Page MenuHome GnuPG
Feed Advanced Search

Today

werner committed rDaf411baa9c20: swdb: GnuPG 2.2.36 (authored by werner).
swdb: GnuPG 2.2.36
Wed, Jul 6, 8:34 PM
werner added a comment to T5949: Release GnuPG 2.2.36.

Please note that due to vacation issues the signatures use the gnupg.com Brainpool based release key and some Linux distributions come with Brainpool removed from GnuPG.

Wed, Jul 6, 8:33 PM · gnupg (gpg22), Release Info
werner updated the task description for T5949: Release GnuPG 2.2.36.
Wed, Jul 6, 8:30 PM · gnupg (gpg22), Release Info
werner committed rG3777bc652879: Post release updates (authored by werner).
Post release updates
Wed, Jul 6, 8:19 PM
werner committed rG491645b50ec9: Release 2.3.36 (authored by werner).
Release 2.3.36
Wed, Jul 6, 8:19 PM

Wed, Jun 29

werner triaged T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified as Normal priority.

The first ideas sounds best to me. Patches please to the mailing list.

Wed, Jun 29, 5:16 PM · LDAP, dirmngr, gnupg (gpg23), Feature Request
werner committed rGf357a5f23991: gpgconf: New short options -V and -X (authored by werner).
gpgconf: New short options -V and -X
Wed, Jun 29, 1:24 PM
werner committed rG15a8834b0b4a: gpgconf: New short options -V and -X (authored by werner).
gpgconf: New short options -V and -X
Wed, Jun 29, 1:16 PM

Mon, Jun 27

werner committed rGae2f1f0785e4: agent: Do not consider --min-passphrase-len for the magic wand. (authored by werner).
agent: Do not consider --min-passphrase-len for the magic wand.
Mon, Jun 27, 6:16 PM

Thu, Jun 23

werner added a comment to T6035: Portability issue: ftruncate.

ACK. P[ease add it also to 2.2.

Thu, Jun 23, 10:50 AM · Testing, gpgagent, gnupg
werner closed T6015: Default OpenPGP keyserver as Resolved.
Thu, Jun 23, 10:48 AM · Support, gpg4win
werner triaged T6020: Make %-expandos available for --default-keyserver-url as Normal priority.
Thu, Jun 23, 10:48 AM · Feature Request, gnupg (gpg23), Keyserver
werner added a subtask for T6020: Make %-expandos available for --default-keyserver-url: T6040: Allow embedding preferred keyserver URL in signatures.
Thu, Jun 23, 10:47 AM · Feature Request, gnupg (gpg23), Keyserver
werner added a parent task for T6040: Allow embedding preferred keyserver URL in signatures: T6020: Make %-expandos available for --default-keyserver-url.
Thu, Jun 23, 10:47 AM · gnupg (gpg23), Feature Request, Keyserver
werner triaged T6040: Allow embedding preferred keyserver URL in signatures as Normal priority.
Thu, Jun 23, 10:46 AM · gnupg (gpg23), Feature Request, Keyserver
werner added a project to T6038: gpg-wks-client excludes uid with URL in comment: gnupg (gpg22).
Thu, Jun 23, 10:43 AM · gnupg (gpg22), wkd, Bug Report

Wed, Jun 22

werner added a comment to T5988: agent: Add new command to update private key fields.

What about rejected changes to "Key:"? Other this command would make it too easy to mess up the actual private key.

Wed, Jun 22, 2:54 PM · Testing, Feature Request, ssh, gpgagent

Tue, Jun 21

werner committed rG4c14bbf56fb5: sm: Update pkcs#12 module from master (authored by werner).
sm: Update pkcs#12 module from master
Tue, Jun 21, 6:29 PM
werner committed rGd21ced1e3596: common: Add an easy to use DER builder. (authored by werner).
common: Add an easy to use DER builder.
Tue, Jun 21, 6:29 PM

Mon, Jun 20

werner removed a reviewer for D556: Disallow compressed signatures and certificates: werner.
Mon, Jun 20, 8:29 PM
werner committed rG52f9e13c0cb3: sm: Improve pkcs#12 debug output. (authored by werner).
sm: Improve pkcs#12 debug output.
Mon, Jun 20, 5:34 PM
werner committed rGa4e04375e84e: sm: Rework the PKCS#12 parser to support DFN issued keys. (authored by werner).
sm: Rework the PKCS#12 parser to support DFN issued keys.
Mon, Jun 20, 5:34 PM
werner triaged T6037: Allow import of nwer DFN generated P12 files as Normal priority.
Mon, Jun 20, 4:43 PM · gnupg (gpg22), S/MIME
werner triaged T6035: Portability issue: ftruncate as Normal priority.
Mon, Jun 20, 1:08 PM · Testing, gpgagent, gnupg
werner added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

I fixed the title, because it is not a Windows only issue.

