werner (Werner Koch)Administrator
Engineering

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (94 w, 2 d)
Roles
Administrator
Availability
Available

Recent Activity

Yesterday

werner closed T4296: Release libgpg-error 1.34 as Resolved.

News for 1.34:

Wed, Jan 16, 9:05 AM · Release Info, gpgrt
werner committed rD5d18bec60b6e: swdb: Release gpgrt 1.34 (authored by werner).
swdb: Release gpgrt 1.34
Wed, Jan 16, 9:01 AM
werner committed rE8bc75741cadf: Release 1.34 (authored by werner).
Release 1.34
Wed, Jan 16, 8:55 AM
werner committed rE2a8978d3504e: Post release updates (authored by werner).
Post release updates
Wed, Jan 16, 8:55 AM
werner committed rE5d2b20a04b52: build: Fix regression in make distcheck (authored by werner).
build: Fix regression in make distcheck
Wed, Jan 16, 8:55 AM

Mon, Jan 14

werner added a comment to T4288: Add getrandom support for the BSDs.

These are hooks so that co-operative thread libraries (like ntph) are able to yield control to the system's thread's implementation.

Mon, Jan 14, 9:02 PM · libgcrypt
werner added a comment to E432: Weekly Standup.

Last week:

  • Bookkeeping tax things, the loss for 2018 will be a minor, probably less than 10k.
  • Mail backlog
  • New emergency cleanup handler in gpgrt so that even an assert in gnupg will be able to shutdown the secmem. Right now only asserts in Libgcrypt are protected this way.
  • Mail backlog
Mon, Jan 14, 9:01 AM
werner is attending E432: Weekly Standup.
Mon, Jan 14, 8:55 AM

Fri, Jan 11

werner edited projects for T4320: tar archive encryption failed with japanese characters, added: gpg4win; removed gnupg (gpg23).
Fri, Jan 11, 4:49 PM · gpg4win, kleopatra, Bug Report
werner added a comment to T2203: gpgconf fail to start gpg-agent.

Your home is under /dev/ - really? Please run

Fri, Jan 11, 4:45 PM · Not A Bug

Thu, Jan 10

werner triaged T4317: libgcrypt: cipher/camellia-aarch64.S is not PIC as High priority.

Set to high because it breaks a build.

Thu, Jan 10, 1:31 PM · asm, libgcrypt, Bug Report

Wed, Jan 9

werner committed rE07e8c2e9ed04: doc: Describe some causes for GPG_ERR_NO_NAME. (authored by werner).
doc: Describe some causes for GPG_ERR_NO_NAME.
Wed, Jan 9, 11:43 AM
werner added a comment to T3322: Set a policy for logo use.

In another project in the early 2000ies we had a lawyer from one of those Königsallee lawfirsm as partner. IIRC the estimated cost for a word trademark in the EU, US, and JP was in the range of 10k for just a couple of years.

Wed, Jan 9, 8:06 AM · Verein, gpgweb
werner reopened T3815: tests fail in 2021 as "Open".

I don't know why @BenM closed this bug given that he mentioned that the qt part is yet not solved.

Wed, Jan 9, 8:00 AM · qt, Python, gpgme, Bug Report

Tue, Jan 8

werner committed rG6c000d4b78b8: doc: Mark keyserver-options timeout and http-proxy as obsolete. (authored by werner).
doc: Mark keyserver-options timeout and http-proxy as obsolete.
Tue, Jan 8, 11:22 AM

Mon, Jan 7

werner added a comment to T4311: Can't generate a key - Invalid argument.

Version of gpa and best also of gpgme? The latest gpa releases show that in the About dialog.
The installed version of gpg is also of inetrest. In a shell enter "gpg --version".

Mon, Jan 7, 2:26 PM · gpa

Sat, Jan 5

werner closed T4309: gpg agent in ssh-support does not import RSA-Keys greater than 4160 bits as Wontfix.

