Page MenuHome GnuPG
Feed Advanced Search

Oct 3 2020

werner closed T5088: gpgme-1-13-1 test failure and errors and build errors as Resolved.
Oct 3 2020, 7:55 PM · gpgme, toolchain, Bug Report
werner added a comment to T5088: gpgme-1-13-1 test failure and errors and build errors.

Thanks for the report. Indeed, the convenient C99 feature of variable definition in a for statement does only work in recent gcc versions and thus it should not be used in GnuPG related code. (https://gnupg.org/faq/HACKING.html was out of sync with the version in gnupg's master repo which falsely stated that it is an allowed features.)

Oct 3 2020, 7:48 PM · gpgme, toolchain, Bug Report
werner removed projects from T5090: The name field of kleo's key gen wizard is falsely marked as optional: i18n, gpg4win.
Oct 3 2020, 7:23 PM · kleopatra, Bug Report
werner renamed T5090: The name field of kleo's key gen wizard is falsely marked as optional from Translation in all languages wrong to The name field of kleo's key gen wizard is falsely marked as optional.
Oct 3 2020, 7:22 PM · kleopatra, Bug Report
werner added a comment to T5090: The name field of kleo's key gen wizard is falsely marked as optional.

The name field is marked as optional but it is mandatory. This should be fixed.

Oct 3 2020, 7:20 PM · kleopatra, Bug Report

Oct 2 2020

werner committed rGe12e5b3dabb5: common,w32: Change copyright holder notice. (authored by werner).
common,w32: Change copyright holder notice.
Oct 2 2020, 5:04 PM
werner committed rGc81f02c959eb: w32: Add manifest files to most binaries (authored by werner).
w32: Add manifest files to most binaries
Oct 2 2020, 5:04 PM
werner committed rG239e60a37f63: gpgconf,w32: Add manifest so we get the correct windows version. (authored by werner).
gpgconf,w32: Add manifest so we get the correct windows version.
Oct 2 2020, 5:04 PM
werner committed rGa298ba02ee76: gpgconf: New option --show-versions. (authored by werner).
gpgconf: New option --show-versions.
Oct 2 2020, 5:04 PM
werner committed rGc10ba8e88336: doc: Typo fixes (authored by werner).
doc: Typo fixes
Oct 2 2020, 5:04 PM
werner committed rG357ad9ae2967: gpgconf: New option --show-versions. (authored by werner).
gpgconf: New option --show-versions.
Oct 2 2020, 12:33 PM
werner committed rG371228a24423: w32: Silence warning due to recent change of split_fields. (authored by werner).
w32: Silence warning due to recent change of split_fields.
Oct 2 2020, 12:33 PM
werner committed rGe824e27d3602: gpg: Fix parameter parsing form ed448. (authored by werner).
gpg: Fix parameter parsing form ed448.
Oct 2 2020, 12:33 PM

Oct 1 2020

werner closed T5089: gnupg-2.2.20 build error as Resolved.

You used custom options which did not pick up the proper libksba. Install libksba correctly then try again. Please direct further questions to the mailing list and please build the latest version 2.2.23 and not an arbitrary old version.

Oct 1 2020, 5:53 PM · Not A Bug
werner triaged T5083: usecase for --detach-sign as the default signature creation method as Normal priority.
Oct 1 2020, 3:01 PM · Info Needed, Feature Request
werner added a comment to T5087: Not possible to create a new key.

Version 2 is a bit too unspecific. Which version of what software are you using. Which OS?

Oct 1 2020, 2:58 PM · Bug Report, gpg4win

Sep 30 2020

werner added a comment to T5076: [solved] gpg-agent respawn another process randomly and causes cached passphrase check failed / expired.

There is a conflict between the systemd based launching of gpg-agent and gpg's own launching of the agent. Further systemd seems to remove the /run/user/UID directory which unlinks gpg-agent's socket. gpg-agent's self-check notices this after a minute and termintates itself.

