Page MenuHome GnuPG
Feed All Stories

Nov 13 2017

aa added a comment to rG80b904543486: tests: Handle the case with DISABLE_REGEX..

/*here in where I am ... we can always go down to Turing primitives and maths*/

Nov 13 2017, 11:46 AM
aa added a comment to rG80b904543486: tests: Handle the case with DISABLE_REGEX..

/* what? */

Nov 13 2017, 11:42 AM
aheinecke created T3498: GPG: Batch keygen has no default expiry date.
Nov 13 2017, 11:20 AM · gnupg
gniibe committed rG80b904543486: tests: Handle the case with DISABLE_REGEX. (authored by gniibe).
tests: Handle the case with DISABLE_REGEX.
Nov 13 2017, 10:54 AM
aheinecke added a project to T3378: gpg-agent.exe hanging after left to idle for a while: gpg4win.

This might be a reason that we got multiple reports for Kleopatra since 3.0 was released that it hangs on keylisting: https://bugs.kde.org/show_bug.cgi?id=381910

Nov 13 2017, 10:38 AM · Windows, libassuan, gpgagent, Bug Report
aheinecke closed T3477: signed files cannot be verified as Invalid.

Everything works correctly but the warning message is probably too cryptic. It means that the signature could not be checked because the public key that created this signature is not found. It needs to downloaded, imported and verified. (See: https://www.gpg4win.org/package-integrity.html )
We improved the warning message with gpg4win-3.0

Nov 13 2017, 10:33 AM · Bug Report, gpg4win
aheinecke triaged T3427: Enigmail users see only attached gpgolXXX.dat file when signed or encrypted by GpgOL as High priority.

This means that the MAPI to MIME conversion did not happen.

Nov 13 2017, 10:28 AM · Info Needed, gpgol, gpg4win, Enigmail, Bug Report
aheinecke reassigned T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried from aheinecke to JochenSaalfeld.

Jochen could you please test this on one of our test VM's again and resolve this then?

Nov 13 2017, 10:23 AM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke closed T3485: --batch --passphrase throwing password prompt as of 3.0.0 as Resolved.

I've added a note about this in the wiki: https://wiki.gnupg.org/TroubleShooting#Passphrase_on_the_command_line

Nov 13 2017, 10:21 AM · FAQ, gpg4win
aheinecke added a comment to T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL.

A new binary for GpgOL can be found under: http://files.gpg4win.org/Beta/gpgol/2.0.2-beta8/ or for http://files.gpg4win.org/Beta/gpgol/2.0.2-beta8_x64/

Nov 13 2017, 10:11 AM · gpg4win, gpgol, Bug Report
aheinecke closed T3444: Gpg4win 3.0.0 passphrase prompt as Resolved.

Nagi: The third suggestion (adding "--pinentry-mode loopback" to your command) should work in that case.

Nov 13 2017, 9:59 AM · gpg4win, Bug Report
aheinecke closed T3486: ASCII armor option missing from gpgEX as of gpg4win 3.0.0 as Wontfix.

This is intentional with the rationale being that users either want ascii armor for some reason for all their usecases or they don't want it.
And most users won't even know what ASCII Armor means (Adding "Armor" sounds like additional protection). So we moved this setting into configuration and renamed it.

Nov 13 2017, 9:44 AM · Feature Request, gpg4win, kleopatra
aheinecke closed T3487: Check ldap timeout for CMS certificate search as Resolved.

Indeed bug in Kleo, it was always 0 in kleo. (likely created during Qt5 port) fixed with: https://commits.kde.org/kleopatra/0d53416cfbe6d8fa087887c428cdfffb13514a7d

Nov 13 2017, 9:34 AM · Windows, dirmngr, gpg4win
bernhard added a comment to T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL.

@aheinecke Regarding closing: I'd say that we should have a test on this one and then close it for only the refocussed "send-folder problem".
Can you provide an updated gpgol.dll drop in replacement?
Some of the users in the forum may be willing to test as well.

