Page MenuHome GnuPG

werner (Werner Koch)
EngineeringAdministrator

Projects

User Details

User Since
Mar 27 2017, 4:48 PM (401 w, 6 d)
Roles
Administrator
Availability
Busy Busy until Sep 9 2030.

Recent Activity

Fri, Dec 6

werner committed rG4c830b240c5f: speedo: Change the default to build a 64 bit version (authored by werner).
speedo: Change the default to build a 64 bit version
Fri, Dec 6, 12:20 PM
werner committed rD8f93c1eb766c: web: Announce 2.5.2 (authored by werner).
web: Announce 2.5.2
Fri, Dec 6, 11:08 AM

Thu, Dec 5

werner committed rD215c7da5809e: ids: Published draft-koch-openpgp-webkey-service-19 (authored by werner).
ids: Published draft-koch-openpgp-webkey-service-19
Thu, Dec 5, 4:54 PM
werner moved T7332: Kleopatra: Initial keylisting sometimes fails or hangs for some seconds from Backlog to QA on the gpd5x board.
Thu, Dec 5, 4:36 PM · gnupg24, gnupg22, gpd5x, kleopatra, Bug Report
werner closed T7193: gnupg-2.5.0: Does not build due to missing declaration of read and write as Resolved.
Thu, Dec 5, 4:36 PM · MacOS, gnupg, Bug Report
werner closed T7309: gpg should not proceed with the key import from the smartcard if no valid SCD READKEY information is received as Resolved.
Thu, Dec 5, 4:33 PM · Info Needed, scd, gpgagent, Bug Report
werner closed T7316: Curve25519/v5 key cannot be exported, a subtask of T7315: Allow exporting of PQC keys., as Resolved.
Thu, Dec 5, 4:32 PM · gnupg26, OpenPGP, PQC, gnupg
werner closed T7316: Curve25519/v5 key cannot be exported as Resolved.
Thu, Dec 5, 4:32 PM · gnupg26, OpenPGP, PQC, gnupg
werner committed rG7b2748c6d8fb: gpg: Silence expired trusted-key diagnostics in quiet mode. (authored by werner).
gpg: Silence expired trusted-key diagnostics in quiet mode.
Thu, Dec 5, 4:32 PM
werner closed T7351: 2.2.45 exitcode 2 when importing revocation cert for expired key as Resolved.
Thu, Dec 5, 4:30 PM · gnupg, Bug Report
werner added a comment to T7351: 2.2.45 exitcode 2 when importing revocation cert for expired key.

@ilf: Yes these message are emitted using log_info in 2.4.7 and 2.5.2. Thus they don't case a failure exit. I will silence them with --quiet in 2.5.3.

Thu, Dec 5, 4:28 PM · gnupg, Bug Report
werner closed T7042: AEAD mode does not properly handle modified cipher text as Resolved.
Thu, Dec 5, 4:25 PM · gnupg26, Bug Report
werner moved T7289: Release GnuPG 2.5.2 from Backlog to Done on the gnupg26 board.
Thu, Dec 5, 11:48 AM · gnupg, Release Info, gnupg26
werner updated the task description for T7289: Release GnuPG 2.5.2.
Thu, Dec 5, 11:47 AM · gnupg, Release Info, gnupg26
werner triaged T7442: Release GnuPG 2.5.3 as Normal priority.
Thu, Dec 5, 11:45 AM · Release Info, gnupg
werner committed rDb5f0d17f5044: swdb: gnupg 2.5.2 (authored by werner).
swdb: gnupg 2.5.2
Thu, Dec 5, 11:34 AM
werner committed rG0f76dd905d87: Post release updates (authored by werner).
Post release updates
Thu, Dec 5, 11:29 AM
werner committed rG84e178120148: Release 2.5.2 (authored by werner).
Release 2.5.2
Thu, Dec 5, 11:29 AM
werner committed rG2efcbbea6713: po: Run msgmerge (authored by werner).
po: Run msgmerge
Thu, Dec 5, 11:29 AM
werner committed rGfba1d1089d8f: po: Update German translation (authored by werner).
po: Update German translation
Thu, Dec 5, 11:29 AM
werner added a project to T6545: Support CRL extension issuingDistributionPoint: workaround.

A workaround exists with the new option --ignore-crl-extensions.

