Page MenuHome GnuPG
Feed All Stories

Mon, Jan 10

ikloecker committed rKLEOPATRA84b3b92460b2: Remove unused public c'tors and member functions (authored by ikloecker).
Remove unused public c'tors and member functions
Mon, Jan 10, 12:39 PM
ikloecker committed rKLEOPATRA9c0468ebaa10: Add new implementation of ExportSecretKeyCommand (authored by ikloecker).
Add new implementation of ExportSecretKeyCommand
Mon, Jan 10, 12:39 PM
bernhard added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

Ubuntu have been syncing since 7th December: https://www.mail-archive.com/sks-devel@nongnu.org/msg07174.html

Mon, Jan 10, 12:06 PM · dirmngr, Keyserver
andrewgdotcom added a watcher for Keyserver: andrewgdotcom.
Mon, Jan 10, 12:05 PM
andrewgdotcom added a watcher for ssh: andrewgdotcom.
Mon, Jan 10, 12:04 PM
andrewgdotcom added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

Ubuntu have been syncing since 7th December: https://www.mail-archive.com/sks-devel@nongnu.org/msg07174.html

Mon, Jan 10, 12:00 PM · dirmngr, Keyserver
bernhard added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

Why the Ubuntu server? AFAIU it does not sync with other servers and it has some tained pubkeys (which is both fine as a choice of this service, it just does not seem to fit the purposes best).

Mon, Jan 10, 11:55 AM · dirmngr, Keyserver
gniibe added a comment to E905: Weekly Standup.

Last week:

This week:

Mon, Jan 10, 10:48 AM
gniibe is attending E905: Weekly Standup.
Mon, Jan 10, 10:44 AM
Jakuje added a comment to T5512: Implement service indicators.

Sorry for resurrecting the done task, but I got a message from @pmgdeb who noticed there is mismatch between parenthesis in the --with-fips-module-version help string. The attached patch fixes the issue and add proper help text.

Mon, Jan 10, 9:34 AM · Testing, Feature Request, FIPS, libgcrypt
aheinecke closed T5493: Attachment1.pgp not offered for saving in an email from Symantec Encryption Desktop (PGP) as Wontfix.

I am tending towards wontfix. The reason is here that the sender attempts to send HTML with inline pgp. Which is not supported. Then that HTML apparently tries to be mutlipart/related which is not supported for inline PGP. Then it would require us to correct a wrongly sent content type of the inline attachment so that outlook does not interpret it as a png. And in that Format it could even be that Attachment1.pgp is not encrypted but instead png data, as the content type indicates.

Mon, Jan 10, 9:30 AM · gpgol
werner committed rGbf4cf04a54bb: gpgtar: List and extract using extended headers. (authored by werner).
gpgtar: List and extract using extended headers.
Mon, Jan 10, 9:29 AM
werner committed rGec69ceab2615: gpgtar: Create extended header for long file names (authored by werner).
gpgtar: Create extended header for long file names
Mon, Jan 10, 9:29 AM
werner changed the status of T5751: Please remove pgp.surf.nl from default dirmngr config from Open to Testing.
Mon, Jan 10, 9:20 AM · dirmngr, Keyserver
werner added a comment to T5751: Please remove pgp.surf.nl from default dirmngr config.

For the next release I'll change the gnupg.net mappings to use the Ubuntu server also for non-TLS connections.

Mon, Jan 10, 9:20 AM · dirmngr, Keyserver
werner committed rGd445e1936526: dirmngr: Map all gnupg.net addresses to the Ubuntu keyserver. (authored by werner).
dirmngr: Map all gnupg.net addresses to the Ubuntu keyserver.
Mon, Jan 10, 9:17 AM
aheinecke added a project to T5763: gpgme-json missing: Info Needed.

