Page MenuHome GnuPG
Feed Advanced Search

Jul 30 2025

werner closed T7719: Release GnuPG 2.5.10 as Resolved.

Note that 2.5.11 fixes a regression in 2.5.10 regarding the use of notations for 3rd party signatures. See T7743

Jul 30 2025, 11:06 AM · Release Info, gnupg, gnupg26
werner updated the task description for T7743: Release GnuPG 2.5.11.
Jul 30 2025, 11:05 AM · gnupg, Release Info
ikloecker added a comment to T7754: gpg segfaults when signing a key with --edit-key and --set-notation=rem@gnupg.org=foo.

I can confirm that the crash is fixed by the change.

Jul 30 2025, 10:42 AM · gnupg, Bug Report
werner triaged T7756: Release GnuPG 2.5.12 as Normal priority.
Jul 30 2025, 10:42 AM · Release Info, gnupg
werner changed the status of T7754: gpg segfaults when signing a key with --edit-key and --set-notation=rem@gnupg.org=foo from Open to Testing.
Jul 30 2025, 10:33 AM · gnupg, Bug Report
werner claimed T7754: gpg segfaults when signing a key with --edit-key and --set-notation=rem@gnupg.org=foo.
Jul 30 2025, 10:06 AM · gnupg, Bug Report
werner added a comment to T7754: gpg segfaults when signing a key with --edit-key and --set-notation=rem@gnupg.org=foo.

Urgs

Jul 30 2025, 10:06 AM · gnupg, Bug Report
ikloecker created T7754: gpg segfaults when signing a key with --edit-key and --set-notation=rem@gnupg.org=foo.
Jul 30 2025, 10:02 AM · gnupg, Bug Report

Jul 25 2025

werner closed T7738: The trustlist's qual flag is not cached correctly by gpgsm as Resolved.

Fixed for gnupg22 and gnupg26

Jul 25 2025, 5:29 PM · S/MIME, gnupg
werner changed the status of T7719: Release GnuPG 2.5.10 from Open to Testing.
Jul 25 2025, 5:28 PM · Release Info, gnupg, gnupg26
werner closed T7695: Release GnuPG 2.5.9 as Resolved.
Jul 25 2025, 5:27 PM · gnupg, Release Info
werner updated the task description for T7719: Release GnuPG 2.5.10.
Jul 25 2025, 5:27 PM · Release Info, gnupg, gnupg26
werner triaged T7743: Release GnuPG 2.5.11 as Normal priority.
Jul 25 2025, 4:02 PM · gnupg, Release Info
werner triaged T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated) as Normal priority.
Jul 25 2025, 10:32 AM · gnupg26, gnupg, Bug Report

Jul 24 2025

werner added a comment to T7738: The trustlist's qual flag is not cached correctly by gpgsm.

This does not happen with gnupg24 because the cache has not been implemented there.

Jul 24 2025, 12:33 PM · S/MIME, gnupg
werner triaged T7738: The trustlist's qual flag is not cached correctly by gpgsm as Normal priority.
Jul 24 2025, 12:22 PM · S/MIME, gnupg

Jul 18 2025

alexk triaged T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server as High priority.
Jul 18 2025, 12:06 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request

Jul 17 2025

werner closed T7670: updated nl.po for gnupg 2.4 as Resolved.
Jul 17 2025, 1:47 PM · i18n, gnupg, Bug Report
werner added a comment to T7670: updated nl.po for gnupg 2.4.

Thanks. Will go into 2.4.9 to be released soon.

Jul 17 2025, 1:47 PM · i18n, gnupg, Bug Report
gniibe closed T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard as Resolved.
Jul 17 2025, 4:26 AM · gnupg, ssh, Bug Report
gniibe closed T7623: gpgscm: Fix fixed-size characters (for portability, specifically for GCC 15 or later) as Resolved.
Jul 17 2025, 4:25 AM · gnupg, gpgrt, Bug Report

Jul 16 2025

werner closed T7289: Release GnuPG 2.5.2 as Resolved.
Jul 16 2025, 11:55 AM · gnupg, Release Info, gnupg26

Jul 15 2025

gniibe closed T7668: gnupg: regexp and build with -fsanitize=address as Resolved.
Jul 15 2025, 7:26 AM · Bug Report, gnupg

Jul 14 2025

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q3/000495.html on T7695: Release GnuPG 2.5.9.
Jul 14 2025, 2:39 PM · gnupg, Release Info

Jul 11 2025

gniibe added a comment to T7720: w32: Synchronous spawning gpg-agent/dirmngr/keyboxd.

