Page MenuHome GnuPG
Projects gnupg gnupg22

gnupg22Project
ActivePublic
Watch Project

Milestones
View All

Members

  • This project does not have any members.
  • View All

Watchers (1)

Recent Activity
View All

Thu, Oct 23

timegrid moved T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already from QA to Done on the gpd5x board.

Looks good to me on gpg4win-5.0.0-beta395 @ win11 (gpg 2.5.13).

Thu, Oct 23, 2:45 PM · gnupg22, Bug Report, gpd5x, okular

Wed, Oct 22

ebo moved T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already from WIP to QA on the gpd5x board.
Wed, Oct 22, 4:32 PM · gnupg22, Bug Report, gpd5x, okular
werner changed the status of T7840: Oddity with 7816 change_reference_data from Open to Testing.
Wed, Oct 22, 2:23 PM · Bug Report, gnupg22, gnupg26, scd
gniibe changed the status of T7855: keybox/keydb locking issue in 2.6 , a subtask of T2196: keydb locking can result in deadlock in 2.2, from Open to Testing.
Wed, Oct 22, 4:38 AM · gnupg22, Bug Report

Tue, Oct 21

gniibe changed the status of T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already from Open to Testing.

Fixed in master: rGae431b04370f: w32:common: Take care of possible race on startup under Windows.

Tue, Oct 21, 9:18 AM · gnupg22, Bug Report, gpd5x, okular

Mon, Oct 13

werner moved T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already from Backlog to QA on the gnupg22 board.
Mon, Oct 13, 4:00 PM · gnupg22, Bug Report, gpd5x, okular
werner added a project to T7829: w32: daemon (gpg-agent/keyboxd/dirmngr) startup and connection race when there is a socket file already: gnupg22.
Mon, Oct 13, 4:00 PM · gnupg22, Bug Report, gpd5x, okular
werner changed the status of T2196: keydb locking can result in deadlock in 2.2 from Open to Testing.
Mon, Oct 13, 3:45 PM · gnupg22, Bug Report

Thu, Oct 9

werner renamed T2196: keydb locking can result in deadlock in 2.2 from keydb locking can result in deadlock to keydb locking can result in deadlock in 2.2.
Thu, Oct 9, 5:54 PM · gnupg22, Bug Report
werner added a subtask for T2196: keydb locking can result in deadlock in 2.2: T7855: keybox/keydb locking issue in 2.6 .
Thu, Oct 9, 2:34 PM · gnupg22, Bug Report

Tue, Oct 7

werner updated the task description for T2196: keydb locking can result in deadlock in 2.2.
Tue, Oct 7, 4:11 PM · gnupg22, Bug Report
werner raised the priority of T2196: keydb locking can result in deadlock in 2.2 from Low to High.

We recently noticed problem at a customer site with creating the standard rsa3072 keys. It basically stopped working. A likely cause for this seems to be some anti-malware software slowing down file system calls. In the wake of this we looked again at our file locking strategy and found a few things which are not as they should be. For example the release of the lock before a Close call. Trying to fix this unfortunately caused other problems, thus a couple of fixes are needed.

Tue, Oct 7, 4:09 PM · gnupg22, Bug Report

Thu, Oct 2

werner moved T7840: Oddity with 7816 change_reference_data from Backlog to WIP on the gnupg26 board.
Thu, Oct 2, 3:11 PM · Bug Report, gnupg22, gnupg26, scd
werner triaged T7840: Oddity with 7816 change_reference_data as Normal priority.
Thu, Oct 2, 2:54 PM · Bug Report, gnupg22, gnupg26, scd

Sep 24 2025

werner triaged T7819: Export of secret S/MIME key with brainpool fails (error converting key parameters) as Wishlist priority.

ECC support for X.509 and in particular pkcs#12 format is limited. That is in general not a problem because such certificates are stored on a token and not on disk.

Sep 24 2025, 6:21 PM · vsd, S/MIME, gnupg22
werner added a comment to T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server.

