Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails with "likely bug" error message window. Log attached.
|Resolved||aheinecke||T3899 Gpg4win 3.1.1|
|Resolved||aheinecke||T3897 GpgOL: Sending signed / ecnrypted mail to X.509 (SMIME) recipient fails and error is not shown|
The Bug is here that the Error is not shown properly. In the log:
11:22:05/2312/ERROR/cryptcontroller.cpp:do_crypto: Encryption error No CRL known.
This is a hard failure by design in GnuPG. If no Certificate Revocation list can be fetched but a CRL distribution point is provided in the Cert chain it will fail.
You can disable-crl-checks in Kleopatra (Under S/MIME Validation tab) "never consult a CRL"
I will have to improve error handling when encryption fails. I didn't think about S/MIME failures. I won't move the release date for this as S/MIME is uncommon and failures are more uncommon but I'll fix it soon.
Btw. If you have an exchange 2016 you might also run into T3885 which will be fixed for todays release.