Wed, Mar 29
works in 3.1.27.0-beta44
Tue, Mar 28
Mon, Mar 27
Wed, Mar 22
works in gnupg24.
I'd say yes.
Tue, Mar 21
We need to extend dirmngr_ldap.c to take a list of attributes to return. We already have the --multi option which returns all attributes for latter filtering by the caller but the specified attr is also used and thus dirmngr's start_cacert_fetch_ldap() retruns only the requested caCertificate.
Things for 2.4 are all done.
For 2.2 we will for now only implement the encryption.
README and INSTALL now suggest to to use a build directory.
Error checking of the parameter file is usually enhanced when adding new features. Keeping this task open for this specific request does not make sense,
Fri, Mar 17
Thu, Mar 16
Wed, Mar 15
FYI: Quite some more days than a few passed by. I still did not found the time for this, sorry.
Tue, Mar 14
Fixed in 2.2 need to check 2.4
There is actually a regression wit Yubikeys. The fix for 2.2 is in T5100: rG08cc34911470 - for 2.4 I need to check
Mon, Mar 6
Thu, Mar 2
Mar 1 2023
Feb 26 2023
Feb 21 2023
The application probably doesn't support this curve, the changelog only mentions Curve25519 and NIST P-256. Also Kleopatra lists only these two curves when generating a key from the card. Upon further inspection, the 0xFA DO listing the supported algorithms only has RSA 2048, RSA 4096, nistp256, ed255519 and cv25519
This is a Nitrokey 3A with the firmware 1.2.2-alpha.20221130. I'll check with the vendor.
Sure that you specific card/implementation of Nitrokey supports this curve? The card application uses a vendor from the test card range - this it is likely that it is some Javacard implementaion or it is an old gnuk firmware on the nitrokey basic.
Changing the key attributes didn't help unfortunately:
There must be some regression in the code which changes the key attributes. Please try
"gpg --card-edit" admin, key-attr
and switch to nistp384.
I also tried to import the key with the gpg-card writekey command and I got the same error.
Same error message but probably a different cause, in this case the card was factory reset before importing.
Feb 16 2023
Thanks. please give a few days.
Feb 15 2023
Works for me with gpgtar (GnuPG) 2.4.1-beta21. I haven't verified this with 2.2.x.
Feb 10 2023
I try experiment using Python PKCS#11 (https://python-pkcs11.readthedocs.io/en/latest/index.html)
- with SoftHSM https://github.com/opendnssec/SoftHSMv2
- with Scute
I concluded that (at first, for the initial try) it's not good to start this under scdaemon, because of two different abstractions for accessing the device (the way of scdaemon and the way of PKCS#11).
It's good to start with something like tpm2d. The goal would be integration into scdaemon or tpm2d.
Feb 9 2023
Good catch. The translation of the option descriptions is done as part of the option parser (libgpg-error/src/argparse.c) and thus we need to have gettext support over there. Also for some other error messages.
Feb 8 2023
Seems to work if NLS support is enabled. Updating in https://github.com/Homebrew/homebrew-core/pull/122706. Once merged, users will need to brew reinstall libgpg-error (Homebrew has decided to avoid forcing updates to all users outside of critical fixes).
Probably due to libgpg-error being built without NLS support on macOS as formula currently doesn't have gettext dependency. On Linux, libintl is provided by glibc so doesn't need any extra dependencies.
I have no idea about Homebrew - can you figure out the maintainer and point him to here?
Feb 7 2023
This is the Homebrew build. Maybe something not included in the recipe?
No idea what happens. I can't replicate that on a Linux box using GNU gettext and neither in Windows using gnupg's own gettext implementation. It seems that strings without any line feed don't get translated.
Thanks. Looks pretty standard. I will have a closer look.
Feb 6 2023
gpgconf -L:
sysconfdir:/usr/local/etc/gnupg bindir:/usr/local/Cellar/gnupg/2.4.0/bin libexecdir:/usr/local/Cellar/gnupg/2.4.0/libexec libdir:/usr/local/Cellar/gnupg/2.4.0/lib/gnupg datadir:/usr/local/Cellar/gnupg/2.4.0/share/gnupg localedir:/usr/local/Cellar/gnupg/2.4.0/share/locale socketdir:/Users/emirsari/.gnupg dirmngr-socket:/Users/emirsari/.gnupg/S.dirmngr keyboxd-socket:/Users/emirsari/.gnupg/S.keyboxd agent-ssh-socket:/Users/emirsari/.gnupg/S.gpg-agent.ssh agent-extra-socket:/Users/emirsari/.gnupg/S.gpg-agent.extra agent-browser-socket:/Users/emirsari/.gnupg/S.gpg-agent.browser agent-socket:/Users/emirsari/.gnupg/S.gpg-agent homedir:/Users/emirsari/.gnupg
Can you please provide the output of