Page MenuHome GnuPG

werner (Werner Koch)
EngineeringAdministrator

Projects

User Details

User Since
Mar 27 2017, 4:48 PM (424 w, 2 d)
Roles
Administrator
Availability
Busy Busy until Sep 9 2030.

Recent Activity

Today

werner committed rW0929cd3b6783: Rename packages.common to packages.list (authored by werner).
Rename packages.common to packages.list
Wed, May 14, 4:16 PM
werner committed rW383eb8586161: Update Okular for gnupg >= 2.4 to the correct version. (authored by werner).
Update Okular for gnupg >= 2.4 to the correct version.
Wed, May 14, 4:07 PM
werner committed rWe42e2d1d6037: Merge branch 'gpg4win-5-branch' (authored by werner).
Merge branch 'gpg4win-5-branch'
Wed, May 14, 3:58 PM
werner committed rW14ee2719e291: Merge branch 'gpg4win-5-branch' (authored by werner).
Merge branch 'gpg4win-5-branch'
Wed, May 14, 3:56 PM
werner committed rDeffa3ea5e36e: Improve the make rules to upload sbdb.lst. (authored by werner).
Improve the make rules to upload sbdb.lst.
Wed, May 14, 3:35 PM
werner committed rD35d7563176ce: swdb: gnupg 2.4.8 (authored by werner).
swdb: gnupg 2.4.8
Wed, May 14, 3:33 PM
werner committed rGd48b26a2f6c7: Post release updates. (authored by werner).
Post release updates.
Wed, May 14, 3:05 PM
werner committed rG6f39568ae655: Release 2.4.8 (authored by werner).
Release 2.4.8
Wed, May 14, 3:05 PM
werner closed T6594: Okular: Proper about data customization as Resolved.

We have updated patches for long in the gpg4win repo and thus I close this bug.

Wed, May 14, 3:02 PM · Restricted Project, okular
werner added a comment to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard.

Using the primary key for ssh was not intended and thus not tested. I have not yet found the time too look closer at your report. Just one remark:

Wed, May 14, 12:32 PM · gnupg, ssh, Bug Report
werner added a project to T7589: Unable to export SSH keys for ED25519 keys generate on a SmartCard: gnupg.
Wed, May 14, 12:07 PM · gnupg, ssh, Bug Report
werner triaged T7653: Fix gpg's passwd for Kyber with the ecc part on a card as Normal priority.
Wed, May 14, 10:05 AM · Bug Report, gnupg26

Yesterday

werner committed rGeb2a90d343a4: gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work. (authored by werner).
gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work.
Tue, May 13, 3:44 PM
werner committed rGd5a4a2dc890e: gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work. (authored by werner).
gpg: Make combination of show-only-fpr-mbox and show-unusable-uid work.
Tue, May 13, 3:44 PM
werner added a project to T7649: gnupg: Use KEM interface for decryption: gnupg26.
Tue, May 13, 3:24 PM · gnupg26
werner closed T7171: Allow for empty Subject in X.509 as Resolved.
Tue, May 13, 3:21 PM · libksba, Bug Report, gnupg, S/MIME
werner committed rGe57a2e65d93f: gpgsm: Just print a note for an empty subject during import. (authored by werner).
gpgsm: Just print a note for an empty subject during import.
Tue, May 13, 3:19 PM
werner committed rGe7a9bd320561: gpgsm: Just print a note for an empty subject during import. (authored by werner).
gpgsm: Just print a note for an empty subject during import.
Tue, May 13, 3:17 PM
werner closed T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN", a subtask of T7171: Allow for empty Subject in X.509, as Resolved.
Tue, May 13, 3:00 PM · libksba, Bug Report, gnupg, S/MIME
werner closed T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN" as Resolved.

Meanwhile we have some support for an empty subject but gpgsm still prints an error notice. See the T7171 for more.

