Page MenuHome GnuPG
Feed Advanced Search

Advanced Search
Use Results
Hide Query

Aug 10 2022

werner committed rM26ff163bd691: Release 1.18.0 (authored by werner).
Release 1.18.0
Aug 10 2022, 3:33 PM
werner committed rM9ee74b68e688: tests: Make t-edit-sign more robust. (authored by werner).
tests: Make t-edit-sign more robust.
Aug 10 2022, 3:33 PM
werner closed T6129: Yubikey 5C 'not available: card error' regression as Resolved.

We are currently investigating another problem with a new feature. Thus things are delayed. Hopefully we get a new release this month (or at least a new gnupg 2.3 version to install on top of gpg4win).

Aug 10 2022, 2:59 PM · Bug Report, gpg4win
werner updated the task description for T5872: Release GPGME 1.17.1.
Aug 10 2022, 11:04 AM · Release Info, gpgme
werner triaged T6128: Release GPGME 1.18.0 as Normal priority.
Aug 10 2022, 11:03 AM · Release Info, gpgme

Aug 9 2022

werner added a comment to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF.

Should go into 1.10 too

Aug 9 2022, 11:12 AM · backport, libgcrypt, FIPS
werner added a project to T6039: FIPS: Allow salt=NULL (or shorter salt) for HKDF: backport.
Aug 9 2022, 11:11 AM · backport, libgcrypt, FIPS

Aug 5 2022

werner added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

Firefox nicely shows the 3 NIST certificates from my Telesec card but not the important Brainpool certificate for eIDAS. It turns out that Firefox does not support Brainpool, despite that a patch has been provided 8 years ago. See https://bugzilla.mozilla.org/show_bug.cgi?id=943639 . Thus there is currently no way to use LibreOffice or Okular to signe PDFs because they rely on NSS.

Aug 5 2022, 2:06 PM · Feature Request, scute

Aug 4 2022

werner added a project to T6123: Gpg Encryption and Signing - infinite Loop: Support.
Aug 4 2022, 9:01 PM · Support, gpgagent, gpg4win, Bug Report
werner awarded T6122: GnuPG: misleading error message keytocard a Cup of Joe token.
Aug 4 2022, 6:22 PM · Bug Report, gnupg (gpg22)
werner added a project to T6122: GnuPG: misleading error message keytocard: Restricted Project.
Aug 4 2022, 12:46 PM · Bug Report, gnupg (gpg22)
werner committed rGf2a81e374501: gpg: Fix wrong error message for keytocard. (authored by werner).
gpg: Fix wrong error message for keytocard.
Aug 4 2022, 12:46 PM
werner added a comment to T6122: GnuPG: misleading error message keytocard.

With my patch I see the expected status message:

Aug 4 2022, 12:43 PM · Bug Report, gnupg (gpg22)
werner committed rG189102ac17dc: gpg: Fix wrong error message for keytocard. (authored by werner).
gpg: Fix wrong error message for keytocard.
Aug 4 2022, 12:43 PM
werner added a comment to T6122: GnuPG: misleading error message keytocard.

The problem seems to be that we don't return a status code with the
actual error via the --command-fd interface:

Aug 4 2022, 12:23 PM · Bug Report, gnupg (gpg22)
werner triaged T6122: GnuPG: misleading error message keytocard as Normal priority.
Aug 4 2022, 12:07 PM · Bug Report, gnupg (gpg22)

Aug 3 2022

werner committed rG6583abedf3f0: common: Silence warnings from AllowSetForegroundWindow. (authored by werner).
common: Silence warnings from AllowSetForegroundWindow.
Aug 3 2022, 11:15 AM
werner committed rG94908857e1f5: dirmngr: Fix failed malloc error message. (authored by werner).
dirmngr: Fix failed malloc error message.
Aug 3 2022, 11:15 AM
werner committed rG4ef8516a79f9: common: Silence warnings from AllowSetForegroundWindow. (authored by werner).
common: Silence warnings from AllowSetForegroundWindow.
Aug 3 2022, 11:11 AM
werner committed rG5fb2306b9760: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Aug 3 2022, 10:50 AM
werner committed rGb067285d595a: dirmngr: Fix failed malloc error message. (authored by werner).
dirmngr: Fix failed malloc error message.
Aug 3 2022, 10:50 AM
werner committed rGebb736b2c310: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Aug 3 2022, 9:29 AM

Aug 2 2022

werner added a project to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data: Restricted Project.

