Page MenuHome GnuPG
Feed All Stories

Yesterday

werner added a comment to T6140: F5 does not always work in Kleos smartcard dialog.

I imported the public key using Kleopatra.

Fri, Aug 19, 9:41 PM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker changed the status of T6140: F5 does not always work in Kleos smartcard dialog from Open to Testing.

The information should now be updated automatically. F5 still won't change anything if the data on the smart card didn't change, but pressing F5 to update information about locally stored keys shouldn't be necessary in the first place.

Fri, Aug 19, 5:29 PM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker committed rKLEOPATRA6a3f612ed153: Update information about OpenPGP keys on smart card if keys have changed (authored by ikloecker).
Update information about OpenPGP keys on smart card if keys have changed
Fri, Aug 19, 5:27 PM
ikloecker committed rKLEOPATRAa3684049dd4f: Use ReceiveKeysJob for refreshing OpenPGP keys (authored by ikloecker).
Use ReceiveKeysJob for refreshing OpenPGP keys
Fri, Aug 19, 1:44 PM
aheinecke committed rKLEOPATRA93746a062b99: Reduce inherited handles for Windows child proc (authored by aheinecke).
Reduce inherited handles for Windows child proc
Fri, Aug 19, 1:24 PM
ikloecker added a comment to T6140: F5 does not always work in Kleos smartcard dialog.

The Smartcards view is not updated because the data on the card hasn't changed. The update can be forced by removing and re-inserting the card.

Fri, Aug 19, 12:12 PM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker claimed T6140: F5 does not always work in Kleos smartcard dialog.
Fri, Aug 19, 11:59 AM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker added a comment to T6140: F5 does not always work in Kleos smartcard dialog.

With GnuPG master and Kleopatra master I'm making (slightly) different observations.

Fri, Aug 19, 11:51 AM · Testing, Restricted Project, kleopatra, Bug Report
werner committed rG77b6896f7a85: gpgsm: New option --compatibility-flags. (authored by werner).
gpgsm: New option --compatibility-flags.
Fri, Aug 19, 11:22 AM
ikloecker closed T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?) as Resolved.
Fri, Aug 19, 11:12 AM · Restricted Project, clang, C++, gpgme, Bug Report
ikloecker added a comment to T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).

Thanks for the report! Should be fixed.

Fri, Aug 19, 11:08 AM · Restricted Project, clang, C++, gpgme, Bug Report
ikloecker committed rMf02c20cc9c57: cpp: Fix building with C++11 (authored by ikloecker).
cpp: Fix building with C++11
Fri, Aug 19, 11:07 AM
ikloecker closed T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration as Resolved.

Thanks for reporting and testing my fixes.

Fri, Aug 19, 10:54 AM · Restricted Project, qt, gpgme, Bug Report
chyen added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Probably, PIPE_REJECT_REMOTE_CLIENTS mode and lpSecurityAttributes=NULL is OK.

Fri, Aug 19, 7:57 AM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
mlaurent committed rLIBKLEOfccb8aff6c0c: GIT_SILENT: prepare 22.08.1 (authored by mlaurent).
GIT_SILENT: prepare 22.08.1
Fri, Aug 19, 7:03 AM

Thu, Aug 18

andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Our tests are fine as of rM2e7a61b898fc.

Thu, Aug 18, 10:32 PM · Restricted Project, qt, gpgme, Bug Report
jukivili committed rC8a1f50e66364: kdf: Restructure KDF test vectors (authored by gmazyland).
kdf: Restructure KDF test vectors
Thu, Aug 18, 7:03 PM
jukivili committed rCa20700c55f0e: kdf: Allow empty password for Argon2 (authored by gmazyland).
kdf: Allow empty password for Argon2
Thu, Aug 18, 7:03 PM
smlx added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

Yes, that patch is not a great solution. Ideally there would be an interactive choice in the gpg CLI between encrypting/signing subkey during the add-existing-subkey operation.

Thu, Aug 18, 4:23 PM · gnupg (gpg23), Bug Report
mpilgrem created T6142: On Windows, gpg 2.3.7 thinks the certificates of major keyservers have expired.
Thu, Aug 18, 1:32 PM · Keyserver, Windows, Bug Report
ikloecker triaged T6140: F5 does not always work in Kleos smartcard dialog as Normal priority.

