Fixed everywhere where we export some certificate or public/secret (sub)key. Additionally, to space characters we also replace /, \, and : everywhere in the (proposed) file names now.

Mon, Jan 5, 4:28 PM · gpd5x, vsd34, kleopatra

• werner updated the task description for T7906: Memory Corruption in ASCII-Armor Parsing.

Mon, Jan 5, 4:27 PM · gnupg, Bug Report

• ikloecker committed rKLEOPATRA3c379f4e98e1: Replace spaces and invalid characters in file names of exported keys (authored by • ikloecker).

Replace spaces and invalid characters in file names of exported keys

Mon, Jan 5, 4:24 PM

• ikloecker committed rKLEOPATRA5e235f92da07: Rename StripSuffixTest to PathHelperTest (authored by • ikloecker).

Rename StripSuffixTest to PathHelperTest

Mon, Jan 5, 4:24 PM

• ikloecker committed rKLEOPATRAd37384a4da70: Add helper to sanitize strings used as file name (authored by • ikloecker).

Add helper to sanitize strings used as file name

Mon, Jan 5, 4:24 PM

• ikloecker committed rLIBKLEO2228092d0648: Bump library version (authored by • ikloecker).

Bump library version

Mon, Jan 5, 4:19 PM

• ikloecker committed rLIBKLEOaa0d63322b77: Add helper returning pretty name or email of a key (authored by • ikloecker).

Add helper returning pretty name or email of a key

Mon, Jan 5, 4:19 PM

• werner committed rG5f4ad39b16a4: doc: Rename an internal function to clarity the purpose. (authored by • werner).

doc: Rename an internal function to clarity the purpose.

Mon, Jan 5, 4:08 PM

• werner triaged T8012: Missing error on first key search without keyserver as Normal priority.

Mon, Jan 5, 3:17 PM · dirmngr, Bug Report, gnupg26

• werner committed rG8d4fc76677cc: dirmngr: Help detection of bad keyserver configurations. (authored by • werner).

dirmngr: Help detection of bad keyserver configurations.

Mon, Jan 5, 2:45 PM

• ikloecker claimed T7848: Kleopatra: Remove whitespace from suggested export filename.

Mon, Jan 5, 1:54 PM · gpd5x, vsd34, kleopatra

• ikloecker changed the status of T7637: Kleopatra: certifications by available secret key which is *not* set to "ultimate" owner trust are disregarded from Open to Testing.

Fixed and backported for VSD 3.4

Mon, Jan 5, 1:53 PM · vsd34, gpd5x, kleopatra

• ikloecker committed rKLEOPATRA9d5dbed2c25a: Avoid confusion with shared team keys (authored by • ikloecker).

Avoid confusion with shared team keys

Mon, Jan 5, 1:52 PM

• ikloecker committed rKLEOPATRA92e518ec0e12: Make tooltip less wide (authored by • ikloecker).

Make tooltip less wide

Mon, Jan 5, 1:52 PM

timegrid created T8012: Missing error on first key search without keyserver.

Mon, Jan 5, 1:37 PM · dirmngr, Bug Report, gnupg26

timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from QA to Done on the gnupg26 board.

Mon, Jan 5, 12:54 PM · gnupg22 (gnupg-2.2.52), gnupg26, Feature Request, gpd5x

timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WIP to Done on the gpd5x board.

The problem was the keyserver configuration, which does not include a scheme (ldap:):

keyserver ldap.gnupg.test:389:uid=LordPrivySeal,ou=GnuPG Users,dc=gnupg,dc=test:pass:dc=gnupg,dc=test:

Mon, Jan 5, 12:53 PM · gnupg22 (gnupg-2.2.52), gnupg26, Feature Request, gpd5x

• ikloecker committed rKLEOPATRAb5ee4174225b: Avoid confusion with shared team keys (authored by • ikloecker).

Avoid confusion with shared team keys

Mon, Jan 5, 12:26 PM

• ikloecker committed rKLEOPATRA822552b7abe2: Make tooltip less wide (authored by • ikloecker).

Make tooltip less wide

Mon, Jan 5, 12:26 PM

• werner changed the visibility for T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks.

Mon, Jan 5, 11:27 AM · Not A Bug, gnupg

• werner changed the visibility for T7901: Cleartext Signature Forgery in NotDashEscaped header implementation in GnuPG.

Mon, Jan 5, 11:26 AM · gnupg, Bug Report

• werner changed the visibility for T7900: Cleartext Signature Forgery in GnuPG.

