Feed Advanced Search

Thu, Jan 14

werner added projects to T5237: GPGOL loaded but doesn't open Mails in Outlook 2016: gpgol, gpg4win.
Thu, Jan 14, 1:39 PM · gpg4win, gpgol

Tue, Jan 12

werner added a comment to T4818: libgcrypt build failures on several platforms.

Note: The commit in master (1.9) is rCe0898d0628789414

Tue, Jan 12, 12:40 PM · Solaris, libgcrypt, Bug Report
werner added a comment to T4833: libgcrypt: bug in _gcry_poly1305_armv7_neon_init_ext.

The commit which fixes this is rC761a1a0d30

Tue, Jan 12, 12:29 PM · libgcrypt, Bug Report
werner added a project to T4505: SM, W32: GPGSM hangs up the GnuPG System: Restricted Project.
Tue, Jan 12, 12:18 PM · Restricted Project, kleopatra, gpgol, S/MIME, gpg4win, Windows
werner moved T5236: Gpgwin-3.1.15 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Tue, Jan 12, 11:05 AM · gpg4win, Release Info, Restricted Project
werner moved T4584: --quick-sign-key offers no way to override a current certification from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Tue, Jan 12, 11:05 AM · Restricted Project, gnupg (gpg22), Feature Request
werner committed rG93d5d7ea2a8b: tools: Add option --clock to watchgnupg (authored by werner).
tools: Add option --clock to watchgnupg
Tue, Jan 12, 9:31 AM
werner raised the priority of T4659: Release Pinentry-1.1.1 from Normal to High.
Tue, Jan 12, 9:08 AM · pinentry, Release Info
werner added a project to T4584: --quick-sign-key offers no way to override a current certification: Restricted Project.
Tue, Jan 12, 8:05 AM · Restricted Project, gnupg (gpg22), Feature Request
werner raised the priority of T4584: --quick-sign-key offers no way to override a current certification from Normal to High.
Tue, Jan 12, 8:04 AM · Restricted Project, gnupg (gpg22), Feature Request

Mon, Jan 11

werner created T5235: Delays in dirmngr http connections on Windows.
Mon, Jan 11, 8:52 PM · dirmngr, ntbtls, Windows, gnupg (gpg22)
werner closed T5234: Release GnuPG 2.2.27 as Resolved.
Mon, Jan 11, 8:48 PM · Release Info, gnupg (gpg22)
werner closed T5221: gpgconf: auto-key-import and include-key-block dont have proper values as Resolved.
Mon, Jan 11, 8:36 PM · gnupg
werner closed T5230: Delete file failure during CRL update as Resolved.
Mon, Jan 11, 8:35 PM · gnupg (gpg22)
werner triaged T5219: scd: Generating CSR for SigG NetKey card key fails as Low priority.

Lowered priority because in reality it is not possible to get a certificate for an arbitrary SigG key on the card. Only accredited CAs may issue certs and they want to keep full control over the key generation.