Yeah. F5 only refreshes the smart cards. It doesn't refresh Kleopatra's key cache.

Thu, Aug 18, 1:30 PM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker claimed T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).
Thu, Aug 18, 1:28 PM · Restricted Project, clang, C++, gpgme, Bug Report
tnn2 created T6141: gpgme importresult.cpp fails to compile on macOS (needs to use C++14?).
Thu, Aug 18, 11:51 AM · Restricted Project, clang, C++, gpgme, Bug Report
werner added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

It will be a lot of work to change this in gpg. Thus ISO dates were only introduced with gpgsm after the former glibc maintainer refused to switch to a 64 bit time_t - which would have been easy enough at that time (about the year 2001).

Thu, Aug 18, 11:47 AM · Restricted Project, qt, gpgme, Bug Report
werner created T6140: F5 does not always work in Kleos smartcard dialog.
Thu, Aug 18, 11:01 AM · Testing, Restricted Project, kleopatra, Bug Report
ikloecker committed rM2fa5c80aeba4: cpp: Fix handling of "no key" or "invalid time" situations (authored by ikloecker).
cpp: Fix handling of "no key" or "invalid time" situations
Thu, Aug 18, 10:56 AM
ikloecker committed rM2e7a61b898fc: qt,tests: Make test pass on 32-bit systems (authored by ikloecker).
qt,tests: Make test pass on 32-bit systems
Thu, Aug 18, 10:56 AM
aheinecke triaged T6139: Kleopatra: Encrypting two files in an archive on a mounted network share on windows with one CPU never finishes as Normal priority.
Thu, Aug 18, 10:24 AM · kleopatra, Restricted Project
ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Yes, it's a problem in gpg. gpg asks for the expiration date of the subkey

[  277s] EditInteractor: 4 -> nextState( GET_LINE, keygen.valid ) -> 5

gpgme replies with an ISO date

[  277s] EditInteractor: action result "21000101T120000"

Then gpg asks again for the expiration date

[  277s] EditInteractor: 5 -> nextState( GET_LINE, keygen.valid ) -> 4294967295

which gpgme doesn't expect, so that gpgme return a "general error".

Thu, Aug 18, 10:17 AM · Restricted Project, qt, gpgme, Bug Report
Jakuje added a comment to T6127: FIPS 140-3 final review comments.

For the record, the changeset in the attached merge request is final and waiting for reviews.

Thu, Aug 18, 8:42 AM · FIPS, libgcrypt, Bug Report
gniibe committed rTf550b3323c8e: Use gcry_cipher_setup_geniv and gcry_cipher_geniv for GCM. (authored by gniibe).
Use gcry_cipher_setup_geniv and gcry_cipher_geniv for GCM.
Thu, Aug 18, 7:11 AM
gniibe added a comment to T4873: Enable AES GCM in FIPS mode.

Experimental branches:
https://dev.gnupg.org/source/libgcrypt/history/t4873/
https://dev.gnupg.org/source/ntbtls/history/t4873/

Thu, Aug 18, 6:37 AM · FIPS, libgcrypt, Feature Request
gniibe triaged T6097: SC-HSM 4K Compatibility as Low priority.

Thank you for your log.

Thu, Aug 18, 3:57 AM · Bug Report

Wed, Aug 17

ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Thanks! It seems that we pass the correct expiration date to gpg:

EditInteractor: action result "21000101T120000"

So, it's maybe a problem in gpg now.

Wed, Aug 17, 11:55 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

relevant items start at line 4900 ...

[  274s] + pushd lang/qt/tests
Wed, Aug 17, 9:29 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

Hmm. Please run the test with

GPGMEPP_INTERACTOR_DEBUG=stderr GPGME_DEBUG=8 TESTS="initial.test t-addexistingsubkey final.test" make -e check-TESTS

in lang/qt/tests under the build folder to get (a lot of) debug output.

