Page MenuHome GnuPG
Feed All Stories

Wed, Sep 8

werner edited projects for T5589: add context menu for normal operation after installation, added: gpg4win, FAQ, Installer; removed Feature Request.

This is a hard to solve problem in the NSIS installer: If you accidently started more than one installer they may both register files for update at the next restart. Now after the restart the file which is to be renamed does not anymore exist and thus a component or even library is not available. In this case it is GpgEX, the explorer plugin.

Wed, Sep 8, 7:09 PM · Installer, FAQ, gpg4win
werner set the color for Installer to Green.
Wed, Sep 8, 7:08 PM
werner created Installer.
Wed, Sep 8, 7:07 PM
werner added a comment to T5593: Gpg4Win displayed 'PATH env variable too big' error during setup.

In the editor you find a cloud symbol with an arrow to upload a file. Use this and and the file id will be pasted at the cursos, like here

Wed, Sep 8, 6:58 PM · Bug Report, gpg4win
werner added projects to T5594: some possible minor things in the manpage: gnupg, Documentation.
Wed, Sep 8, 6:53 PM · Documentation, gnupg, Bug Report
calestyo created T5594: some possible minor things in the manpage.
Wed, Sep 8, 4:32 PM · Documentation, gnupg, Bug Report
werner committed rGf32994b0bf07: scd: Support PC/SC for "getinfo reader_list". (authored by werner).
scd: Support PC/SC for "getinfo reader_list".
Wed, Sep 8, 3:52 PM
ikloecker committed rG08f227052fa3: build: Fix "ksba.h not found" problem (authored by ikloecker).
build: Fix "ksba.h not found" problem
Wed, Sep 8, 3:21 PM
swimmerm added a comment to T5593: Gpg4Win displayed 'PATH env variable too big' error during setup.

Apologies for my (newbie) comment on this bug reporting system. Since I have a screen shot bitmap better showing error I described, could anyone tell me how to attach to this bug ?

Wed, Sep 8, 2:16 PM · Bug Report, gpg4win
swimmerm updated the task description for T5593: Gpg4Win displayed 'PATH env variable too big' error during setup.
Wed, Sep 8, 2:12 PM · Bug Report, gpg4win
swimmerm created T5593: Gpg4Win displayed 'PATH env variable too big' error during setup.
Wed, Sep 8, 1:48 PM · Bug Report, gpg4win
ikloecker changed the status of T5535: Kleopatra: Check that accessibility is also supported for VS-NfD from Open to Testing.

Finishing development for now.

Wed, Sep 8, 10:52 AM · Restricted Project, kleopatra
ikloecker claimed T5592: AppImage of Kleopatra.
Wed, Sep 8, 10:49 AM · Restricted Project, kleopatra, Feature Request
ikloecker created T5592: AppImage of Kleopatra.
Wed, Sep 8, 10:48 AM · Restricted Project, kleopatra, Feature Request
ikloecker closed T5591: How to build Gpgmepp in Windows 10 as Invalid.

Please talk to the KDE folks who develop Craft. We do not support building anything with Craft. Check out gpg4win (https://dev.gnupg.org/source/gpg4win/) to see how we build our products on Windows.

Wed, Sep 8, 10:39 AM · Cross-Compiler, gpgme
ikloecker added a comment to T5589: add context menu for normal operation after installation.

Which product do you refer to? Kleopatra? gpg4win? Something else?
Which operating system are you using? Windows? Linux? Something else?

Wed, Sep 8, 10:29 AM · Installer, FAQ, gpg4win
kashif created T5591: How to build Gpgmepp in Windows 10.
Wed, Sep 8, 10:19 AM · Cross-Compiler, gpgme
werner added a comment to T5590: OpenPGP: Curve 448, modernize?.

The major problem I see is that an implementation needs to add more crypto primitives to support ths curve. And we can expect that 448 will eventually get in widespread use. We already have all primitives but would inhibit the creation of minimal implementations.

