Page MenuHome GnuPG
Feed All Stories

Jun 25 2021

werner lowered the priority of T4892: gpgsm --gen-key with existing key from "ssh-add" fails from Normal to Low.

Needs to be tested with the current 2.2 version and a gcry_log_debugsxp should be added to the error output.

Jun 25 2021, 11:26 AM · gnupg (gpg22), Bug Report, S/MIME
werner closed T5162: Import problem due to disabled brainpool curves as Wontfix.

This will not be fixed. Brainpool is a standard feature of Libgcrypt and thus this is a bug in the used Libgcrypt installation. Note that although I recently fixed a new regression test for this case, I do not think that it is a good idea to add extra code for a broken Libgcrypt.

Jun 25 2021, 11:21 AM · Bug Report, libgcrypt, gnupg (gpg22)
werner closed T5309: gpg: key generation failed: Corrupted protection as Resolved.
Jun 25 2021, 11:16 AM · Info Needed, gnupg (gpg22), Bug Report
werner closed T5068: LDAP keyserver does not support lookup by fingerprint as Resolved.

This has been solved in 2.2.26 commit rGc75fd75532

Jun 25 2021, 11:15 AM · LDAP, dirmngr, gnupg (gpg22)
werner added a comment to T5322: gpg erroring when the terminal is too small to show the ncurses pinentry dialog.

That might depend on your pinentry version. With a pre-1.1.1 pinentry and 2.2.28 I get this:

Jun 25 2021, 11:12 AM · gnupg (gpg22), gpgagent, pinentry, Bug Report
werner closed T5376: gpg --fetch-keys no longer returns non 0 exit status on failure as Resolved.
Jun 25 2021, 10:55 AM · gnupg (gpg22), Bug Report
werner added a comment to T5376: gpg --fetch-keys no longer returns non 0 exit status on failure.

Will be in 2.2.29.

Jun 25 2021, 10:54 AM · gnupg (gpg22), Bug Report
werner committed rG5fe4b9788752: gpg: Let --fetch-key return an exit code on failure. (authored by werner).
gpg: Let --fetch-key return an exit code on failure.
Jun 25 2021, 10:52 AM
werner committed rG9579c7786278: gpg: Let --fetch-key return an exit code on failure. (authored by werner).
gpg: Let --fetch-key return an exit code on failure.
Jun 25 2021, 9:57 AM
werner committed rG95d707e09336: tools: Tweak ccidmon output. (authored by werner).
tools: Tweak ccidmon output.
Jun 25 2021, 9:57 AM
werner closed T5496: [Problem Report] Add a new Cross-Platform Frontend Software for gnupg to the List as Resolved.

Thanks. I added it to the list. If you have not yet done this I would suggest to write a note to gnupg-users.

Jun 25 2021, 9:26 AM · Info Needed, Not A Bug
werner committed rDfe3a1e96188c: web: Add GpgFrontend and Kleopatra (authored by werner).
web: Add GpgFrontend and Kleopatra
Jun 25 2021, 9:24 AM
werner added a project to T5500: gpgme: Test t-idiomatic.py fails with Python 3.8: Python.
Jun 25 2021, 9:16 AM · Python, gpgme, Bug Report
werner triaged T5500: gpgme: Test t-idiomatic.py fails with Python 3.8 as Normal priority.

We need to see how to best fix this regression test for all Python versions.

Jun 25 2021, 9:16 AM · Python, gpgme, Bug Report
werner lowered the priority of T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG. from High to Normal.

We should not support a different OID or representation of 22519 which will only lead to incompatibilities and trouble existing users. 25519 is in too widespread use than to allow for any changes.

Jun 25 2021, 9:15 AM · Support, gnupg, OpenPGP
werner triaged T5508: Allow hardware optimizations in FIPS as High priority.
Jun 25 2021, 8:55 AM · Testing, FIPS, libgcrypt, Bug Report
werner added a comment to T5484: SCDaemon Not reselect applet and reauthenticate when the card send Security Not Sastisfied.

FWIW: We have always refused to support shared mode because we anticipated such problems. However, we have a customer using their own cards along with card maintenance software of them. For their purposes PCSC_SHARED works just fine makes and this is why I decided to add --pcsc-shared along with a warning that it is in general not a good idea.

Jun 25 2021, 8:54 AM · yubikey, Bug Report, scd
wiktor-k updated wiktor-k.
Jun 25 2021, 8:13 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA858b77711ad0: GIT_SILENT: use new signal/slot (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: use new signal/slot
Jun 25 2021, 7:09 AM
Sanmilie added a comment to T5484: SCDaemon Not reselect applet and reauthenticate when the card send Security Not Sastisfied.

