werner (Werner Koch)Administrator
Engineering

Projects

Tomorrow

  • Clear sailing ahead.

Wednesday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (68 w, 6 d)
Roles
Administrator
Availability
Available

Recent Activity

Thu, Jul 19

werner committed rM5ef492c5635a: core: Clear all flags for a new data property. (authored by werner).
core: Clear all flags for a new data property.
Thu, Jul 19, 8:47 PM
werner committed rM085cdeddef63: core: Blank out the plaintext after decryption failure. (authored by werner).
core: Blank out the plaintext after decryption failure.
Thu, Jul 19, 5:49 PM
werner added a comment to T4082: GPGME: Modernize signature information.

Well, green is a shortcut on how to display the status of the signature. It came from the green frame KMail printed and it soley used to rely on that information. The idea was that gpgme tells you what it considers to be a good signature. Opinions and trust models meanwhile changed and thus we indeed need to update gpgme's suggestion.

Thu, Jul 19, 5:25 PM · gpgme
werner committed rMaf2c74d6c06a: json: Don't use strdup but the xtrystrdup wrapper. (authored by werner).
json: Don't use strdup but the xtrystrdup wrapper.
Thu, Jul 19, 10:03 AM
werner committed rMf42cd70f18d5: core: New interface gpgme_data_new_from_estream. (authored by werner).
core: New interface gpgme_data_new_from_estream.
Thu, Jul 19, 10:03 AM

Wed, Jul 18

werner removed a project from T169: Add a way to generate keypairs from a passphrase: Stalled.
Wed, Jul 18, 10:05 AM · gnupg, Feature Request
werner raised the priority of T169: Add a way to generate keypairs from a passphrase from Low to Normal.

The problem with mnemonics based on words is that they are language dependent and only a small part of the world is fluent enough in English to spell/use them correctly. Thus anything based on ICAO spelling (Alfa, Bravo,...) is a better choice than arbitrary words from one language. Even if that meas to write down a longer string. A CRC is of course very useful.

Wed, Jul 18, 10:04 AM · gnupg, Feature Request

Tue, Jul 17

werner raised the priority of T4081: GPGME performance: Allow single component gpg-conf loads from Wishlist to Normal.
Tue, Jul 17, 2:15 PM · gpg4win, gpgme

Mon, Jul 16

werner committed rM1933f5b8056b: json: Minor cleanups in cJSON.c (authored by werner).
json: Minor cleanups in cJSON.c
Mon, Jul 16, 2:51 PM
werner committed rM013a7f47ab48: json: Fix buffer overflow in cJSON.c (authored by werner).
json: Fix buffer overflow in cJSON.c
Mon, Jul 16, 12:51 PM
werner committed rPTHdb0e9d82a4d3: Post release updates (authored by werner).
Post release updates
Mon, Jul 16, 10:03 AM
werner committed rPTH771287929ed2: Release 1.6 (authored by werner).
Release 1.6
Mon, Jul 16, 10:03 AM
werner closed T3980: gpg-agent: error allocating thread attributes when starting as daemon as Resolved.
Mon, Jul 16, 9:50 AM · npth, Bug Report
werner committed rD69cdc11cda9b: swdb: Release npth 1.6 (authored by werner).
swdb: Release npth 1.6
Mon, Jul 16, 9:50 AM
werner closed T4027: npth 1.6 as Resolved.
Mon, Jul 16, 9:49 AM · npth
werner closed T4027: npth 1.6, a subtask of T3283: Set 'mym4_revision' to 0 if not a git repo, as Resolved.
Mon, Jul 16, 9:49 AM · gpgme, ntbtls, libgcrypt, Bug Report
werner closed T4027: npth 1.6, a subtask of T3980: gpg-agent: error allocating thread attributes when starting as daemon, as Resolved.
Mon, Jul 16, 9:49 AM · npth, Bug Report
werner added a comment to E390: Weekly Standup.

Last week:

  • GnuPG 2.2.9 release
Mon, Jul 16, 9:21 AM
werner added invites for E390: Weekly Standup: BenM.
Mon, Jul 16, 9:20 AM
werner is attending E390: Weekly Standup.
Mon, Jul 16, 9:19 AM
werner added a comment to T4074: gpg-agent and scdaemon still running after log out.

There should be only one instance of gpg-agent running per GNUPGHOME directory (i.e per user). Is this a systemd system where you started gpg-agent in supervised mode (e.g. Debian) or a regular system. What is special in your setup?

