Page MenuHome GnuPG

werner (Werner Koch)
EngineeringAdministrator

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Monday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (339 w, 5 d)
Roles
Administrator
Availability
Available

Recent Activity

Today

werner triaged T6737: libgpg-error: String filter should *NOT* be called with non-nul-terminated string as Normal priority.

I guess we should add an extended API to set the filter.

Sat, Sep 30, 2:08 PM · gpgrt, Bug Report

Yesterday

werner claimed T6741: gpg 2.3+ may display garbled characters for date and time in non-English Windows.

Thanks for the report and the helpful suggestion. I was anyway about to change the time format but your suggestion is better.

Fri, Sep 29, 11:43 AM · Windows, gnupg24, Bug Report
werner claimed T6736: Year 2038 issue for key validity date.

I am not sure whether we need to fix things in kleo but at some places gpg uses atoi() to parse the seconds since epoch. This should be fixed because that is the way gpgme provides the expiry time. I will also look into the ISO date string parser.

Fri, Sep 29, 11:41 AM · Bug Report, gnupg24, gnupg22

Tue, Sep 26

werner triaged T6730: Filename for multiple sigend pdf's as Normal priority.
Tue, Sep 26, 3:22 PM · okular
werner triaged T6731: Default save dir in okular/windows is wrong as Normal priority.
Tue, Sep 26, 3:21 PM · okular
werner triaged T6732: Visual representation of signature is a bit ugly as Normal priority.
Tue, Sep 26, 3:21 PM · okular
werner closed T2829: dirmngr: Timeouts are too long as Resolved.

Lot's of things changed in the meantime.

Tue, Sep 26, 2:28 PM · gnupg, Bug Report, dirmngr
werner closed T4467: dirmngr keyserver option (and legacy gpg --keyserver) should assume `hkps://` or `hkp://` if no scheme is present as Wontfix.

HKP keyservers are anyway out of fashion and thus we won't put anymore effort into his part of the code.

Tue, Sep 26, 2:27 PM · dirmngr
werner closed T2849: dirmngr fails to terminate on SIGTERM if an existing connection is open as Wontfix.
Tue, Sep 26, 2:24 PM · Too Old, gnupg, Bug Report, dirmngr
werner closed T2740: dirmngr fails (and gets stuck failing) when network changes as Wontfix.

Lot's of changes since 2.4.

Tue, Sep 26, 2:23 PM · Too Old, gnupg, Bug Report, dirmngr
werner committed rGc91f759bafca: common: Add gnupg_memstr to replace static versions. (authored by werner).
common: Add gnupg_memstr to replace static versions.
Tue, Sep 26, 2:20 PM
werner committed rGa5e33618f421: dirmngr: Fix handling of the HTTP Content-Length (authored by werner).
dirmngr: Fix handling of the HTTP Content-Length
Tue, Sep 26, 2:20 PM
werner committed rG3054016db9da: dirmngr: Require gnutls 3.2 (authored by werner).
dirmngr: Require gnutls 3.2
Tue, Sep 26, 2:20 PM
werner committed rG668deeded974: dirmngr: Improve error codes returned from http fetching. (authored by werner).
dirmngr: Improve error codes returned from http fetching.
Tue, Sep 26, 2:20 PM
werner committed rG1e120f5a8d52: dirmngr: Implement automatic proxy detection on Windows. (authored by werner).
dirmngr: Implement automatic proxy detection on Windows.
Tue, Sep 26, 2:20 PM
werner committed rGfed33baed1cb: dirmngr: Further simplify the http code and improve a message. (authored by werner).
dirmngr: Further simplify the http code and improve a message.
Tue, Sep 26, 2:20 PM
werner committed rG845d5e61d8e1: dirmngr: Cleanup the http module. (authored by werner).
dirmngr: Cleanup the http module.
Tue, Sep 26, 2:20 PM
werner edited projects for T3380: Use exponential backoff when spawning agent and dirmngr, added: gnupg24; removed gnupg.
Tue, Sep 26, 1:29 PM · gnupg24, Feature Request
werner committed rG9f1c11cd3f45: dirmngr: Fix handling of the HTTP Content-Length (authored by werner).
dirmngr: Fix handling of the HTTP Content-Length
Tue, Sep 26, 12:42 PM
werner committed rG50da09fb626c: common: Add gnupg_memstr to repalce static versions. (authored by werner).
common: Add gnupg_memstr to repalce static versions.
Tue, Sep 26, 12:42 PM
werner committed rG5fd5e7433d5e: dirmngr: Require gnutls 3.2 (authored by werner).
dirmngr: Require gnutls 3.2
Tue, Sep 26, 12:42 PM
werner triaged T6733: yubikey nfc 5 key storage does not work with GnuPG when admin PIN is non-standard. as Normal priority.