Right. We won't change that though. Sorry.

Sat, Jan 5, 8:23 PM · gpgagent, Bug Report

Fri, Jan 4

werner committed rE933bfd7b652a: core: New functions gpgrt_abort and gpgrt_add_emergency_cleanup. (authored by werner).
core: New functions gpgrt_abort and gpgrt_add_emergency_cleanup.
Fri, Jan 4, 2:56 PM

Thu, Jan 3

werner committed rG405feca2bdee: scd: Add two variants to the set of ISO7816 functions. (authored by werner).
scd: Add two variants to the set of ISO7816 functions.
Thu, Jan 3, 3:20 PM
werner committed rGcca2b87e79cd: scd: Support "READKEY --advanced" for all cards. (authored by werner).
scd: Support "READKEY --advanced" for all cards.
Thu, Jan 3, 3:20 PM
werner added a project to T4308: scdaemon does not survive suspend/resume with Yubikey4: yubikey.
Thu, Jan 3, 10:22 AM · yubikey, Bug Report

Wed, Jan 2

werner committed rG3d766924b412: doc: Typo fix in code comment (authored by werner).
doc: Typo fix in code comment
Wed, Jan 2, 4:50 PM
werner changed the end date for E422: Weekly Standup from Dec 30 2019, 11:30 AM to Dec 22 2025, 11:00 AM.
Wed, Jan 2, 9:38 AM

Mon, Dec 31

werner triaged T4303: scheme.c:875:33: error: expected ‘;’ before ‘abort’ as Low priority.

Please never ever define NDEBUG. This is a severe misfeature of the assert macro.

Mon, Dec 31, 4:58 PM · Bug Report

Fri, Dec 28

werner renamed T4299: Problem to verify PGP key used by Microsoft from Problem to verify PGP key to Problem to verify PGP key used by Microsoft.
Fri, Dec 28, 6:14 PM · gpgol, gpg4win
werner triaged T4302: GPA wrongly reports failure to retrieve key as Normal priority.
Fri, Dec 28, 6:12 PM · gpa, Bug Report

Fri, Dec 21

werner updated subscribers of T4299: Problem to verify PGP key used by Microsoft.

Thanks. The mail is a standard, non-crypto mail with one attachment. That attachment is a TNEF file which has according to ytnef(1) just one file. That file has the name gpgolPGP.dat and contains a clearsigned message.

Fri, Dec 21, 1:19 PM · gpgol, gpg4win
werner added a comment to T4299: Problem to verify PGP key used by Microsoft.

Is it possible that you upload or send me a copy of such a mail (wk gnupg.org)? ZIP or tar the eml file and send it in an encrypted mail to me to make sure it won't be modified on the transport.

Fri, Dec 21, 8:37 AM · gpgol, gpg4win

Thu, Dec 20

werner triaged T4297: The browser integration component is not installed by default as High priority.
Thu, Dec 20, 8:45 AM · gpgme, UI, gpg4win
werner added a subtask for T4294: Release Libgcrypt 1.9.0: T4288: Add getrandom support for the BSDs.
Thu, Dec 20, 8:44 AM · Release Info, libgcrypt
werner added a parent task for T4288: Add getrandom support for the BSDs: T4294: Release Libgcrypt 1.9.0.
Thu, Dec 20, 8:44 AM · libgcrypt
werner edited projects for T4299: Problem to verify PGP key used by Microsoft, added: FAQ, OpenPGP; removed Bug Report.
Thu, Dec 20, 8:40 AM · gpgol, gpg4win

Wed, Dec 19

werner added a comment to T4288: Add getrandom support for the BSDs.

I think we should stick with the syscall for Linux.

Wed, Dec 19, 8:00 AM · libgcrypt
werner added a comment to T4273: agent: Request insertion of smartcard when no card present.

