Feed Advanced Search

Today

aheinecke created T4323: Kleopatra: Add option to not use temp dir for encryption.
Wed, Jan 16, 9:01 AM · kleopatra, gpg4win

Yesterday

aheinecke committed rMce327f994a28: tests: Add diagnostic example to run-import.c (authored by aheinecke).
tests: Add diagnostic example to run-import.c
Tue, Jan 15, 8:54 AM

Mon, Jan 14

aheinecke committed rW56bbc45e435a: web: Add note about security issue reporting (authored by aheinecke).
web: Add note about security issue reporting
Mon, Jan 14, 4:14 PM
aheinecke added a comment to T4322: GpgOL: Embedded image not visible in forwarded email.

I can reproduce it. For me the image is properly attached, I can access the file, but the embedded image does not work. This will be because the content_id is mixed up. I don't know why this happens yet.

Mon, Jan 14, 2:26 PM · gpg4win, gpgol
aheinecke added a comment to T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file.

I've opened T4322 for the image embedding issue.

Mon, Jan 14, 2:25 PM · gpgol, Bug Report, gpg4win
aheinecke updated subscribers of T4322: GpgOL: Embedded image not visible in forwarded email.
Mon, Jan 14, 2:22 PM · gpg4win, gpgol
aheinecke created T4322: GpgOL: Embedded image not visible in forwarded email.
Mon, Jan 14, 2:22 PM · gpg4win, gpgol
aheinecke added a comment to T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5].
In T4318#121604, @che wrote:

Ok, so saving a decrypted message is not possible at the moment, right?

Mon, Jan 14, 1:08 PM · gpg4win, gpgol
aheinecke committed rE51ea153871b7: Fix symbol name typo in gpg-error.def.in (authored by aheinecke).
Fix symbol name typo in gpg-error.def.in
Mon, Jan 14, 10:44 AM
aheinecke triaged T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) as Normal priority.

I give this normal priority to move it out of the "Needs Triage" queue.

Mon, Jan 14, 10:31 AM
aheinecke added a parent task for T4264: Gpg4win 3.1.6: T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file.
Mon, Jan 14, 10:30 AM · Release Info, gpg4win
aheinecke added a subtask for T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file: T4264: Gpg4win 3.1.6.
Mon, Jan 14, 10:30 AM · gpgol, Bug Report, gpg4win
aheinecke committed rOcf221afd9d59: Fix forwarding of sent mails (authored by aheinecke).
Fix forwarding of sent mails
Mon, Jan 14, 10:24 AM
aheinecke committed rOa31338698ae7: Fix minor typo (authored by aheinecke).
Fix minor typo
Mon, Jan 14, 10:24 AM
aheinecke added a commit to T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file: rOcf221afd9d59: Fix forwarding of sent mails.
Mon, Jan 14, 10:24 AM · gpgol, Bug Report, gpg4win
aheinecke changed the status of T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file from Open to Testing.

I think I understand what is going on here:

Mon, Jan 14, 10:24 AM · gpgol, Bug Report, gpg4win
aheinecke added a comment to T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file.

@MThib What is the filename of the .dat with the original message, is it gpgolXXX.dat or winmail.dat and can you confirm that even without an attachment any modifications to the forwared mail are ignored and the mail is sent out as if it was send again?

Mon, Jan 14, 9:09 AM · gpgol, Bug Report, gpg4win
aheinecke added a comment to T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file.

There appears to be something very fishy when forwarding from the sent mails folder. Even without attachments if I forward and modify the content the original message is sent out and not the modified one.

Mon, Jan 14, 8:56 AM · gpgol, Bug Report, gpg4win
aheinecke is attending E432: Weekly Standup.
Mon, Jan 14, 8:03 AM
aheinecke added a comment to E432: Weekly Standup.

