Page MenuHome GnuPG
Feed Advanced Search

Fri, Nov 25

werner added a comment to T6288: Document gpgrt-config in detail or improve it to support simple invocation.

Bootstrapping is an issue. Recall that pkg-config is not a simple program but requires the use of glib (which depends on libffi, libmount, libpcre) - catch-22. Makes building GnuPG on AIX not actually easy.

Fri, Nov 25, 7:00 PM
werner committed rG1324dc3490b0: gpg: New option --list-filter (authored by werner).
gpg: New option --list-filter
Fri, Nov 25, 4:06 PM
werner committed rGd70779bdc60c: dirmngr: Silence ocsp debug output. (authored by werner).
dirmngr: Silence ocsp debug output.
Fri, Nov 25, 9:26 AM
werner closed T6289: Pinentry garbles international characters as Resolved.
Fri, Nov 25, 8:13 AM · gpg4win, Support
werner added a comment to T6289: Pinentry garbles international characters.

You are using the basic pinnentry which comes as part of the basic installer. Almost everyone does not use this but Gpg4win which has a real pinentry. See http://gpg4win.org You don;t need the program statement then because gpg is installed in the PATH.

Fri, Nov 25, 8:12 AM · gpg4win, Support

Wed, Nov 23

werner added projects to T6286: gpgme-json not installed by default: gpgme, Feature Request.

Actually we have two gpgme versions in gpg4win because gnupg is a "sub"-installer inside of gpg4win and it comes with its own gpgme. That gpgme is the release version but the one used by gpg4win's kleopatra is often a newer snapshot.

Wed, Nov 23, 11:36 AM · Feature Request, gpgme, gpg4win

Tue, Nov 22

werner added projects to T6283: could the newer jq255 Elliptic Curve be interesting to implement?: Feature Request, libgcrypt.
Tue, Nov 22, 1:18 PM · libgcrypt, Feature Request

Thu, Nov 17

werner added a comment to T6282: Kleopatra smartcard dialog for Signature Card 2.0.

It turned out that the reason for the problem is the use of the --ignore-cert-with-oid option in gpgsm.conf.

Thu, Nov 17, 6:00 PM · Bug Report, kleopatra, scd
werner committed rGcce5ecece1d0: dirmngr: Silence debug diagnostics in OCSP (authored by werner).
dirmngr: Silence debug diagnostics in OCSP
Thu, Nov 17, 5:14 PM
werner created T6282: Kleopatra smartcard dialog for Signature Card 2.0.
Thu, Nov 17, 5:04 PM · Bug Report, kleopatra, scd
werner added a comment to T5085: Filter APDUs in log output.

We need to do this also for CHANGE REFERENCE DATA - however, there should be an extra option so that we can debug this despite of the redacting.

Thu, Nov 17, 5:00 PM · Feature Request, gnupg (gpg22), scd
werner committed rG468b64dcaa9e: scd: Redact --debug cardio output of a VERIFY APDU. (authored by werner).
scd: Redact --debug cardio output of a VERIFY APDU.
Thu, Nov 17, 2:56 PM
werner committed rG9f7ff4367247: scd: Redact --debug cardio output of a VERIFY APDU. (authored by werner).
scd: Redact --debug cardio output of a VERIFY APDU.
Thu, Nov 17, 2:41 PM
werner committed rG8c6529b4f13c: Update NEWS (authored by werner).
Update NEWS
Thu, Nov 17, 9:36 AM
werner closed T6181: Release GnuPG 2.2.40 as Resolved.
Thu, Nov 17, 9:35 AM · gnupg (gpg22), Release Info
werner closed T6221: When encrypting, gpg claims DE_VS compliance with non-compliant gcrypt as Resolved.
Thu, Nov 17, 9:34 AM · gnupg (gpg22), Bug Report
werner closed T5713: Kleopatra: PKCS#12 Import no Error on bad passphrase as Resolved.
Thu, Nov 17, 9:34 AM · Restricted Project, kleopatra
werner closed T6224: Mirror internal LDAP to a WKD as Resolved.
Thu, Nov 17, 9:33 AM · Restricted Project, Feature Request, gnupg (gpg23)
werner closed T6047: Dirmngr - LDAP Schema V2 not used when Base DN is specified as Resolved.
Thu, Nov 17, 9:33 AM · LDAP, dirmngr, gnupg (gpg23), Feature Request
werner triaged T6280: Release GnuPG 2.2.41 as Low priority.
Thu, Nov 17, 9:32 AM · gnupg (gpg22), Release Info

