Page MenuHome GnuPG
Projects gnupg26

gnupg26Project
ActivePublic
Watch Project

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Details

Description

This is the current development version of GnuPG.

Recent Activity
View All

Fri, Jan 9

werner moved T7866: Allow separate LDAP keyserver for uploading from QA to WIP on the gnupg26 board.
Fri, Jan 9, 3:50 PM · gnupg22, vsd34, LDAP, Feature Request, gnupg26
werner changed the status of T7990: export-minimal unexpectedly omits expired key from Open to Testing.
Fri, Jan 9, 3:43 PM · gnupg26, Feature Request, Gentoo
werner added a comment to T7990: export-minimal unexpectedly omits expired key.

So w/o the new option we have:

Fri, Jan 9, 3:11 PM · gnupg26, Feature Request, Gentoo
werner triaged T7990: export-minimal unexpectedly omits expired key as High priority.
Fri, Jan 9, 2:47 PM · gnupg26, Feature Request, Gentoo
timegrid added a comment to T7866: Allow separate LDAP keyserver for uploading.

The behaviour might have changed a bit because of the ldap: prefix i use now, or i have missed this case the last time:
Given some cert on the "download" server, I can find it, if dirmngr.conf contains only the "download" server, or if the "download" server is listed first:

Fri, Jan 9, 2:17 PM · gnupg22, vsd34, LDAP, Feature Request, gnupg26
ebo added a project to T7804: de-vs compliance not shown if also password encrypted: test on hold.

testing will wait for special build

Fri, Jan 9, 1:55 PM · test on hold, gnupg22 (gnupg-2.2.49), vsd33 (vsd-3.3.3), Bug Report, vsd, gnupg26
werner closed T7663: Certificated signed using SHA-1 isn't trusted, but needs --force-sign-key to re-sign. as Resolved.
Fri, Jan 9, 1:42 PM · gnupg26, Feature Request
werner closed T7298: gpg --quick-set-expire fails for V5 subkeys as Resolved.
Fri, Jan 9, 1:39 PM · gnupg24, gnupg26, Bug Report
werner moved T7298: gpg --quick-set-expire fails for V5 subkeys from QA to done on the gnupg24 board.
Fri, Jan 9, 1:38 PM · gnupg24, gnupg26, Bug Report
werner added a comment to T7866: Allow separate LDAP keyserver for uploading.

Independent of keyserver order in dirmngr.conf, --search-keys still offers keys from the upload server, but the download fails:

Fri, Jan 9, 1:35 PM · gnupg22, vsd34, LDAP, Feature Request, gnupg26
werner added a comment to T7866: Allow separate LDAP keyserver for uploading.

For "Although the upload server is used for upload, the gpg message still displays the first keyserver" see T8025

Fri, Jan 9, 1:28 PM · gnupg22, vsd34, LDAP, Feature Request, gnupg26
werner triaged T8025: Display the correct LDAP server in gpg if the upload flag is in use. as Normal priority.
Fri, Jan 9, 1:28 PM · Bug Report, LDAP, gnupg26
werner closed T7676: Cannot decrypt a message encrypted to a Cv25519 key on a token as Resolved.

I am using that version and key daily. No problems seen.

Fri, Jan 9, 1:25 PM · gnupg26, Bug Report
werner closed T7649: gnupg: Use KEM interface for encryption/decryption as Resolved.
Fri, Jan 9, 1:24 PM · gnupg26
timegrid closed T7893: GnuPG: Decryption fails if the pinentry dialog for the first tried recipient is canceled as Resolved.

Looks good to me on gpg4win-5.0.0-beta479 @ win11:

Fri, Jan 9, 1:18 PM · gnupg26, gnupg
ebo closed T7757: Kleopatra: Error "no data" on decryption of tar.gpg archive as Resolved.

was tested already by timegrid

Fri, Jan 9, 1:11 PM · gnupg26, gpd5x, kleopatra
ebo closed T7491: Confusing additional pinentry on creation of new keypair with ADSK configured as Resolved.

