gnupg (gpg23)Milestone
ActivePublic

Members

  • This project does not have any members.

Watchers

  • This project does not have any watchers.

Recent Activity

Sat, Mar 23

dkg added a comment to T3389: canonical OpenPGP certificate export.

fwiw, a comment over on T4422 contains a bash script that tries to force GnuPG to do its certificate/signature re-ordering. this doesn't produce anything canonical yet, but it's the closest i've come so far to getting GnuPG to do something repeatable with a certificate after merging (but even that is not quite stable).

Sat, Mar 23, 2:34 AM · gnupg (gpg23), Feature Request

Thu, Mar 21

werner claimed T4417: Work needed for gnupg 2.3.
Thu, Mar 21, 1:11 PM · gnupg (gpg23)
werner updated the task description for T4417: Work needed for gnupg 2.3.
Thu, Mar 21, 1:10 PM · gnupg (gpg23)
werner added subtasks for T4417: Work needed for gnupg 2.3: T3495: The --list-keys should account for groups that are defined, T4398: Rework Console handling on Windows, T4406: Allow the use of the default-new-key-algo format for --quick-gen-key., T4362: Replace the exec funtions for photoids in gpg by our standard exec functions., T4344: Periodic check of own keys with the WKD.
Thu, Mar 21, 1:09 PM · gnupg (gpg23)
werner added a parent task for T4406: Allow the use of the default-new-key-algo format for --quick-gen-key.: T4417: Work needed for gnupg 2.3.
Thu, Mar 21, 1:09 PM · Feature Request, gnupg (gpg23)
werner added a parent task for T4398: Rework Console handling on Windows: T4417: Work needed for gnupg 2.3.
Thu, Mar 21, 1:09 PM · Feature Request, gnupg (gpg23)
werner created T4417: Work needed for gnupg 2.3.
Thu, Mar 21, 1:06 PM · gnupg (gpg23)

Mon, Mar 18

werner edited projects for T3573: Research performance problems with some large keyring., added: gnupg (gpg23); removed gnupg (gpg22).
Mon, Mar 18, 7:18 PM · gnupg (gpg23)

Thu, Mar 14

werner created T4406: Allow the use of the default-new-key-algo format for --quick-gen-key..
Thu, Mar 14, 12:29 PM · Feature Request, gnupg (gpg23)
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

The issue for the quality indication is: T2103

Thu, Mar 14, 9:28 AM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T2103: Improve the pinentry password quality indication.

Regarding the quality evaluation, several months ago I proposed to optionally delegate that task to an external tool (specified by a new gpg-agent option passphrase-checker). I posted a first draft as D442 and then submitted a proper patchset to gnupg-devel, but although @werner expressed interest it was never merged. I have just checked that the patchset still applies cleanly to both the master branch and the STABLE-BRANCH-2-2. I can re-submit it to the mailing list if needed.

Thu, Mar 14, 9:27 AM · gnupg (gpg23), Feature Request
aheinecke renamed T4346: Remove gpg-agent passphrase nags for empty / none passphrase from Remove gpg-agent passphrase nags to Remove gpg-agent passphrase nags for empty / none passphrase.
Thu, Mar 14, 9:26 AM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

FWIW I like @gouttegd 's patchset.

Thu, Mar 14, 9:26 AM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

The quality bar is switched off by default. That feature including the quality was ordered and accepted by a client. I don't like it either and thus the new default of having it disabled is a useful solution.

Thu, Mar 14, 9:24 AM · gpg4win, gnupg (gpg23), pinentry

Fri, Mar 8

werner triaged T4365: Encoding problem: gpg truncates multibyte characters in interactive prompts on Windows as Normal priority.

I reviewed the multibyte handling in GnuPG and you are right, there is a general problem because we use ReadConsoleA and basically GetCommandLineA, so there is no way for multibyte input unless a parameter file is used. Output is also broken, but that is easier to fix iff the input case has been fixed.

Fri, Mar 8, 8:18 AM · Windows, gnupg (gpg23), Bug Report
werner created T4398: Rework Console handling on Windows.
Fri, Mar 8, 8:12 AM · Feature Request, gnupg (gpg23)

Thu, Mar 7

werner added a comment to T4367: gnupg fails to build with gcc9.