Wed, Nov 16

werner committed rGb284412786d7: gpg: Add a notation to encryption subkeys in de-vs mode. (authored by werner).
gpg: Add a notation to encryption subkeys in de-vs mode.
Wed, Nov 16, 5:17 PM
werner closed T6279: Tag keys when created in de-vs mode as Resolved.
Wed, Nov 16, 5:15 PM · gnupg (gpg22), Feature Request
werner renamed Spammer20221116 from Miann7759 to Spammer20221116.
Wed, Nov 16, 5:11 PM
werner closed T6278: Miann7759@gmail.com as Invalid.
Wed, Nov 16, 4:56 PM · Bug Report, gpg4win
werner updated subscribers of T6043: "Emty Email" in outlook.
Wed, Nov 16, 4:56 PM · Bug Report, gpg4win
werner closed T6043: "Emty Email" in outlook as Resolved.
Wed, Nov 16, 4:55 PM · Bug Report, gpg4win
werner added a comment to T6278: Miann7759@gmail.com.

great hack

Wed, Nov 16, 4:52 PM · Bug Report, gpg4win
werner added a comment to T6249: gpgrt: spawn functions.

We should consider to break the Assuan API maybe we can do that without too many problems for the current use cases.

Wed, Nov 16, 9:18 AM · gnupg, libassuan, gpgrt

Tue, Nov 15

werner committed rGf16c946be7ea: gpg: New option --quick-update-pref. (authored by werner).
gpg: New option --quick-update-pref.
Tue, Nov 15, 5:31 PM
werner committed rGb6ba7054a04a: gpg: New list-options show-pref and show-pref-verbose. (authored by werner).
gpg: New list-options show-pref and show-pref-verbose.
Tue, Nov 15, 5:31 PM
werner committed rD2393be191afb: Merge branch 'master' into preview (authored by werner).
Merge branch 'master' into preview
Tue, Nov 15, 5:11 PM
werner committed rD36dc68373682: web: Add pure.css files (authored by werner).
web: Add pure.css files
Tue, Nov 15, 5:11 PM
werner committed rDdd7a6a3a9a28: Merge branch 'master' into preview (authored by werner).
Merge branch 'master' into preview
Tue, Nov 15, 5:11 PM
werner committed rD93291e2229ea: web: Let's try to use a grid (authored by werner).
web: Let's try to use a grid
Tue, Nov 15, 5:11 PM
werner committed rD5b3460a3f7f6: Merge branch 'master' into preview (authored by werner).
Merge branch 'master' into preview
Tue, Nov 15, 5:11 PM
werner committed rG4f43b6fdae01: gpgsm: Fix colon outout of ECC encryption certificates (authored by werner).
gpgsm: Fix colon outout of ECC encryption certificates
Tue, Nov 15, 4:35 PM
werner committed rGf5c3f1360936: gpgsm: Fix colon outout of ECC encryption certificates (authored by werner).
gpgsm: Fix colon outout of ECC encryption certificates
Tue, Nov 15, 4:32 PM
werner committed rG8a9a47356422: scd:nks: Fix ECC signing if key not given by keygrip. (authored by werner).
scd:nks: Fix ECC signing if key not given by keygrip.
Tue, Nov 15, 2:57 PM
werner committed rG1307081dc0b4: dirmngr: Fix verification of ECDSA signed CRLs. (authored by werner).
dirmngr: Fix verification of ECDSA signed CRLs.
Tue, Nov 15, 2:57 PM
werner committed rG502d43ac3031: dirmngr: Support ECDSA for CRLs (authored by werner).
dirmngr: Support ECDSA for CRLs
Tue, Nov 15, 2:57 PM
werner committed rGafaed3c12210: dirmngr: Support ECDSA for OCSP. (authored by werner).
dirmngr: Support ECDSA for OCSP.
Tue, Nov 15, 2:57 PM
werner committed rG7c3aeb2a57ea: gpgsm: Support signing using ECDSA. (authored by werner).
gpgsm: Support signing using ECDSA.
Tue, Nov 15, 2:57 PM
werner committed rG88335b2d5bbe: gpgsm: Cleanup the use of GCRY_PK_ECC and GCRY_PK_ECDSA. (authored by werner).
gpgsm: Cleanup the use of GCRY_PK_ECC and GCRY_PK_ECDSA.
Tue, Nov 15, 2:57 PM
werner committed rG4aed853f2bba: gpgsm: Support verification of nistp521 signatures. (authored by werner).
gpgsm: Support verification of nistp521 signatures.
Tue, Nov 15, 2:57 PM
werner committed rG266a6602f0c9: gpgsm: Some more ECC support backported. (authored by werner).
gpgsm: Some more ECC support backported.
Tue, Nov 15, 2:57 PM
werner committed rG2c4757352da6: scd:nks: Fix ECC signing if key not given by keygrip. (authored by werner).
scd:nks: Fix ECC signing if key not given by keygrip.
Tue, Nov 15, 2:53 PM
werner committed rD128084dca7d0: ids: Submitted draft-koch-openpgp-webkey-service-15 (authored by werner).
ids: Submitted draft-koch-openpgp-webkey-service-15
Tue, Nov 15, 12:11 PM
werner committed rG868dabb4027a: dirmngr: Fix verification of ECDSA signed CRLs. (authored by werner).
dirmngr: Fix verification of ECDSA signed CRLs.
Tue, Nov 15, 9:57 AM
werner empowered alexk as an administrator.
Tue, Nov 15, 8:51 AM