Eva and me tested this using our 2.2.42 release candidate on Linux and
on Windows and were not able to replicate your problem.

Tue, Sep 26, 11:43 AM · can't replicate, scd, Bug Report
werner triaged T6735: Implement _IOLBF for estream as Normal priority.
Tue, Sep 26, 9:24 AM · Bug Report, gpgrt

Mon, Sep 25

werner edited projects for T5447: Add feature to delete a key from an LDAP server, added: Restricted Project; removed gnupg (gpg23).

Actually, a GUI to maintain the keys in an LDAP would be helpful for many sites.

Mon, Sep 25, 4:17 PM · Restricted Project, gnupg24, LDAP
werner added projects to T6729: scdaemon 'Operation not supported by device' on macOS unless racing for first (?) read on boot: MacOS, scd, gnupg.
Mon, Sep 25, 9:35 AM · gnupg, scd, MacOS, Bug Report
werner added a comment to T6729: scdaemon 'Operation not supported by device' on macOS unless racing for first (?) read on boot.

Instead of all the debug options, please use

Mon, Sep 25, 9:35 AM · gnupg, scd, MacOS, Bug Report
werner added a comment to T6730: Filename for multiple sigend pdf's.

From my practical expexperience, @ebo's suggestion will work best for me. The other thing I have seen is to not use -signed but to append the initials of the signers.

Mon, Sep 25, 9:29 AM · okular

Thu, Sep 21

werner added a project to T6723: GPG hangs if the provided TTY is invalid: MacOS.
Thu, Sep 21, 5:20 PM · MacOS, pinentry, Support

Wed, Sep 20

werner added projects to T6723: GPG hangs if the provided TTY is invalid: Support, pinentry.

gpg -v -K does not require a pinentry. You can check this by adding debug-pinentry and log-file /some/file to the gpg-agent.conf - you should not see any pinentry invocation.

Wed, Sep 20, 8:51 AM · MacOS, pinentry, Support

Tue, Sep 19

werner committed rG9fe73df21a6c: dirmngr: Improve error codes returned from http fetching. (authored by werner).
dirmngr: Improve error codes returned from http fetching.
Tue, Sep 19, 4:52 PM
werner committed rG63acf06efb97: dirmngr: Implement automatic proxy detection on Windows. (authored by werner).
dirmngr: Implement automatic proxy detection on Windows.
Tue, Sep 19, 4:52 PM
werner committed rG7659c0a2b01d: dirmngr: Further simplify the http code and improve a message. (authored by werner).
dirmngr: Further simplify the http code and improve a message.
Tue, Sep 19, 4:52 PM

Mon, Sep 18

werner committed rGf4b72c4eb7f3: dirmngr: Cleanup the http module. (authored by werner).
dirmngr: Cleanup the http module.
Mon, Sep 18, 5:38 PM
werner created an object: @gnupg.org.
Mon, Sep 18, 5:21 PM
werner created an object: K.
Mon, Sep 18, 5:21 PM
werner created an object: Erner.
Mon, Sep 18, 5:20 PM
werner renamed Campaign Artwork from Artwork to Campaign Artwork.
Mon, Sep 18, 5:19 PM
werner moved T6059: ntbtls: use of shorter hash for ECC from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Sep 18, 4:03 PM · Restricted Project, ntbtls
werner added a project to T6059: ntbtls: use of shorter hash for ECC: Restricted Project.

Well, even out new versions.gnupg.org uses a shorter hash. Better get that released asap.

Mon, Sep 18, 4:03 PM · Restricted Project, ntbtls
werner committed rGde84c58d90a7: gpg: Fix --no-utf8-strings. (authored by werner).
gpg: Fix --no-utf8-strings.
Mon, Sep 18, 11:31 AM
werner committed rG2a2846959f11: gpg: Fix --no-utf8-strings. (authored by werner).
gpg: Fix --no-utf8-strings.
Mon, Sep 18, 11:31 AM
werner renamed T6719: Support Proxy-Authorization: Negotiate on Windows from For WIndows support Proxy-Authorization: Negotiate to Support Proxy-Authorization: Negotiate on Windows.
Mon, Sep 18, 9:18 AM · gnupg24, gnupg22, Feature Request, Restricted Project

Fri, Sep 15

werner added a comment to T6686: GPG4win exchange issue decrypt message from Macos GPGtools.

