Page MenuHome GnuPG
Feed All Stories

Wed, Aug 3

werner committed rG5fb2306b9760: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Wed, Aug 3, 10:50 AM
werner committed rGb067285d595a: dirmngr: Fix failed malloc error message. (authored by werner).
dirmngr: Fix failed malloc error message.
Wed, Aug 3, 10:50 AM
ikloecker claimed T6101: Kleopatra: Make self-test accessible.
Wed, Aug 3, 9:38 AM · Testing, kleopatra, Restricted Project
ikloecker edited projects for T6115: Kleopatra: Improve revoke certification, added: Restricted Project; removed g10code.
Wed, Aug 3, 9:35 AM · Testing, Restricted Project, kleopatra
gniibe committed rSd87da7d1c0a6: Support ECC, step 2. (authored by gniibe).
Support ECC, step 2.
Wed, Aug 3, 9:32 AM
werner committed rGebb736b2c310: gpgconf: Add config file for Windows Registry dumps. (authored by werner).
gpgconf: Add config file for Windows Registry dumps.
Wed, Aug 3, 9:29 AM
gniibe committed rSd3b1ea8387f5: Support ECC, step 1. (authored by gniibe).
Support ECC, step 1.
Wed, Aug 3, 9:12 AM
gniibe committed rS6be00e5447ef: locate the places to support ECC. (authored by gniibe).
locate the places to support ECC.
Wed, Aug 3, 6:29 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAef06a5ee49d4: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Wed, Aug 3, 4:51 AM
gniibe committed rSb704864cf72b: Add constants in pkcs11.h. (authored by gniibe).
Add constants in pkcs11.h.
Wed, Aug 3, 3:42 AM

Tue, Aug 2

werner added a project to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data: Testing.

Fixed in 2.2 and master. Did a couple of manual tests using 2.2 on Linux. gpgsplit comes handy to add a couple more tag-3 packets (same algos or one patched to camellia for the negative test)

Tue, Aug 2, 6:55 PM · Testing, gnupg, Restricted Project
werner committed rG171725c9717c: g13: Remove unused variable. (authored by werner).
g13: Remove unused variable.
Tue, Aug 2, 6:46 PM
werner committed rGea7aba6e605d: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Tue, Aug 2, 6:46 PM
werner committed rGe542c4af182d: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Tue, Aug 2, 6:46 PM
werner committed rGe8011a7ceca7: gpg: Make symmetric + pubkey encryption de-vs compliant. (authored by werner).
gpg: Make symmetric + pubkey encryption de-vs compliant.
Tue, Aug 2, 6:37 PM
jukivili committed rC97e2c237f15d: tests/basic: Add ifdefs for SM4 and CAMELLIA tests (authored by neverpanic).
tests/basic: Add ifdefs for SM4 and CAMELLIA tests
Tue, Aug 2, 6:04 PM
werner added a comment to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.

This also points out that the cipher algos and modes of the symmetric encrypted session key packets where never checked for compliance. We only checked the compliance of the bulk encryption cipher algo.

Tue, Aug 2, 6:04 PM · Testing, gnupg, Restricted Project
ikloecker changed the status of T6120: Kleopatra: Unify wording of (start and) end of validity period from Open to Testing.
Tue, Aug 2, 5:44 PM · Testing, Restricted Project, kleopatra
ikloecker committed rKLEOPATRAe47dfe74231c: Unify labeling of creation and expiration date (authored by ikloecker).
Unify labeling of creation and expiration date
Tue, Aug 2, 5:43 PM
ikloecker committed rLIBKLEO576de59a37c1: Unify labeling of creation and expiration date (authored by ikloecker).
Unify labeling of creation and expiration date
Tue, Aug 2, 5:27 PM
ikloecker claimed T6120: Kleopatra: Unify wording of (start and) end of validity period.
Tue, Aug 2, 5:14 PM · Testing, Restricted Project, kleopatra
ikloecker triaged T6120: Kleopatra: Unify wording of (start and) end of validity period as Normal priority.
Tue, Aug 2, 5:13 PM · Testing, Restricted Project, kleopatra
aheinecke renamed T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data from GnuPG: Complaince mode status omitted when decrypting combined symmetric and asymmetric data to GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.
Tue, Aug 2, 4:41 PM · Testing, gnupg, Restricted Project
aheinecke added a comment to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.

