Page MenuHome GnuPG

werner (Werner Koch)
EngineeringAdministrator

Projects

Today

  • Clear sailing ahead.

Tomorrow

  • Clear sailing ahead.

Saturday

  • Clear sailing ahead.

User Details

User Since
Mar 27 2017, 4:48 PM (244 w, 3 d)
Roles
Administrator
Availability
Available

Recent Activity

Tue, Nov 30

werner added a comment to T5708: Kleopatra: Configure expiration date default in config.

--quick-gen-key supports this but there is no general option; the 2 years are hard coded.

Tue, Nov 30, 10:05 AM · kleopatra, g10code, Restricted Project

Fri, Nov 26

werner committed rW4e1a2b8b701a: appimage: More tweaks to AppRun (authored by werner).
appimage: More tweaks to AppRun
Fri, Nov 26, 1:22 PM
werner requested changes to D543: gpg: Use SHA-256 as default s2k-digest-algo.

Sorry, we won't do that. Actually SHA-1 is still allowed when used in a KDF mechanism like S2K. OpenPGp is about Public Key cryptography and for that it is important to keep the keys safe. Protection the private key with a passaord is a failstop scheme which gives time to revoke the actual key and handle the compromise. When suing symmtric encryption (gpg -c) ist is strongly sutested to use a password with at least 128 bit entropy (e.g. by using our magic wand button). The S2K iteration is actually not needed in such a case.

Fri, Nov 26, 9:09 AM

Thu, Nov 25

werner committed rWd07f6f773f6b: appimage: Need to copy and dereference symlinks (authored by werner).
appimage: Need to copy and dereference symlinks
Thu, Nov 25, 4:24 PM
werner closed T5705: GnuPG: System wide configuration ignored when gpg.conf-2 exists as Resolved.

Not a bug but a limitation of 2.2's option listing: In contrast to 2.3 we can't *show* the used options via gpgconf correcly if there is a conflict between global and local options. However, the actually *used* values are different and correct according to the config. In particular a global forced option overrides any local or command line option.

Thu, Nov 25, 4:11 PM · Not A Bug, gnupg, Restricted Project
werner added a project to T5705: GnuPG: System wide configuration ignored when gpg.conf-2 exists: gpgrt.
Thu, Nov 25, 2:56 PM · Not A Bug, gnupg, Restricted Project
werner committed rMb8b49c11e95f: core: Make the gpgconf option parsing of string types more robust (authored by werner).
core: Make the gpgconf option parsing of string types more robust
Thu, Nov 25, 11:52 AM
werner committed rMeb37d6469e72: core: Support dirinfo("socketdir") (authored by werner).
core: Support dirinfo("socketdir")
Thu, Nov 25, 11:52 AM
werner committed rM43de18a292b2: tests: Silence libtool warning on Windows. (authored by werner).
tests: Silence libtool warning on Windows.
Thu, Nov 25, 11:52 AM
werner added a comment to T5704: Ed448/X448 defined in draft-ietf-openpgp-crypto-refresh-04.

We should only allow this for v5. This way we get incentive to move forward. ed448 requires a newer version anyway and thus it is good to take this as an opportunity to also demand AEAD etc.

Thu, Nov 25, 9:29 AM · gnupg (gpg23)

Tue, Nov 23

werner triaged T5701: Mismatch between enums and config table as High priority.

Thanks for the well written bug report and the fix.