I guess you need to wait until we do a new release. If your company relies on this software it might be a good idea to enter into a support contract as other do.

Fri, Sep 15, 11:26 AM · MacOS, Support, gpg4win
werner committed rGbf662d0f93af: gpg: Add --list-filter properties sig_expires/sig_expires_d (authored by Robin H. Johnson via Gnupg-devel <gnupg-devel@gnupg.org>).
gpg: Add --list-filter properties sig_expires/sig_expires_d
Fri, Sep 15, 10:44 AM
werner triaged T6719: Support Proxy-Authorization: Negotiate on Windows as High priority.
Fri, Sep 15, 9:06 AM · gnupg24, gnupg22, Feature Request, Restricted Project
werner added a comment to T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used.

For Windows things are actually more complicate. It seems to be common practise of sysadmins to provide PAC files which are used to map URLs to proxys and to decide whether a proxy is to be used at all. Fortunately Windows provides an API to find the proxy for a specific URL. We should use this.

Fri, Sep 15, 9:03 AM · Feature Request, gnupg, Restricted Project
werner triaged T6718: Website gnupg.org - navi and menu not accessible by keyboard with Tab key or Spatial Navigation as Normal priority.

The site is on purpose w/o Javascript which might be the cause for things you reported. But I agree that the tab order is not as one would expect.

Fri, Sep 15, 8:55 AM · dev.gnupg.org, a11y

Wed, Sep 13

werner raised the priority of T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used from Normal to High.
Wed, Sep 13, 3:45 PM · Feature Request, gnupg, Restricted Project
werner added a comment to T5960: Kleopatra: Encoding problems with GnuPG output on Windows.

See also T4365 and rGb912f07cdf (gnupg-2.2)

Wed, Sep 13, 2:06 PM · Restricted Project, kleopatra
werner added a comment to T5960: Kleopatra: Encoding problems with GnuPG output on Windows.

gpgconf --show-codepages ist just a debugging aid. We use the code pages only for output to the console. The problem we see here is about log messages and they are always send as utf8 to stderr or the pipe used instead - without any translation.

Wed, Sep 13, 12:45 PM · Restricted Project, kleopatra

Tue, Sep 12

werner triaged T6717: Fix lists.gnupg.org bounces as Normal priority.
Tue, Sep 12, 6:36 PM · dev.gnupg.org

Mon, Sep 11

werner added a project to T6714: you cannot be sure who encrypted this message as it is not signed: gpgol.
Mon, Sep 11, 9:05 PM · gpgol, Bug Report, gpg4win
werner triaged T6716: Enhancement: Way to choose or remember the Sign and Encrypt options at Sign and Encrypt Files -window as Normal priority.
Mon, Sep 11, 9:03 PM · Feature Request, gpg4win
werner committed rG936954a18a2d: dirmngr: Relax the detection of the "none" keyserver. (authored by werner).
dirmngr: Relax the detection of the "none" keyserver.
Mon, Sep 11, 11:32 AM
werner committed rG4fc745bc43a7: dirmngr: Relax the detection of the "none" keyserver. (authored by werner).
dirmngr: Relax the detection of the "none" keyserver.
Mon, Sep 11, 11:29 AM

Fri, Sep 8

werner moved T6559: GPGSM: "always trust like override" or "force" option from Backlog to QA for next release on the gpgme board.
Fri, Sep 8, 3:45 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
werner added a project to T6559: GPGSM: "always trust like override" or "force" option: gpgme.
Fri, Sep 8, 3:45 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
werner created gpgme (gpgme 1.23.x).
Fri, Sep 8, 3:43 PM
werner moved T6534: gpg's progress_filter needs to use uint64_t from Backlog to done on the gpgme board.

Was already with gpgme 1.21.0. Note that I used the done column but in future a milestone would be more useful than that catch all "done".

Fri, Sep 8, 3:41 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), gpgme, Feature Request, Restricted Project, Windows
werner added a comment to T6448: NSIS: Fix g4wihelp runonce and path_add for recent NSIS Versions.

