Page MenuHome GnuPG
Feed Advanced Search

Tue, Dec 3

ebo closed T6109: Kleopatra: Better way to show expired subkeys as Invalid.

Closing this as duplicate of T7405. That ticket has the better task description as it was made after discussing offline how it could best be done.

Tue, Dec 3, 11:53 AM · Feature Request, OpenPGP, kleopatra

Fri, Nov 22

werner renamed T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 from gpg --assert-pubkey-algo cmails that ed25519 is stringer that ed448 to gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448.
Fri, Nov 22, 4:58 PM · Bug Report, OpenPGP, gnupg
werner closed T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 as Resolved.

For master fixed with rGbb6b38c24010258c7cb2da840d0a088fe43393b3 (Wrong bug id used).
Also fixed for gnupg24.

Fri, Nov 22, 4:58 PM · Bug Report, OpenPGP, gnupg
werner triaged T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 as Low priority.
Fri, Nov 22, 4:42 PM · Bug Report, OpenPGP, gnupg

Oct 29 2024

werner added a project to T6358: --locate-key does not consider expired subkeys.: Bug Report.
Oct 29 2024, 1:34 PM · Bug Report, gnupg24, OpenPGP

Oct 8 2024

gniibe changed the status of T7316: Curve25519/v5 key cannot be exported, a subtask of T7315: Allow exporting of PQC keys., from Open to Testing.
Oct 8 2024, 8:38 AM · gnupg26, OpenPGP, PQC, gnupg
gniibe changed the status of T7316: Curve25519/v5 key cannot be exported from Open to Testing.
Oct 8 2024, 8:38 AM · gnupg26, OpenPGP, PQC, gnupg
gniibe added a comment to T7316: Curve25519/v5 key cannot be exported.

Pushed the fix for exporting OpenPGP v5 key: rG57dce1ee62c2: common,gpg,scd,sm: Fix for Curve25519 OID supporting new and old.

Oct 8 2024, 8:38 AM · gnupg26, OpenPGP, PQC, gnupg

Oct 3 2024

gniibe added a comment to T7316: Curve25519/v5 key cannot be exported.

The OID is used for fingerprint computation, which complicates things.

Oct 3 2024, 7:37 AM · gnupg26, OpenPGP, PQC, gnupg
gniibe claimed T7316: Curve25519/v5 key cannot be exported.
Oct 3 2024, 2:43 AM · gnupg26, OpenPGP, PQC, gnupg

Oct 2 2024

werner added a comment to T7316: Curve25519/v5 key cannot be exported.

Using the shorter OID for v5 is on purpose; thus we need to fix the export.

Oct 2 2024, 8:36 AM · gnupg26, OpenPGP, PQC, gnupg
gniibe triaged T7316: Curve25519/v5 key cannot be exported as Normal priority.
Oct 2 2024, 7:20 AM · gnupg26, OpenPGP, PQC, gnupg

Oct 1 2024

werner triaged T7315: Allow exporting of PQC keys. as Normal priority.
Oct 1 2024, 6:12 PM · gnupg26, OpenPGP, PQC, gnupg

Sep 12 2024

werner changed the status of T6815: PQC encryption for GnuPG from Open to Testing.

See new subtask T7290 for smartcards and the link entries mentioned above.

Sep 12 2024, 2:32 PM · gnupg26, OpenPGP, PQC, gnupg
werner changed the status of T6815: PQC encryption for GnuPG, a subtask of T6638: PQC for GnuPG, from Open to Testing.
Sep 12 2024, 2:32 PM · OpenPGP, PQC, gnupg
werner triaged T7290: Kyber+ECC with smartcards as Normal priority.
Sep 12 2024, 2:31 PM · gnupg26, OpenPGP, PQC, gnupg

Sep 2 2024

werner added a comment to T6395: ADSK Feature .

FWIW: the encryption part of the ADSK feature has been released with

Sep 2 2024, 5:00 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP

Jun 6 2024

werner added a project to T7101: Automagically create a PGP key from a X.509 cert: Restricted Project.
Jun 6 2024, 11:59 AM · Restricted Project, Feature Request, S/MIME, OpenPGP, gnupg
werner raised the priority of T7101: Automagically create a PGP key from a X.509 cert from Normal to High.
Jun 6 2024, 11:36 AM · Restricted Project, Feature Request, S/MIME, OpenPGP, gnupg

May 30 2024

dkg added a comment to T7137: unreliable RSA decryption.

