Feature RequestExperimental
ActivePublic

Members

  • This project does not have any members.

Watchers (1)

Recent Activity

Sun, Oct 18

werner added a comment to T5104: Consider removing %n uses from printf-like functions.

gcc also warns about missing arguments and hopefully also if the arg for %n is not an int*.
You may need to enable these warnings which we do at least in maintainer-mode. On Windows some of the warnings might be wrong because mingw assumes the MS implementation.

Sun, Oct 18, 1:08 PM · Feature Request
vext01 added a comment to T5104: Consider removing %n uses from printf-like functions.

Fair enough with regards to portability, and this is not a hill I will die on, but can you comment on the security concerns of using %n?

Sun, Oct 18, 11:56 AM · Feature Request
werner closed T5104: Consider removing %n uses from printf-like functions as Wontfix.

Nope %n works on all implementations I am aware of. It has to because it is part of even C90.

Sun, Oct 18, 9:50 AM · Feature Request

Sat, Oct 17

vext01 added a comment to T5104: Consider removing %n uses from printf-like functions.

Hi Werner,

Sat, Oct 17, 8:34 PM · Feature Request

Fri, Oct 16

werner added a comment to T5104: Consider removing %n uses from printf-like functions.

Sorry, it is entirely non-sense to ban useful printf features. Also note that we use our own printf implementation to avoid portability problems with for example "%zu". If you have a problem with any of the uses of "%n", please explain the problem.

Fri, Oct 16, 9:07 AM · Feature Request

Thu, Oct 15

gnezdo added a comment to T5104: Consider removing %n uses from printf-like functions.

Thu, Oct 15, 8:54 AM · Feature Request
gnezdo created T5104: Consider removing %n uses from printf-like functions.
Thu, Oct 15, 8:51 AM · Feature Request

Sat, Oct 10

Denisov23 added a comment to T5092: Translate Gnupg in Italian.

Hello,
I finished the Italian translation of the GnuPg 2.2 file.
I need help, can you please update the source project with this translation? I am a beginner, unable to do this.
I attach files translated into Italian


Sat, Oct 10, 8:20 PM · gnupg, i18n, Feature Request

Tue, Oct 6

werner triaged T5092: Translate Gnupg in Italian as Normal priority.
Tue, Oct 6, 9:39 PM · gnupg, i18n, Feature Request

Sun, Oct 4

werner added a comment to T5092: Translate Gnupg in Italian.

We do have an Italian translation but it is quite outdated:

Sun, Oct 4, 12:09 PM · gnupg, i18n, Feature Request

Sat, Oct 3

Denisov23 created T5092: Translate Gnupg in Italian.
Sat, Oct 3, 8:42 PM · gnupg, i18n, Feature Request
leder renamed T5083: usecase for --detach-sign as the default signature creation method from usecase for --detach --sign as the default signature creation method to usecase for --detach-sign as the default signature creation method.
Sat, Oct 3, 7:31 PM · Info Needed, Feature Request
leder added a comment to T5083: usecase for --detach-sign as the default signature creation method.

Hello Werner,

Sat, Oct 3, 7:26 PM · Info Needed, Feature Request
Denisov23 changed Version from Kleopatra OpenGPG 2.2.23 to Kleopatra OpenGPG 2.2.23 Gpg4win 3.1.13 Win 10 on T5091: Close all tabs except this one.
Sat, Oct 3, 4:06 PM · kleopatra, Feature Request
Denisov23 created T5091: Close all tabs except this one.
Sat, Oct 3, 12:37 PM · kleopatra, Feature Request

Thu, Oct 1

bvieira added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@werner can you confirm if the environment I provided will work with OpenSSH support fully implemented?

Thu, Oct 1, 5:49 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
werner triaged T5083: usecase for --detach-sign as the default signature creation method as Normal priority.
Thu, Oct 1, 3:01 PM · Info Needed, Feature Request

Tue, Sep 29

werner added a project to T5085: Filter APDUs in log output: Feature Request.
Tue, Sep 29, 11:23 AM · Feature Request, gnupg (gpg22), scd

Sep 25 2020

werner added a comment to T5083: usecase for --detach-sign as the default signature creation method.

I am sorry, but I do not understand your request. Please give real commands as examples.
You known that you can always use --output FILENAME to force a certain file name?

