Page MenuHome GnuPG
Feed Advanced Search

Nov 17 2021

werner closed T5696: libgpg-error cross-compilation error as Invalid.

No autoreconf etc. Use only our method to cross build. That is $src/libgcrypt/autogen.sh --build-w32.

Nov 17 2021, 6:29 PM
werner committed rG749bb80cb768: gpgconf: --show-configs now prints a bunch of Registry entries. (authored by werner).
gpgconf: --show-configs now prints a bunch of Registry entries.
Nov 17 2021, 6:16 PM
werner added a comment to rGc9343bec83e2: sm: Detect circular chains in --list-chain..

Here are the two test certificates mentioned in the commit log:

Nov 17 2021, 11:19 AM
werner committed rG50539394802f: common,w32: New function read_w32_reg_string. (authored by werner).
common,w32: New function read_w32_reg_string.
Nov 17 2021, 9:55 AM
werner committed rG9172fbc08473: gpgconf: Extend --show-config to show envvars. (authored by werner).
gpgconf: Extend --show-config to show envvars.
Nov 17 2021, 9:55 AM

Nov 16 2021

werner changed the status of T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu from Open to Testing.
Nov 16 2021, 5:24 PM · Restricted Project, scd, ssh, Bug Report
werner committed rGb6b735edab03: scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE. (authored by gniibe).
scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE.
Nov 16 2021, 4:09 PM
werner committed rGc9343bec83e2: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Nov 16 2021, 4:09 PM
werner committed rW64f4556da15e: appimage: Take version number from gpg4win. (authored by werner).
appimage: Take version number from gpg4win.
Nov 16 2021, 3:59 PM
werner committed rWe042d0661faa: appimage: Copy a global vsd standard config. (authored by werner).
appimage: Copy a global vsd standard config.
Nov 16 2021, 3:12 PM
werner added a comment to T5512: Implement service indicators.

We could use a new mode #define GCRY_GET_CONFIG_FIPS 1 with gcry_get_config:

Nov 16 2021, 1:21 PM · Feature Request, FIPS, libgcrypt
werner triaged T5693: GPG sign in corrupts larger terminal sizing as Normal priority.

What is your Pinentry version, which OS is that, and which terminal type?

Nov 16 2021, 1:13 PM · MacOS, pinentry, Bug Report
werner triaged T5694: poly1305-s390x.S is compiled despite --disable-asm as Normal priority.
Nov 16 2021, 1:10 PM · libgcrypt, Bug Report

Nov 15 2021

werner triaged T5692: New entropy gatherer using the genentropy system call. as Normal priority.
Nov 15 2021, 7:30 PM · libgcrypt, FIPS
werner triaged T5691: Release libgcrypt 1.10.0 as Low priority.
Nov 15 2021, 7:22 PM · FIPS, Release Info, libgcrypt
werner committed rG74c5b350624b: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Nov 15 2021, 5:53 PM
werner added a comment to T5690: Kleopatra: Custom placeholder text in newcertificatewizard.

Can you given a example on how this would look like. In particulr are placeholders some kind of forced template or just a grey background text?

Nov 15 2021, 3:23 PM · kleopatra, Restricted Project
werner committed rWc0b369015aac: appimage: Fix new --devel option (authored by werner).
appimage: Fix new --devel option
Nov 15 2021, 12:06 PM
werner triaged T5668: gpgme: gpgme_op_query_swdb() does not report error from gpgconf as Normal priority.
Nov 15 2021, 7:46 AM · Restricted Project, gpgme, Bug Report
werner closed T5670: gpgconf --query-swdb incorrectly handles pre-release version numbers as Wontfix.
Nov 15 2021, 7:45 AM · gpg4win, Bug Report
werner closed T5667: gpg(v) prints the human-readable form of notations to the status-fd as Resolved.
Nov 15 2021, 7:43 AM · Bug Report
werner triaged T5686: GitHub mirror out of date as Normal priority.
Nov 15 2021, 7:43 AM · Feature Request, dev.gnupg.org
werner added a comment to T5686: GitHub mirror out of date.