Wed, Aug 17, 8:28 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

WIP with those three patches:

Wed, Aug 17, 7:09 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker triaged T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration as Normal priority.
Wed, Aug 17, 6:50 PM · Restricted Project, qt, gpgme, Bug Report
werner changed the status of T6138: gpgconf: List auto-key-import and include-key-block again from Open to Testing.
Wed, Aug 17, 5:13 PM · gnupg (gpg22), Restricted Project
werner committed rGb356eddf3d7a: gpgconf: Make --auto-key-import and --include-key-block visible again. (authored by werner).
gpgconf: Make --auto-key-import and --include-key-block visible again.
Wed, Aug 17, 5:11 PM
werner edited projects for T6138: gpgconf: List auto-key-import and include-key-block again, added: gnupg (gpg22); removed gnupg.

Yes, I removed them accidentally because they were listed under the keyserver option heading in gpg. They actually belong below the import/export heading.

Wed, Aug 17, 5:07 PM · gnupg (gpg22), Restricted Project
ikloecker committed rMc977424a1d39: qt: Make sure expiration time is interpreted as unsigned number (authored by ikloecker).
qt: Make sure expiration time is interpreted as unsigned number
Wed, Aug 17, 5:05 PM
ikloecker committed rM81d4b7f2d707: qt,tests: Log the actual error code if the assertion fails (authored by ikloecker).
qt,tests: Log the actual error code if the assertion fails
Wed, Aug 17, 5:05 PM
ikloecker committed rMf2b48de26b8f: qt,tests: Make sure expiration time is interpreted as unsigned number (authored by ikloecker).
qt,tests: Make sure expiration time is interpreted as unsigned number
Wed, Aug 17, 5:05 PM
ikloecker moved T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Wed, Aug 17, 4:56 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker claimed T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Wed, Aug 17, 4:56 PM · Restricted Project, qt, gpgme, Bug Report
ikloecker committed rKLEOPATRA6a55c1a2811a: Treat expiration times as unsigned numbers and prevent overflows (authored by ikloecker).
Treat expiration times as unsigned numbers and prevent overflows
Wed, Aug 17, 4:51 PM
ikloecker committed rKLEOPATRAf09588c35c05: Treat creation and expiration times as unsigned 32-bit numbers (authored by ikloecker).
Treat creation and expiration times as unsigned 32-bit numbers
Wed, Aug 17, 4:51 PM
ikloecker committed rLIBKLEO2ee089a59215: GIT_SILENT Remove unused local function (authored by ikloecker).
GIT_SILENT Remove unused local function
Wed, Aug 17, 4:48 PM
ikloecker committed rLIBKLEO90bf972afac8: Always treat time_t as an unsigned 32-bit number (authored by ikloecker).
Always treat time_t as an unsigned 32-bit number
Wed, Aug 17, 4:48 PM
ikloecker added a comment to T5555: Cannot add existing ECDSA key as a signing subkey.

This patch breaks adding existing ECDH encryption subkeys to a key because now gpg tries to treat the encryption subkey as signing subkey. This can be reproduced with test t-addexistingsubkey in gpgme.

Wed, Aug 17, 2:26 PM · gnupg (gpg23), Bug Report
aheinecke triaged T6138: gpgconf: List auto-key-import and include-key-block again as Normal priority.
Wed, Aug 17, 11:53 AM · gnupg (gpg22), Restricted Project
ikloecker committed rEfcb19dbfd493: build: Omit -L<libdir> for standard paths on some 64-bit systems (authored by ikloecker).
build: Omit -L<libdir> for standard paths on some 64-bit systems
Wed, Aug 17, 9:25 AM
margirou added a comment to T6097: SC-HSM 4K Compatibility.

I am attaching the files. The "gpgconf --list-config" gave the error "gpgconf: can't open global config file 'C:\\ProgramData\\GNU\\etc\\gnupg\\gpgconf.conf': No such file or directory", so I tried the "gpgconf --show-configs".

Wed, Aug 17, 8:52 AM · Bug Report
mlaurent committed rLIBKLEOec9eccef5f79: Use Qt:: directly (authored by mlaurent).
Use Qt:: directly
Wed, Aug 17, 7:50 AM
mlaurent committed rKLEOPATRA4662d151b912: Use Qt:: directly (authored by mlaurent).
Use Qt:: directly
Wed, Aug 17, 7:46 AM
werner added a comment to T6097: SC-HSM 4K Compatibility.

ACS readers simply don't work reliable under Linux.

Wed, Aug 17, 7:36 AM · Bug Report
werner updated the task description for T6097: SC-HSM 4K Compatibility.
Wed, Aug 17, 7:32 AM · Bug Report
werner added a comment to T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.