This was added in b03fab09e188f7bb10237d4f20455e4026737e4e

Tue, Aug 2, 4:41 PM · Testing, gnupg, Restricted Project
aheinecke added a comment to T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data.

Oh, there appears to be a reason for that. In line 699 of mainproc.c:

/* Symmetric encryption and asymmetric encryption voids compliance.  */
   && (c->symkeys != !!c->pkenc_list )
Tue, Aug 2, 4:37 PM · Testing, gnupg, Restricted Project
aheinecke triaged T6119: GnuPG: Compliance mode status omitted when decrypting combined symmetric and asymmetric data as High priority.
Tue, Aug 2, 4:30 PM · Testing, gnupg, Restricted Project
ikloecker renamed T6118: Kleopatra: Bogus </item><item> in message when importing secret key with multiple user IDs from Kleopatra: Bogus </item><item> in message when exporting secret key with multiple user IDs to Kleopatra: Bogus </item><item> in message when importing secret key with multiple user IDs.
Tue, Aug 2, 4:00 PM · Testing, kleopatra, Restricted Project, Bug Report
ikloecker moved T6118: Kleopatra: Bogus </item><item> in message when importing secret key with multiple user IDs from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Tue, Aug 2, 3:56 PM · Testing, kleopatra, Restricted Project, Bug Report
ikloecker changed the status of T6118: Kleopatra: Bogus </item><item> in message when importing secret key with multiple user IDs from Open to Testing.
Tue, Aug 2, 3:56 PM · Testing, kleopatra, Restricted Project, Bug Report
ikloecker committed rKLEOPATRAa6e9353ef245: Fix building of localized string with list of imported user IDs (authored by ikloecker).
Fix building of localized string with list of imported user IDs
Tue, Aug 2, 3:55 PM
werner committed rE745d333cf7b5: w32: Convert REG_DWORD values to a string. (authored by werner).
w32: Convert REG_DWORD values to a string.
Tue, Aug 2, 3:19 PM
ikloecker created T6118: Kleopatra: Bogus </item><item> in message when importing secret key with multiple user IDs.
Tue, Aug 2, 1:57 PM · Testing, kleopatra, Restricted Project, Bug Report
mlaurent committed rLIBKLEO0a7b898e0092: Remove unused forward declaration (authored by mlaurent).
Remove unused forward declaration
Tue, Aug 2, 1:22 PM
mlaurent committed rKLEOPATRA33baefc6eefe: Remove unused forward declaration (authored by mlaurent).
Remove unused forward declaration
Tue, Aug 2, 1:21 PM
werner committed rG6bc959231802: gpgconf: Improve registry dumping. (authored by werner).
gpgconf: Improve registry dumping.
Tue, Aug 2, 12:27 PM
tigernero added a comment to T6070: Yubikey 5C 'not available: card error' regression.

I have exactly this problem with yubikey here, since I upgraded to gpg4win with gnupg 2.3.7 I get the same error as the openpgp key not recognized. i think the gpg4win group depends on you for gnupg 2.3.8 because currently with gpg4win the yubikey with openmpgp on windows are unusable due to this regression

Tue, Aug 2, 12:25 PM · backport, gnupg (gpg23), scd, Testing, Bug Report
ikloecker changed the status of T6102: Kleopatra: Make Certifications dialog accessible from Open to Testing.

The original issues have been addressed. Moreover, the actions are now available as buttons additionally to being available as context menu items.

