Page MenuHome GnuPG
Feed Advanced Search

Yesterday

werner added a member for g10code: bad.
Mon, Jan 17, 8:20 PM
werner added a member for Contributor: bad.
Mon, Jan 17, 8:19 PM
werner closed T5783: All s2k hardenings silently ignored when exporting private keys as Resolved.

Sending a private key with just the local protection is not a good idea. It is better to export the key and then send it in an encrypted mail - for example in symmetric mode with a strong password.

Mon, Jan 17, 10:48 AM · Not A Bug, gpgagent, OpenPGP, gpg4win, gnupg
werner closed T5784: Prioritization of weak Brainpool-Curves, when de-vs aka VS-NfD mode is activated (compliance de-vs) as Resolved.

Please no holy wars on the type of curves. NIST as its opinon, Europe has its opinion, DJB has of course a different opinion. Please use the the cryptography ML for such political/technical discussions.

Mon, Jan 17, 10:43 AM · Not A Bug, gpg4win, gnupg
werner changed the edit policy for T5783: All s2k hardenings silently ignored when exporting private keys.
Mon, Jan 17, 10:39 AM · Not A Bug, gpgagent, OpenPGP, gpg4win, gnupg
werner changed the edit policy for T5784: Prioritization of weak Brainpool-Curves, when de-vs aka VS-NfD mode is activated (compliance de-vs).
Mon, Jan 17, 10:36 AM · Not A Bug, gpg4win, gnupg
werner added a project to T5782: Smartcard unusable secret key until used via command line: kleopatra.
Mon, Jan 17, 7:45 AM · kleopatra, Bug Report, gpg4win
werner is attending E906: Weekly Standup.
Mon, Jan 17, 7:43 AM

Fri, Jan 14

werner triaged T5781: Add tooltip to Kleo's advanced key generation dialog as Normal priority.
Fri, Jan 14, 12:07 PM · Unknown Object (Project), Feature Request, kleopatra

Wed, Jan 12

werner claimed T5718: Provide list of supported/compliant key algorithms.
Wed, Jan 12, 8:40 PM · gnupg (gpg23), Feature Request
werner added a comment to T5718: Provide list of supported/compliant key algorithms.

No, these are simply the technically available algorithms. I'll see what I can do.

Wed, Jan 12, 8:40 PM · gnupg (gpg23), Feature Request
werner committed rGf16c535eee91: gpgconf: Add command aliases -L -K -R. (authored by werner).
gpgconf: Add command aliases -L -K -R.
Wed, Jan 12, 8:32 PM
werner committed rGec4a1cffb865: gpgconf: Add command aliases -L -K -R. (authored by werner).
gpgconf: Add command aliases -L -K -R.
Wed, Jan 12, 8:29 PM
werner triaged T5772: pinentry-mac: PIN not escaped when using quality bar as Normal priority.

I don't know about pinentry-mac but it seems to be another name for
one our our regular pinentry variants.

Wed, Jan 12, 3:23 PM · pinentry, Bug Report
werner closed T5773: Encrypt file extension as pgp as Resolved.

Rename the file and you are done.

Wed, Jan 12, 3:06 PM · Support
werner committed rG96db487a4da5: common,w32: Improve HKCU->HKLM fallback (authored by werner).
common,w32: Improve HKCU->HKLM fallback
Wed, Jan 12, 2:49 PM
werner added a comment to T5742: Apparent regressions between 2.2.32 and 2.2.33 of GnuPG.

Thanks for diving into the history of that code.

