Page MenuHome GnuPG
Feed Advanced Search

Sat, Jun 1

gc100 reopened T6965: WKD fail: gpg/dimngr fails to retrieve public key as "Open".
Sat, Jun 1, 3:10 PM · Support, dirmngr, Bug Report
gc100 added a comment to T6965: WKD fail: gpg/dimngr fails to retrieve public key.

An update FYI

Sat, Jun 1, 3:09 PM · Support, dirmngr, Bug Report

Apr 10 2024

bryonbaker added a comment to T7074: gpg fails with error if you delete the ~/.gnupg directory.

@werner I- think you were a bit quick on the trigger to shut this down.
I had rebooted the machine in between attempts. So your analysis is actually not correct.
Basically you have an issue that something in gpg is using something in a locale that is not installed. I pretty much proved that.
Anywho, I'll leave it to you to work out if you want to bother investigating it further.

Apr 10 2024, 10:58 PM · Support, gnupg

Apr 9 2024

werner closed T7074: gpg fails with error if you delete the ~/.gnupg directory as Resolved.
Apr 9 2024, 8:41 AM · Support, gnupg

Apr 8 2024

werner edited projects for T7074: gpg fails with error if you delete the ~/.gnupg directory, added: gnupg, Support; removed Bug Report.
Apr 8 2024, 9:47 AM · Support, gnupg

Apr 3 2024

ebo removed a project from T7053: If there are more than one S/MIME Keys you can select the key for encription, but not the key used for signing: Bug Report.

I assume the support answers helped, therefore closing this.
In case there is evidence of a bug please give more information and reopen the ticket.

Apr 3 2024, 3:38 PM · Support

Mar 27 2024

ebo added a project to T7053: If there are more than one S/MIME Keys you can select the key for encription, but not the key used for signing: Support.
Mar 27 2024, 11:26 AM · Support

Mar 10 2024

leoarod added a comment to T7034: I can't recover my password..

There is no way to recover it?

Mar 10 2024, 3:06 PM · Support, Bug Report, gpg4win
werner closed T7034: I can't recover my password. as Invalid.

Sorry, this is not a help line but a bug tracker. If you lost or forgot your password you are screwed up.

Mar 10 2024, 1:02 PM · Support, Bug Report, gpg4win

Feb 22 2024

aheinecke added a comment to T7005: exportation des certificats OpenPGP..

I already mentioned the exact same thing in T7004 and this user also used the wiki style of the bug report form at first to report a bug. That is why I took the extraordinary step of blocking him.

Feb 22 2024, 8:30 AM · Support, gpg4win

Feb 21 2024

werner edited projects for T7005: exportation des certificats OpenPGP., added: Support; removed Bug Report.

Please note that this is a bug tracker and not a general support channel. You would also need to write in English - we can't triage reports written in other languages.

Feb 21 2024, 2:39 PM · Support, gpg4win

Feb 19 2024

90 added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

Since there are some files that would simply have to be created each time under $GNUPGHOME, I've been thinking a bit more about what sort of approach to take for "fallbacks."

Feb 19 2024, 11:28 AM · Support, gnupg, Feature Request

Feb 15 2024

werner added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

That is simply because your XDG_RUNTIME is set to the same directory gnupg uses. See gnupg/common/homedir.c:_gnupg_socketdir_internal

Feb 15 2024, 5:44 PM · Support, gnupg, Feature Request
90 added a comment to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths.

Funnily enough, runtime sockets already adhere to the XDGBDS somewhat by using $XDG_RUNTIME_DIR/gnupg as their path, while everything else uses strictly $GNUPGHOME or ~/.gnupg with no other alternative. Of course, I completely understand that the priority for this is rather low, but I am still happy to look into providing a patch myself that would add these fallbacks if it would help expedite the whole process.

Feb 15 2024, 5:36 PM · Support, gnupg, Feature Request
gniibe added projects to T6991: Adding XDG Base Directory paths as *fallbacks* over the existing ~/.gnupg paths: gnupg, Support.
Feb 15 2024, 3:41 AM · Support, gnupg, Feature Request

Feb 8 2024

aheinecke closed T6980: Bug in Kleopatra as Resolved.

Hi, you have "compliance de-vs" in your %APPDATA%\gnupg\gpg.conf. But have installed Gpg4win. The default key pair algorithm of Gpg4win is not VS-NfD compliant, in fact the whole Gpg4win version was not approved for VS-NfD. So just remove that compliance line from your config and everything should be fine. Otherwise the forbidden indicates that you are trying to generate a non-compliant key with a version configured for compliant operation.

