Home GnuPG
Dashboards Panels W85 Standalone View

All Stories
View All

Today

tfry committed rOJ718b7ef3bf1a: Explicitly share certain paths between client and server (authored by tfry).
Explicitly share certain paths between client and server
Mon, Mar 30, 12:07 PM
ikloecker claimed T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Mon, Mar 30, 11:57 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
ikloecker triaged T8201: Kleopatra: Optionally, allow encryption with invalid or expired certificates as Normal priority.
Mon, Mar 30, 11:54 AM · gpd5x, Feature Request, kleopatra
tfry committed rOJ4d9770451d1a: Look up keys in cache, instead (authored by tfry).
Look up keys in cache, instead
Mon, Mar 30, 11:47 AM
tfry committed rOJb2de026d6756: Make sure kleopatra windows open in foreground on Windows (authored by tfry).
Make sure kleopatra windows open in foreground on Windows
Mon, Mar 30, 11:47 AM
tfry committed rOJaacd549c702f: Bring dialogs to front on Windows (authored by tfry).
Bring dialogs to front on Windows
Mon, Mar 30, 11:46 AM
tfry committed rOJ334d25dc8f90: Show distinct messages if secret keys were found, but are not usable (authored by tfry).
Show distinct messages if secret keys were found, but are not usable
Mon, Mar 30, 11:46 AM
tfry committed rOJce8a3988c8bc: Inform in native client, if no secret key is available for connected account (authored by tfry).
Inform in native client, if no secret key is available for connected account
Mon, Mar 30, 11:46 AM
ikloecker added a subtask for T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates: T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Mon, Mar 30, 11:39 AM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
ikloecker added a parent task for T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted": T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.
Mon, Mar 30, 11:39 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
ikloecker removed a parent task for T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates: T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Mon, Mar 30, 11:39 AM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
ikloecker removed a subtask for T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted": T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.
Mon, Mar 30, 11:39 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
ikloecker renamed T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted" from Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST to Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Mon, Mar 30, 11:38 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
werner committed rDd1ab407c1185: blog: Add essay by Robert J. Hansen (authored by werner).
blog: Add essay by Robert J. Hansen
Mon, Mar 30, 11:33 AM
ikloecker removed a parent task for T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted": T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST.
Mon, Mar 30, 11:31 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
ikloecker removed a subtask for T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST: T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Mon, Mar 30, 11:31 AM · vsd32 (vsd-3.2.0), vsd, Restricted Project, gpgol
ikloecker added a subtask for T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST: T6559: GPGSM: "always trust like override" or "force" option.
Mon, Mar 30, 11:31 AM · vsd32 (vsd-3.2.0), vsd, Restricted Project, gpgol
ikloecker added a parent task for T6559: GPGSM: "always trust like override" or "force" option: T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST.
Mon, Mar 30, 11:31 AM · gnupg24 (gnupg-2.4.4), gpgme (gpgme 1.23.x), gnupg22 (gnupg-2.2.42), Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
tfry committed rOJ80f88011845d: Only warn about version mismatch, if manifest file has changed (authored by tfry).
Only warn about version mismatch, if manifest file has changed
Mon, Mar 30, 11:26 AM
tfry added a comment to T8192: Review "version mismatch message".

I'm not sure if there is any way for the add-in to know which way it was installed.

Mon, Mar 30, 11:25 AM · gpgol2
ikloecker added a comment to T8156: pinentry qt and fltk - fallback to tty on invalid DISPLAY.

As noted by @ametzler1 pinentry-qt has such a fallback. Of course, we can try to improve the heuristics pinentry-qt uses.

Mon, Mar 30, 11:14 AM · pinentry, Bug Report
tfry triaged T8198: Security level button - provide better info in case of multiple signatures as Normal priority.
Mon, Mar 30, 9:39 AM · gpgol2
tfry triaged T8199: Security level button - provide better message, if signature is good, but is not trusted to correspond to sender UID as Normal priority.
Mon, Mar 30, 9:39 AM · gpgol2
tfry created T8198: Security level button - provide better info in case of multiple signatures.
Mon, Mar 30, 9:35 AM · gpgol2
l10n daemon script <scripty@kde.org> committed rMTP758401528ace: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Mon, Mar 30, 3:49 AM

