It will be hard to fix this. GnuPG supports exactly one class of regular expressions: something bracketed between "<[^>]+[@.]" and ">$" . Even if the next release of gpg supports more regular expressions, gpg will have to wait years before it can start emitting different regular expressions for scoped tsigs by default.
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Oct 17 2022
Oct 17 2022
neal added a comment to T6238: regexp for trust signature domain restriction does not work if key only has an e-mail address.
dkg added a comment to T6238: regexp for trust signature domain restriction does not work if key only has an e-mail address.
I recommend, when making a User ID with only an e-mail address, to populate the User IDs by wrapping it in an angle bracket, rather than just leaving the raw e-mail address. It's not just the regexp matcher -- there are other pieces of OpenPGP software that won't recognize a raw e-mail address in a user ID as an e-mail address. It also makes it easy to distinguish such a User ID from a User ID that is not at all an e-mail address.
web: Add security advisory
Harrypotter06 triaged T6243: SMIME on Outlook not working, if GPG-Plugin installed as High priority.
• werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2022q4/000476.html on T6106: Release GnuPG 2.3.8.
Fixed Gpg4win version: https://lists.wald.intevation.org/pipermail/gpg4win-announce/2022/000098.html
zerbey awarded T6239: gnugp 2.3.8 fails to build with --disable-ldap a Like token.
Port to not deprecated methods
• aheinecke committed rWdd038f170752: web: Fix notification link for 4.0.4 (authored by • aheinecke).
web: Fix notification link for 4.0.4
appimage: Typo fix
web: Add 4.0.4 Release info
swdb: GnuPG 2.2.40
Security Advisory 6230
Add CVE to the security advisory
swdb: gpg4win 4.0.4 and gnupgdesk 2.3.8
swdb: GnuPG 2.3.8
• werner set External Link to https://gnupg.org/blog/20221017-pepe-left-the-ksba.html on T6230: Release Libksba 1.6.2 (CVE-2022-3515).
As usual see https://gnupg.org/download for links to the latest packages. For Gpg4win see https://gpg4win.org
• werner renamed T6230: Release Libksba 1.6.2 (CVE-2022-3515) from Release Libksba 1.6.2 to Release Libksba 1.6.2 (CVE-2022-3515).
l10n daemon script <scripty@kde.org> committed rKLEOPATRA55fc28074980: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
l10n daemon script <scripty@kde.org> committed rKLEOPATRAd724f0cbe740: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Thank you for your report. IIUC, your log is the build log of GnuPG 2.2, so, I put the tag "gnupg (gpg22)".
Oct 16 2022
Oct 16 2022
l10n daemon script <scripty@kde.org> committed rKLEOPATRA6800453a5265: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Oct 15 2022
Oct 15 2022
Adapt to new api (scripted)
I believe https://dev.gnupg.org/T6239 also applies here. It would be great if the fix could be backported.
This also affects 2.2.40. Will the fix be backported there? Thanks.
l10n daemon script <scripty@kde.org> committed rKLEOPATRA4c7fb0d0f77a: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
l10n daemon script <scripty@kde.org> committed rKLEOPATRAbcb4ba2207c8: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
l10n daemon script <scripty@kde.org> committed rKLEOPATRAefe28074c427: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Oct 14 2022
Oct 14 2022
Fix build of installer
Remove duplicate lines
Merge remote-tracking branch 'origin'
Update to GnuPG 2.3.8
• werner committed rW8dff5492a25e: Prepare NEWS for 4.0.4 and post release updates for 3.1.25 (authored by • werner).
Prepare NEWS for 4.0.4 and post release updates for 3.1.25
Post release updates
• werner committed rW1fc993efc6f5: appimage: Fix signature checking of --version option. (authored by • werner).
appimage: Fix signature checking of --version option.
• werner committed rW68b0a1c9eb8e: appimage: Next try to get --keep-socket working (authored by • werner).
appimage: Next try to get --keep-socket working
doc: Update build instructions in README
appimage: Fix last commit
Update to GpgOL 2.5.5
appimage: Add trademark notices.
• werner committed rWd8befe24aa69: appimage: Add new start option --keep-socket (authored by • werner).
appimage: Add new start option --keep-socket
• werner committed rW371f9f768ca1: Fix build problems on systems with automake != 1.15 installed. (authored by • werner).
Fix build problems on systems with automake != 1.15 installed.
doc: Add a comment to the packages file.
Add support for dw2 exceptions
Prepare 3.1.25
Update to GnuPG 2.2.40
If a certificate is in more than one group, this will not work...