Also implemented for 2.2

Sep 24 2025, 4:58 PM · gnupg22, gnupg26, Feature Request, gpd5x
werner added a comment to T7333: Allow gpg to auto-upload a new own key to LDAP servers.

Will be backported after 2.2.49

Sep 24 2025, 2:41 PM · gnupg26, vsd33, gnupg22
werner moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from WiP to Backlog on the gnupg22 board.
Sep 24 2025, 2:40 PM · gnupg26, vsd33, gnupg22
werner claimed T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server.
Sep 24 2025, 1:38 PM · gnupg22, gnupg26, Feature Request, gpd5x
timegrid created T7819: Export of secret S/MIME key with brainpool fails (error converting key parameters).
Sep 24 2025, 1:17 PM · vsd, S/MIME, gnupg22
ebo moved T7804: de-vs compliance not shown if also password encrypted from WiP to vsd-3.3.3 on the vsd33 board.
Sep 24 2025, 12:15 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26
ebo added a comment to T7804: de-vs compliance not shown if also password encrypted.

Tested with VS-Desktop-3.3.90.12-Beta

Sep 24 2025, 12:13 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26

Sep 23 2025

werner moved T7804: de-vs compliance not shown if also password encrypted from WiP to QA on the gnupg22 board.

2.2 test can be done with GnuPG-VS-Desktop-3.3.90.12-Beta-Standard.msi from Sep 17

Sep 23 2025, 1:47 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26

Sep 17 2025

ebo moved T7804: de-vs compliance not shown if also password encrypted from Backlog to WiP on the vsd33 board.
Sep 17 2025, 8:45 AM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26

Sep 16 2025

werner changed the status of T7804: de-vs compliance not shown if also password encrypted from Open to Testing.

Backported to 2.2 but not yes tested with 2.2

Sep 16 2025, 3:31 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26
ebo added a project to T7804: de-vs compliance not shown if also password encrypted: vsd33.
Sep 16 2025, 2:54 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26

Sep 9 2025

timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WIP to QA on the gpd5x board.
Sep 9 2025, 3:52 PM · gnupg22, gnupg26, Feature Request, gpd5x

Sep 3 2025

werner added a comment to T7804: de-vs compliance not shown if also password encrypted.

In contrast to gnupg22 master did not proper show OCB compliance - not everything has yet been forward ported. But we can do so now and test master by setting GNUPG_ASSUME_COMPLIANCE=de-vs

Sep 3 2025, 4:27 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26
werner edited projects for T7804: de-vs compliance not shown if also password encrypted, added: gnupg22; removed gnupg24.
Sep 3 2025, 4:20 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26

Sep 2 2025

werner moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from Backlog to QA on the gnupg26 board.
Sep 2 2025, 3:00 PM · gnupg26, vsd33, gnupg22
werner moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from Backlog to WiP on the gnupg22 board.
Sep 2 2025, 3:00 PM · gnupg26, vsd33, gnupg22
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WIP to QA on the gnupg26 board.
Sep 2 2025, 2:59 PM · gnupg22, gnupg26, Feature Request, gpd5x

Aug 29 2025

werner added a comment to T7333: Allow gpg to auto-upload a new own key to LDAP servers.

re 1: Only if the option --auto-key-upload is used/configured.
re 2: Do not configure --auto-key-upload but give it on the command line.
re 3: Do not use --auto-key-upload - maybe I should add a --no-auto-key-upload option.

Aug 29 2025, 10:26 AM · gnupg26, vsd33, gnupg22

Aug 28 2025

William added a comment to T7333: Allow gpg to auto-upload a new own key to LDAP servers.