Fixed in 2.2 and master. Did a couple of manual tests using 2.2 on Linux. gpgsplit comes handy to add a couple more tag-3 packets (same algos or one patched to camellia for the negative test)

Aug 2 2022, 6:55 PM · gnupg, Restricted Project
werner committed rG171725c9717c: g13: Remove unused variable. (authored by werner).
g13: Remove unused variable.
Aug 2 2022, 6:46 PM
werner committed rGea7aba6e605d: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Aug 2 2022, 6:46 PM
werner committed rGe542c4af182d: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Aug 2 2022, 6:46 PM
werner committed rGe8011a7ceca7: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Aug 2 2022, 6:37 PM
werner added a comment to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.

This also points out that the cipher algos and modes of the symmetric encrypted session key packets where never checked for compliance. We only checked the compliance of the bulk encryption cipher algo.

Aug 2 2022, 6:04 PM · gnupg, Restricted Project
werner committed rE745d333cf7b5: w32: Convert REG_DWORD values to a string. (authored by werner).
w32: Convert REG_DWORD values to a string.
Aug 2 2022, 3:19 PM
werner committed rG6bc959231802: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Aug 2 2022, 12:27 PM

Aug 1 2022

werner added projects to T5371: Handle invalid compliance settings: Restricted Project, Feature Request.

Has this been implemented?

Aug 1 2022, 3:15 PM · Feature Request, Restricted Project, kleopatra
werner edited projects for T5990: Option to ignore the user trustlist.txt, added: Restricted Project; removed backport.
Aug 1 2022, 3:12 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
werner committed rG10f42f313ca7: tests: Install links for tpm2daemon (authored by werner).
tests: Install links for tpm2daemon
Aug 1 2022, 3:11 PM
werner lowered the priority of T6023: Check how GnuPG handles several keys from WKD from High to Normal.

I don't think that we need to fix things here. Important is that the WKD import uses a filter which imports only keys with the requested mail address. However, if a key with the same fingerprint already exists it will be merged.

Aug 1 2022, 11:33 AM · gnupg24, g10, common, Documentation, wkd
werner closed T6098: Path traversal bug in gpg-wks-server as Resolved.
Aug 1 2022, 11:20 AM · wkd, gnupg
werner triaged T6114: Support Installable test suites in gpg-crypt as Normal priority.
Aug 1 2022, 11:18 AM · Tests, dev.gnupg.org, Feature Request
werner committed rG8e63e813c740: common: Add a default OpenPGP ECC mapping. (authored by werner).
common: Add a default OpenPGP ECC mapping.
Aug 1 2022, 10:35 AM
werner committed rG67e510cbf7b1: scd:opengpg: Minor vendor name fix (authored by werner).
scd:opengpg: Minor vendor name fix
Aug 1 2022, 10:35 AM

Jul 29 2022

werner edited projects for T5119: TOFU messages are not completely and correctly localized to German, added: gnupg (gpg23); removed gnupg (gpg22).

It is unlikely that the tofu stuff will get into widespread use in the 2.2 version - if at all.

Jul 29 2022, 4:23 PM · gnupg24, gnupg (gpg23), i18n, Bug Report
werner closed T5359: Kleopatra: Loop in DeviceInfoWatcher with GnuPG 2.3 on Windows as Resolved.

Fixed quite some time ago.

Jul 29 2022, 4:19 PM · Restricted Project, scd, Restricted Project, kleopatra
werner moved T5990: Option to ignore the user trustlist.txt from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 29 2022, 4:17 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent

Jul 28 2022

werner closed T6063: GnuPG: Ignore invalid hash algorithm preferences when signing & encrypting combined as Resolved.

Fixed with commits
rGeb675fbc4e4db52c3276bc0748b49df8a213fbc4
rG890e616593af5d1e0f2eb932768205ef90928e5e

Jul 28 2022, 11:31 AM · gnupg, Restricted Project
werner added a comment to rG890e616593af: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference..

The referenced bug should have been T6063

Jul 28 2022, 11:28 AM
werner committed rG890e616593af: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference. (authored by werner).
gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference.
Jul 28 2022, 11:08 AM
werner committed rGeb675fbc4e4d: gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference. (authored by werner).
gpg: For de-vs use SHA-256 instead of SHA-1 as implicit preference.
Jul 28 2022, 11:08 AM
werner added a comment to T6063: GnuPG: Ignore invalid hash algorithm preferences when signing & encrypting combined.

In de-vs mode we could change the implict algorithm from SHA-1 to SHA-256. That should solve the problem.

Jul 28 2022, 10:30 AM · gnupg, Restricted Project
werner committed rG6d9c8a1cbc37: scd:openpgp: New vendor (authored by werner).
scd:openpgp: New vendor
Jul 28 2022, 9:02 AM

Jul 27 2022

werner committed rGd0bd91ba73a7: agent: New option --no-user-trustlist and --sys-trustlist-name. (authored by werner).
agent: New option --no-user-trustlist and --sys-trustlist-name.
Jul 27 2022, 5:24 PM
werner committed rGabe69b2094dd: gpg: Look up user ID to revoke by UID hash (authored by ikloecker).
gpg: Look up user ID to revoke by UID hash
Jul 27 2022, 5:24 PM
werner changed the status of T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid from Open to Testing.