Yesterday

mlaurent committed rMTP6b7be4932828: GIT_SILENT: prepare 6.7.0 (authored by mlaurent).
GIT_SILENT: prepare 6.7.0
Sun, Mar 29, 9:55 AM
mlaurent committed rKLEOPATRAc253e8a31807: GIT_SILENT: prepare 6.7.0 (authored by mlaurent).
GIT_SILENT: prepare 6.7.0
Sun, Mar 29, 9:55 AM
l10n daemon script <scripty@kde.org> committed rMTPd91eac7c3fee: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sun, Mar 29, 5:18 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAd84451d7d9bc: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sun, Mar 29, 3:47 AM
l10n daemon script <scripty@kde.org> committed rMTP63780bf49965: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sun, Mar 29, 3:45 AM

Sat, Mar 28

werner triaged T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver as High priority.
Sat, Mar 28, 6:12 PM · Keyserver, gnupg26, Bug Report
mlaurent committed rMTP5ecf445ca777: GIT_SILENT: prepare 6.7.0 (authored by mlaurent).
GIT_SILENT: prepare 6.7.0
Sat, Mar 28, 1:15 PM
mlaurent committed rLIBKLEO55a1c92b2cdc: GIT_SILENT: prepare 6.7.0 (authored by mlaurent).
GIT_SILENT: prepare 6.7.0
Sat, Mar 28, 1:11 PM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA662435a47660: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sat, Mar 28, 4:20 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRAeb062346c24e: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sat, Mar 28, 2:48 AM
l10n daemon script <scripty@kde.org> committed rMTP3bba878dd869: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Sat, Mar 28, 2:48 AM

Fri, Mar 27

Karl created T8197: "gpg --refresh-keys" aborts with "gpg: keyserver refresh failed: No data" if too many keys are missing on keyserver.
Fri, Mar 27, 4:28 PM · Keyserver, gnupg26, Bug Report
ebo closed T7838: GpgOL: resolver chooses wrong certificate to decide if autosecure should happen as Invalid.

I tried but couldn't reproduce it any more. Therefore setting it to invalid.

Fri, Mar 27, 4:23 PM · gpgol
ebo added a comment to T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.

Before making subtickets for each application: I wonder if it is not all Kleopatra anyway? Isn't the security approval dialog basically Kleopatra?

Fri, Mar 27, 3:23 PM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
ebo added a comment to T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.

The equivalent for invalid S/MIME certificates are not-certified *PGP certificates.
(Valid/invalid are not ideal as technical terms as they have a broad general meaning, too. I hope my usage here is correct ;-) It is what I gathered from an explanation given by Werner.)

Fri, Mar 27, 3:07 PM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
timegrid added a comment to T8189: GnuPG: Bad signature on import of designated revokation certificate.

Note: The invalid revocation certificate: Bad signature - rejected line is also shown on vsd 3.3.4, gpg 2.2.53 @ win10 (but revocation works).

Fri, Mar 27, 1:30 PM · Bug Report, gnupg26
timegrid updated the task description for T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP.
Fri, Mar 27, 1:16 PM · needs discussion, Bug Report, gpd5x, gpgol
timegrid updated the task description for T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP.
Fri, Mar 27, 1:14 PM · needs discussion, Bug Report, gpd5x, gpgol
ebo added a project to T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP: needs discussion.

feedback of @mmontkowski needed

Fri, Mar 27, 1:01 PM · needs discussion, Bug Report, gpd5x, gpgol
timegrid added a comment to T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.

Invalid certs (as stated in the status column in Kleopatra) are mainly S/MIME certs (e.g. with missing root cert, CRL check failed, etc). I haven't seen invalid pgp certs yet (might be e.g. very old ones with missing self signature).

Fri, Mar 27, 12:38 PM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
timegrid updated the task description for T8196: GnuPG: Designated revokation with certify-only primary keys does not work.
Fri, Mar 27, 12:11 PM · Bug Report, gnupg26
timegrid created T8196: GnuPG: Designated revokation with certify-only primary keys does not work.
Fri, Mar 27, 11:55 AM · Bug Report, gnupg26
ebo renamed T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates from Draft: Add a workflow to force encryption/signature with invalid/expired/disabled certificates to Draft: Add a workflow to force encryption/signature with invalid or expired certificates.
Fri, Mar 27, 11:49 AM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
ebo added a comment to T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.

Invalid and expired are different cases.

Fri, Mar 27, 11:37 AM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
werner triaged T8195: Add option --ignore-expiration to gpg and gpgsm as Normal priority.
Fri, Mar 27, 11:17 AM · gnupg26, Feature Request
werner added a parent task for T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates: T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".
Fri, Mar 27, 11:14 AM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
werner added a subtask for T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted": T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.
Fri, Mar 27, 11:14 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
werner claimed T8076: Kleopatra: Unable to completely delete key with secret subkeys and offline-primary key.
Fri, Mar 27, 11:07 AM · gnupg26, gpd5x, kleopatra, Bug Report
werner added a comment to T7843: GpgOL: Empty OpenPGP mails with "Read as plain" activated.