Feb 8 2024, 5:24 AM · Support, gpg4win

Feb 7 2024

Denisov23 added a comment to T6980: Bug in Kleopatra.

gpgconf -X in cdm.exe

Feb 7 2024, 11:06 PM · Support, gpg4win
Denisov23 added a comment to T6980: Bug in Kleopatra.
  1. I use Windows 10 Pro (19045.3996 22H2).
  2. I don't use gpg-agent on a remote machine (e.g. over an ssh connection) I'm not capable!
  3. I don't understand how to get "gpgconf -X" and "gpgconf -V". Can you explain the procedure better to me?
Feb 7 2024, 10:43 PM · Support, gpg4win
werner edited projects for T6980: Bug in Kleopatra, added: Support; removed Bug Report.

Please post the output of "gpgconf -X" and "gpgconf -V".

Feb 7 2024, 10:08 PM · Support, gpg4win
werner closed T6981: Not VS-NfD compliant as Resolved.

VS-NfD is not a standard but a classification for restricted data. Software used to convey such material needs an official approval and is bound to certain organizational requirements. That is what "VS-NfD konform" says. The community version of gpg4win does not have this approval despite that it is technically the same code as the approved GnuPG VS-Desktop.

Feb 7 2024, 10:02 PM · Documentation, Support
werner triaged T6962: gpg lock issue on Alma Linux upgraded servers as Normal priority.
Feb 7 2024, 9:21 AM · Support, gnupg

Feb 1 2024

gc100 closed T6965: WKD fail: gpg/dimngr fails to retrieve public key as Resolved.

Fixed by changing server as noted above.

Feb 1 2024, 9:00 PM · Support, dirmngr, Bug Report
gc100 added a comment to T6965: WKD fail: gpg/dimngr fails to retrieve public key.

Thanks for all the help @gniibe.

Feb 1 2024, 8:59 PM · Support, dirmngr, Bug Report
gc100 added a comment to T6965: WKD fail: gpg/dimngr fails to retrieve public key.

It should not be removed as I believe it is required to be compliant:

Feb 1 2024, 5:22 PM · Support, dirmngr, Bug Report
kigikah added a comment to T6962: gpg lock issue on Alma Linux upgraded servers.
Feb 1 2024, 5:38 AM · Support, gnupg
gniibe added projects to T6965: WKD fail: gpg/dimngr fails to retrieve public key: dirmngr, Support.

I'm afraid that your particular configuration would cause the problem of the negotiation.

Feb 1 2024, 2:02 AM · Support, dirmngr, Bug Report

Jan 30 2024

ncssyedaf added a comment to T6962: gpg lock issue on Alma Linux upgraded servers.

Thanks! We will try this out and update you with the results.

Jan 30 2024, 2:12 PM · Support, gnupg
werner edited projects for T6962: gpg lock issue on Alma Linux upgraded servers, added: gnupg, Support; removed Bug Report.

Since 2.2.20 we had these items in the NEWS

Jan 30 2024, 11:04 AM · Support, gnupg

Jan 2 2024

werner placed T6865: Email will be sent encrypted after draft was saved in encrypted state although encryption is disabled up for grabs.
Jan 2 2024, 9:42 AM · Restricted Project, gpgol, Bug Report
werner edited projects for T6865: Email will be sent encrypted after draft was saved in encrypted state although encryption is disabled, added: gpgol; removed Too Old.
Jan 2 2024, 9:42 AM · Restricted Project, gpgol, Bug Report

Dec 27 2023

jh reopened T6865: Email will be sent encrypted after draft was saved in encrypted state although encryption is disabled as "Open".

i am not the original owner of this bug, but facing the same issue.

Dec 27 2023, 9:10 AM · Restricted Project, gpgol, Bug Report

Dec 22 2023

gniibe claimed T6843: after enable kdf-setup impossible change user/admin pin.
Dec 22 2023, 3:16 AM · gnupg22, scd, yubikey

Dec 21 2023

werner closed T6899: gpg does not recognize my smartcard reader as Resolved.

May be a still running daemon from another version or a a problem during the first install.

Dec 21 2023, 7:09 PM · Support

Dec 19 2023

Pluscrafter added a comment to T6899: gpg does not recognize my smartcard reader.

I made a clean install of the system and installed gnupg from sources. Now it works strangely.

Dec 19 2023, 4:26 PM · Support
werner added a comment to T6899: gpg does not recognize my smartcard reader.

