werner (Werner Koch)Administrator
Engineering

Projects

Tomorrow

  • Clear sailing ahead.

Wednesday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (112 w, 6 h)
Roles
Administrator
Availability
Available

Recent Activity

Today

werner committed rG110a4550179f: gpg: Do not delete any keys if --dry-run is passed. (authored by werner).
gpg: Do not delete any keys if --dry-run is passed.
Mon, May 20, 12:57 PM
werner committed rG5c46c5f74540: gpg: Do not delete any keys if --dry-run is passed. (authored by werner).
gpg: Do not delete any keys if --dry-run is passed.
Mon, May 20, 12:57 PM
werner triaged T4521: gpg-agent behavior on SIGTERM differs from KILLAGENT handling as Normal priority.
Mon, May 20, 9:30 AM · Bug Report, gpgagent
werner added a comment to T4522: gpg-agent's EXPORT_KEY command does not tell its pinentry SETKEYINFO , preventing use of external passphrase cache .

That is on purpose. Exporting of a secret key should in theory not be possible at all via gpg. In practice we need a way to export a key, but that should be the exception and thus we do not want any caches for passphrases to have an effect.

Mon, May 20, 9:29 AM · Bug Report, gpgagent
werner added a comment to E457: Weekly Standup.

Last week:

  • GnuPG 2.2 bug fixing
Mon, May 20, 9:24 AM

Sat, May 18

werner added a comment to T4108: Support for verifying OpenPGP standalone and timestamp signatures.

FWIW, I disabled @aa7356 because he again started to troll.

Sat, May 18, 10:59 PM · gnupg (gpg23), Feature Request

Fri, May 17

werner triaged T4108: Support for verifying OpenPGP standalone and timestamp signatures as Normal priority.
Fri, May 17, 6:48 PM · gnupg (gpg23), Feature Request
werner triaged T4444: dirmngr fails with keyservers specified by IP without rDNS; reported as dead host or uses wrong Host header as Normal priority.
Fri, May 17, 6:47 PM · Keyserver, dns, dirmngr, Bug Report
werner triaged T4304: gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0) failed: General error as Normal priority.
Fri, May 17, 6:47 PM · libgcrypt, Bug Report
werner triaged T4472: Documentation about pushing keys to LDAP is incomplete as Normal priority.
Fri, May 17, 6:46 PM · Documentation, LDAP, Bug Report
werner closed T4475: Gemalto IDBridge CT710 && Pinentry as Invalid.

Sorry, I can't parse that. For development question please use gnupg-devel at gnupg.org.

Fri, May 17, 1:49 PM · Feature Request
werner closed T4500: Option --use-embedded-filename does not work as expect as Resolved.

Fix will go into 2.2.16 to be release this month.

Fri, May 17, 1:45 PM · gnupg (gpg22), Bug Report
werner closed T4500: Option --use-embedded-filename does not work as expect, a subtask of T4509: Release GnuPG 2.2.16, as Resolved.
Fri, May 17, 1:45 PM · Release Info, gnupg (gpg22)
werner committed rG1702179d91b7: gpg: Fix using --decrypt along with --use-embedded-filename. (authored by werner).
gpg: Fix using --decrypt along with --use-embedded-filename.
Fri, May 17, 1:44 PM
werner added a commit to T4500: Option --use-embedded-filename does not work as expect: rG1702179d91b7: gpg: Fix using --decrypt along with --use-embedded-filename..
Fri, May 17, 1:44 PM · gnupg (gpg22), Bug Report
werner added a parent task for T4500: Option --use-embedded-filename does not work as expect: T4509: Release GnuPG 2.2.16.
Fri, May 17, 1:44 PM · gnupg (gpg22), Bug Report
werner added a subtask for T4509: Release GnuPG 2.2.16: T4500: Option --use-embedded-filename does not work as expect.
Fri, May 17, 1:44 PM · Release Info, gnupg (gpg22)
werner committed rG386bacd97416: gpg: Fix using --decrypt along with --use-embedded-filename. (authored by werner).
gpg: Fix using --decrypt along with --use-embedded-filename.
Fri, May 17, 1:42 PM
werner added a commit to T4500: Option --use-embedded-filename does not work as expect: rG386bacd97416: gpg: Fix using --decrypt along with --use-embedded-filename..
Fri, May 17, 1:42 PM · gnupg (gpg22), Bug Report
werner triaged T4520: gpg --verify foo.asc --output foo yields a warning when everything is good as Normal priority.