Mon, Jan 11, 8:35 PM · scd
werner committed rD7da27041da50: swdb: GnuPG 2.2.27 (authored by werner).
swdb: GnuPG 2.2.27
Mon, Jan 11, 8:06 PM
werner committed rG2ba2b7644ead: Post release updates (authored by werner).
Post release updates
Mon, Jan 11, 7:56 PM
werner committed rG0c103cde0009: Release 2.2.27 (authored by werner).
Release 2.2.27
Mon, Jan 11, 7:56 PM
werner committed rG8df4f519ec73: po: Auto updates (authored by werner).
po: Auto updates
Mon, Jan 11, 7:56 PM
werner committed rG4c53b2b86755: Update copyright notices. (authored by werner).
Update copyright notices.
Mon, Jan 11, 7:56 PM
werner updated the task description for T4897: Release GnuPG 2.2.21.
Mon, Jan 11, 6:54 PM · gnupg (gpg22), Release Info
werner updated the task description for T5030: Release GnuPG 2.2.22 .
Mon, Jan 11, 6:54 PM · gnupg (gpg22), Release Info
werner updated the task description for T5045: Release GnuPG 2.2.23.
Mon, Jan 11, 6:53 PM · gnupg, Release Info
werner updated the task description for T5052: Release GnuPG 2.2.24.
Mon, Jan 11, 6:52 PM · Release Info, gnupg (gpg22)
werner updated the task description for T5140: Release GnuPG 2.2.25.
Mon, Jan 11, 6:52 PM · gnupg (gpg22), Release Info
werner updated the task description for T5153: Release GnuPG 2.2.26.
Mon, Jan 11, 6:51 PM · Release Info, gnupg (gpg22)
werner updated the task description for T5234: Release GnuPG 2.2.27.
Mon, Jan 11, 6:50 PM · Release Info, gnupg (gpg22)
werner set Version to 2.2.27 on T5234: Release GnuPG 2.2.27.
Mon, Jan 11, 6:49 PM · Release Info, gnupg (gpg22)
werner created T5234: Release GnuPG 2.2.27.
Mon, Jan 11, 6:29 PM · Release Info, gnupg (gpg22)
werner committed rG3901c1a8c59a: gpg,w32: Fix gnupg_remove. (authored by werner).
gpg,w32: Fix gnupg_remove.
Mon, Jan 11, 2:54 PM
werner added a commit to T5230: Delete file failure during CRL update: rG3901c1a8c59a: gpg,w32: Fix gnupg_remove..
Mon, Jan 11, 2:54 PM · gnupg (gpg22)
werner committed rGb6967d319129: gpg,w32: Fix gnupg_remove. (authored by werner).
gpg,w32: Fix gnupg_remove.
Mon, Jan 11, 2:24 PM
werner added a commit to T5230: Delete file failure during CRL update: rGb6967d319129: gpg,w32: Fix gnupg_remove..
Mon, Jan 11, 2:24 PM · gnupg (gpg22)
werner created T5230: Delete file failure during CRL update.
Mon, Jan 11, 2:16 PM · gnupg (gpg22)

Fri, Jan 8

werner committed rGcf0f67199f42: speedo: Do not enable build timestamps. (authored by werner).
speedo: Do not enable build timestamps.
Fri, Jan 8, 8:11 PM
werner added a comment to T5226: gpgtar: Windows decrypting a gpgtar archive with 8bit filename leads to wrong name.

I can't replicate this on the command line. Anyway option -T is only valid with --create. Further the archive format is specified to carry utf8 filenames; thus --utf8-strings won't have an effect on --extract. Are you sure that Kleopatra runs

gpgtar --create --utf-strings -T -

and you pass utf-8 encoded filenames on stdin?

Fri, Jan 8, 8:06 PM · gpgtar
werner committed rM13221933ed4f: Post release updates (authored by werner).
Post release updates
Fri, Jan 8, 7:21 PM
werner committed rMbb9880778fb1: Release 1.15.1 (authored by werner).
Release 1.15.1
Fri, Jan 8, 7:21 PM
werner committed rM133050b3fa28: Make distcheck make target a bit more reliable. (authored by werner).
Make distcheck make target a bit more reliable.
Fri, Jan 8, 7:21 PM
werner committed rW05b3694b0aec: The removed patch was for gpgme 1.15.0 (authored by werner).
The removed patch was for gpgme 1.15.0
Fri, Jan 8, 7:18 PM
werner committed rW64d05add9713: Remove obsolete patch for gpgme 1.15.9 (authored by werner).
Remove obsolete patch for gpgme 1.15.9
Fri, Jan 8, 7:16 PM
werner committed rWfb50d832a2e4: Update GPGME to 1.15.1 (authored by werner).
Update GPGME to 1.15.1
Fri, Jan 8, 7:12 PM
werner committed rD0b7f9e7a6898: swdb: gpgme 1.15.1 (authored by werner).
swdb: gpgme 1.15.1
Fri, Jan 8, 7:07 PM
werner updated the task description for T5131: Release GPGME 1.15.0.
Fri, Jan 8, 5:15 PM · gpgme, Release Info
werner created T5225: Release GPGME 1.15.1.
Fri, Jan 8, 4:39 PM · Release Info, gpgme
werner added a comment to T5153: Release GnuPG 2.2.26.

