Page MenuHome GnuPG
Feed All Stories

All Stories
Use Results
Edit Query

Mar 31 2022

werner committed rW1094535c379e: Ignore the Standard/etc directory in make-msi.pl (authored by werner).
Ignore the Standard/etc directory in make-msi.pl
Mar 31 2022, 4:30 PM
gniibe committed rGf584ad950482: scd,tpm2d: Fix for consistent use of socket FD. (authored by gniibe).
scd,tpm2d: Fix for consistent use of socket FD.
Mar 31 2022, 2:08 PM
gniibe committed rAa8125eba05be: Fix internal socket API to be consistent for SOCKET. (authored by gniibe).
Fix internal socket API to be consistent for SOCKET.
Mar 31 2022, 12:02 PM
gniibe added a comment to T5891: EOPNOTSUPP is not defined in mingw.org's MinGW, fails compilation of libgcrypt-1.10.0.

you also use the CPU cache size on GNU/Linux. Is it important to have that information on MS-Windows?

Mar 31 2022, 9:36 AM · backport, libgcrypt, Bug Report
werner committed rC35a7409dcf29: random:drbg: Fix the behavior for child process. (authored by gniibe).
random:drbg: Fix the behavior for child process.
Mar 31 2022, 9:27 AM
gniibe committed rCdf7879a86b1d: random:drbg: Fix the behavior for child process. (authored by gniibe).
random:drbg: Fix the behavior for child process.
Mar 31 2022, 9:12 AM
gniibe committed rK41000330cdba: build: When no gpg-error-config, not install ksba-config. (authored by gniibe).
build: When no gpg-error-config, not install ksba-config.
Mar 31 2022, 9:08 AM
werner added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

I don't like it either but the browser vendors don't like SRV records.

Mar 31 2022, 9:03 AM · wkd, gpg4win, Bug Report
bernhard added a comment to T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).

Not in the way it is used by gpg. See T5880

Mar 31 2022, 9:01 AM · gnupg (gpg22), CVE, gpg4win
gniibe committed rPTH2b6a8e5369ed: build: Don't install npth-config by default. (authored by gniibe).
build: Don't install npth-config by default.
Mar 31 2022, 8:43 AM
wiktor-k added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

I still think that redirecting to another catch-all domain is contrary to the original goal and weakens the security model. We need to see what we can do about this.

Mar 31 2022, 8:27 AM · wkd, gpg4win, Bug Report
gniibe committed rT6c961671c1d7: build: When no gpg-error-config, not install ntbtls-config. (authored by gniibe).
build: When no gpg-error-config, not install ntbtls-config.
Mar 31 2022, 8:22 AM
eliz added a comment to T5891: EOPNOTSUPP is not defined in mingw.org's MinGW, fails compilation of libgcrypt-1.10.0.

The attached patch implements getting the number of processors on MS-Windows.

Mar 31 2022, 8:18 AM · backport, libgcrypt, Bug Report
gniibe committed rC2db5b5e995c2: build: When no gpg-error-config, not install libgcrypt-config. (authored by gniibe).
build: When no gpg-error-config, not install libgcrypt-config.
Mar 31 2022, 8:11 AM
gniibe triaged T5912: libgpg-error: Drop WindowsCE support as Wishlist priority.
Mar 31 2022, 8:03 AM · gpgrt
rainerh added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

Thank you, works now on Windows with openpgpkey.sanka-gmbh.de

Mar 31 2022, 7:08 AM · wkd, gpg4win, Bug Report
gniibe closed T5911: libassuan: Remove GNU Pth support as Resolved.
Mar 31 2022, 4:12 AM
gniibe committed rA9de02ca16d30: build: When no gpg-error-config, not install libassuan-config. (authored by gniibe).
build: When no gpg-error-config, not install libassuan-config.
Mar 31 2022, 4:11 AM
gniibe committed rAeeda9ac0a719: Remove GNU Pth support. (authored by gniibe).
Remove GNU Pth support.
Mar 31 2022, 4:01 AM
gniibe triaged T5911: libassuan: Remove GNU Pth support as Normal priority.
Mar 31 2022, 3:50 AM
gniibe added a comment to T4655: Windows 64-bit: gnupg_fd_t, assuan_fd_t and int for fd in the API, and casts.