Tue, May 13, 3:00 PM · gnupg26, S/MIME, Feature Request
werner added a subtask for T7171: Allow for empty Subject in X.509: T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN".
Tue, May 13, 2:58 PM · libksba, Bug Report, gnupg, S/MIME
werner added a parent task for T6941: gpgsm/dirmngr: support for end-entity certificates with an empty "Subject DN": T7171: Allow for empty Subject in X.509.
Tue, May 13, 2:58 PM · gnupg26, S/MIME, Feature Request
werner committed rG7c2e7bcc41ad: agent: We should use a macro for the keygrip len in new code. (authored by werner).
agent: We should use a macro for the keygrip len in new code.
Tue, May 13, 9:55 AM

Mon, May 12

werner committed rC67b8da4ef627: Remove occurrences of old FSF postal address. (authored by Collin Funk via Gcrypt-devel <gcrypt-devel@gnupg.org>).
Remove occurrences of old FSF postal address.
Mon, May 12, 6:05 PM
werner committed rC93034d649124: Fix ungrammatical use of "allow to" (authored by Paul Eggert <eggert@cs.ucla.edu>).
Fix ungrammatical use of "allow to"
Mon, May 12, 6:05 PM
werner committed rM905bd760a99a: Add GPGME_CREATE_GROUP flag for gpgme_op_createkey and _createsubkey. (authored by werner).
Add GPGME_CREATE_GROUP flag for gpgme_op_createkey and _createsubkey.
Mon, May 12, 2:44 PM
werner committed rGedd01d8fc45e: gpg: Fully implement the group key flag. (authored by werner).
gpg: Fully implement the group key flag.
Mon, May 12, 12:01 PM
werner committed rG924f09d1f3c8: gpg: Fully implement the group key flag. (authored by werner).
gpg: Fully implement the group key flag.
Mon, May 12, 12:00 PM
werner committed rG8833a34bf087: gpg: Fully implement the group key flag. (authored by werner).
gpg: Fully implement the group key flag.
Mon, May 12, 12:00 PM

Fri, May 9

werner committed rD7a45397df2f7: We should no use the defunc k.gnupg.net anymore. (authored by werner).
We should no use the defunc k.gnupg.net anymore.
Fri, May 9, 5:43 PM
werner committed rD36945e2d5259: Update information about gnupg people. (authored by werner).
Update information about gnupg people.
Fri, May 9, 5:24 PM
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2025q2/000492.html on T7586: Release GnuPG 2.5.6.
Fri, May 9, 5:02 PM · gnupg, Release Info
werner committed rG727e125a4dc1: Update distsigkey (authored by werner).
Update distsigkey
Fri, May 9, 4:45 PM
werner committed rGb5a763fff1f9: Update distsigkey (authored by werner).
Update distsigkey
Fri, May 9, 4:45 PM
werner committed rGb361c25bcdcd: Update distsigkey (authored by werner).
Update distsigkey
Fri, May 9, 4:45 PM
werner committed rD01116327613d: Update the signature keys. (authored by werner).
Update the signature keys.
Fri, May 9, 4:44 PM
werner committed rD03bf599c03b7: Announce GnuPG 2.5.6 (authored by werner).
Announce GnuPG 2.5.6
Fri, May 9, 3:42 PM
werner committed rW40e45e38b959: Also update the to-be-signed DLL name. (authored by werner).
Also update the to-be-signed DLL name.
Fri, May 9, 10:11 AM
werner renamed T7645: Kleopatra: Encoding errors in signature verification audit log (timestamps) from Kleopatra: Encoding errors in signature verification audit log to Kleopatra: Encoding errors in signature verification audit log (timestamps).
Fri, May 9, 9:26 AM · gnupg26, gpd5x, Bug Report
werner triaged T7645: Kleopatra: Encoding errors in signature verification audit log (timestamps) as Low priority.

I think we have another report on this in the tracker. The problem is indeed the ugly Windows time functions to print a string. Let me only remeber that untile a few years, Windows had the opinion that Germany is the the Westeuropäische Zeit, i.e. Portugal or the UK.