If you encounter this error message when running gpgconf --list-options gpg:

gpgconf: Option gpgconf-gpg.conf, needed by backend GnuPG, is not absolute

please simply create an empty file /etc/gnupg/gpg.conf or wherever your global configuration files are expected ("gpgconf --list-dirs sysconfdir" shows it). Bug fixed with commit rG9f37d3e6f307a9

Fri, Jan 8, 2:23 PM · Release Info, gnupg (gpg22)
werner committed rG9f37d3e6f307: gpg: Fix --gpgconf-list case with no conf files at all. (authored by werner).
gpg: Fix --gpgconf-list case with no conf files at all.
Fri, Jan 8, 2:13 PM
werner closed T5218: keytocard does not remove secret key as documented as Resolved.

Thanks for your answers. If you see another problem with kleopatra, please test the latest Kleopatra version which we will release the next days.

Fri, Jan 8, 10:01 AM · Windows, gnupg (gpg22)
werner closed T5167: GnuPG 2.25 still have problems related to Yubikey NEO. as Resolved.
Fri, Jan 8, 9:58 AM · gnupg (gpg22), yubikey, ssh, scd, Bug Report
werner closed T4447: Fix addition of new GPG keys to LDAP as Resolved.

The code has been reworked to also support the updated schema which also stores the fingerprints and a parsed down mail address. See gnupg/doc/ldap/ . These changes are in master and 2.2.26. Sorry for taking so long to fix that.

Fri, Jan 8, 9:56 AM · gnupg (gpg23), patch, LDAP, dirmngr, Bug Report
werner added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

I agree to the sexp change - but it should not be backported to 1.8

Fri, Jan 8, 9:43 AM · libgcrypt

Thu, Jan 7

werner committed rE165dbac7d556: yat2m: New option --html and some basic html rendering. (authored by werner).
yat2m: New option --html and some basic html rendering.
Thu, Jan 7, 10:09 PM
werner added a comment to T5218: keytocard does not remove secret key as documented.

The listing shows that the private keys are stored on a card ("sec>", "ssb>"). Why do you think you can still export more than a stub key? If I export a test key (just the primary key in this case) and run "gpg --show-keys" on the exported file I get the expected "sec>" marker. Looking with --list-packets at it we get:

Thu, Jan 7, 6:30 PM · Windows, gnupg (gpg22)
werner moved T4873: Enable AES GCM in FIPS mode from For 1.9 to FIPS on the libgcrypt board.
Thu, Jan 7, 5:59 PM · libgcrypt, Feature Request
werner committed rD434ee46ce41c: swdb: Release Scute 1.7.0 (authored by werner).
swdb: Release Scute 1.7.0
Thu, Jan 7, 4:09 PM
werner closed T5224: Release Scute 1.7.0 as Resolved.
Thu, Jan 7, 4:00 PM · Release Info, scute
werner updated the task description for T5224: Release Scute 1.7.0.
Thu, Jan 7, 4:00 PM · Release Info, scute
werner committed rSebfb69d8d7b4: Post release updates (authored by werner).
Post release updates
Thu, Jan 7, 3:56 PM
werner committed rS2488e12aa478: Release 1.7.0 (authored by werner).
Release 1.7.0
Thu, Jan 7, 3:56 PM
werner committed rS9961bd1e094f: Minor fixes for a release (authored by werner).
Minor fixes for a release
Thu, Jan 7, 3:56 PM
werner created T5224: Release Scute 1.7.0.
Thu, Jan 7, 3:20 PM · Release Info, scute
werner added a comment to T5221: gpgconf: auto-key-import and include-key-block dont have proper values.

