Page MenuHome GnuPG
Feed All Stories

May 9 2022

aheinecke closed T5273: Release Gpg4win 4.x.x, a subtask of T5216: Kleopatra: Fix handling of UNC paths, as Resolved.
May 9 2022, 9:29 AM · kleopatra
aheinecke closed T5273: Release Gpg4win 4.x.x as Resolved.

We have even released 4.0.2 now.

May 9 2022, 9:29 AM · Restricted Project, gpg4win, Release Info
aheinecke closed T5273: Release Gpg4win 4.x.x, a subtask of T5241: Allow selection of groups as recipients for file encryption, as Resolved.
May 9 2022, 9:29 AM · Restricted Project, kleopatra
aheinecke closed T5273: Release Gpg4win 4.x.x, a subtask of T5272: GpgEx: Incorrect spawn of UI Server can cause a c:\Program.exe to be executed, as Resolved.
May 9 2022, 9:29 AM · gpgex
aheinecke removed a parent task for T5273: Release Gpg4win 4.x.x: T5228: GpgOL: Combined S/MIME and OpenPGP operation.
May 9 2022, 9:29 AM · Restricted Project, gpg4win, Release Info
aheinecke removed a subtask for T5228: GpgOL: Combined S/MIME and OpenPGP operation: T5273: Release Gpg4win 4.x.x.
May 9 2022, 9:29 AM · Restricted Project, gpgol
aheinecke closed T5014: Kleopatra: Use SCD getattr for OpenPGP card manufacturer, a subtask of T4875: Kleopatra: Improve support for S/MIME Smartcards and add additional card support, as Resolved.
May 9 2022, 9:28 AM · kleopatra
aheinecke closed T5014: Kleopatra: Use SCD getattr for OpenPGP card manufacturer as Resolved.
May 9 2022, 9:28 AM · kleopatra
aheinecke closed T4802: Yubikey not recognized as Resolved.

JW-D with Gpg4win-4 we have support for multiple readers and also a dropdown menu for selecting reader ports. This should resolve this issue.

May 9 2022, 9:28 AM · Bug Report, gpg4win
aheinecke closed T4802: Yubikey not recognized, a subtask of T4875: Kleopatra: Improve support for S/MIME Smartcards and add additional card support, as Resolved.
May 9 2022, 9:28 AM · kleopatra
aheinecke closed T4875: Kleopatra: Improve support for S/MIME Smartcards and add additional card support as Resolved.

When we want to add more smartcards we should open new issues. This one is resolved.

May 9 2022, 9:27 AM · kleopatra
aheinecke removed a parent task for T5228: GpgOL: Combined S/MIME and OpenPGP operation: T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver.
May 9 2022, 9:26 AM · Restricted Project, gpgol
aheinecke removed a subtask for T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver: T5228: GpgOL: Combined S/MIME and OpenPGP operation.
May 9 2022, 9:26 AM · kleopatra, Restricted Project, gpgol
aheinecke closed T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver, a subtask of T5967: GpgOL: Use kleopatra groups in keyresolver, as Resolved.
May 9 2022, 9:26 AM · gpgol, Restricted Project
aheinecke closed T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver as Resolved.

I am closing this as the group support for gpgol is now in T5967

May 9 2022, 9:26 AM · kleopatra, Restricted Project, gpgol
aheinecke added a parent task for T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver: T5967: GpgOL: Use kleopatra groups in keyresolver.
May 9 2022, 9:25 AM · kleopatra, Restricted Project, gpgol
aheinecke added a subtask for T5967: GpgOL: Use kleopatra groups in keyresolver: T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver.
May 9 2022, 9:25 AM · gpgol, Restricted Project
aheinecke triaged T5967: GpgOL: Use kleopatra groups in keyresolver as High priority.
May 9 2022, 9:25 AM · gpgol, Restricted Project
aheinecke closed T5216: Kleopatra: Fix handling of UNC paths as Resolved.
May 9 2022, 9:22 AM · kleopatra
aheinecke added a comment to T4814: GpgOL: Send multiple E-Mails for BCC recipients.

Still needs testing as this is a default off feature.