Mon, Jun 20, 1:07 PM · Testing, Bug Report, gnupg (gpg22)
werner renamed T6033: Regression in GnuPG 2.2.34 with some ECC keys from Regression in GnuPG 2.2.34 on Windows to Regression in GnuPG 2.2.34 with some ECC keys.
Mon, Jun 20, 1:06 PM · Testing, Bug Report, gnupg (gpg22)
werner added a comment to T6033: Regression in GnuPG 2.2.34 with some ECC keys.

The mentioned "g10: Fix garbled status messages in NOTATION_DATA" has nothing to do with the problem. So it can'r be the actual cause. Anway, I hope to get a 2.2.36 out this week.

Mon, Jun 20, 1:05 PM · Testing, Bug Report, gnupg (gpg22)
werner added a comment to T6035: Portability issue: ftruncate.

iirc, we use ftruncate for ages now. The problem with the name ftruncate is that it looks to similar to the stdio functions. But sure, things should be flushed first.

Mon, Jun 20, 12:59 PM · Testing, gpgagent, gnupg
werner removed a reviewer for D555: g10: Disallow compressed signatures and certificates: gniibe.
Mon, Jun 20, 8:05 AM · gnupg
werner added a comment to E929: Weekly Standup.

I won't be able to join.

Mon, Jun 20, 8:03 AM

Fri, Jun 17

werner assigned T6033: Regression in GnuPG 2.2.34 with some ECC keys to gniibe.

The likely cause is that the secret key is not protected. Problem seems to be in gpg-agent.

Fri, Jun 17, 12:39 PM · Testing, Bug Report, gnupg (gpg22)
werner triaged T6033: Regression in GnuPG 2.2.34 with some ECC keys as High priority.

Looking again at your report, I don't think it is an IPC problem (bad magic cooky was my assumption). I can replicate this with the current 2.2 but not with 2.3. Both un Unix.

Fri, Jun 17, 12:36 PM · Testing, Bug Report, gnupg (gpg22)
werner committed rGbe5d06dae239: agent: Improve "Insert the card" message. (authored by werner).
agent: Improve "Insert the card" message.
Fri, Jun 17, 12:24 PM
werner triaged T6030: Missing support for the Brave Web Browser on Windows as Normal priority.
Fri, Jun 17, 7:48 AM · gpgme, Feature Request, gpg4win

Thu, Jun 16

werner removed a member for Contributor: DemiMarie.
Thu, Jun 16, 7:03 PM
werner closed T6021: GPG misparses `--list-options=show-sig-subpackets="100"a` as Wontfix.

Please don't play ping pong now,

Thu, Jun 16, 7:02 PM · g10, Bug Report
werner closed T6032: Assertion failure in gpg as Invalid.

Please report such bugs to RedHat - they use a modified Libgcrypt and thus it's there bug.

Thu, Jun 16, 7:00 PM · RHEL, g10, Bug Report
werner resigned from D555: g10: Disallow compressed signatures and certificates.
Thu, Jun 16, 6:58 PM · gnupg
werner requested changes to D555: g10: Disallow compressed signatures and certificates.

Sorry, there is no padding packet in OpenPGP. Please do no try to push ideas from that crypto-refresh-06 thing into GnuPG. We continue to follow the last draft with consesus, which is rfc4880bis-10.

Thu, Jun 16, 6:56 PM · gnupg
werner renamed T6031: Creating an overlong notation hits a fatal error. from Creating an overlong notation crashes gpg to Creating an overlong notation hits a fatal error..
Thu, Jun 16, 6:54 PM · Bug Report, gnupg
werner triaged T6031: Creating an overlong notation hits a fatal error. as Wishlist priority.

The length limit of the signature sub packets are not reasy to pre-compute. Better to have a fatal error than a corrupt message. I am not sure whether we want to change this to a regualar error message - at that point we anyway need to stop.

