Page MenuHome GnuPG
Feed Advanced Search

Oct 31 2016

aheinecke added a comment to T2812: TOFU very slow on Windows.

Sry I accidentally posted an incomplete message with T2812 (aheinecke on Oct 31 2016, 05:08 PM / Roundup) (I used itsalltext
and postet a wrong version).

I wanted to write:

On the command line it's looking good. The second keylist is also down to 5
seconds on Windows.

But used from gpgme it still takes about a minute. If you add --with-colons and
slow down system calls by using strace you can also see this on GNU/Linux:

~> time strace gpg2 --no-default-keyring \

--keyring /usr/share/keyrings/debian-keyring.gpg \
--no-auto-check-trustdb --trust-model pgp \
--with-colons -k >/dev/null 2>&1

2.26s user 0.40s system 102% cpu 2.601 total
~> time strace gpg2 --no-default-keyring \

--keyring /usr/share/keyrings/debian-keyring.gpg \
--no-auto-check-trustdb --trust-model tofu \
--with-colons -k >/dev/null 2>&1

21.43s user 24.47s system 108% cpu 42.451 total

On Windows it's:

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--trust-model tofu --list-keys > $null
}
TotalSeconds : 7.0945596

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--with-colons --trust-model tofu --lis
t-keys > $null }
TotalSeconds : 56.0914993

PS C:\Users\aheinecke> Measure-Command -Expression { gpg --no-auto-check-trustdb
--with-colons --trust-model pgp --list
-keys > $null }
TotalSeconds : 1.4855689

I'm also still seeing decryption blocked on Windows while a keylist
--with-colons runs.

I wonder if we should generally check out performance of reading the keyring on
Windows
mabye we could genrally improve it so that it's better cached by Windows.

Oct 31 2016, 5:11 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
aheinecke added a comment to T2817: TOFU validity conflict not set on conflict.

No both have unknown trust.

Oct 31 2016, 3:01 PM · Restricted Project, Bug Report, gnupg, TOFU

Oct 28 2016

aheinecke added a project to T2692: GpgOL, Sign by default enables encrypt by default: Duplicate.
Oct 28 2016, 10:59 AM · Duplicate, Bug Report, gpgol
aheinecke added a comment to T2692: GpgOL, Sign by default enables encrypt by default.

Duplicate of T2341

Oct 28 2016, 10:59 AM · Duplicate, Bug Report, gpgol
aheinecke closed T2692: GpgOL, Sign by default enables encrypt by default as Resolved.
Oct 28 2016, 10:59 AM · Duplicate, Bug Report, gpgol
aheinecke added a comment to T2692: GpgOL, Sign by default enables encrypt by default.

Thanks for your report,

This was already fixed in T2341

Which is currently not yet released. I'm marking this issue here as released
with superseder (duplicate) to keep the tracker clean.

Oct 28 2016, 10:59 AM · Duplicate, Bug Report, gpgol
aheinecke claimed T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.
Oct 28 2016, 10:57 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
aheinecke added a comment to T2366: No DEP/ASLR or other security mitigations for GpgEX/GpgOL.

GpgOL is built with DEP and and ASLR now. Need to enable this for GpgEX and some
other parts of Gpg4win, too. So not yet fully resolved but I keep it in mind.

Oct 28 2016, 10:57 AM · Feature Request, Windows 64, gpgol, gpg4win, Windows, Windows 32
aheinecke added a project to T2335: Rare crashes when encrypting and/or signing mails with GpgOL: Unreleased.
Oct 28 2016, 10:53 AM · Unreleased, Bug Report, gpgol
aheinecke closed T2335: Rare crashes when encrypting and/or signing mails with GpgOL as Resolved.
Oct 28 2016, 10:53 AM · Unreleased, Bug Report, gpgol
aheinecke added a comment to T2335: Rare crashes when encrypting and/or signing mails with GpgOL.

Fixed with: 5579c4b4f

The code was overcomplicated as it was based on a bad assumption about Outlook
which I never questioned myself. We now properly encrypt in the send event so no
need for ticklish threads / callbacks.