You need to protect only 2 critical set of ADPU sequence Sign and Decrypt. All other can be done not safely and have a minor impact. Get generation and cards unlock can be profitable with the transaction mode... but is very rare user makes another use of the card in same time he start that’s command. The check external interference can protect from a bad start. I have started this ticket because my card suffer in exclusive mode render the use of openpgp not really usable. When my card is an pcsc-shared mode, all it's OK but the daemon not able to restore after external interference. The correction proposed is OK but I have made recommendations because this can cause a bad applet switch... if the state does not restore before trying to switch applet all it's OK. I am not actually able to set directly differential code but I have described in the patch the change I have made and this make my card very happy. Not problems and the pin was queried if another application makes interference.

Jun 25 2021, 4:18 AM · yubikey, Bug Report, scd
gniibe added a comment to T5484: SCDaemon Not reselect applet and reauthenticate when the card send Security Not Sastisfied.

There are multiple issues here.

Jun 25 2021, 2:59 AM · yubikey, Bug Report, scd
werner committed rDb0c3cb09b274: swdb: gpgme 1.16.0 (authored by werner).
swdb: gpgme 1.16.0
Jun 25 2021, 1:32 AM

Jun 24 2021

jukivili committed rC6dfab8cfb94c: mpi/ec: add fast reduction for secp256k1 (authored by jukivili).
mpi/ec: add fast reduction for secp256k1
Jun 24 2021, 8:49 PM
jukivili committed rC9d909cb67e70: mpi/ec: add fast reduction functions for NIST curves (authored by jukivili).
mpi/ec: add fast reduction functions for NIST curves
Jun 24 2021, 8:49 PM
Jakuje created T5508: Allow hardware optimizations in FIPS.
Jun 24 2021, 8:04 PM · Testing, FIPS, libgcrypt, Bug Report
werner updated the task description for T5499: Release GPGME 1.16.0.
Jun 24 2021, 7:48 PM · Release Info, gpgme
werner closed T5292: regression: no longer possible to get signatures from decrypt from unknown keys as Resolved.
Jun 24 2021, 7:43 PM · patch, Python, gpgme, Bug Report
werner committed rM1021c8645555: Release 1.16.0 (authored by werner).
Release 1.16.0
Jun 24 2021, 7:41 PM
werner committed rMe8e055e682f8: Post release updates (authored by werner).
Post release updates
Jun 24 2021, 7:41 PM
werner committed rM768b7892e378: python: Do not include the full file names in the docs. (authored by werner).
python: Do not include the full file names in the docs.
Jun 24 2021, 7:41 PM
werner committed rM14b148b7d340: python: Allow returning signatures made by unknown keys in `decrypt` (authored by jap).
python: Allow returning signatures made by unknown keys in `decrypt`
Jun 24 2021, 7:41 PM
werner closed T5475: Kleopatra: Crash when decrypting large archives as Resolved.
Jun 24 2021, 7:41 PM · kleopatra
werner closed T5499: Release GPGME 1.16.0 as Resolved.
Jun 24 2021, 7:40 PM · Release Info, gpgme
Sanmilie requested changes to D534: scdaemon patch to support some situation with PCSC_SHARED (not all).

OK I have finally success to test... the master version has a problem with opening pcsc readers on windows I revert back on older version to able to correct this problem. For the current patch without yubikey reference. I suggest validating the interference in the first task for the maybe_switch app function.

Jun 24 2021, 6:40 PM · yubikey, scd
werner lowered the priority of T3958: GPGME: Qt Bindings and MacOS from Normal to Low.
Jun 24 2021, 6:31 PM · MacOS, qt, gpgme
werner moved T4276: Context.decrypt() throws an error if *any* signature is bad from Backlog to Python on the gpgme board.
Jun 24 2021, 6:30 PM · gpgme, Python, Bug Report
werner added a member for Contributor: jap.
Jun 24 2021, 6:25 PM
werner renamed T5284: Allow gpgme to export w/o attributes from gpgme uses incorrect flags for minimal, no uid export of public keys to Allow gpgme to export w/o attributes.
Jun 24 2021, 6:24 PM · Feature Request, gpgme
werner moved T5353: gpgme: Implement keylist_data for gpgsm from Backlog to For a future release on the gpgme board.
Jun 24 2021, 6:21 PM · gnupg (gpg23), gpgme, Feature Request
werner moved T5438: gpgme_op_keylist_from_data_start ignores GPGME_KEYLIST_MODE_SIGS from Backlog to For a future release on the gpgme board.
Jun 24 2021, 6:21 PM · OpenPGP, Bug Report, gpgme
werner moved T5500: gpgme: Test t-idiomatic.py fails with Python 3.8 from Backlog to Python on the gpgme board.
Jun 24 2021, 6:00 PM · Python, gpgme, Bug Report
werner closed T4939: GPGME: Add KEYLIST_MODE_WITH_KEYGRIP as Resolved.