Tue, Nov 23, 1:29 PM · gnupg (gpg23), Bug Report
werner changed the status of T5644: Heuristic for default reader detection from Open to Testing.
Tue, Nov 23, 1:28 PM · Testing, Feature Request, gnupg (gpg22)
werner closed T5650: Check problems with gpgconf and global config files as Resolved.
Tue, Nov 23, 1:27 PM · Restricted Project, gnupg (gpg22)
werner closed T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu as Resolved.
Tue, Nov 23, 1:26 PM · Testing, scd, ssh, Bug Report
werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q4/000467.html on T5641: Release GnuPG 2.2.33.
Tue, Nov 23, 1:26 PM · Release Info, gnupg (gpg22)
werner committed rD590e4c8499d9: swdb: GnuPG 2.2.33 (authored by werner).
swdb: GnuPG 2.2.33
Tue, Nov 23, 12:17 PM
werner committed rW3ab78a7bbf49: version-3: Update GnuPG to 2.2.33 (authored by werner).
version-3: Update GnuPG to 2.2.33
Tue, Nov 23, 12:06 PM
werner updated the task description for T5641: Release GnuPG 2.2.33.
Tue, Nov 23, 11:56 AM · Release Info, gnupg (gpg22)
werner committed rG9adee2dd3383: po: Auto update (authored by werner).
po: Auto update
Tue, Nov 23, 11:49 AM
werner committed rG65c80d6b0f6a: Post release updates (authored by werner).
Post release updates
Tue, Nov 23, 11:49 AM
werner committed rG007fea8ce9af: po: Update Russian translation. (authored by Ineiev <ineiev@gnu.org>).
po: Update Russian translation.
Tue, Nov 23, 11:49 AM
werner committed rG457f6ac1ef6d: Release 2.2.33 (authored by werner).
Release 2.2.33
Tue, Nov 23, 11:49 AM
werner triaged T5703: Release GnuPG 2.2.34 as Low priority.
Tue, Nov 23, 11:47 AM · Release Info, gnupg (gpg22)
werner closed T5076: [solved] gpg-agent respawn another process randomly and causes cached passphrase check failed / expired as Resolved.
Tue, Nov 23, 9:18 AM · gnupg (gpg22), Bug Report
werner closed T5205: GNuPG compile error as Resolved.
Tue, Nov 23, 9:17 AM · gnupg (gpg22), toolchain, Support
werner updated the task description for T5058: Review --trusted-key.
Tue, Nov 23, 9:16 AM · gnupg (gpg23)
werner closed T5120: Incompatible Ed25519 secret key (no-encryption), a subtask of T5114: GnuPG fails to import back generated and exported EdDSA secret key., as Resolved.
Tue, Nov 23, 9:15 AM · gnupg, Testing, gpgagent, Bug Report
werner closed T5120: Incompatible Ed25519 secret key (no-encryption) as Resolved.

I guess this is solved. Feel free to re-open and schedule for 2.2.34

Tue, Nov 23, 9:15 AM · gnupg (gpg22), Bug Report
werner lowered the priority of T5235: Delays in dirmngr http connections on Windows from Normal to Low.
Tue, Nov 23, 9:14 AM · can't replicate, dirmngr, ntbtls, Windows, gnupg (gpg22)
werner added a project to T5235: Delays in dirmngr http connections on Windows: can't replicate.

Might be a TOR Thing?

Tue, Nov 23, 9:14 AM · can't replicate, dirmngr, ntbtls, Windows, gnupg (gpg22)
werner closed T5656: Error emitted: gpg: error reading symlink '/proc/curproc/file': No such file or directory as Resolved.
Tue, Nov 23, 9:07 AM · gnupg (gpg23), MacOS, Bug Report
werner triaged T5700: libgcrypt: bulk AES-GCM acceleration for ppc64le as Normal priority.

FWIW: We need a DCO; see doc/HACKING.

Tue, Nov 23, 9:06 AM · patch, ppc, libgcrypt, Feature Request
werner added a project to T5701: Mismatch between enums and config table: gnupg (gpg23).
Tue, Nov 23, 9:04 AM · gnupg (gpg23), Bug Report
werner changed the status of T5598: AppImage of gpg from Open to Testing.
Tue, Nov 23, 9:03 AM · gnupg, Restricted Project, Feature Request
werner changed the status of T5598: AppImage of gpg, a subtask of T5592: AppImage of Kleopatra, from Open to Testing.
Tue, Nov 23, 9:03 AM · Restricted Project, kleopatra, Feature Request
werner added a comment to T5598: AppImage of gpg.