Oct 28 2016, 10:53 AM · Unreleased, Bug Report, gpgol

Oct 26 2016

aheinecke added projects to T2820: GPGME: Allow to set the keyring for a context: Feature Request, gpgme.
Oct 26 2016, 6:02 PM · Won't Fix, gpgme, Feature Request
aheinecke added projects to T2819: GPGME: Keylist from file: Feature Request, gpgme.
Oct 26 2016, 5:56 PM · gpgme, Feature Request
aheinecke added a comment to T2819: GPGME: Keylist from file.

D387: 897_keylist-from-data.diff

Oct 26 2016, 5:56 PM · gpgme, Feature Request

Oct 25 2016

aheinecke added a comment to T2360: Add support for TOFU in GpgME.

This is resolved. we have WITH_TOFU_INFO now.

Oct 25 2016, 2:48 PM · gnupg (gpg22), gpgme, Feature Request
aheinecke removed a project from T2360: Add support for TOFU in GpgME: In Progress.
Oct 25 2016, 2:48 PM · gnupg (gpg22), gpgme, Feature Request
aheinecke closed T2360: Add support for TOFU in GpgME as Resolved.
Oct 25 2016, 2:48 PM · gnupg (gpg22), gpgme, Feature Request
aheinecke added a project to T2742: tofu confused when keys are deleted from keyring: TOFU.
Oct 25 2016, 2:46 PM · Duplicate, TOFU, Bug Report, gnupg
aheinecke updated subscribers of T2817: TOFU validity conflict not set on conflict.
Oct 25 2016, 2:35 PM · Restricted Project, Bug Report, gnupg, TOFU
aheinecke added projects to T2817: TOFU validity conflict not set on conflict: TOFU, gnupg, Bug Report.
Oct 25 2016, 2:35 PM · Restricted Project, Bug Report, gnupg, TOFU
aheinecke updated subscribers of T2816: TOFU API in gpgme not documented.
Oct 25 2016, 2:27 PM · gpgme, Bug Report, TOFU
aheinecke added projects to T2816: TOFU API in gpgme not documented: TOFU, Bug Report, gpgme.
Oct 25 2016, 2:27 PM · gpgme, Bug Report, TOFU
aheinecke added a project to T2812: TOFU very slow on Windows: TOFU.
Oct 25 2016, 2:23 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
aheinecke updated subscribers of T2815: TOFU conflict not part of GpgME's sigsum.
Oct 25 2016, 2:23 PM · Stalled, Bug Report, gnupg, TOFU
aheinecke added projects to T2815: TOFU conflict not part of GpgME's sigsum: TOFU, gnupg, Bug Report.
Oct 25 2016, 2:23 PM · Stalled, Bug Report, gnupg, TOFU

Oct 24 2016

aheinecke added a comment to T2812: TOFU very slow on Windows.

Under GNU/Linux you can compare the strace output to see that there is a problem
even if it's quick because it is cached:

~> time strace gpg2 --no-auto-check-trustdb --trust-model pgp -k 2>&1 |wc -l
33383
strace gpg2 --no-auto-check-trustdb --trust-model pgp -k 2>&1 1.04s user 0.45s
system 104% cpu 1.433 total
wc -l 0.02s user 0.16s system 12% cpu 1.433 total

~> time strace gpg2 --no-auto-check-trustdb --trust-model tofu -k 2>&1 |wc -l
558528
strace gpg2 --no-auto-check-trustdb --trust-model tofu -k 2>&1 9.60s user 8.47s
system 106% cpu 17.022 total
wc -l 0.60s user 2.34s system 17% cpu 17.022 total

This is with my normal pubring that contains 790 public keys.

