Page MenuHome GnuPG
Feed All Stories

Mar 31 2020

gniibe added a comment to T4888: GpgSM: Support ECC key generation by gpgsm_genkey.

genkey for Ed25519 works now with libksba in master.

Mar 31 2020, 8:59 AM · Restricted Project, Feature Request, S/MIME
gniibe added a comment to T4896: ksba: Ed25519 support.

For public key, it's done.

Mar 31 2020, 8:59 AM · Info Needed, libksba, Feature Request, S/MIME
Laurent Montel <montel@kde.org> committed rLIBKLEO57af577d06ae: Fix includes (authored by Laurent Montel <montel@kde.org>).
Fix includes
Mar 31 2020, 8:12 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRAe2687d34d540: Fix includes (authored by Laurent Montel <montel@kde.org>).
Fix includes
Mar 31 2020, 7:40 AM

Mar 30 2020

dkg closed T4892: gpgsm --gen-key with existing key from "ssh-add" fails as Resolved.
Mar 30 2020, 9:59 PM · gnupg24, Bug Report, S/MIME
dkg reopened T4892: gpgsm --gen-key with existing key from "ssh-add" fails as "Open".
Mar 30 2020, 9:59 PM · gnupg24, Bug Report, S/MIME
werner committed rG8a68d497f1dd: scd:p15: Detect CardOS 5 cards and print some basic infos. (authored by werner).
scd:p15: Detect CardOS 5 cards and print some basic infos.
Mar 30 2020, 9:20 PM
dkg added a comment to T4886: gpg-wks-server fails on openbsd, because sendmail is in /usr/sbin, not /usr/lib.

thanks!

Mar 30 2020, 8:32 PM · wkd, gnupg (gpg22), Bug Report
werner closed T4886: gpg-wks-server fails on openbsd, because sendmail is in /usr/sbin, not /usr/lib as Resolved.

Done; will go into 2.2.21 (T4897).

Mar 30 2020, 5:42 PM · wkd, gnupg (gpg22), Bug Report
werner committed rG76d2a02dfe8f: wks: Take name of sendmail from configure. (authored by werner).
wks: Take name of sendmail from configure.
Mar 30 2020, 5:41 PM
werner renamed T4897: Release GnuPG 2.2.21 from Release GnUPG 2.2.21 to Release GnuPG 2.2.21.
Mar 30 2020, 5:40 PM · gnupg (gpg22), Release Info
werner created T4897: Release GnuPG 2.2.21.
Mar 30 2020, 5:40 PM · gnupg (gpg22), Release Info
werner closed T4895: segfaults in certreqen.c from logging NULL return from get_parameter as Resolved.

Thanks.

Mar 30 2020, 5:35 PM · gnupg (gpg22), S/MIME, Bug Report
werner committed rG9c5c7c6f602c: sm: Fix possible NULL deref in error messages of --gen-key. (authored by werner).
sm: Fix possible NULL deref in error messages of --gen-key.
Mar 30 2020, 5:35 PM
werner committed rGc5c21a064671: agent: Print an error if gpg-protect reads the extended key format. (authored by werner).
agent: Print an error if gpg-protect reads the extended key format.
Mar 30 2020, 5:35 PM
werner committed rG011a2f5fb77c: agent: Print an error if gpg-protect reads the extended key format. (authored by werner).
agent: Print an error if gpg-protect reads the extended key format.
Mar 30 2020, 5:35 PM
werner committed rG2b4b0b1223aa: sm: Fix possible NULL deref in error messages of --gen-key. (authored by werner).
sm: Fix possible NULL deref in error messages of --gen-key.
Mar 30 2020, 5:35 PM
werner committed rK1e903fe558bd: Allow optional elements in keyinfo objects. (authored by werner).
Allow optional elements in keyinfo objects.
Mar 30 2020, 5:32 PM
werner added a comment to T4892: gpgsm --gen-key with existing key from "ssh-add" fails.

The problem was the comment field which was not expected in an rsa key. However ist makes sense to allow additional fields and thus I pushed a change to Libksba.