Wed, Sep 8, 7:53 AM · OpenPGP, gnupg (gpg23)
l10n daemon script <scripty@kde.org> committed rLIBKLEO16467b26ca72: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Wed, Sep 8, 4:34 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO7a0886428992: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Wed, Sep 8, 3:26 AM
gniibe created T5590: OpenPGP: Curve 448, modernize?.
Wed, Sep 8, 2:05 AM · OpenPGP, gnupg (gpg23)

Tue, Sep 7

FierzvID added a member for Keyserver: FierzvID.
Tue, Sep 7, 10:42 PM
FierzvID added a watcher for Keyserver: FierzvID.
Tue, Sep 7, 10:41 PM
luweitest created T5589: add context menu for normal operation after installation.
Tue, Sep 7, 5:22 PM · Installer, FAQ, gpg4win
werner committed rG192113552faa: scd: Fix possible assertion in close_pcsc_reader. (authored by werner).
scd: Fix possible assertion in close_pcsc_reader.
Tue, Sep 7, 4:44 PM
werner added a comment to T5576: New set of API for public key cryptography.

I see.

Tue, Sep 7, 10:37 AM · FIPS, libgcrypt, Feature Request
gniibe added a comment to T5576: New set of API for public key cryptography.

BTW, the reason of the name "pkey" is that because gcry_pk_ctl is already occupied.
It will be changed, if needed.

Tue, Sep 7, 9:52 AM · FIPS, libgcrypt, Feature Request
gniibe added a comment to T5576: New set of API for public key cryptography.

Today, I pushed an example for RSA-PSS.

Tue, Sep 7, 9:50 AM · FIPS, libgcrypt, Feature Request
ikloecker committed rKLEOPATRA69f69c15715c: Revert "Add widget parent" (authored by ikloecker).
Revert "Add widget parent"
Tue, Sep 7, 9:44 AM
ikloecker added a reverting change for rKLEOPATRAa4a84b9a3b48: Add widget parent: rKLEOPATRA69f69c15715c: Revert "Add widget parent".
Tue, Sep 7, 9:44 AM
werner committed rG4b2cfec2dc2f: agent: Fix segv in GET_PASSPHRASE (regression) (authored by werner).
agent: Fix segv in GET_PASSPHRASE (regression)
Tue, Sep 7, 9:43 AM
werner committed rGaf3b1901549b: agent: Fix segv in GET_PASSPHRASE (regression) (authored by werner).
agent: Fix segv in GET_PASSPHRASE (regression)
Tue, Sep 7, 9:43 AM
ikloecker accepted rKLEOPATRA966b5db50d72: Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory.

I have approved the commit in KDE's GitLab. For details see https://invent.kde.org/pim/kleopatra/-/merge_requests/8

Tue, Sep 7, 9:19 AM
werner added 1 auditor(s) for rKLEOPATRA966b5db50d72: Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory: ikloecker.
Tue, Sep 7, 9:13 AM
werner closed T5555: Cannot add existing ECDSA key as a signing subkey as Resolved.
Tue, Sep 7, 9:11 AM · gnupg (gpg23), Bug Report
werner closed T5577: Null ptr dereference in gpg-agent (gnupg 2.3.2) as Resolved.

Fixed in 2.3 and 2.2

Tue, Sep 7, 9:04 AM · segv, gnupg (gpg23), Bug Report
Laurent Montel <montel@kde.org> committed rKLEOPATRAa4a84b9a3b48: Add widget parent (authored by Laurent Montel <montel@kde.org>).
Add widget parent
Tue, Sep 7, 9:00 AM
werner added a comment to rGb89b1f35c29c: agent: Ignore passphrase constraints for a generated passphrase..

The task is T5577 (which I accidently closed during triage)

Tue, Sep 7, 7:56 AM
werner reopened T5577: Null ptr dereference in gpg-agent (gnupg 2.3.2) as "Open".