Oct 24 2016, 2:14 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU

Oct 21 2016

aheinecke added projects to T2812: TOFU very slow on Windows: Windows, Windows 32, gnupg, Bug Report.
Oct 21 2016, 12:09 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU
aheinecke updated subscribers of T2812: TOFU very slow on Windows.
Oct 21 2016, 12:09 PM · Stalled, Bug Report, gnupg, Windows 32, Windows, TOFU

Oct 18 2016

aheinecke updated subscribers of T2761: GPA: Add support to query a key from a command line argument..
Oct 18 2016, 3:12 PM · uiserver, gpa, gpgol, Feature Request
aheinecke added projects to T2761: GPA: Add support to query a key from a command line argument.: Feature Request, gpgol, gpa, uiserver.
Oct 18 2016, 3:12 PM · uiserver, gpa, gpgol, Feature Request

Oct 14 2016

aheinecke added a comment to T2753: Libksba requires a new version of byacc and does not check for it.

I was unaware that the released version does not require it.

In that case it's no bug imo. because otherwise we would also need to work with
older autotools versions etc.

Oct 14 2016, 3:01 PM · Bug Report, libksba
aheinecke closed T2753: Libksba requires a new version of byacc and does not check for it as Resolved.
Oct 14 2016, 3:01 PM · Bug Report, libksba

Oct 13 2016

aheinecke added a comment to T2753: Libksba requires a new version of byacc and does not check for it.

btw. reason for this report is a setup of WKS where you require most recent
modern gnupg on long time distro running servers.

Oct 13 2016, 7:38 PM · Bug Report, libksba
aheinecke updated subscribers of T2753: Libksba requires a new version of byacc and does not check for it.
Oct 13 2016, 7:31 PM · Bug Report, libksba
aheinecke added projects to T2753: Libksba requires a new version of byacc and does not check for it: libksba, Bug Report.
Oct 13 2016, 7:31 PM · Bug Report, libksba

Sep 15 2016

aheinecke added a comment to T2687: 98 chars limits on archived filenames for windows (gpgtar).

What I meant by "KArchive" is that we already have all that nice archiving code
in Kleopatra already: https://api.kde.org/frameworks/karchive/html/index.html
To work with standard formats like tar / zip / 7zip etc.

This would get us the included platform abstraction through Qt for stuff like
filenames etc. and we wouldn't have to maintain our own implementations for
these archive formats.

Sep 15 2016, 11:55 AM · gpgtar, Bug Report, gpg4win
aheinecke added a project to T2687: 98 chars limits on archived filenames for windows (gpgtar): Bug Report.
Sep 15 2016, 9:49 AM · gpgtar, Bug Report, gpg4win
aheinecke added a comment to T2687: 98 chars limits on archived filenames for windows (gpgtar).

https://www.gnu.org/software/tar/manual/html_section/tar_68.html gives a good
overview imo.

So yes raising the file name length limit could be problematic with
compatibility and we might have to change more in our implementation to create
formats of a different spec.

From the discussion in the forum it looks like the error was silently discarded
when used in Kleopatra. We need error handling in that case. So I think this is
an Urgent bug as silent discard of archive contents can lead to data loss. So
for me this part is an urgent bug. Actually handling longer filenames is another
issue.

As a sidenote:
Kleopatra already links KArchive for svgz handling so it already contains a good
API for ZIP file creation. I'd like to add that to Kleopatra and make it default
so that the default is not our own error prone tar implementation. (Other tar
implementations also are problematic for windows). In that case we could also
drop the extraction as zip file support is native in the windows file explorer.

And as suggested in the forum entry we should probably also document how to add
7zip support to kleopatra or check for this at runtime and add some 7zip archive
options if it is available.
This should be doable by editing libkleopatrarc but I'd have to check the syntax
myself in the code as its not documented afaik.

Sep 15 2016, 9:49 AM · gpgtar, Bug Report, gpg4win
aheinecke removed a project from T2687: 98 chars limits on archived filenames for windows (gpgtar): Feature Request.
Sep 15 2016, 9:49 AM · gpgtar, Bug Report, gpg4win
aheinecke raised the priority of T2687: 98 chars limits on archived filenames for windows (gpgtar) from Wishlist to High.
Sep 15 2016, 9:49 AM · gpgtar, Bug Report, gpg4win

Sep 5 2016

aheinecke added a comment to T2405: Possible timing problem with TOFU.

