Page MenuHome GnuPG
Feed All Stories

Nov 8 2017

dkg added a comment to T3490: "gpgconf --launch gpg-agent" should not take a full second if the agent isn't already started.

I'll push some patches for proposal 1.

Nov 8 2017, 5:26 PM · gnupg (gpg22)
werner added a comment to T3378: gpg-agent.exe hanging after left to idle for a while.

The thing is that I don't see this bug with verbose logging enabled. So we need to do more code starring or instrument the code

Nov 8 2017, 4:57 PM · Windows, libassuan, gpgagent, Bug Report
werner closed T3489: Missing 2.2.2 version tag in git as Resolved.
Nov 8 2017, 4:56 PM · Bug Report
werner triaged T3490: "gpgconf --launch gpg-agent" should not take a full second if the agent isn't already started as Wishlist priority.

gpg-connect-agent is used by gpgconf to make things easier. Adding socket playing games is the opposite of simplifying things.

Nov 8 2017, 4:54 PM · gnupg (gpg22)
werner committed rD8fc663510f8a: tools: Remove bashism in the ftp-listener example (authored by werner).
tools: Remove bashism in the ftp-listener example
Nov 8 2017, 4:31 PM
werner committed rD3d80b1935f07: tools: Improve the ftp indexer. (authored by werner).
tools: Improve the ftp indexer.
Nov 8 2017, 4:18 PM
dkg created T3490: "gpgconf --launch gpg-agent" should not take a full second if the agent isn't already started.
Nov 8 2017, 3:51 PM · gnupg (gpg22)
HB1000 added a comment to T3378: gpg-agent.exe hanging after left to idle for a while.

Is there a more detailed logging that i can switch on? Perhaps i can help you to get diagnostic files. Nearly every day i notice this bug. In the log (with "verbose" in gpg-agent.conf) are the same entries i already posted.

Nov 8 2017, 3:32 PM · Windows, libassuan, gpgagent, Bug Report
werner committed rD07cf6d628c4f: tools: First take on a new FTP indexer (authored by werner).
tools: First take on a new FTP indexer
Nov 8 2017, 1:39 PM
aa added a comment to rD084ff18fc464: web: Add 4 new icons..

the UP arrow can be trick ... it reminds me the whole thing about Apollo Missions ... the navigation system;

Nov 8 2017, 1:30 PM
werner committed rD084ff18fc464: web: Add 4 new icons. (authored by werner).
web: Add 4 new icons.
Nov 8 2017, 12:20 PM
gniibe claimed T2923: trust signature domain restrictions don't work.
Nov 8 2017, 9:06 AM · gnupg (gpg14), Bug Report
wiktor-k added a comment to T2923: trust signature domain restrictions don't work.

For what is worth I think sanitize_regexp was programmed while reading 4880 because the RFC allows backslash + any character (section 8: Regular Expressions):

Nov 8 2017, 8:15 AM · gnupg (gpg14), Bug Report
gniibe added a comment to T2923: trust signature domain restrictions don't work.

It might be not a regression. The possibilities are: (1) it was tested by using non-GNU operating system. (2) Tests didn't cover characters (b, B, w, W, s, and S).

Nov 8 2017, 4:13 AM · gnupg (gpg14), Bug Report
akerl created T3489: Missing 2.2.2 version tag in git.
Nov 8 2017, 1:08 AM · Bug Report

Nov 7 2017

wiktor-k added a comment to T2923: trust signature domain restrictions don't work.

For the reference sanitize_regexp was introduced in this commit from 2007 to "Protect against malloc bombs.": and I see no changes to it (except typo correction) in git blame in trustdb.c.

Nov 7 2017, 9:30 PM · gnupg (gpg14), Bug Report
JochenSaalfeld committed rWbab26a58c600: update News as well to new GnuPG Version (authored by JochenSaalfeld).
update News as well to new GnuPG Version
Nov 7 2017, 1:58 PM
JochenSaalfeld committed rW9c0e665d4337: update gnupg version (authored by JochenSaalfeld).
update gnupg version
Nov 7 2017, 1:56 PM
Valodim added a comment to T3488: support specialized numeric9x4 format for symmetric passphrase.

Well, I gues it's complex enough to warrant strategic discussion, which can be done in this ticket :)

Nov 7 2017, 1:31 PM · Feature Request
wiz added a comment to T3056: gpgme-1.8.0: test failures on NetBSD.