This does not happen any more, tested with Gpg4win-5.0.0-beta479

Fri, Jan 9, 1:09 PM · gpgagent, gnupg26, gnupg
ebo closed T7315: Allow export and import of PQC secret keys., a subtask of T6815: PQC encryption for GnuPG, as Resolved.
Fri, Jan 9, 12:29 PM · OpenPGP, PQC, gnupg
ebo closed T7315: Allow export and import of PQC secret keys. as Resolved.

Tested with Gpg4win-5.0.0-beta479

Fri, Jan 9, 12:29 PM · gnupg26, OpenPGP, PQC, gnupg
ebo closed T7914: Card s/n number missing in gpgsm as Resolved.

in Gpg4win-5.0.0-beta479

Fri, Jan 9, 12:08 PM · gnupg22 (gnupg-2.2.52), scd, S/MIME, Feature Request, gnupg26
ebo closed T7892: keyboxd: subkey listing issue with ADSKs as Resolved.

with Gpg4win-5.0.0-beta479 the listing after creating the new key with ADSK looks ok now:

Fri, Jan 9, 11:44 AM · gnupg26, Bug Report, keyboxd, gnupg
werner edited projects for T6421: Improve error message if no reset code (PUK) is set, added: gnupg26; removed gnupg22, gnupg24.

I think we won't fix that for 2.2

Fri, Jan 9, 11:32 AM · gnupg26, Feature Request, gpgrt
werner edited projects for T6436: Double pinentry on change password, added: gnupg26; removed gnupg24.
Fri, Jan 9, 11:28 AM · gnupg26, Feature Request, gnupg22, Restricted Project
werner changed the status of T7840: Oddity with 7816 change_reference_data from Testing to Open.
Fri, Jan 9, 11:27 AM · Bug Report, gnupg22, gnupg26, scd
werner moved T7840: Oddity with 7816 change_reference_data from QA to Done on the gnupg26 board.
Fri, Jan 9, 11:27 AM · Bug Report, gnupg22, gnupg26, scd
werner closed T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server as Resolved.
Fri, Jan 9, 11:22 AM · gnupg22 (gnupg-2.2.52), gnupg26, Feature Request, gpd5x
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WiP to gnupg-2.2.52 on the gnupg22 board.
Fri, Jan 9, 11:22 AM · gnupg22 (gnupg-2.2.52), gnupg26, Feature Request, gpd5x
werner moved T7914: Card s/n number missing in gpgsm from WiP to gnupg-2.2.52 on the gnupg22 board.
Fri, Jan 9, 11:17 AM · gnupg22 (gnupg-2.2.52), scd, S/MIME, Feature Request, gnupg26
werner closed T7805: Permission denied on batch deletion of mixed (openpgp+smime) certs, a subtask of T7855: keybox/keydb locking issue in 2.6 , as Resolved.
Fri, Jan 9, 11:07 AM · gnupg26, gpd5x

Thu, Jan 8

werner changed the status of T7892: keyboxd: subkey listing issue with ADSKs from Open to Testing.
Thu, Jan 8, 4:13 PM · gnupg26, Bug Report, keyboxd, gnupg
ebo closed T7983: gpg: the validity of a secret key is changed by making a certification with it as Resolved.
Thu, Jan 8, 3:40 PM · keyboxd, Bug Report, gpd5x, gnupg26

Wed, Jan 7

ebo added a comment to T8012: Missing error on first key search without keyserver.

It looks similar if the key is in a WKD: First search fails without error, only "no certificates found" is shown. Clicking "Search" again results then in the expected key being found and shown.

Wed, Jan 7, 3:14 PM · dirmngr, Bug Report, gnupg26
werner added a parent task for T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys: T7790: Kleopatra: "no trusted certification" should have precedence over "expired" in signature verification.
Wed, Jan 7, 12:03 PM · Feature Request, S/MIME, OpenPGP, gnupg26
werner triaged T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys as Normal priority.

Traditionally we have considered expired and revoked more or less similar. The idea is that an expired key might have been compromised but the owner did not found a way to revoke it. We may want to change this policy because some users don't care too much about expired keys (cf. T7990) .

Wed, Jan 7, 12:03 PM · Feature Request, S/MIME, OpenPGP, gnupg26
ikloecker added a comment to T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys.