Mon, Jul 16, 9:19 AM · Bug Report

Sat, Jul 14

werner added a comment to T3813: GPGME error: "invalid crypto engine" in the MSYS2 version.

if that is the case config.{guess,sub} needs to support this and we should be able to handle this the same way as other Unix platforms.

Sat, Jul 14, 10:08 AM · Python, gpgme, Bug Report
werner added a comment to T4072: fix inconsistent CLI.

Right, but requires extra code. The --quick commands try to reuse existing code and, iirc, that is the reason why a user id is accepted for --quick-add-uid.

Sat, Jul 14, 10:05 AM · Feature Request, gnupg

Fri, Jul 13

werner added a comment to T4072: fix inconsistent CLI.

The command line is an API and we will never break an API without a very good reason. If you didn't like that API you should have noted that on the devel mailing list years ago ;-)

Fri, Jul 13, 12:28 PM · Feature Request, gnupg
werner closed T4072: fix inconsistent CLI as Wontfix.

The term “user-id” is used throughout gpg to mean some kind of user id beit is a name, a key id, a fingerprint, a keygrip, etc. See the section "How to specify a user id" in the man page. FPR is used if a fingerprint is required.

Fri, Jul 13, 11:39 AM · Feature Request, gnupg
werner edited projects for T4072: fix inconsistent CLI, added: gnupg, Feature Request; removed Bug Report.

I am not sure wheat I understand your request. --quick-add-uid takes a fingerprint as first argument you _may _ use a a user-id instead but that is for consistency with all gpg commands. Using the fingerprint is always highly suggested.

Fri, Jul 13, 9:03 AM · Feature Request, gnupg

Thu, Jul 12

werner committed rG011ab7ec6615: doc: Add NEWS about the 2.2.9 release (authored by werner).
doc: Add NEWS about the 2.2.9 release
Thu, Jul 12, 9:00 PM
werner committed rDd07083d48699: web: Release annoucement for 2.2.9 (authored by werner).
web: Release annoucement for 2.2.9
Thu, Jul 12, 8:58 PM
werner closed T4036: gnupg 2.2.9 release as Resolved.

Release done: https://lists.gnupg.org/pipermail/gnupg-announce/2018q3/000427.html

