This is the current development version of GnuPG.
Details
Details
Description
Wed, May 13
Wed, May 13
• werner changed the status of T8251: dirmngr may use an uninitalized struct in the DNS code. from Open to Testing.
• werner moved T8048: Keyboxd: S/MIME certificate is imported on ldap search from WIP to QA on the gnupg26 board.
• werner moved T8196: GnuPG: Designated revokation with certify-only primary keys does not work from WIP to QA on the gnupg26 board.
timegrid triaged T8261: GnuPG: Assert in gpgconf fails on change of keyserver option, if value includes a comma as Normal priority.
• werner changed the status of T8196: GnuPG: Designated revokation with certify-only primary keys does not work from Open to Testing.
Mon, May 11
Mon, May 11
• werner triaged T8196: GnuPG: Designated revokation with certify-only primary keys does not work as Normal priority.
Thu, May 7
Thu, May 7
• werner added a comment to T8189: GnuPG: Bad signature on import of designated revokation certificate.
Just to clarify: The ticket is a about a bad signature diagnostic seen during import. However, the revocation works. The diagnostic is emitted by a second signature checking done to allow handling of standalone designated revocation certificates. The latter are uncommon because gpg does not create standalone revocation certificates. See also T8252 for further info.
• werner changed the status of T8159: gpgtar write outside --directory via symlink traversal from Open to Testing.
• werner triaged T8252: Use RECP_FPR subpacket for standalone designated revocations. as Normal priority.
Wed, May 6
Wed, May 6
I retested this with VSD 3.3.7 and VSD-4.0 Beta, with the same data:
Tue, May 5
Tue, May 5
pl13 moved T8196: GnuPG: Designated revokation with certify-only primary keys does not work from Backlog to WIP on the gnupg26 board.
Thu, Apr 30
Thu, Apr 30
• ebo lowered the priority of T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys from High to Normal.
Wed, Apr 29
Wed, Apr 29
• werner added a comment to T8019: gpg does not print warning about untrusted key when verifying signatures made by expired (and untrusted) keys.
That is actually more complicated than I initially though. The reason is that expired is used like a trust level:
• gniibe moved T6693: agent: Have a thread monitoring parent PID and homedir from QA to Done on the gnupg26 board.
• gniibe moved T6692: agent: Clean up check_own_socket to monitor socket takeover from QA to Done on the gnupg26 board.
• gniibe moved T6682: agent: agent_kick_the_loop function to unblock the select(2) from QA to Done on the gnupg26 board.
• gniibe moved T7339: Kleopatra: Cannot decrypt packets with hybrid cipher without using symmetric passphrase from Backlog to WIP on the gpd5x board.
• gniibe moved T8162: pinentry/gpg/gpgme/Kleo: Cancel semantics: decryption from Backlog to WIP on the gpd5x board.
• gniibe moved T8048: Keyboxd: S/MIME certificate is imported on ldap search from Backlog to WIP on the gpd5x board.
• gniibe moved T7339: Kleopatra: Cannot decrypt packets with hybrid cipher without using symmetric passphrase from Backlog to WIP on the gnupg26 board.
• gniibe moved T8162: pinentry/gpg/gpgme/Kleo: Cancel semantics: decryption from Backlog to WIP on the gnupg26 board.
• gniibe moved T8048: Keyboxd: S/MIME certificate is imported on ldap search from Backlog to WIP on the gnupg26 board.
• gniibe moved T8159: gpgtar write outside --directory via symlink traversal from Backlog to WIP on the gnupg26 board.
Mon, Apr 27
Mon, Apr 27
pl13 moved T8189: GnuPG: Bad signature on import of designated revokation certificate from Backlog to WIP on the gnupg26 board.
• gniibe changed the status of T8048: Keyboxd: S/MIME certificate is imported on ldap search from Open to Testing.
Applied to master.
Sun, Apr 26
Sun, Apr 26
• werner moved T8240: Double free in gpgsm's decrypt function. from Backlog to WiP on the gnupg22 board.
• werner changed the status of T8240: Double free in gpgsm's decrypt function. from Open to Testing.
• werner renamed T8240: Double free in gpgsm's decrypt function. from Doiuble free in gpgsm's decrypt function. to Double free in gpgsm's decrypt function..
Fri, Apr 24
Fri, Apr 24
• gniibe added a comment to T8048: Keyboxd: S/MIME certificate is imported on ldap search.
I created a branch https://dev.gnupg.org/source/gnupg/history/gniibe%252Ft8048 and pushed all changes (including keyboxd-patch-2026-04-23).
Thu, Apr 23
Thu, Apr 23
• gniibe added a comment to T8048: Keyboxd: S/MIME certificate is imported on ldap search.
Enhance keyboxd to have new command for what keybox_set_flags does.
Fri, Apr 17
Fri, Apr 17
• ebo edited projects for T8188: gpgsm: No error/warning on verification or decryption in case of trusted but not VS-compliant certificate, added: vsd33 (vsd-3.3.7), gnupg22 (gnupg-2.2.54); removed vsd33, gnupg22.
with VS-Desktop-3.3.97.11-Beta (GnuPG 2.2.54-beta9)
• werner shifted T8159: gpgtar write outside --directory via symlink traversal from the Restricted Space space to the S1 Public space.
Apr 16 2026
Apr 16 2026
timegrid moved T7866: Allow separate LDAP keyserver for uploading from Backlog to WiP on the gnupg22 board.
timegrid changed the status of T7866: Allow separate LDAP keyserver for uploading from Open to Testing.
timegrid changed the status of T7866: Allow separate LDAP keyserver for uploading from Testing to Open.
Still does not work on vsd-3.3.7-beta90.9 @ win10. Essentially the same behavior as before:
timegrid moved T7333: Allow gpg to auto-upload a new own key to LDAP servers from gnupg-2.2.54 to gnupg-2.2.53 on the gnupg22 board.