At the time the verification is done some output has already been written to the file 'signed'. When checking whether the deprecated abbreviated format

Fri, May 17, 1:03 PM · OpenPGP, gnupg
werner closed T4334: gpg "showphoto" not creating temp file on Windows 10 as Resolved.

There will be no full solution for this. However, the next release should in general work due to a 400ms delay we use after spawning the viewer. This is configurable; see rG7e5847da0f3d715cb59d05adcd9107b460b6411b.

Fri, May 17, 12:52 PM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner closed T4334: gpg "showphoto" not creating temp file on Windows 10, a subtask of T4509: Release GnuPG 2.2.16, as Resolved.
Fri, May 17, 12:52 PM · Release Info, gnupg (gpg22)
werner committed rG7e5847da0f3d: gpg: Improve the photo image viewer selection. (authored by werner).
gpg: Improve the photo image viewer selection.
Fri, May 17, 12:48 PM
werner added a commit to T4334: gpg "showphoto" not creating temp file on Windows 10: rG7e5847da0f3d: gpg: Improve the photo image viewer selection..
Fri, May 17, 12:48 PM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner committed rGcd5f040a5389: gpg: Improve the photo image viewer selection. (authored by werner).
gpg: Improve the photo image viewer selection.
Fri, May 17, 12:47 PM
werner added a commit to T4334: gpg "showphoto" not creating temp file on Windows 10: rGcd5f040a5389: gpg: Improve the photo image viewer selection..
Fri, May 17, 12:47 PM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner closed T4519: file decryption not happening with passphrase from webmethods as Invalid.

I can't see any bug here so I will close this bug now.

Fri, May 17, 8:34 AM · gnupg, Not A Bug

Thu, May 16

werner edited projects for T4519: file decryption not happening with passphrase from webmethods , added: Not A Bug, gnupg; removed Bug Report.

Please use one of the mailing lists to solve your problem. 2.3 is a development version, so I wonder from where you got this version of GnuPG.

Thu, May 16, 8:40 PM · gnupg, Not A Bug
werner added a comment to T4334: gpg "showphoto" not creating temp file on Windows 10.

Actually the temp file is created but because the photo viewer is run as a detached process and gpg keeps on running, the temp file has been removed by gpg at the time the photo viewer tries to open it. Ooops. The correct behaviour would be to wait for the photo viewer to be finished. We use

Thu, May 16, 6:52 PM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner committed rG0fff927889b0: kbx: Fix an endless loop under Windows due to an incomplete fix. (authored by werner).
kbx: Fix an endless loop under Windows due to an incomplete fix.
Thu, May 16, 2:03 PM
werner added a commit to T4505: SM, W32: GPGSM hangs up the GnuPG System: rG0fff927889b0: kbx: Fix an endless loop under Windows due to an incomplete fix..
Thu, May 16, 2:03 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner committed rG6f72aa821407: kbx: Fix deadlock in gpgsm on Windows due to a sharing violation. (authored by werner).
kbx: Fix deadlock in gpgsm on Windows due to a sharing violation.
Thu, May 16, 2:03 PM
werner added a commit to T4505: SM, W32: GPGSM hangs up the GnuPG System: rG6f72aa821407: kbx: Fix deadlock in gpgsm on Windows due to a sharing violation..
Thu, May 16, 2:03 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner closed T4505: SM, W32: GPGSM hangs up the GnuPG System as Resolved.
Thu, May 16, 2:00 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner added a comment to T4505: SM, W32: GPGSM hangs up the GnuPG System.

That was obvious. rG6fc5df1e10129f3171d80cf731f310b9e8d97c26 fixes this.

Thu, May 16, 2:00 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner committed rG6fc5df1e1012: kbx: Fix an endless loop under Windows due to an incomplete fix. (authored by werner).
kbx: Fix an endless loop under Windows due to an incomplete fix.
Thu, May 16, 1:57 PM
werner claimed T4334: gpg "showphoto" not creating temp file on Windows 10.
Thu, May 16, 12:44 PM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner closed T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad, a subtask of T4509: Release GnuPG 2.2.16, as Resolved.
Thu, May 16, 12:28 PM · Release Info, gnupg (gpg22)
werner closed T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad as Resolved.