It seems too late to reject on import, given that people might already have such a secret key in their ~/.gnupg/private-keys-v1.d/ They might have had it for years without knowing it, because the failure is so intermittent. They might just think that they did something wrong, and when they try again it works. It would be great to be more robust than that.

May 30 2024, 11:28 PM · OpenPGP, Not A Bug, gnupg
werner added a comment to T7137: unreliable RSA decryption.

In more than 25 years of OpenPGP we only had a few new implementations which got it wrong. I see no need to fix it here - maybe import could indeed reject such a key, though.

May 30 2024, 12:50 PM · OpenPGP, Not A Bug, gnupg

May 29 2024

dkg added a comment to T7137: unreliable RSA decryption.

Maybe there's a 4th possible option that's better than the three i identified?

May 29 2024, 9:14 PM · OpenPGP, Not A Bug, gnupg
dkg added a comment to T7137: unreliable RSA decryption.

So i see a range of ways that any OpenPGP software could deal with this:

May 29 2024, 9:13 PM · OpenPGP, Not A Bug, gnupg
werner closed T7137: unreliable RSA decryption as Resolved.

I can replicate that and it works if you disable the use of the CRT. Looking at the key:

pkey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
 pkey[1]: 010001
 skey[2]: 512FB977EB9872FECA8BDB96884A01A6AB2B7575D307B9ED4F55E777F2F55FBFFCBF4BF2D669D4D7F42CAC7C28F4ACC0ECEEF7B1D90E3D936850372352107F87E77E20A4D133C927F99FFD52277DEA17107BDA72A072AF950AB0B70023327E3B48D9CCB871237D3D6F6C9BA7FDB45AB46217E33FA01A8ED295795323E26505BC9471CAE4DDA94DBF4F35ED915B0CD025805DCA796EB6B208D8D3F63DBE52BC0045CF4CF9B128356359C7E55B661D7B9DCA57F8984095C5AD3FE4DBD19228B281D66609A154DD7E3EE940CFC66CC180DDC4DD00C45A52D5789286D89D49CA34E5F3C4E798D90955074DAE3D99F7F004CDFFBC9B8428E8EB603E240AE07BEE8D71
 skey[3]: F57D9F597750967DF272D9AC661DDC212D7C5CA4C6E91573A80756281351CDC3A2532B155D9251029F89A0A0807DF2BD177DC30FC6A847E07738B55606DF032ADAD8361E0AFEE9C0CF7D566793834977FAAE9C4B87132B94F665EFF463777CDE7EB89113FA3AAC194B6F2D30C40BE7C0DDE36A5855277C1E4D0204FC4C737BCB
 skey[4]: C4B135296B8F4390B953DDA84249FC8467CFF81FC715D1B5F3E01FCC8DC770813630AEA93982F2004705C4D272E07A10B1882AC5C09A45E88B14A1446B4C639B549420CE3BF90947E6E86503E426A8FDAC4C5CFC2809F5F0A1647ED5EE2457C054A40AA1F0666B28B2C970BE2093AE7B095A688B2D713CA8885826F23AFB37D9
 skey[5]: 0790A8E260C6CADC353FB3961D798EFD4F15F96752DA20B86841334C38861743DD7A1FEB2B750D0864F5901BE541B6C8FB63649B18FDC4A32A1233EF90872DCD35704A4B4063DB62752CF6A7FD00F086C6B1042A2B0CB6FB36B7D5269671DACF55242A838E60D514BA868354910CEB1C41FB9A43BF932B5036A6EFE35236FFC7
May 29 2024, 9:40 AM · OpenPGP, Not A Bug, gnupg

Apr 24 2024

werner triaged T7101: Automagically create a PGP key from a X.509 cert as Normal priority.
Apr 24 2024, 3:03 PM · Restricted Project, Feature Request, S/MIME, OpenPGP, gnupg
werner moved T6815: PQC encryption for GnuPG from Backlog to QA on the gnupg26 board.
Apr 24 2024, 10:04 AM · gnupg26, OpenPGP, PQC, gnupg
werner added a project to T6815: PQC encryption for GnuPG: gnupg26.
Apr 24 2024, 10:02 AM · gnupg26, OpenPGP, PQC, gnupg
werner added a comment to T6815: PQC encryption for GnuPG.