Last week:

  • First new work week so a bit unorganized.
  • Looked into a GpgOL issue regarding clearsigned mails from Microsoft.
  • Improved Gpg4win mailvelope integration installation.
  • Some more work researching ISHellFolder interaction and adding more COM code to GpgA (just a a project name) in the gpg4win-tools repo.
Mon, Jan 14, 8:01 AM
aheinecke claimed T4318: GpgOl: Unable to save an encrypted message to disk [gpg4win 3.1.5].

It is a bit related to T4241 indeed. As we have not yet seen a way to determine if the user actually triggered "save as" or if outlook just wants to save the modifications we can't decide when we should pass the save event and when we should block it.

Mon, Jan 14, 7:56 AM · gpg4win, gpgol
aheinecke added a comment to T4320: tar archive encryption failed with japanese characters.

Thank you for the report. Sadly this is a long standing bug that is still not fixed. We hope to address this in a future version.

Mon, Jan 14, 7:52 AM · gpg4win, kleopatra, Bug Report
aheinecke merged task T4320: tar archive encryption failed with japanese characters into T4083: gpgtar, Kleopatra: Unicode filenames that are not native 8 bit on Windows don't work.
Mon, Jan 14, 7:51 AM · gpg4win, kleopatra, Bug Report
aheinecke merged T4320: tar archive encryption failed with japanese characters into T4083: gpgtar, Kleopatra: Unicode filenames that are not native 8 bit on Windows don't work.
Mon, Jan 14, 7:51 AM · Bug Report, gpg4win, kleopatra, gpgtar
aheinecke claimed T4321: [GpgOL] Forwarded Email send the previous version of the email and attached a dat file.

Thank you for your detailed report. I agree that this can have serious consequences as it might send out unintended information. I'll look into it with high priority.

Mon, Jan 14, 7:50 AM · gpgol, Bug Report, gpg4win

Thu, Jan 10

aheinecke updated subscribers of T4317: libgcrypt: cipher/camellia-aarch64.S is not PIC.
Thu, Jan 10, 9:16 AM · asm, libgcrypt, Bug Report
aheinecke awarded T4298: 'make check' with uninstalled library, which is building now (even if rpath doesn't work well) a Like token.
Thu, Jan 10, 7:35 AM

Wed, Jan 9

aheinecke committed rGTOc671d50121b7: Extend gpga with persistfolder and CreateView (authored by aheinecke).
Extend gpga with persistfolder and CreateView
Wed, Jan 9, 7:02 PM
aheinecke lowered the priority of T4299: Problem to verify PGP key used by Microsoft from High to Normal.

@jmrexach Thanks for the reminder, I confused those with other mails I've gotten regarding this issue.

Wed, Jan 9, 12:54 PM · gpgol, gpg4win
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

@JW-D I would very much like to but I still only get an error on that page. Can you give me another, working, subscribe link? Maybe I found a wrong one.

Wed, Jan 9, 11:48 AM · gpgol, gpg4win
aheinecke closed T4297: The browser integration component is not installed by default as Resolved.

3.1.6 will have two ways to install the browser integration non-interactively

Wed, Jan 9, 11:09 AM · gpgme, UI, gpg4win
aheinecke committed rWc894300c154e: Add ini and cmd line switch for browser (authored by aheinecke).
Add ini and cmd line switch for browser
Wed, Jan 9, 11:09 AM
aheinecke added a commit to T4297: The browser integration component is not installed by default: rWc894300c154e: Add ini and cmd line switch for browser.
Wed, Jan 9, 11:09 AM · gpgme, UI, gpg4win
aheinecke added a subtask for T4297: The browser integration component is not installed by default: T4264: Gpg4win 3.1.6.
Wed, Jan 9, 11:07 AM · gpgme, UI, gpg4win
aheinecke added a parent task for T4264: Gpg4win 3.1.6: T4297: The browser integration component is not installed by default.
Wed, Jan 9, 11:07 AM · Release Info, gpg4win
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

Ok. So the tooltip was another issue. Which I've fixed now.