Thanks for clarifying this.

I've update the comment in the test accordingly. This issue is resolved for me.

Sep 5 2016, 4:56 PM · gnupg, gnupg (gpg22), Bug Report
aheinecke removed a project from T2405: Possible timing problem with TOFU: Restricted Project.
Sep 5 2016, 4:56 PM · gnupg, gnupg (gpg22), Bug Report
aheinecke closed T2405: Possible timing problem with TOFU as Resolved.
Sep 5 2016, 4:56 PM · gnupg, gnupg (gpg22), Bug Report
aheinecke placed T2405: Possible timing problem with TOFU up for grabs.
Sep 5 2016, 4:56 PM · gnupg, gnupg (gpg22), Bug Report
aheinecke changed Version from 2.1.11 to 2.1.15 on T2324: gpg --batch --export-secret-key fails (requires user interaction) if key has no passphrase.
Sep 5 2016, 2:40 PM · gnupg, OpenPGP, Bug Report
aheinecke added a comment to T2324: gpg --batch --export-secret-key fails (requires user interaction) if key has no passphrase.

I'm using latest master and I still can't export a secret key without passphrase.

And Justus also has not closed this bug or wrote that he commited something
more. So I think the 2.1.13 announcement was mistaken and this problem still
exists. (Or am I missing some option / need a different pinentry mode?)

Sep 5 2016, 2:40 PM · gnupg, OpenPGP, Bug Report
aheinecke removed a project from T2448: dirmngr fails to load crl when imported manually: Restricted Project.
Sep 5 2016, 2:14 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2448: dirmngr fails to load crl when imported manually.

Jochen: I'd rather you (manually) patch the dirmngr tarball included in
gpg4win-2 and create a testinstaller and try that one out.

I found the Problem in this issue and tested that the attached patch solves the
problem, yes It would have worked on GNU/Linux as the "b" has no effect there.
Finding out since when the problem existed appears moot to me and you would have
to check in dirmngr's SVN and likely always existed.

But maybe there are additional problems (as this is imo a very exotic feature)
so it would probably make sense to test it again on Windows before preparing the
next stable Gpg4win release.

Sep 5 2016, 2:14 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2405: Possible timing problem with TOFU.

Thanks, this works now as expected.

While enabling the checks for signcount in gpgme/lang/qt/tests/t-tofuinfo.cpp
I've noticed though that if I sign and verify the same plaintext twice
immediately after another the signcount is not incremented correctly.

In line 266 of that test. The call to signAndVerify leads to an Assert if you
remove the " World" part of the "Hello World" message.

Alternatively adding a QTest::qWait(1000); before that line also results in a
success.

You can trigger this also by modifing the strings in line 233ff to contain the
same message.

Not really important imo as this is a constructed problem. The main issue here
is resolved for me.

Sep 5 2016, 1:06 PM · gnupg, gnupg (gpg22), Bug Report
aheinecke lowered the priority of T2405: Possible timing problem with TOFU from Normal to Low.
Sep 5 2016, 1:06 PM · gnupg, gnupg (gpg22), Bug Report

Aug 25 2016

aheinecke lowered the priority of T2448: dirmngr fails to load crl when imported manually from High to Normal.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2448: dirmngr fails to load crl when imported manually.

D381: 870_0001-dirmngr-Open-CRL-s-in-binary-mode.patch

Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added projects to T2448: dirmngr fails to load crl when imported manually: Windows, Restricted Project, Windows 32.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke updated subscribers of T2448: dirmngr fails to load crl when imported manually.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke assigned T2448: dirmngr fails to load crl when imported manually to werner.
Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2448: dirmngr fails to load crl when imported manually.

Woops didn't want to submit the last message as I had already looked into it myself.

This was reproducible using libksba's t-crl-parse with our root ca's clr but not
with an example file lying next to it.

Turned out that t-crl-parse opened the file in text mode. Conversion errors then
caused an invalid (too large read). When switching to binary mode it worked as
expected.