Omnikey readers only work properly on Windows because the Windows driver uses proprietary extension to make it work. Better don't use them. In case you want to look at details, add

Dec 19 2023, 2:27 PM · Support
Pluscrafter updated the task description for T6899: gpg does not recognize my smartcard reader.
Dec 19 2023, 12:58 AM · Support

Dec 18 2023

Pluscrafter updated the task description for T6899: gpg does not recognize my smartcard reader.
Dec 18 2023, 10:26 PM · Support
Pluscrafter added a project to T6899: gpg does not recognize my smartcard reader: Support.
Dec 18 2023, 8:11 PM · Support
werner closed T6865: Email will be sent encrypted after draft was saved in encrypted state although encryption is disabled as Resolved.
Dec 18 2023, 6:05 PM · Restricted Project, gpgol, Bug Report
werner added projects to T6865: Email will be sent encrypted after draft was saved in encrypted state although encryption is disabled: Too Old, Support.

Assuming 4.1.0 means gpg4win - this version is too old. The user should update and re-open the bug with more details if it persists.

Dec 18 2023, 6:04 PM · Restricted Project, gpgol, Bug Report

Dec 12 2023

werner closed T6871: SmartCard stopped working in 2.4 as Resolved.
Dec 12 2023, 3:31 PM · gnupg, scd, Support, Documentation

Nov 28 2023

werner edited projects for T6843: after enable kdf-setup impossible change user/admin pin, added: Support; removed Bug Report.
Nov 28 2023, 1:25 PM · gnupg22, scd, yubikey

Nov 12 2023

ikloecker added a comment to T6811: gpgv: Read-only trustedkeys.kbx should not be compressed.

The same happens with a very recent 2.4:

$ gpgv --version
gpgv (GnuPG) 2.4.4-beta56
libgcrypt 1.11.0
Copyright (C) 2023 g10 Code GmbH
License GNU GPL-3.0-or-later <https://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Nov 12 2023, 6:16 PM · gnupg24 (gnupg-2.4.5), gnupg22, gpgv, Bug Report
werner edited projects for T6811: gpgv: Read-only trustedkeys.kbx should not be compressed, added: Support; removed Bug Report.

That version of gpg is too old that I will look at it.

Nov 12 2023, 1:19 PM · gnupg24 (gnupg-2.4.5), gnupg22, gpgv, Bug Report

Nov 2 2023

ciudadex added a comment to T6783: Import secret keys created in Kleopatra with Windows 11 to Ubuntu.

thanks for your reply
gpg -K
gpg: enabled debug flags: memstat
/home/usernet/.gnupg/pubring.kbx
uid [ absoluta ]
uid [ absoluta ]
ssb cv25519 2022-02-13 [E]
gpg -h
gpg (GnuPG) 2.2.4
libgcrypt 1.8.1
Copyright (C) 2017 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later https://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.

Nov 2 2023, 6:59 PM · Ubuntu, gnupg, Support
werner triaged T6783: Import secret keys created in Kleopatra with Windows 11 to Ubuntu as Normal priority.

It is a bit hard for us to decipher the Spanish diagnostics. Before we can try to help you please update to a deent version of gpg and libgcrypt. At least the version for Ubuntu is way too old; Libgcrypt is 5 years old, the current version of the lTS branch is 1.8.10. GnuPG is also 10 years old and in the mean time we have fixed several critical bugs; the current version of this legacy branch is 2.2.41! Note that Ubuntu might have fixed some bugs despit ethe version number - we just can't know.

Nov 2 2023, 8:33 AM · Ubuntu, gnupg, Support

Oct 6 2023

werner triaged T6723: GPG hangs if the provided TTY is invalid as Low priority.
Oct 6 2023, 11:28 AM · Info Needed, MacOS, pinentry, Support

Sep 30 2023

lukas.holenda added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Hi, thank you so much and sorry for delay.
This beta is working for us perfectly.

Sep 30 2023, 8:39 PM · MacOS, Support, gpg4win

Sep 21 2023

werner added a project to T6723: GPG hangs if the provided TTY is invalid: MacOS.
Sep 21 2023, 5:20 PM · Info Needed, MacOS, pinentry, Support
lukas.holenda added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Thank you very much, we will try it and let you know
Regards
Lukas

Sep 21 2023, 1:48 PM · MacOS, Support, gpg4win

Sep 20 2023

ericswpark added a comment to T6723: GPG hangs if the provided TTY is invalid.