Mon, Jan 5, 11:26 AM · Not A Bug, OpenBSD, gnupg

• ikloecker claimed T7637: Kleopatra: certifications by available secret key which is *not* set to "ultimate" owner trust are disregarded .

Mon, Jan 5, 11:05 AM · vsd34, gpd5x, kleopatra

• gniibe changed the status of T7968: Fixes needed for newer GCC/Mingw from Open to Testing.

Mon, Jan 5, 9:51 AM

• ikloecker added a comment to T6453: Kleopatra: Show isQualified in Certificate details if true.

What does gpgsm -k --with-colons print for Werner's QES key? The usage / capabilities should contain s (for signing) and q (for qualified signing). If q is missing then something isn't set up correctly.

Mon, Jan 5, 9:35 AM · gpd5x, kleopatra

l10n daemon script <scripty@kde.org> committed rMTPe2a4c5ac40bc: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).

GIT_SILENT Sync po/docbooks with svn

Mon, Jan 5, 4:45 AM

l10n daemon script <scripty@kde.org> committed rMTPf7ea1d83509b: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).

GIT_SILENT Sync po/docbooks with svn

Mon, Jan 5, 2:55 AM

Sun, Jan 4

anthumchris closed T8010: Publish to NPM registry, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), as Resolved.

Sun, Jan 4, 11:45 PM · gpgme, Feature Request

anthumchris closed T8010: Publish to NPM registry as Resolved.

Published to NPM as gpgmejs, which provides disambiguation from gpgme, gpgmepp, gpgmepy, etc.

Sun, Jan 4, 11:45 PM · gpgme, Feature Request

anthumchris changed the status of T8010: Publish to NPM registry, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), from Open to Testing.

Sun, Jan 4, 10:45 PM · gpgme, Feature Request

anthumchris changed the status of T8010: Publish to NPM registry from Open to Testing.

Sun, Jan 4, 10:45 PM · gpgme, Feature Request

anthumchris triaged T8010: Publish to NPM registry as Normal priority.

Sun, Jan 4, 10:44 PM · gpgme, Feature Request

• ikloecker committed rKLEOPATRA108194fcf848: Remove CI configuration (authored by • ikloecker).

Remove CI configuration

Sun, Jan 4, 9:42 PM

• ikloecker committed rMTP0d37c57a405b: Remove Linux CI job (authored by • ikloecker).

Remove Linux CI job

Sun, Jan 4, 9:42 PM

• ikloecker committed rLIBKLEO03ffe03f43a0: Remove CI configuration (authored by • ikloecker).

Remove CI configuration

Sun, Jan 4, 9:37 PM

• ikloecker committed rLIBKLEOf5df85ee2f7f: Remove Linux CI job (authored by • ikloecker).

Remove Linux CI job

Sun, Jan 4, 9:29 PM

l10n daemon script <scripty@kde.org> committed rMTPf6070eac25c7: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).

GIT_SILENT Sync po/docbooks with svn

Sun, Jan 4, 4:40 AM

anthumchris closed T8003: Create first gnupgme nodejs binding for gpg version as Resolved.

completed working test and repo:
https://github.com/anthumchris/gpgmejs/

Sun, Jan 4, 4:25 AM · gpgme, Feature Request

anthumchris closed T8003: Create first gnupgme nodejs binding for gpg version, a subtask of T7975: Official GPGme interface/bindings for Nodejs (node), as Resolved.

Sun, Jan 4, 4:25 AM · gpgme, Feature Request

l10n daemon script <scripty@kde.org> committed rMTP00e7c980b210: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).

GIT_SILENT Sync po/docbooks with svn

Sun, Jan 4, 2:55 AM

thesamesam added a comment to T7990: export-minimal unexpectedly omits expired key.

That'd be great if possible, thank you!

Sun, Jan 4, 2:35 AM · gnupg26, Feature Request, Gentoo

Sat, Jan 3

heirecka committed rKLEOPATRA977ec6b88c0a: GIT_SILENT Update Appstream for new release (authored by heirecka).

GIT_SILENT Update Appstream for new release

Sat, Jan 3, 11:58 AM

heirecka committed rKLEOPATRAfffce3a24727: GIT_SILENT Upgrade release service version to 25.12.1. (authored by heirecka).

GIT_SILENT Upgrade release service version to 25.12.1.

Sat, Jan 3, 11:58 AM

heirecka committed rKLEOPATRAdbeb948b1ac8: GIT_SILENT Update Appstream for new release (authored by heirecka).

GIT_SILENT Update Appstream for new release

Sat, Jan 3, 11:58 AM

mfilippov updated the diff for D622: secmem: Add VirtualLock support for Windows..

secmem: Add VirtualLock support for Windows.