Mar 30 2020, 5:00 PM · gnupg24, Bug Report, S/MIME
gniibe added a project to T4896: ksba: Ed25519 support: libksba.
Mar 30 2020, 7:55 AM · Info Needed, libksba, Feature Request, S/MIME
gniibe created T4896: ksba: Ed25519 support.
Mar 30 2020, 7:55 AM · Info Needed, libksba, Feature Request, S/MIME
dkg created T4895: segfaults in certreqen.c from logging NULL return from get_parameter.
Mar 30 2020, 12:37 AM · gnupg (gpg22), S/MIME, Bug Report

Mar 29 2020

andrey_l added a comment to T4819: Kleopatra / Win 10 - Sign and Encrypt window doesn't show up.

This bug is linked to restoring window size in case of multi-monitor multi-DPI setup.
There is QT bug report: https://bugreports.qt.io/browse/QTBUG-77385

Mar 29 2020, 10:00 PM · Bug Report, gpg4win
dkg added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

Thanks for following up!

Mar 29 2020, 6:46 PM · gnupg (gpg23), Feature Request
werner added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

No, we always stated that the user id is a mandatory part of OpenPGP keyblocks and that non-compliant keyblocks are rejected. The only exception we made are for revocation signatures where we allow a standalone packet. That exception is done to allow typing in a printed out revocation signature.

Mar 29 2020, 6:30 PM · gnupg (gpg23), Feature Request
dkg updated subscribers of T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

To be clear: marking this ticket wontfix means (among other things) that it is the GnuPG project's upstream position that:

Mar 29 2020, 5:38 PM · gnupg (gpg23), Feature Request
werner closed T4393: GnuPG should always accept key updates even if the update does not contain UIDs as Wontfix.

With OpenPGP we made user ids mandatory to avoid problems we had with PGP2. I see no reason to revert this.

Mar 29 2020, 11:25 AM · gnupg (gpg23), Feature Request

Mar 28 2020

ilf awarded T4393: GnuPG should always accept key updates even if the update does not contain UIDs a Like token.
Mar 28 2020, 5:43 PM · gnupg (gpg23), Feature Request
ilf added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

Nine months have passed since the patches for this problem have been available.

Mar 28 2020, 5:43 PM · gnupg (gpg23), Feature Request
Laurent Montel <montel@kde.org> committed rLIBKLEOe5fbeb05c731: GIT_SILENT: Master is opened now. (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Master is opened now.
Mar 28 2020, 2:00 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA8621add94b8b: GIT_SILENT: Master is opened now. (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Master is opened now.
Mar 28 2020, 2:00 PM

Mar 27 2020

werner committed rG1424c12e4c71: sm: Consider certificates w/o CRL DP as valid. (authored by werner).
sm: Consider certificates w/o CRL DP as valid.
Mar 27 2020, 9:24 PM
werner committed rG0b583a555e75: sm: Consider certificates w/o CRL DP as valid. (authored by werner).
sm: Consider certificates w/o CRL DP as valid.
Mar 27 2020, 9:16 PM
werner committed rG4c4999b8185a: scd:openpgp: Allow PKSIGN with keygrip also for OPENPGP.3. (authored by werner).
scd:openpgp: Allow PKSIGN with keygrip also for OPENPGP.3.
Mar 27 2020, 7:38 PM
werner triaged T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation as Normal priority.

I recall that I talked with Stephan about it but things got lost.

Mar 27 2020, 7:12 PM · FIPS, libgcrypt, Feature Request
werner set the icon for FIPS to Tag.
Mar 27 2020, 7:12 PM
pmgdeb created T4894: FIPS: RSA/DSA/ECDSA are missing hashing operation.
Mar 27 2020, 6:04 PM · FIPS, libgcrypt, Feature Request
werner awarded T4888: GpgSM: Support ECC key generation by gpgsm_genkey a Cup of Joe token.
Mar 27 2020, 4:18 PM · Restricted Project, Feature Request, S/MIME
gniibe added a comment to T4888: GpgSM: Support ECC key generation by gpgsm_genkey.

NIST P-256 key generation looks good.

