Page MenuHome GnuPG
Projects gnupg gpg22

gnupg (gpg22)Milestone
ActivePublic
Watch Project

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Recent Activity
View All

Sat, May 14

ludovic added a comment to T5979: SCardListReaders: Conditional jump or move depends on uninitialised value(s).

I just wrote a blog article about this problem
https://ludovicrousseau.blogspot.com/2022/05/scardlistreaders-and-non-initialized.html

Sat, May 14, 4:13 PM · gnupg (gpg22), scd, patch

Fri, May 13

werner triaged T5977: Smartcard PIN stays in clear in memory as High priority.
Fri, May 13, 2:40 PM · pinentry, scd, gnupg (gpg22), Bug Report
werner triaged T5979: SCardListReaders: Conditional jump or move depends on uninitialised value(s) as High priority.

Thanks for opening a ticket.

Fri, May 13, 2:36 PM · gnupg (gpg22), scd, patch

Thu, May 12

ikloecker changed the status of T5972: Can't insert charaters in a magic-wand generated password from Open to Testing.

Editing a formatted password should work now as expected.

Thu, May 12, 4:08 PM · Testing, Restricted Project, gnupg (gpg22), gpgagent, pinentry
ikloecker added a project to T5972: Can't insert charaters in a magic-wand generated password : Restricted Project.
Thu, May 12, 2:18 PM · Testing, Restricted Project, gnupg (gpg22), gpgagent, pinentry
ebo reassigned T5972: Can't insert charaters in a magic-wand generated password from ebo to ikloecker.
Thu, May 12, 11:51 AM · Testing, Restricted Project, gnupg (gpg22), gpgagent, pinentry
ebo added a comment to T5972: Can't insert charaters in a magic-wand generated password .

Its an issue of cursor position. If one either deletes or inputs a a character anywhere in the password string, the cursor always jumps to the end of the string.

Thu, May 12, 11:50 AM · Testing, Restricted Project, gnupg (gpg22), gpgagent, pinentry

Wed, May 11

werner triaged T5972: Can't insert charaters in a magic-wand generated password as Normal priority.
Wed, May 11, 5:18 PM · Testing, Restricted Project, gnupg (gpg22), gpgagent, pinentry

Mon, May 2

dkg added a comment to T5954: Building for windows requires gpgrt (libgpg-error) 1.45, but configure.ac claims 1.27.

Debian requires all builds to use software that we have local copies of in the archive, which appears to rule out the use of speedo (it fetches source over the internet during build). So i've modified debian packaging to annotate that the Windows builds need a different version of libgpg-error than that defined in configure.ac.

Mon, May 2, 6:03 PM · gnupg (gpg22), Bug Report

Sat, Apr 30

gniibe added a comment to T5120: Incompatible Ed25519 secret key (no-encryption).

it would be useful to add a test

Sat, Apr 30, 4:14 AM · gnupg (gpg22), Bug Report

Thu, Apr 28

dkg added a comment to T5120: Incompatible Ed25519 secret key (no-encryption).

Thanks for working on this, @gniibe! Maybe it would be useful to add a test to the test suite that tries to import and use a secret key of this particular structure.

Thu, Apr 28, 10:07 PM · gnupg (gpg22), Bug Report
werner closed T5793: gpgsm: Wrong length when parsing octetstring in constructed encoding + definite length as Resolved.
Thu, Apr 28, 8:52 AM · Testing, S/MIME, gnupg (gpg22)
werner closed T5954: Building for windows requires gpgrt (libgpg-error) 1.45, but configure.ac claims 1.27 as Wontfix.

Use our build system and things work. In particular you need to use the software versions as listed at versions.gnupg.org and available via the build-auch/getswdb.sh. Even better use the speedo build system for Windows. Everything else is not a supported build configuration.

Thu, Apr 28, 8:45 AM · gnupg (gpg22), Bug Report
gniibe claimed T5953: batch signature fails with imported ed25519 signing key as of 2.2.34.

Thank you for the report.

Thu, Apr 28, 4:45 AM · gnupg (gpg22), Bug Report
gniibe reopened T5120: Incompatible Ed25519 secret key (no-encryption) as "Open".

The fix was not right, because gpg-agent side are not changed. See T5953.