I built gnupg 2.2.1 with the patch from D450, but that didn't help.
I even got an additional error:

Nov 7 2017, 1:05 PM · gpgme (gpgme 1.23.x), gpgagent, gnupg (gpg23)
dkg added a comment to T3488: support specialized numeric9x4 format for symmetric passphrase.

In the autocrypt spec, this is called a "setup code", not a "backup code" :)

Nov 7 2017, 12:55 PM · Feature Request
werner committed rD05d2896101de: verein: Add new member (authored by werner).
verein: Add new member
Nov 7 2017, 12:37 PM
werner committed rD926243fc33c1: web: Release announcement for GnuPG 2.2.2. (authored by werner).
web: Release announcement for GnuPG 2.2.2.
Nov 7 2017, 12:29 PM
werner committed rDb556dad0c74d: swdb: Release of gnupg 2.2.2 (authored by werner).
swdb: Release of gnupg 2.2.2
Nov 7 2017, 12:26 PM
Valodim created T3488: support specialized numeric9x4 format for symmetric passphrase.
Nov 7 2017, 11:48 AM · Feature Request
bernhard added a comment to T3487: Check ldap timeout for CMS certificate search.

So maybe there is also a display problem, as I saw 0:00 in Kleo. I have to recheck.

Nov 7 2017, 11:30 AM · Windows, dirmngr, gpg4win
werner committed rG68284e150949: doc: Include NEWS from the 2.2.2 release (authored by werner).
doc: Include NEWS from the 2.2.2 release
Nov 7 2017, 11:24 AM
werner committed rG6530aff6923b: Post release updates. (authored by werner).
Post release updates.
Nov 7 2017, 11:21 AM
werner committed rG5bd515005032: Release 2.2.2 (authored by werner).
Release 2.2.2
Nov 7 2017, 11:21 AM
werner committed rG30f21f8b0fa6: dirmngr: Reduce default LDAP timeout to 15 seconds. (authored by werner).
dirmngr: Reduce default LDAP timeout to 15 seconds.
Nov 7 2017, 11:21 AM
gniibe added a comment to T3472: gpgme-1.9.0 test suite hangs on OpenBSD.

Yes, it will be in 2.2.3. It's too late for 2.2.2.

Nov 7 2017, 10:38 AM · gpgagent, gnupg (gpg22), gpgme
werner committed rGab7ac827041b: dirmngr: Reduce default LDAP timeout to 15 seconds. (authored by werner).
dirmngr: Reduce default LDAP timeout to 15 seconds.
Nov 7 2017, 10:08 AM
werner added a comment to T3487: Check ldap timeout for CMS certificate search.

The default for the timeout are 100 seconds. I will chnage that to 15 seconds which is the same what we use for keyservers.

Nov 7 2017, 10:04 AM · Windows, dirmngr, gpg4win
werner committed rG23bfac6d1a8b: speedo: Include software versions in the W32 README (authored by werner).
speedo: Include software versions in the W32 README
Nov 7 2017, 10:00 AM
werner committed rG1941287c9d2c: po: Update Russian translation (authored by Ineiev <ineiev@gnu.org>).
po: Update Russian translation
Nov 7 2017, 10:00 AM
vext01 added a comment to T3472: gpgme-1.9.0 test suite hangs on OpenBSD.

So is 380bce13d94f the correct fix? If so, I will update the OpenBSD port including this as a local patch.

Nov 7 2017, 9:47 AM · gpgagent, gnupg (gpg22), gpgme
werner committed rGf9f72ffbfa9f: speedo: Include software versions in the W32 README (authored by werner).
speedo: Include software versions in the W32 README
Nov 7 2017, 9:30 AM
gniibe added a task to D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available.: T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.
Nov 7 2017, 9:28 AM
gniibe added a revision to T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel: D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available..
Nov 7 2017, 9:28 AM · Bug Report
gniibe changed the status of T3056: gpgme-1.8.0: test failures on NetBSD from Open to Testing.

I believe this is due to the bug of gpg-agent. So, I put this report as a sub task under T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.

