Page MenuHome GnuPG
Projects gnupg26

gnupg26Project
ActivePublic
Watch Project

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

This is the current development version of GnuPG.

Recent Activity
View All

Thu, Jan 23

ebo renamed T7491: Kleopatra: Confusing additional pinentry on creation of new keypair with ADSK configured from Kleopatra: Confusing additional pinentry on while new keypair with ADSK configured to Kleopatra: Confusing additional pinentry on creation of new keypair with ADSK configured .
Thu, Jan 23, 9:18 AM · gpgagent, gnupg26, gnupg
werner triaged T7491: Kleopatra: Confusing additional pinentry on creation of new keypair with ADSK configured as Normal priority.
Thu, Jan 23, 8:28 AM · gpgagent, gnupg26, gnupg

Fri, Jan 10

gniibe closed T7436: Allow ssh to sign data larger than the assuan line length. as Resolved.

Fixed in 2.5.2.

Fri, Jan 10, 8:00 AM · ssh, Feature Request, gnupg26

Thu, Jan 9

werner triaged T7480: Release GnuPG 2.5.4 as Low priority.
Thu, Jan 9, 10:01 AM · gnupg26, gnupg, Release Info

Wed, Jan 8

werner moved T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128 from Backlog to QA on the gnupg26 board.
Wed, Jan 8, 5:25 PM · PQC, gnupg26, Bug Report
werner closed T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected as Resolved.
Wed, Jan 8, 2:35 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner moved T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected from Backlog to done on the gnupg24 board.
Wed, Jan 8, 2:35 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner moved T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected from Backlog to Done on the gnupg26 board.
Wed, Jan 8, 2:34 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner added a comment to T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected.

Got a simple fix for this which does two things:

  1. Correctly act upon an error from the backup file writing
  2. Print a warning note.
Wed, Jan 8, 2:04 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
m.eik added a comment to T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected.
In T2169#196673, @werner wrote:

Shall we handle this with additional retry prompts, w/o a timeout? I think this makes sense because creating keys with a backup file and a passphrase is a manual task anyway.

Wed, Jan 8, 12:20 PM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner reopened T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected as "Open".
Wed, Jan 8, 11:35 AM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)
werner edited projects for T2169: Smartcard card-edit generate fails when off-card backup of encryption key is selected, added: gnupg26, gnupg24; removed gnupg.

There is a regression due to the regression fix in rGb30c15bf7c5336c4abb1f9dcd974cd77ba6c61a7 (from Dec 24 2015) or some related commits:

Wed, Jan 8, 11:35 AM · gnupg24, gnupg26, Bug Report, gpgagent, gnupg (gpg21)

Tue, Jan 7

werner triaged T7368: dirmngr/dns.c files to compile due to type-mismatch caused by missing _XOPEN_SOURCE on Solaris and derivatives as Normal priority.
Tue, Jan 7, 8:35 AM · gnupg26, dns, Solaris, Bug Report

Mon, Jan 6

gniibe closed T6523: gpgscm: call-with-io deadlock when larger stderr output, a subtask of T6512: keyboxd with data pipe, as Resolved.
Mon, Jan 6, 7:32 AM · gnupg26, Bug Report
gniibe closed T6523: gpgscm: call-with-io deadlock when larger stderr output as Resolved.
Mon, Jan 6, 7:32 AM · gnupg26, Bug Report

Fri, Jan 3

gouttegd added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

Change the encryption code to only allow 256 bit session keys with Kyber regardless of the preferences, iff --require-pqc-encryption is set. […] We could as well also encforce AES-256 also without that option.

What if we encrypt to several recipients, only some of them having a Kyber encryption key? Should we still enforce AES-256 in that case regardless of the preferences, and assume that by now everybody should support AES-256?

Fri, Jan 3, 4:50 PM · PQC, gnupg26, Bug Report
gouttegd added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

Love it! I think I am going to use “post-heffalump crypto” from now on. :D

Fri, Jan 3, 11:43 AM · PQC, gnupg26, Bug Report
werner added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

But keep https://www.cs.auckland.ac.nz/~pgut001/pubs/heffalump_crypto.pdf in mind ;-)

Fri, Jan 3, 10:04 AM · PQC, gnupg26, Bug Report

Thu, Jan 2

gouttegd added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

I wrote it with PQC security level in mind which requires AES256 for the session key as well.

Thu, Jan 2, 4:39 PM · PQC, gnupg26, Bug Report
werner added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

That is what I expected. Meanwhile I re-read the code and history and can tell that the comment is not correct. I wrote it with PQC security level in mind which requires AES256 for the session key as well. However, during the migration phase and as long as --require-pqc-encryption is not enable we should allow an AES-128 session key. This is for the rare case that encryption is also done for non pqc keys which don't have the AES-256 capability set.

Thu, Jan 2, 4:23 PM · PQC, gnupg26, Bug Report
gouttegd added a comment to T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128.

Here you are:

Thu, Jan 2, 4:09 PM · PQC, gnupg26, Bug Report
werner triaged T7472: Cannot decrypt a message encrypted to a Kyber subkey with AES128 as High priority.

At gnupg/g10/pubkey-enc.c you will find

Thu, Jan 2, 3:33 PM · PQC, gnupg26, Bug Report

Dec 19 2024

werner raised the priority of T3979: GPGSM: Authenticated encryption from Wishlist to Normal.
Dec 19 2024, 10:33 AM · gnupg26, S/MIME

Dec 12 2024

alexk added a comment to T5054: Preservation of modification date upon decryption/extraction..

There is another customer request for this too.