I'm testing the following patch with experimental change of libgpg-error.

Jul 11 2025, 10:45 AM · gnupg, Feature Request, Bug Report
gniibe triaged T7720: w32: Synchronous spawning gpg-agent/dirmngr/keyboxd as Wishlist priority.
Jul 11 2025, 10:44 AM · gnupg, Feature Request, Bug Report

Jul 10 2025

werner added a comment to T7695: Release GnuPG 2.5.9.
701bd8fe8789a86cd2b7c27254a2ab837ee4fcfa  gnupg-2.5.9.tar.bz2
1209dd1dc3cb9e33e3c7857e7f10a7b0fc8d478e  gnupg-w32-2.5.9_20250710.tar.xz
0c7814a9ed67c48d0498f42f5a0eeaaf18e29f49  gnupg-w32-2.5.9_20250710.exe
Jul 10 2025, 4:37 PM · gnupg, Release Info
werner closed T7672: Release GnuPG 2.5.8 as Resolved.
Jul 10 2025, 4:36 PM · Release Info, gnupg
werner updated the task description for T7695: Release GnuPG 2.5.9.
Jul 10 2025, 4:36 PM · gnupg, Release Info
werner triaged T7719: Release GnuPG 2.5.10 as Normal priority.
Jul 10 2025, 4:27 PM · Release Info, gnupg, gnupg26
werner added a comment to T7138: Windows (Semi-hosted environment): filename and network access.

We already have an initialization function in gpgrt which is thread-safe at least if used as a DLL. Maybe move the check to there.

Jul 10 2025, 10:03 AM · gnupg, Bug Report
gniibe added a comment to T7138: Windows (Semi-hosted environment): filename and network access.

In libgpg-error, we have: rE65114f24e13f: w32: More changes to the extended length path handling.

Jul 10 2025, 3:51 AM · gnupg, Bug Report

Jun 26 2025

ebo added a project to T7328: Add Kleopatra configs to gpgconf -X: gpd5x.
Jun 26 2025, 5:31 PM · vsd, gpd5x, Windows, gnupg, Feature Request

Jun 24 2025

gniibe closed T7664: tests/openpgp/ecc.scm fails when building GPG with address sanitizer as Resolved.

Fixed in 2.5.8.

Jun 24 2025, 8:50 AM · gnupg, Bug Report

Jun 20 2025

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q2/000494.html on T7672: Release GnuPG 2.5.8.
Jun 20 2025, 5:50 PM · Release Info, gnupg
werner closed T7671: Release GnuPG 2.5.7 as Resolved.

In case of problems with token based cv25519 key, please update to 2.5.8.

Jun 20 2025, 5:49 PM · Release Info, gnupg
werner updated the task description for T7672: Release GnuPG 2.5.8.
Jun 20 2025, 5:33 PM · Release Info, gnupg
werner triaged T7695: Release GnuPG 2.5.9 as Normal priority.
Jun 20 2025, 5:28 PM · gnupg, Release Info

Jun 18 2025

werner lowered the priority of T6234: Implement access to smartcards via a generic pkcs#11 interface from Normal to Wishlist.

The actual project we had in mind for this was more or less canceled and thus I re-prioritize this task.

Jun 18 2025, 9:38 AM · gnupg, Feature Request, scd
werner closed T7014: agent: Enhancement of PKDECRYPT for KEM interface, a subtask of T6815: PQC encryption for GnuPG, as Resolved.
Jun 18 2025, 9:29 AM · OpenPGP, PQC, gnupg

Jun 5 2025

philiperm added a watcher for gnupg: philiperm.
Jun 5 2025, 8:45 PM
ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

In Kleopatra we explicitly trigger a re-reading of the smart card after each operation involving a smart card to ensure that Kleopatra doesn't show wrong information. There's so much that can go wrong with physical smart cards that this is the only way to make sure you don't tell the user lies. I think gpg --edit-card also re-reads the smart card after each operation.