Wed, Jan 9, 10:26 AM · gpgol, gpg4win
aheinecke committed rOdfd9fa3c85cd: Fix tooltip for bad signature (authored by aheinecke).
Fix tooltip for bad signature
Wed, Jan 9, 10:14 AM
aheinecke added a commit to T4299: Problem to verify PGP key used by Microsoft: rOdfd9fa3c85cd: Fix tooltip for bad signature.
Wed, Jan 9, 10:14 AM · gpgol, gpg4win
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

The tooltip:

Wed, Jan 9, 9:36 AM · gpgol, gpg4win
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

I'll work on this right now. Please wait with contacting MSRC before I have a chance to find out what the problem is.

Wed, Jan 9, 9:14 AM · gpgol, gpg4win
aheinecke closed T3815: tests fail in 2021 as Resolved.

I sent a message to gnupg-devel about this issue as it will probably hit more people now that the keys used are expired :-(

Wed, Jan 9, 8:52 AM · qt, Python, gpgme, Bug Report
aheinecke committed rM66376f3e206a: qt: Use tofu conflict test keys without expiry (authored by aheinecke).
qt: Use tofu conflict test keys without expiry
Wed, Jan 9, 8:46 AM
aheinecke added a commit to T3815: tests fail in 2021: rM66376f3e206a: qt: Use tofu conflict test keys without expiry.
Wed, Jan 9, 8:46 AM · qt, Python, gpgme, Bug Report
aheinecke added a comment to T3815: tests fail in 2021.

Oh,.. it is even worse. The conflict keys expired 2019-01-06 so they are actually expired right now.

Wed, Jan 9, 8:18 AM · qt, Python, gpgme, Bug Report
aheinecke claimed T3815: tests fail in 2021.
Wed, Jan 9, 8:12 AM · qt, Python, gpgme, Bug Report
aheinecke raised the priority of T4278: Signed mails not visible in Exchange web interface (owa) from Normal to High.

Should be looked at before the next release.

Wed, Jan 9, 6:59 AM · gpgol, Bug Report, gpg4win
aheinecke merged task T4300: Signed (sign-only) messages are blank when read on Android email clients / Outlook online into T4278: Signed mails not visible in Exchange web interface (owa).
Wed, Jan 9, 6:58 AM · gpgol, Bug Report, gpg4win
aheinecke merged T4300: Signed (sign-only) messages are blank when read on Android email clients / Outlook online into T4278: Signed mails not visible in Exchange web interface (owa).
Wed, Jan 9, 6:58 AM · gpgol, Bug Report, gpg4win
aheinecke added a comment to T4300: Signed (sign-only) messages are blank when read on Android email clients / Outlook online.

Hi,
thanks for the report. We were unaware of the Andorid problem. The Web App issue was already reported similary.

Wed, Jan 9, 6:58 AM · gpgol, Bug Report, gpg4win
aheinecke claimed T4295: PGP/MIME emails not decrypted.

18:25:22/11956/ERROR/mapihelp.cpp:mapi_change_message_class: can't save old message class: hr=0x80070005
18:25:22/11956/mapihelp.cpp:mapi_create_attach_table: message has 2 attachments
18:25:22/11956/mapihelp.cpp:mapi_create_attach_table: attachment info:
18:25:22/11956/ 3435173 mt=0 fname=gpgol_string_7' ct=application/pgp-encrypted' ct_parms=`(null)'
18:25:22/11956/ 3435205 mt=0 fname=gpgol_string_8' ct=application/octet-stream' ct_parms=`(null)'
18:25:22/11956/mapihelp.cpp:mapi_mark_moss_attach: Marking 3435173 as MOSS attachment
18:25:22/11956/ERROR/mapihelp.cpp:mapi_mark_moss_attach: can't set GpgOL Attach Type property: hr=0x80070005
18:25:22/11956/mapihelp.cpp:mapi_mark_moss_attach: Marking 3435205 as MOSS attachment
18:25:22/11956/ERROR/mapihelp.cpp:mapi_mark_moss_attach: can't set GpgOL Attach Type property: hr=0x80070005

