Page MenuHome GnuPG

Feature RequestExperimental
ActivePublic

Members

  • This project does not have any members.
  • View All

Watchers (1)

Recent Activity

Fri, Jun 24

Saklad5 updated the task description for T6040: Allow embedding preferred keyserver URL in signatures.
Fri, Jun 24, 4:07 PM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 updated the task description for T6020: Make %-expandos available for --default-keyserver-url.
Fri, Jun 24, 4:01 PM · Feature Request, gnupg (gpg23), Keyserver
Saklad5 added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

I suppose you're right, we might have crossed that bridge a while ago. Simple availability of certificate- or even signature-specific keyserver URIs just make the risks of honor-keyserver-url more obvious than before.

Fri, Jun 24, 3:32 PM · gnupg (gpg23), Feature Request, Keyserver
Valodim added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

I suppose you're right, we might have crossed that bridge a while ago. Simple availability of certificate- or even signature-specific keyserver URIs just make the risks of honor-keyserver-url more obvious than before.

Fri, Jun 24, 2:16 PM · gnupg (gpg23), Feature Request, Keyserver
ikloecker added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

This is a reasonable feature, however it should be noted that this implies a fairly large metadata leak: You are essentially adding a URI to signatures that will be pinged on signature verification.

Fri, Jun 24, 1:57 PM · gnupg (gpg23), Feature Request, Keyserver
Valodim added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

This is a reasonable feature, however it should be noted that this implies a fairly large metadata leak: You are essentially adding a URI to signatures that will be pinged on signature verification.

Fri, Jun 24, 12:31 PM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 updated the task description for T6040: Allow embedding preferred keyserver URL in signatures.
Fri, Jun 24, 1:38 AM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 added a comment to T6040: Allow embedding preferred keyserver URL in signatures.

I don't see why this is a child task of T6020: the features are similar, but they don't actually impact each other in any way.

Fri, Jun 24, 1:38 AM · gnupg (gpg23), Feature Request, Keyserver
Saklad5 renamed T6040: Allow embedding preferred keyserver URL in signatures from Allow embedding default keyserver URL in signatures to Allow embedding preferred keyserver URL in signatures.
Fri, Jun 24, 1:37 AM · gnupg (gpg23), Feature Request, Keyserver

Thu, Jun 23

werner triaged T6020: Make %-expandos available for --default-keyserver-url as Normal priority.
Thu, Jun 23, 10:48 AM · Feature Request, gnupg (gpg23), Keyserver
werner added a parent task for T6040: Allow embedding preferred keyserver URL in signatures: T6020: Make %-expandos available for --default-keyserver-url.
Thu, Jun 23, 10:47 AM · gnupg (gpg23), Feature Request, Keyserver
werner triaged T6040: Allow embedding preferred keyserver URL in signatures as Normal priority.
Thu, Jun 23, 10:46 AM · gnupg (gpg23), Feature Request, Keyserver
gniibe added a comment to T5988: agent: Add new command to update private key fields.

What about rejected changes to "Key:"?

Thu, Jun 23, 3:05 AM · Testing, Feature Request, ssh, gpgagent

Wed, Jun 22

werner added a comment to T5988: agent: Add new command to update private key fields.

What about rejected changes to "Key:"? Other this command would make it too easy to mess up the actual private key.

Wed, Jun 22, 2:54 PM · Testing, Feature Request, ssh, gpgagent
gniibe added a project to T5988: agent: Add new command to update private key fields: Testing.
Wed, Jun 22, 8:49 AM · Testing, Feature Request, ssh, gpgagent

Mon, Jun 20

DemiMarie added a revision to T5993: gpg should reject compressed packets outside of messages: D556: Disallow compressed signatures and certificates.
Mon, Jun 20, 6:32 PM · Feature Request, gnupg

Fri, Jun 17

werner triaged T6030: Missing support for the Brave Web Browser on Windows as Normal priority.
Fri, Jun 17, 7:48 AM · gpgme, Feature Request, gpg4win

Thu, Jun 16

DemiMarie added a revision to T5993: gpg should reject compressed packets outside of messages: D555: g10: Disallow compressed signatures and certificates.
Thu, Jun 16, 6:53 PM · Feature Request, gnupg
gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

I pushed the change needed for GnuPG to t5964 branch.