Jun 5 2025, 2:57 PM · gnupg26, gnupg, Bug Report
ikloecker removed a project from T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated): gpgme.

There is no bug in the contexts and there's nothing to document anywhere. If anything then it's a bug in gpg's generate command or a more general issue (in gpg-agent) with keeping track of the storage location of private keys as I have already explained in T7620#200613. I'm removing the gpgme tag because there's nothing wrong in gpgme and there's nothing we can do in gpgme. It needs to be addressed in gnupg.

Jun 5 2025, 2:45 PM · gnupg26, gnupg, Bug Report
Saturneric added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

In practice, calling gpgme_get_key() will often pick up most changes because GPGME asks the underlying GPG agent daemon, which may re-read the keyring. That gives the impression that a long-lived context automatically reflects live updates. However, as aheinecke noted, some updates can still go unnoticed in a single gpgme_ctx_t, so it isn’t a strictly frozen snapshot nor a perfectly live view—behaviors are mixed.

Jun 5 2025, 12:33 PM · gnupg26, gnupg, Bug Report
Saturneric added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

Maybe we should make the documentation clearer about context key reuse. But the context is specifically designed to cache information about a key, so as to avoid memory overhead. I learned early on that its best for each new operation to use a new context. A context is basically an instance of gpg or gpgsm. So you start one process, ask it for a keylist, keep the process running, start another process, modify the key database, and then ask the first process again about his worldview. Either the first process is a bit confused because it has read data and then that data changed (what happens here) or it has no idea about the change since it was efficient and only read the database once. But here in this example you should be able to reproduce this also by making any other modifications to the key, adding other subkeys, userids etc. That GPGME even notices the secret key is more of a side effect of how the programming works because the GPGME gpg process will ask the gpg-agent (so a third process).

Jun 5 2025, 12:14 PM · gnupg26, gnupg, Bug Report
gniibe added a comment to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard.

The problem was: In scdaemon, PKSIGN with OPENPGP.3 didn't work well for Ed25519 (done by do_auth function in app-openpgp.c), when --hash=sha512 (not SHA1).

Jun 5 2025, 2:52 AM · gnupg, ssh, Bug Report

Jun 4 2025

gniibe changed the status of T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard from Open to Testing.

I located the bug in scdaemon.

Jun 4 2025, 6:58 AM · gnupg, ssh, Bug Report

Jun 3 2025

gniibe changed the status of T7668: gnupg: regexp and build with -fsanitize=address from Open to Testing.

Pushed the change: rG16ee68259d1d: gpg,regexp: Use -DREGEXP_PREFIX=gnupg_.

Jun 3 2025, 4:42 AM · Bug Report, gnupg

Jun 2 2025

werner updated the task description for T7586: Release GnuPG 2.5.6.
Jun 2 2025, 6:09 PM · gnupg, Release Info
werner closed T7586: Release GnuPG 2.5.6 as Resolved.
Jun 2 2025, 6:08 PM · gnupg, Release Info
werner updated the task description for T7671: Release GnuPG 2.5.7.
Jun 2 2025, 6:08 PM · Release Info, gnupg
werner updated the task description for T7671: Release GnuPG 2.5.7.
Jun 2 2025, 5:57 PM · Release Info, gnupg
werner triaged T7672: Release GnuPG 2.5.8 as Normal priority.
Jun 2 2025, 5:50 PM · Release Info, gnupg
werner triaged T7671: Release GnuPG 2.5.7 as Normal priority.
Jun 2 2025, 3:09 PM · Release Info, gnupg
gniibe added a project to T7664: tests/openpgp/ecc.scm fails when building GPG with address sanitizer: gnupg.
Jun 2 2025, 6:39 AM · gnupg, Bug Report
gniibe claimed T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard.
Jun 2 2025, 6:38 AM · gnupg, ssh, Bug Report

May 31 2025

ametzler1 created T7670: updated nl.po for gnupg 2.4.
May 31 2025, 3:29 PM · i18n, gnupg, Bug Report

