Feed Advanced Search

Advanced Search
Use Results
Edit Query
Hide Query

Fri, Mar 27

timegrid updated the task description for T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP.

Fri, Mar 27, 1:16 PM · needs discussion, Bug Report, gpd5x, gpgol

timegrid updated the task description for T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP.

Fri, Mar 27, 1:14 PM · needs discussion, Bug Report, gpd5x, gpgol

• ebo added a project to T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP: needs discussion.

feedback of @mmontkowski needed

Fri, Mar 27, 1:01 PM · needs discussion, Bug Report, gpd5x, gpgol

• werner added a subtask for T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST: T8193: Draft: Add a workflow to force encryption/signature with invalid or expired certificates.

Fri, Mar 27, 11:14 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• werner claimed T8076: Kleopatra: Unable to completely delete key with secret subkeys and offline-primary key.

Fri, Mar 27, 11:07 AM · gnupg26, gpd5x, kleopatra, Bug Report

• werner triaged T8048: Keyboxd: S/MIME certificate is imported on ldap search as Normal priority.

Fri, Mar 27, 10:33 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

• ebo added a project to T8116: Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messages: needs discussion.

Fri, Mar 27, 10:01 AM · needs discussion, gpd5x, kleopatra

Thu, Mar 26

timegrid added a comment to T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.

Issue 1) should be implemented as already described (on error -> dialog to retry with "always trust" flag)

Thu, Mar 26, 3:33 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

timegrid edited projects for T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST, added: needs discussion; removed Info Needed.

@ebo and me talked about this and T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST. We think, it's best to have a short meeting to discuss further changes.

Thu, Mar 26, 12:57 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

tfry added a comment to T7650: Kleopatra: Limit width of KMessageBoxes.

Patch was merged upstream (KF 6.25): 332678d8a4f635d6938eb3e9ec03d845aa89697a

Thu, Mar 26, 11:11 AM · gpd5x, gpgpass, kleopatra

• gniibe claimed T8048: Keyboxd: S/MIME certificate is imported on ldap search.

I applied the keyboxd part for SETEPHEMERAL command, as it doesn't break anything.

Thu, Mar 26, 3:56 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

Wed, Mar 25

• ebo added a project to T7259: Kleopatra: Kwatchgnupg must not modify conf files: Linux.

Wed, Mar 25, 4:09 PM · Linux, gpd5x, Bug Report, kleopatra

timegrid added a comment to T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP.

With signing only, the retry option is not offered and directly either hangs or shows the "Invalid CRL object" / "Unknown error" error.
Is this intentional?

Wed, Mar 25, 1:55 PM · needs discussion, Bug Report, gpd5x, gpgol

timegrid triaged T8190: GpgOL: Encrypt/Sign issues using S/MIME certs with invalid crlDP as Low priority.

Wed, Mar 25, 1:42 PM · needs discussion, Bug Report, gpd5x, gpgol

• ikloecker placed T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST up for grabs.

Wed, Mar 25, 10:04 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• ebo added a project to T8161: Invalid MimeType Related instead of Mixed: vsd34.

Wed, Mar 25, 9:32 AM · vsd34, gpd5x, gpgol

• gniibe added a comment to T8048: Keyboxd: S/MIME certificate is imported on ldap search.

Here is an attempt to fix the client side:

kbxd-ephemeral-client.patch4 KBDownload

Wed, Mar 25, 5:26 AM · keyboxd, Bug Report, gnupg26, S/MIME, LDAP, gpd5x

Tue, Mar 24

• ikloecker changed the status of T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from Open to Testing.

Tue, Mar 24, 4:47 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker moved T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from Backlog to WiP on the vsd33 board.

Tue, Mar 24, 4:37 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker added a project to T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely: vsd33.

I have added the fix as patch for VSD 3.3 because the commits that introduced this regression were also added as patches for VSD 3.3.

Tue, Mar 24, 4:36 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker added a comment to T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely.

This is a regression that was introduced with T7759: Kleopatra: Notepad encryption with S/MIME fails.

Tue, Mar 24, 4:25 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker moved T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from Backlog to QA for next release on the gpgme board.