Not a good idea. Because then the user will open it with the browser and the browser loads all kind of additional data including drive-by malware. If HTML *mail* is shown by a MUA no links should be followed to keep information and the fact that it was read confidential.

Fri, Mar 27, 11:05 AM · vsd34, vsd, gpgol
werner triaged T8048: Keyboxd: S/MIME certificate is imported on ldap search as Normal priority.
Fri, Mar 27, 10:33 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x
werner triaged T8093: GPGME: inconsistent behavior on GPGME_KEYLIST_MODE_LOCATE from hkp server as Normal priority.

I think locate mode is mostly meant to be used to retrieve a single key

Fri, Mar 27, 10:33 AM · to-be-discussed, Bug Report
werner triaged T8156: pinentry qt and fltk - fallback to tty on invalid DISPLAY as Normal priority.
Fri, Mar 27, 10:29 AM · pinentry, Bug Report
werner added a comment to T8156: pinentry qt and fltk - fallback to tty on invalid DISPLAY.

We talked about this in our developer meeting on Monday. I have never experienced the problem because I use the Qt version only on Windows and for my own use I use the Gtk version. In any case I think that Qt and fltk should fallback to curses to cover the case of using the Pinentry for a system startup on the console (e.g. the g13 case) with later switching to a GUI. And of course for those users who switch between GUI and console.

Fri, Mar 27, 10:28 AM · pinentry, Bug Report
ebo added a project to T8116: Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messages: needs discussion.
Fri, Mar 27, 10:01 AM · needs discussion, gpd5x, kleopatra
m.eik added a comment to T8192: Review "version mismatch message".

yes, we should only ask for an update of the manifest if its content was changed. the message should indicate that.

Fri, Mar 27, 8:46 AM · gpgol2
l10n daemon script <scripty@kde.org> committed rKLEOPATRA927b0272ceaa: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Fri, Mar 27, 4:25 AM
l10n daemon script <scripty@kde.org> committed rMTP8b961015a8e7: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Fri, Mar 27, 2:50 AM
l10n daemon script <scripty@kde.org> committed rKLEOPATRA501fcd383c1c: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Fri, Mar 27, 2:49 AM

Thu, Mar 26

tfry moved T8179: Troubleshooting documentation from Backlog to WiP on the gpgol2 board.
Thu, Mar 26, 5:22 PM · gpgol2
tfry committed rOJ5de1df43579d: Simplify, improve placement of security level button (authored by tfry).
Simplify, improve placement of security level button
Thu, Mar 26, 4:47 PM
tfry committed rOJ66dac67dec30: Wrap empty SeclevelInfo into a std::optional (authored by tfry).
Wrap empty SeclevelInfo into a std::optional
Thu, Mar 26, 4:47 PM
tfry committed rOJd57abeb58935: Make link to key info work (authored by tfry).
Make link to key info work
Thu, Mar 26, 4:47 PM
tfry committed rOJdec2befe8109: Make sure kleopatra windows open in foreground on Windows (authored by tfry).
Make sure kleopatra windows open in foreground on Windows
Thu, Mar 26, 4:04 PM
tfry committed rOJ15caffd24052: Bring dialogs to front on Windows (authored by tfry).
Bring dialogs to front on Windows
Thu, Mar 26, 4:04 PM
tfry committed rOJ32c94e4fa77a: Look up keys in cache, instead (authored by tfry).
Look up keys in cache, instead
Thu, Mar 26, 4:04 PM
tfry committed rOJ6f315f129fa7: Show distinct messages if secret keys were found, but are not usable (authored by tfry).
Show distinct messages if secret keys were found, but are not usable
Thu, Mar 26, 4:04 PM
tfry committed rOJ149d52da9868: Inform in native client, if no secret key is available for connected account (authored by tfry).
Inform in native client, if no secret key is available for connected account
Thu, Mar 26, 4:04 PM
RokeJulianLockhart updated RokeJulianLockhart.
Thu, Mar 26, 3:47 PM
timegrid added a comment to T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted".