May 28 2025

aheinecke added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I do not think that this is the only place where such an issue occurs. Maybe we should make the documentation clearer about context key reuse. But the context is specifically designed to cache information about a key, so as to avoid memory overhead. I learned early on that its best for each new operation to use a new context. A context is basically an instance of gpg or gpgsm. So you start one process, ask it for a keylist, keep the process running, start another process, modify the key database, and then ask the first process again about his worldview. Either the first process is a bit confused because it has read data and then that data changed (what happens here) or it has no idea about the change since it was efficient and only read the database once. But here in this example you should be able to reproduce this also by making any other modifications to the key, adding other subkeys, userids etc. That GPGME even notices the secret key is more of a side effect of how the programming works because the GPGME gpg process will ask the gpg-agent (so a third process).

May 28 2025, 9:19 PM · gnupg26, gnupg, Bug Report
aheinecke added a comment to T7434: Kleopatra: Initial keylisting hangs for ~60 seconds (gpg-agent: Socket ...S.gpg-agent cannot be bound).

The more I think of this, the more likely this appears to me as the source for all that random startup weirdness of GnuPG. Say you are on a large keyring and on a train, then that keyring is first passed through your enterprise malware protection for scanning or something like that. Then it works again until some metric, hash or something else changes.

May 28 2025, 8:37 PM · gpd5x (gpd-5.0.0), gnupg, kleopatra
aheinecke added a comment to T7434: Kleopatra: Initial keylisting hangs for ~60 seconds (gpg-agent: Socket ...S.gpg-agent cannot be bound).

My recommendation would at this point be to use procmon with a file filter for just "If path contains gnupg then include" I mean maybe go only for the locking dirs but this way you will not only see what the GnuPG processes are doing but what everyone on the system is doing to the locks. So you will see when my old friends, third party security software might interfere.
For example: You will see on a default Windows which files are checked through telemetry. And here in this example you see directly that the Microsoft Malware Protection Engine is accessing the agents socket.

May 28 2025, 8:16 PM · gpd5x (gpd-5.0.0), gnupg, kleopatra

May 23 2025

werner closed T7428: Release GnuPG 2.4.8 as Resolved.
May 23 2025, 11:58 AM · gnupg, Release Info

May 19 2025

chengr28 added a comment to T7577: GnuPG could not work when TCP congestion provider is set to BBR2 in Windows.

Spent some time discovering and unfortunately it's Windows's bug in loopback interface.
I wrote a test demo (blocking mode) to exchange data and watched their packets, found that network stack would drop packets when congestion control algorithm is set to BBR2. It seems the second data exchange was broken.

May 19 2025, 3:20 PM · Support, Not A Bug, gnupg, Bug Report

May 16 2025

dkg added a comment to T5993: gpg should reject compressed packets outside of messages.

For example Poppler uses GnuPG comment packets to lower its own attack surface by leaving all OpenPGP handling to gpg. The patch (or at least the version we noticed in Fedora and Debian) entirely breaks this use.

May 16 2025, 4:12 PM · Feature Request, gnupg
werner closed T5993: gpg should reject compressed packets outside of messages as Resolved.
May 16 2025, 2:46 PM · Feature Request, gnupg
werner added a comment to T5993: gpg should reject compressed packets outside of messages.

(The commits had a wrong bug it in their message)

May 16 2025, 2:44 PM · Feature Request, gnupg
werner added a comment to T5993: gpg should reject compressed packets outside of messages.

It might be useful to have samples of compressed keys:

May 16 2025, 2:20 PM · Feature Request, gnupg
werner updated subscribers of T5993: gpg should reject compressed packets outside of messages.

No, we can't do much about this. It has always been easy to create compression bombs and the more relevant thing here is compressed signed or encrypted data. Or just compressed mails. The patch by @DemiMarie is way to complicated for what it wants to achieve and actually breaks existing use cases. For example Poppler uses GnuPG comment packets to lower its own attack surface by leaving all OpenPGP handling to gpg. The patch (or at least the version we noticed in Fedora and Debian) entirely breaks this use.

May 16 2025, 12:04 PM · Feature Request, gnupg

May 14 2025

werner added a comment to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard.