Fixed in amster and 2.2:

Thu, May 16, 12:28 PM · gnupg (gpg22)
werner committed rG3a28706cfd96: gpgconf: Before --launch check that the config file is fine. (authored by werner).
gpgconf: Before --launch check that the config file is fine.
Thu, May 16, 12:27 PM
werner added a commit to T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad: rG3a28706cfd96: gpgconf: Before --launch check that the config file is fine..
Thu, May 16, 12:27 PM · gnupg (gpg22)
werner committed rG50c2f76ae65d: gpgconf: Before --launch check that the config file is fine. (authored by werner).
gpgconf: Before --launch check that the config file is fine.
Thu, May 16, 12:26 PM
werner added a commit to T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad: rG50c2f76ae65d: gpgconf: Before --launch check that the config file is fine..
Thu, May 16, 12:26 PM · gnupg (gpg22)
werner claimed T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad.
Thu, May 16, 10:53 AM · gnupg (gpg22)
werner triaged T4511: dirmngr error logs claim that HTTP GET requests are percent-escaped, but they are not as Wishlist priority.

This requires too much changes and does not reflect the reality. It actually makes debugging harder for us.

Thu, May 16, 10:52 AM · Bug Report, dirmngr
werner closed T4516: use https: links internally where possible instead of http:// in libgcrypt source as Wontfix.

I pulled that branch with the commit w/o problems. However, as noted on your commit I won't apply that because it does not make any sense to change boilerplate blurbs for just an additional 's'. Nobody really uses that and browser can try to use https first. Sorry, there are more important things around.

Thu, May 16, 10:50 AM · libgcrypt
werner created T4518: Kleo changes log-file tcp://IPADDR to tcp:\\IPADDR.
Thu, May 16, 10:24 AM · gpgme, Windows, kleopatra
werner committed rG79c99921e359: scd: Remove unused cruft from GnuPG 1.x (authored by werner).
scd: Remove unused cruft from GnuPG 1.x
Thu, May 16, 8:25 AM

Wed, May 15

werner closed T3972: 100% CPU usage endles loop of gpg --list-keys as Resolved.
Wed, May 15, 9:41 AM · gnupg (gpg22)
werner edited projects for T4436: gpgsm refuses to encrypt with failure to check CRL, added: gnupg; removed gnupg (gpg22), Bug Report.

Will give you more detailed info about your certificate. For even more details use --dump-chain instead of --list-chain.

Wed, May 15, 9:39 AM · gnupg, S/MIME
werner added a parent task for T4334: gpg "showphoto" not creating temp file on Windows 10: T4509: Release GnuPG 2.2.16.
Wed, May 15, 9:25 AM · gpg4win, Windows, gnupg (gpg22), Bug Report
werner added a subtask for T4509: Release GnuPG 2.2.16: T4334: gpg "showphoto" not creating temp file on Windows 10.
Wed, May 15, 9:25 AM · Release Info, gnupg (gpg22)
werner added a parent task for T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad: T4509: Release GnuPG 2.2.16.
Wed, May 15, 9:24 AM · gnupg (gpg22)
werner added a subtask for T4509: Release GnuPG 2.2.16: T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad.
Wed, May 15, 9:24 AM · Release Info, gnupg (gpg22)
werner merged T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows into T4505: SM, W32: GPGSM hangs up the GnuPG System.
Wed, May 15, 9:22 AM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner merged task T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows into T4505: SM, W32: GPGSM hangs up the GnuPG System.
Wed, May 15, 9:22 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win
werner closed T4466: Clean up --keyserver documentation in gpg(1) as Resolved.

Thanks

Wed, May 15, 9:20 AM · Keyserver, gnupg (gpg22), dirmngr, Documentation
werner committed rG0d669a360c6e: doc: Do not mention gpg's deprecated --keyserver option. (authored by werner).
doc: Do not mention gpg's deprecated --keyserver option.
Wed, May 15, 9:20 AM
werner added a commit to T4466: Clean up --keyserver documentation in gpg(1): rG0d669a360c6e: doc: Do not mention gpg's deprecated --keyserver option..
Wed, May 15, 9:20 AM · Keyserver, gnupg (gpg22), dirmngr, Documentation
werner committed rG42adb56e660a: doc: Do not mention gpg's deprecated --keyserver option. (authored by werner).
doc: Do not mention gpg's deprecated --keyserver option.
Wed, May 15, 9:19 AM
werner added a commit to T4466: Clean up --keyserver documentation in gpg(1): rG42adb56e660a: doc: Do not mention gpg's deprecated --keyserver option..
Wed, May 15, 9:19 AM · Keyserver, gnupg (gpg22), dirmngr, Documentation
werner claimed T4466: Clean up --keyserver documentation in gpg(1).
Wed, May 15, 9:06 AM · Keyserver, gnupg (gpg22), dirmngr, Documentation
werner closed T4490: --export-secret-keys fails with unusually-created secret key as Resolved.