Interestingly, gpg also prints the warning about the missing trusted key signature when verifying a signature made with a revoked key that has a valid certification by a trusted key. This could be intentional (because the revocation invalidates all certifications), but it's still a bit surprising.

Wed, Jan 7, 11:42 AM · Feature Request, S/MIME, OpenPGP, gnupg26
ikloecker created T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys.
Wed, Jan 7, 11:20 AM · Feature Request, S/MIME, OpenPGP, gnupg26

Tue, Jan 6

the13thletter added a comment to T8013: gpgconf does not support the --enable-win32-openssh-support option for gpg-agent.

Frankly, he OpenSSH support for Windows was experimental and I have never tested it. If it can be confirmed that this really works and is useful, it will be easy to add the opeion to gpgconf.

Tue, Jan 6, 10:04 PM · Feature Request, ssh, gnupg26, Windows
timegrid closed T1825: Add a re-encrypt to additional key as Resolved.
Tue, Jan 6, 12:57 PM · gpd5x, gnupg26, Feature Request
werner added a comment to T1825: Add a re-encrypt to additional key.

Regarding my comment T1825#191055 : The mane page has long been updated and gpgme support is also available. For the symmetric session key, see the feature request T8016

Tue, Jan 6, 12:53 PM · gpd5x, gnupg26, Feature Request
werner triaged T8016: Keep symmetric encryption keys with --add-recipients as Low priority.
Tue, Jan 6, 12:51 PM · gpd5x, gnupg26, Feature Request
timegrid moved T1825: Add a re-encrypt to additional key from QA to Done on the gnupg26 board.
Tue, Jan 6, 12:28 PM · gpd5x, gnupg26, Feature Request
timegrid moved T1825: Add a re-encrypt to additional key from QA to Done on the gpd5x board.

Looks good to me on gpg4win-5.0.0-beta479 @ win11:

  • gpg --show-only-session-key --decrypt FILE shows only the session key
  • gpg --add-recipients -r UID1 FILE adds recipients (tested with one or more uids)
  • gpg --change-recipients -r UID FILE changes the recipients (tested with one or more uids)
Tue, Jan 6, 12:28 PM · gpd5x, gnupg26, Feature Request
timegrid moved T7983: gpg: the validity of a secret key is changed by making a certification with it from QA to Done on the gnupg26 board.
Tue, Jan 6, 12:08 PM · keyboxd, Bug Report, gpd5x, gnupg26
timegrid moved T7983: gpg: the validity of a secret key is changed by making a certification with it from QA to Done on the gpd5x board.

Looks good to me on gpg4win-5.0.0-beta479 @ win11.
I can't reproduce ebo's nor pl13's issue.

Tue, Jan 6, 12:07 PM · keyboxd, Bug Report, gpd5x, gnupg26
ebo moved T7983: gpg: the validity of a secret key is changed by making a certification with it from Backlog to QA on the gpd5x board.
Tue, Jan 6, 11:20 AM · keyboxd, Bug Report, gpd5x, gnupg26
ebo moved T7983: gpg: the validity of a secret key is changed by making a certification with it from Backlog to QA on the gnupg26 board.
Tue, Jan 6, 11:20 AM · keyboxd, Bug Report, gpd5x, gnupg26
werner triaged T8013: gpgconf does not support the --enable-win32-openssh-support option for gpg-agent as Normal priority.

Frankly, he OpenSSH support for Windows was experimental and I have never tested it. If it can be confirmed that this really works and is useful, it will be easy to add the opeion to gpgconf. Note that the gpgconf option feature handles only a subset of all options on purpose.

Tue, Jan 6, 8:53 AM · Feature Request, ssh, gnupg26, Windows

Mon, Jan 5

werner triaged T8012: Missing error on first key search without keyserver as Normal priority.
Mon, Jan 5, 3:17 PM · dirmngr, Bug Report, gnupg26
timegrid created T8012: Missing error on first key search without keyserver.
Mon, Jan 5, 1:37 PM · dirmngr, Bug Report, gnupg26
timegrid moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from QA to Done on the gnupg26 board.
Mon, Jan 5, 12:54 PM · gnupg22 (gnupg-2.2.52), gnupg26, Feature Request, gpd5x