Fri, May 9, 9:25 AM · gnupg26, gpd5x, Bug Report
werner set the color for riscv to Checkered.
Fri, May 9, 9:21 AM
werner added a project to T7647: cipher/simd-common-riscv.h missing from libgcrypt 1.11.1 tarball: riscv.
Fri, May 9, 9:21 AM · riscv, libgcrypt, Bug Report
werner added a comment to T7647: cipher/simd-common-riscv.h missing from libgcrypt 1.11.1 tarball.

That is quite possible because we do not have a test system for RISC-V and the make release tarbegt is not abale to verify this.

Fri, May 9, 9:21 AM · riscv, libgcrypt, Bug Report

Thu, May 8

werner committed rW57f57e1b1339: Fix DLL name of libpoppler. (authored by werner).
Fix DLL name of libpoppler.
Thu, May 8, 5:02 PM
werner committed rWc471e16de9cd: Two patches for gpgol 2.6.0 (authored by werner).
Two patches for gpgol 2.6.0
Thu, May 8, 4:32 PM
werner committed rW9ef029f83c22: Update to gnupg-2.5.6, Kleopatra and Okular current snapshots (authored by werner).
Update to gnupg-2.5.6, Kleopatra and Okular current snapshots
Thu, May 8, 4:31 PM
werner updated the task description for T7586: Release GnuPG 2.5.6.
Thu, May 8, 3:43 PM · gnupg, Release Info
werner closed T7632: gnupg test suite fails to build on AIX. as Resolved.
Thu, May 8, 3:32 PM · AIX, gnupg, Bug Report
werner closed T7638: gpg on Solaris does not print a signal description as Resolved.
Thu, May 8, 3:32 PM · Solaris, gnupg, Bug Report
werner moved T4021: dirmngr: dirmngr/dns.c issue with 127.0.0.1 from WiP to QA on the gnupg24 board.
Thu, May 8, 3:31 PM · gnupg24, dirmngr
werner closed T7576: keyboxd: Searching <email@Example.COM> as Resolved.
Thu, May 8, 3:31 PM · gnupg, Bug Report
werner closed T7583: 2.5.5 removes sig on clean that 2.5.4 and earlier kept as Resolved.
Thu, May 8, 3:30 PM · gnupg, Bug Report
werner closed T7547: signatures from revoked or expired keys show up as missing keys, a subtask of T7527: Keyring/keybox denial of service, as Resolved.
Thu, May 8, 3:29 PM · OpenPGP, gnupg, Bug Report
werner closed T7547: signatures from revoked or expired keys show up as missing keys as Resolved.
Thu, May 8, 3:29 PM · gnupg26, gnupg24, Bug Report
werner updated the task description for T7586: Release GnuPG 2.5.6.
Thu, May 8, 3:29 PM · gnupg, Release Info
werner closed T6477: WKD redirects and dirmngr redirect rewriting as Resolved.
Thu, May 8, 3:27 PM · gnupg24 (gnupg-2.4.3), wkd, dirmngr
werner committed rD306fa8e4255c: swdb: gnupg 2.5.6 (authored by werner).
swdb: gnupg 2.5.6
Thu, May 8, 11:28 AM
werner committed rG806b0080bb34: Release 2.5.6 (authored by werner).
Release 2.5.6
Thu, May 8, 11:18 AM
werner committed rGfe347b38814b: Post release updates (authored by werner).
Post release updates
Thu, May 8, 11:18 AM
werner committed rG598296b9fc60: tests:gpgscm: Fix build error on AIX. (authored by Collin Funk via Gnupg-devel <gnupg-devel@gnupg.org>).
tests:gpgscm: Fix build error on AIX.
Thu, May 8, 10:53 AM
werner committed rG8ba33fffe9f4: common: Add Solaris support to get_signal_name. (authored by Collin Funk via Gnupg-devel <gnupg-devel@gnupg.org>).
common: Add Solaris support to get_signal_name.
Thu, May 8, 10:53 AM
werner committed rG1fea38669155: po: Fix misspelled italian translation for 'encrypted' (authored by Mattia Narducci via Gnupg-devel <gnupg-devel@gnupg.org>).
po: Fix misspelled italian translation for 'encrypted'
Thu, May 8, 10:53 AM
werner added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

