Page MenuHome GnuPG

DocumentationTag
ActivePublic

Members

  • This project does not have any members.
  • View All

Recent Activity

Fri, May 26

werner edited projects for T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent, added: gnupg; removed gnupg24.
Fri, May 26, 10:03 AM · gnupg, Documentation, ssh

May 2 2023

werner added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.

The user tried to sneak in an ad link and he has thus been banned. Here is his probably AI generated comment for documentation:

May 2 2023, 12:54 PM · Support, Documentation

Apr 27 2023

gniibe changed the status of T6271: The old FSF address in libgcrypt source code from Open to Testing.

Fixed for libgcrypt, updating copyright notices and license files.

Apr 27 2023, 7:09 AM · Documentation, libgcrypt, Bug Report

Apr 26 2023

gniibe changed the status of T6466: gpgme python example code contains insecure code pattern / chmod permission race condition from Open to Testing.

@ikloecker Thanks for your comment. I put a comment in the commit.

Apr 26 2023, 1:51 AM · Python, Documentation, gpgme

Apr 25 2023

ikloecker added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

Note that this may not work for Python 2.7, but since those are just examples that doesn't matter that much.

Apr 25 2023, 10:41 AM · Python, Documentation, gpgme
gniibe added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

So, here are fixes. I'll apply soonish.

Apr 25 2023, 7:44 AM · Python, Documentation, gpgme

Apr 24 2023

ikloecker added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

Funny enough that Python seems not to allow to set the permission with open. Low priority because a proper umask must anyway be used on a multi-user system.

Apr 24 2023, 12:26 PM · Python, Documentation, gpgme
werner triaged T6466: gpgme python example code contains insecure code pattern / chmod permission race condition as Low priority.

Funny enough that Python seems not to allow to set the permission with open. Low priority because a proper umask must anyway be used on a multi-user system.

Apr 24 2023, 8:22 AM · Python, Documentation, gpgme

Apr 13 2023

gniibe closed T6274: documentation needs update for replacing gpgme-config as Resolved.

Fixed in 1.19.0.

Apr 13 2023, 3:08 AM · Documentation, gpgme, Bug Report

Apr 12 2023

ebo closed T5344: Kleopatra: explain crypto profiles even better as Resolved.

The crypto profiles have been removed in Gpg4win 4.1.1

Apr 12 2023, 10:14 AM · kleopatra, Feature Request, Documentation

Apr 4 2023

werner triaged T6438: Manual of gpgrt is missing on gnupg.org as Normal priority.

Any volunteers to write a manual? ;-)

Apr 4 2023, 4:45 PM · Documentation, Feature Request, gpgrt

Mar 28 2023

werner renamed T6400: Improve Pinentry error message for a bad $TERM from Key generation on freebsd fails with message about screen size to Improve Pinentry error message for a bad $TERM.
Mar 28 2023, 5:02 PM · FreeBSD, Documentation, pinentry, Bug Report
werner triaged T6400: Improve Pinentry error message for a bad $TERM as Normal priority.

Actually this is about improving an error message.

Mar 28 2023, 5:01 PM · FreeBSD, Documentation, pinentry, Bug Report

Mar 24 2023

werner closed T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch as Resolved.

Thanks for your follwup. Let me remark that it is sufficient to stop all gnupg processes (pkill gpg-agent) and then rename the ~/.gnupg to .gnupg-save-NNNN. This way you have a backup and gpg will create a new ~/.gnupg.

Mar 24 2023, 10:48 AM · Support, Documentation
hunterthompson added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.
Mar 24 2023, 10:15 AM · Support, Documentation

Mar 3 2023

werner closed T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519) as Resolved.

Thanks for the description; this is good for documentation.

Mar 3 2023, 8:25 AM · Support, Documentation, OpenPGP, gnupg

Jan 31 2023

werner closed T5887: gpgme_data_identify() function prototype not as documented as Resolved.