Tue, Aug 2, 11:47 AM · Testing, kleopatra, Restricted Project
ikloecker changed the status of T6102: Kleopatra: Make Certifications dialog accessible, a subtask of T5824: Kleopatra: Full accessibility support, from Open to Testing.
Tue, Aug 2, 11:47 AM · kleopatra, Restricted Project
ikloecker committed rKLEOPATRA452adf99f2ee: Use actions for operations on user IDs and their certifications (authored by ikloecker).
Use actions for operations on user IDs and their certifications
Tue, Aug 2, 11:38 AM
ikloecker committed rKLEOPATRA554349e719a0: Add buttons for invoking actions on selected user ID or certification (authored by ikloecker).
Add buttons for invoking actions on selected user ID or certification
Tue, Aug 2, 11:38 AM
ikloecker committed rKLEOPATRA5703377393cc: Make userHasCertificationKey() helper available elsewhere (authored by ikloecker).
Make userHasCertificationKey() helper available elsewhere
Tue, Aug 2, 11:38 AM
ikloecker committed rKLEOPATRA9dea1cbc20ac: Add helpers for checking feasibility of certification revokations (authored by ikloecker).
Add helpers for checking feasibility of certification revokations
Tue, Aug 2, 11:38 AM
ikloecker committed rKLEOPATRA60498cdadfa8: Change selection mode to single selection (authored by ikloecker).
Change selection mode to single selection
Tue, Aug 2, 11:38 AM
OJFord added a comment to T6070: Yubikey 5C 'not available: card error' regression.

@tigernero 2.3.8 is not yet released. Pretty sure gpg4win is a separate project, presumably you'll see a changelog entry here (as there is bumping to 2.3.7 in the latest 4.0.3) when it's in:
https://www.gpg4win.org/change-history.html
https://www.gpg4win.org/support.html

Tue, Aug 2, 11:01 AM · backport, gnupg (gpg23), scd, Testing, Bug Report
aheinecke closed T5371: Handle invalid compliance settings as Resolved.

Agreed

Tue, Aug 2, 9:03 AM · Feature Request, Restricted Project, kleopatra
gniibe committed rSf5cf61ccb127: Don't use SCD READCERT, but just use gpgsm. (authored by gniibe).
Don't use SCD READCERT, but just use gpgsm.
Tue, Aug 2, 7:17 AM
gniibe committed rS00198cb67064: Fix wrong fix of off-by-one error. (authored by gniibe).
Fix wrong fix of off-by-one error.
Tue, Aug 2, 7:17 AM

Mon, Aug 1

jukivili committed rCa8f66410ca0d: basic: gcm-siv: add fips checks for SM4 and CAMELLIA128 (authored by jukivili).
basic: gcm-siv: add fips checks for SM4 and CAMELLIA128
Mon, Aug 1, 7:29 PM
ikloecker committed rKLEOPATRA10119dd61c1d: Set accessible name for the user ID and certifications tree (authored by ikloecker).
Set accessible name for the user ID and certifications tree
Mon, Aug 1, 5:17 PM
ikloecker committed rLIBKLEOc2fa1cf1326f: Announce empty cells of user ID rows as "User ID" (authored by ikloecker).
Announce empty cells of user ID rows as "User ID"
Mon, Aug 1, 5:17 PM
ikloecker changed the status of T5832: Kleopatra: Make OpenPGP certificate generation (with default settings) accessible, a subtask of T5842: Gpg4win LTS 3.1.22, from Open to Testing.
Mon, Aug 1, 4:53 PM · gpg4win, Restricted Project, Release Info
ikloecker changed the status of T5832: Kleopatra: Make OpenPGP certificate generation (with default settings) accessible, a subtask of T5824: Kleopatra: Full accessibility support, from Open to Testing.
Mon, Aug 1, 4:53 PM · kleopatra, Restricted Project
ikloecker changed the status of T5832: Kleopatra: Make OpenPGP certificate generation (with default settings) accessible from Open to Testing.
Mon, Aug 1, 4:53 PM · Testing, kleopatra, Restricted Project
ikloecker added a comment to T5832: Kleopatra: Make OpenPGP certificate generation (with default settings) accessible.

