Home GnuPG
Dashboards Panels W85 Standalone View

All Stories
View All

Today

ikloecker committed rW6b2ba7a72930: download.sh: Check for stale packages that should be removed (authored by ikloecker).
download.sh: Check for stale packages that should be removed
Thu, Dec 18, 4:30 PM
ikloecker committed rW70f44ce9c86d: download.sh: Fix removal of links to downloaded files (authored by ikloecker).
download.sh: Fix removal of links to downloaded files
Thu, Dec 18, 4:30 PM
ikloecker committed rW0a40a0ae6393: download.sh: Fix removal of downloaded files (authored by ikloecker).
download.sh: Fix removal of downloaded files
Thu, Dec 18, 4:30 PM
ikloecker committed rWc56b725bb4d3: Update the list of patches for the AppImage (authored by ikloecker).
Update the list of patches for the AppImage
Thu, Dec 18, 2:09 PM
ikloecker committed rW697bbaad1fa8: Update the list of patches for gpg4win (authored by ikloecker).
Update the list of patches for gpg4win
Thu, Dec 18, 1:45 PM
ikloecker moved T7528: Make it possible to run Kleopatra VSD and Kleopatra GPD in parallel from QA to WIP on the gpd5x board.

Back to WIP because I had to fix a regression.

Thu, Dec 18, 1:29 PM · vsd34, test on hold, gpd5x, kleopatra
mlaurent committed rMTP94abec058e3b: Make sure that we don't add deprecated code (authored by mlaurent).
Make sure that we don't add deprecated code
Thu, Dec 18, 1:25 PM
werner placed T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server up for grabs.
Thu, Dec 18, 12:11 PM · gnupg22, gnupg26, Feature Request, gpd5x
werner moved T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server from WIP to QA on the gnupg26 board.
Thu, Dec 18, 12:11 PM · gnupg22, gnupg26, Feature Request, gpd5x
werner added a comment to T7730: gpg: retrieve a certificate from an LDAP server before sending it to the LDAP server.

Well, I tested this again. I created a new key and saved a copy. The I updated the expiration date to 2035 and sent the key to the LDAP server. Then I deleted the updated key locally and imported the old copy. Thus I have now:

Thu, Dec 18, 12:09 PM · gnupg22, gnupg26, Feature Request, gpd5x
ikloecker committed rKLEOPATRAbc1d094c04b5: Fix regression in Windows implementation of KUniqueService (authored by ikloecker).
Fix regression in Windows implementation of KUniqueService
Thu, Dec 18, 11:55 AM
TobiasFella committed rKLEOPATRA3e3aa8c55370: Disable password label when symmetric encryption is disabled (authored by TobiasFella).
Disable password label when symmetric encryption is disabled
Thu, Dec 18, 11:17 AM
TobiasFella added a comment to T7107: Kleopatra: Option "PublicKeyEncryptionOnly".

https://invent.kde.org/pim/kleopatra/-/merge_requests/428

Thu, Dec 18, 11:17 AM · gpd5x, Feature Request, kleopatra
TobiasFella closed T7535: Kleopatra: "Decrypt/Verify all files in folder" doesn't work as Resolved.
Thu, Dec 18, 11:01 AM · Feature Request, kleopatra
werner added a comment to T7983: gpg: the validity of a secret key is changed by making a certification with it.

Yesterday I was able to reproduce it once. But despite more than a dozen more tries yesterday and this morning, I could not anymore replicate it. I tested on Unix and one oddity was that I forgot to kill the keyboxd for a clean new test and thus it could serve old keys despite that the pubring.db was already deleted (but the inode still open by keyboxd).

Thu, Dec 18, 10:21 AM · keyboxd, Bug Report, gpd5x, gnupg26
ebo updated subscribers of T6299: Kleopatra: Updating key does results in "not changed" instead of "not found".

@timegrid I would not tag this ticket with LDAP, as it is not LDAP specific

Thu, Dec 18, 10:20 AM · Restricted Project, LDAP, gpd5x, kleopatra
ebo moved T6299: Kleopatra: Updating key does results in "not changed" instead of "not found" from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Dec 18, 10:18 AM · Restricted Project, LDAP, gpd5x, kleopatra
ebo closed T6299: Kleopatra: Updating key does results in "not changed" instead of "not found" as Resolved.