Thu, Dec 5, 10:19 AM · workaround, gnupg26, Restricted Project, libksba, gnupg22, Feature Request
werner closed T7440: Release GPGME 1.24.1 as Resolved.
Thu, Dec 5, 9:55 AM · gpgme, Release Info

Wed, Dec 4

werner committed rM3ba4b7593454: Post release updates (authored by werner).
Post release updates
Wed, Dec 4, 4:43 PM
werner committed rMf6257431a8f8: Release 1.24.1 (authored by werner).
Release 1.24.1
Wed, Dec 4, 4:43 PM
werner committed rM4a62318422ca: Add a configure test for gettid. (authored by werner).
Add a configure test for gettid.
Wed, Dec 4, 4:43 PM
werner committed rDd348a79f4b28: swdb: gpgme 1.24.1 (authored by werner).
swdb: gpgme 1.24.1
Wed, Dec 4, 4:12 PM
werner triaged T7440: Release GPGME 1.24.1 as Normal priority.
Wed, Dec 4, 2:50 PM · gpgme, Release Info
werner closed T7397: Kleopatra: Support Kyber generation, a subtask of T6636: PQC Implementation, as Resolved.
Wed, Dec 4, 2:46 PM · PQC, gnupg, libgcrypt
werner closed T7397: Kleopatra: Support Kyber generation as Resolved.

Works for me in an NSIS installer. The VSD beta thing also works with copied conf files.

Wed, Dec 4, 2:46 PM · kleopatra, gpd5x, PQC
werner committed rG7b0be541a994: w32: Introduce Registry key GNUPG_ASSUME_COMPLIANCE. (authored by werner).
w32: Introduce Registry key GNUPG_ASSUME_COMPLIANCE.
Wed, Dec 4, 11:04 AM
werner committed rGc3bab200d974: Require gpgrt 1.51 (authored by werner).
Require gpgrt 1.51
Wed, Dec 4, 11:04 AM
werner committed rWc1ee440e535b: Fix uninstalling of gpg-disable-keyboxd.bat (authored by werner).
Fix uninstalling of gpg-disable-keyboxd.bat
Wed, Dec 4, 10:35 AM
werner added a comment to T7434: Kleopatra: Initial keylisting hangs for ~60 seconds (gpg-agent: Socket ...S.gpg-agent cannot be bound).

Kleo needs this only because it wants to directly talk to gpg-agent via Assuan. For example to get smartcard infos. What about delaying this part until you have received some data back from gpg or gpgsm? This makes sure that the agent has been started.

Wed, Dec 4, 10:07 AM · gnupg, kleopatra

Tue, Dec 3

werner added a comment to T7434: Kleopatra: Initial keylisting hangs for ~60 seconds (gpg-agent: Socket ...S.gpg-agent cannot be bound).

Let me guess: Kleopatra starts the agent using gpgconf --launch gpg-agent which in turn uses gpg-connect-agent to actually start the agent if needed. Kleopatra does not seem to wait for the launch to succeed and fires up gpg and gpgsm. They both wait for the gpg-agent to be started and both use the same locking strategy. However, this involves a pseudo random wait which should avoid deadlocks. See gnupg/common/dotlock.c:next_wait_interval

Tue, Dec 3, 4:34 PM · gnupg, kleopatra
werner renamed T7436: Allow ssh to sign data larger than the assuan line length. from Allow ssh to sign larger data than the assuan line length. to Allow ssh to sign data larger than the assuan line length..
Tue, Dec 3, 4:18 PM · ssh, Feature Request, gnupg26
werner triaged T7436: Allow ssh to sign data larger than the assuan line length. as Normal priority.
Tue, Dec 3, 3:31 PM · ssh, Feature Request, gnupg26
werner committed rE65a4bc30d99a: Minor cleanness fix for autogen.sh (authored by werner).
Minor cleanness fix for autogen.sh
Tue, Dec 3, 11:54 AM
werner committed rW185383f3c3cb: Typo fixes for the NEWS. (authored by werner).
Typo fixes for the NEWS.
Tue, Dec 3, 10:01 AM

