Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Jan 6 2026

timegrid moved T1825: Add a re-encrypt to additional key from QA to Done on the gnupg26 board.
Jan 6 2026, 12:28 PM · gpd5x (gpd-5.0.0), gnupg26, Feature Request
timegrid moved T1825: Add a re-encrypt to additional key from QA to Done on the gpd5x board.

Looks good to me on gpg4win-5.0.0-beta479 @ win11:

  • gpg --show-only-session-key --decrypt FILE shows only the session key
  • gpg --add-recipients -r UID1 FILE adds recipients (tested with one or more uids)
  • gpg --change-recipients -r UID FILE changes the recipients (tested with one or more uids)
Jan 6 2026, 12:28 PM · gpd5x (gpd-5.0.0), gnupg26, Feature Request
timegrid moved T7983: gpg: the validity of a secret key is changed by making a certification with it from QA to Done on the gnupg26 board.
Jan 6 2026, 12:08 PM · gpd5x (gpd-5.0.0), keyboxd, Bug Report, gnupg26
timegrid moved T7983: gpg: the validity of a secret key is changed by making a certification with it from QA to Done on the gpd5x board.

Looks good to me on gpg4win-5.0.0-beta479 @ win11.
I can't reproduce ebo's nor pl13's issue.

Jan 6 2026, 12:07 PM · gpd5x (gpd-5.0.0), keyboxd, Bug Report, gnupg26
ebo moved T6731: Default save dir in okular/windows is wrong from Backlog to QA on the gpd5x board.
Jan 6 2026, 11:28 AM · gpd5x (gpd-5.0.0), okular
ebo moved T7285: Okular: Improvement of error messages regarding signatures from Backlog to QA on the gpd5x board.
Jan 6 2026, 11:28 AM · test on hold, gpd5x, okular
ebo moved T7983: gpg: the validity of a secret key is changed by making a certification with it from Backlog to QA on the gpd5x board.
Jan 6 2026, 11:20 AM · gpd5x (gpd-5.0.0), keyboxd, Bug Report, gnupg26
ebo moved T7983: gpg: the validity of a secret key is changed by making a certification with it from Backlog to QA on the gnupg26 board.
Jan 6 2026, 11:20 AM · gpd5x (gpd-5.0.0), keyboxd, Bug Report, gnupg26
ikloecker moved T8014: Kleopatra: Incorrect handling of unset keyserver in configuration dialog from Backlog to WIP on the gpd5x board.
Jan 6 2026, 11:14 AM · gpd5x, kleopatra
ebo moved T7427: Kleopatra: Crash after decryption if files has an embedded file name from Backlog to QA on the gpd5x board.
Jan 6 2026, 10:55 AM · gpd5x (gpd-5.0.0), kleopatra, Bug Report
ikloecker triaged T8014: Kleopatra: Incorrect handling of unset keyserver in configuration dialog as Normal priority.
Jan 6 2026, 10:54 AM · gpd5x, kleopatra
ebo moved T7439: Kleopatra: DecryptVerifyFilesDialog crashes when output folder does not exist from Backlog to QA on the gpd5x board.
Jan 6 2026, 10:54 AM · gpd5x (gpd-5.0.0), kleopatra, Bug Report
ebo moved T7549: Kleopatra: crash on click in certificate extension dialog from Backlog to QA on the gpd5x board.
Jan 6 2026, 10:52 AM · gpd5x (gpd-5.0.0), kleopatra
ikloecker changed the status of T7772: Kleopatra: Config option - only allow upload of certificates with private key to LDAP keyserver from Open to Testing.

Backported for VSD 3.4

Jan 6 2026, 10:02 AM · gpd5x, vsd34, kleopatra
ikloecker committed rKLEOPATRAbed77c838ec2: Add config option for disabling upload of public third-party keys (authored by ikloecker).
Add config option for disabling upload of public third-party keys
Jan 6 2026, 10:01 AM
ikloecker added a comment to T7772: Kleopatra: Config option - only allow upload of certificates with private key to LDAP keyserver.

The option

[Export]
AllowPublicKeyUpload=true

has been added. If this option is disabled (i.e. set to false) then Kleopatra only allows the upload of OpenPGP keys for which the user has the secret key.