(I closed this by accident)

Tue, Sep 7, 7:54 AM · segv, gnupg (gpg23), Bug Report

Mon, Sep 6

werner claimed T5588: GnuPG 2.3.2 --disable-tofu --disable-sqlite unusable.
Mon, Sep 6, 7:44 PM · gnupg (gpg23), Gentoo, Bug Report
ikloecker committed rKLEOPATRA69aa9861643c: Improve accessibility of decryption result overview and details (authored by ikloecker).
Improve accessibility of decryption result overview and details
Mon, Sep 6, 6:56 PM
ikloecker committed rKLEOPATRAa40973a644d5: Minor cleanup (authored by ikloecker).
Minor cleanup
Mon, Sep 6, 6:56 PM
ikloecker added a comment to rGb89b1f35c29c: agent: Ignore passphrase constraints for a generated passphrase..

This commit breaks decryption of symmetrically encrypted data. gpg-agent segfaults after one has entered the passphrase in pinentry.

Mon, Sep 6, 5:29 PM
Jakuje added a comment to T5576: New set of API for public key cryptography.

I added couple of minor comments. I hope they went into somewhere.

Mon, Sep 6, 2:58 PM · FIPS, libgcrypt, Feature Request
Laurent Montel <montel@kde.org> committed rLIBKLEOcc4e2244e382: GIT_SILENT: add ecm as required too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: add ecm as required too
Mon, Sep 6, 1:46 PM
fvogt committed rKLEOPATRA966b5db50d72: Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory (authored by fvogt).
Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory
Mon, Sep 6, 1:45 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA7a2e9b6719f8: GIT_SILENT: add ecm as required too (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: add ecm as required too
Mon, Sep 6, 1:44 PM
Jakuje added a comment to T5520: Fix tests in FIPS mode.

looks good to me. Tested now with master 47e425e07995454573e28c13c08229d2f8a75642 and all tests pass for me in and out of FIPS mode as well as in the "soft" one.

Mon, Sep 6, 1:08 PM · Testing, FIPS, libgcrypt, Bug Report
gniibe added a comment to E885: Weekly Standup.

I was a bit confused about AESWRAP. Please forget I wrote above. (We already have support of larger keysize ECC, NIST P-521, for example.)

Mon, Sep 6, 11:42 AM
werner claimed T5540: Update fipsdrv and cavs_driver.pl.
Mon, Sep 6, 11:25 AM · FIPS, libgcrypt
werner moved T5540: Update fipsdrv and cavs_driver.pl from Backlog to Next on the FIPS board.
Mon, Sep 6, 11:25 AM · FIPS, libgcrypt
werner changed the status of T5541: Envvar LIBGCRYPT_FORCE_FIPS_MODE from Open to Testing.
Mon, Sep 6, 11:22 AM · FIPS, libgcrypt
gniibe moved T5508: Allow hardware optimizations in FIPS from Backlog to Done on the FIPS board.
Mon, Sep 6, 11:21 AM · Testing, FIPS, libgcrypt, Bug Report
werner moved T5523: jitter entropy RNG update from Backlog to Next on the FIPS board.
Mon, Sep 6, 11:19 AM · FIPS, libgcrypt
werner claimed T5523: jitter entropy RNG update.
Mon, Sep 6, 11:19 AM · FIPS, libgcrypt
werner moved T5576: New set of API for public key cryptography from Backlog to Next on the FIPS board.
Mon, Sep 6, 11:18 AM · FIPS, libgcrypt, Feature Request
werner moved T5541: Envvar LIBGCRYPT_FORCE_FIPS_MODE from Backlog to Done on the FIPS board.
Mon, Sep 6, 11:17 AM · FIPS, libgcrypt
ikloecker is attending E885: Weekly Standup.
Mon, Sep 6, 10:19 AM
ikloecker committed rKLEOPATRAf59e713f708e: Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory (authored by fvogt).
Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory
Mon, Sep 6, 10:08 AM
gniibe added a comment to T5576: New set of API for public key cryptography.

I created an experimental branch:
https://dev.gnupg.org/source/libgcrypt/history/gniibe%252Fnew-pk-api/

Mon, Sep 6, 9:38 AM · FIPS, libgcrypt, Feature Request
gniibe added a comment to E885: Weekly Standup.

