Page MenuHome GnuPG

DocumentationTag
ActivePublic

Members

  • This project does not have any members.
  • View All

Recent Activity

Tue, Sep 26

jplejacq added a comment to T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent.

Here's another data point.

Tue, Sep 26, 4:13 PM · gnupg, Documentation, ssh

Aug 22 2023

gniibe triaged T6675: doc: Man page for keyboxd as Wishlist priority.
Aug 22 2023, 6:40 AM · gnupg, Documentation

Aug 1 2023

werner closed T6615: v5 document signatures verification. as Resolved.
Aug 1 2023, 11:49 AM · Documentation, OpenPGP, Bug Report
werner added a comment to T6615: v5 document signatures verification..

Okay, will go into the next revision. Thanks.

Aug 1 2023, 11:49 AM · Documentation, OpenPGP, Bug Report

Jul 31 2023

onickolay added a comment to T6615: v5 document signatures verification..

Thanks for the reply!

Jul 31 2023, 2:45 PM · Documentation, OpenPGP, Bug Report
werner added projects to T6615: v5 document signatures verification.: OpenPGP, Documentation.
Jul 31 2023, 1:42 PM · Documentation, OpenPGP, Bug Report

Jul 20 2023

gniibe added a comment to T6271: The old FSF address in libgcrypt source code.

Fixed in: rP66abf7cb1e1b: Update GPL2 for new FSF address. Use URL for license.

Jul 20 2023, 6:56 AM · Documentation, libgcrypt, Bug Report

Jun 13 2023

gniibe added a comment to T6271: The old FSF address in libgcrypt source code.

Thanks. I think that it was the oldest one: FSF used to be there in Cambridge, then moved to Tremont St. in Boston, and now it's in Franklin St.

Jun 13 2023, 3:10 AM · Documentation, libgcrypt, Bug Report

Jun 12 2023

Jakuje added a comment to T6271: The old FSF address in libgcrypt source code.

FYI, while going through the licenses again I noticed one of the pinentry files have even older address that so if you would do sed, this would not be matched:

Jun 12 2023, 4:11 PM · Documentation, libgcrypt, Bug Report

May 26 2023

werner edited projects for T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent, added: gnupg; removed gnupg24.
May 26 2023, 10:03 AM · gnupg, Documentation, ssh

May 2 2023

werner added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.

The user tried to sneak in an ad link and he has thus been banned. Here is his probably AI generated comment for documentation:

May 2 2023, 12:54 PM · Support, Documentation

Apr 27 2023

gniibe changed the status of T6271: The old FSF address in libgcrypt source code from Open to Testing.

Fixed for libgcrypt, updating copyright notices and license files.

Apr 27 2023, 7:09 AM · Documentation, libgcrypt, Bug Report

Apr 26 2023

gniibe changed the status of T6466: gpgme python example code contains insecure code pattern / chmod permission race condition from Open to Testing.

@ikloecker Thanks for your comment. I put a comment in the commit.

Apr 26 2023, 1:51 AM · Python, Documentation, gpgme

Apr 25 2023

ikloecker added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

Note that this may not work for Python 2.7, but since those are just examples that doesn't matter that much.

Apr 25 2023, 10:41 AM · Python, Documentation, gpgme
gniibe added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

So, here are fixes. I'll apply soonish.

Apr 25 2023, 7:44 AM · Python, Documentation, gpgme

Apr 24 2023

ikloecker added a comment to T6466: gpgme python example code contains insecure code pattern / chmod permission race condition.

Funny enough that Python seems not to allow to set the permission with open. Low priority because a proper umask must anyway be used on a multi-user system.

Apr 24 2023, 12:26 PM · Python, Documentation, gpgme
werner triaged T6466: gpgme python example code contains insecure code pattern / chmod permission race condition as Low priority.

Funny enough that Python seems not to allow to set the permission with open. Low priority because a proper umask must anyway be used on a multi-user system.

Apr 24 2023, 8:22 AM · Python, Documentation, gpgme

Apr 13 2023

gniibe closed T6274: documentation needs update for replacing gpgme-config as Resolved.

Fixed in 1.19.0.