No, our admin left us and took all scripts and docs with him. We need to set it up again. You better use this system anyway, patches etc on GitHib are not used.

Nov 15 2021, 7:42 AM · Feature Request, dev.gnupg.org
werner changed the status of T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows from Resolved to Wontfix.
Nov 15 2021, 7:40 AM · Bug Report
werner closed T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows as Resolved.

GnuPG requires a Unix system to build. We do not support building natively on Windows. Sorry.

Nov 15 2021, 7:40 AM · Bug Report

Nov 14 2021

werner committed rW578ea4764731: appimage: Add a --devel option to the docker build script. (authored by werner).
appimage: Add a --devel option to the docker build script.
Nov 14 2021, 6:41 PM
werner committed rGa43efc9294d1: agent: Print the non-option warning earlier. (authored by werner).
agent: Print the non-option warning earlier.
Nov 14 2021, 6:32 PM
werner committed rG027e34235bc5: build: Fix several "include file not found" problems (authored by ikloecker).
build: Fix several "include file not found" problems
Nov 14 2021, 6:32 PM
werner committed rW1f99eba52eb2: appimage: Fix the version extraction. (authored by werner).
appimage: Fix the version extraction.
Nov 14 2021, 6:32 PM
werner committed rGbd5c775878fd: agent: Print the non-option warning earlier. (authored by werner).
agent: Print the non-option warning earlier.
Nov 14 2021, 6:07 PM
werner committed rW7fd576a75698: packages: Update libgpg-error to 1.43 (authored by werner).
packages: Update libgpg-error to 1.43
Nov 14 2021, 5:16 PM
werner committed rW30922599b6be: appimage: Allow building a VSD version and rename AppImage name (authored by werner).
appimage: Allow building a VSD version and rename AppImage name
Nov 14 2021, 4:33 PM
werner committed rW392d05d69e70: appimage: Extend the AppRun (authored by werner).
appimage: Extend the AppRun
Nov 14 2021, 1:44 PM
werner committed rDac919c7c52b7: ids: draft-koch-openpgp-webkey-service-13.txt (authored by werner).
ids: draft-koch-openpgp-webkey-service-13.txt
Nov 14 2021, 11:59 AM

Nov 13 2021

werner closed T5685: Clear stale --trusted-key records from the trustdb, a subtask of T5058: Review --trusted-key, as Resolved.
Nov 13 2021, 9:03 PM · gnupg24, gnupg (gpg23)
werner closed T5685: Clear stale --trusted-key records from the trustdb as Resolved.
Nov 13 2021, 9:03 PM · gnupg
werner committed rGa9bc8e169567: Update release signing keys (authored by werner).
Update release signing keys
Nov 13 2021, 9:03 PM
werner committed rGd2b2dc4549f2: Update release signing keys (authored by werner).
Update release signing keys
Nov 13 2021, 9:02 PM
werner committed rGbc6d56282ec9: gpg: Remove stale ultimately trusted keys from the trustdb. (authored by werner).
gpg: Remove stale ultimately trusted keys from the trustdb.
Nov 13 2021, 9:02 PM
werner committed rG8fe3f5764347: gpgconf: New command --show-configs. (authored by werner).
gpgconf: New command --show-configs.
Nov 13 2021, 9:02 PM
werner committed rG99ef78aa0ca7: gpg: Remove stale ultimately trusted keys from the trustdb. (authored by werner).
gpg: Remove stale ultimately trusted keys from the trustdb.
Nov 13 2021, 8:44 PM
werner triaged T5685: Clear stale --trusted-key records from the trustdb as Normal priority.
Nov 13 2021, 8:13 PM · gnupg
werner committed rG6507c6ab101e: agent,dirmngr: New option --steal-socket (authored by werner).
agent,dirmngr: New option --steal-socket
Nov 13 2021, 3:09 PM
werner committed rGb0079ab39d31: keyboxd: New option --steal-socket. (authored by werner).
keyboxd: New option --steal-socket.
Nov 13 2021, 3:05 PM
werner committed rGdd708f60d5cf: agent,dirmngr: New option --steal-socket (authored by werner).
agent,dirmngr: New option --steal-socket
Nov 13 2021, 3:05 PM
werner committed rG6d52cb966e0e: doc: Clarify the "ntds" AKL mechanism. (authored by werner).
doc: Clarify the "ntds" AKL mechanism.
Nov 13 2021, 3:05 PM
werner closed T5301: Decrypting a message that has multiple SKESK packets sometimes fails as Wontfix.
Nov 13 2021, 2:43 PM · gnupg (gpg22), Bug Report
werner closed T5607: Fingerprint signing fails with 'gpg: signing failed: No secret key' as Resolved.
Nov 13 2021, 2:42 PM · Support, Info Needed, gnupg (gpg22)
werner edited projects for T5331: Possibly incompatible Ed25519 signature between other implementations and 2.3-bata, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 13 2021, 2:38 PM · gnupg (gpg23), Bug Report
werner set Due Date to Apr 30 2022, 12:00 AM on T5684: Allow to categorize X.509 PKIs.
Nov 13 2021, 12:37 PM · Restricted Project, S/MIME, kleopatra, gpgagent
werner triaged T5684: Allow to categorize X.509 PKIs as Normal priority.
Nov 13 2021, 12:35 PM · Restricted Project, S/MIME, kleopatra, gpgagent