Also fixed for gnupg22

Fri, Sep 8, 3:33 PM · Restricted Project, Installer
werner committed rG1964a2a4ae4a: speedo,w32: Adjustments for the new Unicode NSIS plugins. (authored by werner).
speedo,w32: Adjustments for the new Unicode NSIS plugins.
Fri, Sep 8, 3:33 PM
werner committed rGe2b549f1c726: speedo: Update NSIS helper DLL from Gpg4win (authored by werner).
speedo: Update NSIS helper DLL from Gpg4win
Fri, Sep 8, 3:33 PM

Thu, Sep 7

werner committed rG6c9db0110121: gpg: New option --add-desig-revoker (authored by werner).
gpg: New option --add-desig-revoker
Thu, Sep 7, 7:17 PM
werner committed rW5c7645113c82: Update gnupg-2.2 to today's snapshot. (authored by werner).
Update gnupg-2.2 to today's snapshot.
Thu, Sep 7, 6:26 PM
werner committed rG8c8608425a0f: Prepare NEWS for a snapshot release (authored by werner).
Prepare NEWS for a snapshot release
Thu, Sep 7, 5:35 PM
werner committed rG8d01725a96b5: common: Never remove /dev/null. (authored by werner).
common: Never remove /dev/null.
Thu, Sep 7, 5:27 PM
werner committed rG7f9e05d73f2c: common: Never remove /dev/null. (authored by werner).
common: Never remove /dev/null.
Thu, Sep 7, 5:27 PM
werner committed rG6d45fcdd3c3e: agent: Add trustlist flag "de-vs". (authored by werner).
agent: Add trustlist flag "de-vs".
Thu, Sep 7, 5:14 PM
werner committed rG7e320a89c201: agent: New flag "qual" for the trustlist.txt. (authored by werner).
agent: New flag "qual" for the trustlist.txt.
Thu, Sep 7, 5:14 PM
werner committed rG3d3b941ce9fd: gpgsm: Create binary detached sigs with definite form length octets. (authored by werner).
gpgsm: Create binary detached sigs with definite form length octets.
Thu, Sep 7, 5:07 PM
werner committed rG6bdf11f67150: gpgsm: Strip trailing zeroes from detached signatures. (authored by werner).
gpgsm: Strip trailing zeroes from detached signatures.
Thu, Sep 7, 5:07 PM
werner triaged T6710: Improve Speedo for Linux to set DT_RUNPATH. as Normal priority.
Thu, Sep 7, 3:55 PM · Feature Request, gnupg24
werner raised a concern with rMTPd3fc19ccfa57: Add test for decrypting email.
Thu, Sep 7, 2:10 PM
werner edited projects for T1235: adding automatic refresh-key, added: gnupg22, gnupg24; removed gnupg.
Thu, Sep 7, 11:53 AM · gnupg24, gnupg22, Restricted Project, Feature Request
werner updated subscribers of T6695: Spaces in filenames to the appimages are not correctly handled. .

@ebo: I just a did a test build: gnupg-vs-desktop-3.2.0-beta178-x86_64.AppImage in my directory

Thu, Sep 7, 11:13 AM · Restricted Project, gpd, vsd, AppImage, Bug Report
werner committed rGa6e47400c783: doc: Add missing NEWS entry for next release (authored by werner).
doc: Add missing NEWS entry for next release
Thu, Sep 7, 11:11 AM
werner added a comment to T6332: GPG: Extend / rework "is_file_compressed".

This has been well tested during development and is thus ready for a release.

Thu, Sep 7, 11:09 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), Restricted Project
werner moved T6332: GPG: Extend / rework "is_file_compressed" from QA to gnupg-2.2.42 on the gnupg22 board.
Thu, Sep 7, 11:08 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.1), Restricted Project
werner edited projects for T6329: Extend --min-rsa-length by a start date, added: gnupg; removed Restricted Project, gnupg22.
Thu, Sep 7, 11:05 AM · gnupg, Feature Request

Wed, Sep 6

werner claimed T6556: gpgtar: Removes existing output file on error.
Wed, Sep 6, 8:07 PM · gnupg22, gnupg24, Restricted Project, gpgtar, Bug Report
werner added a comment to T6556: gpgtar: Removes existing output file on error.

That should be easy on Unix but on Windows we have the nul nul: and iirc also /dev/nul.

Wed, Sep 6, 8:07 PM · gnupg22, gnupg24, Restricted Project, gpgtar, Bug Report
werner added a comment to T6481: BEGIN_ENCRYPTION status output happens later in 2.4.1 (breaks Emacs's EasyPG).

ack

Wed, Sep 6, 8:00 PM · Emacs, gnupg, Bug Report
werner committed rGac498107cd8d: build: Fix make distcheck (authored by werner).
build: Fix make distcheck
Wed, Sep 6, 4:23 PM
werner lowered the priority of T6481: BEGIN_ENCRYPTION status output happens later in 2.4.1 (breaks Emacs's EasyPG) from High to Low.