Backported for for 2.2.37

Jul 27 2022, 4:37 PM · gnupg (gpg23), Restricted Project, Feature Request
werner changed the status of T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid, a subtask of T4087: Kleopatra: Revoke User-ID, from Open to Testing.
Jul 27 2022, 4:37 PM · Restricted Project, Restricted Project, gpg4win, kleopatra, Feature Request
werner triaged T6109: Kleopatra: Better way to show expired subkeys as Normal priority.
Jul 27 2022, 3:22 PM · Feature Request, Restricted Project, OpenPGP, kleopatra
werner changed the status of T6098: Path traversal bug in gpg-wks-server from Open to Testing.

Fix will go into 2.2.37 and 2.3.8.

Jul 27 2022, 12:33 PM · wkd, gnupg
werner committed rG73a98c139691: wkd: Bind the address to the nonce. (authored by werner).
wkd: Bind the address to the nonce.
Jul 27 2022, 12:31 PM
werner shifted T6098: Path traversal bug in gpg-wks-server from the Restricted Space space to the S1 Public space.
Jul 27 2022, 11:43 AM · wkd, gnupg
werner committed rG4c8792fa10b6: wkd: Bind the address to the nonce. (authored by werner).
wkd: Bind the address to the nonce.
Jul 27 2022, 11:43 AM
werner committed rG77090e5260e4: tests: Add missing file for tpm2d tests to the tarball. (authored by werner).
tests: Add missing file for tpm2d tests to the tarball.
Jul 27 2022, 11:43 AM
werner closed T6107: Completely lost ability to create PGP Keys as Resolved.
Jul 27 2022, 8:37 AM · Support
werner updated the task description for T6098: Path traversal bug in gpg-wks-server.
Jul 27 2022, 8:26 AM · wkd, gnupg
werner renamed T6098: Path traversal bug in gpg-wks-server from Pass traversal bug in gpg-wks-server to Path traversal bug in gpg-wks-server.
Jul 27 2022, 8:20 AM · wkd, gnupg

Jul 26 2022

werner closed T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) as Resolved.
Jul 26 2022, 9:17 PM · gnupg (gpg22), CVE, gpg4win
werner closed T5977: Smartcard PIN stays in clear in memory as Resolved.
Jul 26 2022, 9:17 PM · backport, libassuan, pinentry, scd, gnupg (gpg22), Bug Report
werner added a project to T6052: gnupg2 tpm2d tests do not work: Tests.
Jul 26 2022, 9:15 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner added a project to T6052: gnupg2 tpm2d tests do not work: TPM.
Jul 26 2022, 9:14 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner created TPM.
Jul 26 2022, 9:14 PM
werner closed T6052: gnupg2 tpm2d tests do not work as Resolved.
Jul 26 2022, 9:12 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner claimed T6052: gnupg2 tpm2d tests do not work.
Jul 26 2022, 9:12 PM · gnupg24 (gnupg-2.4.4), Tests, TPM, Bug Report
werner triaged T6071: Duplicated output (repeated nearly once) of the GnuPG console-output to "stdout" on Windows-Console if "Legacy-Console" with any TrueType Fonts is activated under Windows as Normal priority.
Jul 26 2022, 9:07 PM · Windows, gnupg, Bug Report
werner triaged T6041: pinentry-qt dialog window no longer floats under Sway (fixed after 1.2.0) as Normal priority.
Jul 26 2022, 9:07 PM · Restricted Project, pinentry, Bug Report
werner closed T6038: gpg-wks-client excludes uid with URL in comment as Resolved.

Probably fixed meanwhile in 2.2.
Please re-open if experience this problem also with a decent gnupg 2.2 versions.

Jul 26 2022, 9:06 PM · gnupg (gpg22), wkd, Bug Report
werner closed T6014: Failed to search on certificate server. The error returned was: Syntax error in URI. as Resolved.