SOCKET handle is UINT_PTR on Windows. It is u_int on original MinGW, it is UINT_PTR (and unsinged __int64_t) on MinGW-W64.

Mar 31 2022, 3:39 AM · Memo

Mar 30 2022

Valodim added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

Independently of that, it seems that gpg4win doesn't work with at least one widely deployed webserver in its default configuration, specifically Caddy, so this fix is well appreciated.

Mar 30 2022, 11:41 PM · wkd, gpg4win, Bug Report
werner committed rT08c1622944da: Allow ephemeral ECDSA cipher suites. (authored by werner).
Allow ephemeral ECDSA cipher suites.
Mar 30 2022, 8:39 PM
werner committed rTa95b108c6cfd: Make X25519 support depend on the Libgcrypt version (authored by werner).
Make X25519 support depend on the Libgcrypt version
Mar 30 2022, 8:39 PM
werner committed rTc08cc859a930: Post release updates (authored by werner).
Post release updates
Mar 30 2022, 8:39 PM
werner committed rT97a5cdaedbe9: Release 0.3.0 (authored by werner).
Release 0.3.0
Mar 30 2022, 8:39 PM
werner added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

I still think that redirecting to another catch-all domain is contrary to the original goal and weakens the security model. We need to see what we can do about this.

Mar 30 2022, 6:07 PM · wkd, gpg4win, Bug Report
werner closed T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) as Resolved.

Not in the way it is used by gpg. See T5880

Mar 30 2022, 6:04 PM · gnupg (gpg22), CVE, gpg4win
bernhard created T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).
Mar 30 2022, 4:53 PM · gnupg (gpg22), CVE, gpg4win
Valodim added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

Oof. That hinges on the certificate, guess we'll need to renew the bunch of them. I reconfigured, might take a while for all pages but ciphers should now be:

Mar 30 2022, 4:53 PM · wkd, gpg4win, Bug Report
werner added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

The ECDHE_ECDSA suites are not yet implemented in ntbtls and thus we can't agree on a common cipher suite. Will be solved in the next Windows version.

Mar 30 2022, 3:35 PM · wkd, gpg4win, Bug Report
rainerh added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

In the above test, I was using
Windows: 2.3.4
Debian: 2.2.12

Mar 30 2022, 12:58 PM · wkd, gpg4win, Bug Report
Valodim added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

I captured some logs server-side, and I do see this error:

Mar 30 2022, 12:27 PM · wkd, gpg4win, Bug Report
werner added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

Are you using 2.3.4 also on Windows?

Mar 30 2022, 12:15 PM · wkd, gpg4win, Bug Report
werner created T5909: Make use of the LDAP revoked attribute.
Mar 30 2022, 11:49 AM · Feature Request, LDAP, OpenPGP, gpgme, dirmngr
rainerh added a comment to T5813: Locating Keys via WKD with gpg4win fails with unknown error..

I have the same error when using wkd.keys.openpgp.org with a CNAME DNS entry. The error occurs with Windows 10, 11 and Server 2019 (only the most recent versions tested). With Debian it works fine.

Mar 30 2022, 11:44 AM · wkd, gpg4win, Bug Report
werner closed T5907: bench-slope missing brainpool curves in master branch as Resolved.

see rC67b36154f88e for master.

Mar 30 2022, 9:07 AM · libgcrypt, Bug Report
werner committed rC67b36154f88e: tests: Add brainpoolP256r1 to bench-slope. (authored by werner).
tests: Add brainpoolP256r1 to bench-slope.
Mar 30 2022, 9:06 AM
werner added a comment to T5907: bench-slope missing brainpool curves in master branch.

Will add it. The reason I added Brainpool was due to a question on the performacne between Brainpool and other NIST.

Mar 30 2022, 9:03 AM · libgcrypt, Bug Report
gniibe requested review of D550: gnupg: No writing passphrase as a file.
Mar 30 2022, 8:48 AM · gpgagent
gniibe claimed T5899: Fix compilation of dirmngr with mingw.org's MinGW.

Last part is applied. Let me consider how to solve, for other parts.