Wed, Jan 12, 8:55 AM · Testing, Bug Report, gnupg (gpg23)
werner committed rW6d1fedf5ce14: web: Add missing news entries (authored by werner).
web: Add missing news entries
Wed, Jan 12, 8:54 AM

Tue, Jan 11

werner committed rD2222a2835941: blog: Fix last blog to make clear that we are talking about OS software. (authored by werner).
blog: Fix last blog to make clear that we are talking about OS software.
Tue, Jan 11, 11:48 AM
werner moved T5691: Release libgcrypt 1.10.0 from Backlog to Next on the FIPS board.
Tue, Jan 11, 11:06 AM · FIPS, Release Info, libgcrypt
werner moved T5759: Rename rndlinux module to rndoldlinux from Next to Done on the FIPS board.
Tue, Jan 11, 11:06 AM · Testing, libgcrypt, FIPS
werner moved T5747: Provide a way to request non-FIPS service in FIPS mode from Next to Done on the FIPS board.
Tue, Jan 11, 11:06 AM · Testing, Feature Request, FIPS, libgcrypt
werner moved T5600: Provide module name/version API for FIPS 140-3 from Next to Done on the FIPS board.
Tue, Jan 11, 11:05 AM · libgcrypt, FIPS, Bug Report
werner added a comment to T5512: Implement service indicators.

Yes, we should introduce an INDICATOR_KDF thing.

Tue, Jan 11, 10:57 AM · Testing, Feature Request, FIPS, libgcrypt
werner triaged T5769: fix typo in autogen.sh as Low priority.

The primary version of that script is in libgpg-error. Thus it needs to be fixed therefirst.

Tue, Jan 11, 10:41 AM · Documentation, gpgrt

Mon, Jan 10

werner added projects to T5764: Broken umlauts: gnupg (gpg23), i18n.
Mon, Jan 10, 6:17 PM · i18n, gnupg (gpg23), Bug Report, gpg4win
werner added a comment to T5764: Broken umlauts.

We use GetConsoleOutputCP but fallback to GetACP if the former fails. For some reasons one of the functions seems to return 437.

Mon, Jan 10, 6:16 PM · i18n, gnupg (gpg23), Bug Report, gpg4win
werner added a project to T5765: gnupg2 weird memory fault on NetBSD Loongson/mips64el N32: MIPS.

Given that you are already using libgcrypt 1.9, can you please try gnupg 2.3.4.

Mon, Jan 10, 6:04 PM · MIPS, Bug Report
werner closed T5767: scdaemon gets stuck on smartcard access as Resolved.

That is annoying enough that we should do a new release. I close this bug, though.

Mon, Jan 10, 6:00 PM · Bug Report, gpg4win
werner created MIPS.
Mon, Jan 10, 2:17 PM
werner committed rGbf4cf04a54bb: gpgtar: List and extract using extended headers. (authored by werner).
gpgtar: List and extract using extended headers.
Mon, Jan 10, 9:29 AM
werner committed rGec69ceab2615: gpgtar: Create extended header for long file names (authored by werner).
gpgtar: Create extended header for long file names
Mon, Jan 10, 9:29 AM
werner changed the status of T5751: Please remove pgp.surf.nl from default dirmngr config from Open to Testing.
Mon, Jan 10, 9:20 AM · dirmngr, Keyserver
werner added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

For the next release I'll change the gnupg.net mappings to use the Ubuntu server also for non-TLS connections.

Mon, Jan 10, 9:20 AM · dirmngr, Keyserver
werner committed rGd445e1936526: dirmngr: Map all gnupg.net addresses to the Ubuntu keyserver. (authored by werner).
dirmngr: Map all gnupg.net addresses to the Ubuntu keyserver.
Mon, Jan 10, 9:17 AM

Sun, Jan 9

werner committed rG3a1c556b2c3a: gpgtar: Create extended header for long file names (authored by werner).
gpgtar: Create extended header for long file names
Sun, Jan 9, 7:09 PM
werner committed rG99a8b1f13831: gpgtar: List and extract using extended headers. (authored by werner).
gpgtar: List and extract using extended headers.
Sun, Jan 9, 7:09 PM
werner closed T5734: web,libgcrypt: Publish our stance what kind of attacks are **not** under our scope as Resolved.
Sun, Jan 9, 6:55 PM · www.gnupg.org, libgcrypt
werner triaged T5763: gpgme-json missing as Normal priority.
Sun, Jan 9, 6:54 PM · Info Needed, Bug Report, gpg4win

Sat, Jan 8

werner added a comment to T5760: Kleopatra hangs loading certificate cache on Windows 11.

