Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Jun 12 2018

dkg committed rGe037657edaf0: gpg: Add new usage option for drop-subkey filters. (authored by dkg).
gpg: Add new usage option for drop-subkey filters.
Jun 12 2018, 6:49 AM
dkg renamed T4019: --export-filter drop-subkey filter type should have usage option property from --export-filter drop-subkey filter type should have usage_flag option property to --export-filter drop-subkey filter type should have usage option property.
Jun 12 2018, 6:43 AM · gnupg, Feature Request
gniibe committed rGba7e934945a5: g10: Move enum_secret_keys to skclist.c. (authored by gniibe).
g10: Move enum_secret_keys to skclist.c.
Jun 12 2018, 6:01 AM
gniibe committed rGed9030cb2a67: g10: Prefer to available card keys for decryption. (authored by gniibe).
g10: Prefer to available card keys for decryption.
Jun 12 2018, 6:01 AM
gniibe committed rGb0c00ce0af1b: g10: Fix comment of enum_secret_keys. (authored by gniibe).
g10: Fix comment of enum_secret_keys.
Jun 12 2018, 6:01 AM
dkg created T4019: --export-filter drop-subkey filter type should have usage option property.
Jun 12 2018, 3:41 AM · gnupg, Feature Request
dkg updated the task description for T4018: gpg --with-colons --show-keys does not show revocation certificates.
Jun 12 2018, 1:11 AM · gnupg, Bug Report
dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

see e051c279216ecd4ec9a48e13ccc695f5ab667b2a

Jun 12 2018, 1:02 AM · gnupg, Bug Report
dkg committed rGe051c279216e: gpg: set full --dry-run when used with --show-keys (authored by dkg).
gpg: set full --dry-run when used with --show-keys
Jun 12 2018, 1:02 AM
dkg added a comment to T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).

I note that --import-options show-only --import has the same effect as --show-keys -- that is, the revocation cert is imported. so the error is in the import-options code itself. I'll push a fix-T4017 branch shortly with a proposed correction.

Jun 12 2018, 1:00 AM · gnupg, Bug Report

Jun 11 2018

olf added a comment to T4016: Libgcrypt release 1.8.3.

I just noticed, that a tag for Libgcrypt 1.8.3 seems to be missing: https://dev.gnupg.org/source/libgcrypt/tags/LIBGCRYPT-1.8-BRANCH/

Jun 11 2018, 11:36 PM · Release Info, CVE, libgcrypt
dkg created T4018: gpg --with-colons --show-keys does not show revocation certificates in the S1 Public space.
Jun 11 2018, 11:34 PM · gnupg, Bug Report
dkg created T4017: `gpg --show-keys` can modify the keyring (it is not actually the same as `--dry-run --import-options import-show --import`).
Jun 11 2018, 11:10 PM · gnupg, Bug Report
werner committed rC846f8fe8b3be: ecc: Improve gcry_mpi_ec_curve_point (authored by werner).
ecc: Improve gcry_mpi_ec_curve_point
Jun 11 2018, 7:19 PM
werner committed rC54620a27f450: mpi: New internal function _gcry_mpi_cmpabs. (authored by werner).
mpi: New internal function _gcry_mpi_cmpabs.
Jun 11 2018, 7:19 PM
werner added a comment to T3986: GpgOL: Mitigate manipulations of encrypted S/MIME mails.

Thanks for the writeup. Maybe this could be the base for a gnupg.org/blog article.