Jan 6 2026, 9:58 AM · gpd5x, vsd34, kleopatra
ikloecker committed rKLEOPATRA711daad6fc94: Add config option for disabling upload of public third-party keys (authored by ikloecker).
Add config option for disabling upload of public third-party keys
Jan 6 2026, 9:55 AM
ikloecker claimed T7772: Kleopatra: Config option - only allow upload of certificates with private key to LDAP keyserver.
Jan 6 2026, 9:14 AM · gpd5x, vsd34, kleopatra
werner triaged T8013: gpgconf does not support the --enable-win32-openssh-support option for gpg-agent as Normal priority.

Frankly, he OpenSSH support for Windows was experimental and I have never tested it. If it can be confirmed that this really works and is useful, it will be easy to add the opeion to gpgconf. Note that the gpgconf option feature handles only a subset of all options on purpose.

Jan 6 2026, 8:53 AM · Feature Request, ssh, gnupg26, Windows
l10n daemon script <scripty@kde.org> committed rMTPae8b9f142a84: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 6 2026, 4:44 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOc63175e1a3ba: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 6 2026, 4:43 AM
l10n daemon script <scripty@kde.org> committed rMTP389997ef92a9: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 6 2026, 2:57 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOad2e3cfed131: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 6 2026, 2:55 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA5caa3a50e1ad: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 6 2026, 2:55 AM

Jan 5 2026

the13thletter created T8013: gpgconf does not support the --enable-win32-openssh-support option for gpg-agent.
Jan 5 2026, 9:22 PM · Feature Request, ssh, gnupg26, Windows
tfry committed rOJe09903855d28: Move away from email-address as client mapping key (authored by tfry).
Move away from email-address as client mapping key
Jan 5 2026, 5:00 PM
ikloecker changed the status of T7848: Kleopatra: Remove whitespace from suggested export filename from Open to Testing.

Backported for VSD 3.4

Jan 5 2026, 4:58 PM · gpd5x, vsd34, kleopatra
ikloecker committed rKLEOPATRA3fbe2175864f: Replace spaces and invalid characters in file names of exported keys (authored by ikloecker).
Replace spaces and invalid characters in file names of exported keys
Jan 5 2026, 4:57 PM
ikloecker committed rKLEOPATRA379626310cd7: Add helper to sanitize strings used as file name (authored by ikloecker).
Add helper to sanitize strings used as file name
Jan 5 2026, 4:57 PM
ikloecker committed rKLEOPATRA0d1ef9c40e3d: Rename StripSuffixTest to PathHelperTest (authored by ikloecker).
Rename StripSuffixTest to PathHelperTest
Jan 5 2026, 4:57 PM
ikloecker committed rLIBKLEO078837dae86c: Add helper returning pretty name or email of a key (authored by ikloecker).
Add helper returning pretty name or email of a key
Jan 5 2026, 4:57 PM
ikloecker added a comment to T7848: Kleopatra: Remove whitespace from suggested export filename.

Fixed everywhere where we export some certificate or public/secret (sub)key. Additionally, to space characters we also replace /, \, and : everywhere in the (proposed) file names now.

Jan 5 2026, 4:28 PM · gpd5x, vsd34, kleopatra
werner updated the task description for T7906: Memory Corruption in ASCII-Armor Parsing.
Jan 5 2026, 4:27 PM · gnupg, Bug Report
ikloecker committed rKLEOPATRA3c379f4e98e1: Replace spaces and invalid characters in file names of exported keys (authored by ikloecker).
Replace spaces and invalid characters in file names of exported keys
Jan 5 2026, 4:24 PM
ikloecker committed rKLEOPATRA5e235f92da07: Rename StripSuffixTest to PathHelperTest (authored by ikloecker).
Rename StripSuffixTest to PathHelperTest
Jan 5 2026, 4:24 PM
ikloecker committed rKLEOPATRAd37384a4da70: Add helper to sanitize strings used as file name (authored by ikloecker).
Add helper to sanitize strings used as file name
Jan 5 2026, 4:24 PM
ikloecker committed rLIBKLEO2228092d0648: Bump library version (authored by ikloecker).
Bump library version
Jan 5 2026, 4:19 PM
ikloecker committed rLIBKLEOaa0d63322b77: Add helper returning pretty name or email of a key (authored by ikloecker).
Add helper returning pretty name or email of a key
Jan 5 2026, 4:19 PM
werner committed rG5f4ad39b16a4: doc: Rename an internal function to clarity the purpose. (authored by werner).
doc: Rename an internal function to clarity the purpose.
Jan 5 2026, 4:08 PM
werner triaged T8012: Missing error on first key search without keyserver as Normal priority.
Jan 5 2026, 3:17 PM · dirmngr, Bug Report, gnupg26
werner committed rG8d4fc76677cc: dirmngr: Help detection of bad keyserver configurations. (authored by werner).
dirmngr: Help detection of bad keyserver configurations.
Jan 5 2026, 2:45 PM
ikloecker claimed T7848: Kleopatra: Remove whitespace from suggested export filename.
Jan 5 2026, 1:54 PM · gpd5x, vsd34, kleopatra
ikloecker changed the status of T7637: Kleopatra: certifications by available secret key which is *not* set to "ultimate" owner trust are disregarded from Open to Testing.