Dirmngr used the same. I've tested that crl parsing worked with the attached patch.

Now I get:
dirmngr[780]: error fetching certificate by subject: Configuration error
dirmngr[780]: crl_parse_insert failed: Missing certificate

But I think that is a different error as I get the same one when trying to
import the CRL on an empty homedir and parsing works now.

Aug 25 2016, 6:24 PM · gnupg, Windows 32, Windows, Bug Report
aheinecke added a comment to T2448: dirmngr fails to load crl when imported manually.

2.1.11 is not in the latest beta. Should be 2.1.13.

For testing / reporting it is also better to download the latest version from
gnupg.org
https://gnupg.org/download/index.html

Aug 25 2016, 6:19 PM · gnupg, Windows 32, Windows, Bug Report

Aug 15 2016

aheinecke added a comment to T2341: GPGOL: "Sign by default" will also "Encrypt by default".

Fixed for the next version with 037a5a7ed

Aug 15 2016, 11:45 AM · Unreleased, gpgol, Bug Report
aheinecke closed T2341: GPGOL: "Sign by default" will also "Encrypt by default" as Resolved.
Aug 15 2016, 11:45 AM · Unreleased, gpgol, Bug Report
aheinecke added a project to T2341: GPGOL: "Sign by default" will also "Encrypt by default": Unreleased.
Aug 15 2016, 11:45 AM · Unreleased, gpgol, Bug Report

Aug 12 2016

aheinecke added projects to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried: gpg4win, Windows 32.
Aug 12 2016, 6:24 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

This could be a nasty one. The crash occurs after the data structure of the mail
was unloaded in outlook and GpgOL already completely detached it's event
handlers from the object and frees up the memory. GpgOL is not executing any
code when the crash occurs. That outlook blames GpgOL is likely because it jumps
into an invalid memory region that was allocated for GpgOL but is no longer
valid. This shouldn't happen though as we have already successfully unregistered
all our callbacks.

So I currently think that somehow when using send from explorer outlook through
some side effect / bug does a callback into GpgOL's event handling code which
was already destroyed. I'll try to confirm that theory on monday by keeping the
event handlers around after the unload event occurred.

Also does not appear that we are the first ones with that problem:
https://forum.kaspersky.com/index.php?showtopic=225375

:-/

Aug 12 2016, 6:24 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke closed T2368: Integer overflow in gpgme_progress_cb arguments as Resolved.
Aug 12 2016, 6:08 PM · gpgme, Bug Report
aheinecke added a project to T2368: Integer overflow in gpgme_progress_cb arguments: Unreleased.
Aug 12 2016, 6:08 PM · gpgme, Bug Report
aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

Added support for the newly added size-hint to gpgmepp and kleopatra. Works
nicely, although progress could update a bit more often for my taste but its soo
much better then the old "no progress at all" that I don't want to complain ;-)

Thanks!

Aug 12 2016, 6:08 PM · gpgme, Bug Report
aheinecke added a comment to T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.

Thanks for the report. I am able to reproduce the problem.

Looking into it.

Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke lowered the priority of T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried from Unbreak Now! to High.
Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows
aheinecke claimed T2416: Outlook 2016 64-bit: Crash if "Send to" > "Mail Recipient" is tried.
Aug 12 2016, 12:41 PM · Restricted Project, Windows 32, gpg4win, Bug Report, Windows 64, gpgol, Windows

Aug 10 2016

aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

--set-filesize is used for an entirely different purpose - That it is also used
in progress is only related tothat other purpose (pre-generated OpenPGP packets
as input)

But is there any problem using it this way? I didn't see one.

If you know the file size in advance, you can pass the entire file to gpgme and
there is no need to use a pipeline.

GpgME++ provides an interface for a DataProvider class. While this is of course
inherited from Marc I find this kinda nice to use in code. If you implement the
DataProvider interface you can use that as input for GpgME.
QGpgME then provides a DataProvider for QIODevice based classes. E.g. A QFile, a
QBuffer etc. that way you can easily pass a QFile or QByteArray or a QString to
GpgME and get it encrypted. Very convenient API.