See T5758. The workaround is not to set a reader-port.

Sat, Jan 8, 8:24 PM · Bug Report, gpg4win
werner triaged T5761: Libgcrypt: salt-length for RSA-PSS is not documented as Normal priority.
Sat, Jan 8, 8:20 PM · Bug Report, Documentation, libgcrypt

Wed, Jan 5

werner triaged T5747: Provide a way to request non-FIPS service in FIPS mode as Normal priority.
Wed, Jan 5, 11:50 AM · Testing, Feature Request, FIPS, libgcrypt
werner triaged T5754: gpgtar needs to support longer filenames. as High priority.
Wed, Jan 5, 11:49 AM · gnupg (gpg22), gpgtar

Tue, Jan 4

werner changed the edit policy for Distributions.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Artwork.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Press Review.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Feedback.
Tue, Jan 4, 2:42 PM
werner changed the Can Use Application policy for application Phriction from Administrators to Public (No Login Required).
Tue, Jan 4, 2:40 PM
werner changed the edit policy for Wiki Home.
Tue, Jan 4, 2:39 PM

Mon, Jan 3

werner committed rG4d52ba943127: doc: Fix the title of the man pages to GnuPG 2.3 (authored by werner).
doc: Fix the title of the man pages to GnuPG 2.3
Mon, Jan 3, 12:21 PM
werner committed rGe83692317573: po: Fix German translation (authored by werner).
po: Fix German translation
Mon, Jan 3, 12:21 PM
werner committed rGec311425cacb: doc: Typo fixes. (authored by werner).
doc: Typo fixes.
Mon, Jan 3, 12:21 PM
werner created T5754: gpgtar needs to support longer filenames..
Mon, Jan 3, 10:25 AM · gnupg (gpg22), gpgtar
werner closed T5226: gpgtar: Windows decrypting a gpgtar archive with 8bit filename leads to wrong name as Resolved.

We have full Unicode support on the command line since 2.2.28 (2021-06-10)

Mon, Jan 3, 10:23 AM · gpgtar
werner committed rWbd8757e83af5: appimage: Use env(1) to start with parameters. (authored by werner).
appimage: Use env(1) to start with parameters.
Mon, Jan 3, 10:15 AM
werner committed rDa2504c94dccf: blog: s/Greenbone/GreenShield/ (authored by werner).
blog: s/Greenbone/GreenShield/
Mon, Jan 3, 9:19 AM
werner is attending E903: Weekly Standup.
Mon, Jan 3, 9:09 AM

Sun, Jan 2

werner committed rDda5b32d886fc: blog: A new Future for GnuPG (authored by werner).
blog: A new Future for GnuPG
Sun, Jan 2, 8:23 PM

Thu, Dec 30

werner changed the status of T5732: Backport option reading in gpgconf to 2.2 from Open to Testing.

Backport done but diligent testing is required.