Nov 13 2017, 9:28 AM · gpg4win, gpgol, Bug Report
werner added a comment to rG2cdc37834261: po/da: Fix Danish confusion between "compressed" and "compromised".

Please use just "po:" instead of "po/NN:" as tag for future commits

Nov 13 2017, 9:18 AM
aheinecke closed T3434: Mark Vista as unsupported during Gpg4win installation as Resolved.

I think this is resolved here. As we now have the check in the installer to warn on Vista and disable Kleo / pinentry-qt

Nov 13 2017, 9:10 AM · gpg4win, Bug Report
gniibe committed rGa1fe3708d089: tests: Run the trust-pgp-4 test again. (authored by gouttegd).
tests: Run the trust-pgp-4 test again.
Nov 13 2017, 8:23 AM
dkg added a comment to T3464: successful decryption with session key reports failure if public key is unknown.

I'm not sure why a special case should be needed -- failure to create
the .kbx should not be a failure for a decryption operation in general.

Nov 13 2017, 5:18 AM · gpgme, Bug Report
aa added a comment to T3468: Admin for Phrabicator needed.

No problems, if you get struggled I am here up to go extra mile for an ideal. Regards "convenience" ... well I quite agree with Richard Stallman on the specific topic the trade off between " freedom Vs convenience" https://www.youtube.com/watch?v=CP8CNp-vksc (jump to video @1minutes, 15 seconds) ;-)

Nov 13 2017, 2:25 AM · dev.gnupg.org
adrelanos created T3497: mnemonic phrase based backup for OpenPGP / GnuPG / gpg keys.
Nov 13 2017, 1:53 AM · Feature Request
gniibe added a project to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch: Documentation.
Nov 13 2017, 12:54 AM · Support, Documentation

Nov 12 2017

dkg added a comment to T3277: decrypting data symmetrically doesn't reliably convey confidentiality property.

So, to protect against this attack, the client needs to do both of the following:

Nov 12 2017, 9:14 PM · Feature Request, gnupg (gpg22)
dkg added a comment to T3277: decrypting data symmetrically doesn't reliably convey confidentiality property.

Here are two examples:

Nov 12 2017, 9:13 PM · Feature Request, gnupg (gpg22)
dkg added a comment to T3277: decrypting data symmetrically doesn't reliably convey confidentiality property.

@werner suggests using an ephemeral home directory. this is an important point.

Nov 12 2017, 9:08 PM · Feature Request, gnupg (gpg22)
dkg added a comment to T3277: decrypting data symmetrically doesn't reliably convey confidentiality property.

@justus asked for examples.

Nov 12 2017, 9:05 PM · Feature Request, gnupg (gpg22)
werner closed T3496: The manpage lies, saying "only one command is allowed" as Resolved.

Ah well, no rules without exception.

Nov 12 2017, 8:29 PM · Documentation, Bug Report
werner triaged T3495: The --list-keys should account for groups that are defined as Normal priority.
Nov 12 2017, 8:25 PM · gnupg, Feature Request
werner added a comment to T3468: Admin for Phrabicator needed.

We already have a donated machine with everything setup. This is not going to change. Twitter logon is just a convenience for many folks because there are just so many twitter accounts. And after all this is a public tracker.

Nov 12 2017, 8:23 PM · dev.gnupg.org
cipherpunks created T3496: The manpage lies, saying "only one command is allowed".
Nov 12 2017, 1:53 PM · Documentation, Bug Report
cipherpunks updated the task description for T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 1:48 PM · gnupg, Feature Request
cipherpunks updated the task description for T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 1:04 PM · gnupg, Feature Request
cipherpunks updated the task description for T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 12:58 PM · gnupg, Feature Request
cipherpunks updated the task description for T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 12:57 PM · gnupg, Feature Request
cipherpunks updated the task description for T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 12:49 PM · gnupg, Feature Request
cipherpunks created T3495: The --list-keys should account for groups that are defined.
Nov 12 2017, 12:47 PM · gnupg, Feature Request
aa added a comment to T3468: Admin for Phrabicator needed.