State in Gpg4win-5.0.0-beta446 and vsd 3.3.4 is this:


So the message is "Update Failed" for keyserver and "not found" for WKD.
In light of that the ticket is this old, I'll leave it at that instead of discussing further improvements beyond this single phrase.
These would have to go in a new ticket.

Thu, Dec 18, 10:18 AM · Restricted Project, LDAP, gpd5x, kleopatra
ebo closed T7809: Kleopatra: Save of audit log viewer is html without an .html extension as Resolved.
Thu, Dec 18, 9:30 AM · gpd5x, kleopatra
tfry added a comment to T7972: RFC: web client to native client mapping.

After more testing, I agree, script integrity is not enforced, after all, although a warning about an unknown hash does show in the javascript console. After a first short dive into the manifest reference, I'm not sure we actually have a way to enforce a hash, though.

Thu, Dec 18, 9:04 AM · gpgol2
tfry committed rOJafbe65f7d57b: Make sure not to delete job from within its result() handler (authored by tfry).
Make sure not to delete job from within its result() handler
Thu, Dec 18, 8:00 AM
tfry committed rOJ9dccfc76f793: Fix "raising" of a running ReencryptJob (authored by tfry).
Fix "raising" of a running ReencryptJob
Thu, Dec 18, 7:28 AM
tfry committed rOJ129f50817e60: Fix ReencryptJob exit condition (authored by tfry).
Fix ReencryptJob exit condition
Thu, Dec 18, 7:28 AM
tfry committed rOJ004aff2559c6: Do not (auto-) delete m_getFolderContentRequest prematurely (authored by tfry).
Do not (auto-) delete m_getFolderContentRequest prematurely
Thu, Dec 18, 7:28 AM
tfry committed rOJ6e915e3e57dd: Make sure to signal compleation of EwsGetFolderContentRequest in all cases (authored by tfry).
Make sure to signal compleation of EwsGetFolderContentRequest in all cases
Thu, Dec 18, 7:28 AM
Justin Zobel <justin.zobel@gmail.com> committed rKLEOPATRA9352bee98135: CI - Flatpak - Add kconfigwidgets from master as it is needed by kpimtextedit (authored by Justin Zobel <justin.zobel@gmail.com>).
CI - Flatpak - Add kconfigwidgets from master as it is needed by kpimtextedit
Thu, Dec 18, 3:11 AM

Yesterday

tfry updated the summary of D620: (Mostly) fix refreshing list of drafts.
Wed, Dec 17, 6:23 PM · gpgol2
tfry committed rOJee76c4c68873: Now that EwsGetFolderRequest actually finishes, make sure it does not get… (authored by tfry).
Now that EwsGetFolderRequest actually finishes, make sure it does not get…
Wed, Dec 17, 6:11 PM
tfry committed rOJf670a2464534: WIP: Draft version of reencrypt fixes. To be cleaned up (authored by tfry).
WIP: Draft version of reencrypt fixes. To be cleaned up
Wed, Dec 17, 5:34 PM
ebo lowered the priority of T7763: Draft: Kleopatra: Add option to decrypt a file at the target location (instead of temp) from Normal to Low.
Wed, Dec 17, 4:50 PM · gpd5x, kleopatra
ebo added a project to T7983: gpg: the validity of a secret key is changed by making a certification with it: keyboxd.
Wed, Dec 17, 4:19 PM · keyboxd, Bug Report, gpd5x, gnupg26
ebo added a project to T7983: gpg: the validity of a secret key is changed by making a certification with it: Bug Report.
Wed, Dec 17, 4:14 PM · keyboxd, Bug Report, gpd5x, gnupg26
CarlSchwan committed rMTPb99109954958: Use std::shared_ptr instead of QSharedPointer (authored by CarlSchwan).
Use std::shared_ptr instead of QSharedPointer
Wed, Dec 17, 3:13 PM
ebo added a comment to T7983: gpg: the validity of a secret key is changed by making a certification with it.