I'm using the standard pinentry provided by Homebrew: https://formulae.brew.sh/formula/pinentry#default

Sep 20 2023, 2:51 PM · Info Needed, MacOS, pinentry, Support
werner added projects to T6723: GPG hangs if the provided TTY is invalid: Support, pinentry.

gpg -v -K does not require a pinentry. You can check this by adding debug-pinentry and log-file /some/file to the gpg-agent.conf - you should not see any pinentry invocation.

Sep 20 2023, 8:51 AM · Info Needed, MacOS, pinentry, Support

Sep 18 2023

aheinecke added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Please try the following beta: https://files.gpg4win.org/Beta/gpg4win-4.2.1-beta55/gpg4win-4.2.1-beta55.exe This should solve your problem. And if not you can now open the encrypted attachments with Kleopatra and it will show your mail.

Sep 18 2023, 12:07 PM · MacOS, Support, gpg4win

Sep 15 2023

lukas.holenda added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Ok and its possible to know, how long its should usually take to make new release ?
Can you tell me more about support contract or when i can find more information about it ?
Regards
Lukas

Sep 15 2023, 1:16 PM · MacOS, Support, gpg4win
werner added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

I guess you need to wait until we do a new release. If your company relies on this software it might be a good idea to enter into a support contract as other do.

Sep 15 2023, 11:26 AM · MacOS, Support, gpg4win
lukas.holenda reopened T6686: GPG4win exchange issue decrypt message from Macos GPGtools as "Open".

i dont get any responce, what is next step in this case.
Regards
Lukas

Sep 15 2023, 11:02 AM · MacOS, Support, gpg4win

Sep 12 2023

aheinecke merged T6714: you cannot be sure who encrypted this message as it is not signed into T6686: GPG4win exchange issue decrypt message from Macos GPGtools.
Sep 12 2023, 10:41 AM · MacOS, Support, gpg4win
aheinecke added a comment to T5152: PGP/MIME e-mails are not decrypted.

I am closing this, for now as this issue lacks actionable details, we would need an example mail or debug data. So my intent is just to close it and reopen if the issue still occurs with Gpg4win-4.2.1

Sep 12 2023, 8:36 AM · Support, gpgol, Bug Report
aheinecke closed T5152: PGP/MIME e-mails are not decrypted as Resolved.

Noticed this issue while searching for a different one.
I think this could be fixed with T6686 if it has not already been fixed by a previous change that relaxed the detection of the encrypted message part better.

Sep 12 2023, 8:36 AM · Support, gpgol, Bug Report

Sep 1 2023

aheinecke added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

So by we already have code to handle this problem, we had code for "No body but multipart/mixed" and your message was "empty body but multipart mixed" so I just needed to also check for an empty body and the code worked.

Sep 1 2023, 7:54 PM · MacOS, Support, gpg4win
aheinecke changed the status of T6686: GPG4win exchange issue decrypt message from Macos GPGtools from Duplicate to Resolved.

Ah damn, now that I closed this as a duplicate I found that we already have code to handle this problem.

Sep 1 2023, 7:51 PM · MacOS, Support, gpg4win
aheinecke merged task T6686: GPG4win exchange issue decrypt message from Macos GPGtools into T4026: GpgOL: Improve handling of mailman modified mails.
Sep 1 2023, 3:59 PM · MacOS, Support, gpg4win
aheinecke added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Well the message is content-type multipart/mixed. For GpgOL to investigate the mail it needs to be multipart/signed oder application/encrypted or application/pgp-encrypted. (and some other things) But multipart/mixed is something that we don't take a second look at because this means "unencrypted mail with attachments."

Sep 1 2023, 3:58 PM · MacOS, Support, gpg4win

Aug 29 2023

praiskup added a comment to T6689: Prolonging expiration date strips old signatures, confusing RPM.

Thank you for the response, @werner! (original reporter here)

Aug 29 2023, 2:40 PM · Support, gnupg
werner triaged T6689: Prolonging expiration date strips old signatures, confusing RPM as Normal priority.
Aug 29 2023, 1:40 PM · Support, gnupg
lukas.holenda added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

thank you, i send you test mail
Regards

Aug 29 2023, 10:16 AM · MacOS, Support, gpg4win
aheinecke added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

Hi, my suspicion with the different tenant is that some middleware of yours is inserting something like "DANGER this could not be Virus Scanned by your super secure and expensive middleware" which then results in the mail beeing multipart/mixed instead of pgp/encrypted in the MIME type. Could you ask your communication partner with the problem to send such a mail to you and with CC to "andre.heinecke@demo.gnupg.com

"

Aug 29 2023, 10:06 AM · MacOS, Support, gpg4win
lukas.holenda added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

I was trying to solve it with support, but it was not solved until today, this issue we are facing more thank like 2years.
I guess its need to be solved with more advanced support than classic one.
Regards

Aug 29 2023, 9:57 AM · MacOS, Support, gpg4win
werner triaged T6686: GPG4win exchange issue decrypt message from Macos GPGtools as Normal priority.
Aug 29 2023, 9:55 AM · MacOS, Support, gpg4win
werner edited projects for T6686: GPG4win exchange issue decrypt message from Macos GPGtools, added: Support, MacOS; removed Bug Report.

