Page MenuHome GnuPG

gnupgProject
ActivePublic

Milestones

Subprojects

Members

  • This project does not have any members.
  • View All

Details

Description

Bugs, feature requests, memos, and support related to GnuPG.

Note that the tags gnug24, gnupg26 etc are used to indicate that a certain task is scheduled to be fixed in that version. This tag here is used if there is no concrete version affected or a schedule has not yet been set.

Recent Activity

Tue, Sep 19

berolinux requested review of D568: Fix build without LDAP.
Tue, Sep 19, 3:15 PM · gnupg

Fri, Sep 15

jukivili added a comment to T6561: OpenPGP benchmarks on Windows OCB vs. CFB + MDC vs. Unsigned vs. Signed on real data..

Just started wondering how much of this slow down is because of MingW libc not having very well optimized memcpy/memmove/memchr/strlen/etc. Is there profiling tools like 'perf' on Linux that could be used for Windows builds?

Fri, Sep 15, 6:07 PM · gnupg
werner added a comment to T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used.

For Windows things are actually more complicate. It seems to be common practise of sysadmins to provide PAC files which are used to map URLs to proxys and to decide whether a proxy is to be used at all. Fortunately Windows provides an API to find the proxy for a specific URL. We should use this.

Fri, Sep 15, 9:03 AM · Feature Request, gnupg, Restricted Project

Wed, Sep 13

werner raised the priority of T5768: Dirmngr: Use windows proxy settings if system proxy settings should be used from Normal to High.
Wed, Sep 13, 3:45 PM · Feature Request, gnupg, Restricted Project

Thu, Sep 7

werner edited projects for T6329: Extend --min-rsa-length by a start date, added: gnupg; removed Restricted Project, gnupg22.
Thu, Sep 7, 11:05 AM · gnupg, Feature Request

Wed, Sep 6

werner added a comment to T6481: BEGIN_ENCRYPTION status output happens later in 2.4.1 (breaks Emacs's EasyPG).

ack

Wed, Sep 6, 8:00 PM · Emacs, gnupg, Bug Report
DamienCassou added a comment to T6481: BEGIN_ENCRYPTION status output happens later in 2.4.1 (breaks Emacs's EasyPG).

@werner: What do you mean by "We have a fix for now"? Are you referring to @gniibe's patch?

Wed, Sep 6, 2:44 PM · Emacs, gnupg, Bug Report
werner lowered the priority of T6481: BEGIN_ENCRYPTION status output happens later in 2.4.1 (breaks Emacs's EasyPG) from High to Low.

We have a fix for now and thus I lower the priority. Given that EasyPG mimics the GPGME API we should here also use another pipe to convey the passphrase (e.g. for symmetric encryption).

Wed, Sep 6, 2:32 PM · Emacs, gnupg, Bug Report

Wed, Aug 30

ikloecker closed T6262: Kleopatra: Remove info buttons from Certify dialog, a subtask of T6626: Kleopatra: Improve certification and revocation, as Resolved.
Wed, Aug 30, 2:40 PM · gnupg, kleopatra

Tue, Aug 29

praiskup added a comment to T6689: Prolonging expiration date strips old signatures, confusing RPM.

Thank you for the response, @werner! (original reporter here)

Tue, Aug 29, 2:40 PM · Support, gnupg
werner triaged T6689: Prolonging expiration date strips old signatures, confusing RPM as Normal priority.
Tue, Aug 29, 1:40 PM · Support, gnupg
werner added a comment to T6689: Prolonging expiration date strips old signatures, confusing RPM.

BTW. you should use gpg --quick-set-expire FINGERPRINT 5y this is easier for scripting. Using
--export-options no-export-clean should keep the old signatures.

Tue, Aug 29, 1:39 PM · Support, gnupg
werner added a comment to T6689: Prolonging expiration date strips old signatures, confusing RPM.

gpg only uses the latest self-signatures and ignores old one. Thus I do not understand your problem.