Mon, Nov 14

werner committed rG3f845c8de73a: agent: Allow trustlist on Windows in Unicode homedirs. (authored by werner).
agent: Allow trustlist on Windows in Unicode homedirs.
Mon, Nov 14, 7:21 AM
werner added a comment to T6249: gpgrt: spawn functions.

I don't understand the last two points: This is only about the three standard descriptors but how shall we supply more descriptors? At least in GPGME we definitely need more.

Mon, Nov 14, 7:12 AM · gnupg, libassuan, gpgrt

Sun, Nov 13

werner added a member for Contributor: ametzler1.
Sun, Nov 13, 7:39 PM

Sat, Nov 12

werner added a comment to T5851: dev.gnupg.org static resources not loaded on safari.

I just moved Phabricator to a new machine and created separte certificates for files.gnupg.net and dev.gnupg.org.

Sat, Nov 12, 4:23 PM · MacOS, dev.gnupg.org

Fri, Nov 11

werner closed T6272: gpg --cleartext and truncated lines as Resolved.

You need to handle them in a correct way. Just checking with gpg is
not enough because you don't know what has been signed. You need to
look at the signed data which gpg gives you by using the --output
option. And there you see only the signed data and not the extra
"aaa" you added after having signed the plaintext. It is not
different from adding stuff before the -----BEGIN PGP SIGNED ... line.

Fri, Nov 11, 8:26 AM · Bug Report, gnupg

Thu, Nov 10

werner triaged T6272: gpg --cleartext and truncated lines as Normal priority.

Actually I am not sure whether this is really a bug and that the fix is needed. What has been signed and verified is what gpg has seen and what --output has written. For example a line in the cleartext format may read "- From my " but what actually has been signed was "From my". If a line has been truncated --output will write only the truncated and thus verified data and not what was in the cleartext format.

Thu, Nov 10, 3:25 PM · Bug Report, gnupg
werner committed rG976e9d608367: gpg: Fix verification of cleartext signatures with overlong lines. (authored by werner).
gpg: Fix verification of cleartext signatures with overlong lines.
Thu, Nov 10, 2:57 PM
werner committed rG80ccded0421e: agent: Allow trustlist on Windows in Unicode homedirs. (authored by werner).
agent: Allow trustlist on Windows in Unicode homedirs.
Thu, Nov 10, 2:57 PM
werner added a comment to T5666: Create dropdown box for the reader-port option..

The distinction between reader and card is not easy and PS/SC is also not helpful here. The user needs to resort to trial and error. With 2.3 things are much easier because we do not need to select the reader anymore.

Thu, Nov 10, 12:47 PM · Restricted Project, kleopatra, Feature Request
werner added a member for Contributor: DemiMarie.
Thu, Nov 10, 12:28 PM
werner created T6272: gpg --cleartext and truncated lines .
Thu, Nov 10, 12:27 PM · Bug Report, gnupg
werner triaged T6271: The old FSF address in libgcrypt source code as Low priority.