Looks more like a support question but feel free to create a sample message, encrypt it to info at gnupg.com (WKD) and attach that message to this report.

Aug 29 2023, 9:55 AM · MacOS, Support, gpg4win
werner closed T6687: "Can t encrypt/sign an empty massage." as Resolved.

This is a support requests. Please consult one of the mailing lists or the gpg4win forum. In case this turned out to actually be a bug, please feel free to reopen it.

Aug 29 2023, 9:52 AM · Support, gpg4win

Aug 9 2023

rabarber updated the task description for T6639: keytotpm doesn't appear to do anything.
Aug 9 2023, 9:16 PM · Support, TPM
werner closed T6640: PGP (kleopatra) checksum error importing some public keys! "checksum error / wrong keyring" as Resolved.

The data is indeed corrupt. Check with the sender of that key.
IF you look at the data you will soon notice that one line is longer than the others.

Aug 9 2023, 6:29 PM · Support

Aug 8 2023

werner closed T6639: keytotpm doesn't appear to do anything as Resolved.

Please ask on the gnupg mailing list for support. In case that turns out to be a real bug, please re-open this bug.

Aug 8 2023, 3:36 PM · Support, TPM

May 8 2023

yescallop added a comment to T5942: scdaemon is blocking system shutdown.

If it were the case, I think that graceful shutdown of the system would need to terminate the client of scdaemon at first.

May 8 2023, 3:13 AM · Support, scd, gpgagent
gniibe added a comment to T5942: scdaemon is blocking system shutdown.

The root cause might be that the "DEVINFO --watch" command causes ...

May 8 2023, 1:55 AM · Support, scd, gpgagent

May 7 2023

yescallop added a comment to T5942: scdaemon is blocking system shutdown.

I also experienced hang on shutdown with GPG 2.4.1 and bisecting reveals that the first bad commit is rG2ccbcfec121f.

May 7 2023, 7:51 PM · Support, scd, gpgagent

May 2 2023

werner added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.

The user tried to sneak in an ad link and he has thus been banned. Here is his probably AI generated comment for documentation:

May 2 2023, 12:54 PM · Support, Documentation

Mar 24 2023

werner closed T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch as Resolved.

Thanks for your follwup. Let me remark that it is sufficient to stop all gnupg processes (pkill gpg-agent) and then rename the ~/.gnupg to .gnupg-save-NNNN. This way you have a backup and gpg will create a new ~/.gnupg.

Mar 24 2023, 10:48 AM · Support, Documentation
werner closed T6422: --rfc4880 not working in Gpg4win 4.1.0? as Resolved.

OCB mode (i.e. packet 20) is only used if the keys announce it. Thus only after moving a (private) key from GnuPG to a non-GnuPG compatible implementation you will run into this problem. The compatibility options won't override the preference system.

Mar 24 2023, 9:14 AM · OpenPGP, Support, gnupg

Mar 15 2023

werner closed T6411: Signing Other PGP Keys Fails when Using a SmartCard as Invalid.
Mar 15 2023, 4:11 PM · Support
werner edited projects for T6411: Signing Other PGP Keys Fails when Using a SmartCard, added: Support; removed Bug Report.
Mar 15 2023, 9:46 AM · Support

Mar 3 2023

werner closed T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519) as Resolved.

Thanks for the description; this is good for documentation.

Mar 3 2023, 8:25 AM · Support, Documentation, OpenPGP, gnupg

Feb 22 2023

werner added a comment to T6383: GnuPG 2.4.0 not working with Yubikey NEO.

Ooops: You need to put

Feb 22 2023, 5:56 PM · Support
gbschenkel added a comment to T6383: GnuPG 2.4.0 not working with Yubikey NEO.

You need write access to the usb device (e.g. /dev/bus/usb/001/011) or you install pcscd and put "disable-ccid-driver" into scdaemon.conf.