The OpenPGP-related changes mentioned in T5832#161063 have been implemented.

Mon, Aug 1, 4:52 PM · Testing, kleopatra, Restricted Project
ikloecker triaged T6117: Kleopatra: Make creation of S/MIME certificate signing request accessible as Normal priority.
Mon, Aug 1, 4:51 PM · kleopatra, Restricted Project
ikloecker added a comment to T5371: Handle invalid compliance settings.

I think this was mostly covered with T5362: Kleopatra: Add warning in compliance mode if gnupg version is not compliant and T5653: de-vs and GnuPG 2.3.3 error.

Mon, Aug 1, 4:09 PM · Feature Request, Restricted Project, kleopatra
ikloecker committed rKLEOPATRAf7c4c2d0e2bb: Show a simple success message instead of a complicated result dialog (authored by ikloecker).
Show a simple success message instead of a complicated result dialog
Mon, Aug 1, 4:03 PM
ikloecker committed rKLEOPATRAf7dfbacd9b7f: GIT_SILENT Remove unused method (authored by ikloecker).
GIT_SILENT Remove unused method
Mon, Aug 1, 4:03 PM
aheinecke committed rO5fd467a00d3f: Abort header parsing on invalid headers (authored by aheinecke).
Abort header parsing on invalid headers
Mon, Aug 1, 3:15 PM
werner added projects to T5371: Handle invalid compliance settings: Restricted Project, Feature Request.

Has this been implemented?

Mon, Aug 1, 3:15 PM · Feature Request, Restricted Project, kleopatra
werner edited projects for T5990: Option to ignore the user trustlist.txt, added: Testing; removed backport.
Mon, Aug 1, 3:12 PM · Testing, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
werner committed rG10f42f313ca7: tests: Install links for tpm2daemon (authored by werner).
tests: Install links for tpm2daemon
Mon, Aug 1, 3:11 PM
aheinecke added a comment to T6116: Kleopatra: Card personalization workflow.

As part of this the "Change Reset Code" button should be hidden in the general user interface.

Mon, Aug 1, 2:23 PM · kleopatra, g10code
aheinecke triaged T6116: Kleopatra: Card personalization workflow as Wishlist priority.
Mon, Aug 1, 2:20 PM · kleopatra, g10code
aheinecke triaged T6115: Kleopatra: Improve revoke certification as Normal priority.
Mon, Aug 1, 2:12 PM · Testing, Restricted Project, kleopatra
ikloecker committed rKLEOPATRAd672b49dbb1c: Make name of class reflect what it does (authored by ikloecker).
Make name of class reflect what it does
Mon, Aug 1, 2:09 PM
ikloecker committed rKLEOPATRAb39f97df824f: Only offer creation of OpenPGP certificate in selection dialog (authored by ikloecker).
Only offer creation of OpenPGP certificate in selection dialog
Mon, Aug 1, 2:09 PM
ikloecker committed rKLEOPATRA837325756ec7: Offer separate actions for creating OpenPGP key pair resp. S/MIME CSR (authored by ikloecker).
Offer separate actions for creating OpenPGP key pair resp. S/MIME CSR
Mon, Aug 1, 2:09 PM
ikloecker committed rKLEOPATRA95416fb1d192: Create OpenPGP certificate by default with --gen-key (authored by ikloecker).
Create OpenPGP certificate by default with --gen-key
Mon, Aug 1, 2:09 PM
werner lowered the priority of T6023: Check how GnuPG handles several keys from WKD from High to Normal.

I don't think that we need to fix things here. Important is that the WKD import uses a filter which imports only keys with the requested mail address. However, if a key with the same fingerprint already exists it will be merged.

Mon, Aug 1, 11:33 AM · Documentation, wkd, gnupg (gpg23)
Jakuje reopened T6052: gnupg2 tpm2d tests do not work as "Open".