Mon, Dec 2

werner triaged T7373: gpg --export-secret-keys exits with General error if the password prompt was canceled as Normal priority.
Mon, Dec 2, 1:54 PM · Feature Request, gnupg26, gnupg
werner committed rE7baf9f6b4030: po: Update Portuguese Translation. (authored by Daniel Cerqueira <dan.git@lispclub.com>).
po: Update Portuguese Translation.
Mon, Dec 2, 1:48 PM
werner committed rG7b0d49785d0e: po: Update Portuguese Translation. (authored by Daniel Cerqueira <dan.git@lispclub.com>).
po: Update Portuguese Translation.
Mon, Dec 2, 1:41 PM
werner assigned T7432: READMEs missing for Gpg4win 4.3.1 and 4.4.0 to cklassen.
Mon, Dec 2, 10:33 AM · gpg4win
werner triaged T7432: READMEs missing for Gpg4win 4.3.1 and 4.4.0 as Low priority.
Mon, Dec 2, 10:33 AM · gpg4win
werner added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

Just a reminder: with Gnuk 1.2.15 and an ed25519 key PubkeyAuthentication unbound is required for hosts using the new feature.

Mon, Dec 2, 9:35 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
werner added a comment to T7432: READMEs missing for Gpg4win 4.3.1 and 4.4.0.

Then please upload whatever README you want there. My release checklist does not mention any README.

Mon, Dec 2, 9:20 AM · gpg4win

Thu, Nov 28

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2024q4/000487.html on T7353: Release GnuPG 2.4.7.
Thu, Nov 28, 1:03 PM · gnupg, Release Info
werner committed rDd185a0d5b2b3: Announce 2.4.7 release (authored by werner).
Announce 2.4.7 release
Thu, Nov 28, 12:51 PM

Wed, Nov 27

werner committed rD0117235ba92b: swdb: gpg4win 4.4.0 (authored by werner).
swdb: gpg4win 4.4.0
Wed, Nov 27, 12:17 PM
werner committed rW8e42fd319e06: Post release updates (authored by werner).
Post release updates
Wed, Nov 27, 12:01 PM
werner committed rW58b0ccbca0c6: Release gpg4win 4.4.0 (authored by werner).
Release gpg4win 4.4.0
Wed, Nov 27, 12:01 PM

Tue, Nov 26

werner committed rW1bf75934c7f7: Remove gpgpass for now (authored by werner).
Remove gpgpass for now
Tue, Nov 26, 11:12 AM
werner committed rGPGPASSe0832cc4d227: Include missing QDebug includes. (authored by werner).
Include missing QDebug includes.
Tue, Nov 26, 10:22 AM
werner committed rWc8af91cdbfa1: Minor fix for CLEANFILES (authored by werner).
Minor fix for CLEANFILES
Tue, Nov 26, 10:22 AM
werner committed rW31e35f0ef641: Update Kleopatra et al. (authored by werner).
Update Kleopatra et al.
Tue, Nov 26, 10:22 AM
werner added a reverting change for rWcf13e915581c: Add native_idir to PATH also in SETVARS: rWdfaca745433c: Revert "Add native_idir to PATH also in SETVARS".
Tue, Nov 26, 8:41 AM
werner committed rWdfaca745433c: Revert "Add native_idir to PATH also in SETVARS" (authored by werner).
Revert "Add native_idir to PATH also in SETVARS"
Tue, Nov 26, 8:41 AM

Mon, Nov 25

werner committed rDb07b208cf5c9: swdb: gnupg 2.4.7 (authored by werner).
swdb: gnupg 2.4.7
Mon, Nov 25, 1:29 PM
werner committed rW28fffcf02824: Update to GnuPG 2.4.7 (authored by werner).
Update to GnuPG 2.4.7
Mon, Nov 25, 12:35 PM
werner closed T7353: Release GnuPG 2.4.7 as Resolved.
Mon, Nov 25, 12:27 PM · gnupg, Release Info
werner committed rGb6e1c77b5de5: po: msgmerge for release (authored by werner).
po: msgmerge for release
Mon, Nov 25, 12:12 PM
werner committed rG5d00ced167a2: Post release updates (authored by werner).
Post release updates
Mon, Nov 25, 12:12 PM
werner committed rG7bdaf5647991: Release 2.4.7 (authored by werner).
Release 2.4.7
Mon, Nov 25, 12:12 PM
werner triaged T7428: Release GnuPG 2.4.8 as Low priority.
Mon, Nov 25, 12:11 PM · gnupg, Release Info
werner committed rG4de902816424: po: Update Traditional Chinese Translation. (authored by Kisaragi Hiu <mail@kisaragi-hiu.com>).
po: Update Traditional Chinese Translation.
Mon, Nov 25, 11:39 AM
werner changed the status of T7426: Retain binary representation of key for import->export (in particular, Ed25519 signature), a subtask of T7403: GnuPG 2.4.6 rewrites Ed25519 MPIs into non-compliant MPI form , from Open to Testing.
Mon, Nov 25, 11:13 AM · Not A Bug, gnupg24, Bug Report
werner changed the status of T7426: Retain binary representation of key for import->export (in particular, Ed25519 signature) from Open to Testing.