Nov 12 2021

werner committed rG751b978ee1dc: doc: Clarify the "ntds" AKL mechanism. (authored by werner).
doc: Clarify the "ntds" AKL mechanism.
Nov 12 2021, 4:16 PM
werner triaged T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu as High priority.
Nov 12 2021, 12:53 PM · Restricted Project, scd, ssh, Bug Report
werner added a comment to T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu.

Okay, I revisited the code:

Nov 12 2021, 12:52 PM · Restricted Project, scd, ssh, Bug Report
werner added a comment to T1621: Support multiple cards (not just readers).

Do not user Reiner SCT those readers are all buggy and work only on Windows - if at all. Stay away from them and get a real reader and not the incompatible broken stuff from that company. I spent way too much time trying to get those readers working. That time is better invested in support for hardware which is standard compatible or are helpful to get stuff running.

Nov 12 2021, 12:36 PM · gnupg, Feature Request
werner added a comment to T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu.

The internal hashing of ed25519 is not used by OpenPGP but instead we pass the hash of the message to the ed25519 function and thus to the card. Pushing a message through a card is a no-go - way too slow for any normal sized message.

Nov 12 2021, 12:32 PM · Restricted Project, scd, ssh, Bug Report
werner added a comment to T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu.

That does not seem to be right. You don't need 255 bytes for an ECC key. It would be best to get scdaemon logs simialr to the gpg-agent logs. Set "debug ipc,cardio" into scdaemon.conf.

Nov 12 2021, 8:59 AM · Restricted Project, scd, ssh, Bug Report
werner added a comment to rGb124bca592e1: gpg: Don't use malloc for kek_params..

What is the rational for this change?

Nov 12 2021, 8:53 AM

Nov 11 2021

werner committed rDc15b6ec7cd12: web: Removed franken.de mirror, which is not longer available. (authored by werner).
web: Removed franken.de mirror, which is not longer available.
Nov 11 2021, 11:11 AM

Nov 9 2021

werner added a comment to T5523: jitter entropy RNG update.

Yes, keep the internal SHA-3.