Wed, Jan 9, 6:55 AM · gpgol, Bug Report, gpg4win

Tue, Jan 8

aheinecke merged task T4311: Can't generate a key - Invalid argument into T4265: GPA: Can't create new keys with GPGME 1.12.x.
Tue, Jan 8, 4:57 PM · gpa
aheinecke merged T4311: Can't generate a key - Invalid argument into T4265: GPA: Can't create new keys with GPGME 1.12.x.
Tue, Jan 8, 4:57 PM · Bug Report, gpg4win, gpa
aheinecke added a comment to T4311: Can't generate a key - Invalid argument.

Yes please use the command line ( gpg --gen-key ) or Kleopatra. This issue is fixed in the latest version of the GPGME library.

Tue, Jan 8, 4:56 PM · gpa
aheinecke added a comment to T3740: Outlook unable to send encrypted or signed emails.

Reporter in wald said that he is using GMX with POP3. I don't see how that could change compose actions but maybe Outlook internally uses a different MAPI Provider which could cause different behavior. I have not tested POP 3 in a long time so this will be the next step here.

Tue, Jan 8, 8:48 AM · gpgol, Bug Report

Mon, Jan 7

aheinecke committed rDbca9c59ab107: people: Move me up and update me (authored by aheinecke).
people: Move me up and update me
Mon, Jan 7, 4:31 PM
aheinecke added a comment to T3811: New website design.

Please provide a summary of the talk.

Mon, Jan 7, 3:40 PM · gpgweb, Verein
aheinecke added a comment to T3322: Set a policy for logo use.

My opinion:

Mon, Jan 7, 3:38 PM · Verein, gpgweb
aheinecke created T4312: Paypal account for GnuPG e.V..
Mon, Jan 7, 3:32 PM · Verein
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

I did in my first comment here ;-)

Mon, Jan 7, 11:30 AM · gpgol, gpg4win
aheinecke committed rW009116eedeb0: web: Note Office 2019 support (authored by aheinecke).
web: Note Office 2019 support
Mon, Jan 7, 10:41 AM
aheinecke created T4310: GPGME: Add ssh export mode.
Mon, Jan 7, 10:33 AM · Feature Request, gpgme
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

Yes, please send the mails. Maybe they will show me the problem already. :-)

Mon, Jan 7, 10:29 AM · gpgol, gpg4win
aheinecke added a comment to T4299: Problem to verify PGP key used by Microsoft.

@JW-D thanks. Please send them to aheinecke@gnupg.org

Mon, Jan 7, 10:12 AM · gpgol, gpg4win
aheinecke committed rO796e3467dd64: Merge remote-tracking branch 'dutch-l10n/dutch' (authored by aheinecke).
Merge remote-tracking branch 'dutch-l10n/dutch'
Mon, Jan 7, 10:10 AM
aheinecke committed rO085ad582eb94: po: Auto update po files (authored by aheinecke).
po: Auto update po files
Mon, Jan 7, 10:10 AM
aheinecke committed rO7b71a741b73b: Add translators comment (authored by aheinecke).
Add translators comment
Mon, Jan 7, 10:10 AM
aheinecke added a comment to T3740: Outlook unable to send encrypted or signed emails.

I had a report of this by mail where the problem was that:

Mon, Jan 7, 9:44 AM · gpgol, Bug Report
aheinecke claimed T4297: The browser integration component is not installed by default.

Thanks for the report. Indeed I've overlooked this.

Mon, Jan 7, 9:39 AM · gpgme, UI, gpg4win
aheinecke claimed T4299: Problem to verify PGP key used by Microsoft.

