Feed Advanced Search

Yesterday

werner created T4290: Release GnuPG 2.1.13.
Sat, Dec 15, 4:39 PM · Release Info, gnupg (gpg22)

Fri, Dec 14

werner committed rDb4b0f718320c: drafts,openpgp-webkey-service: A MUST not MUST be a MUST NOT. (authored by werner).
drafts,openpgp-webkey-service: A MUST not MUST be a MUST NOT.
Fri, Dec 14, 5:42 PM
werner committed rD0eaf5090fd44: web: News about 2.2.12 (authored by werner).
web: News about 2.2.12
Fri, Dec 14, 4:05 PM
werner closed T4289: GnuPG 2.1.12 release as Resolved.
Fri, Dec 14, 4:01 PM · gnupg (gpg22), Release Info
werner closed T4289: GnuPG 2.1.12 release, a subtask of T4264: Gpg4win 3.1.6, as Resolved.
Fri, Dec 14, 4:01 PM · Release Info, gpg4win
werner committed rD2ff9531591f9: swdb: Release GnuPG 2.2.12 (authored by werner).
swdb: Release GnuPG 2.2.12
Fri, Dec 14, 3:50 PM
werner committed rG3520a7b1fcd8: Post release updates (authored by werner).
Post release updates
Fri, Dec 14, 3:46 PM
werner committed rG7d8f4ee7cf56: Release 2.2.12 (authored by werner).
Release 2.2.12
Fri, Dec 14, 3:46 PM
werner committed rG0ed37d023bae: po: Auto-update (authored by werner).
po: Auto-update
Fri, Dec 14, 3:46 PM
werner added a comment to T4159: Kleopatra fails to create new Key Pair.

The usual reasons for corruptions of binary data are FTP transfers in text mode; or opening a file with a Windows editor.

Fri, Dec 14, 2:56 PM · gnupg, Bug Report, gpg4win
werner added a comment to T4289: GnuPG 2.1.12 release.

NEWS are:

Fri, Dec 14, 1:55 PM · gnupg (gpg22), Release Info
werner added a subtask for T4264: Gpg4win 3.1.6: T4289: GnuPG 2.1.12 release.
Fri, Dec 14, 1:30 PM · Release Info, gpg4win
werner added a parent task for T4289: GnuPG 2.1.12 release: T4264: Gpg4win 3.1.6.
Fri, Dec 14, 1:30 PM · gnupg (gpg22), Release Info
werner created T4289: GnuPG 2.1.12 release.
Fri, Dec 14, 1:29 PM · gnupg (gpg22), Release Info
werner added a comment to T4118: GpgOL: Mitigate S/MIME Denial of Service due to CRL stalling.

Interesting idea but it does not help against attacks because all root CA are considered equal (virtually cross-signed). Thus a single not checked root CA allows to subvert all certificates.

Fri, Dec 14, 1:26 PM · gpg4win, gpgol
werner added a project to T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows: S/MIME.
Fri, Dec 14, 10:46 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win
werner committed rD18b09effc2b8: drafts,openpgp-webkey-service: Remark on 401 server responses. (authored by werner).
drafts,openpgp-webkey-service: Remark on 401 server responses.
Fri, Dec 14, 10:04 AM
werner committed rD733acdda1a44: drafts,openpgp-webkey-service: Fix flaws in the last revision. (authored by werner).
drafts,openpgp-webkey-service: Fix flaws in the last revision.
Fri, Dec 14, 10:04 AM
werner committed rG35a91f1409c3: New simplified Chinese translation (authored by Chuhao Li <lchopn@gmail.com>).
New simplified Chinese translation
Fri, Dec 14, 8:38 AM