Nov 7 2017, 9:27 AM · gpgme (gpgme 1.23.x), gpgagent, gnupg (gpg23)
gniibe changed the status of T3056: gpgme-1.8.0: test failures on NetBSD, a subtask of T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel, from Open to Testing.
Nov 7 2017, 9:27 AM · Bug Report
gniibe added a parent task for T3056: gpgme-1.8.0: test failures on NetBSD: T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.
Nov 7 2017, 9:25 AM · gpgme (gpgme 1.23.x), gpgagent, gnupg (gpg23)
gniibe added a subtask for T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel: T3056: gpgme-1.8.0: test failures on NetBSD.
Nov 7 2017, 9:25 AM · Bug Report
gniibe added a subtask for T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel: T3472: gpgme-1.9.0 test suite hangs on OpenBSD.
Nov 7 2017, 9:24 AM · Bug Report
gniibe added a parent task for T3472: gpgme-1.9.0 test suite hangs on OpenBSD: T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.
Nov 7 2017, 9:24 AM · gpgagent, gnupg (gpg22), gpgme
gniibe triaged T3472: gpgme-1.9.0 test suite hangs on OpenBSD as Normal priority.
Nov 7 2017, 9:23 AM · gpgagent, gnupg (gpg22), gpgme
gniibe changed the status of T3472: gpgme-1.9.0 test suite hangs on OpenBSD from Open to Testing.

This is a bug in gpg-agent.

Nov 7 2017, 9:23 AM · gpgagent, gnupg (gpg22), gpgme
bernhard created T3487: Check ldap timeout for CMS certificate search in the S1 Public space.
Nov 7 2017, 8:55 AM · Windows, dirmngr, gpg4win
gniibe committed rC71a07704ad98: build: Don't use /dev/srandom on OpenBSD. (authored by Jeremie Courreges-Anglas <jca@wxcvbn.org>).
build: Don't use /dev/srandom on OpenBSD.
Nov 7 2017, 5:26 AM
gniibe created D452: Build: FreeBSD make.
Nov 7 2017, 5:19 AM · gnupg
gniibe added a comment to T3152: KDF DO support in OpenPGP card.

Implemented in a branch: gniibe/scd-kdf-support

Nov 7 2017, 3:30 AM · scd
gniibe committed rG526d144b1bb6: scd: Support KDF Data Object of OpenPGPcard V3.3. (authored by gniibe).
scd: Support KDF Data Object of OpenPGPcard V3.3.
Nov 7 2017, 3:26 AM
gniibe committed rG96d441b315ec: po: Update Japanese translation (authored by gniibe).
po: Update Japanese translation
Nov 7 2017, 3:16 AM
gniibe committed rG380bce13d94f: agent: Use clock or clock_gettime for calibration. (authored by gniibe).
agent: Use clock or clock_gettime for calibration.
Nov 7 2017, 3:03 AM
gniibe added a comment to T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.

I confirmed that clock is better on FreeBSD, too. And FreeBSD has clock_gettime with CLOCK_THREAD_CPUTIME_ID.
I tested FreeBSD 11.1 running QEMU.

Nov 7 2017, 2:37 AM · Bug Report
gniibe added a comment to T3056: gpgme-1.8.0: test failures on NetBSD.

Could you please testing gpgme with D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available. for GnuPG?

Nov 7 2017, 1:39 AM · gpgme (gpgme 1.23.x), gpgagent, gnupg (gpg23)
gniibe added a comment to T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.

# My update of D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available. has gone somewhere. So, I update it again.

Nov 7 2017, 1:36 AM · Bug Report
gniibe updated the diff for D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available..

Use clock instead of times.

Nov 7 2017, 1:27 AM

Nov 6 2017

skitron added a comment to T3485: --batch --passphrase throwing password prompt as of 3.0.0.

Thanks you very much for your quick reply. I added your code to my invocations for decryption and signing and all is well now. You probably saved me many hours of searching with your kind reply!

Nov 6 2017, 8:20 PM · FAQ, gpg4win
werner committed rG42308224d1fc: tests: Minor imporvement in agent invocation (authored by werner).
tests: Minor imporvement in agent invocation
Nov 6 2017, 4:54 PM
werner triaged T3486: ASCII armor option missing from gpgEX as of gpg4win 3.0.0 as Normal priority.

This dialog actually belongs to Kleopatra. I added the respective tag.

Nov 6 2017, 4:42 PM · Feature Request, gpg4win, kleopatra
werner edited projects for T3485: --batch --passphrase throwing password prompt as of 3.0.0, added: gpg4win, FAQ; removed Bug Report.

However you can tell gpg-agent to let gpg ask for the passphrase. Add

Nov 6 2017, 4:40 PM · FAQ, gpg4win
werner added a comment to T3485: --batch --passphrase throwing password prompt as of 3.0.0.