Sat, Jan 3, 11:03 AM

mfilippov requested review of D622: secmem: Add VirtualLock support for Windows..

Sat, Jan 3, 10:55 AM

jukivili committed rCd5cf2b90c7d0: rijndael-aesni: use assembly for moving first and last round key (authored by jukivili).

rijndael-aesni: use assembly for moving first and last round key

Sat, Jan 3, 12:06 AM

jukivili committed rC7afdbb2812b2: rijndael-aesni: prevent inlining AESNI functions by LTO (authored by jukivili).

rijndael-aesni: prevent inlining AESNI functions by LTO

Sat, Jan 3, 12:06 AM

jukivili committed rC9e3af928ee11: rijndael: add VAES/AVX512 accelerated implementation (authored by jukivili).

rijndael: add VAES/AVX512 accelerated implementation

Sat, Jan 3, 12:06 AM

jukivili committed rCef372b484e0f: rijndael-riscv-zvkned: optimize aes192 key setup (authored by jukivili).

rijndael-riscv-zvkned: optimize aes192 key setup

Sat, Jan 3, 12:06 AM

jukivili committed rCc1d9fff3b2eb: chacha20: avoid AVX512/AVX2/SSSE3 for single block processing with Zen5 (authored by jukivili).

chacha20: avoid AVX512/AVX2/SSSE3 for single block processing with Zen5

Sat, Jan 3, 12:06 AM

jukivili committed rC4c9d7a3ba939: rijndael-riscv-zvkned: optimize do_prepare_decryption (authored by jukivili).

rijndael-riscv-zvkned: optimize do_prepare_decryption

Sat, Jan 3, 12:06 AM

jukivili committed rC8b538a8c7669: camellia-gfni-avx512: add 1-block constant-time implementation (authored by jukivili).

camellia-gfni-avx512: add 1-block constant-time implementation

Sat, Jan 3, 12:06 AM

jukivili committed rCe5bc3b28260e: blake2: avoid AVX/AVX2/AVX512 when CPU has high vector inst latency (authored by jukivili).

blake2: avoid AVX/AVX2/AVX512 when CPU has high vector inst latency

Sat, Jan 3, 12:06 AM

jukivili committed rC861896b0fad8: aria-x86_64: fixes for CFI markings (authored by jukivili).

aria-x86_64: fixes for CFI markings

Sat, Jan 3, 12:06 AM

jukivili committed rCb9bafd6c6cc5: camellia-simd128: optimize round key loading and key setup (authored by jukivili).

camellia-simd128: optimize round key loading and key setup

Sat, Jan 3, 12:06 AM

jukivili committed rCf5848080d41a: camellia-aesni-avx: optimize camellia_f used for key setup (authored by jukivili).

camellia-aesni-avx: optimize camellia_f used for key setup

Sat, Jan 3, 12:06 AM

Fri, Jan 2

• werner committed rGb8805d9a0f52: gpg: Error out on unverified output for non-detached signatures. (authored by • werner).

gpg: Error out on unverified output for non-detached signatures.

Fri, Jan 2, 4:38 PM

• werner changed the status of T7900: Cleartext Signature Forgery in GnuPG from Open to Testing.

(Testing for now for better visibility. Real or Semi-real bugs with fixes are already set to Resolved)

Fri, Jan 2, 4:38 PM · Not A Bug, OpenBSD, gnupg

• werner changed the status of T7902: OpenPGP Cleartext Signature Framework, a subtask of T7900: Cleartext Signature Forgery in GnuPG, from Open to Testing.

Fri, Jan 2, 4:35 PM · Not A Bug, OpenBSD, gnupg

• werner changed the status of T7902: OpenPGP Cleartext Signature Framework from Open to Testing.

Fri, Jan 2, 4:35 PM · Not A Bug, OpenPGP, FAQ, gnupg

• werner closed T7903: Multiple Plaintext Attack on Detached PGP Signatures in GnuPG, a subtask of T7900: Cleartext Signature Forgery in GnuPG, as Resolved.

Fri, Jan 2, 4:24 PM · Not A Bug, OpenBSD, gnupg

• werner closed T7903: Multiple Plaintext Attack on Detached PGP Signatures in GnuPG as Resolved.

Fri, Jan 2, 4:24 PM · Not A Bug, OpenPGP, gnupg

• werner changed the status of T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks, a subtask of T7900: Cleartext Signature Forgery in GnuPG, from Open to Testing.