We have a fix for now and thus I lower the priority. Given that EasyPG mimics the GPGME API we should here also use another pipe to convey the passphrase (e.g. for symmetric encryption).

Wed, Sep 6, 2:32 PM · Emacs, gnupg, Bug Report
werner removed a project from T3927: gpgsm certificate import fails because of hardcoded password length limitation: gnupg22.

I don't see a value to do this for 2.2 and introduce a regression with that.

Wed, Sep 6, 2:24 PM · Feature Request, gnupg24, S/MIME
werner added a comment to T6556: gpgtar: Removes existing output file on error.

@iklocker: Which gpg bug to you mean?

Wed, Sep 6, 2:21 PM · gnupg22, gnupg24, Restricted Project, gpgtar, Bug Report
werner closed T6182: Kleopatra: "general error" on wrong PIN input during certification as Resolved.

Seems to be solved in the current version (vsd 3.2.0-beta178).

Wed, Sep 6, 2:05 PM · Restricted Project, kleopatra
werner triaged T6694: Random numbers from gpgme as Normal priority.

It might actually be useful to have an random number API in gpgme. When we do that we can also add a way t search for random numbers with an upper limit in each octet.

Wed, Sep 6, 12:20 PM · gpgme, Feature Request
werner triaged T6707: Mimetreeparser can't open p7m as Normal priority.
Wed, Sep 6, 12:17 PM · kleopatra
werner moved T6399: Missing trustdb check on import of certificate from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Wed, Sep 6, 12:15 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project
werner changed the status of T6399: Missing trustdb check on import of certificate from Open to Testing.

Bugs goes back to 2002 where we stopped checking trust for keys without any signature. This was really useful but has this strange behaviour.

Wed, Sep 6, 12:15 PM · gnupg22 (gnupg-2.2.42), OpenPGP, Restricted Project
werner committed rGa02f3cc4e870: gpg: Fix validity of re-imported keys. (authored by werner).
gpg: Fix validity of re-imported keys.
Wed, Sep 6, 12:13 PM
werner committed rG80e442348dd8: gpg: Fix validity of re-imported keys. (authored by werner).
gpg: Fix validity of re-imported keys.
Wed, Sep 6, 12:10 PM
werner added a comment to T6708: Allow to inhibit the use of a default PGP keyserver.

BTW, with one of the recent gpgme fixes we now get

$~/b/gpgme/tests/run-keylist  --extern --verbose foo
run-keylist: file /home/wk/s/gpgme/tests/run-keylist.c line 414: <Dirmngr> No keyserver available

which is what users (and kleopatra) expects.

Wed, Sep 6, 9:57 AM · Restricted Project, kleopatra, vsd, Feature Request, gnupg24, gnupg22
werner committed rG0aa32e2429bb: dirmngr: Allow conf files to disable default keyservers. (authored by werner).
dirmngr: Allow conf files to disable default keyservers.
Wed, Sep 6, 9:53 AM
werner committed rG0ad13023905d: dirmngr: Allow conf files to disable default keyservers. (authored by werner).
dirmngr: Allow conf files to disable default keyservers.
Wed, Sep 6, 9:53 AM
werner moved T6708: Allow to inhibit the use of a default PGP keyserver from Backlog to QA on the gnupg24 board.
Wed, Sep 6, 9:52 AM · Restricted Project, kleopatra, vsd, Feature Request, gnupg24, gnupg22
werner added a project to T6708: Allow to inhibit the use of a default PGP keyserver: vsd.

Note that for vsd we also need to change our default configuration file. The new "none" value provides a better error message than the old default of assuming that the AD carries the keyserver (which it does not in practise).

Wed, Sep 6, 9:52 AM · Restricted Project, kleopatra, vsd, Feature Request, gnupg24, gnupg22
werner triaged T6708: Allow to inhibit the use of a default PGP keyserver as Normal priority.
Wed, Sep 6, 9:36 AM · Restricted Project, kleopatra, vsd, Feature Request, gnupg24, gnupg22
werner changed the status of T3456: GPG does not import secret subkeys from --export-secret-subkeys output if subkey stubs existed before from Open to Testing.

Thank you.

Wed, Sep 6, 8:25 AM · gnupg22, Restricted Project