If you want a pipeline/stremaing, gpg won't
assume anything about the input file size. telling it that size is an ugly hack.

But e.g. I have a 1GB Mail I wish to decrypt, that is stored in some internal
format I know the size, but you are sugessting that I should cut out the
encrypted / signed part, save it to files and then pass the files to gpgme?

Mean while I added a Units arg to the PROGRESS status line, so that we can do
further tweaking in gpgme and won't need to mess with gnupg. Maybe we can
eventually find a solution which affects only gpgme.

Yes I've seen that and I think it might be useful but it does not solve the
problem that gnupg is not statusing the total for callback / piped operations.

If you really want a percent indication, why not using a file watcher in Kleo
and stat(2) the file.

Yes, that is what I meant by:

msg8719:

I could work around the problem in
Kleopatra by just assuming for files > 1MiB the progress is always scaled and
live with a slight jump after MiB.
And then calculate progress based on the Input size (as total) Kleopatra knows.

But that would be a workaround for "GpgME does not let me do what I want to do"
Maybe we need an "gpgme_add_engine_cmd_line_args" hack interface in GpgME to
give callers the flexibility to do add arbitrary arguments to gpgme engine
calls. This could probably reduce the "GpgME is a hindrance" perception.

Maybe we should phone about this.

Aug 10 2016, 6:37 PM · gpgme, Bug Report

Aug 9 2016

aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

All not good.

To be honest I'm a bit pigheaded here. I could work around the problem in
Kleopatra by just assuming for files > 1MiB the progress is always scaled and
live with a slight jump after MiB.
And then calculate progress based on the Input size (as total) Kleopatra knows.

The Problem for me is that QGpgME will never emit current + total progress
because it always provides Data through callbacks. And GpgME++ also is pretty
much designed for this in the Dataprovider interface. I dislike maintaining half
working / weird behaving code so I looked into possible ways to fix that.

What I did then was to take a look at gnupg's progress code and saw that total
is modified by --set-filesize. So I thought "awesome there is a mechanism to
provide gnupg with the total filesize even if callbacks are used" and did that.
I still think that this is great, and a good solution (no changes to gnupg
required etc.).

You try to do something which does not make sense. would have exact numbers
they do not tell you anything valid. It might be that
large parts of the file are compressed into just a few bytes and thus your
progressbar makes a huge leap at one time and later it gets slow again despite
that these are only a few 100 MiB (compared to the 10 GiB or zeroes).

I'm not trying to have a 100% reliable progress or a second exact estimate of
when a job is finished. But I want to show some general information "Ok the task
is 90% done, just stay tuned a bit longer"

This is User Interface basics. If you have a long running task (and crypo tasks
can easily run into minutes / hours) show _some_ progress indication. Due to the
pecularities / bugs of the API Kleopatra just shows "I'm working". This is very
bad User Interface and I would like to fix that. And Ideally my fix for this
would be where the Problem happens and not a workaround for the problem in the
user interface.

Aug 9 2016, 6:04 PM · gpgme, Bug Report
aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

Always returning KiB would work for me as a compromise I don't know otherwise
that the switch from Bytes to KiB happened because I have no total.

Makes the code for QGpgME / GpgMEpp users more complicated though as they need a
mapping of progress to input file size. With the --set-filesize patch It would
be nicer as I could just handle this generically in GpgMEpp if an input is
seekable It would provide GnuPG with the size information and afterwards we have
progress where current and total could be used for relative progress calculation:

if (dp->isSupported(DataProvider::Seek)) {

off_t size = seek(0, SEEK_END);
seek(0, SEEK_SET);
gpgme_data_set_file_size(d->data, static_cast<unsigned long long>(size));

}

Aug 9 2016, 12:02 PM · gpgme, Bug Report

Aug 5 2016

aheinecke added a project to T2420: TOFU Info for a Key: Duplicate.
Aug 5 2016, 10:49 AM · Duplicate, gpgme, gnupg (gpg21), Feature Request
aheinecke added a comment to T2420: TOFU Info for a Key.