Fri, Jan 2, 4:22 PM · Not A Bug, OpenBSD, gnupg

• werner changed the status of T7907: Encrypted Message Malleability Checks are Incorrectly Enforced Causing Plaintext Recovery Attacks from Open to Testing.

The described attack is not easy to understand and as of today the
gpg.fail website seems to have the same content as the draft we
received on 2025-10-23. There it states:

Fri, Jan 2, 4:22 PM · Not A Bug, gnupg

anthumchris renamed T8009: Wasm for browser support from Consider Wasm for browser support to Wasm for browser support.

Fri, Jan 2, 3:34 PM · gpgme, Feature Request

anthumchris updated the task description for T8009: Wasm for browser support.

Fri, Jan 2, 3:33 PM · gpgme, Feature Request

anthumchris updated the task description for T8009: Wasm for browser support.

Fri, Jan 2, 3:33 PM · gpgme, Feature Request

anthumchris updated the task description for T8009: Wasm for browser support.

Fri, Jan 2, 3:33 PM · gpgme, Feature Request

anthumchris triaged T8009: Wasm for browser support as Normal priority.

Fri, Jan 2, 3:32 PM · gpgme, Feature Request

timegrid moved T8008: GpgEX: UI server already running from Backlog to Done on the gpd5x board.

Fri, Jan 2, 2:22 PM · gpd5x, kleopatra, gpgex

timegrid closed T8008: GpgEX: UI server already running, a subtask of T7528: Make it possible to run Kleopatra VSD and Kleopatra GPD in parallel, as Resolved.

Fri, Jan 2, 2:21 PM · vsd34, test on hold, gpd5x, kleopatra

timegrid closed T8008: GpgEX: UI server already running as Resolved.

The issue is resolved in gpg4win-5.0.0-beta479 @ win11:

no error for opening .eml files
no error for starting kleopatra while running (also not started twice anymore)

Fri, Jan 2, 2:21 PM · gpd5x, kleopatra, gpgex

• werner added a subtask for T7528: Make it possible to run Kleopatra VSD and Kleopatra GPD in parallel: T8008: GpgEX: UI server already running.

Fri, Jan 2, 2:08 PM · vsd34, test on hold, gpd5x, kleopatra

• werner added a parent task for T8008: GpgEX: UI server already running: T7528: Make it possible to run Kleopatra VSD and Kleopatra GPD in parallel.

Fri, Jan 2, 2:08 PM · gpd5x, kleopatra, gpgex

anthumchris added a comment to T8007: FTP website displays 2.4 stable.

Thanks. Could you please clarify if the even-numbered minor version (2.2.x, 2.4.x, 2.6.x, etc) rule is still required? I'd like to provide clarity to the Homebrew team avoid any potential ambiguity

Fri, Jan 2, 2:08 PM · Bug Report

• werner added a comment to T8008: GpgEX: UI server already running.

No it is not related to T4030 because that has not yet been implemented. I am just upload a beta479 which should fix problem as wel as other similar problems.

Fri, Jan 2, 1:57 PM · gpd5x, kleopatra, gpgex

timegrid added a comment to T8008: GpgEX: UI server already running.

this also happens, when kleopatra is started while already running

Fri, Jan 2, 1:53 PM · gpd5x, kleopatra, gpgex

• werner closed T8007: FTP website displays 2.4 stable as Resolved.

Fri, Jan 2, 1:52 PM · Bug Report

• werner closed T8007: FTP website displays 2.4 stable, a subtask of T8006: 2.4 » 2.5 stable mentions, as Resolved.

Fri, Jan 2, 1:52 PM

• werner added a comment to T8007: FTP website displays 2.4 stable.

Please use the the swdb.lst which has all the version info. The website is actually build using this info. Well, except for the README file in the FTP section. I will update that too.

Fri, Jan 2, 1:46 PM · Bug Report

timegrid added a comment to T6939: File extensions for Mailviewer saving.

Note that "Save encrypted" is only "Save" in the UI.

Fri, Jan 2, 1:44 PM · gpd5x, mimetreeparser

timegrid added a comment to T8008: GpgEX: UI server already running.

Fri, Jan 2, 1:39 PM · gpd5x, kleopatra, gpgex

timegrid created T8008: GpgEX: UI server already running.

Fri, Jan 2, 1:35 PM · gpd5x, kleopatra, gpgex

anthumchris updated the task description for T8007: FTP website displays 2.4 stable.

Fri, Jan 2, 1:28 PM · Bug Report

anthumchris updated the task description for T8006: 2.4 » 2.5 stable mentions.

Fri, Jan 2, 1:17 PM