Most things are done. Missing stuff

Apr 24 2024, 10:01 AM · gnupg26, OpenPGP, PQC, gnupg

Apr 23 2024

werner added a comment to T6815: PQC encryption for GnuPG.

Alright: We have support for all our combined algos ky{768,1024}_bp{256,384,512}and ky{768,1024}_cv{25519,448} as well as test keys and encrypted test messages.

Apr 23 2024, 5:47 PM · gnupg26, OpenPGP, PQC, gnupg

Apr 16 2024

matheusmoreira added a comment to T5783: All s2k hardenings silently ignored when exporting private keys.

What is the current status of this issue?

Apr 16 2024, 2:46 PM · Not A Bug, gpgagent, OpenPGP, gpg4win, gnupg

Apr 15 2024

werner added a comment to T6815: PQC encryption for GnuPG.

Here comes a new test key along with its 3 secret parts (one for the primary and two for the composite Kyber subkey).

Apr 15 2024, 5:42 PM · gnupg26, OpenPGP, PQC, gnupg
gniibe changed the status of T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T6815: PQC encryption for GnuPG, from Open to Testing.
Apr 15 2024, 3:19 AM · gnupg26, OpenPGP, PQC, gnupg

Apr 11 2024

werner added a comment to T6815: PQC encryption for GnuPG.

Wit the test keys posted in T7014 it is now possible to decrypt the sample data. The test data has been slightly adjusted for the new format; see

for a hex dump and for the binary version.

Apr 11 2024, 4:00 PM · gnupg26, OpenPGP, PQC, gnupg
werner added a parent task for T7083: Show revocation reasons also with a standard -k listing: T7078: Kleopatra: Add automatic offer of revocation certificate export to the revocation process.
Apr 11 2024, 11:42 AM · OpenPGP, Feature Request, gnupg26
werner triaged T7083: Show revocation reasons also with a standard -k listing as Normal priority.
Apr 11 2024, 11:41 AM · OpenPGP, Feature Request, gnupg26

Mar 4 2024

werner added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

See also: https://gnupg.org/blog/20240125-smartcard-backup-key.html

Mar 4 2024, 3:38 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Feb 26 2024

werner added a subtask for T6815: PQC encryption for GnuPG: T7014: agent: Enhancement of PKDECRYPT for KEM interface.
Feb 26 2024, 10:41 AM · gnupg26, OpenPGP, PQC, gnupg

Jan 25 2024

werner added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

Also fixed in the fortgcoming 2.2.43

Jan 25 2024, 2:05 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner shifted T6944: The default card key generation keeps an unprotected backup of the encryption key on disk from the Restricted Space space to the S1 Public space.
Jan 25 2024, 11:56 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 24 2024

werner closed T4676: libgcrypt S2K (algo 3) doesn't match OpenPGP as Resolved.
Jan 24 2024, 2:50 PM · Documentation, OpenPGP
werner moved T6831: May chose a signing key from a not inserted card over an inserted one from QA to gnupg-2.4.4 on the gnupg24 board.
Jan 24 2024, 2:45 PM · gnupg24 (gnupg-2.4.4), OpenPGP, patch, Bug Report
werner closed T6831: May chose a signing key from a not inserted card over an inserted one as Resolved.

Fixed in 2.4.4. Feel free to re-open if you still see problems.

Jan 24 2024, 2:45 PM · gnupg24 (gnupg-2.4.4), OpenPGP, patch, Bug Report
werner closed T6944: The default card key generation keeps an unprotected backup of the encryption key on disk as Resolved.
Jan 24 2024, 2:31 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner moved T6944: The default card key generation keeps an unprotected backup of the encryption key on disk from WiP to gnupg-2.2.43 on the gnupg22 board.
Jan 24 2024, 2:31 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner moved T6944: The default card key generation keeps an unprotected backup of the encryption key on disk from QA to gnupg-2.4.4 on the gnupg24 board.
Jan 24 2024, 2:31 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

Fixed in 2.4.4 and 2.2.43 - see above for affected versions.