FWIW, the canonical way to make sure that gpg-agent has been started is to run

Wed, Dec 19, 7:58 AM · Feature Request, Documentation, gpgagent

Tue, Dec 18

werner lowered the priority of T4200: Evaluate sub-addresses in gpg and wkd from High to Normal.
Tue, Dec 18, 9:30 AM · gnupg, Feature Request
werner created T4296: Release libgpg-error 1.34.
Tue, Dec 18, 9:17 AM · Release Info, gpgrt
werner committed rG21fc08914867: Silence compiler warnings new with gcc 8. (authored by werner).
Silence compiler warnings new with gcc 8.
Tue, Dec 18, 9:13 AM
werner committed rG16424d8a34c7: wks: Do not use compression for the encrypted data. (authored by werner).
wks: Do not use compression for the encrypted data.
Tue, Dec 18, 9:13 AM
werner committed rG70a8db0333e3: wks: Do not use compression for the encrypted data. (authored by werner).
wks: Do not use compression for the encrypted data.
Tue, Dec 18, 8:24 AM
werner committed rD1849053f2930: swdb: Update sqlite (authored by werner).
swdb: Update sqlite
Tue, Dec 18, 7:53 AM

Dec 17 2018

werner committed rG40c307fa8d0e: Silence a few compiler warnings new with gcc 8. (authored by werner).
Silence a few compiler warnings new with gcc 8.
Dec 17 2018, 7:02 PM
werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

A list of SHA-1 fingerprints for the valid certificates. With our without colons.

Dec 17 2018, 5:25 PM · S/MIME
werner committed rM8b41fb08f00f: core: Silence newer compiler warnings. (authored by werner).
core: Silence newer compiler warnings.
Dec 17 2018, 4:53 PM
werner reinstated E422: Weekly Standup.
Dec 17 2018, 11:28 AM
werner reinstated E418: Weekly Standup.
Dec 17 2018, 11:28 AM
werner reinstated E423: Weekly Standup.
Dec 17 2018, 11:28 AM
werner cancelled E418: Weekly Standup.
Dec 17 2018, 11:27 AM
werner set E418: Weekly Standup to repeat weekly.
Dec 17 2018, 11:27 AM
werner created E418: Weekly Standup.
Dec 17 2018, 11:26 AM
werner cancelled E416: Weekly Standup.
Dec 17 2018, 11:23 AM
werner is attending E415: Weekly Standup.
Dec 17 2018, 10:27 AM
werner added a comment to E415: Weekly Standup.

Last week:

  • GnuPG 2.2.12 released
  • Meeting with RK for the Verein
Dec 17 2018, 10:24 AM
werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

I had to look it up in the code and man page too ;-)

Dec 17 2018, 10:22 AM · S/MIME
werner added subtasks for T4294: Release Libgcrypt 1.9.0: T4293: Add dedicated X25519 function to Libcgrypt , T4068: libgcrypt 1.8.3 make check errors, T4243: Test failure in libgcrypt-1.8.4, T1303: Please support GCRYSEXP_FMT_BASE64, T4274: Fail selftests when checksum file is missing in FIPS mode only.
Dec 17 2018, 10:11 AM · Release Info, libgcrypt
werner added a parent task for T1303: Please support GCRYSEXP_FMT_BASE64: T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:11 AM · Feature Request, libgcrypt
werner added a parent task for T4243: Test failure in libgcrypt-1.8.4: T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:11 AM · Documentation, Tests, libgcrypt, Bug Report
werner added a parent task for T4068: libgcrypt 1.8.3 make check errors: T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:11 AM · Documentation, libgcrypt
werner added a parent task for T4274: Fail selftests when checksum file is missing in FIPS mode only: T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:11 AM · libgcrypt, Bug Report
werner added a parent task for T4293: Add dedicated X25519 function to Libcgrypt : T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:11 AM · libgcrypt
werner added projects to T4294: Release Libgcrypt 1.9.0: libgcrypt, Release Info.
Dec 17 2018, 10:10 AM · Release Info, libgcrypt
werner created T4294: Release Libgcrypt 1.9.0.
Dec 17 2018, 10:09 AM · Release Info, libgcrypt
werner renamed T4293: Add dedicated X25519 function to Libcgrypt from Add dedicated X25519 fucntion to Libcgrypt to Add dedicated X25519 function to Libcgrypt .
Dec 17 2018, 10:07 AM · libgcrypt
werner closed T3223: gcry_mpi_ec_mul with Montgomery curves produces segfault as Resolved.