May 9 2022, 9:22 AM · Restricted Project, gpgol
aheinecke closed T5241: Allow selection of groups as recipients for file encryption as Resolved.
May 9 2022, 9:21 AM · Restricted Project, kleopatra
aheinecke closed T5241: Allow selection of groups as recipients for file encryption, a subtask of T5175: Kleopatra: Add support for custom groups, as Resolved.
May 9 2022, 9:21 AM · Restricted Project, kleopatra
aheinecke closed T5239: Add UI for managing groups, a subtask of T5175: Kleopatra: Add support for custom groups, as Resolved.
May 9 2022, 9:21 AM · Restricted Project, kleopatra
aheinecke closed T5239: Add UI for managing groups as Resolved.
May 9 2022, 9:21 AM · Restricted Project, kleopatra
aheinecke closed T5175: Kleopatra: Add support for custom groups as Resolved.
May 9 2022, 9:21 AM · Restricted Project, kleopatra
aheinecke closed T5859: Kleopatra: Revoke own key as Resolved.
May 9 2022, 9:18 AM · kleopatra, Restricted Project
aheinecke closed T5865: Kleopatra: Force usage in advanced settings for newcertificate if key type is forced as Resolved.
May 9 2022, 9:18 AM · Testing, kleopatra, Restricted Project
aheinecke closed T4087: Kleopatra: Revoke User-ID as Resolved.
May 9 2022, 9:18 AM · Testing, Restricted Project, gpg4win, kleopatra, Feature Request
aheinecke closed T5915: Allow Registry configuration of GpgEX as Resolved.
May 9 2022, 9:17 AM · Restricted Project, Feature Request, gpgex
aheinecke closed T5812: GpgOL: Draft encryption after modification no longer works as Resolved.
May 9 2022, 9:16 AM · gpgol, Restricted Project
aheinecke added a comment to T5283: GpgOL: Add mixed mode for S/MIME and OpenPGP to libkleo newkeyresolver.

This needs to be tested with group configuration even for non mixed mode. There is an important wish to have the kleopatra group configuration be used in the keyresolver from outlook.

May 9 2022, 9:15 AM · kleopatra, Restricted Project, gpgol
gniibe added a comment to T5966: keyboxd issue building gnupg-2.3.6 (almost identical toT5406).

Please do make at first before invoking make check. It creates symbolic links for executables.

May 9 2022, 9:09 AM · Testing, gnupg (gpg23), Bug Report
ikloecker added a comment to T5961: Kleopatra: S/MIME Details cannot be copied multiline on Windows.

Do you mean selecting multiple lines in the "Certificate Dump" window that hides behind the "More Details..." button in the certificate details window?

May 9 2022, 9:07 AM · kleopatra, Restricted Project
werner added a project to T5966: keyboxd issue building gnupg-2.3.6 (almost identical toT5406): gnupg (gpg23).
May 9 2022, 7:18 AM · Testing, gnupg (gpg23), Bug Report
gniibe added a project to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys: backport.
May 9 2022, 6:52 AM · Testing, backport, yubikey, scd, segv, Bug Report
gniibe added a comment to E923: Weekly Standup.

Last weeks:

scdaemon:

libgcrypt:

May 9 2022, 6:51 AM
gniibe is attending E923: Weekly Standup.
May 9 2022, 6:39 AM
gniibe added a project to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys: Info Needed.

The patch rG054d14887ef8: scd: Add workaround for ECC attribute on Yubikey. fixes a particular problem of Yubikey implementation where it returns bogus octet for its data object of C1, C2, and C3.

May 9 2022, 4:53 AM · Testing, backport, yubikey, scd, segv, Bug Report
gniibe closed T5581: buf_eq_const() function in cipher/bufhelp.h may get wrong result as Wontfix.

GCC 11.3 and GCC 12.1 are out with the fix.

May 9 2022, 3:02 AM · toolchain, libgcrypt, Bug Report

May 7 2022

Heiko Becker <heiko.becker@kde.org> committed rKLEOPATRA1573e788d651: GIT_SILENT Upgrade release service version to 22.04.1. (authored by Heiko Becker <heiko.becker@kde.org>).
GIT_SILENT Upgrade release service version to 22.04.1.
May 7 2022, 12:04 PM
Heiko Becker <heiko.becker@kde.org> committed rKLEOPATRA27a28156c48f: GIT_SILENT Update Appstream for new release (authored by Heiko Becker <heiko.becker@kde.org>).
GIT_SILENT Update Appstream for new release
May 7 2022, 12:04 PM
Heiko Becker <heiko.becker@kde.org> committed rKLEOPATRA6f531341f1e4: GIT_SILENT Update Appstream for new release (authored by Heiko Becker <heiko.becker@kde.org>).
GIT_SILENT Update Appstream for new release
May 7 2022, 12:04 PM
l10n daemon script <scripty@kde.org> committed rLIBKLEO0f83bd483710: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
May 7 2022, 4:50 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEOa7653ca294d4: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
May 7 2022, 3:58 AM