Feb 22 2023, 2:39 PM · Support
gbschenkel added a comment to T6383: GnuPG 2.4.0 not working with Yubikey NEO.

Okay, gpg2 --card-status is accessible using sudo/su.
But I still don't know why bumping from 2.2.41 to 2.4.0 the use of pcsc-lite + ccid stopped work.

Feb 22 2023, 12:22 PM · Support
gbschenkel added a comment to T6383: GnuPG 2.4.0 not working with Yubikey NEO.

I can't access even trying using root.
pcsc-lite was already installed. I tried using disable-ccid-driver as advised but didn't help, scd.log don't even get written using this option.

Feb 22 2023, 12:05 PM · Support
werner closed T6383: GnuPG 2.4.0 not working with Yubikey NEO as Resolved.

You need write access to the usb device (e.g. /dev/bus/usb/001/011) or you install pcscd and put "disable-ccid-driver" into scdaemon.conf.

Feb 22 2023, 8:57 AM · Support

Feb 8 2023

gniibe reopened T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG. as "Open".

Sorry, I mistakenly closed this task. I reopen it.

Feb 8 2023, 2:45 AM · Support, gnupg, OpenPGP

Feb 7 2023

gniibe closed T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG. as Resolved.

Could it be the case that your implementation actually used those bits to calculate a public key?

Feb 7 2023, 11:39 AM · Support, gnupg, OpenPGP

Feb 3 2023

onickolay added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

Sorry for a bit late follow up. How do you calculate a public key? RNP's crypto backend, Botan, is calculating public key without taking in account bits which should be tweaked. I.e. both tweaked and non-tweaked secret keys would produce the same public key. The same is with decryption. Could it be the case that your implementation actually used those bits to calculate a public key?

Feb 3 2023, 12:39 PM · Support, gnupg, OpenPGP

Jan 24 2023

rohanbari added a comment to T6356: Trapped at "Your decision?" in an infinite loop on providing unwanted input.

The interaction goes back to "Your decision?" after you didn't answer "y/N" to the question of "Do you really...?".
What you are asked is: 1, 2, 3, 4, 5 or m.

Jan 24 2023, 3:59 PM · Support
werner closed T6356: Trapped at "Your decision?" in an infinite loop on providing unwanted input as Invalid.
Jan 24 2023, 1:52 PM · Support

Jan 18 2023

bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

So here is a redacted CLI-dump of the exact sequence I'm describing in my post. This is with untweaked keys and gpg 2.2.40 and a factory-reset yubikey.

Jan 18 2023, 6:30 PM · Support, gnupg, OpenPGP
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

So in case this was not clear... What I'm describing is very similar to the original description, but it is "inverted" - the untweaked key works flawlessly (import and decryption) except for keytocard. And the tweaked key can't be imported - either "Bad Secret Key" or asking for passphrase.

Jan 18 2023, 3:38 PM · Support, gnupg, OpenPGP
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

@onickolay Yes, I have. I have used --check-cv25519-bits and it said that it needs patching. I then did --fix-cv25519-bits and exported the key. Looking at the CV25519 private-key bytes produced by my code and by RNP, I confirmed that they did the exact same transformation.
When trying to re-import the exported key into gpg, I got the "Bad Secret Key" error again

Jan 18 2023, 3:27 PM · Support, gnupg, OpenPGP
onickolay added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

@bigmomma Just for a quick check - did you try to use RNP's CLI command --edit-key --fix-cv25519-bits, as it's not clear from the message?

Jan 18 2023, 3:17 PM · Support, gnupg, OpenPGP
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

Hi! I would like to chime in on this issue as I am having some weird problems with a CV25519 sub-key and after stumbling upon this thread, I think it is related to this.
Unfortunately, I can't post the key material here, because it is my actual encryption private-key.

Jan 18 2023, 3:12 PM · Support, gnupg, OpenPGP

Nov 28 2022

ikloecker closed T6289: Pinentry garbles international characters as Invalid.

Closing. Not a bug in pinentry. The user ID of the key is encoded incorrectly and pinentry just displays the incorrectly encoded user ID.

Nov 28 2022, 8:27 AM · gpg4win, Support

Nov 25 2022

ikloecker added a comment to T6289: Pinentry garbles international characters.

It's irrelevant whether you can trick the combination of gpg and PowerShell to show the wrong encoded user ID correctly. The user ID is still encoded wrongly and every standard-compliant implementation of OpenPGP will show garbage when displaying the user ID.

Nov 25 2022, 2:41 PM · gpg4win, Support