Feature RequestExperimental
ActivePublic

Members

  • This project does not have any members.

Watchers (1)

Recent Activity

Today

werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

and by that bypassing all key source tracking as done by gpg. In any case searching by name or mail address on a keyserver should not be done - at least not by a GUI tool as used by non experienced users.

Wed, Feb 19, 4:34 PM · Feature Request, Keyserver, dirmngr
patrick added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

I agree that this is a tricky problem, but it should really be improved.

Wed, Feb 19, 4:05 PM · Feature Request, Keyserver, dirmngr
werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

The problem is not to check whether there is a connection but on how to decide whether something is a pool or an explictly added single keyserver and how often should we try to connect or read from it. Without marking hosts as dead the auto search features won't work well.

Wed, Feb 19, 1:30 PM · Feature Request, Keyserver, dirmngr
aheinecke added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

@Valodim probably not so much as dirmngr might behave differently and not mark hosts as dead.

Wed, Feb 19, 1:17 PM · Feature Request, Keyserver, dirmngr
werner added a comment to T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

The proper solution is of course to use pkill instead of killall. SCNR.

Wed, Feb 19, 12:43 PM · Feature Request, Keyserver, dirmngr
Valodim updated subscribers of T4513: dirmngr should try the configured keyservers anyway even if they are all dead.

I can attest to the "growing bit of popular lore": Roughly half the support requests I get to support@keys.openpgp.org boil down to an exchange of "it just doesn't work with a 'general error' message" -> "try killall dirmngr" -> "that did it". I have heard similar stories from @patrick from Enigmail users, and more than once heard people applying poweruser trickery like "I just have killall dirmngr in my resume.d".

Wed, Feb 19, 11:37 AM · Feature Request, Keyserver, dirmngr

Yesterday

werner added a commit to T4788: System wide configuration of the GnuPG system: rE933eb9346a84: core: Add a high level option/argument parser..
Tue, Feb 18, 4:51 PM · gnupg (gpg23), Feature Request, gpg4win, g10code

Fri, Feb 7

werner closed T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r as Resolved.
Fri, Feb 7, 1:49 PM · gpgrt, Feature Request
werner closed T4643: gpgrt: enable the environment to set compiler and linker flags for helper tools as Resolved.
Fri, Feb 7, 1:48 PM · gpgrt, Feature Request
werner closed T4772: Release libgpg-error 1.37, a subtask of T4539: libgpg-error on Windows: strerror_s can be used instead of strerror_r, as Resolved.
Fri, Feb 7, 1:47 PM · gpgrt, Feature Request

Mon, Feb 3

Joey_D added a comment to T4699: X.509 certificate request more comfortable.

Hi Andre, did you already get anywhere with this task? Thanks a lot in advance, Joachim

Mon, Feb 3, 9:22 PM · kleopatra, S/MIME, gpg4win, Feature Request

Tue, Jan 21

slandden added a comment to T4630: libgcrypt: POWER GHASH Vector Acceleration.

Yes, I need to optimize it.

Tue, Jan 21, 9:31 PM · Feature Request, libgcrypt
johnmar added a comment to T4630: libgcrypt: POWER GHASH Vector Acceleration.

Hi @slandden. Have you made any progress since the last time I asked?

Tue, Jan 21, 9:16 PM · Feature Request, libgcrypt

Jan 17 2020

james added a comment to T4807: Mime Compatibility with Symantec PGP.

It can force it on the outbound. https://support.symantec.com/us/en/article.tech164655.html
It also allow SIMME pass-through. https://support.symantec.com/us/en/article.tech166867.html

Jan 17 2020, 6:12 PM · gpgol, Feature Request
gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG853d5b7677ea: gpg: Prepare enhancement of agent_probe_secret_key..
Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg
gniibe added a commit to T3416: gpg should select available signing key on card (even with -u option): rG8748c50bfaa8: gpg: Prefer card key on use in multiple subkeys situation..
Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option), a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg
gniibe changed the status of T3416: gpg should select available signing key on card (even with -u option) from Open to Testing.

Implemented in master.

Jan 17 2020, 8:12 AM · Testing, Feature Request, gnupg

Jan 16 2020

werner added a comment to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)).

BTW, I just pushed some new features to maste for the gpg-card tool. You can now do

Jan 16 2020, 9:37 PM · Testing, Feature Request, gnupg
aheinecke added a comment to T4807: Mime Compatibility with Symantec PGP.

Is this about any special version of Symantec? As far as I knew Symantec Endpoint Security Desktop (or whatever they call it nowadays) supports reading PGP/MIME and even sending it if forced.

Jan 16 2020, 1:32 PM · gpgol, Feature Request
gniibe raised the priority of T3416: gpg should select available signing key on card (even with -u option) from Normal to High.
Jan 16 2020, 5:43 AM · Testing, Feature Request, gnupg
gniibe added a comment to T3416: gpg should select available signing key on card (even with -u option).

With new "KEYINFO" command of scdaemon, finally, we can move on to support better selection of signing key.
(Note: having a private key on multiple cards had already been solved in T4301: Handling multiple subkeys on two SmartCards.)

Jan 16 2020, 5:40 AM · Testing, Feature Request, gnupg
gniibe added a project to T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): Testing.
Jan 16 2020, 5:29 AM · Testing, Feature Request, gnupg
gniibe changed the status of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)) from Open to Testing.

In master, it has been implemented.