Tue, Aug 29, 1:35 PM · Support, gnupg
Jakuje created T6689: Prolonging expiration date strips old signatures, confusing RPM.
Tue, Aug 29, 12:46 PM · Support, gnupg

Aug 22 2023

gniibe triaged T6675: doc: Man page for keyboxd as Wishlist priority.
Aug 22 2023, 6:40 AM · gnupg, Documentation

Aug 21 2023

werner added a comment to T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.

We should not backport this to 2.2; better update to the current stable version (2.4)

Aug 21 2023, 8:15 AM · gnupg, pinentry
gniibe added a comment to T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.

Using Ubuntu, it's GnuPG 2.2 (which doesn't have the fix of T4585). Without the fix, killing gpg (by CTRL-C) causes problematic situation where pinentry remains asking.
That's because gpg-agent and pinentry don't know the frontend side has been killed. T4585 introduced a watching thread into gpg-agent, so that it can correctly detect lost of frontend.

Aug 21 2023, 3:13 AM · gnupg, pinentry

Aug 18 2023

ydixken added a comment to T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.

Hi @gniibe - thanks for your fix.

Aug 18 2023, 1:10 PM · gnupg, pinentry
ebo added a subtask for T6626: Kleopatra: Improve certification and revocation: T6262: Kleopatra: Remove info buttons from Certify dialog.
Aug 18 2023, 10:38 AM · gnupg, kleopatra
gniibe added a comment to T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.

Pushed the fix for SIGINT handling of pinentry-tty and pinentry-curses by: rPa6f63fe37dbf: tty,curses: Upon SIGINT, let pinentry exit gracefully.
This fix should improve the situation.

Aug 18 2023, 7:06 AM · gnupg, pinentry
gniibe claimed T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.

Thank you for the report.
I found a bug in pinentry-curses and pinentry-tty for handling SIGINT. I am going to fix this.

Aug 18 2023, 5:00 AM · gnupg, pinentry

Aug 14 2023

aheinecke edited projects for T6085: pinentry-qt: Earlier passphrase hint when creating new key, added: gnupg; removed Installer.
In T6085#162918, @ebo wrote:

well, when creating openPGP keys with kleopatra I did not see any hints. I do not think that the issue would be vaild for password based encryption. There the common usecase is autogeneration, anyway

Autogeneration isn't viable if an organization has stupid password constraints that the autogenerated passwords do not satisfy. In particular, the autogenerated passwords do not contain any non-alphanumeric characters, but many password policies require such a character.

Aug 14 2023, 2:45 PM · gnupg, Restricted Project, pinentry

Aug 10 2023

ydixken updated the task description for T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.
Aug 10 2023, 10:09 AM · gnupg, pinentry
ydixken updated the task description for T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.
Aug 10 2023, 10:08 AM · gnupg, pinentry
ydixken renamed T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed from pinentry-tty breaks tty when timeout occurs or CTRL-C is pressed to pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.
Aug 10 2023, 10:04 AM · gnupg, pinentry
ydixken created T6641: pinentry-tty & pinentry-curses breaks tty when timeout occurs or CTRL-C is pressed.
Aug 10 2023, 10:01 AM · gnupg, pinentry

Aug 9 2023

jonpue123 updated the task description for T6640: PGP (kleopatra) checksum error importing some public keys! "checksum error / wrong keyring".
Aug 9 2023, 2:29 PM · Support
jonpue123 triaged T6640: PGP (kleopatra) checksum error importing some public keys! "checksum error / wrong keyring" as High priority.
Aug 9 2023, 2:28 PM · Support

Aug 8 2023

werner triaged T6638: PQC for GnuPG as Wishlist priority.
Aug 8 2023, 11:50 AM · OpenPGP, PQC, gnupg
werner added a project to T6636: PQC Implementation: PQC.
Aug 8 2023, 11:49 AM · PQC, gnupg, libgcrypt
werner triaged T6636: PQC Implementation as Normal priority.
Aug 8 2023, 11:46 AM · PQC, gnupg, libgcrypt