Sep 25 2020, 10:03 AM · Info Needed, Feature Request
leder renamed T5083: usecase for --detach-sign as the default signature creation method from usecase for --detach --sign as the default signature creation to usecase for --detach --sign as the default signature creation method.
Sep 25 2020, 9:35 AM · Info Needed, Feature Request
leder created T5083: usecase for --detach-sign as the default signature creation method.
Sep 25 2020, 9:34 AM · Info Needed, Feature Request

Sep 23 2020

turkja added a comment to T3362: Prevent Smartcard from caching PIN when cache-ttl is set accordingly.

I also don't want to leave my card in the reader authenticated for a full day, it just doesn't sound like a good practice to me. I also very often just forget about the card, so it just sits there, keys open for use.

Sep 23 2020, 6:49 AM · Feature Request

Sep 22 2020

werner created T5079: Add compliance flag to trustlist.txt.
Sep 22 2020, 11:13 AM · Feature Request, gnupg (gpg22)

Sep 16 2020

gniibe updated the task description for T5001: Card specification enhancement.
Sep 16 2020, 8:51 AM · Feature Request, scd

Sep 15 2020

werner triaged T5070: Retain the exact name of the archive when extracting/decrypting via gpgtar as Normal priority.

Using a not yet existing directory is a security feature. The directory is created at a time the signature has not yet been verified and thus it would be too easy to trick a user into overwriting important data.

Sep 15 2020, 9:26 PM · gnupg (gpg23), gpgtar, Feature Request
Romans10910 created T5070: Retain the exact name of the archive when extracting/decrypting via gpgtar.
Sep 15 2020, 8:56 PM · gnupg (gpg23), gpgtar, Feature Request

Sep 9 2020

nursoda created T5060: Feature to migrate a card based to a file based key pair.
Sep 9 2020, 7:59 PM · Feature Request
bernhard added a comment to T5028: gpg --locate-key should refetch via wkd, if configured and no good pubkey found.

--locate-external-keys exists since 2.2.17 and ignores the local keys.

Sep 9 2020, 4:00 PM · gnupg, Feature Request

Sep 7 2020

werner triaged T5054: Preservation of modification date upon decryption/extraction. as Normal priority.
Sep 7 2020, 10:30 AM · gnupg (gpg23), gpgtar, Feature Request

Sep 5 2020

werner added projects to T5054: Preservation of modification date upon decryption/extraction.: gpgtar, gnupg (gpg23).

I will consider a -p option for gpgtar.

Sep 5 2020, 8:02 PM · gnupg (gpg23), gpgtar, Feature Request
Romans10910 created T5054: Preservation of modification date upon decryption/extraction..
Sep 5 2020, 1:45 PM · gnupg (gpg23), gpgtar, Feature Request
werner triaged T5053: More gpg arguments available for use with gpgtar as Normal priority.
Sep 5 2020, 12:35 PM · gnupg (gpg23), gpgtar, Feature Request
Romans10910 created T5053: More gpg arguments available for use with gpgtar.
Sep 5 2020, 12:21 PM · gnupg (gpg23), gpgtar, Feature Request

Sep 4 2020

bvieira added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

So, if there's no support for native OpenSSH yet, I'll wait for it. After it's supported, I should be able to get the scenery I described working, right?

Sep 4 2020, 1:52 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
aheinecke closed T4388: GpgOL: Add draft encryption as an option. as Resolved.
Sep 4 2020, 12:05 PM · Feature Request, gpg4win, gpgol
werner added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

Unfortunately you can't pass extra arguments.

Sep 4 2020, 7:47 AM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request

Sep 3 2020

gpguser123 added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

@bvieira You need to set pinentry-mode=loopback for gpg program used in git.

Sep 3 2020, 4:22 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
rkolvick added a comment to T5042: File deletion during encryption.

Thanks for your reply, but it is an OPTIONAL feature. The annoying part is not deleting the files. Comparing hundreds of time stamps to ensure you are current on what you want encrypted vs. unencrypted files that are either under development and/or complete, and therefore ready for encryption. This frequently needed comparison takes a significant amount of time, and is prone to error. Any responsible user will ensure there are tested file backups to prevent catastrophic losses, or they can simply NOT use the option.