Hi, Werner what are the machinery requirements required for running the VM ? I can try to squeeze my academic schedule to do it but I probably would like to change twitter login for something more 'GNU' such as https://mastodon.sdf.org/about

Nov 12 2017, 11:51 AM · dev.gnupg.org
rjh committed rD2691758e1bf5: Merge branch 'master' of git+ssh://playfair.gnupg.org/git/gnupg-doc (authored by rjh).
Merge branch 'master' of git+ssh://playfair.gnupg.org/git/gnupg-doc
Nov 12 2017, 9:03 AM
rjh committed rDf92334263450: Minor typo fixes. Also no longer advises DSA for automated usage. (authored by rjh).
Minor typo fixes. Also no longer advises DSA for automated usage.
Nov 12 2017, 9:03 AM

Nov 11 2017

cipherpunks added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.

I don't recall, but I suppose I did. It may not have been a manual invocation, but possibly a batch job from mutt or something.

Nov 11 2017, 3:05 PM · Support, Documentation
dkg committed rG2cdc37834261: po/da: Fix Danish confusion between "compressed" and "compromised" (authored by dkg).
po/da: Fix Danish confusion between "compressed" and "compromised"
Nov 11 2017, 11:54 AM
dkg committed rGd048157e87d8: po/da: Fix Danish confusion between "compressed" and "compromised" (authored by dkg).
po/da: Fix Danish confusion between "compressed" and "compromised"
Nov 11 2017, 11:46 AM
dkg committed rG115a04f939de: po/da: Fix Danish confusion between "compressed" and "compromised" (authored by dkg).
po/da: Fix Danish confusion between "compressed" and "compromised"
Nov 11 2017, 11:46 AM

Nov 10 2017

aheinecke committed rOc499ce50aa9f: Fix reversion for S/MIME mails if S/MIME disabled (authored by aheinecke).
Fix reversion for S/MIME mails if S/MIME disabled
Nov 10 2017, 7:25 PM
aheinecke committed rO474cc15d8e33: Fix handling of "own" S/MIME Mails (authored by aheinecke).
Fix handling of "own" S/MIME Mails
Nov 10 2017, 7:25 PM
aheinecke committed rO8d5e9d19ecaf: Add some more tracing in mail (authored by aheinecke).
Add some more tracing in mail
Nov 10 2017, 7:25 PM
aheinecke committed rO3cadd0e929e4: Fix build example by adding --enable-static (authored by aheinecke).
Fix build example by adding --enable-static
Nov 10 2017, 7:25 PM
aheinecke committed rOc3780cfaaf31: Improve debug output in parsecontroller (authored by aheinecke).
Improve debug output in parsecontroller
Nov 10 2017, 7:25 PM
aheinecke committed rO1815757181ff: Remove obsolete info from README (authored by aheinecke).
Remove obsolete info from README
Nov 10 2017, 7:25 PM
aheinecke changed the status of T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL from Open to Testing.
  1. Mails encrypted with S/MIME are stored with "No Data" in the sent EMail folder, but arrive properly at the recipients (you will recieve a readable copy, if you add yourself to the list of recipients). This Issue breaks the GpgOL Plugin after some time which is leading to the described Problem.
Nov 10 2017, 6:04 PM · gpg4win, gpgol, Bug Report
aheinecke changed the status of T3494: S/MIME Reversion broken after disabling S/MIME Support from Open to Testing.

Jochen can you please confirm that this works reliable for you too?

Nov 10 2017, 6:01 PM · gpg4win, gpgol
aheinecke created T3494: S/MIME Reversion broken after disabling S/MIME Support.
Nov 10 2017, 4:59 PM · gpg4win, gpgol
aheinecke triaged T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL as Unbreak Now! priority.

