Page MenuHome GnuPG
People werner

werner (Werner Koch)
EngineeringAdministrator

Projects

Calendar

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Sunday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (305 w, 4 d)
Roles
Administrator
Availability
Available

Recent Activity
View All

Today

werner added a comment to rGeae28f1bd4a5: doc: Remove profile and systemd example files..

Frankly, I don't understand the problem. Without the pinetry-program option you have a ./configure option to set the name of the pinentry. If you don't use that gpg-agent looks for $bindir/pinentry and if not found for $bindir/pinentry-basic.

Fri, Feb 3, 11:39 AM

Yesterday

werner added a comment to rGeae28f1bd4a5: doc: Remove profile and systemd example files..

Use a symlink or the alternatives systems. The --pinentry-program option was introduced for debugging.

Thu, Feb 2, 9:46 AM

Wed, Feb 1

werner moved T6362: Libkleo, GpgOL: Use global inst-type flag of GPGME from Backlog to For next release on the gpgme board.
Wed, Feb 1, 5:46 PM · gpgme, Restricted Project, gpgol, kleopatra
werner reassigned T6362: Libkleo, GpgOL: Use global inst-type flag of GPGME from werner to aheinecke.

The gpgme part has been done. Some minor changes in Kleopatra regarding the VERSION file checking would be useful.

Wed, Feb 1, 5:32 PM · gpgme, Restricted Project, gpgol, kleopatra
werner committed rM5ab9c234d6b5: core,w32: More robust detection of GnuPG Desktop dir layout (authored by werner).
core,w32: More robust detection of GnuPG Desktop dir layout
Wed, Feb 1, 5:31 PM
werner moved T6234: Write app-p11.c from Backlog to WiP on the gnupg24 board.
Wed, Feb 1, 9:42 AM · gnupg24, Feature Request, scd
werner added a subtask for T6364: More device (including virtual) support: T6234: Write app-p11.c.
Wed, Feb 1, 9:41 AM
werner added a parent task for T6234: Write app-p11.c: T6364: More device (including virtual) support.
Wed, Feb 1, 9:41 AM · gnupg24, Feature Request, scd
werner shifted T6234: Write app-p11.c from the Restricted Space space to the S1 Public space.
Wed, Feb 1, 9:41 AM · gnupg24, Feature Request, scd
werner changed the status of T6212: The ssh keys are no longer returned in the order from control file after T5996 from Open to Testing.
Wed, Feb 1, 9:36 AM · gnupg24, ssh, Feature Request
werner moved T6212: The ssh keys are no longer returned in the order from control file after T5996 from QA to WiP on the gnupg24 board.
Wed, Feb 1, 9:36 AM · gnupg24, ssh, Feature Request
werner committed rG8b8a8b246c44: ssh: Allow to define the order in which keys are returned. (authored by werner).
ssh: Allow to define the order in which keys are returned.
Wed, Feb 1, 9:30 AM
werner committed rGf9bcec6f8afa: gpg: New pseudo option full-help for --list-options et al. (authored by werner).
gpg: New pseudo option full-help for --list-options et al.
Wed, Feb 1, 9:30 AM
werner moved T6212: The ssh keys are no longer returned in the order from control file after T5996 from WiP to QA on the gnupg24 board.

See the the commit for a description of the changes.