Thanks. There should also be SPDX indentifiers everywhere.

Thu, Nov 10, 12:25 PM · Documentation, libgcrypt, Bug Report

Wed, Nov 9

werner committed rGbd825ead36af: gpg: Import stray revocation certificates. (authored by werner).
gpg: Import stray revocation certificates.
Wed, Nov 9, 4:00 PM
werner committed rGa9044b4a239b: gpg: Fix trusted introducer for user-ids with only the mbox. (authored by werner).
gpg: Fix trusted introducer for user-ids with only the mbox.
Wed, Nov 9, 4:00 PM
werner added a comment to T4656: Windows 64-bit: functions which use pid_t.

AFAIK, Microsoft stated that the value of a HANDLE will always fit into a DWORD; i.e. only the lower 32 bits are used even on a 64 bit Windows.

Wed, Nov 9, 10:02 AM · Memo

Fri, Nov 4

werner committed rGd40d23b233f0: gpg: New option --quick-update-pref. (authored by werner).
gpg: New option --quick-update-pref.
Fri, Nov 4, 3:26 PM
werner added projects to T6264: gpgrt-config: Support multilib MinGW-w64: gpgrt, toolchain.
Fri, Nov 4, 1:39 PM · toolchain, gpgrt
werner committed rG811cfa34cb3e: gpg: New list-options show-pref and show-pref-verbose. (authored by werner).
gpg: New list-options show-pref and show-pref-verbose.
Fri, Nov 4, 12:44 PM
werner committed rGb8e197318a1e: tests: Add tests to check that OCB is only used for capable keys. (authored by werner).
tests: Add tests to check that OCB is only used for capable keys.
Fri, Nov 4, 11:26 AM
werner committed rGa69149b1aeb9: gpg: Make --list-packets work w/o --no-armor for plain OCB packets. (authored by werner).
gpg: Make --list-packets work w/o --no-armor for plain OCB packets.
Fri, Nov 4, 11:26 AM
werner committed rG1be272d04e76: tests: Add tests to check that OCB is only used for capable keys. (authored by werner).
tests: Add tests to check that OCB is only used for capable keys.
Fri, Nov 4, 11:18 AM

Thu, Nov 3

werner added a comment to rG4583f4fe2e11: gpg: Merge --rfc4880bis features into --gnupg.

Hi Vincent,

Thu, Nov 3, 11:54 AM
werner committed rWcf792dca94fc: appimage: Re-add --steal-socket. (authored by werner).
appimage: Re-add --steal-socket.
Thu, Nov 3, 9:33 AM

Wed, Nov 2

werner committed rG82c4f26b67e9: gpg: Make --list-packets work w/o --no-armor for plain OCB packets. (authored by werner).
gpg: Make --list-packets work w/o --no-armor for plain OCB packets.
Wed, Nov 2, 5:16 PM
werner committed rG9b24d8ab5018: tests: Add tr:assert-same function. (authored by werner).
tests: Add tr:assert-same function.
Wed, Nov 2, 5:16 PM
werner committed rGe284f62b1c6d: tests: Add symmetric decryption tests. (authored by werner).
tests: Add symmetric decryption tests.
Wed, Nov 2, 5:16 PM
werner renamed SEO_mobster from jamesjoyce to SEO_mobster.
Wed, Nov 2, 5:14 PM
werner committed rGbd612f23607d: agent: Avoid blanks in the ssh key's comment. (authored by werner).
agent: Avoid blanks in the ssh key's comment.
Wed, Nov 2, 10:42 AM
werner committed rO9f1f29c22706: Protect against theoretical integer overflow in TLV parser. (authored by werner).
Protect against theoretical integer overflow in TLV parser.
Wed, Nov 2, 9:01 AM