Thu, Jun 16, 6:54 PM · Bug Report, gnupg
werner edited projects for T6033: Regression in GnuPG 2.2.34 with some ECC keys, added: Not A Bug, Windows, gnupg (gpg22); removed Bug Report.

You deleted the socket file but you did not restart the agent. Thus gpg can't contact the agent anymore. On Windows we use a socket emulation which requires the socket's file only for a new connection (to get the port and magic cookie).

Thu, Jun 16, 6:48 PM · Testing, Bug Report, gnupg (gpg22)
werner added a comment to T6032: Assertion failure in gpg.

Please provide a test case.

Thu, Jun 16, 6:39 PM · RHEL, g10, Bug Report
werner triaged T6029: ntbtls: Require TLS 1.2 or later + AEAD by default as Normal priority.
Thu, Jun 16, 6:37 PM · ntbtls

Wed, Jun 15

werner committed rG2766b9e56c77: agent,ssh: Fix for make not-inserted OpenPGP.3 keys available for SSH. (authored by werner).
agent,ssh: Fix for make not-inserted OpenPGP.3 keys available for SSH.
Wed, Jun 15, 4:42 PM
werner committed rG1530d04725d4: agent: New option --no-user-trustlist and --sys-trustlist-name. (authored by werner).
agent: New option --no-user-trustlist and --sys-trustlist-name.
Wed, Jun 15, 9:26 AM

Tue, Jun 14

werner added a comment to rMd59cf1725755: tests: Add support for clear text signatures to test runner.

When I replied to the bug report I had the very same idea. Thanks for adding.

Tue, Jun 14, 12:28 PM
werner closed T6027: Revisit write_status_text_and buffer as Resolved.
Tue, Jun 14, 11:42 AM · Bug Report, gnupg (gpg23)
werner committed rG7b1db7192e6e: g10: Fix garbled status messages in NOTATION_DATA (authored by werner).
g10: Fix garbled status messages in NOTATION_DATA
Tue, Jun 14, 11:41 AM
werner committed rG34c649b36013: g10: Fix garbled status messages in NOTATION_DATA (authored by werner).
g10: Fix garbled status messages in NOTATION_DATA
Tue, Jun 14, 11:35 AM
werner added a comment to T6027: Revisit write_status_text_and buffer.

Here is a test signature with long notation data. During verification gpg faults when emitting the NOTATION_DATA lines.

Tue, Jun 14, 11:31 AM · Bug Report, gnupg (gpg23)
werner closed T6024: gpg-agent segfaults if it receives an invalid response to a KEYPARAM inquire as Resolved.
Tue, Jun 14, 8:05 AM · can't replicate, gnupg
werner added a comment to T6029: ntbtls: Require TLS 1.2 or later + AEAD by default.

ntbtls support only 1.2. We can't disable cipher suites for interop reasons. It is not the client's job trying to force a server 's admin to offer only decent ciphersuites.

Tue, Jun 14, 8:04 AM · ntbtls

Mon, Jun 13

werner added a comment to T6028: gpgme should support creating clearsigned messages.

Hmm, why not use:

gpgme_op_sign (ctx, in, out GPGME_SIG_MODE_CLEAR)
Mon, Jun 13, 6:21 PM · Feature Request, gpgme
werner triaged T6028: gpgme should support creating clearsigned messages as Normal priority.
Mon, Jun 13, 6:17 PM · Feature Request, gpgme
werner committed rGce63eaa4f8f3: common: New function parse_compatibility_flags. (authored by werner).
common: New function parse_compatibility_flags.
Mon, Jun 13, 5:57 PM
werner committed rGf0b373cec93b: gpgsm: New option --compatibility-flags. (authored by werner).
gpgsm: New option --compatibility-flags.
Mon, Jun 13, 5:57 PM
werner committed rGfb3fd553dff9: dirmngr: Fix a wrong compiler warning. (authored by werner).
dirmngr: Fix a wrong compiler warning.
Mon, Jun 13, 5:57 PM
werner added a member for Contributor: sergi.
Mon, Jun 13, 12:44 PM
werner added a member for Contributor: DemiMarie.
Mon, Jun 13, 12:44 PM
werner triaged T6027: Revisit write_status_text_and buffer as High priority.
Mon, Jun 13, 12:35 PM · Bug Report, gnupg (gpg23)

Sat, Jun 11

werner added a comment to T6021: GPG misparses `--list-options=show-sig-subpackets="100"a`.