I cherry picked your patch for master and 2.4.

Mon, Nov 25, 11:13 AM · gnupg
werner committed rG7c378e0be78c: gpg: Fix modifying signature data by pk_verify for Ed25519. (authored by gniibe).
gpg: Fix modifying signature data by pk_verify for Ed25519.
Mon, Nov 25, 11:11 AM
werner committed rG72c5f7b0f719: common: Change daemon startup timeout from 5 to 8 seconds. (authored by werner).
common: Change daemon startup timeout from 5 to 8 seconds.
Mon, Nov 25, 11:11 AM
werner committed rG52616ae81d80: gpg: Fix modifying signature data by pk_verify for Ed25519. (authored by gniibe).
gpg: Fix modifying signature data by pk_verify for Ed25519.
Mon, Nov 25, 11:07 AM
werner committed rG73f3d98444af: common: Change daemon startup timeout from 5 to 8 seconds. (authored by werner).
common: Change daemon startup timeout from 5 to 8 seconds.
Mon, Nov 25, 10:51 AM

Fri, Nov 22

werner renamed T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 from gpg --assert-pubkey-algo cmails that ed25519 is stringer that ed448 to gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448.
Fri, Nov 22, 4:58 PM · Bug Report, OpenPGP, gnupg
werner closed T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 as Resolved.

For master fixed with rGbb6b38c24010258c7cb2da840d0a088fe43393b3 (Wrong bug id used).
Also fixed for gnupg24.

Fri, Nov 22, 4:58 PM · Bug Report, OpenPGP, gnupg
werner committed rG8e9769337f59: gpg: Fix comparing ed448 vs ed25519 with --assert-pubkey-algo. (authored by werner).
gpg: Fix comparing ed448 vs ed25519 with --assert-pubkey-algo.
Fri, Nov 22, 4:56 PM
werner committed rGbb6b38c24010: gpg: Fix comparing ed448 vs ed25519 with --assert-pubkey-algo. (authored by werner).
gpg: Fix comparing ed448 vs ed25519 with --assert-pubkey-algo.
Fri, Nov 22, 4:52 PM
werner triaged T7425: gpg --assert-pubkey-algo claims that ed25519 is stronger that ed448 as Low priority.
Fri, Nov 22, 4:42 PM · Bug Report, OpenPGP, gnupg
werner committed rG98b2b35e5c3a: doc: Explain that qualified.txt is a legacy method. (authored by werner).
doc: Explain that qualified.txt is a legacy method.
Fri, Nov 22, 1:47 PM
werner committed rGf0bca16ad3bd: doc: Explain that qualified.txt is a legacy method. (authored by werner).
doc: Explain that qualified.txt is a legacy method.
Fri, Nov 22, 1:44 PM

Thu, Nov 21

werner committed rEe15a7c411dca: autogen.sh: New command --print-tsdir. (authored by werner).
autogen.sh: New command --print-tsdir.
Thu, Nov 21, 2:51 PM
werner triaged T7415: Kleopatra: Use Breeze style on Windows as Normal priority.

We may do this for gpg4win-5 but not for the current versions.

Thu, Nov 21, 1:33 PM · gpd5x, kleopatra
werner committed rGc8c86f25fd73: gpg: Add the AEAD algo number to the DECRYPTION_INFO status line. (authored by werner).
gpg: Add the AEAD algo number to the DECRYPTION_INFO status line.
Thu, Nov 21, 11:23 AM
werner triaged T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO as Normal priority.
Thu, Nov 21, 9:55 AM · gnupg22, Bug Report
werner moved T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO from Backlog to QA on the gnupg22 board.
[GNUPG:] BEGIN_DECRYPTION
[GNUPG:] DECRYPTION_INFO 0 9 0
[GNUPG:] PLAINTEXT 62 1732178872 
[GNUPG:] PLAINTEXT_LENGTH 72
You will be advanced socially, without any special effort on your part.
[GNUPG:] DECRYPTION_OKAY
Thu, Nov 21, 9:55 AM · gnupg22, Bug Report
werner changed the status of T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO from Open to Testing.