Dec 12 2024, 11:34 AM · gnupg26, Bug Report, gpgtar

Dec 6 2024

gniibe changed the status of T7436: Allow ssh to sign data larger than the assuan line length. from Open to Testing.
Dec 6 2024, 6:32 AM · ssh, Feature Request, gnupg26

Dec 5 2024

werner closed T7316: Curve25519/v5 key cannot be exported, a subtask of T7315: Allow exporting of PQC keys., as Resolved.
Dec 5 2024, 4:32 PM · gnupg26, OpenPGP, PQC, gnupg
werner closed T7316: Curve25519/v5 key cannot be exported as Resolved.
Dec 5 2024, 4:32 PM · gnupg26, OpenPGP, PQC, gnupg
werner closed T7042: AEAD mode does not properly handle modified cipher text as Resolved.
Dec 5 2024, 4:25 PM · gnupg26, Bug Report
werner moved T7289: Release GnuPG 2.5.2 from Backlog to Done on the gnupg26 board.
Dec 5 2024, 11:48 AM · gnupg, Release Info, gnupg26
werner updated the task description for T7289: Release GnuPG 2.5.2.
Dec 5 2024, 11:47 AM · gnupg, Release Info, gnupg26
werner added a project to T6545: Support CRL extension issuingDistributionPoint: workaround.

A workaround exists with the new option --ignore-crl-extensions.

Dec 5 2024, 10:19 AM · workaround, gnupg26, Restricted Project, libksba, gnupg22, Feature Request
gniibe claimed T7436: Allow ssh to sign data larger than the assuan line length..
Dec 5 2024, 7:02 AM · ssh, Feature Request, gnupg26

Dec 3 2024

werner renamed T7436: Allow ssh to sign data larger than the assuan line length. from Allow ssh to sign larger data than the assuan line length. to Allow ssh to sign data larger than the assuan line length..
Dec 3 2024, 4:18 PM · ssh, Feature Request, gnupg26
ebo renamed T7436: Allow ssh to sign data larger than the assuan line length. from Allow ssh to sign larger data tha the assuan line length. to Allow ssh to sign larger data than the assuan line length..
Dec 3 2024, 4:14 PM · ssh, Feature Request, gnupg26
werner triaged T7436: Allow ssh to sign data larger than the assuan line length. as Normal priority.
Dec 3 2024, 3:31 PM · ssh, Feature Request, gnupg26

Dec 2 2024

werner triaged T7373: gpg --export-secret-keys exits with General error if the password prompt was canceled as Normal priority.
Dec 2 2024, 1:54 PM · Feature Request, gnupg26, gnupg

Nov 29 2024

gniibe closed T6606: Use new API of libassuan 3, a subtask of T6599: INT2FD and npth_accept, as Resolved.
Nov 29 2024, 8:10 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6606: Use new API of libassuan 3 as Resolved.

Done for 2.5.0.

Nov 29 2024, 8:10 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6597: Introduce FD_DBG to handle the cases for displaying the value, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Nov 29 2024, 8:08 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6597: Introduce FD_DBG to handle the cases for displaying the value as Resolved.

Done in 2.5.0.

Nov 29 2024, 8:08 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6592: GPGSM: Use estream_t instead of FD, a subtask of T6508: Port GnuPG to 64-bit Windows, as Resolved.
Nov 29 2024, 8:05 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6592: GPGSM: Use estream_t instead of FD as Resolved.

Fixed in 2.5.0.

Nov 29 2024, 8:05 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6562: gpgtar: --status-fd requires HANDLE (not POSIX fd) when spawning a process, a subtask of T6551: translate_sys2libc_fd_int on Windows 64-bit, as Resolved.
Nov 29 2024, 8:05 AM · Windows 64, Feature Request, gnupg26
gniibe closed T6562: gpgtar: --status-fd requires HANDLE (not POSIX fd) when spawning a process as Resolved.

Fixed in 2.5.0.

Nov 29 2024, 8:05 AM · Windows 64, Feature Request, gnupg26

Nov 25 2024

ikloecker moved T7379: Kleopatra: Learning certificates of Signature v2.0 card fails if a Yubikey is plugged in as well from Backlog to WIP on the gpd5x board.
Nov 25 2024, 6:14 PM · gpd5x, kleopatra
ikloecker added a project to T7379: Kleopatra: Learning certificates of Signature v2.0 card fails if a Yubikey is plugged in as well: gpd5x.
Nov 25 2024, 6:14 PM · gpd5x, kleopatra

Nov 11 2024

werner triaged T7379: Kleopatra: Learning certificates of Signature v2.0 card fails if a Yubikey is plugged in as well as Normal priority.
Nov 11 2024, 8:46 AM · gpd5x, kleopatra

Nov 8 2024

werner triaged T7381: gpg-mail-tube: Allow the use of templates instead of static texts. as Normal priority.
Nov 8 2024, 11:10 AM · Feature Request, gnupg26

Nov 5 2024

werner edited projects for T5054: Preservation of modification date upon decryption/extraction., added: Bug Report, gnupg26; removed gnupg24, Feature Request.

While reviewing this task I noticed that I wrote adding a -p option. This is non-sense, because -p is to preserve permissions at extract time; this is unrelated to the last modification time. Standard tar extract files and set the modification to the one given in the tarball - unless you use -m to use the current time. Thus this task is actually a bug and not a feature request. For backward compatibility this will be done only for gnupg26 for now.

Nov 5 2024, 3:30 PM · gnupg26, Bug Report, gpgtar

Oct 29 2024

werner edited projects for T6545: Support CRL extension issuingDistributionPoint, added: gnupg26; removed gnupg24.
Oct 29 2024, 1:31 PM · workaround, gnupg26, Restricted Project, libksba, gnupg22, Feature Request