Wed, Feb 1, 9:29 AM · gnupg24, ssh, Feature Request

Tue, Jan 31

werner moved T6212: The ssh keys are no longer returned in the order from control file after T5996 from Backlog to WiP on the gnupg24 board.
Tue, Jan 31, 12:40 PM · gnupg24, ssh, Feature Request
werner moved T6363: Add progress status output to gpgtar from WiP to gnupg-2.4.1 on the gnupg24 board.
Tue, Jan 31, 12:35 PM · gnupg24 (gnupg-2.4.1), gpgme, gnupg22, Feature Request
werner created gnupg24 (gnupg-2.4.1).
Tue, Jan 31, 12:32 PM
werner committed rG67a2973bf9f2: gpg: Make "--list-options show-sig-subpackets=n,m" work again. (authored by werner).
gpg: Make "--list-options show-sig-subpackets=n,m" work again.
Tue, Jan 31, 11:38 AM
werner committed rG5a223303d70e: gpg: Make "--list-options show-sig-subpackets=n,m" work again. (authored by werner).
gpg: Make "--list-options show-sig-subpackets=n,m" work again.
Tue, Jan 31, 11:33 AM
werner added a project to T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used: Feature Request.
Tue, Jan 31, 10:07 AM · Feature Request, gnupg, Restricted Project
werner added a project to T6353: gpgme: add option to disable S/MIME CRL checks: gpgme.
Tue, Jan 31, 10:01 AM · gpgme, Feature Request
werner closed T5887: gpgme_data_identify() function prototype not as documented as Resolved.

Thanks. I fixed the documentation. Will go into 1.19

Tue, Jan 31, 9:55 AM · Documentation, gpgme, Bug Report
werner committed rM5d07f8db7763: doc: Fix description of gpgme_data_identify (authored by werner).
doc: Fix description of gpgme_data_identify
Tue, Jan 31, 9:54 AM
werner committed rM359378c5b3f3: json: New operation "identify" and convenience option --identify. (authored by werner).
json: New operation "identify" and convenience option --identify.
Tue, Jan 31, 9:53 AM
werner committed rM3cdcfa33f749: Merge branch 'ikloecker/t6342-gpgtar' into master (authored by werner).
Merge branch 'ikloecker/t6342-gpgtar' into master
Tue, Jan 31, 8:16 AM
werner committed rM577562dd4cab: Update NEWS and set version to 1.19.0 (authored by werner).
Update NEWS and set version to 1.19.0
Tue, Jan 31, 8:16 AM

Mon, Jan 30

werner committed rG23745cddcc48: C99 compatibility fixes for gnupg 1 (authored by Florian Weimer via Gnupg-devel <gnupg-devel@gnupg.org>).
C99 compatibility fixes for gnupg 1
Mon, Jan 30, 4:35 PM
werner added a project to T6363: Add progress status output to gpgtar: gpgme.

I guess we need some gpgme support as well.

Mon, Jan 30, 4:01 PM · gnupg24 (gnupg-2.4.1), gpgme, gnupg22, Feature Request
werner committed rGd11d3cf85b94: gpg: For readibility use macro instead of integers in key-clean. (authored by werner).
gpg: For readibility use macro instead of integers in key-clean.
Mon, Jan 30, 3:59 PM
werner committed rG851ac88bdeb0: gpgtar: Fix new --status-fd handling. (authored by werner).
gpgtar: Fix new --status-fd handling.
Mon, Jan 30, 3:56 PM
werner added a comment to T6363: Add progress status output to gpgtar.

How with --status-fd passed to gpgtar we will get these progress lines:

Mon, Jan 30, 3:47 PM · gnupg24 (gnupg-2.4.1), gpgme, gnupg22, Feature Request
werner committed rGf84264e8acf7: gpgtar: Emit progress status lines in create mode. (authored by werner).
gpgtar: Emit progress status lines in create mode.
Mon, Jan 30, 3:28 PM
werner triaged T6363: Add progress status output to gpgtar as Normal priority.
Mon, Jan 30, 2:59 PM · gnupg24 (gnupg-2.4.1), gpgme, gnupg22, Feature Request
werner added a comment to T6072: Debug Tab in Kleopatra.

What I need in particular is a way to get the output of gpgconf -X.

Mon, Jan 30, 10:16 AM · Restricted Project, kleopatra, Feature Request
werner closed T3398: fingerprint-based import screener is no defense against malice as Wontfix.

Those "curated keyrings" and keyservers don't work together. The whole idea of automated but curated keyrings is dead end.