Sep 30 2020, 7:49 AM · gnupg (gpg22), Bug Report

Sep 29 2020

werner added a project to T5085: Filter APDUs in log output: Feature Request.
Sep 29 2020, 11:23 AM · gnupg24, gnupg22, Feature Request, scd
werner created T5085: Filter APDUs in log output.
Sep 29 2020, 11:21 AM · gnupg24, gnupg22, Feature Request, scd

Sep 28 2020

werner closed T1938: --list-sigs on a keybox is extremely slow as Resolved.

With 2.3 we add the keyboxd which uses sqlite (and thus indices) as database. This makes lookups much much faster and avoids problems with several processes accessing the pubring.kbx. If you want to try this you can do so with 2.3:

Sep 28 2020, 10:06 AM · gnupg, Bug Report
werner added a comment to E777: Weekly Standup.

I am sorry, but either Andre nor me will be able to join today,

Sep 28 2020, 8:07 AM

Sep 26 2020

werner claimed T5084: Using GPGWin 3.1.13, Putty fails to load the private key from a YubiKey.

That code in gnupg has not been touched in a very long time so this may be caused by some side effect.

Sep 26 2020, 2:29 PM · gnupg, ssh, Bug Report, gpg4win

Sep 25 2020

werner committed rGf8fbd9e7346e: keyboxd: Make use of the config table (authored by werner).
keyboxd: Make use of the config table
Sep 25 2020, 11:53 AM
werner added a comment to T5083: usecase for --detach-sign as the default signature creation method.

I am sorry, but I do not understand your request. Please give real commands as examples.
You known that you can always use --output FILENAME to force a certain file name?

Sep 25 2020, 10:03 AM · Info Needed, Feature Request
werner added projects to T5082: Kleopatra crashed with qwindows.dll.: gpg4win, kleopatra.
Sep 25 2020, 9:03 AM · kleopatra, gpg4win, Bug Report

Sep 24 2020

werner committed rGd49a945b12d9: gpg: New experimental import option "bulk-import" (authored by werner).
gpg: New experimental import option "bulk-import"
Sep 24 2020, 4:48 PM
werner committed rGc2b14f5d6852: keyboxd: New command TRANSACTION. (authored by werner).
keyboxd: New command TRANSACTION.
Sep 24 2020, 4:48 PM
werner committed rG1f89d50537b3: keyboxd: Fix UDPATE keyblob SQL statement (authored by werner).
keyboxd: Fix UDPATE keyblob SQL statement
Sep 24 2020, 1:00 PM
werner committed rGb19a60c6f7e8: tests: Integrate --use-keyboxd into the OpenPGP test suite. (authored by werner).
tests: Integrate --use-keyboxd into the OpenPGP test suite.
Sep 24 2020, 1:00 PM
werner committed rG25ad3c22d79d: keyboxd: Implement multiple search descriptions. (authored by werner).
keyboxd: Implement multiple search descriptions.
Sep 24 2020, 1:00 PM
werner committed rG0ac003b45763: keyboxd: Remove unused variables. (authored by werner).
keyboxd: Remove unused variables.
Sep 24 2020, 1:00 PM
werner committed rG97798eec4b77: tests: Fix convenience function to run gpg. (authored by werner).
tests: Fix convenience function to run gpg.
Sep 24 2020, 1:00 PM
werner committed rGacaeba2dbdb9: keyboxd: Integrate into gpgconf. (authored by werner).
keyboxd: Integrate into gpgconf.
Sep 24 2020, 1:00 PM

Sep 23 2020

werner closed T5081: Cannot verify Signature of Electrum as Invalid.