There is a reason that we switched to ISO Date strings in large parts of GnuPG ;-)

Wed, Aug 17, 7:30 AM · Restricted Project, qt, gpgme, Bug Report
margirou renamed T6097: SC-HSM 4K Compatibility from scdaemon cannot recognise SC-HSM to SC-HSM 4K Compatibility.
Wed, Aug 17, 5:44 AM · Bug Report
margirou raised the priority of T6097: SC-HSM 4K Compatibility from Low to Needs Triage.

Hello again,

Wed, Aug 17, 5:41 AM · Bug Report
gniibe added a comment to T6136: build failure with slibtool - error: undefined symbol: QGpgME::RevokeKeyJob::staticMetaObject.

@ikloecker Thank you. You're right. Please go ahead.

Wed, Aug 17, 1:44 AM · gpgme, Bug Report
andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Wed, Aug 17, 12:23 AM · Restricted Project, qt, gpgme, Bug Report

Tue, Aug 16

andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Tue, Aug 16, 11:40 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger updated the task description for T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Tue, Aug 16, 11:24 PM · Restricted Project, qt, gpgme, Bug Report
andreasstieger created T6137: arch-specific (32 bit) failures in AddExistingSubkeyJobTest::testAddExistingSubkeyWithExpiration.
Tue, Aug 16, 11:24 PM · Restricted Project, qt, gpgme, Bug Report
aheinecke committed rGbca00f1fba02: dirmngr: Fix NTBTLS include for test (authored by aheinecke).
dirmngr: Fix NTBTLS include for test
Tue, Aug 16, 8:16 PM
aheinecke committed rW28aa58cda775: appimage: Fix KDE plugins installation (authored by aheinecke).
appimage: Fix KDE plugins installation
Tue, Aug 16, 8:15 PM
aheinecke committed rW102dde059830: appimage: Update to devtools-10 (authored by aheinecke).
appimage: Update to devtools-10
Tue, Aug 16, 8:15 PM
aheinecke committed rW9d9ef030faaf: appimage: Refresh patches (authored by aheinecke).
appimage: Refresh patches
Tue, Aug 16, 8:15 PM
ikloecker committed rW3003d37f3a7d: Add upstreamed patch that fixes tab order in KMessageWidget (authored by ikloecker).
Add upstreamed patch that fixes tab order in KMessageWidget
Tue, Aug 16, 4:55 PM
werner committed rG3591112fdb01: agent: Fix bug introduced earlier today. (authored by werner).
agent: Fix bug introduced earlier today.
Tue, Aug 16, 4:47 PM
werner committed rG891b941bbf54: doc: Prepare NEWS (authored by werner).
doc: Prepare NEWS
Tue, Aug 16, 2:44 PM
werner committed rG914ee7247562: gpg: Fix "generate" command in --card-edit. (authored by werner).
gpg: Fix "generate" command in --card-edit.
Tue, Aug 16, 2:08 PM
werner committed rG2d23a72690b4: gpg: Update shadow-keys with --card-status also for non-openpgp cards. (authored by werner).
gpg: Update shadow-keys with --card-status also for non-openpgp cards.
Tue, Aug 16, 1:02 PM
werner committed rG287597cb2263: gpg: Fix --card-status to handle lowercase APPTYPEs (authored by werner).
gpg: Fix --card-status to handle lowercase APPTYPEs
Tue, Aug 16, 12:34 PM
werner committed rG7046001b0758: doc: Update description of the key format. (authored by werner).
doc: Update description of the key format.
Tue, Aug 16, 12:34 PM
werner committed rG755920d43357: agent: Let READKEY update the display-s/n of the Token entry. (authored by werner).
agent: Let READKEY update the display-s/n of the Token entry.
Tue, Aug 16, 12:04 PM
werner committed rG8e393e259264: gpg: Fix --card-status to handle lowercase APPTYPEs (authored by werner).
gpg: Fix --card-status to handle lowercase APPTYPEs
Tue, Aug 16, 12:04 PM
werner committed rG27ae89db6e69: gpg: Fix detecting OpenPGP card by serialno. (authored by gniibe).
gpg: Fix detecting OpenPGP card by serialno.
Tue, Aug 16, 12:04 PM
werner committed rG12ad9529782d: common: In private key mode write "Key:" always last in name-value. (authored by werner).
common: In private key mode write "Key:" always last in name-value.
Tue, Aug 16, 12:04 PM
ikloecker changed the status of T6046: Kleopatra: Make certifying certificates accessible from Open to Testing.