Using the primary key for ssh was not intended and thus not tested. I have not yet found the time too look closer at your report. Just one remark:

May 14 2025, 12:32 PM · gnupg, ssh, Bug Report
werner added a project to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard: gnupg.
May 14 2025, 12:07 PM · gnupg, ssh, Bug Report

May 13 2025

werner closed T7171: Allow for empty Subject in X.509 as Resolved.
May 13 2025, 3:21 PM · libksba, Bug Report, gnupg, S/MIME
werner closed T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN", a subtask of T7171: Allow for empty Subject in X.509, as Resolved.
May 13 2025, 3:00 PM · libksba, Bug Report, gnupg, S/MIME
werner added a subtask for T7171: Allow for empty Subject in X.509: T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN".
May 13 2025, 2:58 PM · libksba, Bug Report, gnupg, S/MIME

May 9 2025

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q2/000492.html on T7586: Release GnuPG 2.5.6.
May 9 2025, 5:02 PM · gnupg, Release Info

May 8 2025

ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I think it would be much better if GnuPG automatically performed a key listing immediately after key generation when a smartcard is involved. This would allow GnuPG to detect the presence of the subkey on the card right away, rather than leaving it marked as a stub until the user manually lists keys.

May 8 2025, 9:14 PM · gnupg26, gnupg, Bug Report
Saturneric added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I see that you generated the secret encryption subkey with backup. This means that the secret subkey is generated on your computer, then copied to the card, and then deleted from your computer. The deletion is the reason why the subkey is marked as stub. Only after listing the keys on the card gpg notices that the secret key is actually on the card.

May 8 2025, 6:37 PM · gnupg26, gnupg, Bug Report
werner updated the task description for T7586: Release GnuPG 2.5.6.
May 8 2025, 3:43 PM · gnupg, Release Info
werner closed T7632: gnupg test suite fails to build on AIX. as Resolved.
May 8 2025, 3:32 PM · AIX, gnupg, Bug Report
werner closed T7638: gpg on Solaris does not print a signal description as Resolved.
May 8 2025, 3:32 PM · Solaris, gnupg, Bug Report
werner closed T7576: keyboxd: Searching <email@Example.COM> as Resolved.
May 8 2025, 3:31 PM · gnupg, Bug Report
werner closed T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept as Resolved.
May 8 2025, 3:30 PM · gnupg, Bug Report
werner closed T7547: signatures from revoked or expired keys show up as missing keys, a subtask of T7527: Keyring/keybox denial of service, as Resolved.
May 8 2025, 3:29 PM · OpenPGP, gnupg, Bug Report
werner updated the task description for T7586: Release GnuPG 2.5.6.
May 8 2025, 3:29 PM · gnupg, Release Info

May 7 2025

dkg added a comment to T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept.

btw, my clue was that in that last --check-sigs, if i used --debug-all i got this:

May 7 2025, 10:35 PM · gnupg, Bug Report
dkg added a comment to T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept.

This affects certification-only primary keys when doing web-of-trust calculations.

May 7 2025, 9:46 PM · gnupg, Bug Report
collinfunk added a comment to T7638: gpg on Solaris does not print a signal description.

Hi Werner, I submitted a patch right after this bug report using AC_CHECK_DECLS([_sys_siglist]) [1].

May 7 2025, 3:03 AM · Solaris, gnupg, Bug Report

May 6 2025

dkg added a comment to T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.

To avoid further noise on this ticket, i've done as requested and posted to gnupg-devel : https://lists.gnupg.org/pipermail/gnupg-devel/2025-May/035875.html

May 6 2025, 10:26 PM · Not A Bug, gnupg
ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

The first call of get_key receives the following key listing from gpg:

2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: sec:-:256:19:C4A24EB0B5F2E025:1746474606:::u:::s
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: cESCA:::D2760001240100000006180489130000::brainp
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: oolP256r1:23::0:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: fpr:::::::::DEC0948C398A6E7B50746EC6C4A24EB0B5F2
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: E025:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: grp:::::::::06BDACFBDEDBC5783A75AE5E7251FA3369C4
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: 0FF4:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: uid:-::::1746474606::2222D8E2F373B9BDEE0DEA2A20A
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: 9402214E9F984::Eric <eric@bktus.com>::::::::::0:
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: <LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: ssb:-:256:19:EAFC5EA29B758B22:1746474606::::::a:
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: ::D2760001240100000006180489130000::brainpoolP25
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: 6r1:23:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: fpr:::::::::1AD596DDEC9B8CF3C1AC6C41EAFC5EA29B75
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: 8B22:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: grp:::::::::52F0797C0B0439BBD718E2534D46656A6C45
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: 6A78:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: ssb:-:256:18:A874804DB497B91C:1746474606::::::e:
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: ::#::brainpoolP256r1:23:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: fpr:::::::::33B273C7BD46E4EB63DD6874A874804DB497
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: B91C:<LF>
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: grp:::::::::34A1F8D9B2AA0CF07C2E042D70E10F9D4EBE
2025-05-05 21:50:23 gpgme[57059]     _gpgme_io_read: check: E734:<LF>

Note the line

ssb:-:256:18:A874804DB497B91C:1746474606::::::e:::#::brainpoolP256r1:23:<LF>

where the # marks the subkey as stub.

May 6 2025, 9:21 AM · gnupg26, gnupg, Bug Report
werner added a comment to T7638: gpg on Solaris does not print a signal description.

Right now we have

May 6 2025, 8:32 AM · Solaris, gnupg, Bug Report
collinfunk added a comment to T7638: gpg on Solaris does not print a signal description.

Interesting, that sounds like a portable method. I am not very familiar with GPG internals, but to me that sounds like quite a bit of work. Unless there is another benefit to doing so, I don't think it is worth it just to print signal names.

May 6 2025, 4:26 AM · Solaris, gnupg, Bug Report

May 5 2025

Saturneric added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I have now identified the exact conditions and a reproducible path for the issue I previously reported. I will also attach the relevant gpgme.log.

May 5 2025, 10:01 PM · gnupg26, gnupg, Bug Report
werner added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I doubt that this is a gpgme problem. With a gpgme log we will be able see the exact commands send to gpg and replicate this on the command line.

May 5 2025, 5:45 PM · gnupg26, gnupg, Bug Report
werner added a comment to T7628: gpg uses "month" as a synonym for 30 days.

And the US administration might even change the definition of a year to, say, 100 months so that potus can rightfully keep his promise that there won't be more election in the foreseeable future ;-)

May 5 2025, 4:27 PM · gnupg, Bug Report
ikloecker added a comment to T7628: gpg uses "month" as a synonym for 30 days.

By the way, "years" is also "incorrect" once in ~4 years because it uses n*365 days. Werner's advice still applies. Enter an ISO date if you want an exact date. Or use a UI tool like Kleopatra.

May 5 2025, 3:31 PM · gnupg, Bug Report
werner triaged T7632: gnupg test suite fails to build on AIX. as High priority.
May 5 2025, 11:12 AM · AIX, gnupg, Bug Report
werner triaged T7638: gpg on Solaris does not print a signal description as Low priority.

The main problem here was that this all is not async-safe and thus I once implemented only the standard cases I could test easily.

May 5 2025, 11:11 AM · Solaris, gnupg, Bug Report
ikloecker added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

The logs of gpgme would be helpful, i.e. run your test program with GPGME_DEBUG=8:$(pwd)/gpgme-$(date +"%Y-%m-%d-%H%M%S").log to create a log file with gpgme's logs.

May 5 2025, 11:07 AM · gnupg26, gnupg, Bug Report
werner added a comment to T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.

For the records:

May 5 2025, 9:24 AM · Not A Bug, gnupg
werner added a comment to T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.

A bug tracker shall never be used for discussion because the audience is not as expected. Only very few people follow a certain bug but several hundreds are following discussion on gnupg-devel@. That is basic hacker knowledge.

May 5 2025, 9:14 AM · Not A Bug, gnupg
werner changed the status of T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept from Open to Testing.
May 5 2025, 9:12 AM · gnupg, Bug Report

May 4 2025

collinfunk created T7638: gpg on Solaris does not print a signal description.
May 4 2025, 8:43 PM · Solaris, gnupg, Bug Report