May 6 2022

dschulman-repay updated the task description for T5966: keyboxd issue building gnupg-2.3.6 (almost identical toT5406).
May 6 2022, 7:33 PM · Testing, gnupg (gpg23), Bug Report
dschulman-repay created T5966: keyboxd issue building gnupg-2.3.6 (almost identical toT5406).
May 6 2022, 7:32 PM · Testing, gnupg (gpg23), Bug Report
ikloecker added inline comments to rG91acbdc93c8a: scd:p15: Improve the displayed S/N for Technology Nexus cards..
May 6 2022, 3:18 PM
oddlama added a comment to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.

With the patch and after starting a new gpg-agent, gpg --card-status now works immediately.
But when I re-plug the yubikey, gpg reports gpg: OpenPGP card not available: Card error until either gpg-agent is restarted, or pcscd is restarted.
pcsc-lite in debug mode reports no errors, but one log is obviously much shorter as gpg fails early (I've attached both, same pcscd and gpg-agent instance).

May 6 2022, 1:42 PM · Testing, backport, yubikey, scd, segv, Bug Report
werner committed rG3d7d7e8bfd12: scd:p15: Improve the displayed S/N for Technology Nexus cards. (authored by werner).
scd:p15: Improve the displayed S/N for Technology Nexus cards.
May 6 2022, 11:46 AM
werner committed rG6f612fd5f6d8: scd:p15: Fix the the sanity check of the displayed S/N. (authored by werner).
scd:p15: Fix the the sanity check of the displayed S/N.
May 6 2022, 11:46 AM
werner committed rG91acbdc93c8a: scd:p15: Improve the displayed S/N for Technology Nexus cards. (authored by werner).
scd:p15: Improve the displayed S/N for Technology Nexus cards.
May 6 2022, 11:38 AM
werner committed rG8efe738c4a09: scd:p15: Fix the the sanity check of the displayed S/N. (authored by werner).
scd:p15: Fix the the sanity check of the displayed S/N.
May 6 2022, 11:38 AM
gniibe committed rG054d14887ef8: scd: Add workaround for ECC attribute on Yubikey. (authored by gniibe).
scd: Add workaround for ECC attribute on Yubikey.
May 6 2022, 11:30 AM
gniibe added a comment to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.

I pushed a workaround.

May 6 2022, 11:28 AM · Testing, backport, yubikey, scd, segv, Bug Report
gniibe renamed T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys from scdaemon causes libc segfault and clashes with pcsc-lite despite using disable-ccid to Yubikey: scdaemon causes libc segfault and clashes with ECC keys.
May 6 2022, 11:26 AM · Testing, backport, yubikey, scd, segv, Bug Report
ikloecker added a comment to T5959: Kleopatra: Show key source in details widget if it is not unkown.

Source (or origin as it's called in the API) exists as per-key and as per-user-ID property. For the user IDs it should probably be shown in the user ID table.

May 6 2022, 11:12 AM · Restricted Project, kleopatra
ikloecker changed the status of T5958: Kleopatra: Change passphrase is enabled even when it is impossible from Open to Testing.
May 6 2022, 10:46 AM · Testing, Restricted Project, kleopatra
ikloecker added a comment to T5958: Kleopatra: Change passphrase is enabled even when it is impossible.

In fact, the ChangePassphraseCommand uses gpgme_op_passwd which "changes the passphrase of the private key". It doesn't know anything about smart cards.

May 6 2022, 10:46 AM · Testing, Restricted Project, kleopatra
ikloecker committed rKLEOPATRA5a84623b8d73: Enable "Change Passphrase" action only for secret keys in local keyring (authored by ikloecker).
Enable "Change Passphrase" action only for secret keys in local keyring
May 6 2022, 10:45 AM
ikloecker moved T5958: Kleopatra: Change passphrase is enabled even when it is impossible from Restricted Project Column to Restricted Project Column on the Restricted Project board.
May 6 2022, 10:27 AM · Testing, Restricted Project, kleopatra
ikloecker claimed T5958: Kleopatra: Change passphrase is enabled even when it is impossible.

I think we should simply disable this command for card keys. Card key operations like "Change PIN/passphrase" should be performed via the card key view.