This indeed is a mixup of the protocol detection and likely a regression from a fix for exchange support. (On Exchange emails from exchange to exchange look the same as sent mails as both don't go through the MIME conversion)

Nov 10 2017, 4:07 PM · gpg4win, gpgol, Bug Report
werner added a comment to T3434: Mark Vista as unsupported during Gpg4win installation.

On Fri, 10 Nov 2017 13:17, noreply@dev.gnupg.org said:

Nov 10 2017, 4:04 PM · gpg4win, Bug Report
werner committed rG877e3073d731: Do not use C99 feature. (authored by Dario Niedermann <dario@darioniedermann.it>).
Do not use C99 feature.
Nov 10 2017, 3:52 PM
aheinecke committed rWdfaaae781616: Disable Kleo and Qt for < Win7 (authored by aheinecke).
Disable Kleo and Qt for < Win7
Nov 10 2017, 3:42 PM
aheinecke added a reverting change for rW5e0aec3be662: Update message during install, that Windows Vista is out of support: rW21b0b6aeb2c0: Revert Vista warning.
Nov 10 2017, 3:42 PM
aheinecke committed rW21b0b6aeb2c0: Revert Vista warning (authored by aheinecke).
Revert Vista warning
Nov 10 2017, 3:42 PM
aheinecke committed rW181b76fa0186: po: Remove strange creation date line (authored by aheinecke).
po: Remove strange creation date line
Nov 10 2017, 3:42 PM
bernhard reassigned T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL from bernhard to aheinecke.
Nov 10 2017, 3:12 PM · gpg4win, gpgol, Bug Report
aheinecke reopened T3441: GpgOL is displayed in Menu Ribbon, but doesn't work as intended as "Open".

This error looks like an element might be referenced that is not available in Outlook 2010. In that case the problem should be reproducible for users that have Developer Options -> Show Add-In Errors enabled.

< Here is the option in Windows

Nov 10 2017, 1:40 PM · gpgol, Bug Report
aheinecke reopened T3441: GpgOL is displayed in Menu Ribbon, but doesn't work as intended, a subtask of T3442: S/MIME - Encrypt Option produces broken Mails in Sent Folder and leads to crash of GpgOL, as Open.
Nov 10 2017, 1:40 PM · gpg4win, gpgol, Bug Report
aheinecke added a comment to T3434: Mark Vista as unsupported during Gpg4win installation.

Fwiw I don't want to patch KDE Librarys to work with older Qt Versions and don't want to patch Qt to support older Windows Versions. I think greying out is a good solution.

Nov 10 2017, 1:17 PM · gpg4win, Bug Report
aheinecke closed T3425: Gpg4win support for Windows Vista and XP for the Qt5 relevant parts (pinentry-qt and kleopatra) as Resolved.

Duplicated problem. Solution for the installer is described in: T3434

Nov 10 2017, 1:15 PM · Windows, Bug Report
aheinecke reopened T3434: Mark Vista as unsupported during Gpg4win installation as "Open".

Indeed the notes for QT 5.9 do not anymore show Vista as supported. Stupid decision if you ask me.

In light of this I would suggest to tweak the installer to grey out QT applications for all platforms older than Windows 7. We also need to make pinentry-gtk the default in this case. Of course there should also be notes in the docs about these restrictions. And that should be done immediately.

Nov 10 2017, 1:15 PM · gpg4win, Bug Report
werner added a comment to T3493: Timestamp.

@aa: From the mail address associated with @t62q7_aa I assume that this is an alias of your. If that is really the case please delete this alias and do not create another one. That would not be acceptable use.

Nov 10 2017, 8:14 AM · Feature Request
aa added a comment to T3493: Timestamp.

if you're do not have an infinite time, at CERN we're about experimenting stuff at plank scale ...

Nov 10 2017, 2:43 AM · Feature Request
aa added a comment to T3493: Timestamp.

do you have infinite time, just asking ...

Nov 10 2017, 2:38 AM · Feature Request
gniibe closed T3493: Timestamp as Invalid.