Thu, Apr 28, 4:39 AM · gnupg (gpg22), Bug Report
dkg created T5954: Building for windows requires gpgrt (libgpg-error) 1.45, but configure.ac claims 1.27.
Thu, Apr 28, 4:38 AM · gnupg (gpg22), Bug Report

Wed, Apr 27

dkg updated the task description for T5953: batch signature fails with imported ed25519 signing key as of 2.2.34.
Wed, Apr 27, 11:01 PM · gnupg (gpg22), Bug Report
dkg created T5953: batch signature fails with imported ed25519 signing key as of 2.2.34.
Wed, Apr 27, 10:58 PM · gnupg (gpg22), Bug Report

Mon, Apr 25

werner closed T5928: Release GnuPG 2.2.35 as Resolved.
Mon, Apr 25, 7:12 PM · Release Info, gnupg (gpg22)
werner triaged T5949: Release GnuPG 2.2.36 as Low priority.
Mon, Apr 25, 6:20 PM · gnupg (gpg22), Release Info
werner closed T4729: WKD via http_proxy does not work if DNS is broken/unavailable as Resolved.

Was fixed in 2.3.5

Mon, Apr 25, 4:53 PM · gnupg (gpg22), Restricted Project, dns, dirmngr

Apr 14 2022

werner closed T5235: Delays in dirmngr http connections on Windows as Resolved.

We have not seen this problem anymore in recent versions. Thus closing.

Apr 14 2022, 3:02 PM · can't replicate, dirmngr, ntbtls, Windows, gnupg (gpg22)
werner closed T5639: dirmngr uses the wrong Let's encrypt chain as Resolved.

We have a solulion for this bug. For further improvements we will use T5882.

Apr 14 2022, 2:00 PM · gnupg (gpg22), dirmngr
werner closed T5809: Expire subkey violates assertion "! sig->hashed" as Resolved.
  • Fixed in 2.3
  • assert replaced by a fatal error message
Apr 14 2022, 1:57 PM · Testing, gnupg (gpg22), Bug Report

Apr 13 2022

werner updated the task description for T5703: Release GnuPG 2.2.34.
Apr 13 2022, 2:37 PM · Release Info, gnupg (gpg22)
werner triaged T5928: Release GnuPG 2.2.35 as Low priority.
Apr 13 2022, 2:23 PM · Release Info, gnupg (gpg22)

Apr 7 2022

werner added a comment to T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high).

Updated the copy on our mirror as welll as the gpg4win and swdb packages files.

Apr 7 2022, 11:45 AM · gnupg (gpg22), CVE, gpg4win

Apr 5 2022

werner lowered the priority of T5910: CVE-2018-25032 for zlib <=1.2.11 (CVSS 8.1 high) from Unbreak Now! to High.

The fix is from 2018 but was not picked up widely; see
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531

Apr 5 2022, 12:14 PM · gnupg (gpg22), CVE, gpg4win

Mar 29 2022

gniibe added a comment to T5809: Expire subkey violates assertion "! sig->hashed".

Not applying the change to GnuPG 2.2, users can use GnuPG 2.3 for that.

Mar 29 2022, 4:28 AM · Testing, gnupg (gpg22), Bug Report

Mar 24 2022

gniibe merged task T5673: Using empty passphrase key pair, gpg2.2.9 fails to decrypt with error "No secret key" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful into T5804: Using empty passphrase key pair, gpg2.3.4 fails to decrypt with error "No passphrase given" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful .
Mar 24 2022, 6:02 AM · gnupg (gpg22), Bug Report
gniibe added a comment to T5673: Using empty passphrase key pair, gpg2.2.9 fails to decrypt with error "No secret key" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful .

Merged into T5804.

Mar 24 2022, 5:59 AM · gnupg (gpg22), Bug Report
gniibe claimed T5809: Expire subkey violates assertion "! sig->hashed".
Mar 24 2022, 5:38 AM · Testing, gnupg (gpg22), Bug Report
gniibe added a project to T5809: Expire subkey violates assertion "! sig->hashed": Testing.
Mar 24 2022, 5:38 AM · Testing, gnupg (gpg22), Bug Report

Mar 23 2022

gniibe removed a project from T5673: Using empty passphrase key pair, gpg2.2.9 fails to decrypt with error "No secret key" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful : Info Needed.

Thank you. Confirmed.