You are right. Printing the algo was missing in gnupg22.

Thu, Nov 21, 9:52 AM · gnupg22, Bug Report

Wed, Nov 20

werner triaged T7403: GnuPG 2.4.6 rewrites Ed25519 MPIs into non-compliant MPI form as Low priority.
Wed, Nov 20, 9:02 AM · Not A Bug, gnupg24, Bug Report
werner added projects to T7403: GnuPG 2.4.6 rewrites Ed25519 MPIs into non-compliant MPI form : gnupg24, Not A Bug.

Please do not add milestone tags.

Wed, Nov 20, 9:02 AM · Not A Bug, gnupg24, Bug Report

Tue, Nov 19

werner added a comment to T7403: GnuPG 2.4.6 rewrites Ed25519 MPIs into non-compliant MPI form .

2.2. reaches EOL in 6 weeks and thus we won't look at a potential problem with no real world impact.

Tue, Nov 19, 9:32 AM · Not A Bug, gnupg24, Bug Report

Mon, Nov 18

werner committed rG7b57539cf2c4: scd: No hard lock-up when apdu_connect never returns. (authored by gniibe).
scd: No hard lock-up when apdu_connect never returns.
Mon, Nov 18, 8:57 AM
werner committed rG269d1ea10c38: gpgconf: Include a minimal secure version in the --query-swdb output. (authored by werner).
gpgconf: Include a minimal secure version in the --query-swdb output.
Mon, Nov 18, 8:57 AM

Sat, Nov 16

werner added a comment to T7323: scdaemon hangs up (when output from scdaemon is not consumed by gpg-agent).

@ikloecker indeed we try only for 5 seconds:

Sat, Nov 16, 2:59 PM · Windows, Bug Report, scd

Fri, Nov 15

werner committed rG17b766b0a3d8: gpgconf: Include a minimal secure version in the --query-swdb output. (authored by werner).
gpgconf: Include a minimal secure version in the --query-swdb output.
Fri, Nov 15, 9:35 AM

Thu, Nov 14

werner committed rOa81f52e689c7: Minor README updates (authored by werner).
Minor README updates
Thu, Nov 14, 5:43 PM
werner committed rO9630d0c28b0e: Update .gitignore (authored by werner).
Update .gitignore
Thu, Nov 14, 5:43 PM
werner triaged T7391: dev.gnupg.org: Font 'Segoe UI Emoji' causes huge word-spacing as Wishlist priority.
Thu, Nov 14, 3:17 PM · dev.gnupg.org
werner triaged T7393: Kleopatra: Use event counter CARD of gpg-agent as Normal priority.
Thu, Nov 14, 3:14 PM · gpd5x, kleopatra
werner committed rGe5f450f3bb83: gpg: Consider Kyber to be de-vs compliant. (authored by werner).
gpg: Consider Kyber to be de-vs compliant.
Thu, Nov 14, 3:13 PM
werner committed rG996e8ae3cb09: gpg: Allow "Kyber" as algorithm for the Subkey-Type keyword. (authored by werner).
gpg: Allow "Kyber" as algorithm for the Subkey-Type keyword.
Thu, Nov 14, 2:24 PM
werner triaged T7397: Kleopatra: Support Kyber generation as High priority.
Thu, Nov 14, 2:22 PM · kleopatra, gpd5x, PQC
werner committed rG7e066f614a60: gpg: For composite algos add the algo string to the colons listings. (authored by werner).
gpg: For composite algos add the algo string to the colons listings.
Thu, Nov 14, 2:04 PM
werner committed rM62b6c1f16ae0: Support the Kyber algorithm in key listings. (authored by werner).
Support the Kyber algorithm in key listings.
Thu, Nov 14, 1:06 PM

Wed, Nov 13

werner added a comment to T7393: Kleopatra: Use event counter CARD of gpg-agent .

FWIW, there is some code in gpa which uses the event counter. It was introduced with
rGPA936825b4b994cdf5900fc987abd9be7889989627

Wed, Nov 13, 4:43 PM · gpd5x, kleopatra