Apr 13 2023, 3:08 AM · Documentation, gpgme, Bug Report

Apr 12 2023

ebo closed T5344: Kleopatra: explain crypto profiles even better as Resolved.

The crypto profiles have been removed in Gpg4win 4.1.1

Apr 12 2023, 10:14 AM · kleopatra, Feature Request, Documentation

Apr 4 2023

werner triaged T6438: Manual of gpgrt is missing on gnupg.org as Normal priority.

Any volunteers to write a manual? ;-)

Apr 4 2023, 4:45 PM · Documentation, Feature Request, gpgrt

Mar 28 2023

werner renamed T6400: Improve Pinentry error message for a bad $TERM from Key generation on freebsd fails with message about screen size to Improve Pinentry error message for a bad $TERM.
Mar 28 2023, 5:02 PM · FreeBSD, Documentation, pinentry, Bug Report
werner triaged T6400: Improve Pinentry error message for a bad $TERM as Normal priority.

Actually this is about improving an error message.

Mar 28 2023, 5:01 PM · FreeBSD, Documentation, pinentry, Bug Report

Mar 24 2023

werner closed T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch as Resolved.

Thanks for your follwup. Let me remark that it is sufficient to stop all gnupg processes (pkill gpg-agent) and then rename the ~/.gnupg to .gnupg-save-NNNN. This way you have a backup and gpg will create a new ~/.gnupg.

Mar 24 2023, 10:48 AM · Support, Documentation
hunterthompson added a comment to T3469: gpg: decryption failed: No secret key <= after debian upgrade from Jessie to Stretch.
Mar 24 2023, 10:15 AM · Support, Documentation

Mar 3 2023

werner closed T6390: ECC: Explain GnuPG's CV25519 key and its ECDH (comarison to X25519) as Resolved.

Thanks for the description; this is good for documentation.

Mar 3 2023, 8:25 AM · Support, Documentation, OpenPGP, gnupg

Jan 31 2023

werner closed T5887: gpgme_data_identify() function prototype not as documented as Resolved.

Thanks. I fixed the documentation. Will go into 1.19

Jan 31 2023, 9:55 AM · Documentation, gpgme, Bug Report

Jan 19 2023

werner removed a project from T3902: Use the term password instead of passphrase: gnupg (gpg23).
Jan 19 2023, 4:51 PM · gnupg24, FAQ, Documentation
werner removed a project from T6023: Check how GnuPG handles several keys from WKD: gnupg (gpg23).
Jan 19 2023, 4:46 PM · gnupg24, g10, common, Documentation, wkd
werner removed a project from T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent: gnupg (gpg23).
Jan 19 2023, 4:44 PM · gnupg, Documentation, ssh

Jan 10 2023

aheinecke moved T5227: GpgOL: User documentation from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Jan 10 2023, 12:53 PM · Documentation, Restricted Project, gpgol

Dec 20 2022

aheinecke closed T5227: GpgOL: User documentation as Resolved.
Dec 20 2022, 4:53 PM · Documentation, Restricted Project, gpgol

Dec 12 2022

werner moved T6023: Check how GnuPG handles several keys from WKD from Backlog to WiP on the g10 board.
Dec 12 2022, 12:17 PM · gnupg24, g10, common, Documentation, wkd
werner moved T6023: Check how GnuPG handles several keys from WKD from Backlog to WiP on the common board.
Dec 12 2022, 12:15 PM · gnupg24, g10, common, Documentation, wkd
werner added projects to T6023: Check how GnuPG handles several keys from WKD: common, g10.
Dec 12 2022, 12:12 PM · gnupg24, g10, common, Documentation, wkd
werner moved T5227: GpgOL: User documentation from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Dec 12 2022, 11:47 AM · Documentation, Restricted Project, gpgol

Dec 9 2022

bernhard added a comment to T4613: document implementation guidance for WKD clients in draft-koch-openpgp-webkey-service.

The current WKD/WKS draft offers no direct guidance to WKD clients about the type of filtering they should do.

Dec 9 2022, 9:15 AM · Documentation, wkd

Dec 5 2022

ikloecker edited projects for T3903: Kleopatra: Use the term password instead of passphrase, added: kleopatra; removed gnupg (gpg23).
Dec 5 2022, 8:27 AM · kleopatra, FAQ, Documentation

Nov 29 2022

ikloecker added a comment to T6271: The old FSF address in libgcrypt source code.