Jun 11 2018, 6:56 PM · gpg4win, gpgol
aheinecke committed rOc9a173782e33: Clean reply / forwards of unsigned S/MIME Mails (authored by aheinecke).
Clean reply / forwards of unsigned S/MIME Mails
Jun 11 2018, 6:54 PM
aheinecke committed rOa1a0f0aa53b0: Extend mail class for better reply/forward handling (authored by aheinecke).
Extend mail class for better reply/forward handling
Jun 11 2018, 6:54 PM
aheinecke committed rO49cc27fd092d: Improve unsigned S/MIME HTML handling (authored by aheinecke).
Improve unsigned S/MIME HTML handling
Jun 11 2018, 6:54 PM
aheinecke committed rO5a2f1ac5880d: Cleanup unused options and add a warning shown opt (authored by aheinecke).
Cleanup unused options and add a warning shown opt
Jun 11 2018, 6:54 PM
aheinecke added a comment to T3986: GpgOL: Mitigate manipulations of encrypted S/MIME mails.

Here is what we have now. We decided explictly not to offer a "yes I want to do something less secure" button as we think that using Unsigned S/MIME Mails is avoidable. Also we want to be more secure by default then Outlook. From a User Experience standpoint a "Yes more convenient but less secure" button basically educates users to always select that button.

Jun 11 2018, 6:15 PM · gpg4win, gpgol
mkrambach committed rMe154554e9a48: js: removed config (authored by mkrambach).
js: removed config
Jun 11 2018, 3:12 PM
werner committed rD51549ca5dbdc: web: Announce 1.4.23 (authored by werner).
web: Announce 1.4.23
Jun 11 2018, 1:31 PM
mkrambach committed rMe97e6c06e950: js: Add key creation to Keyring (authored by mkrambach).
js: Add key creation to Keyring
Jun 11 2018, 12:14 PM
werner closed T4012: Diagnostic is shown with the original filename not being sanitized. as Resolved.
Jun 11 2018, 11:23 AM · gnupg, CVE, Bug Report
werner renamed T4012: Diagnostic is shown with the original filename not being sanitized. from Diagnostic is shown with the original filename not beeing sanitized. to Diagnostic is shown with the original filename not being sanitized..
Jun 11 2018, 11:23 AM · gnupg, CVE, Bug Report
werner closed T4015: Release 1.4.23, a subtask of T4012: Diagnostic is shown with the original filename not being sanitized., as Resolved.
Jun 11 2018, 11:23 AM · gnupg, CVE, Bug Report
werner closed T4015: Release 1.4.23 as Resolved.
Jun 11 2018, 11:23 AM · Release Info, gnupg (gpg14), CVE
werner committed rD71724d3c3baf: swdb: Release of Gnupg 1.4.23 (authored by werner).
swdb: Release of Gnupg 1.4.23
Jun 11 2018, 11:16 AM
werner committed rGf32dbf396ae7: Post release updates (authored by werner).
Post release updates
Jun 11 2018, 11:10 AM
werner committed rG8ae6a246bef5: Release 1.4.23 (authored by werner).
Release 1.4.23
Jun 11 2018, 11:10 AM
werner committed rGdd6192bfea80: po: Auto update (authored by werner).
po: Auto update
Jun 11 2018, 11:10 AM
werner added a project to T4015: Release 1.4.23: Release Info.
Jun 11 2018, 9:59 AM · Release Info, gnupg (gpg14), CVE
werner added a project to T4016: Libgcrypt release 1.8.3: Release Info.
Jun 11 2018, 9:58 AM · Release Info, CVE, libgcrypt
werner set the color for Release Info to Pink.
Jun 11 2018, 9:58 AM
werner changed the edit policy for T4016: Libgcrypt release 1.8.3.
Jun 11 2018, 9:55 AM · Release Info, CVE, libgcrypt
werner created T4015: Release 1.4.23.
Jun 11 2018, 9:52 AM · Release Info, gnupg (gpg14), CVE
werner renamed T4012: Diagnostic is shown with the original filename not being sanitized. from Diagnostic with original filename is not sanitized. to Diagnostic is shown with the original filename not beeing sanitized..
Jun 11 2018, 9:50 AM · gnupg, CVE, Bug Report
werner committed rG615b9d1fb779: doc: Include release info from 2.2.8 (authored by werner).
doc: Include release info from 2.2.8
Jun 11 2018, 9:04 AM
werner committed rGdc96fd883571: doc: Mention new command --show-keys in the 2.2.7 NEWS. (authored by werner).
doc: Mention new command --show-keys in the 2.2.7 NEWS.
Jun 11 2018, 9:04 AM
werner committed rGcbb84b336126: gpg: Set some list options with --show-keys (authored by werner).
gpg: Set some list options with --show-keys
Jun 11 2018, 8:58 AM
werner committed rGd2bc66f241a6: gpg: Set some list options with --show-keys (authored by werner).
gpg: Set some list options with --show-keys
Jun 11 2018, 8:57 AM
gniibe closed T3844: Able to certify public keys without a certify key present when using smartcard. as Resolved.