Jan 24 2024, 2:31 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner moved T6944: The default card key generation keeps an unprotected backup of the encryption key on disk from Backlog to WiP on the gnupg22 board.
Jan 24 2024, 11:23 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner added a project to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk: gnupg22.

We need to fix 2.2.42 too. This because we backported the responsible patch.

Jan 24 2024, 11:22 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 22 2024

werner changed the status of T6944: The default card key generation keeps an unprotected backup of the encryption key on disk from Open to Testing.
Jan 22 2024, 4:53 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 19 2024

werner set External Link to https://forum.gnupg.org/t/privater-schlussel-von-smart-card-in-kleopatra-gespeichert/3858 on T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.
Jan 19 2024, 12:38 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 18 2024

werner added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

We tested with Kleopatra:

  • Only gpg4win 4.2 is affected (the current version) but 4.1 is not affected.
  • No vsd version is affected.
Jan 18 2024, 8:35 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
werner added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

FWIW, I am already working on this.

Jan 18 2024, 8:31 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report
gniibe added a comment to T6944: The default card key generation keeps an unprotected backup of the encryption key on disk.

Currently, there is no support for gpg-agent to keep private key not on disk, but only on memory of gpg-agent. Given the situation,
I think that it is good to:

Jan 18 2024, 2:17 AM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 17 2024

werner triaged T6944: The default card key generation keeps an unprotected backup of the encryption key on disk as High priority.
Jan 17 2024, 4:07 PM · gnupg22 (gnupg-2.2.43), gnupg24 (gnupg-2.4.4), OpenPGP, scd, Bug Report

Jan 11 2024

werner added a project to T5590: OpenPGP: Curve 448, modernize?: rationale.
Jan 11 2024, 4:02 PM · rationale, gnupg, OpenPGP
werner closed T5590: OpenPGP: Curve 448, modernize? as Wontfix.

Way to late for a change and also adding another algorithm (SIV) complicates things for no good purposes.

Jan 11 2024, 4:00 PM · rationale, gnupg, OpenPGP

Jan 2 2024

werner changed the status of T6831: May chose a signing key from a not inserted card over an inserted one from Open to Testing.

I applied your patch and also fixed another possible problem.

Jan 2 2024, 10:33 AM · gnupg24 (gnupg-2.4.4), OpenPGP, patch, Bug Report

Nov 27 2023

gniibe added a comment to T6465: Store the ECDH parameters in the key file.

It's true that for KEYTOCARD command, there is optional argument for ECDH.
My point is that for PKDECRYPT command, it will be needed to add mechanism for getting such a parameter (when we use KEM API in gpg-agent).

Nov 27 2023, 10:23 AM · gnupg26, OpenPGP, scd, Bug Report
werner added a comment to T6465: Store the ECDH parameters in the key file.

We already have the ECDH parameters for OpenPGP in the gpg-agent API. The question is how large the data for PQC will be - likely we need to use an inquire already for this reason.

Nov 27 2023, 9:12 AM · gnupg26, OpenPGP, scd, Bug Report
gniibe added a comment to T6465: Store the ECDH parameters in the key file.

Considering the design of gpg-agent which focuses on private key operations and data, it would be better to enhance the gpg-agent protocol to inquire public key data of any format defined by the client (including ECDH KDF parameters of OpenPGP). I mean, instead of storing data in the key file (originally designed for private key + some additional data), we will enhance the protocol.

Nov 27 2023, 2:18 AM · gnupg26, OpenPGP, scd, Bug Report

Nov 23 2023

werner added a subtask for T6465: Store the ECDH parameters in the key file: T6620: Add a way to extract ECC key parameters from a public key.
Nov 23 2023, 12:04 PM · gnupg26, OpenPGP, scd, Bug Report

Nov 21 2023

werner triaged T6831: May chose a signing key from a not inserted card over an inserted one as Normal priority.
Nov 21 2023, 10:32 AM · gnupg24 (gnupg-2.4.4), OpenPGP, patch, Bug Report

Nov 13 2023

werner triaged T6815: PQC encryption for GnuPG as Normal priority.
Nov 13 2023, 4:06 PM · gnupg26, OpenPGP, PQC, gnupg

Nov 10 2023

werner closed T6395: ADSK Feature as Resolved.