Sep 3 2020, 12:08 AM · gpg4win, Feature Request

Sep 2 2020

bvieira added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

I'm actually trying to do the following:

Sep 2 2020, 2:10 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
avemilia added a comment to T3883: Add Win32-OpenSSH support to gpg-agent's ssh-agent.

In the meantime you can use [0]. I have tested with ssh key on yubikey and AuthenticationMethods publickey, win32-ssh (or ssh-portable, which is the new repository name) correctly works with gpg and pinentry is called. Despite it being called wsl, wsl environment is not required.

Sep 2 2020, 1:59 PM · gnupg (gpg23), Windows, ssh, gpgagent, Feature Request
aheinecke added a comment to T5042: File deletion during encryption.

See also: T3506

Sep 2 2020, 12:50 PM · gpg4win, Feature Request
aheinecke closed T5042: File deletion during encryption as Wontfix.

I have removed that feature intentionally. There were some issues where encryption errors were not properly reported to Kleopatra and handled by Kleopatra. This could result in catastrophic data loss. I have fixed ~3 issues regarding to that and then decided that in our architecture we cannot absolutely guarantee that this never can happen and cannot happen in the future. We have resolved all the issues, but they could occur again.

Sep 2 2020, 12:49 PM · gpg4win, Feature Request
werner edited projects for T5042: File deletion during encryption, added: Feature Request, gpg4win; removed Bug Report.
Sep 2 2020, 10:36 AM · gpg4win, Feature Request

Sep 1 2020

gniibe updated the task description for T5001: Card specification enhancement.
Sep 1 2020, 7:23 AM · Feature Request, scd

Aug 31 2020

glr added a comment to T3362: Prevent Smartcard from caching PIN when cache-ttl is set accordingly.

There is not a lot of demand for this, thus we have not continued to think about it.

@gniibe: We could implement this on the card by extending our ugly hacks on the login-data DO, which are currently:

Everything up to a LF is considered a mailbox or account name.  If
the first LF is followed by DC4 (0x14) control sequence are
expected up to the next LF.  Control sequences are separated by FS
(0x18) and consist of key=value pairs.  There are two keys defined:
 
 F=<flags>
 
 Where FLAGS is a plain hexadecimal number representing flag values.
 The lsb is here the rightmost bit.  Defined flags bits are:
 
   Bit 0 = CHV1 and CHV2 are not synchronized
   Bit 1 = CHV2 has been set to the default PIN of "123456"
           (this implies that bit 0 is also set).
 
 P=<pinpad-request>
 
 Where PINPAD_REQUEST is in the format of: <n> or <n>,<m>.
 N for user PIN, M for admin PIN.  If M is missing it means M=N.
 0 means to force not to use pinpad.

A new 'C' flag maybe?

Aug 31 2020, 5:10 PM · Feature Request
werner added a comment to T3362: Prevent Smartcard from caching PIN when cache-ttl is set accordingly.

There is not a lot of demand for this, thus we have not continued to think about it.

Aug 31 2020, 4:24 PM · Feature Request
glr added a comment to T3362: Prevent Smartcard from caching PIN when cache-ttl is set accordingly.

@werner , I understand your poiont.

So, the best approach would be:
(1) Define some DO (Data-Object) or attribute/flag per key to control timeout or "force" by the card itself.
(2) Modify scdaemon so that it always ask authentication state to the card before doing crypto operation.
(3) Modify gpg frontend so that it shows those attribute/flag and setup.

Then, it is the card itself to control timeout or "force".

Aug 31 2020, 1:00 PM · Feature Request

Aug 27 2020

werner closed T5027: gpgtar's "--files-from" should also handle a LF terminated list of file names. as Resolved.
Aug 27 2020, 2:24 PM · gnupg (gpg22), Feature Request, gpgtar
werner closed T4597: Support GCM modes for ntbtls. as Resolved.

0.2.0 was just released with support for GCM. Tested against openpgpkeys.pm.me

Aug 27 2020, 9:34 AM · Testing, Feature Request, ntbtls

Aug 25 2020

werner closed T4421: import-export does not remove duplicated subkeys as Resolved.

I implemented subkey collapsing in 2.3. It is enabled by default but you can disable it it with

Aug 25 2020, 10:42 AM · Feature Request, OpenPGP, gnupg (gpg23)