I am sorry, but this is a bug tracker and not a help list. I don't even known what Electrum is. Please ask at their support site or if you are looking for general help with GnuPG post to the gnupg-users mailing list (see https://gnupg.org/documentation/mailing-lists.html)

Sep 23 2020, 9:52 AM

Sep 22 2020

werner triaged T5080: Gpg-agent gets confused when a homedir is moved as Normal priority.
Sep 22 2020, 4:32 PM · gnupg (gpg22), Bug Report
werner committed rG183509756179: gpg: Set the found-by flags in the keyblock in keyboxd mode. (authored by werner).
gpg: Set the found-by flags in the keyblock in keyboxd mode.
Sep 22 2020, 4:21 PM
werner committed rGb810320b1bf7: sm: Fix returning of the ephemeral flag in keyboxd mode. (authored by werner).
sm: Fix returning of the ephemeral flag in keyboxd mode.
Sep 22 2020, 4:21 PM
werner committed rG0e892bda4e0b: keyboxd: Extend PUBKEY_INFO status line with an uid ordinal. (authored by werner).
keyboxd: Extend PUBKEY_INFO status line with an uid ordinal.
Sep 22 2020, 4:21 PM
werner committed rGc81a7b09368a: common: Fix name of keyboxd. (authored by werner).
common: Fix name of keyboxd.
Sep 22 2020, 4:21 PM
werner committed rGbe8b30f8ebf6: kbx: Add bounds check to detect corrupt keyboxes. (authored by werner).
kbx: Add bounds check to detect corrupt keyboxes.
Sep 22 2020, 11:53 AM
werner committed rGe0a312bfd646: kbx: Add bounds check to detect corrupt keyboxes. (authored by werner).
kbx: Add bounds check to detect corrupt keyboxes.
Sep 22 2020, 11:48 AM
werner created T5079: Add compliance flag to trustlist.txt.
Sep 22 2020, 11:13 AM · gnupg24 (gnupg-2.4.1), Restricted Project, Feature Request

Sep 21 2020

werner committed rGbabd87f2dadf: doc: Some documentation updates. (authored by werner).
doc: Some documentation updates.
Sep 21 2020, 3:07 PM
werner committed rG26da47ae53d5: scd: Extend KEYPAIRINFO with an algorithm string. (authored by werner).
scd: Extend KEYPAIRINFO with an algorithm string.
Sep 21 2020, 3:07 PM
werner committed rGc772770574ea: sm: Implement delete key in keyboxd mode (authored by werner).
sm: Implement delete key in keyboxd mode
Sep 21 2020, 3:07 PM
werner added a comment to E776: Weekly Standup.

Last week:

  • Looked into LDAP problems
  • gnupg.com work
Sep 21 2020, 9:07 AM
werner added a comment to T5078: gpg wants to delete my master key when I'm trying to delete a subkey?.

Please do not use addkey with in such a way. The use of "canned"commands way work now for you but can lead to unexpected results if anything changes, either due to changes in another gpg version or due to changes in your key etc.. The correct use requires a state machines along with --stattus-fd and command-fd. Because that is quite hairy to get right we have added a set of quick commands. In your case your should use

Sep 21 2020, 9:05 AM

Sep 20 2020

werner added a comment to T5076: [solved] gpg-agent respawn another process randomly and causes cached passphrase check failed / expired.

FWIW: You may get a faster answer if you post to gnupg-users mailing lists. Bug reports are a tool to fix bugs and usually are only seen by a few developers.

Sep 20 2020, 7:39 PM · gnupg (gpg22), Bug Report

Sep 16 2020

werner added a comment to T5069: Concurrent auto-start of gpg-agent by multiple gpg instances..

We need to figure out why the file locks seem not to work. gpg-agent processes whatch there own socket and terminate if that socket does not belong to them anymore.

Sep 16 2020, 8:10 AM · Not A Bug, No Response, Info Needed, gnupg (gpg22), Windows, Bug Report
werner added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Here is the output for an SCM SPR532

Sep 16 2020, 7:55 AM · Restricted Project, gnupg (gpg22), scd, Bug Report
werner added a comment to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2).

Bus 001 Device 123: ID 04e6:e003 SCM Microsystems, Inc. SPR532 PinPad SmartCard Reader

Sep 16 2020, 7:48 AM · Restricted Project, gnupg (gpg22), scd, Bug Report

Sep 15 2020

werner triaged T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2) as High priority.