Further investigation showed that this was due to a bogus key creating during I wrote the code.

Nov 10 2023, 9:08 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP
werner moved T6395: ADSK Feature from WiP to gnupg-2.2.42 on the gnupg22 board.
Nov 10 2023, 9:07 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP

Oct 26 2023

werner closed T6705: Provide strong v5 fingerprints also for v4 keys as Resolved.

Will be in 2.4.4. GPGME 1.23.0 with support has been released.

Oct 26 2023, 9:07 AM · gpgme (gpgme 1.23.x), OpenPGP, Feature Request
werner moved T6705: Provide strong v5 fingerprints also for v4 keys from Backlog to gpgme 1.23.x on the gpgme board.
Oct 26 2023, 9:05 AM · gpgme (gpgme 1.23.x), OpenPGP, Feature Request

Oct 25 2023

werner moved T5438: gpgme_op_keylist_from_data_start ignores GPGME_KEYLIST_MODE_SIGS from QA for next release to gpgme 1.23.x on the gpgme board.
Oct 25 2023, 10:43 AM · gpgme (gpgme 1.23.x), OpenPGP, Bug Report

Oct 24 2023

werner changed the status of T6395: ADSK Feature from Testing to Open.

While trying to replicate your findings I might have found a but in the import code which rejected one of the keys (using gnupg 2.2). I'll take care of this.

Oct 24 2023, 4:14 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP

Oct 5 2023

werner added a comment to T6395: ADSK Feature .

@ebo: Du have the Ted Tester key (i.e. the ADSK key) also in you keyring?

Oct 5 2023, 11:27 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP

Sep 22 2023

ebo moved T6395: ADSK Feature from QA to WiP on the gnupg22 board.

Encryption to the ADSK seems to work but I'm not sure if everything is displayed as expected.

Sep 22 2023, 4:29 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP
ebo moved T6399: Missing trustdb check on import of certificate from QA to gnupg-2.2.42 on the gnupg22 board.
Sep 22 2023, 1:20 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project

Sep 12 2023

ebo closed T6399: Missing trustdb check on import of certificate as Resolved.

works

Sep 12 2023, 3:56 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project

Sep 6 2023

werner moved T6399: Missing trustdb check on import of certificate from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Sep 6 2023, 12:15 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project
werner changed the status of T6399: Missing trustdb check on import of certificate from Open to Testing.

Bugs goes back to 2002 where we stopped checking trust for keys without any signature. This was really useful but has this strange behaviour.

Sep 6 2023, 12:15 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project

Sep 4 2023

werner updated the task description for T6705: Provide strong v5 fingerprints also for v4 keys.
Sep 4 2023, 3:35 PM · gpgme (gpgme 1.23.x), OpenPGP, Feature Request
werner triaged T6705: Provide strong v5 fingerprints also for v4 keys as Normal priority.
Sep 4 2023, 3:35 PM · gpgme (gpgme 1.23.x), OpenPGP, Feature Request

Aug 28 2023

werner added a comment to T6399: Missing trustdb check on import of certificate.

I am not sure about the initial state of the key. What you are doing is to sign the key with itself (self-signature). Why?
In any case, I can't replicate this. Let's talk about this next week.

Aug 28 2023, 5:35 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project

Aug 25 2023

werner claimed T6399: Missing trustdb check on import of certificate.
Aug 25 2023, 4:05 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project

Aug 8 2023

werner triaged T6638: PQC for GnuPG as Wishlist priority.
Aug 8 2023, 11:50 AM · OpenPGP, PQC, gnupg

Aug 1 2023

werner closed T6615: v5 document signatures verification. as Resolved.
Aug 1 2023, 11:49 AM · Documentation, OpenPGP, Bug Report
werner added a comment to T6615: v5 document signatures verification..