Aug 2 2023

ebo closed T6115: Kleopatra: On "revoke certification" do not offer keys which did not certify that certificate, a subtask of T6626: Kleopatra: Improve certification and revocation, as Resolved.
Aug 2 2023, 3:50 PM · gnupg, kleopatra
ebo renamed T6626: Kleopatra: Improve certification and revocation from Kleopatra: Improve certification revocation to Kleopatra: Improve certification and revocation.
Aug 2 2023, 2:29 PM · gnupg, kleopatra
ebo added a subtask for T6626: Kleopatra: Improve certification and revocation: T6627: Kleopatra: Add checkbox in certifications dialog.
Aug 2 2023, 2:28 PM · gnupg, kleopatra
ebo added a subtask for T6626: Kleopatra: Improve certification and revocation: T6115: Kleopatra: On "revoke certification" do not offer keys which did not certify that certificate.
Aug 2 2023, 2:07 PM · gnupg, kleopatra
ebo triaged T6626: Kleopatra: Improve certification and revocation as Normal priority.
Aug 2 2023, 2:05 PM · gnupg, kleopatra

Jul 26 2023

ikloecker added a comment to T6152: Text for Import of S/MIME certificates.

Currently, Kleopatra cannot do anything about this. get_passphrase in protect-tool.c asks those questions and doesn't support a way to give the user more context (e.g. by providing the file name). Once gpg-agent allows giving context, Kleopatra can add for example the file name to the data to import.

Jul 26 2023, 11:51 AM · Feature Request, S/MIME, gnupg, Restricted Project

Jul 25 2023

gniibe changed the status of T6570: Better performance with OCB encryption + sign from Open to Testing.

Applied to master.

Jul 25 2023, 6:09 AM · gnupg, Restricted Project
gniibe changed the status of T5252: bad expiration value when using --batch Creation-Date/Expire-Date from Open to Testing.

Applied to 2.4.

Jul 25 2023, 4:25 AM · backport, gnupg, Bug Report

Jul 24 2023

ebo added a comment to T6152: Text for Import of S/MIME certificates.

yes, one down, two to go...

Jul 24 2023, 4:33 PM · Feature Request, S/MIME, gnupg, Restricted Project
ebo moved T5599: Make gpg use the helpers baked into its AppImage from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:13 PM · gnupg, Restricted Project, Feature Request
ebo moved T5705: GnuPG: System wide configuration ignored when gpg.conf-2 exists from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:13 PM · Not A Bug, gnupg, Restricted Project
ebo moved T5943: gpg: Report details about failed symmetric decrypt with ERROR status from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · Restricted Project, gnupg, gpgme, Restricted Project
ebo moved T6063: GnuPG: Ignore invalid hash algorithm preferences when signing & encrypting combined from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · gnupg, Restricted Project
ebo moved T6173: Invalid signing-key when doing a signature-check of GnuPG installer-packages, signed by Werner Koch's signing-key in de-vs Mode (aka VS-NfD Mode) from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · Restricted Project, workaround, gnupg
ebo moved T6174: Option --require-comliance does not work in sign+encrypt mode from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · Restricted Project, OpenPGP, Bug Report, gnupg
ebo moved T6260: gpgconf: Analyze timing on Windows from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jul 24 2023, 2:12 PM · gnupg, kleopatra, Restricted Project
ebo moved T5598: AppImage of gpg from Restricted Project Column to Restricted Project Column on the Restricted Project board.

Meanwhile the AppImage (same binaries as the current Gpg4win version) can be found here among the binary releases: https://gnupg.org/download/index.html

Jul 24 2023, 12:29 PM · AppImage, gnupg, Restricted Project, Feature Request
gniibe added a project to T5252: bad expiration value when using --batch Creation-Date/Expire-Date: backport.
Jul 24 2023, 8:21 AM · backport, gnupg, Bug Report
aheinecke added a comment to T6561: OpenPGP benchmarks on Windows OCB vs. CFB + MDC vs. Unsigned vs. Signed on real data..

@jukivili Good to know.

Jul 24 2023, 6:31 AM · gnupg