No, too much release work. Better just one AppImage. Or well one VSD (based on 2.2) and one regular (based on 2.3)

Tue, Nov 23, 9:02 AM · gnupg, Restricted Project, Feature Request
werner committed rW9b95b2886f23: Small fixes to the NEWS. (authored by werner).
Small fixes to the NEWS.
Tue, Nov 23, 8:35 AM
werner committed rW683b4e125432: Updated gpgex to 1.0.8 (authored by werner).
Updated gpgex to 1.0.8
Tue, Nov 23, 8:34 AM
werner committed rW2e095dc38f2b: Do not create kleopatra tarballs with PO files. (authored by werner).
Do not create kleopatra tarballs with PO files.
Tue, Nov 23, 8:34 AM
werner committed rW32c0ee99f844: Add NEWS for the 3.1.19 version (authored by werner).
Add NEWS for the 3.1.19 version
Tue, Nov 23, 8:34 AM
werner committed rWfee90fdb8a97: Update kleopatra (authored by werner).
Update kleopatra
Tue, Nov 23, 8:34 AM
werner committed rW71782a0220d1: Update GnuPG to 2.2.32 (authored by werner).
Update GnuPG to 2.2.32
Tue, Nov 23, 8:34 AM
werner committed rW92f4bfcbd8ac: Do not install libgcc_s_dw2-1.dll (authored by werner).
Do not install libgcc_s_dw2-1.dll
Tue, Nov 23, 8:34 AM
werner committed rW5276fd682bab: git: Ignore some more files (authored by werner).
git: Ignore some more files
Tue, Nov 23, 8:34 AM
werner committed rW42c459a69d00: MSI: Make the upload command and winlight less noisy. (authored by werner).
MSI: Make the upload command and winlight less noisy.
Tue, Nov 23, 8:34 AM
werner committed rWd14de405dd69: MSI: Introduce separate version_signkey. (authored by werner).
MSI: Introduce separate version_signkey.
Tue, Nov 23, 8:34 AM
werner committed rWf7483422b79b: appimage: Fix bashism (authored by werner).
appimage: Fix bashism
Tue, Nov 23, 8:31 AM

Mon, Nov 22

werner committed rG985fb25c46ea: gpg: New option --forbid-gen-key. (authored by werner).
gpg: New option --forbid-gen-key.
Mon, Nov 22, 9:16 PM
werner committed rGc397ba3ac02e: gpg: New option --forbid-gen-key. (authored by werner).
gpg: New option --forbid-gen-key.
Mon, Nov 22, 9:16 PM
werner committed rWea45c1deb73f: appimage: Make the AppRun configurable (authored by werner).
appimage: Make the AppRun configurable
Mon, Nov 22, 2:42 PM
werner is attending E897: Weekly Standup.
Mon, Nov 22, 9:46 AM
werner added a comment to T5698: w32: Support poll with FD backend.

I do not think that we should put any more support for FDs into gpgrt. The goal is to move entirely to the Win32 API.

Mon, Nov 22, 9:38 AM · Windows, gpgrt

Fri, Nov 19

werner committed rGb091a250d141: gpgconf: Fix last commit. (authored by werner).
gpgconf: Fix last commit.
Fri, Nov 19, 9:38 AM
werner committed rG40d2c9316527: gpgconf: Include output of --list-dirs in --show-configs. (authored by werner).
gpgconf: Include output of --list-dirs in --show-configs.
Fri, Nov 19, 9:35 AM
werner committed rGa0fb78ee0fba: gpgconf: Include output of --list-dirs in --show-configs. (authored by werner).
gpgconf: Include output of --list-dirs in --show-configs.
Fri, Nov 19, 9:31 AM