May 6 2022, 10:27 AM · Testing, Restricted Project, kleopatra
ikloecker added a comment to T5961: Kleopatra: S/MIME Details cannot be copied multiline on Windows.

Can you make a short video of this? On Linux/KDE Plasma, I'm not even able to select multiple lines in the certificate details window (or I'm trying the wrong thing).

May 6 2022, 10:23 AM · kleopatra, Restricted Project
ikloecker added a comment to T5957: Kleopatra: Usability improvement for Notepad.

I fully agree. I also think that the separate recipient tab are rather annoying, in particular, because I usually want to select the recipients before I write the text. Accessibility will also benefit if all inputs can be reached easily with the Tab key without the need to switch between different tabs.

May 6 2022, 10:19 AM · kleopatra, Restricted Project
ikloecker changed the status of T5864: Kleopatra: Configure min and max values for validity in Newcertificatewizard from Open to Testing.

Proper accessible error reporting will be done with the accessibility related tasks.

May 6 2022, 10:13 AM · Testing, kleopatra, Restricted Project
ikloecker moved T5965: gpgme: Inconsistent secret subkey flag when listing keys with different modes from Restricted Project Column to Restricted Project Column on the Restricted Project board.
May 6 2022, 10:11 AM · gpgme, Restricted Project
ikloecker closed T5965: gpgme: Inconsistent secret subkey flag when listing keys with different modes as Resolved.
May 6 2022, 10:10 AM · gpgme, Restricted Project
ikloecker committed rKLEOPATRAbd71828fb9c2: Fix evaluation of NeedSecretKey flag (authored by ikloecker).
Fix evaluation of NeedSecretKey flag
May 6 2022, 10:10 AM
ikloecker committed rKLEOPATRAf5e94b6eb68d: Remove unused MustNotBeSecretKey flag (authored by ikloecker).
Remove unused MustNotBeSecretKey flag
May 6 2022, 10:10 AM
ikloecker changed the status of T5956: Kleopatra: Disable backup secret key for smartcards from Open to Testing.

For the same reasons "Print Secret Keys..." is now also disabled for keys stored on smart cards. No other command seems to require access to the secret key data.

May 6 2022, 10:10 AM · Testing, kleopatra, Restricted Project
gniibe added a project to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys: yubikey.
May 6 2022, 10:07 AM · Testing, backport, yubikey, scd, segv, Bug Report
ikloecker committed rMf72cf726ca74: core: Set SECRET flag of subkeys stored on smart cards (authored by ikloecker).
core: Set SECRET flag of subkeys stored on smart cards
May 6 2022, 9:34 AM
gniibe claimed T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.
May 6 2022, 8:56 AM · Testing, backport, yubikey, scd, segv, Bug Report
gniibe added a comment to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.

For my environment, it is not PC/SC-specific. It also occurs when CCID driver is used.

May 6 2022, 8:42 AM · Testing, backport, yubikey, scd, segv, Bug Report
werner added a comment to T5965: gpgme: Inconsistent secret subkey flag when listing keys with different modes.

No sure, you could also consider the is_cardkey flag to mean that a secret key might be available. FWIW, GPA sets it internal secret key flag based on the type of listing done; thus I see no problem if you want to change the behaviour.

May 6 2022, 8:33 AM · gpgme, Restricted Project
gniibe added a comment to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.

For bcdDevice 5.24, I can replicate the symptom, but only once. After second invocation of gpg --card-status, it works well.

May 6 2022, 8:26 AM · Testing, backport, yubikey, scd, segv, Bug Report
gniibe moved T5933: libgcrypt: Simply use BSS (not secure heap) for DRBG instance from Next to Done on the FIPS board.
May 6 2022, 2:31 AM · backport, Testing, FIPS, libgcrypt
gniibe moved T5919: libgcrypt tests/basic.c and tests/keygen.c occasionally fail with "error generating RSA key: Number is not prime" from Next to Done on the FIPS board.
May 6 2022, 2:31 AM · backport, Testing, FIPS, libgcrypt, Bug Report
gniibe moved T5918: Disable RSA PKCS #1.5 encryption in FIPS mode from Next to Done on the FIPS board.
May 6 2022, 2:31 AM · backport, Testing, libgcrypt, FIPS, Bug Report
gniibe closed T5929: gnupg fails to add ssh key to control entry in FIPS mode with libgcrypt 1.10.1 as Resolved.
May 6 2022, 2:16 AM · FIPS, gnupg (gpg23), Bug Report