Applied to master and 2.2. Thanks.

Wed, May 15, 9:04 AM · ssh, gnupg (gpg22)
werner committed rG9c704d9d4633: gpg: enable OpenPGP export of cleartext keys with comments (authored by dkg).
gpg: enable OpenPGP export of cleartext keys with comments
Wed, May 15, 9:03 AM
werner added a commit to T4490: --export-secret-keys fails with unusually-created secret key: rG9c704d9d4633: gpg: enable OpenPGP export of cleartext keys with comments.
Wed, May 15, 9:03 AM · ssh, gnupg (gpg22)
werner committed rG392e59a3d487: gpg: enable OpenPGP export of cleartext keys with comments (authored by dkg).
gpg: enable OpenPGP export of cleartext keys with comments
Wed, May 15, 9:03 AM
werner added a commit to T4490: --export-secret-keys fails with unusually-created secret key: rG392e59a3d487: gpg: enable OpenPGP export of cleartext keys with comments.
Wed, May 15, 9:03 AM · ssh, gnupg (gpg22)
werner closed T4508: gnupg1: digest-preference not honoured, a subtask of T4509: Release GnuPG 2.2.16, as Resolved.
Wed, May 15, 8:55 AM · Release Info, gnupg (gpg22)
werner closed T4508: gnupg1: digest-preference not honoured as Resolved.
Wed, May 15, 8:55 AM · gnupg (gpg22), Bug Report
werner closed T4496: gpgconf --launch ignores --homedir arguments as Resolved.

Right, that was missing. Fixed for master and 2.2. Noet that for kill and reload we added this already in 2016.

Wed, May 15, 8:54 AM · Bug Report, gnupg (gpg22)
werner committed rG31e26037bd72: gpgconf: Support --homedir for --launch. (authored by werner).
gpgconf: Support --homedir for --launch.
Wed, May 15, 8:53 AM
werner added a commit to T4496: gpgconf --launch ignores --homedir arguments: rG31e26037bd72: gpgconf: Support --homedir for --launch..
Wed, May 15, 8:53 AM · Bug Report, gnupg (gpg22)
werner committed rGa4be077abdbf: gpgconf: Support --homedir for --launch. (authored by werner).
gpgconf: Support --homedir for --launch.
Wed, May 15, 8:53 AM
werner committed rG6e041b7b356c: sm: Add a couple of debug calls to the keydb module. (authored by werner).
sm: Add a couple of debug calls to the keydb module.
Wed, May 15, 8:53 AM
werner added a commit to T4496: gpgconf --launch ignores --homedir arguments: rGa4be077abdbf: gpgconf: Support --homedir for --launch..
Wed, May 15, 8:53 AM · Bug Report, gnupg (gpg22)
werner triaged T4497: gpgconf should report clearer errors when it knows that a given daemon's config file is bad as Normal priority.
Wed, May 15, 8:32 AM · gnupg (gpg22)
werner raised a concern with rC0df498e81fd3: use https instead of cleartext http where possible.

No, that is excessive. If the license blurb will ever be change this can be done but not just because of changing a single letter.

Wed, May 15, 8:09 AM
werner added a comment to rC0df498e81fd3: use https instead of cleartext http where possible.

Sorry, I will revert this.

Wed, May 15, 8:04 AM

Tue, May 14

werner added a comment to T4499: Asan finding in libgcrypt.

I would prefer not to fix that. I did some experiments on replacing all the runtime parsed ECC constants by static data. Adding the other constants will then be simple.