Thu, Dec 13

werner committed rDa51e1d2bf99a: Add note about wildcard DNS. (authored by werner).
Add note about wildcard DNS.
Thu, Dec 13, 7:14 PM
werner created T4288: Add getrandom support for the BSDs.
Thu, Dec 13, 4:29 PM · libgcrypt
werner committed rA1f038e94e19d: Post release updates (authored by werner).
Post release updates
Thu, Dec 13, 10:46 AM
werner committed rA86e1d17de081: Release 2.5.2 (authored by werner).
Release 2.5.2
Thu, Dec 13, 10:46 AM
werner claimed T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix.
Thu, Dec 13, 9:38 AM · S/MIME, Feature Request, libksba
werner committed rD67dd939968ef: swdb: Release libassuan 2.5.2 (authored by werner).
swdb: Release libassuan 2.5.2
Thu, Dec 13, 9:15 AM

Wed, Dec 12

werner committed rD59a8fb52b17b: verein: Add a link to the token page. (authored by werner).
verein: Add a link to the token page.
Wed, Dec 12, 9:12 PM
werner committed rD3ab409acd60d: verein: Start a project to develop a membership gadget (authored by werner).
verein: Start a project to develop a membership gadget
Wed, Dec 12, 9:06 PM
werner committed rC876f7280e860: secmem: Prepare for easier debugging. (authored by werner).
secmem: Prepare for easier debugging.
Wed, Dec 12, 9:34 AM
werner added a project to T4198: Pinentry doesn't capture input correctly, crashes terminal instead: pinentry.
Wed, Dec 12, 9:18 AM · pinentry, Bug Report
werner triaged T4105: Inconsistent output for revocation keys in --list-keys --with-colons as Normal priority.
Wed, Dec 12, 9:17 AM · Documentation, gnupg, Bug Report
werner committed rE12349de46d24: estream: Use correct POSIX name THOUSEP. (authored by werner).
estream: Use correct POSIX name THOUSEP.
Wed, Dec 12, 9:16 AM
werner added a commit to T4286: Incorrect use of <langinfo.h> in libgpg-error: rE12349de46d24: estream: Use correct POSIX name THOUSEP..
Wed, Dec 12, 9:16 AM · Bug Report
werner triaged T4280: gnupg doc doesn't build due to ImageMagick default policy as Normal priority.
Wed, Dec 12, 9:16 AM · gnupg, Documentation, Info Needed, Bug Report
werner closed T4286: Incorrect use of <langinfo.h> in libgpg-error as Resolved.

Thanks.

Wed, Dec 12, 9:15 AM · Bug Report
werner claimed T4286: Incorrect use of <langinfo.h> in libgpg-error.
Wed, Dec 12, 9:00 AM · Bug Report
werner closed T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP as Resolved.
Wed, Dec 12, 8:30 AM · gnupg, gpgagent
werner closed T3606: failed to build S-Exp (off=0): Cannot allocate memory, a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Wed, Dec 12, 8:30 AM · gnupg, gpgagent
werner closed T3606: failed to build S-Exp (off=0): Cannot allocate memory as Resolved.

T3530 describes the solution. In short: Put "auto-expand-secmem" into gpg-agent.conf.

Wed, Dec 12, 8:30 AM · libgcrypt, Bug Report
werner closed T4146: GPG Agent fails in parallel: "gpg: decryption failed: No secret key" as Resolved.
Wed, Dec 12, 8:28 AM · gnupg (gpg22), MacOS, Bug Report
werner closed T4146: GPG Agent fails in parallel: "gpg: decryption failed: No secret key", a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Wed, Dec 12, 8:28 AM · gnupg, gpgagent
werner closed T3530: Option to auto-increase secmem in gpg-agent as Resolved.

The --auto-expand-secmem option is available in 2.2. and master for quite some time. It works if libgcrypt 1.8.2 or newer is used.

Wed, Dec 12, 8:28 AM · Feature Request, gpgagent
werner closed T3530: Option to auto-increase secmem in gpg-agent, a subtask of T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP, as Resolved.
Wed, Dec 12, 8:28 AM · gnupg, gpgagent
werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Not a bug :-). I should have read my own docs before starting a long debug session. The things is that the auto expanding of the secmem area is only done for xmalloc_secure and the internal MPI allocation functions. It is not dne for any memory which is allocated with xtrymalloc becuase those properly return an error to the caller. The idea is that if the caller wants to get an error back he has also the assurance that them memory is allocated in the non-swappable memory (i.e. not in the expanded parts of the secmem).