I can't see any documentation that a value of 0 disables the cache. The user might have used some undefined behaviour. For example in the old code we did a housecleaning when we were idle but the new code uses a timer and another thread for flushing the cache. We could open a feature request to entire disable the cache but I bet that we will get a lot of new bug reports because users will then need to enter their passphrase too often for one operation.

Thu, May 8, 9:14 AM · keyboxd, gpgagent, gnupg26
werner updated the task description for T7165: Release Libgcrypt 1.11.0.
Thu, May 8, 8:51 AM · Release Info, libgcrypt
werner triaged T7643: Release Libgcrypt 1.12.0 as Normal priority.
Thu, May 8, 8:49 AM · Release Info, libgcrypt

Wed, May 7

werner committed rDecb9d83b6db5: swdb: libgcrypt 1.11.1 (authored by werner).
swdb: libgcrypt 1.11.1
Wed, May 7, 6:33 PM
werner closed T7165: Release Libgcrypt 1.11.0 as Resolved.
Wed, May 7, 6:01 PM · Release Info, libgcrypt
werner committed rW7e0136936239: Update to libgcrypt 1.11.1 (authored by werner).
Update to libgcrypt 1.11.1
Wed, May 7, 6:01 PM
werner committed rW67a34021ff41: Update to libgcrypt 1.11.1 (authored by werner).
Update to libgcrypt 1.11.1
Wed, May 7, 6:00 PM
werner updated the task description for T7166: Release Libgcrypt 1.11.1.
Wed, May 7, 5:55 PM · Release Info, libgcrypt
werner triaged T7642: Release Libgcrypt 1.11.2 as Low priority.
Wed, May 7, 5:52 PM · Release Info, libgcrypt
werner changed the status of T7633: libgcrypt fails to build on NetBSD due to the systems bswap32 macro defintion. from Open to Testing.
Wed, May 7, 2:48 PM · NetBSD, libgcrypt, Bug Report
werner changed the status of T7634: libgcrypt's test t-thread-local fails to link on some platforms. from Open to Testing.
Wed, May 7, 2:47 PM · NetBSD, libgcrypt, Bug Report
werner added a comment to T6681: agent: Clean up main loop and better cache handling of expiration (was: Adding agent_timer API for monitoring something and passphrase cache).

Lucas Mülling commented yesterday on gnupg-devel:

Wed, May 7, 11:40 AM · keyboxd, gpgagent, gnupg26

Tue, May 6

werner committed rG581d8bd087f0: Update NEWS (authored by werner).
Update NEWS
Tue, May 6, 4:13 PM
werner committed rG9589da97e2fc: gpgsm: Always print info about certs-only message. (authored by werner).
gpgsm: Always print info about certs-only message.
Tue, May 6, 1:46 PM
werner committed rGe1576eee040f: scd:p15: Make signing work for Nexus cards. (authored by werner).
scd:p15: Make signing work for Nexus cards.
Tue, May 6, 11:19 AM
werner added a comment to T7638: gpg on Solaris does not print a signal description.

Right now we have

Tue, May 6, 8:32 AM · Solaris, gnupg, Bug Report

Mon, May 5

werner added a comment to T7620: gpgme_get_key fails to detect secret encryption subkey after key generation on card (until context is recreated).

I doubt that this is a gpgme problem. With a gpgme log we will be able see the exact commands send to gpg and replicate this on the command line.