Topics:

  • For OpenPGP format of Curve448, it is ok for me to change the format, but I found more serious issue about use of AESWRAP.
  • Considering about new public key API for libgcrypt, I thought that calling encrypt/decrypt would be confusing for ECDH. (because it's actually doing ECDH computation, which is used for KDF in later stage, and then it's AESWRAP which does encryption/decryption with session key in an application)
  • Then, I found that: for use of AESWRAP for ECC with larger keysize (like Curve 448), while it is expected to use larger block size (for Curve 448, use of 256-bit) naturally, but current experimental implementation in gnupg2.3 does AESWRAP with 128-bit block size.
  • That's because of the situation, AESWRAP in libgcrypt is only for 128-bit block size currently.

Last week:

This week:

Mon, Sep 6, 9:20 AM
gniibe is attending E885: Weekly Standup.
Mon, Sep 6, 8:53 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO34d56b4127d2: GIT_SILENT: use same for pim* + latest for framework + stable for third party (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: use same for pim* + latest for framework + stable for third party
Mon, Sep 6, 8:53 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRAf781298fd345: GIT_SILENT: use same for pim* + latest for framework + stable for third party (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: use same for pim* + latest for framework + stable for third party
Mon, Sep 6, 8:51 AM
werner added a comment to E885: Weekly Standup.

Let's meet today at https://meeting.iacd.net use g10code as user

Mon, Sep 6, 8:00 AM
werner is attending E885: Weekly Standup.
Mon, Sep 6, 7:47 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO7d9b93572e77: Add KDE CI file (authored by Laurent Montel <montel@kde.org>).
Add KDE CI file
Mon, Sep 6, 7:38 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRAc78fa963e87f: Add KDE CI file (authored by Laurent Montel <montel@kde.org>).
Add KDE CI file
Mon, Sep 6, 7:35 AM
MaXi32 added a comment to T5076: [solved] gpg-agent respawn another process randomly and causes cached passphrase check failed / expired.

I think this issue is solved. For systemd, I need to run this as --supervised option not the --daemon option. The --daemon option has bug.

Mon, Sep 6, 6:36 AM · gnupg (gpg22), Bug Report

Sun, Sep 5

ffontaine added a comment to T5587: src/posix-io.c: fix build with glibc >= 2.34.

Nevermind, I found the appropriate link above, thanks again.

Sun, Sep 5, 7:05 PM · gpgme
ffontaine added a comment to T5587: src/posix-io.c: fix build with glibc >= 2.34.

Thanks for noticing me but I can't access your git repository at https://dev.gnupg.org/source/gnupg.git and the github mirror at https://github.com/gpg/gpgme is not up to date. Do you have an other mirror?

Sun, Sep 5, 7:03 PM · gpgme
werner added projects to T5588: GnuPG 2.3.2 --disable-tofu --disable-sqlite unusable: Gentoo, gnupg (gpg23).

You could use --disable-keyboxd which should fix this. However, there will eventually be no more way to build w/o Sqlite and thus I would suggest not to allow disabling of sqlite.

Sun, Sep 5, 6:25 PM · gnupg (gpg23), Gentoo, Bug Report
fvogt committed rKLEOPATRA5bcf3d6b7bcb: Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory (authored by fvogt).
Avoid use of private Qt API by dropping workaround in accessibleWidgetFactory
Sun, Sep 5, 6:15 PM
soap created T5588: GnuPG 2.3.2 --disable-tofu --disable-sqlite unusable.
Sun, Sep 5, 12:21 PM · gnupg (gpg23), Gentoo, Bug Report
werner closed T5587: src/posix-io.c: fix build with glibc >= 2.34 as Resolved.

Thanks. This has already been fixed in July with rM4b64774b6d13ffa4f59dddf947a97d61bcfa2f2e

Sun, Sep 5, 11:47 AM · gpgme
ffontaine updated the task description for T5587: src/posix-io.c: fix build with glibc >= 2.34.
Sun, Sep 5, 12:14 AM · gpgme
ffontaine created T5587: src/posix-io.c: fix build with glibc >= 2.34.
Sun, Sep 5, 12:13 AM · gpgme

Sat, Sep 4

ametzler1 added a comment to T5579: libksba parallel build error (windows).