Mar 27 2020, 11:53 AM · Restricted Project, Feature Request, S/MIME
gniibe committed rM3658e2df65d3: tests: Add ECC key generation for tests/gpgsm. (authored by gniibe).
tests: Add ECC key generation for tests/gpgsm.
Mar 27 2020, 11:51 AM
gniibe committed rGe06a8e3e87f0: gpgsm: Fix the previous commit. (authored by gniibe).
gpgsm: Fix the previous commit.
Mar 27 2020, 11:44 AM
gniibe committed rM71ef398bfd72: build: Fix library dependency. (authored by gniibe).
build: Fix library dependency.
Mar 27 2020, 8:57 AM
l10n daemon script <scripty@kde.org> committed rLIBKLEO880f442029ce: SVN_SILENT made messages (.desktop file) - always resolve ours (authored by l10n daemon script <scripty@kde.org>).
SVN_SILENT made messages (.desktop file) - always resolve ours
Mar 27 2020, 6:39 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA4be20fd9f0fa: GIT_SILENT made messages (after extraction) (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT made messages (after extraction)
Mar 27 2020, 3:54 AM

Mar 26 2020

ilf added a comment to T4893: "Note: signatures using the MD5 algorithm are rejected" is emitted despite --quiet.

Of course it is important, that's why it it printed by default.

Mar 26 2020, 8:15 PM · gnupg (gpg22), Bug Report
werner closed T4893: "Note: signatures using the MD5 algorithm are rejected" is emitted despite --quiet as Wontfix.

This is an important information to know because it can help to avoid bug reports.

Mar 26 2020, 7:32 PM · gnupg (gpg22), Bug Report
dkg added a comment to T4892: gpgsm --gen-key with existing key from "ssh-add" fails.

OK, i've asked on gnupg-devel.

Mar 26 2020, 3:24 PM · gnupg24, Bug Report, S/MIME
dkg created T4893: "Note: signatures using the MD5 algorithm are rejected" is emitted despite --quiet.
Mar 26 2020, 3:22 PM · gnupg (gpg22), Bug Report
Laurent Montel <montel@kde.org> committed rLIBKLEO4ae850389747: Merge remote-tracking branch 'origin/release/20.04' (authored by Laurent Montel <montel@kde.org>).
Merge remote-tracking branch 'origin/release/20.04'
Mar 26 2020, 1:47 PM
Laurent Montel <montel@kde.org> committed rLIBKLEO4ebce93c5bd1: Qt guys reverted api in qt5.15 (authored by Laurent Montel <montel@kde.org>).
Qt guys reverted api in qt5.15
Mar 26 2020, 1:47 PM
werner closed T4892: gpgsm --gen-key with existing key from "ssh-add" fails as Wontfix.

Please use the mailing list for help on generating keys. I would also suggest to use GnuPG master for such experiments.

Mar 26 2020, 10:27 AM · gnupg24, Bug Report, S/MIME
gniibe committed rG49ea53b755f0: gpgsm: Support key generation with ECC. (authored by gniibe).
gpgsm: Support key generation with ECC.
Mar 26 2020, 7:56 AM
gniibe committed rG238707db8b05: gpgsm: Remove restriction of key generation (only RSA). (authored by gniibe).
gpgsm: Remove restriction of key generation (only RSA).
Mar 26 2020, 3:44 AM
dkg created T4892: gpgsm --gen-key with existing key from "ssh-add" fails.
Mar 26 2020, 2:05 AM · gnupg24, Bug Report, S/MIME

Mar 25 2020

werner added a comment to T4890: print preview tries to use wrong key for decryption.

FWIW, a log of the decryption process will always show the sender's key because a message is usually also encrypted to that one (--encrypt-to).

Mar 25 2020, 1:00 PM · gpgol, Bug Report
werner created T4891: Support CBOR content in gpgsm.
Mar 25 2020, 12:54 PM · Feature Request, gnupg, S/MIME
mkrambach created T4890: print preview tries to use wrong key for decryption.
Mar 25 2020, 9:41 AM · gpgol, Bug Report
werner added a comment to T4860: Release GnuPG 2.2.20 .

If you run into build problems on OpenBSD for gpg-wks-server, see T4886 for a required minor fix.

Mar 25 2020, 8:48 AM · gnupg (gpg22), Release Info
Laurent Montel <montel@kde.org> committed rKLEOPATRA8642333662df: GIT_SILENT: Prepare 5.14.0 rc (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Prepare 5.14.0 rc
Mar 25 2020, 7:30 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO98794a878ca7: GIT_SILENT: Master is open (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Master is open
Mar 25 2020, 7:30 AM
Laurent Montel <montel@kde.org> committed rLIBKLEO6a260ba63420: GIT_SILENT: Prepare 5.14.0 rc (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Prepare 5.14.0 rc
Mar 25 2020, 7:30 AM

Mar 24 2020

werner closed T4885: gpg4win-3.1.11.exe installs malwares as Invalid.