I have just checked both the installation script, which still installs gpgme-json.exe and the gpg4win-4 installer downloaded from gpg4win.org gpgme-json.exe is properly installed under <instdir>\bin gpgme-json.exe and under bin_64

Mon, Jan 10, 9:00 AM · Info Needed, Bug Report, gpg4win
Laurent Montel <montel@kde.org> committed rKLEOPATRA49e0e1b82bb1: Adapt build system for building against qt6 (authored by Laurent Montel <montel@kde.org>).
Adapt build system for building against qt6
Mon, Jan 10, 7:51 AM
manphiz created T5765: gnupg2 weird memory fault on NetBSD Loongson/mips64el N32.
Mon, Jan 10, 3:57 AM · MIPS, Bug Report

Sun, Jan 9

werner committed rG3a1c556b2c3a: gpgtar: Create extended header for long file names (authored by werner).
gpgtar: Create extended header for long file names
Sun, Jan 9, 7:09 PM
werner committed rG99a8b1f13831: gpgtar: List and extract using extended headers. (authored by werner).
gpgtar: List and extract using extended headers.
Sun, Jan 9, 7:09 PM
werner closed T5734: web,libgcrypt: Publish our stance what kind of attacks are **not** under our scope as Resolved.
Sun, Jan 9, 6:55 PM · www.gnupg.org, libgcrypt
werner triaged T5763: gpgme-json missing as Normal priority.
Sun, Jan 9, 6:54 PM · Info Needed, Bug Report, gpg4win
jani updated the task description for T5764: Broken umlauts in the new Windows Terminal.
Sun, Jan 9, 3:22 PM · i18n, gnupg (gpg23), Bug Report, gpg4win
jani created T5764: Broken umlauts in the new Windows Terminal.
Sun, Jan 9, 3:16 PM · i18n, gnupg (gpg23), Bug Report, gpg4win
patrick renamed T5763: gpgme-json missing from gpgme-json misson to gpgme-json missing.
Sun, Jan 9, 2:44 PM · Info Needed, Bug Report, gpg4win
patrick created T5763: gpgme-json missing.
Sun, Jan 9, 2:42 PM · Info Needed, Bug Report, gpg4win
Laurent Montel <montel@kde.org> committed rLIBKLEOd99191b942e1: Adapt build system for building qt6 (authored by Laurent Montel <montel@kde.org>).
Adapt build system for building qt6
Sun, Jan 9, 9:24 AM
Laurent Montel <montel@kde.org> committed rLIBKLEOfea884313885: GIT_SILENT: time to increase version (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: time to increase version
Sun, Jan 9, 9:24 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRA1d41c96507b7: GIT_SILENT: time to increase version (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: time to increase version
Sun, Jan 9, 9:21 AM
dkg created T5762: libgpg-error: permit auto-introspection on non-glibc platforms like musl.
Sun, Jan 9, 2:41 AM · gpgrt, Bug Report

Sat, Jan 8

werner added a comment to T5760: Kleopatra hangs loading certificate cache on Windows 11.

See T5758. The workaround is not to set a reader-port.

Sat, Jan 8, 8:24 PM · Bug Report, gpg4win
werner triaged T5761: Libgcrypt: salt-length for RSA-PSS is not documented as Normal priority.
Sat, Jan 8, 8:20 PM · Bug Report, Documentation, libgcrypt
Laurent Montel <montel@kde.org> committed rLIBKLEO6794bb7b586f: GIT_SILENT: prepare 21.12.2 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 21.12.2
Sat, Jan 8, 4:06 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA15d5c5925c8b: GIT_SILENT: prepare 21.12.2 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 21.12.2
Sat, Jan 8, 4:03 PM

Fri, Jan 7

JaminCollins added a comment to T5760: Kleopatra hangs loading certificate cache on Windows 11.

Downgraded the gnupg to 2.2.33 using this installer and I am now able to successfully open the Kleopatra GUI.

Fri, Jan 7, 7:09 PM · Bug Report, gpg4win
JaminCollins added a comment to T5760: Kleopatra hangs loading certificate cache on Windows 11.

Should also note that once the GUI is opened, GnuPG's smartcard deamon (32 bit) transitions to Very high power usage and appears stuck there, consuming a full logical core's worth of CPU time.