• ikloecker committed rM1792db58346c: build,qt: Fail check for Qt if moc wasn't found (authored by • ikloecker).
build,qt: Fail check for Qt if moc wasn't found
• ikloecker committed rM2ff09f474fb9: build,qt: Check whether building with -fPIC is needed (authored by • ikloecker).
build,qt: Check whether building with -fPIC is needed
It seems to me there are two separate concerns here:
doc: Update NEWS
• ikloecker committed rM8e908029ffa0: build,qt: Explicitly namespace a few Qt variables for Qt5 (authored by • ikloecker).
build,qt: Explicitly namespace a few Qt variables for Qt5
• ikloecker committed rM8d019bbb8d40: build,qt: Allow building QGpgME for Qt 6 (authored by • ikloecker).
build,qt: Allow building QGpgME for Qt 6
• ikloecker committed rMb2fb26baeada: qt,tests: Port test to QRegularExpression. (authored by • ikloecker).
qt,tests: Port test to QRegularExpression.
qt: Remove obsolete code.
• ikloecker committed rMe6a1b241b4e6: build,qt: Clean up all generated files (authored by • ikloecker).
build,qt: Clean up all generated files
• ikloecker committed rMf7a46714283b: build,qt: Always compile the Qt 6 test application with -fpic (authored by • ikloecker).
build,qt: Always compile the Qt 6 test application with -fpic
• ikloecker changed the status of T6090: Kleopatra: "Cancel" in the password dialog of "backup secret keys" has no effect from Open to Testing.
I have now backported the missing error reporting to gnupg 2.2 (rG6f0066db2c87: gpg: Report an error for receiving key from agent.). Please retest once gpg 2.2.41 is included in GnuPG (VS-) Desktop 3.x.
• gniibe committed rAfbdc77228257: experiment: Reliably send/recv fd passing, part 5/N. (authored by • gniibe).
experiment: Reliably send/recv fd passing, part 5/N.
• ikloecker committed rG6f0066db2c87: gpg: Report an error for receiving key from agent. (authored by • gniibe).
gpg: Report an error for receiving key from agent.
Pushed the change, although it is not enabled yet (since the feature will be only available by newer libgcrypt, 1.11).
• gniibe committed rGcf2d52cfc3ee: gpg: Use GCRY_KDF_ONESTEP_KDF with newer libgcrypt in future. (authored by • gniibe).
gpg: Use GCRY_KDF_ONESTEP_KDF with newer libgcrypt in future.
• gniibe changed the status of T5897: Fix MinGW compilation error with 'struct _stat32' in common/sysutils.c from gnupg-2.3.4 from Open to Testing.
Pushed.
common,w32: Fix struct stat on Windows.
Pushed to master.
• gniibe committed rGc51139f2bc54: agent,w32: Support Win32-OpenSSH emulation by gpg-agent. (authored by • gniibe).
agent,w32: Support Win32-OpenSSH emulation by gpg-agent.
GIT_SILENT: Prepare 5.21.3
GIT_SILENT: Prepare 5.21.3
• gniibe committed rG5f1ce6cef5fe: common: Don't use FD2INT for POSIX-only code. (authored by • gniibe).
common: Don't use FD2INT for POSIX-only code.
• gniibe added a comment to T6236: libassuan: Support sendfd/recvfd (possibly by new API) on Windows.
By 1/N...5/N, it works. And it shows the API needs clarification and possible modification/fixes; As written in the comment of system-w32.c, fd == POSIX fd semantics is good, which asks API/ABI break.
• gniibe committed rAf0b179a0a71b: experiment: Implement receving fd for Windows, part 4/N. (authored by • gniibe).
experiment: Implement receving fd for Windows, part 4/N.
Remove debug printf.
dirmngr: Fix build with no LDAP support.
Thank you, confirmed. Pushing the fix.
• gniibe removed projects from rG8046fcac63db: po: Update Czech translation.: backport, arm, C++, AppImage, AIX, Add-In-conflict, Active Directory.
• gniibe removed 8 auditor(s) for rG8046fcac63db: po: Update Czech translation.: !assert, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_187, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_186, • _Frosty_, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_1, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_10, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_100, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_101.
• gniibe removed 7 auditor(s) for rKLEOPATRA0d9ddefe4700: GIT_SILENT Sync po/docbooks with svn: • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_1, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_100, • _Frosty_, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_10, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_101, • _YOU_HAVE_BEEN_HACKED_HAHAHAHA_HACKED_BY_HMEI7_102, !assert.
Oct 13 2022
Oct 13 2022
Post release updates
Release 2.3.8
speedo: Fix location of gpg-wks-client
Post release updates
• werner committed rG5df1c247be52: gpg: For de-vs use AES-128 instead of 3DES as implicit preference. (authored by • werner).
gpg: For de-vs use AES-128 instead of 3DES as implicit preference.