May 5 2022

ikloecker added projects to T5965: gpgme: Inconsistent secret subkey flag when listing keys with different modes: Restricted Project, gpgme.
May 5 2022, 5:27 PM · gpgme, Restricted Project
ikloecker committed rM306fd9c915cb: cpp: Output more properties of a subkey (authored by ikloecker).
cpp: Output more properties of a subkey
May 5 2022, 5:26 PM
ikloecker committed rMe029fd27350f: cpp,tests: Actually parse the --with-secret option (authored by ikloecker).
cpp,tests: Actually parse the --with-secret option
May 5 2022, 5:26 PM
ikloecker committed rKLEOPATRA2914efb4769e: Fix enable state of commands that need access to the secret key data (authored by ikloecker).
Fix enable state of commands that need access to the secret key data
May 5 2022, 5:15 PM
ikloecker committed rKLEOPATRA396629a207e3: Convert values of Restriction enum to hex literals (authored by ikloecker).
Convert values of Restriction enum to hex literals
May 5 2022, 5:15 PM
ikloecker created T5965: gpgme: Inconsistent secret subkey flag when listing keys with different modes.
May 5 2022, 4:58 PM · gpgme, Restricted Project
ikloecker closed T5951: gpgme: Add support for refreshing OpenPGP keys as Resolved.
May 5 2022, 3:23 PM · gpgme, Restricted Project
ikloecker closed T5951: gpgme: Add support for refreshing OpenPGP keys, a subtask of T5903: Kleopatra: Add refresh button in certificatedetails and an auto refresh, as Resolved.
May 5 2022, 3:23 PM · Testing, kleopatra, Restricted Project
ikloecker changed the status of T5903: Kleopatra: Add refresh button in certificatedetails and an auto refresh from Open to Testing.

The Certificate Details window now has an Update button.

May 5 2022, 3:22 PM · Testing, kleopatra, Restricted Project
werner committed rG36a5509e11c8: gpg: Minor robustness fix. (authored by werner).
gpg: Minor robustness fix.
May 5 2022, 2:13 PM
werner committed rGd60f930d9b00: scd: New debug flags "card". (authored by werner).
scd: New debug flags "card".
May 5 2022, 2:13 PM
werner committed rG7f029eef6ce1: scd:p15: Fix reading certificates without length info. (authored by werner).
scd:p15: Fix reading certificates without length info.
May 5 2022, 2:13 PM
werner committed rGbbcca7357b01: scd:p15: Fix reading certificates without length info. (authored by werner).
scd:p15: Fix reading certificates without length info.
May 5 2022, 1:46 PM
werner committed rG7dc569392622: scd: New debug flags "card". (authored by werner).
scd: New debug flags "card".
May 5 2022, 1:46 PM
oddlama added a comment to T5963: Yubikey: scdaemon causes libc segfault and clashes with ECC keys.

I've applied the patch and can confirm that the segfault is fixed, but gpg still has severe problems communicating with the Yubikey over pcsc-lite.

May 5 2022, 12:10 PM · Testing, backport, yubikey, scd, segv, Bug Report
ikloecker committed rKLEOPATRA9bc72ccb2290: Force the entered expiration date into the allowed range (authored by ikloecker).
Force the entered expiration date into the allowed range
May 5 2022, 11:24 AM
ikloecker committed rKLEOPATRA876a5306b822: Reword UI texts for refresh command (authored by ikloecker).
Reword UI texts for refresh command
May 5 2022, 11:24 AM
ikloecker committed rKLEOPATRAdf53ad6c7847: Use RefreshOpenPGPKeysJob for OpenPGP and show detailed result (authored by ikloecker).
Use RefreshOpenPGPKeysJob for OpenPGP and show detailed result
May 5 2022, 11:24 AM
ikloecker committed rM9e8c8e448ec8: qt: Revert change of result signal of RefreshKeysJob (authored by ikloecker).
qt: Revert change of result signal of RefreshKeysJob
May 5 2022, 10:53 AM
ikloecker added a reverting change for rMf4c356092571: qt: Make RefreshKeysJob result compatible with standard job result: rM9e8c8e448ec8: qt: Revert change of result signal of RefreshKeysJob.
May 5 2022, 10:53 AM
ikloecker committed rM15a4940aa730: qt: Use lambda instead of std::bind (authored by ikloecker).
qt: Use lambda instead of std::bind
May 5 2022, 10:53 AM