This is really weird behavior. It seems other secret keys in the keyring may also change to "undefined" validity when the certification is done with another key. And something about the key which is certified is important.
But it can also happen that it is enough to just import a secret key without certifying anything with it for it to be shown as "undefined" validity.

Wed, Dec 17, 3:04 PM · keyboxd, Bug Report, gpd5x, gnupg26
ebo created T7983: gpg: the validity of a secret key is changed by making a certification with it.
Wed, Dec 17, 12:28 PM · keyboxd, Bug Report, gpd5x, gnupg26
tfry committed rOJcb1397dcf4ee: If reencrypt dialog has already been closed, start over. (authored by tfry).
If reencrypt dialog has already been closed, start over.
Wed, Dec 17, 10:55 AM
ebo closed T4323: Kleopatra: Add option to not use temp dir for encryption as Resolved.

This task is obsolete as we do no longer use the Temp directory for encryption (I believe since vsd3.3.0/gpg4win 4.4.0). Instead the file is written directly to the target location with the ending ".part". It is renamed there after the encryption is completed.

Wed, Dec 17, 10:55 AM · kleopatra, gpg4win
ikloecker added a comment to T7982: Kleopatra: The kleopatra.exe process doesn't exit if the app is Quit.

If Kleopatra is started in standalone mode then it shuts down properly.

Wed, Dec 17, 10:19 AM
m.eik added a comment to T7972: RFC: web client to native client mapping.
In T7972#209908, @svuorela wrote:

That sounds like a upgrading nightmare, so I really think we should avoid going down that path.

Wed, Dec 17, 10:11 AM · gpgol2
ebo added a comment to T7981: Draft: Kleopatra: Show "No secret key" error for S/MIME protocol.

The aim of this ticket is to map the message in Kleo for the corresponding gpg case to the "Not found" error in gpgsm and thus show the other message instead.

Wed, Dec 17, 10:03 AM · Feature Request, gpd5x, kleopatra
ikloecker added a comment to T7982: Kleopatra: The kleopatra.exe process doesn't exit if the app is Quit.

With a Kleopatra built before the update of Qt/KF/gcc etc. (and which shuts down properly) I see the same three log messages.

Wed, Dec 17, 9:58 AM
ikloecker triaged T7982: Kleopatra: The kleopatra.exe process doesn't exit if the app is Quit as Unbreak Now! priority.
Wed, Dec 17, 9:53 AM
ebo renamed T7981: Draft: Kleopatra: Show "No secret key" error for S/MIME protocol from Kleopatra: Show "No secret key" error for S/MIME protocol to Draft: Kleopatra: Show "No secret key" error for S/MIME protocol.
Wed, Dec 17, 9:52 AM · Feature Request, gpd5x, kleopatra
svuorela added a comment to T7972: RFC: web client to native client mapping.
In T7972#209893, @tfry wrote:
In T7972#209892, @m.eik wrote:

i wonder if it's possible to add hash sums of the javascipt file to the manifest and have them checked when the panel is opened? this would make it impossible for the proxy to serve compromised web clients.

Outlook actually does something similar (as I found out while trying to make some modifications to the .js code). It seems to calculate a hash, when the manifest is registered, and then refuses to load a mismatching file. You have to remove and re-register the plugin in this case.

Wed, Dec 17, 9:50 AM · gpgol2
m.eik added a comment to T7972: RFC: web client to native client mapping.
In T7972#209893, @tfry wrote:

Outlook actually does something similar (as I found out while trying to make some modifications to the .js code). It seems to calculate a hash, when the manifest is registered, and then refuses to load a mismatching file. You have to remove and re-register the plugin in this case.