Mar 30 2022, 6:07 AM · patch, Feature Request, Windows, toolchain
gniibe committed rG01ade6945d6c: dirmngr: Fix for SOCK. (authored by gniibe).
dirmngr: Fix for SOCK.
Mar 30 2022, 6:07 AM
gniibe committed rG18eff31496a3: tpm2d: Fix socket resource leak on Windows. (authored by gniibe).
tpm2d: Fix socket resource leak on Windows.
Mar 30 2022, 6:01 AM
gniibe committed rG2189b4bb638c: common,w32: Fix handle_to_fd to match use of _open_osfhandle. (authored by gniibe).
common,w32: Fix handle_to_fd to match use of _open_osfhandle.
Mar 30 2022, 4:51 AM

Mar 29 2022

jukivili committed rCa5d126c61cc0: configure: fix avx512 check for i386 (authored by jukivili).
configure: fix avx512 check for i386
Mar 29 2022, 6:00 PM
jukivili committed rC4dc707e336a9: Fix configure.ac error of intel-avx512 (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
Fix configure.ac error of intel-avx512
Mar 29 2022, 6:00 PM
gniibe committed rA564e0d94f21f: w32: Fix definition of type to be generated into assuan.h. (authored by gniibe).
w32: Fix definition of type to be generated into assuan.h.
Mar 29 2022, 12:00 PM
Jakuje created T5907: bench-slope missing brainpool curves in master branch.
Mar 29 2022, 10:56 AM · libgcrypt, Bug Report
gniibe committed rC564739a58426: kdf:argon2: Fix for the case output > 64. (authored by gniibe).
kdf:argon2: Fix for the case output > 64.
Mar 29 2022, 9:20 AM
gniibe added a comment to T4656: Windows 64-bit: functions which use pid_t.

Original MinGW and MinGW-w64 handle differently.
For MinGW-w64 on 64-bit machine, pid_t is 64-bit integer.
For original MinGW on 64-bit machine, pid_t is 32-bit integer.

Mar 29 2022, 8:18 AM · Memo
gniibe committed rE660db9c9a90f: w32: Fix handle_to_pid for MinGW-w64. (authored by gniibe).
w32: Fix handle_to_pid for MinGW-w64.
Mar 29 2022, 7:46 AM
gniibe committed rGd05221065faf: dirmngr: Clean up for not supporting WindowsCE. (authored by gniibe).
dirmngr: Clean up for not supporting WindowsCE.
Mar 29 2022, 6:43 AM
gniibe committed rG2cebba72749c: gpg,tools: Remove use of repo only zlib-riscos.h. (authored by gniibe).
gpg,tools: Remove use of repo only zlib-riscos.h.
Mar 29 2022, 5:09 AM
gniibe added a comment to T5809: Expire subkey violates assertion "! sig->hashed".

Not applying the change to GnuPG 2.2, users can use GnuPG 2.3 for that.

Mar 29 2022, 4:28 AM · Restricted Project, gnupg (gpg22), Bug Report
gniibe committed rGd9a8d3353afd: common,unix: Backport dotlock changes from GnuPG 2.3. (authored by gniibe).
common,unix: Backport dotlock changes from GnuPG 2.3.
Mar 29 2022, 4:27 AM
gniibe added projects to T5029: server socket/pipe handling in GnuPG: Restricted Project, Windows.
Mar 29 2022, 2:59 AM · Windows, scd, gnupg (gpg23)
gniibe committed rGa67a09be30f5: scd,w32: Fix socket resource leak. (authored by gniibe).
scd,w32: Fix socket resource leak.
Mar 29 2022, 2:59 AM
gniibe added a project to T5029: server socket/pipe handling in GnuPG: scd.
Mar 29 2022, 2:59 AM · Windows, scd, gnupg (gpg23)
gniibe added a comment to T5029: server socket/pipe handling in GnuPG.

The patch I proposed was partial one, not fully solved the problem of socket resource leak on Windows.

Mar 29 2022, 2:59 AM · Windows, scd, gnupg (gpg23)
gniibe merged T5396: Remove USE_RANDOM_DAEMON support from libgcrypt into T5706: libgcrypt: random: Remove the feature getting randomness from random daemon.
Mar 29 2022, 1:41 AM · libgcrypt
gniibe merged task T5396: Remove USE_RANDOM_DAEMON support from libgcrypt into T5706: libgcrypt: random: Remove the feature getting randomness from random daemon.
Mar 29 2022, 1:41 AM · libgcrypt
gniibe closed T5396: Remove USE_RANDOM_DAEMON support from libgcrypt as Resolved.

