.
Jul 26 2022, 9:01 PM · OpenPGP, Feature Request, gnupg
werner triaged T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python) as Normal priority.
Jul 26 2022, 8:59 PM · Python, gpgme, Bug Report
werner closed T5899: Fix compilation of dirmngr with mingw.org's MinGW as Resolved.
Jul 26 2022, 8:58 PM · patch, Feature Request, Windows, toolchain
werner added a project to T5990: Option to ignore the user trustlist.txt: backport.
Jul 26 2022, 8:57 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
werner closed T6037: Allow import of nwer DFN generated P12 files as Resolved.
Jul 26 2022, 8:53 PM · gnupg (gpg22), S/MIME
werner added a project to T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid: backport.
Jul 26 2022, 7:44 PM · gnupg (gpg23), Restricted Project, Feature Request
werner updated the task description for T5947: Release GnuPG 2.3.7.
Jul 26 2022, 7:40 PM · CVE, Release Info, gnupg (gpg23)
werner triaged T6106: Release GnuPG 2.3.8 as Normal priority.
Jul 26 2022, 7:37 PM · Release Info, gnupg (gpg23)
werner closed T5937: Release GnuPG 2.3.6 as Resolved.
Jul 26 2022, 7:34 PM · Release Info, gnupg (gpg23)
werner closed T5949: Release GnuPG 2.2.36 as Resolved.
Jul 26 2022, 7:34 PM · CVE, gnupg (gpg22), Release Info
werner triaged T6105: Release GnuPG 2.2.37 as Normal priority.
Jul 26 2022, 7:33 PM · gnupg (gpg22), Release Info
werner updated the task description for T5949: Release GnuPG 2.2.36.
Jul 26 2022, 7:31 PM · CVE, gnupg (gpg22), Release Info
werner triaged T6098: Path traversal bug in gpg-wks-server as High priority.
Jul 26 2022, 12:36 PM · wkd, gnupg
werner added projects to T6069: Kleopatra crashes when creating UIServer socket: Windows, kleopatra, Info Needed.
Jul 26 2022, 11:04 AM · Info Needed, kleopatra, Windows, Bug Report
werner triaged T6054: ambiguous error message when output file exists already as Low priority.

That is not easy to change because we show all kind of error codes. If you run in --verbose mode you should see more info.

Jul 26 2022, 11:03 AM · Bug Report