This is not an issue of GnuPG. Sorry.

Nov 10 2017, 2:27 AM · Feature Request
aa added a comment to T3493: Timestamp.
Nov 10 2017, 2:07 AM · Feature Request
t62q7_aa created T3493: Timestamp.
Nov 10 2017, 12:06 AM · Feature Request

Nov 9 2017

jbtule added a comment to T3378: gpg-agent.exe hanging after left to idle for a while.

Both my coworker and I have the same issue. We just started using gpg for git commit signing. Works the first time. Then sometime later, no window pops up and will hang git indefinitely because it's waiting on the agent. Kill the agent and gpg process let git error out. try again, gpg-agent window prompting for password shows up and works.

Nov 9 2017, 6:47 PM · Windows, libassuan, gpgagent, Bug Report
werner created T3492: The Recent Commit list does not show the used branch.
Nov 9 2017, 8:49 AM · dev.gnupg.org
werner added a comment to T2923: trust signature domain restrictions don't work.

It might be easier to include a regexp implementation in GnUPG proper. This way we have a well defined behaviour and it will work also on Windows. The gpg-check-pattern tool might slightly change its behaviour, though.

Nov 9 2017, 8:44 AM · gnupg (gpg14), Bug Report
werner added a comment to T3491: FIPS-enabled libgcrypt traps gnome-keyring daemon in an infinite loop.

Right, we can't do anything in Libgcrypt except for adding a way to return the open fds. This is the usual problem with libraries and the required closing of fds before an exec. Anyway the FIPS mode is questionable because it has not been adjusted for many years and does not take account newer requirements.

Nov 9 2017, 8:37 AM · libgcrypt
gniibe merged T2284: tsign behavior does not achieve what dkg says it should into T2923: trust signature domain restrictions don't work.
Nov 9 2017, 7:44 AM · gnupg (gpg14), Bug Report
gniibe merged task T2284: tsign behavior does not achieve what dkg says it should into T2923: trust signature domain restrictions don't work.
Nov 9 2017, 7:44 AM · Bug Report, gnupg
gniibe reopened T2923: trust signature domain restrictions don't work as "Open".
Nov 9 2017, 7:44 AM · gnupg (gpg14), Bug Report
gniibe added a comment to T2923: trust signature domain restrictions don't work.

No, I was not accurate. EXAMPLE.COM works, while example.com doesn't work.

Nov 9 2017, 7:43 AM · gnupg (gpg14), Bug Report
gniibe merged task T2923: trust signature domain restrictions don't work into T2284: tsign behavior does not achieve what dkg says it should.
Nov 9 2017, 7:41 AM · gnupg (gpg14), Bug Report
gniibe merged T2923: trust signature domain restrictions don't work into T2284: tsign behavior does not achieve what dkg says it should.
Nov 9 2017, 7:41 AM · Bug Report, gnupg
gniibe added a comment to T2284: tsign behavior does not achieve what dkg says it should.

I confirmed this is same bug in T2923: trust signature domain restrictions don't work, I am closing this one as duplicate.

Nov 9 2017, 7:41 AM · Bug Report, gnupg
gniibe committed rGccf3ba92087e: g10: Fix regexp sanitization. (authored by gniibe).
g10: Fix regexp sanitization.
Nov 9 2017, 7:39 AM
gniibe added a comment to T2923: trust signature domain restrictions don't work.

Henry Spencer wrote three implementations (old, BSD, and Tcl): https://garyhouston.github.io/regex/
Indeed, for the one in old library and BSD library, \ + CHAR means that single CHAR.
For one in Tcl library, \s, \S, \w, \W is supported (just like GNU), and \d, \D (digit) is also supported.

Nov 9 2017, 5:40 AM · gnupg (gpg14), Bug Report
gniibe added a comment to T3223: gcry_mpi_ec_mul with Montgomery curves produces segfault.