Issue 1) should be implemented as already described (on error -> dialog to retry with "always trust" flag)

Thu, Mar 26, 3:33 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
tfry committed rOJ8819a269f3d2: Layout (authored by tfry).
Layout
Thu, Mar 26, 3:33 PM
tfry committed rOJ8eaa56550f7b: Activate help button in setup dialog (authored by tfry).
Activate help button in setup dialog
Thu, Mar 26, 3:33 PM
tfry committed rOJ1d01765c486e: Actually wait for and check success of CA installation on Windows (authored by tfry).
Actually wait for and check success of CA installation on Windows
Thu, Mar 26, 3:33 PM
tfry committed rOJ0051fb315891: Restart proxy after certificate (re-)generation (authored by tfry).
Restart proxy after certificate (re-)generation
Thu, Mar 26, 3:33 PM
tfry committed rOJ80c31e4b8680: Match system formatting when showing fingerprint on Windows (authored by tfry).
Match system formatting when showing fingerprint on Windows
Thu, Mar 26, 3:33 PM
timegrid triaged T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates as Normal priority.
Thu, Mar 26, 3:31 PM · needs discussion, gnupg, Feature Request, gpgol, kleopatra
werner committed rGbc7c91bee521: gpg: Improve a recursion check. (authored by werner).
gpg: Improve a recursion check.
Thu, Mar 26, 3:15 PM
werner committed rGe4daa6bd42a5: indent: Reflow check_revocation_keys and move a var to BSS. (authored by werner).
indent: Reflow check_revocation_keys and move a var to BSS.
Thu, Mar 26, 2:43 PM
tfry triaged T8192: Review "version mismatch message" as Normal priority.
Thu, Mar 26, 1:37 PM · gpgol2
Allen Winter <winter@kde.org> committed rMTP9ca31b878bb8: Use the CMake gpg_crypto_test macros from libkleo (authored by Allen Winter <winter@kde.org>).
Use the CMake gpg_crypto_test macros from libkleo
Thu, Mar 26, 1:25 PM
tfry committed rOJdecfe4f1ebe6: Make sure kleopatra windows open in foreground on Windows (authored by tfry).
Make sure kleopatra windows open in foreground on Windows
Thu, Mar 26, 1:22 PM
Allen Winter <winter@kde.org> committed rLIBKLEO5c18dc7ce3d0: Move gpg_crypto_test CMake support here (authored by Allen Winter <winter@kde.org>).
Move gpg_crypto_test CMake support here
Thu, Mar 26, 1:01 PM
timegrid edited projects for T6702: Kleopatra: Offer retry of S/MIME encryption if encryption failed with "not trusted", added: needs discussion; removed Info Needed.

@ebo and me talked about this and T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST. We think, it's best to have a short meeting to discuss further changes.

Thu, Mar 26, 12:57 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra
tfry committed rOJ6cb4776077c6: Fix list of web sources for message extraction (authored by tfry).
Fix list of web sources for message extraction
Thu, Mar 26, 11:39 AM
tfry added a comment to T7650: Kleopatra: Limit width of KMessageBoxes.

Patch was merged upstream (KF 6.25): 332678d8a4f635d6938eb3e9ec03d845aa89697a

Thu, Mar 26, 11:11 AM · gpd5x, gpgpass, kleopatra
tfry added a comment to T8174: Investigate button order in assistant dialog (aka first time wizard).
Thu, Mar 26, 11:11 AM · gpgol2
tfry moved T8176: Improvements to first time setup assistant from WiP to QA on the gpgol2 board.
Thu, Mar 26, 11:04 AM · gpgol2
tfry updated the task description for T8176: Improvements to first time setup assistant.
Thu, Mar 26, 11:04 AM · gpgol2
tfry removed a subtask for T8176: Improvements to first time setup assistant: T8183: Programmatically check acceptance of our SSL cert.
Thu, Mar 26, 11:03 AM · gpgol2
tfry edited parent tasks for T8183: Programmatically check acceptance of our SSL cert, added: T8191: Enhancements to certificate installation; removed: T8176: Improvements to first time setup assistant.
Thu, Mar 26, 11:03 AM · gpgol2
tfry added a subtask for T8191: Enhancements to certificate installation: T8183: Programmatically check acceptance of our SSL cert.
Thu, Mar 26, 11:03 AM · gpgol2
tfry claimed T8191: Enhancements to certificate installation.
Thu, Mar 26, 11:02 AM · gpgol2
tfry moved T8191: Enhancements to certificate installation from Backlog to WiP on the gpgol2 board.
Thu, Mar 26, 11:02 AM · gpgol2
tfry added a project to T8191: Enhancements to certificate installation: gpgol2.
Thu, Mar 26, 11:02 AM · gpgol2
tfry triaged T8191: Enhancements to certificate installation as Normal priority.
Thu, Mar 26, 11:01 AM · gpgol2
m <meik.michalke@gnupg.com> committed rWf908af297a3f: build.sh: document --verbose in usage info (authored by m <meik.michalke@gnupg.com>).
build.sh: document --verbose in usage info
Thu, Mar 26, 10:56 AM