Wed, Dec 12, 8:24 AM · gnupg, gpgagent

Tue, Dec 11

werner added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

I can easily replicate this; it is a problem somewhere in the secure memory code of Libgcrypt.

Tue, Dec 11, 9:08 PM · gnupg, gpgagent
werner triaged T4282: info gnupg as Low priority.
Tue, Dec 11, 7:10 PM · Feature Request, Documentation
werner committed rGde29a50e7c8a: agent: Make the S2K calibration time runtime configurable. (authored by werner).
agent: Make the S2K calibration time runtime configurable.
Tue, Dec 11, 6:16 PM
werner committed rG0cf0f3aaf835: agent: compile-time configuration of s2k calibration. (authored by dkg).
agent: compile-time configuration of s2k calibration.
Tue, Dec 11, 6:16 PM
werner added a commit to T3399: gpg-agent: add a configure option for default calibration time for s2k: rGde29a50e7c8a: agent: Make the S2K calibration time runtime configurable..
Tue, Dec 11, 6:16 PM · gpgagent, Feature Request
werner added a commit to T3399: gpg-agent: add a configure option for default calibration time for s2k: rG0cf0f3aaf835: agent: compile-time configuration of s2k calibration..
Tue, Dec 11, 6:16 PM · gpgagent, Feature Request
werner committed rGcbcc8c19541f: agent: Make the S2K calibration time runtime configurabe. (authored by werner).
agent: Make the S2K calibration time runtime configurabe.
Tue, Dec 11, 6:13 PM
werner added a commit to T3399: gpg-agent: add a configure option for default calibration time for s2k: rGcbcc8c19541f: agent: Make the S2K calibration time runtime configurabe..
Tue, Dec 11, 6:13 PM · gpgagent, Feature Request
werner closed T4134: GnuPG: Changing the trust model once changes the default trust model as Resolved.

Fix was released with 2.2.11

Tue, Dec 11, 3:51 PM · gpg4win, gpgol, Bug Report, gnupg
werner edited projects for T3065: dirmngr: proxy issues with dnslookup causing failure, added: FAQ; removed gnupg (gpg22).
Tue, Dec 11, 3:48 PM · gnupg (gpg22), dns, dirmngr
werner added a comment to T3065: dirmngr: proxy issues with dnslookup causing failure.

If you specify a pool of keyservers dirmngr selects a keyserver on its won from the pool. This is so that it can use its own heuristics to detect whether a keyserver is dead and then retry another one. Now the default is a pool and your specified keyserver.ubuntu.com is also a pool (of two servers). So if your DNS resolver does not tell us the IP addresses, we can't do anything about it.

Tue, Dec 11, 3:48 PM · gnupg (gpg22), dns, dirmngr
werner added a comment to T3972: 100% CPU usage endles loop of gpg --list-keys.

In your second run you added the options after the argument (4E2C6E8793298290) so they won't have an effect. Anyway, I can't see anything from the output. My way to debug that would be to run gpg under strace:

Tue, Dec 11, 3:31 PM · gnupg (gpg22), Bug Report
werner closed T4175: HTTP 5xx should fail over to the next server as Resolved.
Tue, Dec 11, 3:05 PM · dirmngr, Feature Request
werner added a comment to T4175: HTTP 5xx should fail over to the next server.

Will go into 2.1.12 to be released next week.