Wed, Dec 17, 9:37 AM · gpgol2
ebo created T7981: Draft: Kleopatra: Show "No secret key" error for S/MIME protocol.
Wed, Dec 17, 9:00 AM · Feature Request, gpd5x, kleopatra
tfry moved T7689: fix refreshing list of drafts from Backlog to WiP on the gpgol2 board.
Wed, Dec 17, 8:58 AM · gpgol2

Tue, Dec 16

tfry requested review of D620: (Mostly) fix refreshing list of drafts.
Tue, Dec 16, 6:18 PM · gpgol2
tfry committed rOJ1958cb95efcc: Cleanup (authored by tfry).
Cleanup
Tue, Dec 16, 5:59 PM
CarlSchwan committed rMTP421276b54fbb: Use std::shared_ptr instead of QSharedPointer (authored by CarlSchwan).
Use std::shared_ptr instead of QSharedPointer
Tue, Dec 16, 5:50 PM
tfry added a comment to T7972: RFC: web client to native client mapping.
In T7972#209871, @m.eik wrote:

however, what would the web client do with the crypto hash after the exchange? simply show it?

Tue, Dec 16, 5:40 PM · gpgol2
tfry added a comment to T7972: RFC: web client to native client mapping.
In T7972#209892, @m.eik wrote:

i wonder if it's possible to add hash sums of the javascipt file to the manifest and have them checked when the panel is opened? this would make it impossible for the proxy to serve compromised web clients.

Tue, Dec 16, 5:27 PM · gpgol2
m.eik added a comment to T7972: RFC: web client to native client mapping.

i wonder if it's possible to add hash sums of the javascipt file to the manifest and have them checked when the panel is opened? this would make it impossible for the proxy to serve compromised web clients.

Tue, Dec 16, 5:18 PM · gpgol2
ebo triaged T7980: Draft: Kleopatra: Add long KeyID to recipient listing (ADSK related) as Normal priority.
Tue, Dec 16, 4:42 PM · gpd5x, kleopatra
TobiasFella committed rKLEOPATRAa976d7d35785: Add option for remembering sign/encrypt configuration (authored by TobiasFella).
Add option for remembering sign/encrypt configuration
Tue, Dec 16, 4:31 PM
ebo updated the task description for T7831: Kleopatra: Configuration of the initial status of all checkboxes in the sign/encrypt dialog.
Tue, Dec 16, 4:11 PM · gpd5x, kleopatra
l10n daemon script <scripty@kde.org> committed rKLEOPATRAf47b3483d5ee: GIT_SILENT Sync po/docbooks with svn (authored by l10n daemon script <scripty@kde.org>).
GIT_SILENT Sync po/docbooks with svn
Tue, Dec 16, 3:27 PM
svuorela committed rW2afc7aadcf9f: qtbase: Remove obsolete patches (authored by ikloecker).
qtbase: Remove obsolete patches
Tue, Dec 16, 3:24 PM
svuorela committed rW076e7480d928: qtbase: Update upstream(ed) patches (authored by ikloecker).
qtbase: Update upstream(ed) patches
Tue, Dec 16, 3:24 PM
svuorela committed rWcc58465dac40: Apply versioned patches before unversioned patches (authored by ikloecker).
Apply versioned patches before unversioned patches
Tue, Dec 16, 3:24 PM
svuorela committed rWaf2e553ae2c7: Update kde-gears bits (authored by svuorela).
Update kde-gears bits
Tue, Dec 16, 3:24 PM
svuorela committed rW7e9a9c98c0ba: prison: Disable not needed package (authored by ikloecker).
prison: Disable not needed package
Tue, Dec 16, 3:24 PM
svuorela committed rW65bb8abb3cf0: make gen-kde-gears.sh update packages.list (authored by svuorela).
make gen-kde-gears.sh update packages.list
Tue, Dec 16, 3:24 PM
svuorela committed rW92f8a6aaa474: Bump breeze (authored by svuorela).
Bump breeze
Tue, Dec 16, 3:24 PM
svuorela committed rW659e35b6e5da: Remove unused patch (authored by svuorela).
Remove unused patch
Tue, Dec 16, 3:24 PM
svuorela committed rW346f1cc5f2a1: Remove unneeded kcoreaddons patch (authored by svuorela).
Remove unneeded kcoreaddons patch
Tue, Dec 16, 3:24 PM
svuorela committed rW41e00dd92fca: Remove unneeded qtbase patches (authored by svuorela).
Remove unneeded qtbase patches
Tue, Dec 16, 3:24 PM
svuorela committed rWdd98e262de5b: Add merge request for proposed upstream (authored by svuorela).
Add merge request for proposed upstream
Tue, Dec 16, 3:24 PM
svuorela committed rW27fcb061517b: Add merge request id for proposed upstream (authored by svuorela).
Add merge request id for proposed upstream
Tue, Dec 16, 3:24 PM
svuorela committed rW2b058a51ed98: Remove some kconfig-6.11 patches (authored by svuorela).
Remove some kconfig-6.11 patches
Tue, Dec 16, 3:24 PM
svuorela committed rWb959b8caa8e9: Bump some minimum KF versions (authored by svuorela).
Bump some minimum KF versions
Tue, Dec 16, 3:24 PM
svuorela committed rW4844ab6fa1a8: Update patches (authored by svuorela).
Update patches
Tue, Dec 16, 3:24 PM
svuorela committed rWfd50390e0cb4: Update some breeze-icons patches (authored by svuorela).
Update some breeze-icons patches
Tue, Dec 16, 3:24 PM
svuorela committed rW5f2c3cdeda54: Add script to generate qt sources (authored by svuorela).
Add script to generate qt sources
Tue, Dec 16, 3:24 PM
svuorela committed rW6a343a3b75d6: Build karchive without support for encrypted archives (authored by svuorela).
Build karchive without support for encrypted archives
Tue, Dec 16, 3:24 PM
svuorela committed rWa84a2cb6eea5: Print out the patches we are about to apply also for native builds (authored by svuorela).
Print out the patches we are about to apply also for native builds
Tue, Dec 16, 3:24 PM
m.eik added a comment to T7972: RFC: web client to native client mapping.