Thanks. I fixed the documentation. Will go into 1.19

Jan 31 2023, 9:55 AM · Documentation, gpgme, Bug Report

Jan 19 2023

werner removed a project from T3902: Use the term password instead of passphrase: gnupg (gpg23).
Jan 19 2023, 4:51 PM · gnupg24, FAQ, Documentation
werner removed a project from T6023: Check how GnuPG handles several keys from WKD: gnupg (gpg23).
Jan 19 2023, 4:46 PM · gnupg24, g10, common, Documentation, wkd
werner removed a project from T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent: gnupg (gpg23).
Jan 19 2023, 4:44 PM · gnupg, Documentation, ssh

Jan 10 2023

aheinecke moved T5227: GpgOL: User documentation from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jan 10 2023, 12:53 PM · Documentation, Restricted Project, gpgol

Dec 20 2022

aheinecke closed T5227: GpgOL: User documentation as Resolved.
Dec 20 2022, 4:53 PM · Documentation, Restricted Project, gpgol

Dec 12 2022

werner moved T6023: Check how GnuPG handles several keys from WKD from Backlog to WiP on the g10 board.
Dec 12 2022, 12:17 PM · gnupg24, g10, common, Documentation, wkd
werner moved T6023: Check how GnuPG handles several keys from WKD from Backlog to WiP on the common board.
Dec 12 2022, 12:15 PM · gnupg24, g10, common, Documentation, wkd
werner added projects to T6023: Check how GnuPG handles several keys from WKD: common, g10.
Dec 12 2022, 12:12 PM · gnupg24, g10, common, Documentation, wkd
werner moved T5227: GpgOL: User documentation from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Dec 12 2022, 11:47 AM · Documentation, Restricted Project, gpgol

Dec 9 2022

bernhard added a comment to T4613: document implementation guidance for WKD clients in draft-koch-openpgp-webkey-service.

The current WKD/WKS draft offers no direct guidance to WKD clients about the type of filtering they should do.

Dec 9 2022, 9:15 AM · Documentation, wkd

Dec 5 2022

ikloecker edited projects for T3903: Kleopatra: Use the term password instead of passphrase, added: kleopatra; removed gnupg (gpg23).
Dec 5 2022, 8:27 AM · kleopatra, FAQ, Documentation

Nov 29 2022

ikloecker added a comment to T6271: The old FSF address in libgcrypt source code.

Well, the modern way, recommended by the FSFE, for license notices in source files is SPDX instead of verbose license notices. https://reuse.software/

Nov 29 2022, 9:09 AM · Documentation, libgcrypt, Bug Report
gniibe added a comment to T6271: The old FSF address in libgcrypt source code.

Modern way for license notice seems use of URL: https://www.gnu.org/prep/maintain/maintain.html#License-Notices-for-Code
https://www.gnu.org/licenses/gpl-howto.html

Nov 29 2022, 2:46 AM · Documentation, libgcrypt, Bug Report

Nov 25 2022

gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

Implications are... you won't be possible to use new protocols introduced by newer OpenSSH:

Nov 25 2022, 12:54 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 24 2022

amalon added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

Thanks. Adding 'PubkeyAuthentication unbound' to my ~/.ssh/config seems to workaround it for me on openssh-9.1p1-3 (arch). I don't quite follow what the implications of that setting are though.

Nov 24 2022, 9:01 PM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe renamed T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required) from OpenSSH 8.9 and 9.0 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required) to OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).
Nov 24 2022, 2:38 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

In my cases (tested with 9.1), here are the length of data to be signed by ssh-agent (emulation by gpg-agent).

  • 164 bytes: Both features disabled by: ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com -o PubkeyAuthentication=unbound
  • 192 bytes: Unbound only by: ssh -o PubkeyAuthentication=unbound
  • 298 bytes: No Post Quantum only by: ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com
  • 330 bytes: Both features enabled (no options)
Nov 24 2022, 2:22 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 22 2022

ametzler1 added a comment to T6274: documentation needs update for replacing gpgme-config.

Thank you, looks good to me.

Nov 22 2022, 6:28 PM · Documentation, gpgme, Bug Report
gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

I tested with openssh 9.1. When I add -o PubkeyAuthentication=unbound, I can make the length of data smaller.