ECDH on Curve25519 is fully supported in libgcrypt. You can see GnuPG supports ECDH on Curve25519.
Lower layer routines (point addition and point duplication) are not implemented, though.
That's because ECDH only requires point multiplication and it is better to implement point multiplication by Montgomery Ladder for Curve25519.

Nov 9 2017, 3:16 AM · libgcrypt, Bug Report
gniibe committed rCda127f7505ff: Fix secmem test for machine with larger page. (authored by gniibe).
Fix secmem test for machine with larger page.
Nov 9 2017, 3:04 AM
gniibe committed rC621f5c4e8373: Fix secmem test for machine with larger page. (authored by gniibe).
Fix secmem test for machine with larger page.
Nov 9 2017, 3:04 AM
gniibe changed the status of T3351: libgcrypt: t_secmem fails on system with large page size (ppc64) from Open to Testing.

Fixed both for master and 1.8 branch.

Nov 9 2017, 3:03 AM · libgcrypt, Bug Report
gniibe claimed T3351: libgcrypt: t_secmem fails on system with large page size (ppc64).
Nov 9 2017, 3:01 AM · libgcrypt, Bug Report
gniibe merged T3375: t-secmem test failure on ppc64le / musl c-library into T3351: libgcrypt: t_secmem fails on system with large page size (ppc64).
Nov 9 2017, 3:00 AM · libgcrypt, Bug Report
gniibe merged task T3375: t-secmem test failure on ppc64le / musl c-library into T3351: libgcrypt: t_secmem fails on system with large page size (ppc64).
Nov 9 2017, 3:00 AM · libgcrypt, Bug Report

Nov 8 2017

civ created T3491: FIPS-enabled libgcrypt traps gnome-keyring daemon in an infinite loop.
Nov 8 2017, 10:17 PM · libgcrypt
werner triaged T3488: support specialized numeric9x4 format for symmetric passphrase as Normal priority.
Nov 8 2017, 7:01 PM · Feature Request
werner added a comment to T3488: support specialized numeric9x4 format for symmetric passphrase.

Please take discussions to the mailing list. A bug tracker is not a good place for it because only a few will see that.

Nov 8 2017, 7:01 PM · Feature Request
werner committed rD4bb81e5ae794: tools: Add descriptions to directory listings. (authored by werner).
tools: Add descriptions to directory listings.
Nov 8 2017, 6:41 PM
dkg committed rG0471ff9d3bf8: assuan: Reorganize waiting for socket. (authored by dkg).
assuan: Reorganize waiting for socket.
Nov 8 2017, 5:56 PM
dkg committed rG149041b0b917: assuan: Use exponential decay for first 1s of spinlock. (authored by dkg).
assuan: Use exponential decay for first 1s of spinlock.
Nov 8 2017, 5:56 PM
dkg added a comment to T3490: "gpgconf --launch gpg-agent" should not take a full second if the agent isn't already started.

OK, i've pushed 0471ff9d3bf8d6b9a359f3c426d70d0935066907 and 149041b0b917f4298239fe18b5ebd5ead71584a6 to branch T3490-proposal1. It cuts GnuPG's own simple test suite down from about 3 minutes to 1.5 minutes for me. I haven't tested the speedup for the full test suite yet.

Nov 8 2017, 5:48 PM · gnupg (gpg22)
dkg committed rGceac6e9e6c08: assuan: Use exponential decay for first 1s of spinlock. (authored by dkg).
assuan: Use exponential decay for first 1s of spinlock.
Nov 8 2017, 5:46 PM
dkg committed rG1fe8fc56f246: assuan: Reorganize waiting for socket. (authored by dkg).
assuan: Reorganize waiting for socket.
Nov 8 2017, 5:46 PM
dkg added a comment to T3490: "gpgconf --launch gpg-agent" should not take a full second if the agent isn't already started.

To clarify, i'll push them to a separate branch for you to decide whether to merge.

Nov 8 2017, 5:27 PM · gnupg (gpg22)