Page MenuHome GnuPG

gnupgProject
ActivePublic

Milestones

Subprojects

Members

  • This project does not have any members.
  • View All

Recent Activity

Yesterday

onickolay added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

Sorry for a bit late follow up. How do you calculate a public key? RNP's crypto backend, Botan, is calculating public key without taking in account bits which should be tweaked. I.e. both tweaked and non-tweaked secret keys would produce the same public key. The same is with decryption. Could it be the case that your implementation actually used those bits to calculate a public key?

Fri, Feb 3, 12:39 PM · Support, gnupg, OpenPGP

Tue, Jan 31

werner added a project to T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used: Feature Request.
Tue, Jan 31, 10:07 AM · Feature Request, gnupg, Restricted Project

Thu, Jan 26

werner triaged T6233: Extract Card Holder Information for the PIV card from the "Printed Information" Object as Low priority.
Thu, Jan 26, 11:26 AM · gnupg, scd, Feature Request

Thu, Jan 19

werner moved T6348: gpgtar: Error when using --status-fd from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Jan 19, 4:21 PM · gnupg, Restricted Project
werner added a comment to T6332: GPG: Extend / rework "is_file_compressed".

The compression check currently detects bzip2, gzip, zip, pkzip, and PDF. This also covers common document formats like odt and docx. We may add some more detection in the future. However, for large files you usually know their type and thus you better use "-z0" for already compressed data or "-z-1" if you want to force compression (may be for PDFs which often can be a shrinked to 80% or so).

Thu, Jan 19, 10:49 AM · gnupg22, gnupg24, Restricted Project

Wed, Jan 18

bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

So here is a redacted CLI-dump of the exact sequence I'm describing in my post. This is with untweaked keys and gpg 2.2.40 and a factory-reset yubikey.

Wed, Jan 18, 6:30 PM · Support, gnupg, OpenPGP
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

So in case this was not clear... What I'm describing is very similar to the original description, but it is "inverted" - the untweaked key works flawlessly (import and decryption) except for keytocard. And the tweaked key can't be imported - either "Bad Secret Key" or asking for passphrase.

Wed, Jan 18, 3:38 PM · Support, gnupg, OpenPGP
aheinecke added a comment to T6259: Kleopatra: Improve startup performance .

I am somehwat confused, my symantec system got faster. But there are some things like "Symantec Insight" which will whitelist often used files and applications, also signed files might get preferred treatment. I tried to get this slower by disabling the "Insight" and changing the "Bloodhound behavior" to agressive... So timings might not be comparable. I should probably do tests ohne without restarting my systems for a good comparison.

Wed, Jan 18, 3:36 PM · gnupg, kleopatra, Restricted Project
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

@onickolay Yes, I have. I have used --check-cv25519-bits and it said that it needs patching. I then did --fix-cv25519-bits and exported the key. Looking at the CV25519 private-key bytes produced by my code and by RNP, I confirmed that they did the exact same transformation.
When trying to re-import the exported key into gpg, I got the "Bad Secret Key" error again

Wed, Jan 18, 3:27 PM · Support, gnupg, OpenPGP
onickolay added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

@bigmomma Just for a quick check - did you try to use RNP's CLI command --edit-key --fix-cv25519-bits, as it's not clear from the message?

Wed, Jan 18, 3:17 PM · Support, gnupg, OpenPGP
bigmomma added a comment to T5464: Failure to import Curve25519 ECDH secret subkey to the GnupG..

Hi! I would like to chime in on this issue as I am having some weird problems with a CV25519 sub-key and after stumbling upon this thread, I think it is related to this.
Unfortunately, I can't post the key material here, because it is my actual encryption private-key.

Wed, Jan 18, 3:12 PM · Support, gnupg, OpenPGP
werner changed the status of T6348: gpgtar: Error when using --status-fd from Open to Testing.

This can be easily tested using

Wed, Jan 18, 10:47 AM · gnupg, Restricted Project
werner moved T6348: gpgtar: Error when using --status-fd from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Wed, Jan 18, 10:45 AM · gnupg, Restricted Project
aheinecke moved T6259: Kleopatra: Improve startup performance from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Wed, Jan 18, 10:17 AM · gnupg, kleopatra, Restricted Project
ikloecker triaged T6348: gpgtar: Error when using --status-fd as High priority.
Wed, Jan 18, 9:57 AM · gnupg, Restricted Project
ikloecker closed T6347: gpgtar needs to support a few more general command line args to be usable by gpgme as Resolved.