Description and translation domain were swapped in 2.2.

Thu, Jan 7, 1:28 PM · gnupg
werner committed rGff30fcd3dc78: gpgconf: Fix description of two new options. (authored by werner).
gpgconf: Fix description of two new options.
Thu, Jan 7, 1:24 PM
werner added a commit to T5221: gpgconf: auto-key-import and include-key-block dont have proper values: rGff30fcd3dc78: gpgconf: Fix description of two new options..
Thu, Jan 7, 1:24 PM · gnupg
werner added a comment to T5218: keytocard does not remove secret key as documented.

On Thu, 7 Jan 2021 09:56, bernhard (Bernhard Reiter) said:

Thu, Jan 7, 1:20 PM · Windows, gnupg (gpg22)
werner added a comment to T5219: scd: Generating CSR for SigG NetKey card key fails.

We need to switch to the SigG application. Shall I look at it?

Thu, Jan 7, 12:04 PM · scd
werner added a member for libgcrypt: werner.
Thu, Jan 7, 11:44 AM
werner moved T4951: Support point compression in Libgcrypt from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:42 AM · Feature Request, libgcrypt
werner moved T5195: Incorrect HWCAP2 check for AArch32 from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:42 AM · libgcrypt, Bug Report
werner added a comment to T5195: Incorrect HWCAP2 check for AArch32.

Do we need to backport to 1.8?

Thu, Jan 7, 11:42 AM · libgcrypt, Bug Report
werner moved T5182: libgcrypt self tests for FIPS 140 from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:41 AM · libgcrypt
werner moved T4293: Add dedicated X25519 function to Libcgrypt from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:40 AM · Testing, libgcrypt
werner moved T4873: Enable AES GCM in FIPS mode from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:40 AM · libgcrypt, Feature Request
werner moved T4294: Release Libgcrypt 1.9.0 from Backlog to For 1.9 on the libgcrypt board.
Thu, Jan 7, 11:40 AM · Restricted Project, Release Info, libgcrypt
werner added a comment to T4964: ecc: Discrepancy of handling MPI for the interpretation of signed and unsigned.

Do we really need this for 1.9?

Thu, Jan 7, 11:33 AM · libgcrypt
werner claimed T4926: Add API to map a curve name to its canonical OID..
Thu, Jan 7, 11:30 AM · Feature Request, libgcrypt
werner added a comment to T4951: Support point compression in Libgcrypt.

What is the state of this bug? Reading is implemented - do we really need writing (maybe to support certain smartcards)?

Thu, Jan 7, 11:29 AM · Feature Request, libgcrypt
werner closed T4914: libgcrypt ECC regression for the use case in GNUNET as Resolved.
Thu, Jan 7, 11:25 AM · Testing, libgcrypt
werner edited projects for T4822: mlock requires privilege, added: FAQ; removed Bug Report.

It is possible to disable the mlock thingy and if that is not wanted the application should be modified to be suid(root) during Libgcrypt initialization - this is actually how we handle this in GnuPG. Or maybe I don't understand the bug described here. It seems to be more of a support question.

Thu, Jan 7, 11:22 AM · FAQ, Solaris, libgcrypt
werner closed T4499: Asan finding in libgcrypt as Wontfix.

For security and auditing reasons a Libgcrypt SO may not be "unloaded".

Thu, Jan 7, 11:16 AM · libgcrypt
werner added a subtask for T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297): T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452).
Thu, Jan 7, 11:04 AM · Feature Request, libgcrypt
werner added a parent task for T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452): T4486: Add AEAD mode AES-SIV to libgcrypt (RFC 5297).
Thu, Jan 7, 11:04 AM · Feature Request, libgcrypt
werner closed T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error as Wontfix.
Thu, Jan 7, 11:02 AM · Legacy OS, Fedora, libgcrypt, Bug Report
werner set the color for Legacy OS to Pink.
Thu, Jan 7, 11:02 AM
werner changed the status of T4293: Add dedicated X25519 function to Libcgrypt from Testing to Open.

gcry_ecc_get_algo_keylen has been added with commit a658c9ccc2c741f40b0b5cdbcd184cfb9a841d17 but documentation is missing.