Fixed and backported for VSD 3.4

Jan 5 2026, 1:53 PM · vsd34, gpd5x, kleopatra
ikloecker committed rKLEOPATRA9d5dbed2c25a: Avoid confusion with shared team keys (authored by ikloecker).
Avoid confusion with shared team keys
Jan 5 2026, 1:52 PM
ikloecker committed rKLEOPATRA92e518ec0e12: Make tooltip less wide (authored by ikloecker).
Make tooltip less wide
Jan 5 2026, 1:52 PM
timegrid created T8012: Missing error on first key search without keyserver.
Jan 5 2026, 1:37 PM · dirmngr, Bug Report, gnupg26
timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from QA to Done on the gnupg26 board.
Jan 5 2026, 12:54 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request
timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WIP to Done on the gpd5x board.

The problem was the keyserver configuration, which does not include a scheme (ldap:):

keyserver ldap.gnupg.test:389:uid=LordPrivySeal,ou=GnuPG Users,dc=gnupg,dc=test:pass:dc=gnupg,dc=test:
Jan 5 2026, 12:53 PM · gpd5x (gpd-5.0.0), gnupg22 (gnupg-2.2.52), gnupg26, Feature Request
ikloecker committed rKLEOPATRAb5ee4174225b: Avoid confusion with shared team keys (authored by ikloecker).
Avoid confusion with shared team keys
Jan 5 2026, 12:26 PM
ikloecker committed rKLEOPATRA822552b7abe2: Make tooltip less wide (authored by ikloecker).
Make tooltip less wide
Jan 5 2026, 12:26 PM
werner changed the visibility for T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks.
Jan 5 2026, 11:27 AM · Not A Bug, gnupg
werner changed the visibility for T7901: Cleartext Signature Forgery in NotDashEscaped header implementation in GnuPG.
Jan 5 2026, 11:26 AM · gnupg, Bug Report
werner changed the visibility for T7900: Cleartext Signature Forgery in GnuPG.
Jan 5 2026, 11:26 AM · Not A Bug, OpenBSD, gnupg
ikloecker claimed T7637: Kleopatra: certifications by available secret key which is *not* set to "ultimate" owner trust are disregarded .
Jan 5 2026, 11:05 AM · vsd34, gpd5x, kleopatra
gniibe changed the status of T7968: Fixes needed for newer GCC/Mingw from Open to Testing.
Jan 5 2026, 9:51 AM
ikloecker added a comment to T6453: Kleopatra: Show isQualified in Certificate details if true.

What does gpgsm -k --with-colons print for Werner's QES key? The usage / capabilities should contain s (for signing) and q (for qualified signing). If q is missing then something isn't set up correctly.

Jan 5 2026, 9:35 AM · gpd5x (gpd-5.0.0), kleopatra
l10n daemon script <scripty@kde.org> committed rMTPe2a4c5ac40bc: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 5 2026, 4:45 AM
l10n daemon script <scripty@kde.org> committed rMTPf7ea1d83509b: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 5 2026, 2:55 AM

Jan 4 2026

anthumchris closed T8010: Publish to NPM registry, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), as Resolved.
Jan 4 2026, 11:45 PM · gpgme, Feature Request
anthumchris closed T8010: Publish to NPM registry as Resolved.