Nov 9 2021, 11:33 AM · FIPS, libgcrypt
werner committed rD758940e1ad69: drafts,openpgp-webkey-service: Clarify when to use the direct method. (authored by werner).
drafts,openpgp-webkey-service: Clarify when to use the direct method.
Nov 9 2021, 9:09 AM
werner committed rG0c8bc154342b: wks: Do not mark key files as executable (authored by bmwiedemann).
wks: Do not mark key files as executable
Nov 9 2021, 9:06 AM
werner committed rG60be00b0336b: wks: Allow access to newly created dirs (authored by bmwiedemann).
wks: Allow access to newly created dirs
Nov 9 2021, 9:06 AM
werner committed rG46ada6a9bd83: wks: Do not mark key files as executable (authored by bmwiedemann).
wks: Do not mark key files as executable
Nov 9 2021, 9:06 AM
werner committed rGf54feb447000: wks: Allow access to newly created dirs (authored by bmwiedemann).
wks: Allow access to newly created dirs
Nov 9 2021, 9:06 AM
werner committed rG8d6968c52cc8: doc: Minor fix for --http-proxy. (authored by werner).
doc: Minor fix for --http-proxy.
Nov 9 2021, 9:06 AM
werner closed T5680: Optional, larger key sizes for the Blowfish cipher as Wontfix.

Blowfish is not part of OpenPGP and according to its creator not the best cipher. Sorry to say no. You may nevertheless be interested in the recent discussion threads on PQC on the cryptography ML.

Nov 9 2021, 8:06 AM · Feature Request

Nov 6 2021

werner closed T5544: Kleopatra: Ensure that file encryption dialogs has shortcuts on all actions, a subtask of T5535: Kleopatra: Check that accessibility is also supported for VS-NfD, as Resolved.
Nov 6 2021, 4:42 PM · Restricted Project, kleopatra
werner closed T5544: Kleopatra: Ensure that file encryption dialogs has shortcuts on all actions as Resolved.

Closing. In case the audit will request more, we can re-open this task.

Nov 6 2021, 4:42 PM · kleopatra, Restricted Project
werner closed T5535: Kleopatra: Check that accessibility is also supported for VS-NfD as Resolved.

I think we can close this. In January we will have an external audit (BITV) which hopefully will confirm our tests. They auditor will also provide a list of things to improve (if any).

Nov 6 2021, 4:40 PM · Restricted Project, kleopatra

Nov 4 2021

werner added a comment to T5677: Kleopatra: Do not offer deprecated gpg/keyserver option in GnuPG System configuration dialog.

Please no new levels. And also consider the problems with global config files, conditionals and values taking from the registry. We can't simply do everything in the GUI - it would get too complex and we end up supporting the supportive config dialogs. Maybe a syntax checking editor would eventually be better.

Nov 4 2021, 5:37 PM · Restricted Project, kleopatra, Feature Request
werner triaged T5678: Request to have key algorithms named in "list-packets" rather than emitting an algorithm ID as Low priority.

OpenPGP folks now the algo number by heart ;-)

Nov 4 2021, 5:29 PM · Feature Request
werner closed T5679: Incorrectly aligned text for print-md and print-mds (echoed, piped text only) as Resolved.
Nov 4 2021, 5:27 PM · Bug Report
werner added a comment to T5679: Incorrectly aligned text for print-md and print-mds (echoed, piped text only).

Fixed and tested on Linux. Thanks.

Nov 4 2021, 5:27 PM · Bug Report
werner committed rGd9deac779190: gpg: Fix indentation of --print-mds and --print-md sha512. (authored by werner).
gpg: Fix indentation of --print-mds and --print-md sha512.
Nov 4 2021, 5:27 PM
werner committed rGfa738173f9d8: gpgconf: New command --show-configs. (authored by werner).
gpgconf: New command --show-configs.
Nov 4 2021, 4:37 PM
werner committed rGc36f9917bbdd: scd: Add new OpenPGP card vendor. (authored by werner).
scd: Add new OpenPGP card vendor.
Nov 4 2021, 4:37 PM
werner accepted D537: scd: Add new Openpgp card vendor name..

Sorry, I obviously forgot to add this vendor.

Nov 4 2021, 8:07 AM
werner added a comment to D538: gpgconf: Make gpg/keyserver option available again.

Having it invisible is okay for me. But we should not support the keyserver option in gpg.conf via Kleopatra anymore. This option needs to be faded out. Actually there are more problems in 2.2 here: In particular the global options are not manageable by a gpgconf. Thus there is no guarantee that the keyserver option actually shows the correct value if global options are used.