Tue, May 14, 8:19 PM · libgcrypt
werner committed rG49b236af0ecb: kbx: Fix deadlock in gpgsm on Windows due to a sharing violation. (authored by werner).
kbx: Fix deadlock in gpgsm on Windows due to a sharing violation.
Tue, May 14, 7:07 PM
werner added a commit to T4505: SM, W32: GPGSM hangs up the GnuPG System: rG49b236af0ecb: kbx: Fix deadlock in gpgsm on Windows due to a sharing violation..
Tue, May 14, 7:07 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner committed rG22e274f839f9: sm: Change keydb code to use the keybox locking. (authored by werner).
sm: Change keydb code to use the keybox locking.
Tue, May 14, 4:52 PM
werner added a commit to T4505: SM, W32: GPGSM hangs up the GnuPG System: rG22e274f839f9: sm: Change keydb code to use the keybox locking..
Tue, May 14, 4:52 PM · kleopatra, gpgol, S/MIME, gpg4win, Windows
werner raised the priority of T4490: --export-secret-keys fails with unusually-created secret key from Normal to High.
Tue, May 14, 4:39 PM · ssh, gnupg (gpg22)
werner renamed T4500: Option --use-embedded-filename does not work as expect from GnuPG Producing a Warning in Error(?) to Option --use-embedded-filename does not work as expect.
Tue, May 14, 11:57 AM · gnupg (gpg22), Bug Report
werner triaged T4500: Option --use-embedded-filename does not work as expect as Normal priority.

There is actually a problem with --use-embedded-filename. Given that the option his highly dangerous to use we have not tested this for ages. We will see what you we can about it.

Tue, May 14, 11:57 AM · gnupg (gpg22), Bug Report
werner triaged T4503: include extension for OpenPGP creation timestamp in X.509 output as Normal priority.

Thanks for the hint on the existing OID I already looked into that and planned to use one from the GnuPG arc, But an existing OID is better. I still need to figure useful workflows but something like this will be useful for smartcards..

Tue, May 14, 10:42 AM · Feature Request, S/MIME
werner closed T4501: gpg --generate-key --batch from existing key (with Key-Grip:) fails on 64-bit big-endian architectures as Resolved.
Tue, May 14, 10:35 AM · gnupg (gpg22), Bug Report
werner committed rG110932925ba8: agent: correct length for uri and comment on 64-bit big-endian platforms (authored by dkg).
agent: correct length for uri and comment on 64-bit big-endian platforms
Tue, May 14, 10:34 AM
werner added a commit to T4501: gpg --generate-key --batch from existing key (with Key-Grip:) fails on 64-bit big-endian architectures: rG110932925ba8: agent: correct length for uri and comment on 64-bit big-endian platforms.
Tue, May 14, 10:34 AM · gnupg (gpg22), Bug Report
werner committed rG5651b2c460a7: agent: correct length for uri and comment on 64-bit big-endian platforms (authored by dkg).
agent: correct length for uri and comment on 64-bit big-endian platforms
Tue, May 14, 10:34 AM
werner committed rG54e96c6fd262: agent: Replace most assert by log_assert. (authored by werner).
agent: Replace most assert by log_assert.
Tue, May 14, 10:34 AM
werner added a commit to T4501: gpg --generate-key --batch from existing key (with Key-Grip:) fails on 64-bit big-endian architectures: rG5651b2c460a7: agent: correct length for uri and comment on 64-bit big-endian platforms.
Tue, May 14, 10:34 AM · gnupg (gpg22), Bug Report
werner added a comment to T4501: gpg --generate-key --batch from existing key (with Key-Grip:) fails on 64-bit big-endian architectures.

Good catch. Thanks for that work. I'll apply it to master and 2.2.

Tue, May 14, 10:33 AM · gnupg (gpg22), Bug Report
werner triaged T4513: dirmngr should try the configured keyservers anyway even if they are all dead as Normal priority.
Tue, May 14, 10:09 AM · Feature Request, Keyserver, dirmngr
werner closed T4507: show-only-fpr-mbox shows user-ids that are not valid as Resolved.
Tue, May 14, 10:08 AM · Bug Report
werner committed rG49a679eb3596: doc: Minor edit for a gpg option. (authored by werner).
doc: Minor edit for a gpg option.
Tue, May 14, 10:07 AM
werner added a commit to T4507: show-only-fpr-mbox shows user-ids that are not valid: rG49a679eb3596: doc: Minor edit for a gpg option..
Tue, May 14, 10:07 AM · Bug Report
werner committed rG3c2198e907c6: doc: Minor edit for a gpg option. (authored by werner).
doc: Minor edit for a gpg option.
Tue, May 14, 10:07 AM
werner added a commit to T4507: show-only-fpr-mbox shows user-ids that are not valid: rG3c2198e907c6: doc: Minor edit for a gpg option..
Tue, May 14, 10:07 AM · Bug Report