Thu, Jul 12, 4:54 PM · Release Info, gnupg
werner closed T4036: gnupg 2.2.9 release, a subtask of T3374: gpg recv-keys fail if first dns server end up with "Connection refused", as Resolved.
Thu, Jul 12, 4:54 PM · dns, dirmngr, Bug Report
werner closed T4036: gnupg 2.2.9 release, a subtask of T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access, as Resolved.
Thu, Jul 12, 4:54 PM · gpg4win, dirmngr
werner closed T4036: gnupg 2.2.9 release, a subtask of T2348: Improve detection of IPv6 and IPv4 availibility, as Resolved.
Thu, Jul 12, 4:54 PM · gnupg, Feature Request, dirmngr
werner closed T4036: gnupg 2.2.9 release, a subtask of T3803: dirmngr issues malformed DNS queries, as Resolved.
Thu, Jul 12, 4:54 PM · dns, dirmngr, Bug Report
werner closed T4036: gnupg 2.2.9 release, a subtask of T4014: when verifying signatures, gpg and gpgv should ensure signing capabilities, as Resolved.
Thu, Jul 12, 4:54 PM · gpgv, gnupg, Bug Report
werner closed T4036: gnupg 2.2.9 release, a subtask of T4022: too-large User ID packets result in dropping an entire certificate, as Resolved.
Thu, Jul 12, 4:54 PM · gnupg, Bug Report
werner closed T4036: gnupg 2.2.9 release, a subtask of T4053: gpg.exe 2.2.8.52634 crashes in msvcrt.dll, as Resolved.
Thu, Jul 12, 4:54 PM · i18n, gnupg, gpg4win, Bug Report
werner closed T4036: gnupg 2.2.9 release, a subtask of T4050: GnuPG fails to decrypt file encrypted with more than one password with any password but the first, as Resolved.
Thu, Jul 12, 4:54 PM · gnupg (gpg22)
werner closed T4036: gnupg 2.2.9 release, a subtask of T4018: gpg --with-colons --show-keys does not show revocation certificates, as Resolved.
Thu, Jul 12, 4:54 PM · gnupg, Bug Report
werner committed rD04099d73f1ba: swdb: Release gnupg 2.2.9 (authored by werner).
swdb: Release gnupg 2.2.9
Thu, Jul 12, 4:44 PM
werner committed rGa6ce89b6eff9: Post release updates (authored by werner).
Post release updates
Thu, Jul 12, 4:40 PM
werner committed rG2b82db61ccfe: Release 2.2.9 (authored by werner).
Release 2.2.9
Thu, Jul 12, 4:40 PM
werner committed rGc9bafd482361: po: Fix one fuzzy in German translation. (authored by werner).
po: Fix one fuzzy in German translation.
Thu, Jul 12, 4:40 PM
werner committed rG7290b1678fd7: po: auto update (authored by werner).
po: auto update
Thu, Jul 12, 4:40 PM
werner closed T4053: gpg.exe 2.2.8.52634 crashes in msvcrt.dll as Resolved.
Thu, Jul 12, 3:28 PM · i18n, gnupg, gpg4win, Bug Report
werner closed T2348: Improve detection of IPv6 and IPv4 availibility as Resolved.
Thu, Jul 12, 3:27 PM · gnupg, Feature Request, dirmngr
werner closed T3803: dirmngr issues malformed DNS queries as Resolved.
Thu, Jul 12, 3:27 PM · dns, dirmngr, Bug Report
werner closed T3374: gpg recv-keys fail if first dns server end up with "Connection refused" as Resolved.
Thu, Jul 12, 3:26 PM · dns, dirmngr, Bug Report
werner closed T3610: dirmngr: Since 2.1 windows firewall asks about dirmngr access as Resolved.
Thu, Jul 12, 3:26 PM · gpg4win, dirmngr
werner committed rDd7e8bb5ab2c4: swdb: Release gpgrt 1.32 (authored by werner).
swdb: Release gpgrt 1.32
Thu, Jul 12, 11:25 AM
werner committed rDf7aa0d8a14b9: drafts,openpgp-webkey-service: Add a security suggestion. (authored by werner).
drafts,openpgp-webkey-service: Add a security suggestion.
Thu, Jul 12, 11:25 AM
werner committed rEaa24c16c4639: Post release updates (authored by werner).
Post release updates
Thu, Jul 12, 11:19 AM
werner committed rE7b08307ff25b: Release 1.32 (authored by werner).
Release 1.32
Thu, Jul 12, 11:19 AM
werner closed T4071: regression on batch generation as Invalid.

You are mixing gpgsm and gpg - they have different semantics: That github mirror under the top name of "gpg" might
be a reason for that confusion.

Thu, Jul 12, 9:49 AM · Bug Report
werner added a comment to T4069: GpgSM, Dirmngr communication on Windows sometimes very slow.

Commit rEbd5bcd2dd19ef0b1c3d33a3a388b537ba08a4eb6

Thu, Jul 12, 9:37 AM · dirmngr, S/MIME, gpg4win
werner added a comment to T4069: GpgSM, Dirmngr communication on Windows sometimes very slow.

it is not due to windows but due to the use of NTBTLS. I have the same problem here... and found it: We call es_fflush to let ntbtls flush its internal buffers but libgpg-error's estream module does no propagate this explicit flush to the cookie functions of ntbtls. Thus ntbtls gets stuck most of the time. I am not sure when this regression happened but it is pretty obvious.

Thu, Jul 12, 9:36 AM · dirmngr, S/MIME, gpg4win
werner committed rEbd5bcd2dd19e: estream: Always propagate flush event to cookie functions. (authored by werner).
estream: Always propagate flush event to cookie functions.
Thu, Jul 12, 9:29 AM

Wed, Jul 11

werner added a comment to T4069: GpgSM, Dirmngr communication on Windows sometimes very slow.

I have logging to a socket always enabled. That may explain why I don't see that error on Unix.

Wed, Jul 11, 8:27 PM · dirmngr, S/MIME, gpg4win

Tue, Jul 10

werner added a project to T4053: gpg.exe 2.2.8.52634 crashes in msvcrt.dll: i18n.
Tue, Jul 10, 6:47 PM · i18n, gnupg, gpg4win, Bug Report
werner added a project to T4068: libgcrypt 1.8.3 make check errors: libgcrypt.
Tue, Jul 10, 6:45 PM · libgcrypt, Bug Report

Mon, Jul 9

werner added a commit to T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary: rG61562fe00027: gpg: Remove multiple subkey bindings during export-clean..
Mon, Jul 9, 12:17 PM · gnupg (gpg22)
werner committed rG61562fe00027: gpg: Remove multiple subkey bindings during export-clean. (authored by werner).
gpg: Remove multiple subkey bindings during export-clean.
Mon, Jul 9, 12:17 PM
werner closed T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary as Resolved.