Tue, Dec 11, 3:05 PM · dirmngr, Feature Request
werner committed rGe5abdb6da7fa: dirmngr: Retry another server from the pool on 502, 503, 504. (authored by werner).
dirmngr: Retry another server from the pool on 502, 503, 504.
Tue, Dec 11, 1:41 PM
werner added a commit to T4175: HTTP 5xx should fail over to the next server: rGe5abdb6da7fa: dirmngr: Retry another server from the pool on 502, 503, 504..
Tue, Dec 11, 1:41 PM · dirmngr, Feature Request
werner committed rGb9d71ea64a69: dirmngr: New function http_status2string. (authored by werner).
dirmngr: New function http_status2string.
Tue, Dec 11, 1:41 PM
werner committed rG05ef62827844: dirmngr: Retry another server from the pool on 502, 503, 504. (authored by werner).
dirmngr: Retry another server from the pool on 502, 503, 504.
Tue, Dec 11, 1:40 PM
werner added a commit to T4175: HTTP 5xx should fail over to the next server: rG05ef62827844: dirmngr: Retry another server from the pool on 502, 503, 504..
Tue, Dec 11, 1:40 PM · dirmngr, Feature Request
werner committed rGdc61f4ecea5c: dirmngr: New function http_status2string. (authored by werner).
dirmngr: New function http_status2string.
Tue, Dec 11, 1:40 PM
werner added a project to T3168: dirmngr: gpg: keyserver receive failed: No keyserver available: dns.
Tue, Dec 11, 12:40 PM · dns, dirmngr
werner closed T1166: Connecting once-per-key for keys with keyserver preference vs server violate reconnection limit as Wontfix.
Tue, Dec 11, 12:39 PM · Ubuntu, gnupg, Feature Request
werner closed T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver as Resolved.

Thanks.

Tue, Dec 11, 12:34 PM · gnupg, dirmngr
werner committed rGf7ff25edadd4: gpg: In search-keys return "Not found" instead of "No Data". (authored by werner).
gpg: In search-keys return "Not found" instead of "No Data".
Tue, Dec 11, 12:33 PM
werner added a commit to T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver: rGf7ff25edadd4: gpg: In search-keys return "Not found" instead of "No Data"..
Tue, Dec 11, 12:33 PM · gnupg, dirmngr
werner committed rGe7252ae57f3c: gpg: In search-keys return "Not found" instead of "No Data". (authored by werner).
gpg: In search-keys return "Not found" instead of "No Data".
Tue, Dec 11, 12:31 PM
werner added a commit to T3830: Dirmngr: Bad error message (regression) when no key is found on the keyserver: rGe7252ae57f3c: gpg: In search-keys return "Not found" instead of "No Data"..
Tue, Dec 11, 12:31 PM · gnupg, dirmngr
werner committed rG2c35e67e3475: tools: Use POSIX compatible arguments for find (authored by Tomi Leppänen <tomi.leppanen@jolla.com>).
tools: Use POSIX compatible arguments for find
Tue, Dec 11, 8:50 AM
werner committed rGdfcc5e6d3ec9: tools: Use POSIX compatible arguments for find (authored by Tomi Leppänen <tomi.leppanen@jolla.com>).
tools: Use POSIX compatible arguments for find
Tue, Dec 11, 8:50 AM

Mon, Dec 10

werner edited projects for T4282: info gnupg, added: Documentation, Feature Request; removed Bug Report.
Mon, Dec 10, 2:21 PM · Feature Request, Documentation
werner added a comment to T4282: info gnupg.

The command -e does not require any further argument. As with most Unix tools you can either give a file or let the tool read from stdin or output to stdout.

Mon, Dec 10, 2:20 PM · Feature Request, Documentation
werner closed T4283: info gnupg wording error as Invalid.

Thanks. That typo was already fixed in 2.2.7.

Mon, Dec 10, 9:20 AM · Bug Report

Fri, Dec 7

werner added a subtask for T4205: Release libgpg-error 1.33: T4285: Compiler warnings in libgpg-error 1.33 on macOS.
Fri, Dec 7, 9:06 PM · gpgrt, Release Info
werner added a parent task for T4285: Compiler warnings in libgpg-error 1.33 on macOS: T4205: Release libgpg-error 1.33.
Fri, Dec 7, 9:06 PM
werner closed T4285: Compiler warnings in libgpg-error 1.33 on macOS as Resolved.

Thanks for the report.

Fri, Dec 7, 9:00 PM
werner committed rE60f3d4440249: Silence cc warning about snprintf redefinition (authored by werner).
Silence cc warning about snprintf redefinition
Fri, Dec 7, 9:00 PM
werner added a commit to T4285: Compiler warnings in libgpg-error 1.33 on macOS: rE60f3d4440249: Silence cc warning about snprintf redefinition.
Fri, Dec 7, 9:00 PM
werner added a comment to T4285: Compiler warnings in libgpg-error 1.33 on macOS.