Hi
I have some questions about the "auto-key-upload: If an LDAP keyserver is configured (in dirmngr), upload a newly created key directly to that server" feature:

  1. If an LDAP keyserver is configured, will every newly created key be uploaded? Is this upload behavior enabled by default?
  2. Even with an LDAP keyserver configured, what if we don’t want to upload by default? If we prefer manual approval or want to upload only a specific subkey, how should we handle that?
  3. What about keys created for testing, temporary use, or personal privacy-sensitive purposes that we don’t want others to discover?

People who use GPG tend to care deeply about privacy and don’t want to upload or expose unnecessary information.

Aug 28 2025, 8:57 PM · gnupg26, vsd33, gnupg22

Aug 7 2025

werner placed T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server up for grabs.
Aug 7 2025, 12:04 PM · gnupg22, gnupg26, Feature Request, gpd5x

Aug 4 2025

ebo removed a project from T7333: Allow gpg to auto-upload a new own key to LDAP servers: Restricted Project.
Aug 4 2025, 1:39 PM · gnupg26, vsd33, gnupg22
werner removed a project from T5447: Add feature to delete a key from an LDAP server: Restricted Project.
Aug 4 2025, 12:10 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner moved T5447: Add feature to delete a key from an LDAP server from QA to Done on the gnupg26 board.
Aug 4 2025, 12:10 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner moved T5447: Add feature to delete a key from an LDAP server from Backlog to QA on the gnupg22 board.
Aug 4 2025, 12:10 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP
werner added a project to T5447: Add feature to delete a key from an LDAP server: gnupg22.
Aug 4 2025, 12:09 PM · gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), gnupg26, LDAP

Aug 1 2025

werner changed the status of T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Open to Testing.
Aug 1 2025, 4:37 PM · gnupg22, gnupg26, Feature Request, gpd5x
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Backlog to WIP on the gnupg26 board.
Aug 1 2025, 4:19 PM · gnupg22, gnupg26, Feature Request, gpd5x
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from Backlog to WIP on the gpd5x board.

There is a new --keyserver-option update-before-send which is enabled by default.

Aug 1 2025, 4:18 PM · gnupg22, gnupg26, Feature Request, gpd5x

Jan 6 2025

werner added a comment to T7328: Add Kleopatra configs to gpgconf -X.

it would be best to add an API to gpgrt to iterate over registry entries.

Jan 6 2025, 12:14 PM · gpd5x, Windows, gnupg, Feature Request
ebo triaged T7468: Kleopatra: General error when aborting subkey generation as Low priority.
Jan 6 2025, 9:13 AM · gnupg22, kleopatra

Dec 5 2024

werner moved T7332: Kleopatra: Initial keylisting sometimes fails or hangs for some seconds from Backlog to QA on the gpd5x board.
Dec 5 2024, 4:36 PM · gnupg24, gnupg22, gpd5x, kleopatra, Bug Report
werner added a project to T6545: Support CRL extension issuingDistributionPoint: workaround.

A workaround exists with the new option --ignore-crl-extensions.

Dec 5 2024, 10:19 AM · workaround, gnupg26, Restricted Project, libksba, gnupg22, Feature Request

Nov 21 2024

lukele added a comment to T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO.

Perfect, thank you!

Nov 21 2024, 9:56 AM · gnupg22 (gnupg-2.2.46), Bug Report
werner triaged T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO as Normal priority.
Nov 21 2024, 9:55 AM · gnupg22 (gnupg-2.2.46), Bug Report
werner moved T7398: GnuPG 2.2.45 (and earlier) always print 0 instead of the actual AEAD algorithm as last part of DECRYPTION_INFO from Backlog to QA on the gnupg22 board.
[GNUPG:] BEGIN_DECRYPTION
[GNUPG:] DECRYPTION_INFO 0 9 0
[GNUPG:] PLAINTEXT 62 1732178872 
[GNUPG:] PLAINTEXT_LENGTH 72
You will be advanced socially, without any special effort on your part.
[GNUPG:] DECRYPTION_OKAY
Nov 21 2024, 9:55 AM · gnupg22 (gnupg-2.2.46), Bug Report