Done in master to be 1.11 for server side rC754ad5815b5b: random: Remove use of experimental random daemon.

Mar 29 2022, 1:37 AM · libgcrypt
gniibe closed T5835: libgcrypt: More robust/portable integrity check as Resolved.

Done in 1.10.1.

Mar 29 2022, 1:32 AM · Bug Report, libgcrypt, FIPS

Mar 28 2022

ikloecker committed rMfe588fef0963: cpp: Set default visibility of all symbols to hidden (authored by ikloecker).
cpp: Set default visibility of all symbols to hidden
Mar 28 2022, 5:57 PM
ikloecker committed rM3b3b36a60749: qt: Set default visibility of all symbols to hidden (authored by ikloecker).
qt: Set default visibility of all symbols to hidden
Mar 28 2022, 5:57 PM
ikloecker committed rM92139e7b6b5f: cpp: Put local helper function into unnamed namespace (authored by ikloecker).
cpp: Put local helper function into unnamed namespace
Mar 28 2022, 5:57 PM
ikloecker committed rMff3c93881ad9: doc: Remove bogus documentation (authored by ikloecker).
doc: Remove bogus documentation
Mar 28 2022, 5:57 PM
ikloecker added a comment to T5906: gpgme cpp/qt: Only export symbols that are part of the ABI.

Summary of abidiff for libgpgmepp:

Functions changes summary: 6 Removed (20 filtered out), 0 Changed, 0 Added functions
Variables changes summary: 2 Removed, 0 Changed, 0 Added variables
Function symbols changes summary: 0 Removed, 0 Added function symbol not referenced by debug info
Variable symbols changes summary: 12 Removed, 0 Added variable symbols not referenced by debug info
Mar 28 2022, 5:35 PM · Restricted Project, gpgme
ikloecker closed T5906: gpgme cpp/qt: Only export symbols that are part of the ABI as Resolved.
Mar 28 2022, 5:28 PM · Restricted Project, gpgme
ikloecker triaged T5906: gpgme cpp/qt: Only export symbols that are part of the ABI as Normal priority.
Mar 28 2022, 4:57 PM · Restricted Project, gpgme
ikloecker edited projects for T5904: gpgme: Revoke own key, added: gpgme; removed kleopatra.
Mar 28 2022, 4:52 PM · gpgme, Restricted Project
werner committed rD6698ad8b26a9: web: Release info for libgcrypt 1.10.1 (authored by werner).
web: Release info for libgcrypt 1.10.1
Mar 28 2022, 4:50 PM
werner closed T5810: Release Libgcrypt 1.10.1 as Resolved.
Mar 28 2022, 4:43 PM · libgcrypt, Release Info
werner committed rD52655a0e8f23: swdb: Libgcrypt 1.10.2 (authored by werner).
swdb: Libgcrypt 1.10.2
Mar 28 2022, 4:25 PM
werner closed T5902: GnuPG dirmngr sends incorrect l parameter to a WKD server as Resolved.

Good idea. Thanks. Goes onto 2.3 and 2.2

Mar 28 2022, 4:15 PM · dirmngr, gnupg, wkd, Bug Report
werner committed rG3b251c8366cf: dirmngr: Escape more characters in WKD requests. (authored by werner).
dirmngr: Escape more characters in WKD requests.
Mar 28 2022, 4:15 PM
werner committed rG435861b9fb8c: dirmngr: Escape more characters in WKD requests. (authored by werner).
dirmngr: Escape more characters in WKD requests.
Mar 28 2022, 4:13 PM
werner triaged T5905: Release Libgcrypt 1.10.2 as Low priority.
Mar 28 2022, 3:44 PM · Release Info, libgcrypt
werner committed rG253fcb97775b: gpg: Remove EAX from the preference list. (authored by werner).
gpg: Remove EAX from the preference list.
Mar 28 2022, 3:27 PM
ikloecker moved T5904: gpgme: Revoke own key from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 28 2022, 2:24 PM · gpgme, Restricted Project
ikloecker triaged T5904: gpgme: Revoke own key as Wishlist priority.
Mar 28 2022, 2:24 PM · gpgme, Restricted Project
ikloecker moved T5859: Kleopatra: Revoke own key from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 28 2022, 1:41 PM · kleopatra, Restricted Project
ikloecker moved T5824: Kleopatra: Full accessibility support from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 28 2022, 1:41 PM · kleopatra
ikloecker moved T5832: Kleopatra: Make OpenPGP certificate generation (with default settings) accessible from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 28 2022, 1:41 PM · kleopatra, Restricted Project
ikloecker moved T5845: Kleopatra: Accessibility for file encryption from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 28 2022, 1:40 PM · kleopatra, Restricted Project
aheinecke assigned T5859: Kleopatra: Revoke own key to ikloecker.