Fri, Jan 7, 7:02 PM · Bug Report, gpg4win
MikhailRyazanov created T5761: Libgcrypt: salt-length for RSA-PSS is not documented.
Fri, Jan 7, 4:50 PM · Bug Report, Documentation, libgcrypt

Thu, Jan 6

JaminCollins renamed T5760: Kleopatra hangs loading certificate cache on Windows 11 from Kleopatra hangs ___ on Windows 11 to Kleopatra hangs loading certificate cache on Windows 11.
Thu, Jan 6, 10:46 PM · Bug Report, gpg4win
JaminCollins created T5760: Kleopatra hangs loading certificate cache on Windows 11.
Thu, Jan 6, 10:45 PM · Bug Report, gpg4win
ikloecker committed rKLEOPATRA0c8a90d4e662: Add export of secret subkeys (authored by ikloecker).
Add export of secret subkeys
Thu, Jan 6, 3:29 PM
Claudio Cambra <claudio.cambra@gmail.com> committed rLIBKLEO968417e0b0e2: Remove boost from cmakelists (authored by Claudio Cambra <claudio.cambra@gmail.com>).
Remove boost from cmakelists
Thu, Jan 6, 1:44 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO69138af79cdf: GIT_SILENT: prepare 5.19.2 (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: prepare 5.19.2
Thu, Jan 6, 1:43 PM
Claudio Cambra <claudio.cambra@gmail.com> committed rLIBKLEOfa9fb80a26c6: Remove boost adjacency graph and use simple impl (authored by Claudio Cambra <claudio.cambra@gmail.com>).
Remove boost adjacency graph and use simple impl
Thu, Jan 6, 1:26 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRAd88da8ea13dd: Show headers in qtc6 (authored by Laurent Montel <montel@kde.org>).
Show headers in qtc6
Thu, Jan 6, 9:04 AM
gniibe added a comment to T5752: libgcrypt: Adding aes-wrap-pad (RFC5649) support.

Now, unwrapping supports both cases (KW and KWP).

Thu, Jan 6, 1:09 AM · Testing, libgcrypt

Wed, Jan 5

Laurent Montel <montel@kde.org> committed rLIBKLEO7de57b541dfe: Fix unity build (authored by Laurent Montel <montel@kde.org>).
Fix unity build
Wed, Jan 5, 8:07 PM
ikloecker committed rKLEOPATRAfd17a804ce1b: Disable the use of QStringBuilder for operator+ (authored by ikloecker).
Disable the use of QStringBuilder for operator+
Wed, Jan 5, 6:48 PM
ikloecker committed rKLEOPATRA24df800db315: Fix filename in header comment (authored by ikloecker).
Fix filename in header comment
Wed, Jan 5, 6:48 PM
ikloecker committed rKLEOPATRA72d4620f6206: Change copyright years for Intevation GmbH (authored by ikloecker).
Change copyright years for Intevation GmbH
Wed, Jan 5, 6:48 PM
bernhard committed rWa8ef212b8f79: Unify contact email address (authored by bernhard).
Unify contact email address
Wed, Jan 5, 4:36 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO81f8633fd924: Start to fix unity build support (authored by Laurent Montel <montel@kde.org>).
Start to fix unity build support
Wed, Jan 5, 2:01 PM
werner triaged T5747: Provide a way to request non-FIPS service in FIPS mode as Normal priority.
Wed, Jan 5, 11:50 AM · Testing, Feature Request, FIPS, libgcrypt
werner triaged T5754: gpgtar needs to support longer filenames. as High priority.
Wed, Jan 5, 11:49 AM · gnupg (gpg22), gpgtar
gniibe committed rC746b8e29969b: cipher: Add an API to retrieve unwrapped key length for KWP. (authored by gniibe).
cipher: Add an API to retrieve unwrapped key length for KWP.
Wed, Jan 5, 4:14 AM