Passphrase handling changed a lot with gpg 2.1.

Nov 6 2017, 4:39 PM · FAQ, gpg4win
skitron created T3486: ASCII armor option missing from gpgEX as of gpg4win 3.0.0 in the S1 Public space.
Nov 6 2017, 4:00 PM · Feature Request, gpg4win, kleopatra
skitron created T3485: --batch --passphrase throwing password prompt as of 3.0.0.
Nov 6 2017, 3:55 PM · FAQ, gpg4win
ThomasWG added a comment to T3482: Creating a 2nd keypair.

I'll try that when it happens again. Thanks

Nov 6 2017, 3:51 PM · Bug Report, gpg4win
werner added a comment to T3482: Creating a 2nd keypair.

Can you try to kill the gpg-agent process from the task manager before you create the second keypair? If that helps the problem might be the same as T3378. Are you creating a standard key (ie. rsa2048) or something else?

Nov 6 2017, 3:26 PM · Bug Report, gpg4win
werner lowered the priority of T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel from High to Normal.
Nov 6 2017, 3:20 PM · Bug Report
ThomasWG added a comment to T3482: Creating a 2nd keypair.

The OS runs Windows 2008 R2 , on a Oracle's Virtualbox, so I wouldn't consider this being a headless Windows installation, why? When you first create your keypairs it goes pretty fast usually under 5 mins. But if you recreate or try an create a new keypair it never completes, takes 20+ minutes or longer. But if you shut down the OS, or restart the OS, and try it again then it completes in under 5 mins.

Nov 6 2017, 3:20 PM · Bug Report, gpg4win
werner added a comment to T3276: the calibrate_get_time() function depends on a system that has a non-tickless kernel.

We won't have a solution for 2.2.2 but I added --2k-count as a workaround
(rG78a6d0ce88ae) and the GETINFO subcommands s2k_count_cal and s2k_time.

Nov 6 2017, 3:20 PM · Bug Report
werner committed rG3607ab2cf382: agent: New GETINFO sub-commands "s2k_count_cal" and "s2k_time". (authored by werner).
agent: New GETINFO sub-commands "s2k_count_cal" and "s2k_time".
Nov 6 2017, 3:16 PM
werner committed rG78a6d0ce88ae: agent: New option --s2k-count. (authored by werner).
agent: New option --s2k-count.
Nov 6 2017, 3:16 PM
werner added a comment to T3378: gpg-agent.exe hanging after left to idle for a while.

Also failed to replicate on Windows-7 using a dedicated laptop.

Nov 6 2017, 3:12 PM · Windows, libassuan, gpgagent, Bug Report
werner added a comment to T3480: gpg-agent seems to hang after Windows 7 is woken from suspend to RAM.

I have still problems to reliable replicate this bug. I tried on Windows-7 on real hardware without success.

Nov 6 2017, 3:11 PM · Bug Report, gpg4win
werner closed T3478: Subkey-Grip support for unattended key generation, a subtask of T1734: [SUGGESTION] Implement a function to re-generate public keys and(!) "stubs" from private keys stored on smartcard only, as Resolved.
Nov 6 2017, 3:09 PM · gnupg, Feature Request
werner closed T3478: Subkey-Grip support for unattended key generation as Resolved.

Done. Will go into 2.2.2.

Nov 6 2017, 3:09 PM · gnupg (gpg22)
werner committed rG52d41c8b0f4a: agent: New GETINFO sub-commands "s2k_count_cal" and "s2k_time". (authored by werner).
agent: New GETINFO sub-commands "s2k_count_cal" and "s2k_time".
Nov 6 2017, 3:08 PM
werner committed rGf7212f1d11aa: agent: New option --s2k-count. (authored by werner).
agent: New option --s2k-count.
Nov 6 2017, 3:08 PM
vext01 added a comment to T3472: gpgme-1.9.0 test suite hangs on OpenBSD.

I confirm that applying the patch fixes the hang under a VM, and does not adversely affect running on a bare metal machine either.