securing the proxy is probably more difficult than paring NC and WC securely... for instance, the proxy is serving the very javascript file that literally is the WC. it can therefore introduce all kinds of nasty stuff on that side without anyone noticing. on the WC side, i wouldn't worry so much about the encrypted mails, as the NC is the only one that could decrypt them. but couldn't a compromised WC request access to all unencrypted mails as well and send them to the proxy for whatever purpose? or become a crypto trojan?

Tue, Dec 16, 3:19 PM · gpgol2
ebo lowered the priority of T7831: Kleopatra: Configuration of the initial status of all checkboxes in the sign/encrypt dialog from High to Normal.

ok, yes, looks like this was not thought through. How about "Sign/Encrypt settings"?

Tue, Dec 16, 3:08 PM · gpd5x, kleopatra
svuorela added a comment to T7972: RFC: web client to native client mapping.

Other than stealing metadata and preventing communication and maybe sending evil emails on your behalf, I'm unsure what a hostile proxy can do. I'm not sure we should assume it is hostile.

Tue, Dec 16, 2:50 PM · gpgol2
TobiasFella added a comment to T7831: Kleopatra: Configuration of the initial status of all checkboxes in the sign/encrypt dialog.

for clarity: the current "password based encryption only" and "public key encryption only" are not about defaults, but completely disable the respective functionality. should they really be under "Sign/Encrypt defaults"?

Tue, Dec 16, 2:43 PM · gpd5x, kleopatra
TobiasFella added a comment to T6939: File extensions for Mailviewer saving.

I can't reproduce your problems. Can you get me the exact test files you used?

Tue, Dec 16, 2:39 PM · gpd5x, mimetreeparser
m.eik added a comment to T7972: RFC: web client to native client mapping.

that's an interesting idea. at least if we can assume the proxy server isn't already compromised (the critical part is during pairing/key exchange to prevent mitm attacks, right?). however, what would the web client do with the crypto hash after the exchange? simply show it? wouldn't we have to add some signature or (symmetric) encryption to sent messages in order to verify content is exchanged between paired partners? i don't see yet how this would work without some crypto capability in the web client. or am i missing something?