No info received; either really malware downloaded from a fraudster site without proper checking on bare coincidence with other updates.

Mar 24 2020, 10:51 AM · gpg4win
werner closed T4887: GPG is throwing error while doing (encryption+sign) or Decryption as Invalid.

@sarman: Your question is actually a support question and not a bug report. Please read the documentation, use the public help channels (so that other can also learn from the issue), or get in touch with a commercial support provider.

Mar 24 2020, 10:48 AM · Not A Bug, Solaris, gnupg, Documentation
gniibe added a comment to T4098: GpgSM: Add ECC support.

There are two code paths to generate key: gpgsm_genkey and gpgsm_gencertreq_tty. Latter is partially supported with card key.
Firstly, I'm going to work for T4888.

Mar 24 2020, 6:32 AM · gnupg (gpg23), Feature Request, S/MIME
gniibe created T4888: GpgSM: Support ECC key generation by gpgsm_genkey.
Mar 24 2020, 6:30 AM · Restricted Project, Feature Request, S/MIME
gniibe added a comment to T4887: GPG is throwing error while doing (encryption+sign) or Decryption.

I think that what you want is adding --batch option. In the gpg manual, we have:

--passphrase-file file
       Read  the passphrase from file file. Only the first line will be
       read from  file  file.  This  can  only  be  used  if  only  one
       passphrase is supplied. Obviously, a passphrase stored in a file
       is of questionable security if other users can read  this  file.
       Don't use this option if you can avoid it.
Mar 24 2020, 4:58 AM · Not A Bug, Solaris, gnupg, Documentation
sarman added a comment to T4887: GPG is throwing error while doing (encryption+sign) or Decryption.

Hello Team,

Mar 24 2020, 3:52 AM · Not A Bug, Solaris, gnupg, Documentation
gniibe changed the status of T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix from Open to Testing.

This should work well with libksba master and gnupg/sm master.

Mar 24 2020, 3:35 AM · S/MIME, Feature Request, libksba
gniibe changed the status of T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed from Open to Testing.

The commits in 2019 (for libksba and gnupg/sm) handles the problem (of key generation using card).

Mar 24 2020, 3:32 AM · Restricted Project, Feature Request, S/MIME
gniibe added projects to T4887: GPG is throwing error while doing (encryption+sign) or Decryption: Documentation, gnupg, Solaris.

For operations which require private key, it is needed to unlock private key.

Mar 24 2020, 2:44 AM · Not A Bug, Solaris, gnupg, Documentation

Mar 23 2020

sarman triaged T4887: GPG is throwing error while doing (encryption+sign) or Decryption as Unbreak Now! priority.
Mar 23 2020, 11:55 PM · Not A Bug, Solaris, gnupg, Documentation
sarman updated the task description for T4887: GPG is throwing error while doing (encryption+sign) or Decryption.
Mar 23 2020, 11:53 PM · Not A Bug, Solaris, gnupg, Documentation
sarman created T4887: GPG is throwing error while doing (encryption+sign) or Decryption.
Mar 23 2020, 11:39 PM · Not A Bug, Solaris, gnupg, Documentation
dkg created T4886: gpg-wks-server fails on openbsd, because sendmail is in /usr/sbin, not /usr/lib.
Mar 23 2020, 4:13 PM · wkd, gnupg (gpg22), Bug Report

Mar 21 2020

Laurent Montel <montel@kde.org> committed rLIBKLEO6bdfb83f250e: GIT_SILENT: Prepare 5.14.0 rc (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Prepare 5.14.0 rc
Mar 21 2020, 12:48 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRA86761c0519a1: GIT_SILENT: Prepare 5.14.0 rc (authored by Laurent Montel <montel@kde.org>).
GIT_SILENT: Prepare 5.14.0 rc
Mar 21 2020, 12:12 PM
Laurent Montel <montel@kde.org> committed rKLEOPATRAd1cc0cecf3b2: Remove flag for the moment (authored by Laurent Montel <montel@kde.org>).
Remove flag for the moment
Mar 21 2020, 10:10 AM
Laurent Montel <montel@kde.org> committed rKLEOPATRAcf4c9fdbd479: Make it compiles against qt5.15 (authored by Laurent Montel <montel@kde.org>).
Make it compiles against qt5.15
Mar 21 2020, 10:10 AM

Mar 20 2020

werner committed rDceaa09f5e3d3: swdb: GnuPG 2.2.20 (authored by werner).
swdb: GnuPG 2.2.20
Mar 20 2020, 6:27 PM
werner added a comment to T4885: gpg4win-3.1.11.exe installs malwares.