Tue, Mar 24, 4:07 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker moved T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely from Backlog to WIP on the vsd34 board.

Fixed. For VSD 3.4 this will also be fixed if gpgme is updated.

Tue, Mar 24, 4:07 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker added a project to T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely: gpgme.

This is a bug in gpgme. gpgsm_assuan_simple_command only reads a single line before waiting for more data although there is a second line (ERR ...) ready to be read. gpgsm never sends more data because it has already sent its full answer. So gpgme waits forever.

Tue, Mar 24, 3:44 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker claimed T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely.

Tue, Mar 24, 2:28 PM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ikloecker changed the status of T7259: Kleopatra: Kwatchgnupg must not modify conf files, a subtask of T7147: Kleopatra: Add debug information / Log handling, from Open to Testing.

Tue, Mar 24, 2:18 PM · gpd5x, kleopatra

• ikloecker changed the status of T7259: Kleopatra: Kwatchgnupg must not modify conf files from Open to Testing.

Note that KWatchGnuPG isn't available on Windows.

Tue, Mar 24, 2:18 PM · Linux, gpd5x, Bug Report, kleopatra

• ikloecker claimed T7259: Kleopatra: Kwatchgnupg must not modify conf files.

Fixed. KWatchGnuPG doesn't modify GnuPG config files anymore. Instead one has to set socket:// as log file for the components one wants to see in KWatchGnuPG.

Tue, Mar 24, 2:17 PM · Linux, gpd5x, Bug Report, kleopatra

timegrid added a comment to T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.

Ticket for the hang on file encryption: T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely

Tue, Mar 24, 11:39 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

timegrid triaged T8187: Kleopatra: File encryption with invalid S/MIME certificate hangs indefinitely as Normal priority.

Tue, Mar 24, 11:38 AM · vsd33, gpgme, Bug Report, gpd5x, vsd34, S/MIME, kleopatra

• ebo added a comment to T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.

According to Werner, that should be:

Tue, Mar 24, 11:07 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

timegrid added a comment to T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.

Maybe those smime certs will do:

Tue, Mar 24, 10:23 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• ebo added a parent task for T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST: T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST.

Tue, Mar 24, 10:07 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• ikloecker added a project to T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST: Info Needed.

It needs to be clarified which kind of errors should be handled and which kind of S/MIME certificates should be allowed to be used for encryption:

Valid certificates where the CRL check (or OCSP check?) fails
Invalid certificates (e.g. because of incomplete chain/missing CA)
Expired certificates

Tue, Mar 24, 9:34 AM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

Mon, Mar 23

• ikloecker moved T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST from Backlog to WIP on the gpd5x board.

Mon, Mar 23, 3:28 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• ikloecker claimed T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.

Mon, Mar 23, 3:28 PM · needs discussion, gpd5x, vsd34, Feature Request, kleopatra

• ebo lowered the priority of T7692: Kleopatra: Add new option for allowed PGPKeyTypes from Normal to Wishlist.

After talking to Werner I lower the prio as apparently there is no direct customer request for this

Mon, Mar 23, 1:56 PM · gpd5x, kleopatra

• ebo added a project to T6986: Refresh/update OpenPGP keys should check WKD: needs discussion.

Mon, Mar 23, 8:41 AM · gnupg26, Bug Report, Feature Request

Sun, Mar 22

• werner raised the priority of T6986: Refresh/update OpenPGP keys should check WKD from Normal to High.

Sun, Mar 22, 6:20 PM · gnupg26, Bug Report, Feature Request

Fri, Mar 20

• gniibe added a comment to T8162: pinentry/gpg/gpgme/Kleo: Cancel semantics: decryption.

Pushed the change of gpgme: rM8b89678aed6d: Fix passphrase cancel handling.

Fri, Mar 20, 5:21 AM · pinentry, Feature Request, gnupg26, gpd5x, kleopatra

• gniibe changed the status of T6425: improve pinentry behavior and texts in smart card context from Open to Testing.

Pushed the last change: rG2239f687bb14: scd:openpgp: UI improvement for use of PIN-entry.

Fri, Mar 20, 5:01 AM · needs discussion, kleopatra, gpd5x, gnupg24 (gnupg-2.4.5), scd, Bug Report