This works for me:

Sat, Sep 4, 2:11 PM · libksba, Bug Report
Laurent Montel <montel@kde.org> committed rLIBKLEO29c9ec5f415c: GIT_SILENT: prepare 21.08.2 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 21.08.2
Sat, Sep 4, 10:16 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA0d07294fc15e: GIT_SILENT: prepare 21.08.2 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 21.08.2
Sat, Sep 4, 10:12 AM

Fri, Sep 3

bluepost added a comment to T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.

I think the behavior makes perfect sense for Unix but the default delimiter for .txt in Windows is \r\n.

Fri, Sep 3, 8:19 PM · Documentation, gnupg, Bug Report
ikloecker committed rKLEOPATRAfb35f8a7d4b0: Ensure that the link is readable even on the blue "success" background (authored by ikloecker).
Ensure that the link is readable even on the blue "success" background
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRA2ac361b46f13: Allow setting the color of the rendered link (authored by ikloecker).
Allow setting the color of the rendered link
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRA3464ec148c3e: Ensure correct focus order of the result item widgets (authored by ikloecker).
Ensure correct focus order of the result item widgets
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRAcbbcbbfb6861: Show information about recipients also if decryption didn't succeed (authored by ikloecker).
Show information about recipients also if decryption didn't succeed
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRA49cd0070652f: Create scroll area together with the other child widgets (authored by ikloecker).
Create scroll area together with the other child widgets
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRAd031959ef156: Move "No MDC" hint before information on recipients (authored by ikloecker).
Move "No MDC" hint before information on recipients
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRAd0d25f717d5c: Exit early if decryption failed or was canceled (authored by ikloecker).
Exit early if decryption failed or was canceled
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRAcefdbaaeee23: Improve accessibility if no or multiple certificates match (authored by ikloecker).
Improve accessibility if no or multiple certificates match
Fri, Sep 3, 4:39 PM
ikloecker committed rKLEOPATRA6c3c904a9b40: Show more decryption details if decryption was successful (authored by ikloecker).
Show more decryption details if decryption was successful
Fri, Sep 3, 4:39 PM
raf created T5586: Please add dane lookup to --auto-key-retrieve.
Fri, Sep 3, 12:53 PM · Feature Request
ikloecker added a comment to T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.

The OP wants to do symmetric encryption. This isn't about the passphrase that protects a key.

Fri, Sep 3, 9:57 AM · Documentation, gnupg, Bug Report
werner added a comment to T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.

Yes, we read up to the first LF. This has been the traditional way of PGP2 and is still used by mail programs like Mutt.

Fri, Sep 3, 8:42 AM · Documentation, gnupg, Bug Report

Thu, Sep 2

bluepost added a comment to T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.

I'm guessing gpg in Unix has stripped the \n if present? I don't have access to a real Unix system at the moment.

Thu, Sep 2, 8:49 PM · Documentation, gnupg, Bug Report
werner claimed T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.

I see that problem but gpg has traditionally not interpreted the passphrase in any way. Right, for Windows we could strip the CR but I fear that this might break other users scripts/passphrases. However there should be a warning in the manual.

Thu, Sep 2, 7:25 PM · Documentation, gnupg, Bug Report
bluepost created T5585: Passphrase File Carriage Return New Line \r\n Issue in Windows.
Thu, Sep 2, 4:46 PM · Documentation, gnupg, Bug Report
ikloecker added a comment to T5584: gpg --list-packets lists wrong packets.

The actual problem is not that --list-packets produces weird output, but that --decrypt fails with

gpg: [don't know]: invalid packet (ctb=4f)
[GNUPG:] NODATA 3

causing confusing errors in Kleopatra.

Thu, Sep 2, 11:46 AM · Bug Report
ikloecker added a comment to T5584: gpg --list-packets lists wrong packets.

Thu, Sep 2, 11:42 AM · Bug Report
ikloecker created T5584: gpg --list-packets lists wrong packets.
Thu, Sep 2, 11:42 AM · Bug Report
gniibe closed T5415: YubiKey no longer recognized in GnuPG 2.3.1 on macOS 10.15.7 as Resolved.
Thu, Sep 2, 8:29 AM · MacOS, yubikey, Bug Report