Tue, Jan 4

ikloecker added inline comments to rKLEOPATRAb06e18ebab4a: Show group config handout in group config help.
Tue, Jan 4, 5:42 PM
ikloecker added inline comments to rLIBKLEOd192f52fa9d0: Add DocAction helper class.
Tue, Jan 4, 5:30 PM
ikloecker committed rM062e4b1f0f4c: doc: Update NEWS (authored by ikloecker).
doc: Update NEWS
Tue, Jan 4, 4:09 PM
ikloecker committed rM04723a6e96be: qt: Add factory function for secret subkey export job (authored by ikloecker).
qt: Add factory function for secret subkey export job
Tue, Jan 4, 4:09 PM
ikloecker committed rMe5c7fc3e0228: cpp: Allow export of secret subkeys (authored by ikloecker).
cpp: Allow export of secret subkeys
Tue, Jan 4, 4:09 PM
ikloecker committed rM88ad37ea96e4: qt: Remove obsolete QGpgMESecretKeyExportJob (authored by ikloecker).
qt: Remove obsolete QGpgMESecretKeyExportJob
Tue, Jan 4, 4:09 PM
ikloecker committed rM4e80563fabfd: qt: Use QGpgMEExportJob also for export of secret keys (authored by ikloecker).
qt: Use QGpgMEExportJob also for export of secret keys
Tue, Jan 4, 4:09 PM
ikloecker committed rM4888191014c2: cpp: Mark ExportNoUID flag as obsolete (authored by ikloecker).
cpp: Mark ExportNoUID flag as obsolete
Tue, Jan 4, 4:09 PM
ikloecker committed rM3da06d1096ee: cpp: Allow export of secret keys (authored by ikloecker).
cpp: Allow export of secret keys
Tue, Jan 4, 4:09 PM
aheinecke committed rLIBKLEOd192f52fa9d0: Add DocAction helper class (authored by aheinecke).
Add DocAction helper class
Tue, Jan 4, 3:10 PM
werner changed the edit policy for Distributions.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Artwork.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Press Review.
Tue, Jan 4, 2:43 PM
werner changed the edit policy for Feedback.
Tue, Jan 4, 2:42 PM
werner changed the Can Use Application policy for application Phriction from Administrators to Public (No Login Required).
Tue, Jan 4, 2:40 PM
werner changed the edit policy for Wiki Home.
Tue, Jan 4, 2:39 PM
aheinecke committed rKLEOPATRAb06e18ebab4a: Show group config handout in group config help (authored by aheinecke).
Show group config handout in group config help
Tue, Jan 4, 1:53 PM
aheinecke committed rKLEOPATRA998a19b36601: Use new DocAction for g4w comp and new docs (authored by aheinecke).
Use new DocAction for g4w comp and new docs
Tue, Jan 4, 1:53 PM
gniibe added a comment to T5752: libgcrypt: Adding aes-wrap-pad (RFC5649) support.

For unwrapping, it is good if we can support "automatic" unwrapping, apply W^-1 and check the first 8 octets to see if it's KW or KWP.

Tue, Jan 4, 1:01 PM · Testing, libgcrypt
gniibe added a project to T5748: Adding poll/ppoll to NPTH: Testing.
Tue, Jan 4, 12:58 PM · Testing, npth, Feature Request
Jakuje added a comment to T5747: Provide a way to request non-FIPS service in FIPS mode.

Thanks. Looks good to me (both merged changes and the above proposal). In addition to the changes proposed above, we certainly need to update the documentation about this, probably also the FSM diagram.