FWIW, on Unix is common to describe options as given on the standard shell.

Sat, Jun 11, 1:09 PM · g10, Bug Report

Fri, Jun 10

werner added a comment to T6015: Default OpenPGP keyserver.

You need to install the correct Let's Encrypt CA certificates on your legacy Windows box. Check the mailing lists for a discussion on this topic.

Fri, Jun 10, 11:53 PM · Support, gpg4win
werner added a comment to T6024: gpg-agent segfaults if it receives an invalid response to a KEYPARAM inquire.

No crash here

Fri, Jun 10, 11:50 PM · can't replicate, gnupg
werner closed T6025: '--list-options=show-sig-subpackets="100"a` mishandled as Invalid.

Duplicate of T6021. Please don't create a new bug for one you already created (and which was marked as won'tfix).

Fri, Jun 10, 11:47 PM
werner closed T6021: GPG misparses `--list-options=show-sig-subpackets="100"a` as Wontfix.

The quotes are irrelevant because they are evaluated by the shell and don't make a difference here. A Unix shell is different than Windows cmd.exe.

Fri, Jun 10, 10:17 AM · g10, Bug Report
werner added a comment to T6024: gpg-agent segfaults if it receives an invalid response to a KEYPARAM inquire.

Please provide a more verbose report.

Fri, Jun 10, 10:14 AM · can't replicate, gnupg

Thu, Jun 9

werner moved T5962: Kleopatra: Crash when quitting Application on Windows from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Jun 9, 5:05 PM · Restricted Project, kleopatra
werner added a comment to T6021: GPG misparses `--list-options=show-sig-subpackets="100"a`.

Please explain what you mean by this. Which GnuPG version, which OS, which shell, what is the problem.

Thu, Jun 9, 2:31 PM · g10, Bug Report
werner changed the edit policy for T6021: GPG misparses `--list-options=show-sig-subpackets="100"a`.
Thu, Jun 9, 2:26 PM · g10, Bug Report
werner closed T6022: Socket activation for keyboxd and scdaemon as Wontfix.

The --supervised option of GnuPG is deprecated and thus it does not make sense to add this to keyboxd or even sdaemon (which is a helper to gpg-agent).

Thu, Jun 9, 2:25 PM · Feature Request
werner triaged T6023: Check how GnuPG handles several keys from WKD as High priority.
Thu, Jun 9, 10:37 AM · wkd, gnupg (gpg23)

Tue, Jun 7

werner raised the priority of T5079: Add compliance flag to trustlist.txt from Normal to High.

A use case for this is to allow the use of S/MIME for de-vs mode and for standard mode while clearly indicating compliant certificates. As of now all certificates matching compliant algorithms are indicated as compliant. The new flag could be used to distinguish between them.

Tue, Jun 7, 4:06 PM · Restricted Project, Feature Request, gnupg (gpg22)
werner raised the priority of T5982: GpgOL: More fine grained discovery of content-id / embedded parts from Normal to High.
Tue, Jun 7, 12:02 PM · Restricted Project, gpgol
werner triaged T6017: Add *.kgrp to Kleo's import file selection dialog. as Normal priority.
Tue, Jun 7, 11:25 AM · Restricted Project, Feature Request, kleopatra
werner added a comment to rE13e7650f4924: Remove WindowsCE support..

Thanks.

Tue, Jun 7, 11:09 AM

Jun 6 2022

werner added a comment to T6014: Failed to search on certificate server. The error returned was: Syntax error in URI..

Can you do a search on the command line:

Jun 6 2022, 6:44 PM · Bug Report

Jun 3 2022

werner committed rGdfc01118ce07: w32: Avoid warning about not including winsock2.h after windows.h (authored by werner).
w32: Avoid warning about not including winsock2.h after windows.h
Jun 3 2022, 3:38 PM
werner committed rG10db56648988: w32: Allow Unicode filenames for iobuf_cancel. (authored by werner).
w32: Allow Unicode filenames for iobuf_cancel.
Jun 3 2022, 3:38 PM
werner committed rGcc1d475f98ba: dirmngr,w32: Silence compiler warnings for the LDAP API. (authored by werner).
dirmngr,w32: Silence compiler warnings for the LDAP API.
Jun 3 2022, 3:38 PM
werner committed rG4ee2009083cb: w32: Allow Unicode filenames for iobuf_cancel. (authored by werner).
w32: Allow Unicode filenames for iobuf_cancel.
Jun 3 2022, 11:14 AM
werner committed rG59c481bb8646: common,w32: Use LoadLibraryEx to fix a warning in mingw. (authored by werner).
common,w32: Use LoadLibraryEx to fix a warning in mingw.
Jun 3 2022, 11:14 AM
werner committed rGd89557fe95bf: tools: Minor fix to gpg-connect-agent options. (authored by werner).
tools: Minor fix to gpg-connect-agent options.
Jun 3 2022, 10:09 AM
werner committed rGd2d7a2b128e9: Remove remaining support for WindowsCE (authored by werner).
Remove remaining support for WindowsCE
Jun 3 2022, 10:09 AM

Jun 2 2022

werner triaged T6011: Windows tool to recursively encrypt all files. as Normal priority.
Jun 2 2022, 9:03 AM · Feature Request, Restricted Project, gnupg
werner closed T6009: bash pka helper tool as Resolved.

You may want to write gnupg-users@gnupg.org to tell about this tool. That seems to be a better place with a larger audience. Or you add it to wiki.gnupg.org.

Jun 2 2022, 8:59 AM · FAQ
werner added a comment to T4537: gpgsm support for timestamp signatures.

Funnily I created a file dirmngr/rfc3161.c last Sunday. I can't tell how long it will take but I am definitely interested in using GnuPG to create qualified signatures. Timestamp support is at least good for testing.

Jun 2 2022, 8:00 AM · gnupg (gpg23), S/MIME, Feature Request
werner added a comment to T6008: Absturz von GPG4win in Outlook.

Welche Gpg4win Version?
Welche Windows und Outlook Version?
Ist das die erste Installation oder ein Update?

Jun 2 2022, 7:53 AM · Bug Report, gpg4win

Jun 1 2022

werner committed rG3a2fb1c30633: scd:nks: Don't flag the ESIGN keypair EF as encryption capable. (authored by werner).
scd:nks: Don't flag the ESIGN keypair EF as encryption capable.
Jun 1 2022, 5:56 PM
werner committed rGb92b3206e72b: scd:nks: Some code cleanup. (authored by werner).
scd:nks: Some code cleanup.
Jun 1 2022, 5:56 PM
werner committed rGe3db6c74a630: scd:p15: Fix accidental commit of debug code (authored by werner).
scd:p15: Fix accidental commit of debug code
Jun 1 2022, 1:11 PM
werner committed rG62becf599eb8: scd: Shorten cardio debug output for all zeroes. (authored by werner).
scd: Shorten cardio debug output for all zeroes.
Jun 1 2022, 1:11 PM

May 31 2022

werner added a comment to T6007: coverity issues in pinentry.

At least old Windows versions did not add a nul in the truncation case. Thus I used to make that sure. I don't think we need it anymore.

May 31 2022, 11:26 AM · Testing, pinentry, Bug Report

May 29 2022

werner committed rG07eaf006c276: scd:nks: Support the Telesec ESIGN application. (authored by werner).
scd:nks: Support the Telesec ESIGN application.
May 29 2022, 3:57 PM
werner added a project to T4938: Support Signature Card V2.0 (NKS15): eIDAS.
May 29 2022, 3:55 PM · eIDAS, scd, Feature Request, S/MIME
werner added a project to T5219: scd: Generating CSR for SigG NetKey card key fails: eIDAS.
May 29 2022, 3:54 PM · eIDAS, gnupg (gpg23), scd
werner created eIDAS.
May 29 2022, 3:53 PM
werner raised the priority of T5219: scd: Generating CSR for SigG NetKey card key fails from Low to Normal.

Related problem exists with the modern ESIGN application. I think I fixed that but the whole Telesec eIDAS QES case needs more work.

May 29 2022, 3:51 PM · eIDAS, gnupg (gpg23), scd

May 28 2022

werner committed rG7aabd94b8103: gpg: Setup the 'usage' filter property for export. (authored by werner).
gpg: Setup the 'usage' filter property for export.
May 28 2022, 5:40 PM

May 26 2022

werner triaged T6006: Optimize Chacha20 and Poly1305 for PPC P10 LE as Normal priority.
May 26 2022, 11:44 AM · patch, ppc, Feature Request, libgcrypt