Yes, closing.

Jun 11 2018, 8:41 AM · gnupg (gpg22), Bug Report
gniibe committed rGc03a3eb01d2d: g10: Enumerated keys for decryption should be unique. (authored by gniibe).
g10: Enumerated keys for decryption should be unique.
Jun 11 2018, 8:01 AM
RAmbidge added a comment to T3381: dirmngr won't start on Windows 10 with admin level account.

I'm having the same issue. I read somewhere that it's likely caused by using an online Windows account to login with. So I converted to local log in. Issue persists. As a test, I've just set up a VM with a local account set up at install, and GPG4Win works perfectly fine. So I'm guessing that there may be an issue which stays in the files system caused by online account users. I'm not a programmer and have no idea how or where to look to see what's causing it and how to fix it though.

Jun 11 2018, 1:04 AM · libassuan, Restricted Project, gpg4win, dirmngr, Windows, Bug Report

Jun 10 2018

werner committed rD031285b8ea7d: donations: Use a tag cloud for all years (authored by werner).
donations: Use a tag cloud for all years
Jun 10 2018, 7:31 PM
werner committed rD1cbec4b8d0cb: donations: Fix a link (authored by werner).
donations: Fix a link
Jun 10 2018, 6:00 PM
werner committed rDd4b98f9c0c55: donations: Try a tag cloud list for the 2018 donors. (authored by werner).
donations: Try a tag cloud list for the 2018 donors.
Jun 10 2018, 6:00 PM
werner committed rDe0195fc71ef5: donations: Add a remark to the auto created list (authored by werner).
donations: Add a remark to the auto created list
Jun 10 2018, 5:55 PM
werner committed rD34aadf0da76b: donations: Add stats for 2017 (authored by werner).
donations: Add stats for 2017
Jun 10 2018, 5:51 PM
werner committed rD591b60c8a8fb: donations: Add monthly statistics (authored by werner).
donations: Add monthly statistics
Jun 10 2018, 5:10 PM
BenM committed rM92cd060f5e2f: script: groups.py (authored by BenM).
script: groups.py
Jun 10 2018, 5:09 PM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA7fe44d6ab9a5: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Jun 10 2018, 7:19 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAc978a943abf0: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Jun 10 2018, 5:55 AM

Jun 9 2018

BenM committed rD193c0ca9c477: bio typos (authored by BenM).
bio typos
Jun 9 2018, 6:12 PM
BenM committed rD52e91c8bf544: bio: Ben (authored by BenM).
bio: Ben
Jun 9 2018, 5:13 PM
werner committed rDbaab91c94915: web: news was missing the setup file (authored by werner).
web: news was missing the setup file
Jun 9 2018, 2:13 PM
werner committed rDc51957c87d6e: web: Add links to CVE ids. (authored by werner).
web: Add links to CVE ids.
Jun 9 2018, 12:56 PM
werner committed rDe709c9306139: web: New macro CVE and fix for latest CVE link. (authored by werner).
web: New macro CVE and fix for latest CVE link.
Jun 9 2018, 12:43 PM
werner committed rD680e8aa513ce: web: Fix URL typo and add a missing OID. (authored by werner).
web: Fix URL typo and add a missing OID.
Jun 9 2018, 11:50 AM
werner removed a project from T4012: Diagnostic is shown with the original filename not being sanitized.: backport.
Jun 9 2018, 11:46 AM · gnupg, CVE, Bug Report
werner added a project to T4012: Diagnostic is shown with the original filename not being sanitized.: backport.
Jun 9 2018, 11:46 AM · gnupg, CVE, Bug Report
werner lowered the priority of T4012: Diagnostic is shown with the original filename not being sanitized. from Unbreak Now! to High.
Jun 9 2018, 11:45 AM · gnupg, CVE, Bug Report
werner added a comment to T3844: Able to certify public keys without a certify key present when using smartcard..