Tue, Jan 4, 12:47 PM · Testing, Feature Request, FIPS, libgcrypt
ikloecker committed rMfa5f1b57cc12: cpp: Remove obsolete workaround (authored by ikloecker).
cpp: Remove obsolete workaround
Tue, Jan 4, 12:31 PM
ikloecker committed rM2752e81f8925: core: Add new option --secret-subkey to help texts. (authored by ikloecker).
core: Add new option --secret-subkey to help texts.
Tue, Jan 4, 12:31 PM
gniibe claimed T5541: Envvar LIBGCRYPT_FORCE_FIPS_MODE.
Tue, Jan 4, 11:17 AM · Feature Request, Testing, FIPS, libgcrypt
gniibe edited projects for T5747: Provide a way to request non-FIPS service in FIPS mode, added: Feature Request; removed Bug Report.
Tue, Jan 4, 11:17 AM · Testing, Feature Request, FIPS, libgcrypt
gniibe claimed T5747: Provide a way to request non-FIPS service in FIPS mode.
Tue, Jan 4, 11:16 AM · Testing, Feature Request, FIPS, libgcrypt
gniibe moved T5747: Provide a way to request non-FIPS service in FIPS mode from Backlog to Next on the FIPS board.
Tue, Jan 4, 11:16 AM · Testing, Feature Request, FIPS, libgcrypt
gniibe moved T5636: Run integrity checks + selftests from library constructor in FIPS from Next to Done on the FIPS board.
Tue, Jan 4, 11:16 AM · Testing, FIPS, libgcrypt, Bug Report
gniibe moved T5512: Implement service indicators from Next to Done on the FIPS board.
Tue, Jan 4, 11:16 AM · Testing, Feature Request, FIPS, libgcrypt
gniibe moved T5692: New entropy gatherer using the genentropy system call. from Next to Done on the FIPS board.
Tue, Jan 4, 11:15 AM · Testing, libgcrypt, FIPS
gniibe moved T5759: Rename rndlinux module to rndoldlinux from Backlog to Next on the FIPS board.
Tue, Jan 4, 11:07 AM · Testing, libgcrypt, FIPS
gniibe removed a project from T5759: Rename rndlinux module to rndoldlinux: Testing.
Tue, Jan 4, 10:56 AM · Testing, libgcrypt, FIPS
gniibe triaged T5759: Rename rndlinux module to rndoldlinux as Normal priority.
Tue, Jan 4, 10:55 AM · Testing, libgcrypt, FIPS
ikloecker committed rM0e19c4879193: core: New export mode to export secret subkeys. (authored by ikloecker).
core: New export mode to export secret subkeys.
Tue, Jan 4, 9:34 AM
ikloecker committed rM414bbdd53c38: doc: Remove documentation of obsolete export mode flag (authored by ikloecker).
doc: Remove documentation of obsolete export mode flag
Tue, Jan 4, 9:34 AM
ikloecker committed rMc710af223cc2: core: Check for unsupported export mode flags (authored by ikloecker).
core: Check for unsupported export mode flags
Tue, Jan 4, 9:34 AM
ikloecker committed rM326857511587: core: Factor out the check for valid export mode flags. (authored by ikloecker).
core: Factor out the check for valid export mode flags.
Tue, Jan 4, 9:34 AM
ikloecker committed rMc0581adabe7f: core: Check for combination of ssh mode with other mode flags (authored by ikloecker).
core: Check for combination of ssh mode with other mode flags
Tue, Jan 4, 9:34 AM
gniibe renamed T5758: scd: loop forever with reader_port, when open_pcsc_reader failed from scd: reader_port to scd: loop forever with reader_port, when open_pcsc_reader failed.
Tue, Jan 4, 7:03 AM · Testing, gnupg (gpg23), scd
gniibe claimed T5758: scd: loop forever with reader_port, when open_pcsc_reader failed.
Tue, Jan 4, 7:02 AM · Testing, gnupg (gpg23), scd
gniibe committed rGf9c9938b28b6: scd,pcsc: Fix error handling for a reader with reader-port. (authored by gniibe).
scd,pcsc: Fix error handling for a reader with reader-port.
Tue, Jan 4, 7:02 AM
gniibe added a comment to T5758: scd: loop forever with reader_port, when open_pcsc_reader failed.

The problem was the error handling.
I didn't apply the patch directly, but improved the code paths.

Tue, Jan 4, 7:02 AM · Testing, gnupg (gpg23), scd
gniibe triaged T5758: scd: loop forever with reader_port, when open_pcsc_reader failed as Normal priority.
Tue, Jan 4, 6:44 AM · Testing, gnupg (gpg23), scd
gniibe accepted D547: Fixed reader-port infinite loop.
Tue, Jan 4, 6:42 AM
gniibe added a comment to T5747: Provide a way to request non-FIPS service in FIPS mode.

And I'm testing following:

Tue, Jan 4, 6:40 AM · Testing, Feature Request, FIPS, libgcrypt