Thu, Nov 18

werner committed rG6ee01c1d26ca: gpg,gpgsm: Add option --min-rsa-length. (authored by werner).
gpg,gpgsm: Add option --min-rsa-length.
Thu, Nov 18, 10:12 PM
werner committed rG7f31891ab1e5: gpgconf: --show-configs now prints a bunch of Registry entries. (authored by werner).
gpgconf: --show-configs now prints a bunch of Registry entries.
Thu, Nov 18, 10:12 PM
werner committed rG58652f4c0b3a: gpgconf: Extend --show-config to show envvars. (authored by werner).
gpgconf: Extend --show-config to show envvars.
Thu, Nov 18, 10:12 PM
werner committed rG6c6c404883e5: common,w32: New function read_w32_reg_string. (authored by werner).
common,w32: New function read_w32_reg_string.
Thu, Nov 18, 10:12 PM
werner committed rG5f39db70c069: gpg,gpgsm: Add option --min-rsa-length. (authored by werner).
gpg,gpgsm: Add option --min-rsa-length.
Thu, Nov 18, 8:50 PM
werner committed rGf453d52e53f9: po: Replace "PIN-Cache" by "Passwort Cache" in German. (authored by werner).
po: Replace "PIN-Cache" by "Passwort Cache" in German.
Thu, Nov 18, 4:56 PM

Wed, Nov 17

werner added a comment to T5638: Make Kleopatra group configuration exportable.

Your item "2. Allow exporting multiple groups at the same time." is not really important. If you want to do that, please make sure that each group is exported to a separate file.

Wed, Nov 17, 6:33 PM · Restricted Project, Feature Request, kleopatra
werner closed T5695: libgcrypt cross-compilation error as Invalid.

Please see T5696.

Wed, Nov 17, 6:30 PM · Bug Report
werner closed T5696: libgpg-error cross-compilation error as Invalid.

No autoreconf etc. Use only our method to cross build. That is $src/libgcrypt/autogen.sh --build-w32.

Wed, Nov 17, 6:29 PM
werner committed rG749bb80cb768: gpgconf: --show-configs now prints a bunch of Registry entries. (authored by werner).
gpgconf: --show-configs now prints a bunch of Registry entries.
Wed, Nov 17, 6:16 PM
werner added a comment to rGc9343bec83e2: sm: Detect circular chains in --list-chain..

Here are the two test certificates mentioned in the commit log:

Wed, Nov 17, 11:19 AM
werner committed rG50539394802f: common,w32: New function read_w32_reg_string. (authored by werner).
common,w32: New function read_w32_reg_string.
Wed, Nov 17, 9:55 AM
werner committed rG9172fbc08473: gpgconf: Extend --show-config to show envvars. (authored by werner).
gpgconf: Extend --show-config to show envvars.
Wed, Nov 17, 9:55 AM

Tue, Nov 16

werner changed the status of T5682: ed25519 internal authenticate with openpgpcard may send long data over short apdu from Open to Testing.
Tue, Nov 16, 5:24 PM · Testing, scd, ssh, Bug Report
werner committed rGb6b735edab03: scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE. (authored by gniibe).
scd:openpgp: Support longer data for INTERNAL_AUTHENTICATE.
Tue, Nov 16, 4:09 PM
werner committed rGc9343bec83e2: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Tue, Nov 16, 4:09 PM
werner committed rW64f4556da15e: appimage: Take version number from gpg4win. (authored by werner).
appimage: Take version number from gpg4win.
Tue, Nov 16, 3:59 PM
werner committed rWe042d0661faa: appimage: Copy a global vsd standard config. (authored by werner).
appimage: Copy a global vsd standard config.
Tue, Nov 16, 3:12 PM
werner added a comment to T5512: Implement service indicators.

We could use a new mode #define GCRY_GET_CONFIG_FIPS 1 with gcry_get_config:

Tue, Nov 16, 1:21 PM · Feature Request, FIPS, libgcrypt
werner triaged T5693: GPG sign in corrupts larger terminal sizing as Normal priority.

What is your Pinentry version, which OS is that, and which terminal type?

Tue, Nov 16, 1:13 PM · MacOS, pinentry, Bug Report
werner triaged T5694: poly1305-s390x.S is compiled despite --disable-asm as Normal priority.
Tue, Nov 16, 1:10 PM · libgcrypt, Bug Report

Mon, Nov 15

werner triaged T5692: New entropy gatherer using the genentropy system call. as Normal priority.
Mon, Nov 15, 7:30 PM · Testing, libgcrypt, FIPS
werner triaged T5691: Release libgcrypt 1.10.0 as Low priority.
Mon, Nov 15, 7:22 PM · FIPS, Release Info, libgcrypt
werner committed rG74c5b350624b: sm: Detect circular chains in --list-chain. (authored by werner).
sm: Detect circular chains in --list-chain.
Mon, Nov 15, 5:53 PM
werner added a comment to T5690: Kleopatra: Custom placeholder text in newcertificatewizard.