Thu, Jun 16, 8:47 AM · gnupg (gpg23), FIPS, libgcrypt, Feature Request
gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

Added HKDF implementation to master.

Thu, Jun 16, 8:18 AM · gnupg (gpg23), FIPS, libgcrypt, Feature Request

Wed, Jun 15

gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

I found this page:
https://firefox-source-docs.mozilla.org/security/nss/legacy/nss_tech_notes/nss_tech_note2/index.html

Wed, Jun 15, 3:44 AM · Feature Request, scute
gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

In the branch https://dev.gnupg.org/source/Scute/history/t6002/ , by the commit rS123d617ebefe: Less administration of devices by scute., things has been changed.

Wed, Jun 15, 3:39 AM · Feature Request, scute

Tue, Jun 14

ikloecker closed T6028: gpgme should support creating clearsigned messages as Resolved.

As Werner wrote, this is already possible. The next time please consult the extensive documentation of gpgme before opening a ticket.

Tue, Jun 14, 10:14 AM · Feature Request, gpgme

Mon, Jun 13

werner added a comment to T6028: gpgme should support creating clearsigned messages.

Hmm, why not use:

gpgme_op_sign (ctx, in, out GPGME_SIG_MODE_CLEAR)
Mon, Jun 13, 6:21 PM · Feature Request, gpgme
werner triaged T6028: gpgme should support creating clearsigned messages as Normal priority.
Mon, Jun 13, 6:17 PM · Feature Request, gpgme
gniibe added a comment to T6002: scute w/ gpg23: Support multiple cards/tokens, major update with KEYGRIP.

I realized that we need to invent a way to represent KEYGRIP (40-byte string) in the scheme of PKCS#11; PKCS#11 uses fixed-size string (space padded) for it's label (32) and serialno (16). Basically, it identifies the device by slot number.

Mon, Jun 13, 7:59 AM · Feature Request, scute

Sun, Jun 12

jukivili closed T6006: Optimize Chacha20 and Poly1305 for PPC P10 LE as Resolved.
Sun, Jun 12, 9:58 PM · patch, ppc, Feature Request, libgcrypt
jukivili added a comment to T6006: Optimize Chacha20 and Poly1305 for PPC P10 LE.

Patch applied to master with small changes.

Sun, Jun 12, 9:58 PM · patch, ppc, Feature Request, libgcrypt

Fri, Jun 10

DemiMarie added a comment to T6022: Socket activation for keyboxd and scdaemon.

gpg-agent --supervised being deprecated is highly surprising, especially because it works so well with systemd.

Fri, Jun 10, 4:02 AM · Feature Request

Thu, Jun 9

werner closed T6022: Socket activation for keyboxd and scdaemon as Wontfix.

The --supervised option of GnuPG is deprecated and thus it does not make sense to add this to keyboxd or even sdaemon (which is a helper to gpg-agent).

Thu, Jun 9, 2:25 PM · Feature Request
ebo renamed T6017: Add *.kgrp to Kleo's import file selection dialog. from Add *.krp to Kleo's import file selection dialog. to Add *.kgrp to Kleo's import file selection dialog..
Thu, Jun 9, 11:03 AM · Restricted Project, Feature Request, kleopatra
DemiMarie created T6022: Socket activation for keyboxd and scdaemon.
Thu, Jun 9, 8:56 AM · Feature Request

Wed, Jun 8

gniibe renamed T5862: authentication with USB token from authentication with USB token, ~~screen lock on token removal~~ to authentication with USB token.
Wed, Jun 8, 4:08 AM · Testing, gpgagent, Feature Request, scd
gniibe renamed T5862: authentication with USB token from authentication with USB token, screen lock on token removal to authentication with USB token, ~~screen lock on token removal~~.
Wed, Jun 8, 4:07 AM · Testing, gpgagent, Feature Request, scd
gniibe added a comment to T5862: authentication with USB token.