Jan 16 2020, 5:29 AM · Testing, Feature Request, gnupg
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys, a subtask of T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)), from Open to Testing.
Jan 16 2020, 5:25 AM · Testing, Feature Request, gnupg
gniibe changed the status of T4695: Remove SERIALNO as an identifier to select keys from Open to Testing.
Jan 16 2020, 5:25 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

The first "SCD SERIALNO" command let scdaemon re-scan smartcards/tokens.

Jan 16 2020, 5:24 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4695: Remove SERIALNO as an identifier to select keys.

With new "KEYINFO" command in scdaemon, a list of card keys can be retrieved by:

Jan 16 2020, 5:22 AM · Testing, Feature Request, gnupg
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID as Resolved.
Jan 16 2020, 5:17 AM · scd, Feature Request, gnupg
gniibe closed T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID, a subtask of T4695: Remove SERIALNO as an identifier to select keys, as Resolved.
Jan 16 2020, 5:17 AM · Testing, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

There is no use cases for $SIGNKEYID.

Jan 16 2020, 5:16 AM · scd, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$ENCRKEYID use case have been removed.

Jan 16 2020, 5:14 AM · scd, Feature Request, gnupg
gniibe added a commit to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID: rG8edd4b8b8cdc: gpg: Use "SCD KEYINFO" to get available card keys..
Jan 16 2020, 5:10 AM · scd, Feature Request, gnupg

Jan 14 2020

james added a comment to T4807: Mime Compatibility with Symantec PGP.

The base64 for the version is not needed. I rebuilt and did a test for that. I was testing with Outlook 2016 to Outlook.com to another exchange server. One of the servers in the chain is converting the mime parts to base64.
The MAPI headers in gpgol are causing the auto-decryption of Symantec to stop checking for the MIME attachments. On internal emails the MAPI format is retained and that causes an issue with the symantec client. When they leave the exchange server the base MIME format is what is sent and that works with the Symantec client.

Jan 14 2020, 5:50 PM · gpgol, Feature Request

Jan 13 2020

werner added a comment to T4807: Mime Compatibility with Symantec PGP.

Using base64 encoding for a fixed format part in us-ascii is not a good idea because in practise many PGP/MIME decoders won't be able to detect and then decyrypt such a message.

Jan 13 2020, 9:14 AM · gpgol, Feature Request
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

$AUTHKEYID use cases have been removed.

Jan 13 2020, 8:53 AM · scd, Feature Request, gnupg

Jan 12 2020

james created T4807: Mime Compatibility with Symantec PGP.
Jan 12 2020, 5:28 AM · gpgol, Feature Request

Jan 10 2020

whites11 added a comment to T1756: gpg-agent doesn't accept ssh certificates.

I am wondering if there is any workaround or work in progress about this old ticket.
I understand this is kind of an edge case, but having the possibility to use signed ssh keys would be very useful to me.

Jan 10 2020, 2:37 PM · gnupg, Feature Request

Jan 9 2020

werner created T4803: Print a diagnostic for a missing encryption subkey.
Jan 9 2020, 2:34 PM · Feature Request, OpenPGP, gnupg

Jan 4 2020

neg3ntropy added a comment to T169: Add a way to generate keypairs from a passphrase.

As a user I think that this capability would be a great addition to PGP and it might even make it a standard tool for key generation across cryptocurrencies.

Jan 4 2020, 9:59 PM · gnupg, Feature Request

Dec 23 2019

werner added a parent task for T4694: manage first-party attestations: T4795: GUI to manage first party attestations.
Dec 23 2019, 11:23 AM · Feature Request
werner added a subtask for T4795: GUI to manage first party attestations: T4694: manage first-party attestations.
Dec 23 2019, 11:23 AM · OpenPGP, Feature Request
werner created T4795: GUI to manage first party attestations.
Dec 23 2019, 11:22 AM · OpenPGP, Feature Request
werner added a parent task for T2291: Smartcard interaction improvement (was: Shadowed private key design (for smartcard)): Restricted Maniphest Task.
Dec 23 2019, 11:03 AM · Testing, Feature Request, gnupg
werner removed a subtask for T4695: Remove SERIALNO as an identifier to select keys: Restricted Maniphest Task.
Dec 23 2019, 11:02 AM · Testing, Feature Request, gnupg
werner added a parent task for T4694: manage first-party attestations: Restricted Maniphest Task.
Dec 23 2019, 10:58 AM · Feature Request

Dec 20 2019

dkg added a comment to T4393: GnuPG should always accept key updates even if the update does not contain UIDs.

It has now been over 6 months since the patches were available to fix this problem and they have not been adopted upstream.

Dec 20 2019, 6:56 PM · gnupg (gpg23), Feature Request
werner raised the priority of T4788: System wide configuration of the GnuPG system from Wishlist to High.
Dec 20 2019, 12:24 PM · gnupg (gpg23), Feature Request, gpg4win, g10code

Dec 19 2019

gniibe added a commit to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID: rGb2a2df174b21: scd: Enhance KEYINFO command to limit listing with capability..
Dec 19 2019, 10:07 AM · scd, Feature Request, gnupg
gniibe added a comment to T4784: Remove referring a key by $AUTHKEYID, $ENCRKEYID, and $SIGNKEYID.

Considering the concrete use case(s), it is more rational to support listing by capability.

NOTE: exposing capability is orthogonal issue
Dec 19 2019, 12:23 AM · scd, Feature Request, gnupg