If it contains a gpgolPGP.dat it means that it was already parsed by GpgOL and GpgOL created the MOSS attachment from the clearsigned original message. That it's tnef is part of the export and should not be a problem.

Mon, Jan 7, 9:02 AM · gpgol, gpg4win
aheinecke added a comment to E422: Weekly Standup.

Recently:

  • Finished of other stuff to now work for g10code / GnuPG full time.
Mon, Jan 7, 7:48 AM

Tue, Dec 18

aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

The reporter said that it did not work for him.

Tue, Dec 18, 2:44 PM · S/MIME

Mon, Dec 17

aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

@werner what should the contents of the file look like?

Mon, Dec 17, 3:46 PM · S/MIME

Dec 17 2018

aheinecke assigned T3724: Gpg-Agent asks twice for passphrase for key without passphrase to werner.

Asked to raise the priority on this. The quality bar issue is T2103

Dec 17 2018, 11:19 AM · gpgagent
aheinecke is attending E415: Weekly Standup.
Dec 17 2018, 11:00 AM
aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

Good to know. I thought that ocsp-signer was only used if ocsp-responder is explitly set. I've suggested the workaround in the Message Board.

Dec 17 2018, 9:48 AM · S/MIME
aheinecke created T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.
Dec 17 2018, 8:44 AM · S/MIME
aheinecke closed T4291: Bug from Kleopatra as Invalid.

that error means that the message was somehow corrupted during transfer. Are you maybe using ftp in text mode on a binary message for example?
You could ask your communication partner to send you messages in text (ASCII Armor) mode which is more robust.
In Kleopatra you can change that in Settings -> Configure Kleopatra -> Crypto Operations -> Create signed or encrypted files as text files.
On the command line you need to add "--armor" option.

Dec 17 2018, 8:37 AM · Bug Report, gpg4win
aheinecke added a comment to T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows.

In Wald someone reports that this also appears to happen when decrypting. https://wald.intevation.org/forum/message.php?msg_id=6377 Probably run-threaded will help to flush this out.

Dec 17 2018, 8:33 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win
aheinecke added a comment to T4116: Kleopatra: Hang in gpgconf_read on posix with GPGME_DEBUG=9.

Even with the logging changes this still happens. I just retested it. Can't run Kleopatra on Linux with GPGME_DEBUG=9.

Dec 17 2018, 8:29 AM · kleopatra, gpgme

Dec 14 2018

aheinecke added a comment to T4159: Kleopatra fails to create new Key Pair.

Got another reliable report in the Wald Forum about this. https://wald.intevation.org/forum/message.php?msg_id=6371&group_id=11

Dec 14 2018, 1:36 PM · gnupg, Bug Report, gpg4win
aheinecke added a comment to T4118: GpgOL: Mitigate S/MIME Denial of Service due to CRL stalling.

No I do not think so. Because that would already be currently the case. If you had a subverted Root CA of course you can attack. But we are only talking about CRL / OCSP here. A root CA that does not provide a CRL for certificate X is OK. As long as the Root CA that issued X issues a CRL for that. Well the usual CRL / OCSP denial of service is still possible but I don't see any subversion.

Dec 14 2018, 1:28 PM · gpg4win, gpgol
aheinecke added a comment to T4118: GpgOL: Mitigate S/MIME Denial of Service due to CRL stalling.

I wonder if the best thing here might be another flag in the trustlist to disable CRL/OCSP checks for a single root certificate chain. I had such a request in the Gpg4win forums. Someone had a single unreacable CRL / OCSP and had to disable globally all checks for all other certs, too.

Dec 14 2018, 10:52 AM · gpg4win, gpgol

Dec 12 2018

aheinecke created T4287: GpgOL: Incompatibility with Microsoft Azure Information Protection add-in.
Dec 12 2018, 4:08 PM · gpg4win, gpgol
aheinecke added a comment to T4255: gpg-agent: "<gcrypt> Cannot allocate memory" with 10 threads decrypting OpenPGP.