Now, it also supports a reader with pinpad.

Wed, Jun 8, 3:38 AM · Testing, gpgagent, Feature Request, scd

Tue, Jun 7

werner raised the priority of T5079: Add compliance flag to trustlist.txt from Normal to High.

A use case for this is to allow the use of S/MIME for de-vs mode and for standard mode while clearly indicating compliant certificates. As of now all certificates matching compliant algorithms are indicated as compliant. The new flag could be used to distinguish between them.

Tue, Jun 7, 4:06 PM · Restricted Project, Feature Request, gnupg (gpg22)
ikloecker closed T6017: Add *.kgrp to Kleo's import file selection dialog. as Resolved.

The suffix .kgrp has been added as default filter for the import with revision rKLEOPATRA5c4d3a80d5a9: Allow the export of certificate groups.

Tue, Jun 7, 11:56 AM · Restricted Project, Feature Request, kleopatra
werner triaged T6017: Add *.kgrp to Kleo's import file selection dialog. as Normal priority.
Tue, Jun 7, 11:25 AM · Restricted Project, Feature Request, kleopatra
gniibe added a comment to T5964: gnupg should use the KDFs implemented in libgcrypt.

I can only find this one: https://github.com/patrickfav/singlestep-kdf/wiki/NIST-SP-800-56C-Rev1:-Non-Official-Test-Vectors

Tue, Jun 7, 8:51 AM · gnupg (gpg23), FIPS, libgcrypt, Feature Request

Mon, Jun 6

gniibe added projects to T5862: authentication with USB token: gpgagent, Testing.
Mon, Jun 6, 7:02 AM · Testing, gpgagent, Feature Request, scd
gniibe added a comment to T5862: authentication with USB token.

Updated (with T6012):


Mon, Jun 6, 7:00 AM · Testing, gpgagent, Feature Request, scd

Fri, Jun 3

dannytsen added a comment to T6006: Optimize Chacha20 and Poly1305 for PPC P10 LE.

Thanks @jukivili , Here is the changelog,

Fri, Jun 3, 3:59 PM · patch, ppc, Feature Request, libgcrypt
jukivili added a comment to T6006: Optimize Chacha20 and Poly1305 for PPC P10 LE.

Thanks for updated patch. I'm travelling next week and have time to check it closely only after I'm back. On quick glance, it looks good. What is also needed is the changelog for git commit log.

Fri, Jun 3, 10:30 AM · patch, ppc, Feature Request, libgcrypt

Thu, Jun 2

kuwv added a comment to T4537: gpgsm support for timestamp signatures.

nice, that's great news! I'll have to try it out when I get a chance.

Thu, Jun 2, 7:37 PM · gnupg (gpg23), S/MIME, Feature Request
gniibe added a project to T6012: gpg-agent: Add --format=ssh option for READKEY: Testing.
Thu, Jun 2, 1:48 PM · Testing, gpgagent, Feature Request
gniibe triaged T6012: gpg-agent: Add --format=ssh option for READKEY as Normal priority.
Thu, Jun 2, 10:54 AM · Testing, gpgagent, Feature Request
werner triaged T6011: Windows tool to recursively encrypt all files. as Normal priority.
Thu, Jun 2, 9:03 AM · Feature Request, Restricted Project, gnupg
gniibe added a project to T6010: gpg-connect-agent: /definqprog semantics enhancement: Testing.
Thu, Jun 2, 8:53 AM · Testing, Feature Request, scd
gniibe added a comment to T5862: authentication with USB token.

See https://github.com/google/xsecurelock/blob/master/helpers/authproto.h
for the interaction between xsecurelock and the helper.

Thu, Jun 2, 8:25 AM · Testing, gpgagent, Feature Request, scd
gniibe triaged T6010: gpg-connect-agent: /definqprog semantics enhancement as Normal priority.
Thu, Jun 2, 8:15 AM · Testing, Feature Request, scd