Was released with 1.14.0 see T4996

Jun 24 2021, 5:56 PM · gpgme
TRex58 added a comment to T5502: gnupg 2.2.28 : test t-sexputil fails on Fedora 33 and AIX 7.1.

Thanks werner. That helps us to know that such test failure is not a deep issue that would push us to not deliver this version of gnupg on AIX.

Jun 24 2021, 3:56 PM · gnupg, Fedora, libgcrypt, Bug Report
ikloecker moved T4717: Kleopatra: Changing expiry does not change expiry for subkeys from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 24 2021, 9:27 AM · Restricted Project, kleopatra, gpg4win
Laurent Montel <montel@kde.org> committed rLIBKLEO477d9946821a: Use "KSharedConfig::openStateConfig" for dialog layout settings (authored by Laurent Montel <montel@kde.org>).
Use "KSharedConfig::openStateConfig" for dialog layout settings
Jun 24 2021, 7:22 AM

Jun 23 2021

werner added members for Contributor: colemickens, KasparEtter, lbogdan, znull, Saturneric, wiktor-k, Chris91.
Jun 23 2021, 11:57 PM
werner added a member for Contributor: flok.
Jun 23 2021, 11:54 PM
werner added a member for Contributor: midipix.
Jun 23 2021, 11:53 PM
werner added a member for Contributor: orbea.
Jun 23 2021, 11:52 PM
werner added a member for Contributor: Angel.
Jun 23 2021, 11:52 PM
werner removed a member for Contributor: anderous.
Jun 23 2021, 11:51 PM
werner added a member for Contributor: anderous.
Jun 23 2021, 11:51 PM
werner added a member for Contributor: jukivili.
Jun 23 2021, 11:50 PM
werner added a member for Contributor: cbiedl.
Jun 23 2021, 11:50 PM
werner added a member for Contributor: Jakuje.
Jun 23 2021, 11:50 PM
werner added a member for Contributor: gouttegd.
Jun 23 2021, 11:50 PM
werner added a member for Contributor: gollo.
Jun 23 2021, 11:50 PM
werner added a member for Contributor: Suertzz.
Jun 23 2021, 11:49 PM
werner added a member for Contributor: dkg.
Jun 23 2021, 11:49 PM
werner added a member for Contributor: gniibe.
Jun 23 2021, 11:48 PM
werner added a member for Contributor: onickolay.
Jun 23 2021, 11:48 PM
werner edited Description on Contributor.
Jun 23 2021, 11:47 PM
werner changed the edit policy for Contributor.
Jun 23 2021, 11:46 PM
werner added a member for Contributor: bernhard.
Jun 23 2021, 11:46 PM
werner added a member for Contributor: ikloecker.
Jun 23 2021, 11:45 PM
werner added a member for Contributor: gnu.
Jun 23 2021, 11:45 PM
werner added a member for Contributor: aheinecke.
Jun 23 2021, 11:45 PM
werner added a member for Contributor: werner.
Jun 23 2021, 11:45 PM
werner removed a member for Contributor: werner.
Jun 23 2021, 11:45 PM
werner added a member for Contributor: werner.
Jun 23 2021, 11:44 PM
werner changed the edit policy for Contributor.
Jun 23 2021, 11:44 PM
werner changed the Default Edit Policy policy for application Maniphest from Custom Policy to Custom Policy.
Jun 23 2021, 11:41 PM
werner created Contributor.
Jun 23 2021, 11:40 PM
werner changed the Default Edit Policy policy for application Maniphest from All Users to Custom Policy.
Jun 23 2021, 11:37 PM
ikloecker added a project to T4717: Kleopatra: Changing expiry does not change expiry for subkeys: Restricted Project.
Jun 23 2021, 5:02 PM · Restricted Project, kleopatra, gpg4win
ikloecker changed the status of T5336: Kleopatra: Add expiry for certifications in certify dialog from Open to Testing.
Jun 23 2021, 4:58 PM · kleopatra, Restricted Project
ikloecker committed rKLEOPATRA0e3e95d00b3d: Allow specifying an expiration date for a certification (authored by ikloecker).
Allow specifying an expiration date for a certification
Jun 23 2021, 4:58 PM
ikloecker closed T5506: gpgme++, qgpgme: Allow specifying an expiration date for key signatures as Resolved.
Jun 23 2021, 4:58 PM · kleopatra, Restricted Project
ikloecker closed T5506: gpgme++, qgpgme: Allow specifying an expiration date for key signatures, a subtask of T5336: Kleopatra: Add expiry for certifications in certify dialog, as Resolved.
Jun 23 2021, 4:58 PM · kleopatra, Restricted Project
ikloecker closed T5505: gpgme: Allow specifying an expiration date for key signatures (gpgme_op_interact) as Resolved.
Jun 23 2021, 4:58 PM · gpgme, kleopatra, Restricted Project
ikloecker closed T5505: gpgme: Allow specifying an expiration date for key signatures (gpgme_op_interact), a subtask of T5336: Kleopatra: Add expiry for certifications in certify dialog, as Resolved.
Jun 23 2021, 4:58 PM · kleopatra, Restricted Project
ikloecker moved T5336: Kleopatra: Add expiry for certifications in certify dialog from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 23 2021, 4:57 PM · kleopatra, Restricted Project
ikloecker moved T5505: gpgme: Allow specifying an expiration date for key signatures (gpgme_op_interact) from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 23 2021, 4:57 PM · gpgme, kleopatra, Restricted Project
ikloecker moved T5506: gpgme++, qgpgme: Allow specifying an expiration date for key signatures from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 23 2021, 4:57 PM · kleopatra, Restricted Project
gniibe added a comment to T5483: Yubikey OpenPGP app.