Thu, Dec 30, 10:51 AM · Unknown Object (Project), Bug Report, kleopatra, backport, gnupg (gpg22)
werner committed rGc4153f7021af: build: Fixes recent commits to still build with gpgrt 1.27. (authored by werner).
build: Fixes recent commits to still build with gpgrt 1.27.
Thu, Dec 30, 10:48 AM
werner committed rGc69c51bce0f0: gpgconf: Do not list ignored options and mark forced options as r/o. (authored by werner).
gpgconf: Do not list ignored options and mark forced options as r/o.
Thu, Dec 30, 10:29 AM
werner committed rG42785d7c8a52: gpgconf: Do not list ignored options and mark forced options as r/o. (authored by werner).
gpgconf: Do not list ignored options and mark forced options as r/o.
Thu, Dec 30, 10:29 AM
werner committed rGbf284fdf22f4: dirmngr: Re-group the options in the --help output. (authored by werner).
dirmngr: Re-group the options in the --help output.
Thu, Dec 30, 10:29 AM
werner committed rG5fb71a8e039c: gpgsm: Re-group the options in the --help output. (authored by werner).
gpgsm: Re-group the options in the --help output.
Thu, Dec 30, 10:28 AM
werner committed rGf7bde071ccc8: gpg: Re-group the options in the --help output. (authored by werner).
gpg: Re-group the options in the --help output.
Thu, Dec 30, 10:28 AM
werner committed rG7f9791e16789: scd: Re-group the options in the --help output. (authored by werner).
scd: Re-group the options in the --help output.
Thu, Dec 30, 10:28 AM
werner committed rG593402711523: gpgconf: Take care of --homedir when reading/updating options. (authored by werner).
gpgconf: Take care of --homedir when reading/updating options.
Thu, Dec 30, 10:28 AM
werner committed rG7e535503a9c6: agent: Re-group the options in the --help output. (authored by werner).
agent: Re-group the options in the --help output.
Thu, Dec 30, 10:28 AM
werner committed rGf0d034ebf4fc: common: New function xreallocarray (authored by werner).
common: New function xreallocarray
Thu, Dec 30, 10:28 AM
werner committed rG7a3a1ef37071: gpgconf: Rewrite the gpgconf-comp module. (authored by werner).
gpgconf: Rewrite the gpgconf-comp module.
Thu, Dec 30, 10:28 AM
werner committed rG7397872445d6: gpgconf: Support reading global options (part 1). (authored by werner).
gpgconf: Support reading global options (part 1).
Thu, Dec 30, 10:28 AM
werner committed rG5f890f417f13: gpgconf: Support reading global options (part 2). (authored by werner).
gpgconf: Support reading global options (part 2).
Thu, Dec 30, 10:28 AM

Thu, Dec 23

werner closed T5744: Issue with connecting to GPG server as Resolved.

The debug log was from gpg and not from dirmngr and thus it is not helpful. I also guess that an older dirmngr was still running, because the LE bug has been fixed in 2.3.4.

Thu, Dec 23, 5:31 PM · Bug Report, gpg4win
werner committed rD7104abaf6f91: faq: Fix a link (authored by werner).
faq: Fix a link
Thu, Dec 23, 9:44 AM
werner triaged T5749: Ed25519: Signature (R,S), where S=0 is possible for EdDSA as Low priority.

The odds for this case are infinitesimal so this should not have high priority. I consider this only a code-is-as-specified thing.

Thu, Dec 23, 8:50 AM · gnupg

Wed, Dec 22

werner added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

The problem is just that there are not that much keyservers left and thus I added those running by large organisations. I really don't want to overload your servers. I would also trust nlnet more than canoncial which is why I started with them.
Its all a mess. Maybe no keyserver should be the default.

Wed, Dec 22, 7:54 PM · dirmngr, Keyserver
werner added a project to T5750: GpgOL links to an FSF page for "Unsicher GpgOL": Unknown Object (Project).
Wed, Dec 22, 1:42 PM · Unknown Object (Project), Feature Request, gpgol
werner triaged T5750: GpgOL links to an FSF page for "Unsicher GpgOL" as High priority.
Wed, Dec 22, 1:42 PM · Unknown Object (Project), Feature Request, gpgol
werner closed T5744: Issue with connecting to GPG server as Resolved.

Please see https://gnupg.org

Wed, Dec 22, 7:26 AM · Bug Report, gpg4win

Tue, Dec 21

werner added a comment to T5747: Provide a way to request non-FIPS service in FIPS mode.

FWIW, We have a similar mechanism for the secure memory

Tue, Dec 21, 6:12 PM · Testing, Feature Request, FIPS, libgcrypt
werner closed T5746: Pinetry always loses focus after popping up under Windows as Resolved.

That is a security feature of WIndows. We can't do much about it except for bad hacks. Checkout Kleopatra to see how you can improve this.