All issues have been addressed except:

  • No accessible feedback when checking/unchecking user ID

This is caused by a bug in Qt which doesn't report the checkable state to AT-SPI.

Tue, Aug 16, 9:27 AM · Testing, kleopatra, Restricted Project
ikloecker changed the status of T6046: Kleopatra: Make certifying certificates accessible, a subtask of T5824: Kleopatra: Full accessibility support, from Open to Testing.
Tue, Aug 16, 9:27 AM · kleopatra, Restricted Project
werner committed rS56629ad6f449: Add configure option only-marked (authored by werner).
Add configure option only-marked
Tue, Aug 16, 9:05 AM

Mon, Aug 15

ikloecker committed rKLEOPATRAcd308b239523: Add a label explaining what the user is expected to do (authored by ikloecker).
Add a label explaining what the user is expected to do
Mon, Aug 15, 6:48 PM
ikloecker committed rKLEOPATRA3c5248f9d1f6: Store and restore the size of the dialog, not its geometry (authored by ikloecker).
Store and restore the size of the dialog, not its geometry
Mon, Aug 15, 6:48 PM
ikloecker committed rKLEOPATRA7bfd78296eb4: Add helper for storing/retrieving the accessible name of a QAction (authored by ikloecker).
Add helper for storing/retrieving the accessible name of a QAction
Mon, Aug 15, 6:48 PM
ikloecker committed rKLEOPATRAc7c45ac3a835: Make InfoField available for other parts of Kleopatra (authored by ikloecker).
Make InfoField available for other parts of Kleopatra
Mon, Aug 15, 6:48 PM
ikloecker committed rKLEOPATRA61ba5b0bd91b: Use an InfoField for the fingerprint (authored by ikloecker).
Use an InfoField for the fingerprint
Mon, Aug 15, 6:48 PM
ikloecker committed rKLEOPATRA8a58b87b22f8: Remove <html> tag from the tool tip (authored by ikloecker).
Remove <html> tag from the tool tip
Mon, Aug 15, 6:48 PM
Saklad5 added a comment to T4260: export all valid authentication subkeys in --export-ssh-key.

Any progress on this?

Mon, Aug 15, 4:11 PM · ssh, Feature Request
mlaurent committed rLIBKLEO14785b3d69c1: GIT_SILENT: time to increase version (authored by mlaurent).
GIT_SILENT: time to increase version
Mon, Aug 15, 4:04 PM
mlaurent committed rKLEOPATRA8fdb244ee6d9: GIT_SILENT: time to increase version (authored by mlaurent).
GIT_SILENT: time to increase version
Mon, Aug 15, 3:58 PM
aheinecke closed T5533: Kleopatra: Raise window more agressively on Windows as Resolved.
Mon, Aug 15, 2:28 PM · kleopatra, Restricted Project
aheinecke closed T5774: Kleopatra: Better default when decrypting Outlook attachments as Resolved.

This has been in the last releases.

Mon, Aug 15, 2:27 PM · kleopatra, Restricted Project
aheinecke closed T5961: Kleopatra: S/MIME Details cannot be copied multiline on Windows as Resolved.

Just tested this on Windows, works now as expected. Thanks.

Mon, Aug 15, 2:25 PM · kleopatra, Restricted Project
aheinecke added a comment to T6094: Kleopatra: Take windows user email Address from Active Directory if available.

Thinking about this, the best way to avoid AD code in Kleopatra would probably be to just create a QProcess that executes Powershell or WMIC to query the AD.

Mon, Aug 15, 2:11 PM · Restricted Project, kleopatra
aheinecke moved T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Aug 15, 2:02 PM · Testing, gnupg, Restricted Project
werner added a comment to T6135: Agent, P15: Insert Smartcard query uses serial number instead of $DISPSERIALNO.

Here is an example


using this key file:

Mon, Aug 15, 1:07 PM · Restricted Project, scd
werner committed rG706adf669173: common: New function nve_set. (authored by werner).
common: New function nve_set.
Mon, Aug 15, 12:58 PM