Fixed for 2.2.9.

Mon, Jul 9, 12:17 PM · gnupg (gpg22)
werner committed rG76989d5bd89e: gpg: Remove multiple subkey bindings during export-clean. (authored by werner).
gpg: Remove multiple subkey bindings during export-clean.
Mon, Jul 9, 12:15 PM
werner added a commit to T3804: --export-options export-minimal,export-clean includes multiple subkey binding signatures when only one is necessary: rG76989d5bd89e: gpg: Remove multiple subkey bindings during export-clean..
Mon, Jul 9, 12:15 PM · gnupg (gpg22)
werner closed T3622: --export-options export-minimal,export-clean includes unusable subkeys as Resolved.

To be released with 2.2.9

Mon, Jul 9, 10:46 AM · Feature Request, gnupg (gpg22)
werner committed rG8055f186a32e: gpg: Let export-clean remove expired subkeys. (authored by werner).
gpg: Let export-clean remove expired subkeys.
Mon, Jul 9, 10:45 AM
werner added a commit to T3622: --export-options export-minimal,export-clean includes unusable subkeys: rG8055f186a32e: gpg: Let export-clean remove expired subkeys..
Mon, Jul 9, 10:45 AM · Feature Request, gnupg (gpg22)
werner committed rG046276db3a04: gpg: Split key cleaning function for clarity. (authored by werner).
gpg: Split key cleaning function for clarity.
Mon, Jul 9, 10:45 AM
werner committed rG40bf383f72b5: gpg: Move key cleaning functions to a separate file. (authored by werner).
gpg: Move key cleaning functions to a separate file.
Mon, Jul 9, 10:45 AM
werner committed rGc2fd65ec8498: gpg: Let export-clean remove expired subkeys. (authored by werner).
gpg: Let export-clean remove expired subkeys.
Mon, Jul 9, 10:10 AM
werner added a commit to T3622: --export-options export-minimal,export-clean includes unusable subkeys: rGc2fd65ec8498: gpg: Let export-clean remove expired subkeys..
Mon, Jul 9, 10:10 AM · Feature Request, gnupg (gpg22)
werner committed rG6c3567196f7e: gpg: Split key cleaning function for clarity. (authored by werner).
gpg: Split key cleaning function for clarity.
Mon, Jul 9, 10:10 AM
werner committed rG135e46ea480d: gpg: Move key cleaning functions to a separate file. (authored by werner).
gpg: Move key cleaning functions to a separate file.
Mon, Jul 9, 10:10 AM
werner added a comment to E388: Weekly Standup.

Last week

  • Bug Fixing in preparation of 2.2.9
  • Finished pairing tool prototype

This week:

  • Continue bug fixing.
  • Office work
Mon, Jul 9, 7:45 AM
werner is attending E388: Weekly Standup.
Mon, Jul 9, 7:42 AM

Sun, Jul 8

werner added a comment to T4059: Errors while building from source on Cygwin (gnupg repo).

Some times I a curious and it seems that GnuPG can be used on 32 bit Cygwin. Thus I wonder what is going on on 64 bit Cygwin (which I don't know). It might be a HANDLE/socket issue where Windows is still using values which fit into a 32 bit integer but Cygwin might have changed that. Eventually we need to remove that assumption in GnuPG's code and this is why I won't have a problem to keep this bug open.

Sun, Jul 8, 10:17 PM · Cygwin, gnupg, Bug Report
werner triaged T4058: Connect a TOR server not running on localhost. as Normal priority.
Sun, Jul 8, 8:01 AM · Tor, gnupg, Feature Request
werner set the color for Tor to Pink.
Sun, Jul 8, 8:01 AM
werner set the color for Cygwin to Checkered.
Sun, Jul 8, 7:58 AM
werner set the color for Cygwin to Indigo.
Sun, Jul 8, 7:57 AM
werner triaged T4059: Errors while building from source on Cygwin (gnupg repo) as Low priority.

Note that Cygwin is not a supported platform. Seems that the exec functions don't work on this 64 bit variant.