This was already mentioned in T2360 so let's not clutter the tracker.
Resolved as duplicate.

Aug 5 2016, 10:49 AM · Duplicate, gpgme, gnupg (gpg21), Feature Request
aheinecke added a comment to T2420: TOFU Info for a Key.

Duplicate of T2360

Aug 5 2016, 10:49 AM · Duplicate, gpgme, gnupg (gpg21), Feature Request
aheinecke closed T2420: TOFU Info for a Key as Resolved.
Aug 5 2016, 10:49 AM · Duplicate, gpgme, gnupg (gpg21), Feature Request

Aug 3 2016

aheinecke added a comment to T2359: Query which key will be used for a given mailbox.

To piggyback something on this issue.

To quote T2359 (aheinecke on May 17 2016, 11:59 AM / Roundup):

e.g. an API to check which key: gpg -er aheinecke@intevation.de

I did not have groups on the radar for this. If a recipient is a group then
gnupg would use multiple keys in this command.

I think locate-keys would be a great mechanism to support this easily in MUAs.
When we change it that for a given mailbox only the single most valid Key is
returned we could also have the semantic that if then multiple Keys are returned
we have a group.

Aug 3 2016, 12:29 PM · gnupg (gpg22), gnupg, Feature Request

Aug 2 2016

aheinecke added projects to T2435: gpgsm combined sign and encrypt: Feature Request, kleopatra, gnupg.
Aug 2 2016, 3:57 PM · gnupg, kleopatra, Feature Request

Aug 1 2016

aheinecke closed T2317: Gpg4win-3.0-beta create checksum files in Kleopatra broken as Resolved.
Aug 1 2016, 12:09 PM · Bug Report, kleopatra, gpg4win
aheinecke added a comment to T2317: Gpg4win-3.0-beta create checksum files in Kleopatra broken.

This is fixed now. Was a problem with an incorrect port from KTemporaryFile to
QTemporaryFile for qt5

Aug 1 2016, 12:09 PM · Bug Report, kleopatra, gpg4win

Jul 22 2016

aheinecke added a comment to T2314: Improve detection of gpgme_data_identify.

While the detection works now to distinguish between PGP and S/MIME data it
might be more robust if it would do some more sanity checking on the packet.

E.g. PNG Graphics are detected as PGP Signatures because they start with 0x89

But this is not super neccessary as for the use case of file extension support
valid data will be detected correctly.

Jul 22 2016, 2:28 PM · gpgme, Feature Request, gpg4win

Jul 20 2016

aheinecke closed T2306: Rare smartcard errors with gnupg master as Resolved.
Jul 20 2016, 3:06 PM · Bug Report, gnupg, scd
aheinecke added a comment to T2306: Rare smartcard errors with gnupg master.

My problems are resolved. I have not encountered a problem since your last
fixes. Although I sometimes have to reenter pin so I think the errors still
occur occassionally but gnupg recovers.

Thanks.

Jul 20 2016, 3:06 PM · Bug Report, gnupg, scd
aheinecke removed a project from T2306: Rare smartcard errors with gnupg master: Restricted Project.
Jul 20 2016, 3:06 PM · Bug Report, gnupg, scd
aheinecke added projects to T2420: TOFU Info for a Key: Feature Request, gnupg (gpg21), gpgme.
Jul 20 2016, 2:31 PM · Duplicate, gpgme, gnupg (gpg21), Feature Request
aheinecke set External Link to https://phabricator.kde.org/T2520 on T2420: TOFU Info for a Key.
Jul 20 2016, 2:31 PM · Duplicate, gpgme, gnupg (gpg21), Feature Request

Jul 16 2016

aheinecke removed a project from T2368: Integer overflow in gpgme_progress_cb arguments: Restricted Project.
Jul 16 2016, 9:05 PM · gpgme, Bug Report
aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

D369: 860_0001-Core-Add-file_size-support-to-gpgme_data.patch

Jul 16 2016, 9:05 PM · gpgme, Bug Report
aheinecke added a comment to T2368: Integer overflow in gpgme_progress_cb arguments.