Changes backported to 2.2

Thu, Mar 7, 1:05 PM · gnupg (gpg22), Bug Report

Wed, Mar 6

werner added a comment to T4377: gpg-agent does not anymore restart a killed scdaemon.

Thanks for fixing that.

Wed, Mar 6, 8:05 AM · gnupg (gpg23), gpgagent, scd
gniibe changed the status of T4377: gpg-agent does not anymore restart a killed scdaemon from Open to Testing.
Wed, Mar 6, 3:05 AM · gnupg (gpg23), gpgagent, scd
gniibe added a comment to T4377: gpg-agent does not anymore restart a killed scdaemon.

That's my badness. In wait_child_thread, assuan_release may cause thread context switch to agent_reset_scd which accesses scd_local_list; This access should be serialized.
And... in start_scd, calling unlock_scd should be after unlocking start_scd_lock.

Wed, Mar 6, 3:05 AM · gnupg (gpg23), gpgagent, scd
gniibe added a commit to T4377: gpg-agent does not anymore restart a killed scdaemon: rG2abad7585a00: agent: Fix detection of exit of scdaemon..
Wed, Mar 6, 3:00 AM · gnupg (gpg23), gpgagent, scd

Tue, Feb 26

pmgdeb added a comment to T4367: gnupg fails to build with gcc9.

Builds fine now with GCC 9. Thanks for looking into this so quickly.

Tue, Feb 26, 1:22 PM · gnupg (gpg22), Bug Report
werner added a comment to T4377: gpg-agent does not anymore restart a killed scdaemon.

Does not happen in 2.2. Additional requirement to test this bug in master: Another connection to the scdaemon must be open. For example running scute or, easier, call "gpg --card-edit" and keep it open.

Tue, Feb 26, 1:21 PM · gnupg (gpg23), gpgagent, scd
werner created T4377: gpg-agent does not anymore restart a killed scdaemon.
Tue, Feb 26, 12:41 PM · gnupg (gpg23), gpgagent, scd
gniibe claimed T4367: gnupg fails to build with gcc9.

Fixed in master, by removing use of compound literals. Compound literals are not portable feature (even for C99 code), so, it's good to avoid when we can.
Still dns.c uses C99 features of struct initializer with name.

Tue, Feb 26, 4:36 AM · gnupg (gpg22), Bug Report

Feb 18 2019

werner triaged T4367: gnupg fails to build with gcc9 as Normal priority.

Libdns is not our own code and our intention was to keep it in sync with upstream. However, after some initial success the upstream author lost interest. We now consider to rework the code to remove a bit of the more creative use of C99 and maybe even get rid of some of the used C99 features (gnupg is mainly C90 with some exceptions).

Feb 18 2019, 8:38 AM · gnupg (gpg22), Bug Report

Feb 11 2019

dkg added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

I can't tell whether this bug report is about all the ways that we wish that GnuPG's default password process was better, or whether it's about one specific change.

Feb 11 2019, 7:48 AM · gpg4win, gnupg (gpg23), pinentry
gouttegd added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

Regarding the quality evaluation, several months ago I proposed to optionally delegate that task to an external tool (specified by a new gpg-agent option passphrase-checker). I posted a first draft as D442 and then submitted a proper patchset to gnupg-devel, but although @werner expressed interest it was never merged. I have just checked that the patchset still applies cleanly to both the master branch and the STABLE-BRANCH-2-2. I can re-submit it to the mailing list if needed.

Feb 11 2019, 12:59 AM · gpg4win, gnupg (gpg23), pinentry

Feb 4 2019

aheinecke claimed T3902: Use the term password instead of passphrase.

First of all I find PIN a very bad term. "Personal Identification Number" for example for my Gnuk token is confusing. I use a string there,... So let us use PIN only where it really has to be a number. Otherwise it is a Password.

Feb 4 2019, 1:47 PM · FAQ, Documentation, gnupg (gpg23)
werner added a comment to T3902: Use the term password instead of passphrase.

Despite that I created this task, I am still not not convinced that removing the term passphrase is a good idea. If we do this in gnupg we would need to change all strings to make it clear that the passphrase is used to protect one's own key and has nothing to do with encryption etc. In fact the term PIN would be better because it is common knowledge that you use a PIN to get access to something you own. There would be less confusion on the purpose of the passphrase. Sure PIN is usually considered to be a number. However my bank allows a string to be used as, what they call, PIN.