Sun, Jul 8, 7:54 AM · Cygwin, gnupg, Bug Report
werner set the color for Cygwin to Red.
Sun, Jul 8, 7:53 AM
werner triaged T4060: Add ability to mark critical notations as "recognized" during signature verification as Normal priority.

re: last question: Marking a notation as recognized does not mean gpg does do anything with it or that it demands this notation. The latter can be handled by the caller. For example, gpg knows about "preferred-email-encoding@pgp.com" but does not apply any semantic to it.

Sun, Jul 8, 7:49 AM · gnupg (gpg22), Feature Request

Fri, Jul 6

werner closed T4044: HTTP proxy not honoured as Invalid.

No problem. I am glad that it works.

Fri, Jul 6, 5:14 PM · Bug Report, gpg4win
werner edited projects for T2917: --locate-key should re-fetch key via WKD if it is expired, added: gnupg (gpg22); removed gnupg.
Fri, Jul 6, 9:10 AM · gnupg (gpg22), Bug Report
werner renamed T2917: --locate-key should re-fetch key via WKD if it is expired from wkd discovery should re-fetch key if it is expired to --locate-key should re-fetch key via WKD if it is expired.
Fri, Jul 6, 9:09 AM · gnupg (gpg22), Bug Report
werner added a comment to T2917: --locate-key should re-fetch key via WKD if it is expired.

Actually the --locate-key command differs from the implicit use of locate key code when encrypting to a mail address.
After importing the expired key and running for example

Fri, Jul 6, 9:08 AM · gnupg (gpg22), Bug Report
werner committed rGb4599a0449ea: gpg: Allow decryption using several passphrases in may cases. (authored by werner).
gpg: Allow decryption using several passphrases in may cases.
Fri, Jul 6, 8:38 AM
werner added a commit to T3795: Failure to decrypt file, encrypted with multiple passwords: rGb4599a0449ea: gpg: Allow decryption using several passphrases in may cases..
Fri, Jul 6, 8:38 AM · Bug Report, gnupg
werner added a commit to T4050: GnuPG fails to decrypt file encrypted with more than one password with any password but the first: rGb4599a0449ea: gpg: Allow decryption using several passphrases in may cases..
Fri, Jul 6, 8:38 AM · gnupg (gpg22)
werner closed T4050: GnuPG fails to decrypt file encrypted with more than one password with any password but the first as Wontfix.

Won't fix for 2.2 or CFB encryption.

Fri, Jul 6, 8:37 AM · gnupg (gpg22)
werner added a comment to T4050: GnuPG fails to decrypt file encrypted with more than one password with any password but the first.

My bad. I looked at the wrong working copy. Will pick that commit.

Fri, Jul 6, 7:55 AM · gnupg (gpg22)

Thu, Jul 5

werner closed T4046: GnuPG fails to verify signatures that have a issuer fingerprint but no issuer subpacket as Resolved.

Thanks. The entire getkey.c code better needs a complete overhaul for before we add v5 keys.

Thu, Jul 5, 9:57 PM · gnupg (gpg22)
werner committed rG833738a31697: po: Add flag options for xgettext. (authored by werner).
po: Add flag options for xgettext.
Thu, Jul 5, 9:54 PM
werner added a commit to T4053: gpg.exe 2.2.8.52634 crashes in msvcrt.dll: rG833738a31697: po: Add flag options for xgettext..
Thu, Jul 5, 9:54 PM · i18n, gnupg, gpg4win, Bug Report
werner added a commit to T4054: libgpg-error, w32: logging crashes on unmatched %s on window: rG833738a31697: po: Add flag options for xgettext..
Thu, Jul 5, 9:54 PM · Windows, gpgrt
werner committed rG221af19351ad: gpg: Prepare for signatures with ISSUER_FPR but without ISSUER. (authored by werner).
gpg: Prepare for signatures with ISSUER_FPR but without ISSUER.
Thu, Jul 5, 9:54 PM
werner added a commit to T4046: GnuPG fails to verify signatures that have a issuer fingerprint but no issuer subpacket: rG221af19351ad: gpg: Prepare for signatures with ISSUER_FPR but without ISSUER..
Thu, Jul 5, 9:54 PM · gnupg (gpg22)
werner committed rGcb71573f3762: po: Add flag options for xgettext. (authored by werner).
po: Add flag options for xgettext.
Thu, Jul 5, 9:48 PM
werner added a commit to T4054: libgpg-error, w32: logging crashes on unmatched %s on window: rGcb71573f3762: po: Add flag options for xgettext..
Thu, Jul 5, 9:48 PM · Windows, gpgrt