Mon, Jan 30, 8:58 AM · gnupg24, gnupg (gpg23), Feature Request

Thu, Jan 26

werner moved T6355: gpgtar: Does not allow decryption from stdin from Backlog to QA on the gnupg24 board.
Thu, Jan 26, 12:04 PM · gnupg22, gnupg24, Restricted Project, gpgme
werner moved T6355: gpgtar: Does not allow decryption from stdin from Backlog to QA on the gnupg22 board.
Thu, Jan 26, 12:03 PM · gnupg22, gnupg24, Restricted Project, gpgme
werner added projects to T6355: gpgtar: Does not allow decryption from stdin: gnupg24, gnupg22.
Thu, Jan 26, 12:03 PM · gnupg22, gnupg24, Restricted Project, gpgme
werner moved T6355: gpgtar: Does not allow decryption from stdin from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Jan 26, 12:02 PM · gnupg22, gnupg24, Restricted Project, gpgme
werner committed rGfbc181377993: gpgtar: Fix parent directory creation bug (authored by werner).
gpgtar: Fix parent directory creation bug
Thu, Jan 26, 12:02 PM
werner committed rGc66dacb98a19: gpgtar: Allow decryption from stdin. (authored by werner).
gpgtar: Allow decryption from stdin.
Thu, Jan 26, 12:02 PM
werner committed rGd5fe8ba7214b: gpgtar: Fix parent directory creation bug (authored by werner).
gpgtar: Fix parent directory creation bug
Thu, Jan 26, 11:56 AM
werner committed rG1ab21c82c342: gpgtar: Allow decryption from stdin. (authored by werner).
gpgtar: Allow decryption from stdin.
Thu, Jan 26, 11:40 AM
werner triaged T6233: Extract Card Holder Information for the PIV card from the "Printed Information" Object as Low priority.
Thu, Jan 26, 11:26 AM · gnupg, scd, Feature Request
werner added a comment to T6358: --locate-key does not consider expired subkeys..

To fix this we also need to fix our key selection test (key-selection.scm) which is can't cope with all combinations. The tests are run with a faked time of 2004-01-01 on all subsets of this ordered list of keys

Thu, Jan 26, 11:19 AM · gnupg24, OpenPGP
werner added a comment to T6358: --locate-key does not consider expired subkeys..

See also T4713

Thu, Jan 26, 9:51 AM · gnupg24, OpenPGP
werner triaged T6358: --locate-key does not consider expired subkeys. as Normal priority.
Thu, Jan 26, 9:40 AM · gnupg24, OpenPGP

Tue, Jan 24

werner closed T6356: Trapped at "Your decision?" in an infinite loop on providing unwanted input as Invalid.
Tue, Jan 24, 1:52 PM · Support
werner committed rGf35e7dbf9e71: common: Slight redefinition of nvc_get_boolean. (authored by werner).
common: Slight redefinition of nvc_get_boolean.
Tue, Jan 24, 10:07 AM
werner added a comment to T6212: The ssh keys are no longer returned in the order from control file after T5996.

Let's first collect all keys, assign a priority, sort, and only then send them back to ssh.

Tue, Jan 24, 10:06 AM · gnupg24, ssh, Feature Request
werner closed T6285: AM_PATH_GPGME_PTHREAD not ready for gpgrt-config transition as Resolved.
Tue, Jan 24, 9:55 AM · gpgme, Bug Report
werner closed T6283: could the newer jq255 Elliptic Curve be interesting to implement? as Wontfix.

Well, I do not yet see a use case for this. The current rush towards PQC makes it unlikely that newer curves will get in widespread use. Iff we have a large application which requires this curves, we can reconsider,