Nov 22 2022, 8:12 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe changed the status of T6274: documentation needs update for replacing gpgme-config from Open to Testing.

Please use gpgme.pc to configure your build. Your options are:
(1) With Autoconf:
(1-1) Use pkg.m4 and PKG_CHECK_MODULES (which uses pkg-config to access gpgme.pc)
(1-2) Use gpgme.m4 and AM_PATH_GPGME (which uses gpgrt-config to access gpgme.pc)
(2) Or... use pkg-config to access gpgme.pc.

Nov 22 2022, 2:50 AM · Documentation, gpgme, Bug Report

Nov 10 2022

werner triaged T6271: The old FSF address in libgcrypt source code as Low priority.

Thanks. There should also be SPDX indentifiers everywhere.

Nov 10 2022, 12:25 PM · Documentation, libgcrypt, Bug Report

Nov 9 2022

amalon added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).
In T5931#165009, @alexk wrote:

A workaround you can add the following line to ~/.ssh/config or /etc/ssh/ssh_config:

KexAlgorithms -sntrup761x25519-sha512@openssh.com

For me ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com ... does work as well.

Nov 9 2022, 7:40 PM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
alexk added a project to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required): workaround.

A workaround you can add the following line to ~/.ssh/config or /etc/ssh/ssh_config:

Nov 9 2022, 10:51 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 1 2022

gniibe edited projects for T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent, added: Documentation; removed Bug Report.

The problem here is how large the data to be signed is. It is an issue of protocol design. The protocols are explained in openssh/PROTOCOL.certkeys and openssh/PROTOCOL. Unfortunately, it seems that it was designed with not much consideration for smartcard use case, so, data to be signed may be longer (than the capability of smartcard).

Nov 1 2022, 12:59 AM · gnupg, Documentation, ssh

Oct 11 2022

gniibe closed T5769: fix typo in autogen.sh as Resolved.

Fixed in libgpg-error 1.46 and pinentry 1.2.1.

Oct 11 2022, 8:28 AM · Documentation, gpgrt

Oct 8 2022

jukivili closed T6232: Documentation refers to wrong the RFC for GCM-SIV cipher mode (GCRY_CIPHER_MODE_GCM_SIV) as Resolved.

Thanks. Fix has been pushed to master.

Oct 8 2022, 2:51 PM · Documentation
jukivili claimed T6232: Documentation refers to wrong the RFC for GCM-SIV cipher mode (GCRY_CIPHER_MODE_GCM_SIV).
Oct 8 2022, 2:11 PM · Documentation

Oct 7 2022

Atzeloss created T6232: Documentation refers to wrong the RFC for GCM-SIV cipher mode (GCRY_CIPHER_MODE_GCM_SIV).
Oct 7 2022, 4:49 PM · Documentation

Aug 23 2022

werner renamed T6146: Add gcry_kdf_open et al. documentation from Add fcry_kdf_open et al. documentation to Add gcry_kdf_open et al. documentation.
Aug 23 2022, 11:19 AM · Documentation, libgcrypt
werner triaged T6146: Add gcry_kdf_open et al. documentation as Normal priority.
Aug 23 2022, 11:19 AM · Documentation, libgcrypt

Aug 1 2022

werner lowered the priority of T6023: Check how GnuPG handles several keys from WKD from High to Normal.

I don't think that we need to fix things here. Important is that the WKD import uses a filter which imports only keys with the requested mail address. However, if a key with the same fingerprint already exists it will be merged.

Aug 1 2022, 11:33 AM · gnupg24, g10, common, Documentation, wkd

Jul 27 2022

gniibe added a comment to T6092: Minor typo in documentation.

What I found: When the page is served by the server, it omits "charset=utf-8" part. This is the issue.

Jul 27 2022, 2:36 AM · patch, Documentation, Bug Report

Jul 26 2022

tiagoepi added a comment to T6092: Minor typo in documentation.

Thanks for fixing.

Jul 26 2022, 11:26 AM · patch, Documentation, Bug Report