Tue, Dec 16, 1:21 PM · gpgol2
werner committed rXc27dc3e9b90a: Post release updates (authored by werner).
Post release updates
Tue, Dec 16, 1:20 PM
werner committed rX9c7ec74d3f79: Modernize and simplify. (authored by werner).
Modernize and simplify.
Tue, Dec 16, 1:20 PM
werner committed rX6f2920b6c5db: Remove an unused function. (authored by werner).
Remove an unused function.
Tue, Dec 16, 1:20 PM
mlaurent committed rKLEOPATRAc535c50fcbaa: Remove duplicate includes (found by script) (authored by mlaurent).
Remove duplicate includes (found by script)
Tue, Dec 16, 1:18 PM
tfry committed rOJc53783eb8dd3: Separate status syncing (drafts, viewerOpen) from info-fetched (authored by tfry).
Separate status syncing (drafts, viewerOpen) from info-fetched
Tue, Dec 16, 1:02 PM
tfry committed rOJ21321162c5ac: Keep track of newly added drafts (authored by tfry).
Keep track of newly added drafts
Tue, Dec 16, 1:02 PM
ebo renamed T7892: keyboxd: subkey listing issue with ADSKs from keyboxd: a new subkey is sometimes not stored in the fingerprint table. to keyboxd: subkey listing issue with ADSKs.
Tue, Dec 16, 12:28 PM · gnupg26, Bug Report, keyboxd, gnupg
ebo moved T7892: keyboxd: subkey listing issue with ADSKs from QA to Backlog on the gnupg26 board.

This relates to T7917: Check for revocation of the ADSK's original subkey

Tue, Dec 16, 12:25 PM · gnupg26, Bug Report, keyboxd, gnupg
ebo added a comment to T7892: keyboxd: subkey listing issue with ADSKs.

The expected behavior is that only "Ted" (the key from where the ADSK originates) is listed, regardless of ADSKs, on every listing.
Because for regular keys there can only ever be one, "gpg -k" shows always only one key.
Subkeys which are ADSKs shall therefore never be listed with this command.

Tue, Dec 16, 12:23 PM · gnupg26, Bug Report, keyboxd, gnupg
m.eik added a comment to T7774: Add reencrypt option to mail and folder encryption to output a list of encrypted mails.
In T7774#209645, @ebo wrote:

isn't this done?

Tue, Dec 16, 12:16 PM · gpd5x, Feature Request, gpgol2
ebo changed the status of T7892: keyboxd: subkey listing issue with ADSKs from Testing to Open.

Tested with Gpg4win-5.0.0-beta446, identically to the procedure from the description:

Tue, Dec 16, 11:57 AM · gnupg26, Bug Report, keyboxd, gnupg
werner committed rW947f0bd8f273: Update GpgEX to 1.1.0 (authored by werner).
Update GpgEX to 1.1.0
Tue, Dec 16, 11:51 AM
TobiasFella changed the status of T7581: Kleopatra: Create team key from Open to Testing.
Tue, Dec 16, 10:24 AM · Feature Request, gpd5x, kleopatra
timegrid moved T7973: Kleopatra: Add qt patch to make the AutomationId property accessible from Backlog to Done on the gpd5x board.
Tue, Dec 16, 10:21 AM · gpd5x, kleopatra
timegrid closed T7973: Kleopatra: Add qt patch to make the AutomationId property accessible as Resolved.

I can see AutomationIds now, but some are missing, e.g.:

  • toolbar buttons (looks like buttons in general)
  • tab items
  • table header / tree items
Tue, Dec 16, 10:19 AM · gpd5x, kleopatra
ikloecker committed rW69357870d4f4: libgpg-error: Remove obsolete patches (authored by ikloecker).
libgpg-error: Remove obsolete patches
Tue, Dec 16, 9:49 AM
ebo renamed T7753: Kleopatra: Make definition of custom keyboard shortcuts better configurable with keyboard only from Kleopatra: Make definition of custom keyboard shortcuts configurable with keyboard only to Kleopatra: Make definition of custom keyboard shortcuts better configurable with keyboard only .
Tue, Dec 16, 9:26 AM · KF6, gpd5x, a11y, kleopatra
ebo added a project to T7753: Kleopatra: Make definition of custom keyboard shortcuts better configurable with keyboard only : KF6.

ok, then this ticket will be for improvement of the usability.

Tue, Dec 16, 9:25 AM · KF6, gpd5x, a11y, kleopatra