Probably an invalid specified keyserver

Jul 26 2022, 9:03 PM · gnupg24, dirmngr, Bug Report
werner triaged T6051: Allow revoking last UID of primary key with expert mode as Low priority.
Jul 26 2022, 9:01 PM · OpenPGP, Feature Request, gnupg
werner triaged T6060: segfault (NULL-pointer) when inspecting gpg Context after exception (python) as Normal priority.
Jul 26 2022, 8:59 PM · Python, gpgme, Bug Report
werner closed T5899: Fix compilation of dirmngr with mingw.org's MinGW as Resolved.
Jul 26 2022, 8:58 PM · patch, Feature Request, Windows, toolchain
werner added a project to T5990: Option to ignore the user trustlist.txt: backport.
Jul 26 2022, 8:57 PM · Restricted Project, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
werner closed T6037: Allow import of nwer DFN generated P12 files as Resolved.
Jul 26 2022, 8:53 PM · gnupg (gpg22), S/MIME
werner added a project to T5936: gpg: Support specifiying user ID to revoke as UID hash for --quick-revoke-uid: backport.
Jul 26 2022, 7:44 PM · gnupg (gpg23), Restricted Project, Feature Request
werner updated the task description for T5947: Release GnuPG 2.3.7.
Jul 26 2022, 7:40 PM · CVE, Release Info, gnupg (gpg23)
werner triaged T6106: Release GnuPG 2.3.8 as Normal priority.
Jul 26 2022, 7:37 PM · Release Info, gnupg (gpg23)
werner closed T5937: Release GnuPG 2.3.6 as Resolved.
Jul 26 2022, 7:34 PM · Release Info, gnupg (gpg23)
werner closed T5949: Release GnuPG 2.2.36 as Resolved.
Jul 26 2022, 7:34 PM · CVE, gnupg (gpg22), Release Info
werner triaged T6105: Release GnuPG 2.2.37 as Normal priority.
Jul 26 2022, 7:33 PM · gnupg (gpg22), Release Info
werner updated the task description for T5949: Release GnuPG 2.2.36.
Jul 26 2022, 7:31 PM · CVE, gnupg (gpg22), Release Info
werner triaged T6098: Path traversal bug in gpg-wks-server as High priority.
Jul 26 2022, 12:36 PM · wkd, gnupg
werner added projects to T6069: Kleopatra crashes when creating UIServer socket: Windows, kleopatra, Info Needed.
Jul 26 2022, 11:04 AM · Info Needed, kleopatra, Windows, Bug Report
werner triaged T6054: ambiguous error message when output file exists already as Low priority.

That is not easy to change because we show all kind of error codes. If you run in --verbose mode you should see more info.

Jul 26 2022, 11:03 AM · Bug Report
werner triaged T6053: max passphrase lengths as Normal priority.
Jul 26 2022, 10:59 AM · gnupg, Documentation
werner triaged T6058: clarify need of --batch and/or --pinentry-mode looback with --passphrase-* options as Low priority.

There won't be any semantic changes for obvious reasons.

Jul 26 2022, 10:58 AM · gnupg, Documentation
werner triaged T6085: pinentry-qt: Earlier passphrase hint when creating new key as Normal priority.
Jul 26 2022, 10:56 AM · gnupg, Restricted Project, pinentry
werner committed rG1735b5ffa879: doc: Minor typo fix (authored by werner).
doc: Minor typo fix
Jul 26 2022, 10:52 AM
werner closed T6092: Minor typo in documentation as Resolved.

Thanks for reporting.

Jul 26 2022, 10:52 AM · patch, Documentation, Bug Report
werner added a comment to T6092: Minor typo in documentation.

The first thing is a problem of the GNU makeinfo tool. Can't be fixed int the source.

Jul 26 2022, 10:50 AM · patch, Documentation, Bug Report
werner committed rG22e8dc792702: dirmngr: Ask keyservers to provide the key fingerprints (authored by ikloecker).
dirmngr: Ask keyservers to provide the key fingerprints
Jul 26 2022, 9:47 AM

Jul 25 2022

werner triaged T6068: clarify what a line is in --passphrase-fd and --passphrase-file as Low priority.
Jul 25 2022, 3:57 PM · Documentation
werner committed rGee8f1c10a7a5: gpg: Request keygrip of key to add via command interface (authored by ikloecker).
gpg: Request keygrip of key to add via command interface
Jul 25 2022, 3:18 PM
werner committed rGc1489ca0e101: wkd: Fix path traversal attack on gpg-wks-server. (authored by werner).
wkd: Fix path traversal attack on gpg-wks-server.
Jul 25 2022, 2:54 PM
werner committed rG8a63a8c8257e: wkd: Fix path traversal attack on gpg-wks-server. (authored by werner).
wkd: Fix path traversal attack on gpg-wks-server.
Jul 25 2022, 10:39 AM

Jul 11 2022

werner committed rDe2d6e8d4aa1b: swdb: GnuPG 2.3.7 (authored by werner).
swdb: GnuPG 2.3.7
Jul 11 2022, 2:16 PM
werner committed rG95651d1a4fec: Post release updates (authored by werner).
Post release updates
Jul 11 2022, 1:42 PM
werner committed rGbc5328f5119a: Release 2.3.7 (authored by werner).
Release 2.3.7
Jul 11 2022, 1:42 PM
First
Prev
Next