So we had two releases with the fist. Can we set this bug to resolved?

Jun 9 2018, 11:35 AM · gnupg (gpg22), Bug Report
dkg created T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities.
Jun 9 2018, 12:33 AM · gpgv, gnupg, Bug Report
dkg added a comment to T3894: re-evaluate default randomness choices during key generation on GNU/Linux platforms.

I've heard no critique of the logic above. could we get this fix landed? it is concretely useful for doing key generation on modern GNU/Linux systems.

Jun 9 2018, 12:03 AM · libgcrypt, gnupg

Jun 8 2018

dkg added a comment to T3844: Able to certify public keys without a certify key present when using smartcard..

fwiw, i agree that if there's any security vulnerability here, it is in the verification side, not the creation side.

Jun 8 2018, 11:58 PM · gnupg (gpg22), Bug Report
Rafixmod added a watcher for Bug Report: Rafixmod.
Jun 8 2018, 11:24 PM
werner triaged T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix as Normal priority.

I was not aware that you could do this at all. You are right in that to start supporting this we first need to update libksba.

Jun 8 2018, 10:15 PM · S/MIME, Feature Request, libksba
werner added a comment to T4012: Diagnostic is shown with the original filename not being sanitized..

Unfortunately 2.2.8 does not build with older libgpg-error versions. Commit rG18274db32b5dea7fe8db67043a787578c975de4d should fix this.

Jun 8 2018, 10:11 PM · gnupg, CVE, Bug Report
werner committed rG18274db32b5d: gpg: Allow building with older libgpg-error. (authored by werner).
gpg: Allow building with older libgpg-error.
Jun 8 2018, 10:09 PM
tookmund added a comment to T4001: Import and Export for python bindings.

Apologies for the delay, been working on GSoC stuff.
Here's what I've got as of right now:

Jun 8 2018, 6:36 PM · gpgme, patch, Python, Feature Request
mkrambach committed rMc072675f3f2d: js: change chunksize handling and decoding (authored by mkrambach).
js: change chunksize handling and decoding
Jun 8 2018, 5:58 PM
aheinecke committed rD8730e196752a: web: Fix sha1 sums for gnupg and gnupg-w32 (authored by aheinecke).
web: Fix sha1 sums for gnupg and gnupg-w32
Jun 8 2018, 4:42 PM
aheinecke committed rM8dff414e170e: cpp: Add proper gpgme_op_createkey (authored by aheinecke).
cpp: Add proper gpgme_op_createkey
Jun 8 2018, 4:22 PM
werner committed rDd1df251db10b: web: News about GnuPG 2.2.8 (authored by werner).
web: News about GnuPG 2.2.8
Jun 8 2018, 4:07 PM
werner added a comment to T4012: Diagnostic is shown with the original filename not being sanitized..

2.2.8. with a fix has been released. Announcement

Jun 8 2018, 3:54 PM · gnupg, CVE, Bug Report
aheinecke committed rM54146d90dd55: json: Return fingerprint as createkey result (authored by aheinecke).
json: Return fingerprint as createkey result
Jun 8 2018, 2:52 PM
aheinecke committed rM6c74a59e8855: json: Add op_createkey (authored by aheinecke).
json: Add op_createkey
Jun 8 2018, 1:55 PM
marcus added a comment to T4000: GnuPG does not check encrypted messages for well-formed composition.