Mon, Oct 31

werner committed rG0a355b2fe7d8: gpg: Add compatibility flag "vsd-allow-ocb" (authored by werner).
gpg: Add compatibility flag "vsd-allow-ocb"
Mon, Oct 31, 5:24 PM
werner changed the status of T6263: Allow OCB encryption in 2.2 from Open to Testing.
Mon, Oct 31, 4:26 PM · Restricted Project, Feature Request, gnupg (gpg22)
werner committed rG4a9f3f94c6d1: gpg: New option --compatibility-flags (authored by werner).
gpg: New option --compatibility-flags
Mon, Oct 31, 4:25 PM
werner committed rG4583f4fe2e11: gpg: Merge --rfc4880bis features into --gnupg (authored by werner).
gpg: Merge --rfc4880bis features into --gnupg
Mon, Oct 31, 4:16 PM
werner committed rG5a2cef801d35: gpg: Allow only OCB for AEAD encryption. (authored by werner).
gpg: Allow only OCB for AEAD encryption.
Mon, Oct 31, 4:16 PM
werner committed rG03f04dfb9a03: gpg: New option --compatibility-flags (authored by werner).
gpg: New option --compatibility-flags
Mon, Oct 31, 4:16 PM
werner committed rGa545e14e8a74: gpg: Support OCB encryption. (authored by werner).
gpg: Support OCB encryption.
Mon, Oct 31, 2:39 PM
werner triaged T6263: Allow OCB encryption in 2.2 as Normal priority.
Mon, Oct 31, 2:32 PM · Restricted Project, Feature Request, gnupg (gpg22)

Oct 28 2022

werner added a project to T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04: OpenPGP.

Meanwhile I have _some_ doubts that the v5 format is a good idea. It will introduce a lot of problems and thus a more lean way of replacing the fingerprint should be re-considered. Even if that means, we have to live with two kinds of fingerprints for a decade or so.

Oct 28 2022, 4:11 PM · OpenPGP, gnupg (gpg23)
werner closed T4059: Errors while building from source on Cygwin (gnupg repo) as Wontfix.

We won't do that. FWIW: We started to work on a 64 bit WIndows version of GnuPG.

Oct 28 2022, 4:07 PM · Cygwin, gnupg, Bug Report
werner closed T5947: Release GnuPG 2.3.7 as Resolved.
Oct 28 2022, 4:05 PM · CVE, Release Info, gnupg (gpg23)
werner added a comment to T5590: OpenPGP: Curve 448, modernize?.

Given that the OpenPGP WG practically decided to fork OpenPGP I don't see a reason why we should keep this bug open.

Oct 28 2022, 4:03 PM · OpenPGP, gnupg (gpg23)
werner closed T6029: ntbtls: Require TLS 1.2 or later + AEAD by default as Resolved.

I can't see what we shall do here.

Oct 28 2022, 3:59 PM · Not A Bug, ntbtls
werner updated subscribers of T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.
Oct 28 2022, 3:56 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
werner added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Will go into 2.3.9 and gpg4win 4.0.5

Oct 28 2022, 3:56 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
werner closed T1621: Support multiple cards (not just readers) as Resolved.

You are using a somewhat special setup and not what has been tested with gpg (i.e. putty). In particular Cygwin based tools do not interoperate well with non-Cygwin tools.

Oct 28 2022, 3:55 PM · gnupg, Feature Request
werner changed the status of T6238: regexp for trust signature domain restriction does not work if key only has an e-mail address from Open to Testing.
Oct 28 2022, 3:44 PM · backport, gnupg (gpg22), Bug Report, Restricted Project
werner added a comment to T4485: Add AEAD mode AES-GCM-SIV to libgcrypt (RFC 8452).

@jukivili: This has been released with 1.10.0 - shall we close this bug?

Oct 28 2022, 3:42 PM · Feature Request, libgcrypt
werner lowered the priority of T4921: Support import of PKCS#12 encoded ECC private keys. from High to Normal.

Shall we really backport this to 2.2 given that ECC for S/MIME is in most cases a smartcard thing?

Oct 28 2022, 3:38 PM · gnupg (gpg22), backport, Feature Request, S/MIME
werner closed T4098: GpgSM: Add ECC support as Resolved.

Has been release quite some time ago (2.3.8 and earlier)

Oct 28 2022, 3:36 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a comment to T4938: Support Signature Card V2.0 (NKS15).

Will be released with 2.3.9

Oct 28 2022, 3:34 PM · eIDAS, scd, Feature Request, S/MIME
werner closed T4938: Support Signature Card V2.0 (NKS15), a subtask of T4098: GpgSM: Add ECC support, as Resolved.
Oct 28 2022, 3:33 PM · gnupg (gpg23), Feature Request, S/MIME