Mon, May 5, 5:45 PM · gnupg, gpgme, Bug Report
werner committed rMa6e8f961436d: core: Fix regression for RSA in gpgme_pubkey_algo_string. (authored by werner).
core: Fix regression for RSA in gpgme_pubkey_algo_string.
Mon, May 5, 5:31 PM
werner committed rM88dc25e2ebf5: Prepare NEWS for the next release (authored by werner).
Prepare NEWS for the next release
Mon, May 5, 5:31 PM
werner committed rM5214a34ba766: Release 1.24.2 (authored by werner).
Release 1.24.2
Mon, May 5, 5:31 PM
werner committed rM56a51df5096d: Post release updates. (authored by werner).
Post release updates.
Mon, May 5, 5:31 PM
werner committed rMa4945675ece2: cpp: Ensure that all transitions go from one state to a different state (authored by ikloecker).
cpp: Ensure that all transitions go from one state to a different state
Mon, May 5, 5:31 PM
werner committed rM64bb704a25ea: cpp: Validate the transition map (authored by ikloecker).
cpp: Validate the transition map
Mon, May 5, 5:31 PM
werner committed rMe327305b9669: cpp: Add missing transition, remove two ignored (and wrong) transitions (authored by ikloecker).
cpp: Add missing transition, remove two ignored (and wrong) transitions
Mon, May 5, 5:31 PM
werner changed the status of T3325: Allow encryption/signing in GPGME using a specified subkey from Open to Testing.
Mon, May 5, 4:46 PM · gpgme
werner committed rMbfd320abfeaf: Allow signing using an exactly specified subkey. (authored by werner).
Allow signing using an exactly specified subkey.
Mon, May 5, 4:45 PM
werner committed rMf2d40473b522: Change timestamp fields from signed to unsigned long. (authored by werner).
Change timestamp fields from signed to unsigned long.
Mon, May 5, 4:45 PM
werner committed rM87d6da1188db: Mark the subkey used to find a key. (authored by werner).
Mark the subkey used to find a key.
Mon, May 5, 4:45 PM
werner triaged T7627: gpgme(qt) testsuite error on 32bit archs with 64bit time_t as Normal priority.
Mon, May 5, 4:41 PM · gpgme, Bug Report
werner added a comment to T7628: gpg uses "month" as a synonym for 30 days.

And the US administration might even change the definition of a year to, say, 100 months so that potus can rightfully keep his promise that there won't be more election in the foreseeable future ;-)

Mon, May 5, 4:27 PM · gnupg, Bug Report
werner reopened T3325: Allow encryption/signing in GPGME using a specified subkey as "Open".
Mon, May 5, 11:41 AM · gpgme
werner triaged T7631: Building libassuan on AIX warns about missing function declarations. as Normal priority.

But the function works and returns the peer's credentials?

Mon, May 5, 11:13 AM · AIX, libassuan, Bug Report
werner triaged T7633: libgcrypt fails to build on NetBSD due to the systems bswap32 macro defintion. as High priority.
Mon, May 5, 11:12 AM · NetBSD, libgcrypt, Bug Report
werner triaged T7632: gnupg test suite fails to build on AIX. as High priority.
Mon, May 5, 11:12 AM · AIX, gnupg, Bug Report
werner triaged T7634: libgcrypt's test t-thread-local fails to link on some platforms. as High priority.
Mon, May 5, 11:11 AM · NetBSD, libgcrypt, Bug Report
werner triaged T7638: gpg on Solaris does not print a signal description as Low priority.

The main problem here was that this all is not async-safe and thus I once implemented only the standard cases I could test easily.

Mon, May 5, 11:11 AM · Solaris, gnupg, Bug Report
werner added a comment to T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.

For the records:

Mon, May 5, 9:24 AM · Not A Bug, gnupg
werner added a comment to T7611: WoT: adding a marginal trustsig reduces the validity of a downstream certificate.

A bug tracker shall never be used for discussion because the audience is not as expected. Only very few people follow a certain bug but several hundreds are following discussion on gnupg-devel@. That is basic hacker knowledge.

Mon, May 5, 9:14 AM · Not A Bug, gnupg