Instead of using --enable-special-filenames and a separate FD the list of files is now passed to gpgtar's stdin. Similarly, we read from gpgtar's stderr instead of using a separate --logger-fd.

Wed, Jan 18, 9:50 AM · gnupg, Restricted Project

Fri, Jan 13

ikloecker added a comment to T6347: gpgtar needs to support a few more general command line args to be usable by gpgme.

What about --logger-fd? Does gpgtar pass all FDs through to gpg?

Fri, Jan 13, 12:04 PM · gnupg, Restricted Project
ikloecker added a comment to T6347: gpgtar needs to support a few more general command line args to be usable by gpgme.

Okay, I'll skip those for now.

Fri, Jan 13, 12:02 PM · gnupg, Restricted Project
werner added a comment to T6347: gpgtar needs to support a few more general command line args to be usable by gpgme.

no-tty and charset are anyway obsolete and passed only for older gpg versions. The other things should have useful defaults in gpg - in particular these defaults are taken from the same envvar as gpgme does. See send_pinentry_environment.

Fri, Jan 13, 10:14 AM · gnupg, Restricted Project
ikloecker triaged T6347: gpgtar needs to support a few more general command line args to be usable by gpgme as High priority.
Fri, Jan 13, 10:03 AM · gnupg, Restricted Project

Wed, Jan 11

aheinecke added a comment to T6259: Kleopatra: Improve startup performance .

Another thing I have noticed when turning qt debug output on is that the qt windows platformsupport fontdatabase logs over a a timespan of over two seconds that it is adding fonts to its database.

Wed, Jan 11, 5:04 PM · gnupg, kleopatra, Restricted Project
aheinecke closed T6260: gpgconf: Analyze timing on Windows, a subtask of T6259: Kleopatra: Improve startup performance , as Resolved.
Wed, Jan 11, 2:54 PM · gnupg, kleopatra, Restricted Project
aheinecke closed T6260: gpgconf: Analyze timing on Windows as Resolved.

Currently the first call to QGpgMENewCryptoConfig::reloadConfiguration happens in the GpgSM self test. Funnily enough the selftest for gpg just returns true when the empty constructors of the cryptoconfig are called. The first component load is GpgSM.

Wed, Jan 11, 2:54 PM · gnupg, kleopatra, Restricted Project

Tue, Jan 10

aheinecke closed T4067: Kleopatra, performance: Create a system to use binary resources for i18n, a subtask of T6259: Kleopatra: Improve startup performance , as Wontfix.
Tue, Jan 10, 4:50 PM · gnupg, kleopatra, Restricted Project

Thu, Jan 5

aheinecke triaged T6332: GPG: Extend / rework "is_file_compressed" as Normal priority.
Thu, Jan 5, 11:39 AM · gnupg22, gnupg24, Restricted Project

Dec 16 2022

vitusb added a comment to T6312: Although gnupg-2.2.41 ist released in GnuPG VS-Desktop 3.1.26 it is not available in Gpg4Win 3.1.26 and on git- and download-server..

Hello ...

It is not really helpful if you publish that fact anyway on a public tracker.

Dec 16 2022, 2:55 PM · Responsible_Disclosure, gpg4win, gnupg
werner added a project to T6312: Although gnupg-2.2.41 ist released in GnuPG VS-Desktop 3.1.26 it is not available in Gpg4Win 3.1.26 and on git- and download-server.: Responsible_Disclosure.
Dec 16 2022, 2:39 PM · Responsible_Disclosure, gpg4win, gnupg
werner closed T6312: Although gnupg-2.2.41 ist released in GnuPG VS-Desktop 3.1.26 it is not available in Gpg4Win 3.1.26 and on git- and download-server. as Invalid.

We sometimes grant our customers the privilege of receiving updates a few days earlier than the community. It is not really helpful if you publish that fact anyway on a public tracker. BTW, there is no community version gpg4win 3.1.26.