See T4293

Dec 17 2018, 10:07 AM · libgcrypt, Bug Report
werner created T4293: Add dedicated X25519 function to Libcgrypt .
Dec 17 2018, 10:06 AM · libgcrypt
werner closed T3731: gcry_pk_genkey() segfaults for ecdsa 384 as Resolved.

With GCRYCTL_AUTO_EXPAND_SECMEM we won't anymore run out of secure memory. This has even silent been backported to 1.8.x (using the numerical value of that constant) and is for long an option of gpg-agent. Thus closing.

Dec 17 2018, 10:01 AM · libgcrypt, Bug Report
werner closed T3982: libgcrypt.m4 is not multilib friendly as Resolved.

Closing, given that we implemented a general solution; see the parent task.

Dec 17 2018, 9:57 AM · libgcrypt, Bug Report
werner closed T3982: libgcrypt.m4 is not multilib friendly, a subtask of T4217: {libksba,libgcrypt,ntbtls,libassuan,npth}.m4, {libksba,libgcrypt,ntbtls,libassuan}-config script and gpg-error-config, as Resolved.
Dec 17 2018, 9:57 AM · npth, libassuan, ntbtls, libgcrypt, libksba
werner closed T3737: libgcrypt's gcry_kdf_scrypt has incorrectly set N and P values as Invalid.

I have seen no responses on your two mails to the ML and given th athere is no concrete protocol bug, I close this issue. If you can show a concrete bug please re-open this issue again.

Dec 17 2018, 9:55 AM · libgcrypt, Bug Report
werner added a comment to D472: Limit active connections for gpg-agent.

I don't think that this is a good solution for a problem we could solve much easier but fear to do that due to kind of crypto politics.

Dec 17 2018, 9:49 AM
werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

Is using

Dec 17 2018, 9:44 AM · S/MIME

Dec 15 2018

werner created T4290: Release GnuPG 2.1.13.
Dec 15 2018, 4:39 PM · Release Info, gnupg (gpg22)

Dec 14 2018

werner committed rDb4b0f718320c: drafts,openpgp-webkey-service: A MUST not MUST be a MUST NOT. (authored by werner).
drafts,openpgp-webkey-service: A MUST not MUST be a MUST NOT.
Dec 14 2018, 5:42 PM
werner committed rD0eaf5090fd44: web: News about 2.2.12 (authored by werner).
web: News about 2.2.12
Dec 14 2018, 4:05 PM
werner closed T4289: GnuPG 2.1.12 release as Resolved.
Dec 14 2018, 4:01 PM · gnupg (gpg22), Release Info
werner closed T4289: GnuPG 2.1.12 release, a subtask of T4264: Gpg4win 3.1.6, as Resolved.
Dec 14 2018, 4:01 PM · Release Info, gpg4win
werner committed rD2ff9531591f9: swdb: Release GnuPG 2.2.12 (authored by werner).
swdb: Release GnuPG 2.2.12
Dec 14 2018, 3:50 PM
werner committed rG3520a7b1fcd8: Post release updates (authored by werner).
Post release updates
Dec 14 2018, 3:46 PM
werner committed rG7d8f4ee7cf56: Release 2.2.12 (authored by werner).
Release 2.2.12
Dec 14 2018, 3:46 PM
werner committed rG0ed37d023bae: po: Auto-update (authored by werner).
po: Auto-update
Dec 14 2018, 3:46 PM
werner added a comment to T4159: Kleopatra fails to create new Key Pair.