Since Kleopatra is using data callbacks the total is always 0 so I can't use the
way to calculate percent.

Previously kleopatra used the filesize as total value. This does not work if
total is always 0 and the progress switches based on the current file size. E.g
for a large file the prgress decreases after 1024*1024 bytes have been processed.

I could probably add some weird "if gnupg > 2.1.14 and the file size is >
1024*1024 and the progress is < 1024*1024 expect it to be bytes and otherwise
expect it to be kilobytes." But this is not nice to use API.

My attached patch solves this by giving data callback users the opportunity to
provide GnuPG with the information how much input size it can expect. This makes
total / current workable from the start and everything is fine.

But as we jabbered about you do not like this patch :'-(

Problem not resolved for me as I think the weird handling currently imposed by
GnuPG is definitely not "Easy"

Jul 16 2016, 9:05 PM · gpgme, Bug Report

Jul 5 2016

aheinecke added a comment to T2407: The assuan interface in gpgme is not documented.

interested in this, too. Especially since you always tell me assuan is so easy
to use because it's all in gpgme :-)

Jul 5 2016, 9:35 PM · Documentation, gpgme, Bug Report
aheinecke closed T2340: GPGOL: Cannot launch Kleopatra as Resolved.
Jul 5 2016, 3:47 PM · Bug Report, gpgol
aheinecke added a comment to T2340: GPGOL: Cannot launch Kleopatra.

Hi,

There was a problem in Gpg4win-2.3.1 that GpgOL and GpgEX might be unable to
start Kleopatra or GPA. This problem has been fixed with 2.3.2

Thanks for your report. Please check if 2.3.2 does not solve your problem and
let us know if it still persists.

Regards,
Andre

Jul 5 2016, 3:47 PM · Bug Report, gpgol
aheinecke claimed T2340: GPGOL: Cannot launch Kleopatra.
Jul 5 2016, 3:47 PM · Bug Report, gpgol
aheinecke closed T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office as Resolved.
Jul 5 2016, 2:47 PM · Windows 64, Windows, Feature Request, gpgol
aheinecke added a comment to T2295: Provide 64-bit gpgol.dll for new 64-bit versions of Office.

Gpg4win 2.3.1 and 2.3.2 included 64 bit versions of gpgol.

Jul 5 2016, 2:47 PM · Windows 64, Windows, Feature Request, gpgol
aheinecke claimed T2384: GPGOL 1.4.0 not working with MS Outlook 64 bits.
Jul 5 2016, 2:44 PM · Bug Report, gpgol
aheinecke added a comment to T2384: GPGOL 1.4.0 not working with MS Outlook 64 bits.

Hi,
Thanks for your report. Could you please retest with 2.3.2 we've fixed an issue
where GpgOL had problems communicating with Kleopatra that could cause your
behavior although I'm not 100% sure as I can't reproduce your problem.

Thanks,
Andre

Jul 5 2016, 2:44 PM · Bug Report, gpgol
aheinecke added a comment to T2341: GPGOL: "Sign by default" will also "Encrypt by default".

Thanks for your report. Sorry I missed this for 2.3.2.
I'll look into it for the next version.

Jul 5 2016, 2:43 PM · Unreleased, gpgol, Bug Report
aheinecke claimed T2341: GPGOL: "Sign by default" will also "Encrypt by default".
Jul 5 2016, 2:43 PM · Unreleased, gpgol, Bug Report
aheinecke closed T2330: GpgOL tries to decrypt sent E-Mails which are encrypted by Outlook as Resolved.
Jul 5 2016, 2:42 PM · Duplicate, gpgol, Bug Report
aheinecke added a project to T2330: GpgOL tries to decrypt sent E-Mails which are encrypted by Outlook: Duplicate.
Jul 5 2016, 2:42 PM · Duplicate, gpgol, Bug Report