Okay, I have the same problem at my office and thus I should be able to figure out the reason. I have ignored the problem until now because the wokraround is easy enough and in most cases I authenticate with my token anyway. But yes, this needs to be fixed.

Sep 15 2020, 9:35 PM · Restricted Project, gnupg (gpg22), scd, Bug Report
werner triaged T5069: Concurrent auto-start of gpg-agent by multiple gpg instances. as Normal priority.

I assume this is the Windows version. gpg uses a locking mechanism to avoid creating several gpg-agent processes. In the worst case this may take quite some time until one of the processes can get the lock. There is an exponential backoff scheme in use and I have not yet found a way to replicate the full deadlock you describe. It would be helpful if you could describe in more detail how you run into this case.

Sep 15 2020, 9:35 PM · Not A Bug, No Response, Info Needed, gnupg (gpg22), Windows, Bug Report
werner triaged T5070: Retain the exact name of the archive when extracting/decrypting via gpgtar as Normal priority.

Using a not yet existing directory is a security feature. The directory is created at a time the signature has not yet been verified and thus it would be too easy to trick a user into overwriting important data.

Sep 15 2020, 9:26 PM · gnupg24, gnupg (gpg23), gpgtar, Feature Request
werner created T5068: LDAP keyserver does not support lookup by fingerprint.
Sep 15 2020, 2:24 PM · LDAP, dirmngr, gnupg (gpg22)

Sep 14 2020

werner added projects to T5065: scdaemon doesn't detect card removal after boot/resume (Identiv SPR332v2): scd, gnupg (gpg22).

Thanks for the detailed report. Does the green LED blink fast when it does not work?

Sep 14 2020, 7:59 AM · Restricted Project, gnupg (gpg22), scd, Bug Report

Sep 13 2020

werner closed T5061: writecert fails for ECC keys on PIV cards as Resolved.
Sep 13 2020, 4:32 PM

Sep 11 2020

werner committed rGfbc1b199fdc8: scd:piv: Avoid conflict when writing a cert. (authored by werner).
scd:piv: Avoid conflict when writing a cert.
Sep 11 2020, 3:52 PM
werner committed rGb6ba6a79ce93: common: New function cmp_canon_sexp. (authored by werner).
common: New function cmp_canon_sexp.
Sep 11 2020, 3:52 PM
werner committed rG9a94db1f662a: keyboxd: Implement lookup by short and long keyid. (authored by werner).
keyboxd: Implement lookup by short and long keyid.
Sep 11 2020, 12:10 PM
werner committed rG616c60d93dfa: keyboxd: Add ephemeral and revoked flag to the sqlite backend. (authored by werner).
keyboxd: Add ephemeral and revoked flag to the sqlite backend.
Sep 11 2020, 12:10 PM
werner claimed T5061: writecert fails for ECC keys on PIV cards.
Sep 11 2020, 9:11 AM

Sep 10 2020

werner added a comment to T5061: writecert fails for ECC keys on PIV cards.

Are you using libgcrypt 1.8 or master (to be 1.9)?