The usual reasons for corruptions of binary data are FTP transfers in text mode; or opening a file with a Windows editor.

Dec 14 2018, 2:56 PM · gnupg, Bug Report, gpg4win
werner added a comment to T4289: GnuPG 2.1.12 release.

NEWS are:

Dec 14 2018, 1:55 PM · gnupg (gpg22), Release Info
werner added a subtask for T4264: Gpg4win 3.1.6: T4289: GnuPG 2.1.12 release.
Dec 14 2018, 1:30 PM · Release Info, gpg4win
werner added a parent task for T4289: GnuPG 2.1.12 release: T4264: Gpg4win 3.1.6.
Dec 14 2018, 1:30 PM · gnupg (gpg22), Release Info
werner created T4289: GnuPG 2.1.12 release.
Dec 14 2018, 1:29 PM · gnupg (gpg22), Release Info
werner added a comment to T4118: GpgOL: Mitigate S/MIME Denial of Service due to CRL stalling.

Interesting idea but it does not help against attacks because all root CA are considered equal (virtually cross-signed). Thus a single not checked root CA allows to subvert all certificates.

Dec 14 2018, 1:26 PM · gpg4win, gpgol
werner added a project to T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows: S/MIME.
Dec 14 2018, 10:46 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win
werner committed rD18b09effc2b8: drafts,openpgp-webkey-service: Remark on 401 server responses. (authored by werner).
drafts,openpgp-webkey-service: Remark on 401 server responses.
Dec 14 2018, 10:04 AM
werner committed rD733acdda1a44: drafts,openpgp-webkey-service: Fix flaws in the last revision. (authored by werner).
drafts,openpgp-webkey-service: Fix flaws in the last revision.
Dec 14 2018, 10:04 AM
werner committed rG35a91f1409c3: New simplified Chinese translation (authored by Chuhao Li <lchopn@gmail.com>).
New simplified Chinese translation
Dec 14 2018, 8:38 AM

Dec 13 2018

werner committed rDa51e1d2bf99a: Add note about wildcard DNS. (authored by werner).
Add note about wildcard DNS.
Dec 13 2018, 7:14 PM
werner created T4288: Add getrandom support for the BSDs.
Dec 13 2018, 4:29 PM · libgcrypt
werner committed rA1f038e94e19d: Post release updates (authored by werner).
Post release updates
Dec 13 2018, 10:46 AM
werner committed rA86e1d17de081: Release 2.5.2 (authored by werner).
Release 2.5.2
Dec 13 2018, 10:46 AM
werner claimed T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix.
Dec 13 2018, 9:38 AM · S/MIME, Feature Request, libksba
werner committed rD67dd939968ef: swdb: Release libassuan 2.5.2 (authored by werner).
swdb: Release libassuan 2.5.2
Dec 13 2018, 9:15 AM

Dec 12 2018

werner committed rD59a8fb52b17b: verein: Add a link to the token page. (authored by werner).
verein: Add a link to the token page.
Dec 12 2018, 9:12 PM
werner committed rD3ab409acd60d: verein: Start a project to develop a membership gadget (authored by werner).
verein: Start a project to develop a membership gadget
Dec 12 2018, 9:06 PM
werner committed rC876f7280e860: secmem: Prepare for easier debugging. (authored by werner).
secmem: Prepare for easier debugging.
Dec 12 2018, 9:34 AM
werner added a project to T4198: Pinentry doesn't capture input correctly, crashes terminal instead: pinentry.
Dec 12 2018, 9:18 AM · pinentry, Bug Report
werner triaged T4105: Inconsistent output for revocation keys in --list-keys --with-colons as Normal priority.
Dec 12 2018, 9:17 AM · Documentation, gnupg, Bug Report