Mar 23 2022, 9:41 AM · gnupg (gpg22), Bug Report

Mar 22 2022

engel97 added a comment to T5673: Using empty passphrase key pair, gpg2.2.9 fails to decrypt with error "No secret key" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful .

gnupg2.0_keyring.tar.gz2 KBDownload
Attached is the keyring package containing both pub and sec ring files. When run into GPG2.2.9, this gets migrated to the newer format but it fails when the the passphrase is empty(which works in older gpg)

Mar 22 2022, 5:14 PM · gnupg (gpg22), Bug Report

Mar 21 2022

werner moved T4729: WKD via http_proxy does not work if DNS is broken/unavailable from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mar 21 2022, 10:56 PM · gnupg (gpg22), Restricted Project, dns, dirmngr
werner changed the status of T4729: WKD via http_proxy does not work if DNS is broken/unavailable from Open to Testing.
Mar 21 2022, 10:56 PM · gnupg (gpg22), Restricted Project, dns, dirmngr
werner added a comment to T4729: WKD via http_proxy does not work if DNS is broken/unavailable.

Actually this is pretty obvious; we better ignore such misbehaving servers.

Mar 21 2022, 10:40 PM · gnupg (gpg22), Restricted Project, dns, dirmngr
werner changed the status of T4394: Use I/O callbacks in gpgtar from Open to Testing.

No need for callbacks actually. We can do it in a simpler way. See commit rGe5ef5e3b914d5c8f0b841b078b164500ea157804

Mar 21 2022, 1:27 PM · gnupg (gpg22), gpgtar

Mar 17 2022

werner closed T5880: Old version of Zlib in GnuPG as Resolved.

SWDB updated - thus the latest zlib will be part of the next Windows build.

Mar 17 2022, 8:04 AM · CVE, gnupg (gpg22), gpg4win
gniibe added projects to T5673: Using empty passphrase key pair, gpg2.2.9 fails to decrypt with error "No secret key" on a gpg1.4/2.0 keyring format even though the secret keys migration was successful : gnupg (gpg22), Info Needed.
Mar 17 2022, 3:33 AM · gnupg (gpg22), Bug Report
gniibe added a comment to T5639: dirmngr uses the wrong Let's encrypt chain.

I think that the particular issue of Let's Encrypt Certificate was handled correctly already.

Mar 17 2022, 1:15 AM · gnupg (gpg22), dirmngr
gniibe added a parent task for T5639: dirmngr uses the wrong Let's encrypt chain: T5882: Cross signing certificate in X.509 support.
Mar 17 2022, 12:46 AM · gnupg (gpg22), dirmngr

Mar 16 2022

werner claimed T4729: WKD via http_proxy does not work if DNS is broken/unavailable.
Mar 16 2022, 4:31 PM · gnupg (gpg22), Restricted Project, dns, dirmngr
werner raised the priority of T4729: WKD via http_proxy does not work if DNS is broken/unavailable from Normal to High.
Mar 16 2022, 4:30 PM · gnupg (gpg22), Restricted Project, dns, dirmngr
gniibe closed T5120: Incompatible Ed25519 secret key (no-encryption) as Resolved.
Mar 16 2022, 3:07 PM · gnupg (gpg22), Bug Report
gniibe added a comment to T5809: Expire subkey violates assertion "! sig->hashed".

I think that this commit rG8fd150b05b74: gpg: Remove all support for v3 keys and always create v4-signatures. matters.

Mar 16 2022, 7:37 AM · Testing, gnupg (gpg22), Bug Report

Mar 15 2022

werner raised the priority of T5880: Old version of Zlib in GnuPG from Low to Normal.

All 4 CVEs are findings related to standard conforming compiler optimizations which OTOH break long standing assumptions on C coding. “Let us show that our compiler produces the fastes code ever and ignore any assumptions coders had made over the last 50 year”.

Mar 15 2022, 3:22 PM · CVE, gnupg (gpg22), gpg4win

Mar 9 2022

lukele added a comment to T5874: gpgconf has verbose mode enabled by default.

Great, thank you very much!

Mar 9 2022, 2:10 PM · gnupg (gpg22), Bug Report
werner closed T5874: gpgconf has verbose mode enabled by default as Resolved.

Thanks for notifying. Will be fixed in the next release (mid Apri).

Mar 9 2022, 2:04 PM · gnupg (gpg22), Bug Report