The provided change does not look like fixing the problem for me. The path to gpgconf is still wrong and I am getting the same error both with master and with the patched tarballs:

make[2]: Entering directory '/home/jjelen/devel/gnupg/tests/tpm2dtests'
LC_ALL=C EXEEXT= PATH="../gpgscm:/home/jjelen/.local/bin:/home/jjelen/bin:/usr/local/bin:/usr/local/sbin:/usr/bin:/usr/sbin" abs_top_srcdir="/home/jjelen/devel/gnupg" objdir="/home/jjelen/devel/gnupg" TPMSERVER="" SWTPM="/bin/swtpm" SWTPM_IOCTL="/bin/swtpm_ioctl" GNUPG_BUILD_ROOT="/home/jjelen/devel/gnupg/tests" GPGSCM_PATH="/home/jjelen/devel/gnupg/tests/gpgscm" /home/jjelen/devel/gnupg/tests/gpgscm/gpgscm \
  /home/jjelen/devel/gnupg/tests/tpm2dtests/run-tests.scm  
gpgscm: error running '/home/jjelen/devel/gnupg/tests/tools/gpgconf': probably not installed
(wait-process "/home/jjelen/devel/gnupg/tests/tools/gpgconf" 2693795 #t): Configuration error
Mon, Aug 1, 11:31 AM · Tests, TPM, gnupg (gpg23), Bug Report
werner closed T6098: Path traversal bug in gpg-wks-server as Resolved.
Mon, Aug 1, 11:20 AM · wkd, gnupg
werner triaged T6114: Support Installable test suites in gpg-crypt as Normal priority.
Mon, Aug 1, 11:18 AM · Tests, dev.gnupg.org, Feature Request
rossburton created T6114: Support Installable test suites in gpg-crypt.
Mon, Aug 1, 10:59 AM · Tests, dev.gnupg.org, Feature Request
werner committed rG8e63e813c740: common: Add a default OpenPGP ECC mapping. (authored by werner).
common: Add a default OpenPGP ECC mapping.
Mon, Aug 1, 10:35 AM
werner committed rG67e510cbf7b1: scd:opengpg: Minor vendor name fix (authored by werner).
scd:opengpg: Minor vendor name fix
Mon, Aug 1, 10:35 AM
gniibe is attending E936: Weekly Standup.
Mon, Aug 1, 7:34 AM
gniibe added a comment to E936: Weekly Standup.

Last week:

  • Win32-OpenSSH support: T3883 in the branch gniibe/t3883, I think the initial implementation has been finished: meaning: working well for me, possible improvements will be:
    • handling by threads (currently, each connection is handled sequentially, connection by connection)
    • more uses by real users
    • review for ACL
      • currently, it uses NULL for sa, and allows only local connection by PIPE_REJECT_REMOTE_CLIENTS

This week:

  • continue for experimental scute: T6002
    • no use of direct SCD command, when possible but use gpgsm (to serve remote use cases)
    • ECC support
    • clean up
Mon, Aug 1, 7:15 AM

Sun, Jul 31

jukivili committed rC8287dea8379f: sm4: add ARMv8 CE accelerated implementation for XTS mode (authored by Tianjia Zhang <tianjia.zhang@linux.alibaba.com>).
sm4: add ARMv8 CE accelerated implementation for XTS mode
Sun, Jul 31, 6:02 PM
jukivili committed rCa0c933f6fed0: sm4: fix unused parameter compiler warning (authored by jukivili).
sm4: fix unused parameter compiler warning
Sun, Jul 31, 6:02 PM
jukivili committed rCdb5136c4d933: Simplify AES key schedule implementation (authored by jukivili).
Simplify AES key schedule implementation
Sun, Jul 31, 6:02 PM
jukivili committed rC2ac6c24aa530: rijndael-ppc: small speed-up for CBC and CFB encryption (authored by jukivili).
rijndael-ppc: small speed-up for CBC and CFB encryption
Sun, Jul 31, 6:02 PM

