Okular: No valid smime certs found
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	timegrid
	Tue, Jun 24, 3:24 PM

Description

Split from https://dev.gnupg.org/T7658

Signing of an unsigned document results in an error "all certs invalid or expired", which is not the case in kleopatra:

gpgme log (GPGME_DEBUG=9):

gpgme_log_sign.txt179 KBDownload

gpgsm log (debug x509,ipc,lookup):

okular_signing_gpgsm_log.txt24 KBDownload

To reproduce:

Install gpg4win-5.0.0-beta190.exe
Import via Kleopatra (Drag&Drop): from testzertifikate_2023/
- g10code-root-ca-2020.crt
- edward.tester@demo.gnupg.com.p12
- ted.tester@demo.gnupg.com-sign.p12
- ted.tester@demo.gnupg.com-encr.p12
Trust the root-ca-2020@gnupg.com root certificate (unless you did so already on import).
Open Okular, run Menu: Extras -> Digital signieren...

Details

Version: gpg4win-5.0.0-beta190

Related Objects

Mentioned In: T7658: Okular: Dirmngr startup timeout on signature validation
Mentioned Here: T7069: Kleopatra: Expiration warning wrong on windows in case of expiry in year 2038+
T7658: Okular: Dirmngr startup timeout on signature validation

Event Timeline

timegrid triaged this task as Normal priority.Tue, Jun 24, 3:24 PM

timegrid created this task.

timegrid created this object with edit policy "Contributor (Project)".

timegrid mentioned this in T7658: Okular: Dirmngr startup timeout on signature validation.Tue, Jun 24, 3:29 PM

Ingo mentioned some maybe related expiration year 2038+ ticket, but I only found one for kleo: https://dev.gnupg.org/T7069

• ikloecker updated the task description. (Show Details)Tue, Jun 24, 3:59 PM

• ikloecker updated the task description. (Show Details)Tue, Jun 24, 4:02 PM

added gpgsm log:

okular_signing_gpgsm_log.txt24 KBDownload

I now imported all certs in testzertifikate_2023/ (smime and openpgp) and generated a new one (openpgp, default settings, expiration 2028) and still get no valid signing certs in okular

gpgsm log:

okular_signing_allcerts_gpgsm_log.txt36 KBDownload

gpgme log:

okular_signing_allcerts_gpgme_log.txt248 KBDownload

On gpg4win-5.0.0-beta330 everything works fine again (both smime and openpgp regardless of expiration).

Okular: No valid smime certs foundClosed, ResolvedPublicActions

Description

Details

Related Objects

Event Timeline

Okular: No valid smime certs found
Closed, ResolvedPublic
Actions