Tue, Jan 24, 9:53 AM · libgcrypt, Feature Request

Mon, Jan 23

werner closed T6336: Don't use deprecated --supervised option in example systemd service units as Resolved.
Mon, Jan 23, 5:06 PM · Bug Report
werner committed rGeae28f1bd4a5: doc: Remove profile and systemd example files. (authored by werner).
doc: Remove profile and systemd example files.
Mon, Jan 23, 4:52 PM
werner added a project to T6354: All VSD and GPD binaries need a proper product name on Windows.: vsd.
Mon, Jan 23, 12:40 PM · vsd, kleopatra, Restricted Project, gpd
werner set the color for vsd to Indigo.
Mon, Jan 23, 12:39 PM
werner edited Description on gpd.
Mon, Jan 23, 12:39 PM
werner edited Description on gpd.
Mon, Jan 23, 12:38 PM
werner created vsd.
Mon, Jan 23, 12:38 PM
werner triaged T6354: All VSD and GPD binaries need a proper product name on Windows. as Normal priority.
Mon, Jan 23, 12:35 PM · vsd, kleopatra, Restricted Project, gpd

Fri, Jan 20

werner triaged T6351: Kleopatra: Performance problems when encrypting large files as Normal priority.

There are two issues here:

  1. The overhead due to QT based processing.
  2. The compression takes long and gpg used to had no way to detected already cmpressed data when the data was piped to gpg (as Kleopatra) does. See T6332.
Fri, Jan 20, 1:31 PM · gpgme, Restricted Project, kleopatra
werner added a comment to T5655: In -de-vs mode it is not possible so verify sigs with Ed25519 release keys..

The introduction of --override-compliance-check actually hid the real
cause for the signature verification problem in de-vs mode for the
Ed25519 key. The real fix is to handle the EdDSA algorithm in
gnupg_pk_is_allowed.

Fri, Jan 20, 11:15 AM · gnupg (gpg22), Restricted Project
werner committed rGaecebdf7050c: gpg: Replace --override-compliance-check by a real fix. (authored by werner).
gpg: Replace --override-compliance-check by a real fix.
Fri, Jan 20, 11:13 AM
werner committed rGde292078a536: gpg: Do not require --status-fd along with --require-compliance. (authored by werner).
gpg: Do not require --status-fd along with --require-compliance.
Fri, Jan 20, 11:13 AM
werner committed rGd98bf02a0363: gpg: Replace --override-compliance-check by a real fix. (authored by werner).
gpg: Replace --override-compliance-check by a real fix.
Fri, Jan 20, 11:07 AM
werner committed rGb9528830d67b: gpg: Do not require --status-fd along with --require-compliance. (authored by werner).
gpg: Do not require --status-fd along with --require-compliance.
Fri, Jan 20, 11:07 AM
werner committed rG33b6ee5047c8: wkd: Support option --output for command --check. (authored by werner).
wkd: Support option --output for command --check.
Fri, Jan 20, 9:14 AM
werner committed rGc0a6b6b2d752: doc: Update copyright notices. (authored by werner).
doc: Update copyright notices.
Fri, Jan 20, 9:14 AM