Yep. ?

Jun 8 2018, 1:48 PM · gnupg (gpg22), Bug Report
werner committed rD093143fe54d7: swdb: Release GnuPG 2.2.8 (authored by werner).
swdb: Release GnuPG 2.2.8
Jun 8 2018, 1:06 PM
werner committed rGe9667dd20a3a: Post release updates (authored by werner).
Post release updates
Jun 8 2018, 12:58 PM
werner committed rGcd9aaa786295: Release 2.2.8 (authored by werner).
Release 2.2.8
Jun 8 2018, 12:58 PM
werner committed rG8e589300e371: po: Auto update (authored by werner).
po: Auto update
Jun 8 2018, 12:58 PM
werner committed rGea36e637224f: po: Update German translation (authored by werner).
po: Update German translation
Jun 8 2018, 12:58 PM
werner committed rG77ab99f80a5b: po: Update Russian translation. (authored by Ineiev <ineiev@gnu.org>).
po: Update Russian translation.
Jun 8 2018, 12:58 PM
gouttegd created T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix.
Jun 8 2018, 12:45 PM · S/MIME, Feature Request, libksba
werner edited projects for T4012: Diagnostic is shown with the original filename not being sanitized., added: gnupg; removed gnupg (gpg14).

[Better use the gnupg tag. Specific versions end up on the workboard and there may only be one.]

Jun 8 2018, 12:10 PM · gnupg, CVE, Bug Report
werner closed T4000: GnuPG does not check encrypted messages for well-formed composition as Resolved.
Jun 8 2018, 11:16 AM · gnupg (gpg22), Bug Report
werner edited projects for T4012: Diagnostic is shown with the original filename not being sanitized., added: CVE, gnupg (gpg14); removed gnupg (gpg22).

@dkg can you please take this up with Debian and other distros? See the commit for a brief description.

Jun 8 2018, 11:12 AM · gnupg, CVE, Bug Report
werner changed the status of T4012: Diagnostic is shown with the original filename not being sanitized. from Open to Testing.

Fixed in 1.4, 2.2 and master. New releases will be done soon. Note that there is no need for a new gpg4win release because GPGME is not affected.

Jun 8 2018, 11:09 AM · gnupg, CVE, Bug Report
werner committed rG2326851c6079: gpg: Sanitize diagnostic with the original file name. (authored by werner).
gpg: Sanitize diagnostic with the original file name.
Jun 8 2018, 11:01 AM
werner committed rG210e402acd3e: gpg: Sanitize diagnostic with the original file name. (authored by werner).
gpg: Sanitize diagnostic with the original file name.
Jun 8 2018, 10:54 AM
werner committed rG13f135c7a252: gpg: Sanitize diagnostic with the original file name. (authored by werner).
gpg: Sanitize diagnostic with the original file name.
Jun 8 2018, 10:54 AM
werner created T4012: Diagnostic is shown with the original filename not being sanitized..
Jun 8 2018, 10:52 AM · gnupg, CVE, Bug Report
aheinecke committed rMaf8510fb7f4d: json: Generalize chunking and getmore (authored by aheinecke).
json: Generalize chunking and getmore
Jun 8 2018, 10:32 AM
werner closed T3942: Can't unregister a non-existent private key as Resolved.

Okay. Thanks for looking into this.

Jun 8 2018, 10:19 AM · gnupg (gpg22), Bug Report
werner edited Description on CVE.
Jun 8 2018, 10:18 AM
werner added a project to T4011: CVE-2018-0495: CVE.
Jun 8 2018, 10:15 AM · CVE, libgcrypt
werner changed the edit policy for CVE.
Jun 8 2018, 10:15 AM
First
Prev
Next