Thu, Jan 7, 10:58 AM · Testing, libgcrypt
werner closed T4274: Fail selftests when checksum file is missing in FIPS mode only as Resolved.
Thu, Jan 7, 10:52 AM · Testing, libgcrypt, Bug Report
werner added a comment to T5218: keytocard does not remove secret key as documented.

Please describe exactly what you did so that we can replicate this.

Thu, Jan 7, 10:04 AM · Windows, gnupg (gpg22)
werner committed rCb66dba37b4ee: doc: Add missing OIDs to the list of supported curves (authored by werner).
doc: Add missing OIDs to the list of supported curves
Thu, Jan 7, 9:55 AM
werner added a commit to T3220: Missing curve documentation: rCb66dba37b4ee: doc: Add missing OIDs to the list of supported curves.
Thu, Jan 7, 9:55 AM · patch, libgcrypt, Bug Report
werner closed T3220: Missing curve documentation as Resolved.

Thanks. I added the OIDs and the missing curves. To go into 1.9

Thu, Jan 7, 9:54 AM · patch, libgcrypt, Bug Report
werner lowered the priority of T1303: Please support GCRYSEXP_FMT_BASE64 from Normal to Wishlist.
Thu, Jan 7, 9:14 AM · Feature Request, libgcrypt

Wed, Jan 6

werner added a comment to T5215: gnugp1: Fix build errors with gcc-10.

Take care: gpg is also used on platforms with proprietary compilers which don't support -f options. Thus you need to limit this to gcc.

Wed, Jan 6, 4:03 PM · gnupg (gpg14), patch, Bug Report

Tue, Jan 5

werner added a comment to T3505: Port GPGME's Python bindings to Windows.

The C++, CL, Javascript and QT Bindings are all written by hand.

Tue, Jan 5, 4:06 PM · Feature Request, gpgme, Python
werner committed rEa235d43ccc2e: doc: Add a description for GPG_ERR_USE_CONDITIONS. (authored by werner).
doc: Add a description for GPG_ERR_USE_CONDITIONS.
Tue, Jan 5, 3:51 PM
werner reassigned T5184: scd: Generating CSR for NetKey card key fails from werner to ikloecker.

It seems you have a pretty good understanding and also test cases at hand. May I ask you to apply the suggested pacthes to master?

Tue, Jan 5, 11:08 AM · scd
werner lowered the priority of T3505: Port GPGME's Python bindings to Windows from High to Normal.

Given all the resources we had put on this Python bindings I'd suggest to bite the bullet and replace Swig by handcrafted bindings. More work but we do it for the other bindings as well.

Tue, Jan 5, 10:59 AM · Feature Request, gpgme, Python
werner lowered the priority of T4571: Outlook sometimes crashes when activating encrypted mail with (partial) non-encrypted appendix from High to Low.

I'd suggest to first try the current version to see whether the bug has been solved.

Tue, Jan 5, 10:56 AM · gpgol, Bug Report, gpg4win
werner lowered the priority of T4695: Remove SERIALNO as an identifier to select keys from High to Normal.

I think we can close this one, right?

Tue, Jan 5, 10:54 AM · Testing, Feature Request, gnupg
werner lowered the priority of T4694: manage first-party attestations from High to Low.

Meanwhile there are simpler ideas and code on how to do only authenticated uploads. Thus lowering the prio.

Tue, Jan 5, 10:41 AM · Keyserver, Feature Request
werner closed T5103: GPG4Win Executes through Personal (having admin rights ) account only as Invalid.
Tue, Jan 5, 10:38 AM · Support, gpg4win