Dec 16 2022, 2:32 PM · Responsible_Disclosure, gpg4win, gnupg
vitusb updated the task description for T6312: Although gnupg-2.2.41 ist released in GnuPG VS-Desktop 3.1.26 it is not available in Gpg4Win 3.1.26 and on git- and download-server..
Dec 16 2022, 2:30 PM · Responsible_Disclosure, gpg4win, gnupg
vitusb created T6312: Although gnupg-2.2.41 ist released in GnuPG VS-Desktop 3.1.26 it is not available in Gpg4Win 3.1.26 and on git- and download-server..
Dec 16 2022, 2:13 PM · Responsible_Disclosure, gpg4win, gnupg
werner removed a project from T5826: Improve detached signing and verification speed: backport.
Dec 16 2022, 9:31 AM · gnupg

Dec 12 2022

ametzler1 created T6309: Typo fixes ("outpust" et al).
Dec 12 2022, 6:09 PM · gnupg24, gnupg (gpg23), Bug Report
werner claimed T1235: adding automatic refresh-key.
Dec 12 2022, 11:46 AM · Restricted Project, gnupg, Feature Request
werner moved T1235: adding automatic refresh-key from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Dec 12 2022, 11:45 AM · Restricted Project, gnupg, Feature Request
gniibe changed the status of T6293: w32: putenv in Microsoft runtime doesn't support GNU extension from Open to Testing.
Dec 12 2022, 9:04 AM · gnupg, Bug Report

Dec 6 2022

ikloecker added a comment to T6152: Text for Import of S/MIME certificates.

If you enter a wrong password in a window, the error message will only be given after you have answered all requests for the transport passwords.

Dec 6 2022, 10:17 AM · Feature Request, S/MIME, gnupg, Restricted Project
werner closed T6292: gpg-wks-client --mirror and expired keys as Resolved.
Dec 6 2022, 9:28 AM · Feature Request, wkd, gnupg
werner added a comment to T6292: gpg-wks-client --mirror and expired keys.

No. We now ignore expired key with --mirror, --create, and --install-key.

Dec 6 2022, 9:23 AM · Feature Request, wkd, gnupg

Dec 5 2022

ikloecker renamed T6187: Kleopatra: Import of p12 file fails with "invalid crypto engine" from import of p12 file fails with "invalid crypto engine" to Kleopatra: Import of p12 file fails with "invalid crypto engine".
Dec 5 2022, 9:00 AM · kleopatra, gpgme, gnupg, Restricted Project
ikloecker added a comment to T6260: gpgconf: Analyze timing on Windows.

Another idea would be a gpgconf daemon that answers all queries from its in-memory cache. Obviously, this wouldn't help with the very first start unless the daemon is started automatically on login which should probably be default behavior at least on Windows anyway. OTOH, gpgme does already cache the config so this would only have an effect when starting Kleopatra.

Dec 5 2022, 8:48 AM · gnupg, kleopatra, Restricted Project
ikloecker added a project to T4159: Kleopatra fails to create new Key Pair: kleopatra.
Dec 5 2022, 8:30 AM · kleopatra, gnupg, Bug Report, gpg4win

Nov 30 2022

werner added a comment to T6293: w32: putenv in Microsoft runtime doesn't support GNU extension.

Actually we should switch from putenv to SetEnvironmentVariable et al. because that avoids problems wit different Windows libc versions, for example in DLLs.

Nov 30 2022, 8:35 AM · gnupg, Bug Report
gniibe added a comment to T6293: w32: putenv in Microsoft runtime doesn't support GNU extension.

Fixed in rG8e8971403f75: w32: Fix gnupg_unsetenv..

Nov 30 2022, 8:02 AM · gnupg, Bug Report
gniibe triaged T6293: w32: putenv in Microsoft runtime doesn't support GNU extension as Normal priority.
Nov 30 2022, 7:50 AM · gnupg, Bug Report

Nov 29 2022

werner created T6292: gpg-wks-client --mirror and expired keys.
Nov 29 2022, 5:50 PM · Feature Request, wkd, gnupg
werner closed T5826: Improve detached signing and verification speed as Resolved.

Done (STABLE-BRANCH-2-2.40 for now)

Nov 29 2022, 12:23 PM · gnupg
werner closed T5826: Improve detached signing and verification speed, a subtask of T5828: Improvements for gnupg data operation performance (enc/dec/sign/verify/enarmor/dearmor/etc), as Resolved.
Nov 29 2022, 12:23 PM · gnupg
werner reopened T5826: Improve detached signing and verification speed, a subtask of T5828: Improvements for gnupg data operation performance (enc/dec/sign/verify/enarmor/dearmor/etc), as Open.
Nov 29 2022, 9:56 AM · gnupg
werner reopened T5826: Improve detached signing and verification speed as "Open".
Nov 29 2022, 9:56 AM · gnupg
werner claimed T5826: Improve detached signing and verification speed.

Yes, I'll do that. Thanks for the reminder.

Nov 29 2022, 9:55 AM · gnupg