Tue, Dec 21, 6:11 PM · Not A Bug, pinentry
werner edited projects for T5742: Apparent regressions between 2.2.32 and 2.2.33 of GnuPG, added: gnupg (gpg23), Bug Report; removed gnupg (gpg22).

Things are not that easy. I actually introduced a bug in 2.3.4. Here is a comment from my working copy:

Tue, Dec 21, 11:22 AM · Testing, Bug Report, gnupg (gpg23)
werner added a comment to T5744: Issue with connecting to GPG server.

For support please use the mailing list and not the bug tracker.

Tue, Dec 21, 10:26 AM · Bug Report, gpg4win
werner added a comment to T5700: libgcrypt: bulk AES-GCM acceleration for ppc64le.

Seen. @jukivili can you please add it to the AUTHORS file?

Tue, Dec 21, 10:13 AM · patch, ppc, libgcrypt, Feature Request

Mon, Dec 20

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q4/000468.html on T5654: Release GnuPG 2.3.4.
Mon, Dec 20, 11:29 PM · gnupg (gpg23), Release Info
werner committed rD989d56412afa: swdb: GnuPG 2.3.4 (authored by werner).
swdb: GnuPG 2.3.4
Mon, Dec 20, 11:14 PM
werner closed T5654: Release GnuPG 2.3.4 as Resolved.
Mon, Dec 20, 11:09 PM · gnupg (gpg23), Release Info
werner committed rG69195ab2550e: po: auto update (authored by werner).
po: auto update
Mon, Dec 20, 11:03 PM
werner committed rG02b59e282eb3: Post release updates. (authored by werner).
Post release updates.
Mon, Dec 20, 11:03 PM
werner committed rGf74c65fd9bbb: Release 2.3.4 (authored by werner).
Release 2.3.4
Mon, Dec 20, 11:03 PM
werner committed rG610528725290: gpg: Correctly set the ownertrust for a new key. (authored by werner).
gpg: Correctly set the ownertrust for a new key.
Mon, Dec 20, 11:03 PM
werner committed rG2559407c952a: po: Update German translation (authored by werner).
po: Update German translation
Mon, Dec 20, 11:03 PM
werner added a comment to T5742: Apparent regressions between 2.2.32 and 2.2.33 of GnuPG.

We can even remove the hexfingerrprint call. Will go into 2.3.4. Thanks.

Mon, Dec 20, 10:18 PM · Testing, Bug Report, gnupg (gpg23)
werner triaged T5743: Release GnuPG 2.3.5 as Low priority.
Mon, Dec 20, 7:45 PM · Release Info, gnupg (gpg23)
werner committed rGafe5fcda52e8: gpg: Add unfinished code for --export-secret-ssh-key. (authored by werner).
gpg: Add unfinished code for --export-secret-ssh-key.
Mon, Dec 20, 7:43 PM
werner committed rG038136ea48ae: wkd: Don't beg for donations (authored by werner).
wkd: Don't beg for donations
Mon, Dec 20, 7:43 PM
werner committed rGda3910221608: common: Add set_membuf_err. (authored by werner).
common: Add set_membuf_err.
Mon, Dec 20, 7:43 PM
werner committed rGace15e1b09dc: gpg: Allow passing a keygrip as description to pinentry. (authored by werner).
gpg: Allow passing a keygrip as description to pinentry.
Mon, Dec 20, 7:43 PM
werner added a comment to T5713: Kleopatra: PKCS#12 Import no Error on bad passphrase.

It would be easier to educate gpgme about the 11.

Mon, Dec 20, 4:37 PM · Unknown Object (Project), kleopatra
werner added a comment to T5742: Apparent regressions between 2.2.32 and 2.2.33 of GnuPG.

The use of register_trusted_key in do_generate_keypair was a dirty hack utilizing a bug in --trusted-key ; it would be better to set the key as ultimately trusted.

Mon, Dec 20, 7:29 AM · Testing, Bug Report, gnupg (gpg23)