Published to NPM as gpgmejs, which provides disambiguation from gpgme, gpgmepp, gpgmepy, etc.

Jan 4 2026, 11:45 PM · gpgme, Feature Request
anthumchris changed the status of T8010: Publish to NPM registry, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), from Open to Testing.
Jan 4 2026, 10:45 PM · gpgme, Feature Request
anthumchris changed the status of T8010: Publish to NPM registry from Open to Testing.
Jan 4 2026, 10:45 PM · gpgme, Feature Request
anthumchris triaged T8010: Publish to NPM registry as Normal priority.
Jan 4 2026, 10:44 PM · gpgme, Feature Request
ikloecker committed rKLEOPATRA108194fcf848: Remove CI configuration (authored by ikloecker).
Remove CI configuration
Jan 4 2026, 9:42 PM
ikloecker committed rMTP0d37c57a405b: Remove Linux CI job (authored by ikloecker).
Remove Linux CI job
Jan 4 2026, 9:42 PM
ikloecker committed rLIBKLEO03ffe03f43a0: Remove CI configuration (authored by ikloecker).
Remove CI configuration
Jan 4 2026, 9:37 PM
ikloecker committed rLIBKLEOf5df85ee2f7f: Remove Linux CI job (authored by ikloecker).
Remove Linux CI job
Jan 4 2026, 9:29 PM
l10n daemon script <scripty@kde.org> committed rMTPf6070eac25c7: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 4 2026, 4:40 AM
anthumchris closed T8003: Create first gnupgme nodejs binding for gpg version as Resolved.

completed working test and repo:
https://github.com/anthumchris/gpgmejs/

Jan 4 2026, 4:25 AM · gpgme, Feature Request
anthumchris closed T8003: Create first gnupgme nodejs binding for gpg version, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), as Resolved.
Jan 4 2026, 4:25 AM · gpgme, Feature Request
l10n daemon script <scripty@kde.org> committed rMTP00e7c980b210: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Jan 4 2026, 2:55 AM
thesamesam added a comment to T7990: export-minimal unexpectedly omits expired key.

That'd be great if possible, thank you!

Jan 4 2026, 2:35 AM · gnupg26, Feature Request, Gentoo

Jan 3 2026

heirecka committed rKLEOPATRA977ec6b88c0a: GIT_SILENT Update Appstream for new release (authored by heirecka).
GIT_SILENT Update Appstream for new release
Jan 3 2026, 11:58 AM
heirecka committed rKLEOPATRAfffce3a24727: GIT_SILENT Upgrade release service version to 25.12.1. (authored by heirecka).
GIT_SILENT Upgrade release service version to 25.12.1.
Jan 3 2026, 11:58 AM
heirecka committed rKLEOPATRAdbeb948b1ac8: GIT_SILENT Update Appstream for new release (authored by heirecka).
GIT_SILENT Update Appstream for new release
Jan 3 2026, 11:58 AM
mfilippov updated the diff for D622: secmem: Add VirtualLock support for Windows..

secmem: Add VirtualLock support for Windows.