Thu, Jan 19

werner removed a project from T4588: gpg-agent should guess pinentry's full path (using $PATH) if `pinentry-program` does not supply a full path: gnupg (gpg23).
Thu, Jan 19, 4:52 PM · gnupg24, gpgagent
werner removed a project from T4537: gpgsm support for timestamp signatures: gnupg (gpg23).
Thu, Jan 19, 4:52 PM · gnupg24, S/MIME, Feature Request
werner removed a project from T4446: please add --quick-revoke-subkey: gnupg (gpg23).
Thu, Jan 19, 4:52 PM · gnupg24, OpenPGP, Feature Request
werner removed a project from T4443: IPv6 address with scope not accepted as keyserver: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, dirmngr, dns, Bug Report
werner removed a project from T4422: `repair-keys` does not reorder signatures on non-merge imports: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, Bug Report
werner removed a project from T4406: Allow the use of the default-new-key-algo format for --quick-gen-key.: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, Feature Request
werner removed a project from T4346: Remove gpg-agent passphrase nags for empty / none passphrase: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, gpg4win, pinentry
werner removed a project from T3921: Make adding an arbitrary (sub)key easier: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, Feature Request
werner removed a project from T3902: Use the term password instead of passphrase: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, FAQ, Documentation
werner removed a project from T3753: Bad self-signatures and missing subkey usage flags when creating ECDSA/Ed25519 keys in batch mode: gnupg (gpg23).
Thu, Jan 19, 4:51 PM · gnupg24, Bug Report
werner removed a project from T3730: Add support to HTTP Basic Auth for Keyservers: gnupg (gpg23).
Thu, Jan 19, 4:50 PM · gnupg24, Feature Request
werner updated the task description for T2760: Populate comment field when exporting authentication key for SSH.
Thu, Jan 19, 4:50 PM · gnupg24, ssh, Feature Request
werner removed a project from T3513: Change of trust of new uid not immediately reflected in user interface: gnupg (gpg23).
Thu, Jan 19, 4:50 PM · gnupg24, OpenPGP, Feature Request
werner updated the task description for T2337: gpg command line language wrong.
Thu, Jan 19, 4:50 PM · gnupg24, Feature Request, gpg4win
werner updated the task description for T2290: Allow gpgv2 to use armored GPG keys as keyring file with trusted keys.
Thu, Jan 19, 4:49 PM · gnupg24, Feature Request
werner removed a project from T5556: Use of offsetof is better for allocation of flexible array: gnupg (gpg23).
Thu, Jan 19, 4:49 PM · gnupg24, gpgme, libgcrypt
werner removed a project from T5590: OpenPGP: Curve 448, modernize?: gnupg (gpg23).
Thu, Jan 19, 4:49 PM · gnupg24, OpenPGP
werner removed a project from T5649: Issue better error message for invalid OpenPGP RSA keys: gnupg (gpg23).
Thu, Jan 19, 4:49 PM · gnupg24, OpenPGP, Feature Request
werner archived gnupg (gpg23).
Thu, Jan 19, 4:48 PM
werner updated the task description for T2186: --encrypt-to ambiguous with a expired and revoked key.
Thu, Jan 19, 4:48 PM · gnupg24, Feature Request
werner removed a project from T5804: Using empty passphrase key pair, gpg2.3.4 fails to decrypt with error "No passphrase given" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful : gnupg (gpg23).
Thu, Jan 19, 4:48 PM · gnupg24, Bug Report
werner removed a project from T5837: gpg-card: Authenticate to PIV applet with non-3DES card management key: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, scd, Feature Request
werner removed a project from T5897: Fix MinGW compilation error with 'struct _stat32' in common/sysutils.c from gnupg-2.3.4: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, toolchain, Feature Request, patch
werner removed a project from T5930: Use the FIPS-compatible digest&sign API: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, FIPS, Feature Request
werner removed a project from T5964: gnupg should use the KDFs implemented in libgcrypt: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, FIPS, libgcrypt, Feature Request
werner removed a project from T5995: Better prompt with SETKEYDESC: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, ssh, gpgagent, scd
werner removed a project from T6020: Make %-expandos available for --default-keyserver-url: gnupg (gpg23).
Thu, Jan 19, 4:47 PM · gnupg24, Feature Request, Keyserver
werner removed a project from T5998: Extend gpg-check-patter to return a description: gnupg (gpg23).
Thu, Jan 19, 4:46 PM · gnupg24, Feature Request, Restricted Project, gpgagent
werner removed a project from T6014: Failed to search on certificate server. The error returned was: Syntax error in URI.: gnupg (gpg23).
Thu, Jan 19, 4:46 PM · gnupg24, dirmngr, Bug Report
werner removed a project from T6023: Check how GnuPG handles several keys from WKD: gnupg (gpg23).
Thu, Jan 19, 4:46 PM · gnupg24, g10, common, Documentation, wkd
werner removed a project from T6040: Allow embedding preferred keyserver URL in signatures: gnupg (gpg23).
Thu, Jan 19, 4:46 PM · gnupg24, Feature Request, Keyserver
werner removed a project from T6052: gnupg2 tpm2d tests do not work: gnupg (gpg23).
Thu, Jan 19, 4:46 PM · gnupg24, Tests, TPM, Bug Report