Well, -Wno-macro-redefined should silence the warning but Iwill add an undef before our macro definition. The snprintf macro is used to make sure the libgpg-error's own printf implementation is used.

Fri, Dec 7, 8:58 PM
werner closed T4284: no description of the homedir option as Wontfix.

Most options are not explained with --help. Right before the examples you see

Fri, Dec 7, 7:31 PM · Bug Report
werner committed rD5f6ff6214b0c: swdb: Released gpgrt 1.33 (authored by werner).
swdb: Released gpgrt 1.33
Fri, Dec 7, 7:02 PM
werner closed T4205: Release libgpg-error 1.33 as Resolved.

NEWS for 1.33:

Fri, Dec 7, 5:32 PM · gpgrt, Release Info
werner committed rEbcf916345790: Post release updates (authored by werner).
Post release updates
Fri, Dec 7, 5:20 PM
werner committed rE174985d91ff2: Release 1.33. (authored by werner).
Release 1.33.
Fri, Dec 7, 5:20 PM
werner added a commit to T4205: Release libgpg-error 1.33: rE174985d91ff2: Release 1.33..
Fri, Dec 7, 5:20 PM · gpgrt, Release Info
werner removed a project from T3733: Kleopatra, Libgpg-error: Let the GUI change the language on Windows: gpgrt.
Fri, Dec 7, 5:01 PM · gpg4win, Bug Report
werner added a comment to T3733: Kleopatra, Libgpg-error: Let the GUI change the language on Windows.

Use that function as early as possible. The gpg-error tool has also be enahnced on Windows:

Fri, Dec 7, 3:02 PM · gpg4win, Bug Report
werner added a commit to T3733: Kleopatra, Libgpg-error: Let the GUI change the language on Windows: rE0b190ce89de7: Add W32-only function gpgrt_w32_override_locale..
Fri, Dec 7, 2:52 PM · gpg4win, Bug Report
werner committed rE0b190ce89de7: Add W32-only function gpgrt_w32_override_locale. (authored by werner).
Add W32-only function gpgrt_w32_override_locale.
Fri, Dec 7, 2:52 PM
werner committed rE9e62d5e73f30: doc: Replace gpg-error-config by gpgrt-config. (authored by werner).
doc: Replace gpg-error-config by gpgrt-config.
Fri, Dec 7, 2:52 PM
werner closed T4265: GPA: Can't create new keys with GPGME 1.12.x as Resolved.

Regession due to my commit 10 days after the last release. Thus no need to do a release.

Fri, Dec 7, 11:54 AM · Bug Report, gpg4win, gpa
werner added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

Thanks.

Fri, Dec 7, 11:49 AM · Bug Report, gpg4win, gpa
werner added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

Sorry, I am still not able to replicate it:

Fri, Dec 7, 10:19 AM · Bug Report, gpg4win, gpa

Thu, Dec 6

werner added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

Can you give me a reproducer on Linux. I am not able to reproduce it. What versions of gnupg and gpgme are you using (see gpa's about)

Thu, Dec 6, 6:29 PM · Bug Report, gpg4win, gpa
werner added a comment to T4282: info gnupg.

I am not sure what text you reference. Can you please explain?

Thu, Dec 6, 1:40 PM · Feature Request, Documentation
werner committed rEb7fae45c24cc: logging: Escape controls in string arguments of log_ functions. (authored by werner).
logging: Escape controls in string arguments of log_ functions.
Thu, Dec 6, 11:33 AM
werner added a comment to T4280: gnupg doc doesn't build due to ImageMagick default policy.

ImageMagick version with that regression?

Thu, Dec 6, 9:29 AM · gnupg, Documentation, Info Needed, Bug Report

Wed, Dec 5

werner added a comment to T3443: Install gpg 1.4 as gpg1.

That is good.

Wed, Dec 5, 6:38 PM · Feature Request