Fixed in master.

Changes so far:

• I have removed the error message that was shown when nothing was found on the OpenPGP key server. We don't show an error for S/MIME or WKD lookup. And I think the error message was just annoying. The user sees whether something was found.
• Kleopatra now shows a simple progress dialog with the text "Searching for matching certificates ..." and with up to 3 steps (for the up to three lookups). I don't think anybody (except testers) are interested in details where something is looked up.

What happens if you call gpgtar with --utf8-strings --cms additionally to the other options? And what happens if you pipe the archive to gpgtar's stdin?

Let's wait a few days before we do a patch release. The missing CAPS lock indicator isn't mission critical.

Thanks! Applied.

Grr. That's why I'm only using #if DEFINE01 in Kleopatra so that undefined defines don't go unnoticed. (Update: And I just noticed that this doesn't actually work because, apparently, any undefined identifier is replace by 0 when evaluating conditional expressions.)

Testing:

• Verify that T5359: Kleopatra: Loop in DeviceInfoWatcher with GnuPG 2.3 on Windows doesn't happen anymore.
• When you remove a smart card then Kleopatra should remove it from the smart card view.
• When you insert a smart card and then access it with gpg or gpg-card then Kleopatra should add the smart card to the smart card view.

We have discussed this yesterday. The idea/plan is to release the core library and the bindings as separate tarballs (created from the same repo) in the future.

Changes:

• The maximum allowed difference of the expiration between subkey and primary key is now +/-1 hour.
• If the user has no choice whether to update the subkeys together with the primary key (because either all subkeys will be skipped because they don't fulfil the conditions mentioned in the first comment or because the subkeys share the expiration of the primary key) then the checkbox is not shown. That was easier to implement and it doesn't confuse the users with a "choice" they are not allowed to change.

Right. I think this task inherited the assignee from its parent task.

Done.

This can be tested with Kleopatra by configuring an invalid keyserver and then updating an OpenPGP certificate.

Instead of "The key hasn't changed." Kleopatra now displays "The update was skipped because no keyserver is configured."

In T6761#183780, @ebo wrote:

But in the case "Refresh OpenPGP keys" (in Kleopatras certificate Details) there is no error message but instead ~"the key is unchanged".

I had a look at the open tasks for pinentry(-qt) and didn't see anything that we should address before doing a release. @werner?

I have backported the commits to gpg4win/23.10 for VSD 3.2.

Keep in mind that the "Certificate Details" can also be shown for search results in the server lookup. In this case not all properties are available, e.g. there is no information about certifications, so that it might not make sense to show the certifications tab. Or we show the tab (so that the users don't wonder why it's missing), but display a message explaining that this information is not available before the certificate is imported.

I have backported the relevant commits to gpg4win/23.10 for VSD 3.2. I left out the commit that adds a tooltip.

As part of this change the possibility to "Learn NetKey v3 Card Certificates" via the system tray icon has been removed.