Can you given a example on how this would look like. In particulr are placeholders some kind of forced template or just a grey background text?

Mon, Nov 15, 3:23 PM · kleopatra, Restricted Project
werner committed rWc0b369015aac: appimage: Fix new --devel option (authored by werner).
appimage: Fix new --devel option
Mon, Nov 15, 12:06 PM
werner is attending E896: Weekly Standup.
Mon, Nov 15, 7:47 AM
werner triaged T5668: gpgme: gpgme_op_query_swdb() does not report error from gpgconf as Normal priority.
Mon, Nov 15, 7:46 AM · Restricted Project, gpgme, Bug Report
werner closed T5670: gpgconf --query-swdb incorrectly handles pre-release version numbers as Wontfix.
Mon, Nov 15, 7:45 AM · gpg4win, Bug Report
werner closed T5667: gpg(v) prints the human-readable form of notations to the status-fd as Resolved.
Mon, Nov 15, 7:43 AM · Bug Report
werner triaged T5686: GitHub mirror out of date as Normal priority.
Mon, Nov 15, 7:43 AM · Feature Request, dev.gnupg.org
werner added a comment to T5686: GitHub mirror out of date.

No, our admin left us and took all scripts and docs with him. We need to set it up again. You better use this system anyway, patches etc on GitHib are not used.

Mon, Nov 15, 7:42 AM · Feature Request, dev.gnupg.org
werner changed the status of T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows from Resolved to Wontfix.
Mon, Nov 15, 7:40 AM · Bug Report
werner closed T5687: "/mkheader.exe: cannot execute binary file: Exec format error" when cross compiling on Windows as Resolved.

GnuPG requires a Unix system to build. We do not support building natively on Windows. Sorry.

Mon, Nov 15, 7:40 AM · Bug Report

Sun, Nov 14

werner committed rW578ea4764731: appimage: Add a --devel option to the docker build script. (authored by werner).
appimage: Add a --devel option to the docker build script.
Sun, Nov 14, 6:41 PM
werner committed rGa43efc9294d1: agent: Print the non-option warning earlier. (authored by werner).
agent: Print the non-option warning earlier.
Sun, Nov 14, 6:32 PM
werner committed rG027e34235bc5: build: Fix several "include file not found" problems (authored by ikloecker).
build: Fix several "include file not found" problems
Sun, Nov 14, 6:32 PM
werner committed rW1f99eba52eb2: appimage: Fix the version extraction. (authored by werner).
appimage: Fix the version extraction.
Sun, Nov 14, 6:32 PM
werner committed rGbd5c775878fd: agent: Print the non-option warning earlier. (authored by werner).
agent: Print the non-option warning earlier.
Sun, Nov 14, 6:07 PM
werner committed rW7fd576a75698: packages: Update libgpg-error to 1.43 (authored by werner).
packages: Update libgpg-error to 1.43
Sun, Nov 14, 5:16 PM
werner committed rW30922599b6be: appimage: Allow building a VSD version and rename AppImage name (authored by werner).
appimage: Allow building a VSD version and rename AppImage name
Sun, Nov 14, 4:33 PM
werner committed rW392d05d69e70: appimage: Extend the AppRun (authored by werner).
appimage: Extend the AppRun
Sun, Nov 14, 1:44 PM
werner committed rDac919c7c52b7: ids: draft-koch-openpgp-webkey-service-13.txt (authored by werner).
ids: draft-koch-openpgp-webkey-service-13.txt
Sun, Nov 14, 11:59 AM

Sat, Nov 13

werner closed T5685: Clear stale --trusted-key records from the trustdb, a subtask of T5058: Review --trusted-key, as Resolved.
Sat, Nov 13, 9:03 PM · gnupg (gpg23)
werner closed T5685: Clear stale --trusted-key records from the trustdb as Resolved.
Sat, Nov 13, 9:03 PM · gnupg