Ingo, it would be great if you could work on that. For me the most intresting use case is to fully revoke a key because it has been superseeded.

Mar 28 2022, 1:02 PM · kleopatra, Restricted Project
ikloecker added a comment to T5780: Kleopatra: Result dialog does not have focus after operation.

I'm also seeing this, but that's probably due to me using "focus follows mouse" and the pinentry being a different application. When the pinentry goes away the window manager gives focus to the window below the mouse which very often isn't Kleopatra when I have been testing keyboard navigation.

Mar 28 2022, 12:32 PM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ikloecker committed rKLEOPATRA89467cf4a0a3: Insert all selected certificates/groups back-to-back (authored by ikloecker).
Insert all selected certificates/groups back-to-back
Mar 28 2022, 12:22 PM
aheinecke added a comment to T5903: Kleopatra: Add refresh button in certificatedetails .

I wonder if we even should change gpgme to do a key refresh when you call it in VALIDATE mode and online? Semantically this makes sense to me as this is where CRL checks for S/MIME are done. But from a conserviative standpoint this could be considered an API change if the API then does something differently and that even does a network connection. So while I consider it I don't think this is a very good idea.

Mar 28 2022, 11:58 AM · backport, kleopatra, Restricted Project
aheinecke triaged T5903: Kleopatra: Add refresh button in certificatedetails as Normal priority.
Mar 28 2022, 11:55 AM · backport, kleopatra, Restricted Project
aheinecke added a comment to T5780: Kleopatra: Result dialog does not have focus after operation.

This occurs on Windows. But if a raise is really missing, it might also occur with other window managers.

Mar 28 2022, 11:48 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ikloecker added a comment to T5780: Kleopatra: Result dialog does not have focus after operation.

On which OS resp. with which window manager does this problem occur?

Mar 28 2022, 10:54 AM · vsd33 (vsd-3.3.0), kleopatra, Restricted Project
ikloecker added a comment to T5886: Mutt PGP Error: "Could not decrypt PGP message" & "Could not copy message" on Ubuntu machine but works on macOS machine.
In T5886#156407, @TonyBarganski wrote:
  1. As things stand right now, someone with a Public key created on gpg version 2.3 on a macOS cannot privately communicate with someone using a Linux server, news group or Linux Desktop.
Mar 28 2022, 10:52 AM · gnupg, Support
eehakkin created T5902: GnuPG dirmngr sends incorrect l parameter to a WKD server.
Mar 28 2022, 10:17 AM · dirmngr, gnupg, wkd, Bug Report
gniibe committed rCe24fe6786561: test: Fix cast for Windows 64-bit. (authored by gniibe).
test: Fix cast for Windows 64-bit.
Mar 28 2022, 9:09 AM
gniibe committed rC5d6a1c396396: build: Fix for build for Windows. (authored by gniibe).
build: Fix for build for Windows.
Mar 28 2022, 9:09 AM
gniibe added a comment to T5882: Cross signing certificate in X.509 support.

I read OpenSSL implementation.
It does NOT implement backtracking.
In openssl/crypto/x509/x509_vfy.c, it has a function find_issuer which does:

  • exclude a issuer when it's already in ctx->chain (can avoid recursion forever)
  • prefer the first non-expired one, else take the most recently expired one.
Mar 28 2022, 8:37 AM
werner committed rC951b7d987cdb: doc: Typo and grammar fixes. (authored by werner).
doc: Typo and grammar fixes.
Mar 28 2022, 8:30 AM
werner committed rC26ac5e30018f: hash: Add more OIDs. (authored by werner).
hash: Add more OIDs.
Mar 28 2022, 8:30 AM
werner committed rCec656616bbbb: build: Improve sign-release traget (authored by werner).
build: Improve sign-release traget
Mar 28 2022, 8:30 AM
First
Prev
Next