Jan 3 2026, 11:03 AM
mfilippov requested review of D622: secmem: Add VirtualLock support for Windows..
Jan 3 2026, 10:55 AM
jukivili committed rCd5cf2b90c7d0: rijndael-aesni: use assembly for moving first and last round key (authored by jukivili).
rijndael-aesni: use assembly for moving first and last round key
Jan 3 2026, 12:06 AM
jukivili committed rC7afdbb2812b2: rijndael-aesni: prevent inlining AESNI functions by LTO (authored by jukivili).
rijndael-aesni: prevent inlining AESNI functions by LTO
Jan 3 2026, 12:06 AM
jukivili committed rC9e3af928ee11: rijndael: add VAES/AVX512 accelerated implementation (authored by jukivili).
rijndael: add VAES/AVX512 accelerated implementation
Jan 3 2026, 12:06 AM
jukivili committed rCef372b484e0f: rijndael-riscv-zvkned: optimize aes192 key setup (authored by jukivili).
rijndael-riscv-zvkned: optimize aes192 key setup
Jan 3 2026, 12:06 AM
jukivili committed rCc1d9fff3b2eb: chacha20: avoid AVX512/AVX2/SSSE3 for single block processing with Zen5 (authored by jukivili).
chacha20: avoid AVX512/AVX2/SSSE3 for single block processing with Zen5
Jan 3 2026, 12:06 AM
jukivili committed rC4c9d7a3ba939: rijndael-riscv-zvkned: optimize do_prepare_decryption (authored by jukivili).
rijndael-riscv-zvkned: optimize do_prepare_decryption
Jan 3 2026, 12:06 AM
jukivili committed rC8b538a8c7669: camellia-gfni-avx512: add 1-block constant-time implementation (authored by jukivili).
camellia-gfni-avx512: add 1-block constant-time implementation
Jan 3 2026, 12:06 AM
jukivili committed rCe5bc3b28260e: blake2: avoid AVX/AVX2/AVX512 when CPU has high vector inst latency (authored by jukivili).
blake2: avoid AVX/AVX2/AVX512 when CPU has high vector inst latency
Jan 3 2026, 12:06 AM
jukivili committed rC861896b0fad8: aria-x86_64: fixes for CFI markings (authored by jukivili).
aria-x86_64: fixes for CFI markings
Jan 3 2026, 12:06 AM
jukivili committed rCb9bafd6c6cc5: camellia-simd128: optimize round key loading and key setup (authored by jukivili).
camellia-simd128: optimize round key loading and key setup
Jan 3 2026, 12:06 AM
jukivili committed rCf5848080d41a: camellia-aesni-avx: optimize camellia_f used for key setup (authored by jukivili).
camellia-aesni-avx: optimize camellia_f used for key setup
Jan 3 2026, 12:06 AM

Jan 2 2026

werner committed rGb8805d9a0f52: gpg: Error out on unverified output for non-detached signatures. (authored by werner).
gpg: Error out on unverified output for non-detached signatures.
Jan 2 2026, 4:38 PM
werner changed the status of T7900: Cleartext Signature Forgery in GnuPG from Open to Testing.

(Testing for now for better visibility. Real or Semi-real bugs with fixes are already set to Resolved)

Jan 2 2026, 4:38 PM · Not A Bug, OpenBSD, gnupg
werner changed the status of T7902: OpenPGP Cleartext Signature Framework, a subtask of T7900: Cleartext Signature Forgery in GnuPG, from Open to Testing.
Jan 2 2026, 4:35 PM · Not A Bug, OpenBSD, gnupg
werner changed the status of T7902: OpenPGP Cleartext Signature Framework from Open to Testing.
Jan 2 2026, 4:35 PM · Not A Bug, OpenPGP, FAQ, gnupg
werner closed T7903: Multiple Plaintext Attack on Detached PGP Signatures in GnuPG, a subtask of T7900: Cleartext Signature Forgery in GnuPG, as Resolved.
Jan 2 2026, 4:24 PM · Not A Bug, OpenBSD, gnupg
werner closed T7903: Multiple Plaintext Attack on Detached PGP Signatures in GnuPG as Resolved.
Jan 2 2026, 4:24 PM · Not A Bug, OpenPGP, gnupg
werner changed the status of T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks, a subtask of T7900: Cleartext Signature Forgery in GnuPG, from Open to Testing.
Jan 2 2026, 4:22 PM · Not A Bug, OpenBSD, gnupg
werner changed the status of T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks from Open to Testing.

The described attack is not easy to understand and as of today the
gpg.fail website seems to have the same content as the draft we
received on 2025-10-23. There it states:

Jan 2 2026, 4:22 PM · Not A Bug, gnupg
anthumchris renamed T8009: Wasm for browser support from Consider Wasm for browser support to Wasm for browser support.
Jan 2 2026, 3:34 PM · gpgme, Feature Request
anthumchris updated the task description for T8009: Wasm for browser support.
Jan 2 2026, 3:33 PM · gpgme, Feature Request
anthumchris updated the task description for T8009: Wasm for browser support.
Jan 2 2026, 3:33 PM · gpgme, Feature Request
anthumchris updated the task description for T8009: Wasm for browser support.
Jan 2 2026, 3:33 PM · gpgme, Feature Request
First
Prev
Next