Sep 10 2020, 5:21 PM
werner committed rG29977e21d181: keyboxd: Add options --openpgp and --x509 to SEARCH. (authored by werner).
keyboxd: Add options --openpgp and --x509 to SEARCH.
Sep 10 2020, 1:06 PM
werner committed rGc9677d416e6f: keyboxd: Add basic support for X.509. (authored by werner).
keyboxd: Add basic support for X.509.
Sep 10 2020, 1:06 PM
werner committed rG6fcc263c182f: keyboxd: Use D-lines instead of a separate thread. (authored by werner).
keyboxd: Use D-lines instead of a separate thread.
Sep 10 2020, 1:06 PM
werner committed rGed6ebb696e40: sm: Implement initial support for keyboxd. (authored by werner).
sm: Implement initial support for keyboxd.
Sep 10 2020, 1:06 PM
werner committed rG72e04b03b1a7: dirmngr: Fix the pool keyserver case for a single host in the pool. (authored by werner).
dirmngr: Fix the pool keyserver case for a single host in the pool.
Sep 10 2020, 11:09 AM
werner committed rGa084924d07be: gpg-connect-agent: Catch signals so that SIGPIPE is ignored. (authored by werner).
gpg-connect-agent: Catch signals so that SIGPIPE is ignored.
Sep 10 2020, 11:09 AM
werner committed rGe4f3b74c9106: dirmngr: Align the gnutls use of CAs with the ntbtls code. (authored by werner).
dirmngr: Align the gnutls use of CAs with the ntbtls code.
Sep 10 2020, 11:09 AM
werner committed rGfaabc49797df: dirmngr: Align the gnutls use of CAs with the ntbtls code. (authored by werner).
dirmngr: Align the gnutls use of CAs with the ntbtls code.
Sep 10 2020, 10:51 AM
werner committed rG3cf9bb4d73cf: gpg-connect-agent: Catch signals so that SIGPIPE is ignored. (authored by werner).
gpg-connect-agent: Catch signals so that SIGPIPE is ignored.
Sep 10 2020, 10:51 AM
werner committed rG5a87011c46b5: dirmngr: Fix the pool keyserver case for a single host in the pool. (authored by werner).
dirmngr: Fix the pool keyserver case for a single host in the pool.
Sep 10 2020, 10:51 AM
werner closed T2312: GnuPG 2.1 migration fails due to permissions but appears to succeed as Resolved.

It should be possible to apply the patch rG7de9ed521e516879a72ec6ff6400aed4bdce5920
for 2.2 also to older 2.1 or 2.2 versions,

Sep 10 2020, 7:50 AM · gnupg, Bug Report
werner committed rG7de9ed521e51: agent: Keep some permissions of private-keys-v1.d. (authored by werner).
agent: Keep some permissions of private-keys-v1.d.
Sep 10 2020, 7:47 AM

Sep 9 2020

werner added a comment to T2312: GnuPG 2.1 migration fails due to permissions but appears to succeed.

That keeps the group permissions of an existing directory. Needs to be backported to 2.2

Sep 9 2020, 8:37 PM · gnupg, Bug Report
werner committed rG8ed85ef3de9c: agent: Keep some permissions of private-keys-v1.d. (authored by werner).
agent: Keep some permissions of private-keys-v1.d.
Sep 9 2020, 8:36 PM
werner committed rGadec6a84f6ee: kbx: Change X.509 S/N search definition. (authored by werner).
kbx: Change X.509 S/N search definition.
Sep 9 2020, 8:36 PM
werner reopened T2312: GnuPG 2.1 migration fails due to permissions but appears to succeed as "Open".

The fix we have there has the problem that it forcefully changes the permissions. Consider the case that for example that group access was provided which will currently be reset with each start of gpg-agent.

Sep 9 2020, 7:41 PM · gnupg, Bug Report
werner committed rG5b6cfef62092: build: Fix recent commit for SOURCE_DATE_EPOCH. (authored by werner).
build: Fix recent commit for SOURCE_DATE_EPOCH.
Sep 9 2020, 3:41 PM
werner committed rMe4ee706e270c: core: Fully implement the inquire callback for assuan_transact (authored by werner).
core: Fully implement the inquire callback for assuan_transact
Sep 9 2020, 12:14 PM
werner added a comment to T5059: Could not create key pair: Timeout.

Checkout the taskbar. While creating the key you should get a (blinking) notification for pinentry - the tool to enter the passphrase. Under some circumstances Windows won't pop up that tool and you need to click on its icon in the taskbar.

Sep 9 2020, 8:49 AM · No Response, Support, kleopatra
werner added a comment to T5057: Smartcard's secret key cannot be found for decryption.

@gniibe: Actually I implemented this recently. Support for this is in gpg-card

Sep 9 2020, 8:47 AM · gnupg (gpg22), Bug Report

Sep 8 2020

werner added a comment to T5057: Smartcard's secret key cannot be found for decryption.