Well, the modern way, recommended by the FSFE, for license notices in source files is SPDX instead of verbose license notices. https://reuse.software/

Nov 29 2022, 9:09 AM · Documentation, libgcrypt, Bug Report
gniibe added a comment to T6271: The old FSF address in libgcrypt source code.

Modern way for license notice seems use of URL: https://www.gnu.org/prep/maintain/maintain.html#License-Notices-for-Code
https://www.gnu.org/licenses/gpl-howto.html

Nov 29 2022, 2:46 AM · Documentation, libgcrypt, Bug Report

Nov 25 2022

gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

Implications are... you won't be possible to use new protocols introduced by newer OpenSSH:

Nov 25 2022, 12:54 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 24 2022

amalon added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

Thanks. Adding 'PubkeyAuthentication unbound' to my ~/.ssh/config seems to workaround it for me on openssh-9.1p1-3 (arch). I don't quite follow what the implications of that setting are though.

Nov 24 2022, 9:01 PM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe renamed T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required) from OpenSSH 8.9 and 9.0 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required) to OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).
Nov 24 2022, 2:38 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

In my cases (tested with 9.1), here are the length of data to be signed by ssh-agent (emulation by gpg-agent).

  • 164 bytes: Both features disabled by: ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com -o PubkeyAuthentication=unbound
  • 192 bytes: Unbound only by: ssh -o PubkeyAuthentication=unbound
  • 298 bytes: No Post Quantum only by: ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com
  • 330 bytes: Both features enabled (no options)
Nov 24 2022, 2:22 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 22 2022

ametzler1 added a comment to T6274: documentation needs update for replacing gpgme-config.

Thank you, looks good to me.

Nov 22 2022, 6:28 PM · Documentation, gpgme, Bug Report
gniibe added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).

I tested with openssh 9.1. When I add -o PubkeyAuthentication=unbound, I can make the length of data smaller.

Nov 22 2022, 8:12 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
gniibe changed the status of T6274: documentation needs update for replacing gpgme-config from Open to Testing.

Please use gpgme.pc to configure your build. Your options are:
(1) With Autoconf:
(1-1) Use pkg.m4 and PKG_CHECK_MODULES (which uses pkg-config to access gpgme.pc)
(1-2) Use gpgme.m4 and AM_PATH_GPGME (which uses gpgrt-config to access gpgme.pc)
(2) Or... use pkg-config to access gpgme.pc.

Nov 22 2022, 2:50 AM · Documentation, gpgme, Bug Report

Nov 10 2022

werner triaged T6271: The old FSF address in libgcrypt source code as Low priority.

Thanks. There should also be SPDX indentifiers everywhere.

Nov 10 2022, 12:25 PM · Documentation, libgcrypt, Bug Report

Nov 9 2022

amalon added a comment to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required).
In T5931#165009, @alexk wrote:

A workaround you can add the following line to ~/.ssh/config or /etc/ssh/ssh_config:

KexAlgorithms -sntrup761x25519-sha512@openssh.com

For me ssh -o KexAlgorithms=-sntrup761x25519-sha512@openssh.com ... does work as well.

Nov 9 2022, 7:40 PM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent
alexk added a project to T5931: OpenSSH 8.9, 9.0, and 9.1 can't authenticate with gpg-agent and usb token (Gnuk >= 1.2.16 is required): workaround.

A workaround you can add the following line to ~/.ssh/config or /etc/ssh/ssh_config:

Nov 9 2022, 10:51 AM · gnupg24, workaround, Documentation, gnupg (gpg23), ssh, gpgagent

Nov 1 2022

gniibe edited projects for T6250: GPG-Agent doesn't work properly with smart cards and ed25519 keys and SSH Agent, added: Documentation; removed Bug Report.

The problem here is how large the data to be signed is. It is an issue of protocol design. The protocols are explained in openssh/PROTOCOL.certkeys and openssh/PROTOCOL. Unfortunately, it seems that it was designed with not much consideration for smartcard use case, so, data to be signed may be longer (than the capability of smartcard).

Nov 1 2022, 12:59 AM · gnupg, Documentation, ssh