For KDF setup (00F9), setting it to '' (null, to reset the DO) doesn't work, but it raises 6a80.
Once KDF is enabled, only factory-reset can reset the feature.

Jun 23 2021, 8:20 AM · yubikey
gniibe closed T5413: Unblock PIN by Reset Code as Resolved.
Jun 23 2021, 7:12 AM · Testing, gnupg, scd
gniibe committed rGb90c55fa66db: scd:ccid: Handle LIBUSB_TRANSFER_OVERFLOW interrupt transfer. (authored by gniibe).
scd:ccid: Handle LIBUSB_TRANSFER_OVERFLOW interrupt transfer.
Jun 23 2021, 5:10 AM
gniibe committed rG25ae80b8eb6e: scd:ccid: Handle LIBUSB_TRANSFER_OVERFLOW interrupt transfer. (authored by gniibe).
scd:ccid: Handle LIBUSB_TRANSFER_OVERFLOW interrupt transfer.
Jun 23 2021, 5:09 AM
gniibe committed rG8e941e19b087: scd:ccid:spr532: Extend abort_cmd for initialization time. (authored by gniibe).
scd:ccid:spr532: Extend abort_cmd for initialization time.
Jun 23 2021, 4:24 AM

Jun 22 2021

werner committed rG2c6b62b3572f: tools: Extend ccidmon to print T=1 APDUs (authored by werner).
tools: Extend ccidmon to print T=1 APDUs
Jun 22 2021, 8:42 PM
ikloecker committed rMac4536990a4f: qt: Extend SignKeyJob to create signatures with expiration date (authored by ikloecker).
qt: Extend SignKeyJob to create signatures with expiration date
Jun 22 2021, 6:54 PM
werner renamed T5504: git commit signing fails due to git's included gpg version. from Commit signing fails to git commit signing fails due to git's included gpg version..
Jun 22 2021, 5:33 PM · FAQ, gpg4win
werner edited projects for T5504: git commit signing fails due to git's included gpg version., added: FAQ; removed Bug Report.

So let's close this task.

Jun 22 2021, 5:32 PM · FAQ, gpg4win
ikloecker moved T5506: gpgme++, qgpgme: Allow specifying an expiration date for key signatures from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 22 2021, 4:39 PM · kleopatra, Restricted Project
ikloecker moved T5505: gpgme: Allow specifying an expiration date for key signatures (gpgme_op_interact) from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jun 22 2021, 4:39 PM · gpgme, kleopatra, Restricted Project
ikloecker committed rM34d9defc42ba: core: Allow specifying an expiration date for key signatures (authored by ikloecker).
core: Allow specifying an expiration date for key signatures
Jun 22 2021, 4:39 PM
ikloecker triaged T5506: gpgme++, qgpgme: Allow specifying an expiration date for key signatures as Wishlist priority.
Jun 22 2021, 4:33 PM · kleopatra, Restricted Project
ikloecker triaged T5505: gpgme: Allow specifying an expiration date for key signatures (gpgme_op_interact) as Wishlist priority.
Jun 22 2021, 4:31 PM · gpgme, kleopatra, Restricted Project
redstonedesigner added a comment to T5504: git commit signing fails due to git's included gpg version..

Setting the gpg.program configuration value to "C:\\Program Files (x86)\\GnuPG\\bin\\gpg.exe" appears to resolve the issue.

Jun 22 2021, 1:23 PM · FAQ, gpg4win
redstonedesigner added a comment to T5504: git commit signing fails due to git's included gpg version..

It appears that Git ships with its own GnuPG program set, as can be seen in the attached image. I'll attempt to set the gpg.program setting in Git and see if that helps.

Jun 22 2021, 1:18 PM · FAQ, gpg4win