Nov 4 2021, 8:00 AM · gnupg (gpg23)
werner added a comment to T5677: Kleopatra: Do not offer deprecated gpg/keyserver option in GnuPG System configuration dialog.

FWIW, GPA has a setting where you can select at which level options are shown (but not invisible). IIRC we had the same in Kleopatra but it has been removed.

Nov 4 2021, 7:52 AM · Restricted Project, kleopatra, Feature Request

Nov 3 2021

werner committed rD5abd69a5e1ee: swdb: Libgpg-error 1.43 (authored by werner).
swdb: Libgpg-error 1.43
Nov 3 2021, 3:29 PM
werner closed T5495: libgpg-error: build failure without threads as Resolved.
Nov 3 2021, 3:17 PM · Bug Report
werner closed T5595: gpgrt-config doesn't work well with PKG_CONFIG_LIBDIR="" and setting PKG_CONFIG_PATH as Resolved.
Nov 3 2021, 3:17 PM · gpgrt
werner closed T5610: macOS 11 or newer support: Update libtool as Resolved.
Nov 3 2021, 3:16 PM · gpgme, MacOS, ntbtls, npth, libksba, libassuan, libgcrypt, gpgrt
werner closed T5352: Release libgpg-error 1.43 as Resolved.
Nov 3 2021, 3:16 PM · gpgrt, Release Info
werner committed rEcb81007c5033: Post-release updates (authored by werner).
Post-release updates
Nov 3 2021, 3:12 PM
werner committed rEd7fb04832a71: Release 1.43 (authored by werner).
Release 1.43
Nov 3 2021, 3:12 PM
werner triaged T5676: Release Libgpg-error 1.44 as Low priority.
Nov 3 2021, 3:10 PM · Release Info, gpgrt
werner committed rE0a5ce304fd98: po: Auto-update (authored by werner).
po: Auto-update
Nov 3 2021, 2:03 PM
werner committed rE6da44ed64fd9: po: Update Czech translation (authored by petr_p).
po: Update Czech translation
Nov 3 2021, 2:03 PM
werner committed rE983a1b491ea6: po: Update Russian translation. (authored by Ineiev <ineiev@gnu.org>).
po: Update Russian translation.
Nov 3 2021, 2:03 PM
werner committed rE62755bcd302e: argparse: Add more system variables. (authored by werner).
argparse: Add more system variables.
Nov 3 2021, 2:03 PM

Nov 2 2021

werner committed rG006131f6289c: common: Support MYPROC_SELF_EXE for Solaris (authored by werner).
common: Support MYPROC_SELF_EXE for Solaris
Nov 2 2021, 9:26 PM
werner committed rG6c5765907a6e: build: Let the release target also sign the wixlib. (authored by werner).
build: Let the release target also sign the wixlib.
Nov 2 2021, 9:26 PM
werner committed rGbcd8f0239dfc: common: Silence warning from unix_rootdir on systems w/o /proc (authored by werner).
common: Silence warning from unix_rootdir on systems w/o /proc
Nov 2 2021, 9:26 PM
werner committed rG947fedf0e7d9: common: Respect gpgconf.ctl when looking up translations (authored by ikloecker).
common: Respect gpgconf.ctl when looking up translations
Nov 2 2021, 9:26 PM
werner committed rG49d589c409cc: common: Support gpgconf.ctl also for BSDs. (authored by werner).
common: Support gpgconf.ctl also for BSDs.
Nov 2 2021, 9:26 PM
werner committed rG3828dd7a4067: common: Add keyword sysconfdir to the optional gpgconf.ctl file. (authored by werner).
common: Add keyword sysconfdir to the optional gpgconf.ctl file.
Nov 2 2021, 9:26 PM
werner committed rG82328165cf4b: common: Support a gpgconf.ctl file under Unix. (authored by werner).
common: Support a gpgconf.ctl file under Unix.
Nov 2 2021, 9:26 PM
werner committed rGa756a61f19ce: common,w32: Do not always print "Garbled console data" warning. (authored by werner).
common,w32: Do not always print "Garbled console data" warning.
Nov 2 2021, 9:26 PM