Nov 6 2017, 1:11 PM · gpgagent, gnupg (gpg22), gpgme
werner closed T3481: error searching keyserver: Operation not permitted as Invalid.
Nov 6 2017, 12:19 PM · Bug Report
werner committed rG680161647ad5: g10: Unattended key generation "Key-Grip" and "Subkey-Grip". (authored by gniibe).
g10: Unattended key generation "Key-Grip" and "Subkey-Grip".
Nov 6 2017, 12:19 PM
werner committed rGf183b9768b42: g10: Simplify "factory-reset" procedure. (authored by gniibe).
g10: Simplify "factory-reset" procedure.
Nov 6 2017, 12:19 PM
werner added inline comments to rG6c63a04569c0: g10: Unattended key generation "Key-Grip" and "Subkey-Grip"..
Nov 6 2017, 11:42 AM
werner added a comment to T3482: Creating a 2nd keypair.

Please explain what you mean by "recreate the keypairs". What do you mean by "server" - are you using gpg4win on a headless Windows installation?

Nov 6 2017, 10:22 AM · Bug Report, gpg4win
gniibe added a comment to T3472: gpgme-1.9.0 test suite hangs on OpenBSD.

Could you please try D450: clock_gettime if CLOCK_THREAD_CPUTIME_ID is available. patch of GnuPG?

Nov 6 2017, 8:56 AM · gpgagent, gnupg (gpg22), gpgme
gniibe committed rC77e314a42a9c: build: Don't use /dev/srandom on OpenBSD. (authored by Jeremie Courreges-Anglas <jca@wxcvbn.org>).
build: Don't use /dev/srandom on OpenBSD.
Nov 6 2017, 7:10 AM
gniibe closed T3483: Fix Makefile that does not compile on Debian Stable as Invalid.

That's your building problem, not the problem of gnupg.

Nov 6 2017, 6:46 AM · Bug Report

Nov 5 2017

madjari created T3484: gpgol 2.0.1 frequently crashes Outlook 2016.
Nov 5 2017, 7:00 PM · gpgol, Bug Report, gpg4win
mark-antony added a comment to T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date).

What I use to force the old keyring format is to export a public key to a file and rename that to pubring.gpg. And of course delete the pubring.kbx.

Nov 5 2017, 4:15 PM · workaround, gnupg, Bug Report
sebastiang created T3483: Fix Makefile that does not compile on Debian Stable.
Nov 5 2017, 1:44 AM · Bug Report
sebastiang added inline comments to rG6c63a04569c0: g10: Unattended key generation "Key-Grip" and "Subkey-Grip"..
Nov 5 2017, 1:26 AM
sebastiang added a comment to T3478: Subkey-Grip support for unattended key generation.

This is suuper useful! I can see there is a pSUBKEYEXPIRE, but no para_name for this. Can an expire date be passed for a subkey via Subkey-grip?

Nov 5 2017, 1:22 AM · gnupg (gpg22)

Nov 4 2017

fulanoperez added a comment to T3481: error searching keyserver: Operation not permitted.

I cannot explain why it works now

Nov 4 2017, 2:08 PM · Bug Report

Nov 3 2017

ThomasWG created T3482: Creating a 2nd keypair.
Nov 3 2017, 5:35 PM · Bug Report, gpg4win
werner added a comment to T3481: error searching keyserver: Operation not permitted.

Put

log-file /foo/bar/dirmngr.log
debug network,dns,ipc
verbose

into ~/.gnupg/dirmngr.conf and restart dirmngr "gpgconf --kill all". Then run your gpg command avain (a single -v is sufficient). Does the log reveal something?

Nov 3 2017, 3:04 PM · Bug Report
fulanoperez created T3481: error searching keyserver: Operation not permitted.
Nov 3 2017, 2:49 PM · Bug Report
werner added a comment to T3480: gpg-agent seems to hang after Windows 7 is woken from suspend to RAM.

Thanks. that was a good hint. I merged your report into T3378.

Nov 3 2017, 10:40 AM · Bug Report, gpg4win
werner added a comment to T3378: gpg-agent.exe hanging after left to idle for a while.

I tested for several days with logging enabled but was not able to replicate it again. Then I tried again w/o logging and couldn't replicate it either.

Nov 3 2017, 10:39 AM · Windows, libassuan, gpgagent, Bug Report
werner merged T3480: gpg-agent seems to hang after Windows 7 is woken from suspend to RAM into T3378: gpg-agent.exe hanging after left to idle for a while.
Nov 3 2017, 10:36 AM · Windows, libassuan, gpgagent, Bug Report
werner merged task T3480: gpg-agent seems to hang after Windows 7 is woken from suspend to RAM into T3378: gpg-agent.exe hanging after left to idle for a while.
Nov 3 2017, 10:36 AM · Bug Report, gpg4win