Uhm, if this option is useful why isn't it default behavior?

Dec 12 2018, 10:34 AM · gnupg, gpgagent

Dec 11 2018

aheinecke committed rW8223b4025b25: Minor README fix (authored by aheinecke).
Minor README fix
Dec 11 2018, 8:19 AM

Dec 10 2018

aheinecke added a comment to E414: Weekly Standup.

Last week:

  • Again basically nothing GnuPG except the usual maintenance stuff.
Dec 10 2018, 8:32 AM
aheinecke claimed T4278: Signed mails not visible in Exchange web interface (owa).

I'm pretty sure I tested this in the past using the Outlook.com web interface. The mails should show with an unknown attachment (the signature). I can't think of any changes recently that would have changed it. I'll check again.

Dec 10 2018, 8:31 AM · gpgol, Bug Report, gpg4win

Dec 7 2018

aheinecke added a comment to T3733: Kleopatra, Libgpg-error: Let the GUI change the language on Windows.

I don't think this works for me in that way.

Dec 7 2018, 4:02 PM · gpg4win, Bug Report
aheinecke added a comment to T3733: Kleopatra, Libgpg-error: Let the GUI change the language on Windows.

Thanks. In the meantime GpgOL takes it's language from the Outlook configured display language setting. I'll add support for override locale to gpgol so that the locale is set accordingly

Dec 7 2018, 2:55 PM · gpg4win, Bug Report
aheinecke added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

Should we close this or do you want to investigate why the segfault happened after the error?

Dec 7 2018, 11:50 AM · Bug Report, gpg4win, gpa
aheinecke committed rM78f6291a3bf5: core: Fix ERR_INV_ARG check in genkey_start (authored by aheinecke).
core: Fix ERR_INV_ARG check in genkey_start
Dec 7 2018, 10:48 AM
aheinecke added a commit to T4265: GPA: Can't create new keys with GPGME 1.12.x: rM78f6291a3bf5: core: Fix ERR_INV_ARG check in genkey_start.
Dec 7 2018, 10:48 AM · Bug Report, gpg4win, gpa
aheinecke added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

I ran it with GPGME_DEBUG and it errors out at
GPGME 2018-12-07 10:34:32 <0x19c43> gpgme_op_genkey_start:293: error: Invalid argument <GPGME>

Dec 7 2018, 10:38 AM · Bug Report, gpg4win, gpa
aheinecke committed rW25b61baa6600: doc: Update copyright list (authored by aheinecke).
doc: Update copyright list
Dec 7 2018, 9:07 AM
aheinecke committed rW62f8324a1be9: Add news entry for Kleopatra change (authored by aheinecke).
Add news entry for Kleopatra change
Dec 7 2018, 9:07 AM
aheinecke added a comment to T4265: GPA: Can't create new keys with GPGME 1.12.x.

Just by going through the standard "new key wizard".


GPA 0.11.0-beta5 [70858dc]

Dec 7 2018, 8:33 AM · Bug Report, gpg4win, gpa

Dec 5 2018

aheinecke changed the status of T4268: Provide a method to build a simple WKD server filestructure on Windows from Open to Testing.

Sounds good! I give it to me for testing / documenting this.

Dec 5 2018, 12:00 PM · wkd, Windows
aheinecke added a comment to T4276: Context.decrypt() throws an error if *any* signature is bad.

Is this fixed now?

Dec 5 2018, 11:54 AM · gpgme, Python, Bug Report
aheinecke committed rM65c28da4e49a: python: overhaul logic of Context.decrypt() (authored by dkg).
python: overhaul logic of Context.decrypt()
Dec 5 2018, 11:50 AM
aheinecke added a commit to T4271: python gpg.Context.decrypt(verify=False) no longer works: rM65c28da4e49a: python: overhaul logic of Context.decrypt().
Dec 5 2018, 11:50 AM · Python, gpgme, Bug Report