Sat, Jul 30

mlaurent committed rLIBKLEO07e762ca3543: It compiles fine without deprecated methods (authored by mlaurent).
It compiles fine without deprecated methods
Sat, Jul 30, 4:09 PM
mlaurent committed rKLEOPATRAaf5904e23c6d: It compiles fine without deprecated methods (authored by mlaurent).
It compiles fine without deprecated methods
Sat, Jul 30, 4:05 PM
mlaurent committed rKLEOPATRA596358647787: Port deprecated methods (authored by mlaurent).
Port deprecated methods
Sat, Jul 30, 4:05 PM
tigernero added a comment to T6070: Yubikey 5C 'not available: card error' regression.

iesco find a url to download gnupg 2.3.8 for windows is it possible to know when gpg4win v.4.0.4 will be released which fixes this bug? because currently on windows systems I am stuck using yubikey.

Sat, Jul 30, 9:53 AM · backport, gnupg (gpg23), scd, Testing, Bug Report

Fri, Jul 29

ikloecker committed rWb068429a8fbd: Update dependencies of libkleo (authored by ikloecker).
Update dependencies of libkleo
Fri, Jul 29, 10:50 PM
ikloecker committed rLIBKLEO2f5f44707d69: Add accessibleExpirationDate overload for signatures (authored by ikloecker).
Add accessibleExpirationDate overload for signatures
Fri, Jul 29, 4:44 PM
ikloecker committed rLIBKLEO95ff877d7143: Provide improved representation of signature attributes for screen readers (authored by ikloecker).
Provide improved representation of signature attributes for screen readers
Fri, Jul 29, 4:35 PM
ikloecker committed rLIBKLEOc951d24839a1: GIT_SILENT Fall through is intentional (authored by ikloecker).
GIT_SILENT Fall through is intentional
Fri, Jul 29, 4:35 PM
ikloecker committed rLIBKLEO1ace0fc36ef3: Modernize: Use list-initialization (authored by ikloecker).
Modernize: Use list-initialization
Fri, Jul 29, 4:35 PM
werner edited projects for T5119: TOFU messages are not completely and correctly localized to German, added: gnupg (gpg23); removed gnupg (gpg22).

It is unlikely that the tofu stuff will get into widespread use in the 2.2 version - if at all.

Fri, Jul 29, 4:23 PM · gnupg (gpg23), i18n, Bug Report
werner closed T5359: Kleopatra: Loop in DeviceInfoWatcher with GnuPG 2.3 on Windows as Resolved.

Fixed quite some time ago.

Fri, Jul 29, 4:19 PM · Testing, scd, Restricted Project, kleopatra
werner moved T5990: Option to ignore the user trustlist.txt from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Fri, Jul 29, 4:17 PM · Testing, Restricted Project, gnupg (gpg22), S/MIME, gpgagent
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T2867: When inline response is active for crypto mail closing outlook shows the save dialog, as Invalid.
Fri, Jul 29, 3:15 PM · Bug Report, gpgol
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T4524: Kleopatra: CRL check configuration available multiple times and out of sync, as Invalid.
Fri, Jul 29, 3:15 PM · Restricted Project, Bug Report, gpg4win, kleopatra
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5], as Invalid.
Fri, Jul 29, 3:15 PM · gpg4win, gpgol
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T4527: Kleopatra, GPG: Display reason if a certificate is not compliant to a compliance level, as Invalid.
Fri, Jul 29, 3:15 PM · Feature Request, kleopatra
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T4538: Support PSS signed CRLs, as Invalid.
Fri, Jul 29, 3:15 PM · dirmngr, S/MIME, libksba
aheinecke closed T4523: Gpg4win: Multiple problems reported 05-2019, a subtask of T4525: GpgOL: Error when moving opened S/MIME Mails with attachments on Exchange, as Invalid.
Fri, Jul 29, 3:15 PM · g10code, gpg4win, Bug Report, gpgol