Okay, will go into the next revision. Thanks.

Aug 1 2023, 11:49 AM · Documentation, OpenPGP, Bug Report

Jul 31 2023

onickolay added a comment to T6615: v5 document signatures verification..

Thanks for the reply!

Jul 31 2023, 2:45 PM · Documentation, OpenPGP, Bug Report
werner added projects to T6615: v5 document signatures verification.: OpenPGP, Documentation.
Jul 31 2023, 1:42 PM · Documentation, OpenPGP, Bug Report

Jul 24 2023

ebo moved T6174: Option --require-comliance does not work in sign+encrypt mode from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · Restricted Project, OpenPGP, Bug Report, gnupg

May 30 2023

werner renamed T6504: Adding an ADSK to several keys may fail with Wrong Key Usage. from Adding an ADKS to several keys may fail with Wrong Key Usage. to Adding an ADSK to several keys may fail with Wrong Key Usage..
May 30 2023, 10:36 AM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report

May 26 2023

werner edited projects for T6465: Store the ECDH parameters in the key file, added: gnupg26; removed gnupg24.
May 26 2023, 10:00 AM · gnupg26, OpenPGP, scd, Bug Report

May 25 2023

werner closed T6504: Adding an ADSK to several keys may fail with Wrong Key Usage. as Resolved.

The fix actually does the same as my suggested workaround.

May 25 2023, 12:03 PM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report
werner moved T6504: Adding an ADSK to several keys may fail with Wrong Key Usage. from Backlog to gnupg-2.4.2 on the gnupg24 board.
May 25 2023, 12:03 PM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report
werner lowered the priority of T6504: Adding an ADSK to several keys may fail with Wrong Key Usage. from High to Normal.

There is an easy workaround: Append an exclamation mark to the adsk key. This way gpg will only search for this subkey.
An example with my test keys:

May 25 2023, 11:21 AM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report

May 23 2023

werner updated the task description for T6504: Adding an ADSK to several keys may fail with Wrong Key Usage..
May 23 2023, 3:18 PM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report
werner triaged T6504: Adding an ADSK to several keys may fail with Wrong Key Usage. as High priority.
May 23 2023, 3:18 PM · gnupg24 (gnupg-2.4.2), OpenPGP, Bug Report

May 9 2023

werner closed T4669: Key expiration time sometimes improperly interpreted as a signed 32-bit value as Resolved.
May 9 2023, 7:50 AM · Not A Bug, OpenPGP, gnupg

Apr 21 2023

werner edited parent tasks for T6465: Store the ECDH parameters in the key file, added: T6382: keytocard fails to import a nistp384 ECDSA key; removed: T6378: keytocard: invalid value.
Apr 21 2023, 3:21 PM · gnupg26, OpenPGP, scd, Bug Report
werner triaged T6465: Store the ECDH parameters in the key file as Normal priority.
Apr 21 2023, 3:13 PM · gnupg26, OpenPGP, scd, Bug Report

Apr 14 2023

gniibe merged task T3391: cannot import subkey that was once marked to be on a card into T3456: GPG does not import secret subkeys from --export-secret-subkeys output if subkey stubs existed before.
Apr 14 2023, 8:05 AM · Restricted Project, gpgagent, scd, gnupg, OpenPGP, Bug Report

Apr 13 2023

ebo added a comment to T3391: cannot import subkey that was once marked to be on a card.

isn't T3456 the same issue?

Apr 13 2023, 2:57 PM · Restricted Project, gpgagent, scd, gnupg, OpenPGP, Bug Report
ebo added a project to T3391: cannot import subkey that was once marked to be on a card: Restricted Project.
Apr 13 2023, 2:50 PM · Restricted Project, gpgagent, scd, gnupg, OpenPGP, Bug Report

Apr 12 2023

werner triaged T6445: Chunking armored messages and pubkeys? as Low priority.
Apr 12 2023, 8:45 AM · OpenPGP, Feature Request

Apr 3 2023

werner moved T6395: ADSK Feature from QA to gnupg-2.4.1 on the gnupg24 board.
Apr 3 2023, 2:33 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), OpenPGP