On an OpenPGP card the key no 1 (OPENPGP.1) is a sign-only key - you can't use it for decryption even if you somehow managed to encrypt to that key. That restriction is enforced by the card.

Sep 8 2020, 4:54 PM · gnupg (gpg22), Bug Report
werner created T5058: Review --trusted-key.
Sep 8 2020, 3:27 PM · gnupg24, gnupg (gpg23)
werner added inline comments to rG0db9c83555b4: scd: Add a workaround for Yubikey..
Sep 8 2020, 8:24 AM
werner added a comment to T5057: Smartcard's secret key cannot be found for decryption.

Your problem seems to be that you don't have a copy of your public key anymore. The uni-mainz keyserver might be configured not to return expired keys (if I read the output above correctly). I was able to to retrieve your key using the standard pool (in particular from the server sks.pod02.fleetstreetops.com). The key is expired but that does hinder you to decrypt. Run "gpg --card-status" once tomake sure a stub file is available.

Sep 8 2020, 8:22 AM · gnupg (gpg22), Bug Report

Sep 7 2020

werner triaged T5054: Preservation of modification date upon decryption/extraction. as Normal priority.
Sep 7 2020, 10:30 AM · gnupg24, gnupg (gpg23), gpgtar, Feature Request
werner added a comment to E772: Weekly Standup.

Last week:

  • Security Fix handling
Sep 7 2020, 10:01 AM

Sep 5 2020

werner added projects to T5054: Preservation of modification date upon decryption/extraction.: gpgtar, gnupg (gpg23).

I will consider a -p option for gpgtar.

Sep 5 2020, 8:02 PM · gnupg24, gnupg (gpg23), gpgtar, Feature Request
werner triaged T5053: More gpg arguments available for use with gpgtar as Normal priority.
Sep 5 2020, 12:35 PM · gnupg24, gnupg (gpg23), gpgtar, Feature Request

Sep 4 2020

werner closed T5045: Release GnuPG 2.2.23 as Resolved.

See
https://lists.wald.intevation.org/pipermail/gpg4win-announce/2020-September/000089.html
for the fixed Gpg4win 3.1.13

Sep 4 2020, 5:23 PM · gnupg, Release Info
werner closed T5050: AEAD preference list overflow in 2.2 as Resolved.

Gpg4win 3.113 has also been released. Thus closing this issue.

Sep 4 2020, 5:23 PM · gnupg (gpg22), CVE
werner added a comment to T4945: Windows builds use "winepath" when it is available.

Winepath starts calls the full Wine engine just convert file names to DOS format. This is used by libtool but if winepath can't be executed, it doesn't care. So the given solution (using /etc/alternatives/winepath -> /bin/false) can be used.

Sep 4 2020, 3:18 PM · gpgrt
werner committed rG0e721b635d61: scd: Increase the number of supported readers from 4 to 16. (authored by werner).
scd: Increase the number of supported readers from 4 to 16.
Sep 4 2020, 12:52 PM
werner committed rG65eb1569809a: gpg: Initialize a parameter to silence valgrind. (authored by werner).
gpg: Initialize a parameter to silence valgrind.
Sep 4 2020, 11:33 AM
werner committed rGb7f56ba5e3cc: tests: New test run envvar to run gpg under valgrind. (authored by werner).
tests: New test run envvar to run gpg under valgrind.
Sep 4 2020, 11:33 AM
werner committed rG6ce8fdc4b2a0: gpg: Initialize a parameter to silence valgrind. (authored by werner).
gpg: Initialize a parameter to silence valgrind.
Sep 4 2020, 11:29 AM
werner committed rG8a2193380c07: tests: New test run envvar to run gpg under valgrind. (authored by werner).
tests: New test run envvar to run gpg under valgrind.
Sep 4 2020, 11:29 AM
werner added a comment to T5050: AEAD preference list overflow in 2.2.

Small correction: The fixed byte I talked about may have the values 1, 2, 3, or 4.

Sep 4 2020, 9:06 AM · gnupg (gpg22), CVE