From where did you downloaded it? Did it show a valid issuer for the software (Intevation GmbH)?

Mar 20 2020, 6:02 PM · gpg4win
werner closed T4536: dirmngr fails to find OCSP signer certificate when responder is identified with key ID as Resolved.
Mar 20 2020, 5:59 PM · S/MIME, gnupg (gpg22), Bug Report
werner closed T4810: A key with only "C" capability cannot be selected as default key. as Resolved.
Mar 20 2020, 5:59 PM · Restricted Project, gnupg (gpg22)
werner closed T4832: card: when KDF is enabled, use of pinpad input should be disabled as Resolved.
Mar 20 2020, 5:59 PM · Restricted Project, gnupg (gpg22), scd, Bug Report
werner closed T4847: "gpgsm: invalid radix64 character 2d skipped" when trying to import a PEM file with DOS line endings (CR+LF) as Resolved.
Mar 20 2020, 5:59 PM · gnupg (gpg22), S/MIME, Bug Report
werner closed T4831: gnupg-2.2.19 fails to build on latest Fedora Rawhide as Resolved.
Mar 20 2020, 5:59 PM · gnupg (gpg22), toolchain, Bug Report
werner closed T4860: Release GnuPG 2.2.20 as Resolved.
Mar 20 2020, 5:59 PM · gnupg (gpg22), Release Info
werner closed T4850: GnuPG fails to find default key to sign when using a smart card, but recovers once card is removed as Resolved.
Mar 20 2020, 5:59 PM · Restricted Project, gnupg (gpg22)
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2020q1/000444.html on T4860: Release GnuPG 2.2.20 .
Mar 20 2020, 5:57 PM · gnupg (gpg22), Release Info
werner committed rGbc7e56d9dcf5: Post release updates (authored by werner).
Post release updates
Mar 20 2020, 5:35 PM
werner committed rGdae1e384c4ec: po: Auto-update (authored by werner).
po: Auto-update
Mar 20 2020, 5:35 PM
werner committed rG5094bb08edd4: Release 2.2.20 (authored by werner).
Release 2.2.20
Mar 20 2020, 5:35 PM
werner committed rGb27d30df62ac: Copyright notice updates et al. (authored by werner).
Copyright notice updates et al.
Mar 20 2020, 5:35 PM
stokastika created T4885: gpg4win-3.1.11.exe installs malwares.
Mar 20 2020, 5:14 PM · gpg4win
dkg added a comment to T4883: gpgme X.509 certificates have unknown validity in offline mode unless `disable-crl-checks` is set.

That option does the same as --disable-dirmngr which in trun has the same effect as disable-crl-checks

Mar 20 2020, 4:49 PM · Not A Bug, S/MIME, gpgme
dkg added a comment to T4883: gpgme X.509 certificates have unknown validity in offline mode unless `disable-crl-checks` is set.

@werner wrote:

Mar 20 2020, 4:45 PM · Not A Bug, S/MIME, gpgme
aheinecke added a comment to T4884: PKCS #15 support in gpgsm.

The return value that was mapped to invalid value was "SW_WRONG_LENGTH" so I tested using the codepath for the SW_EXACT_LENGTH sw return value, too and it worked for readcert.

Mar 20 2020, 3:52 PM · Feature Request, gnupg, scd, S/MIME
werner committed rC3441f4c94c49: tests/basic: add GOST 28147 keymeshing testcase from LibreSSL testsuite (authored by lumag).
tests/basic: add GOST 28147 keymeshing testcase from LibreSSL testsuite
Mar 20 2020, 1:59 PM
werner committed rC18cd3f0c473a: gost: add keymeshing support per RFC 4357 (authored by lumag).
gost: add keymeshing support per RFC 4357
Mar 20 2020, 1:59 PM
werner committed rCdcee00adbd1c: gost28147: add support for CryptoPro key meshing per RFC 4357 (authored by lumag).
gost28147: add support for CryptoPro key meshing per RFC 4357
Mar 20 2020, 1:59 PM
aheinecke committed rO3d0810c4473e: Skip OpenPGP keys when looking for S/MIME (authored by aheinecke).
Skip OpenPGP keys when looking for S/MIME
Mar 20 2020, 12:29 PM