Feb 4 2019, 11:26 AM · FAQ, Documentation, gnupg (gpg23)
aheinecke added a comment to T3902: Use the term password instead of passphrase.

There has been some progress here. At least we no longer use "passphrase" in new code. We still have not yet replaced all old occurances.

Feb 4 2019, 10:41 AM · FAQ, Documentation, gnupg (gpg23)

Jan 25 2019

werner added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

The quality bar is switched off by default. That feature including the quality was ordered and accepted by a client. I don't like it either and thus the new default of having it disabled is a useful solution.

Jan 25 2019, 9:24 PM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

But to resolve this bug I also want to remove stuff like "ooooh you should use numbers or something like that" we have that in configuration but our default code is too dumb to be useful (afaik "password" is accepted with 90% quality). We also have a bug for the quality thingy, which I also find important because that is the first contact with our software.

Jan 25 2019, 5:25 PM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

Found it: T3724

Jan 25 2019, 5:22 PM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

No that bug is different. Nowadays you have to solve four dialogs to create a key without a passphrase.

Jan 25 2019, 5:20 PM · gpg4win, gnupg (gpg23), pinentry
werner added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

So you mean the bug that you see a second set of passphrase dialogs iff you told the first one that you don't want a passphrase? That is not trivial to fix because we use the passphrase cache to avoid the double passpharse questions. Without passphrase cache we need a separate code path.

Jan 25 2019, 5:08 PM · gpg4win, gnupg (gpg23), pinentry
aheinecke added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

No! That is not what I want with this issue. We should ask once for a passphrase and then shut up.

Jan 25 2019, 4:49 PM · gpg4win, gnupg (gpg23), pinentry
werner added a comment to T4346: Remove gpg-agent passphrase nags for empty / none passphrase.

Yeah, it is annoying. Maybe it is indeed better not to ask for a passphrase at all.

Jan 25 2019, 4:41 PM · gpg4win, gnupg (gpg23), pinentry
aheinecke created T4346: Remove gpg-agent passphrase nags for empty / none passphrase.
Jan 25 2019, 4:38 PM · gpg4win, gnupg (gpg23), pinentry

Jan 11 2019

beckda created T4320: tar archive encryption failed with japanese characters.
Jan 11 2019, 9:00 AM · gpg4win, kleopatra, Bug Report

Dec 12 2018

gniibe merged task T3529: Connection limit for gpg-agent into T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.
Dec 12 2018, 7:16 AM · Feature Request, gnupg (gpg23), gpgagent

Nov 9 2018

jukivili added a commit to T3786: Unexpectedly slow decryption for AEAD (and CFB): rG5d6c080522e1: g10/decrypt-data: use iobuf_read for higher performance.
Nov 9 2018, 5:07 PM · gnupg (gpg23), Bug Report

Nov 8 2018

werner created T4246: GnuPG master does not allow decryption with bad usage flags (regression).
Nov 8 2018, 1:27 PM · Bug Report, gnupg (gpg23)

Nov 5 2018

werner edited projects for T3730: Add support to HTTP Basic Auth for Keyservers, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 10:17 AM · gnupg (gpg23), Feature Request
werner edited projects for T3753: Bad self-signatures and missing subkey usage flags when creating ECDSA/Ed25519 keys in batch mode, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 10:16 AM · gnupg (gpg23), Bug Report
werner edited projects for T3108: gpgconf lists the wrong extra socket path when a path is explicitly configured in gpg-agent.conf, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 9:38 AM · gnupg (gpg23), gpgagent
werner edited projects for T3101: GnuPG 2.2 cannot import secret keys from 1.4/2.0's secring.gpg directly (if it is expired by original expiration date), added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 9:37 AM · gnupg (gpg23), Bug Report
werner edited projects for T3278: explicit key expiration date/time is interpreted as UTC, is echoed back using local time, confusion ensues, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 9:36 AM · gnupg (gpg23), Documentation, Bug Report
werner edited projects for T3237: gnupg complies to CO_DE_VS when generating keys non-interactively only by accident, added: gnupg (gpg23); removed gnupg (gpg22).
Nov 5 2018, 9:34 AM · gnupg (gpg23)

Oct 29 2018

werner triaged T4154: allow setting passphrase from an environment variable as Low priority.
Oct 29 2018, 9:42 AM · Feature Request, gnupg (gpg23)