Page MenuHome GnuPG

S/MIMEProject
ActivePublic

Members

  • This project does not have any members.
  • View All

Watchers

  • This project does not have any watchers.
  • View All

Recent Activity

Today

ebo moved T6253: GpgSM: Backport ECC support to 2.2 from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Thu, Sep 28, 1:20 PM · gnupg22, Restricted Project, Feature Request, S/MIME
aheinecke triaged T6740: scd: Add / improve support for DINSIG cards as Wishlist priority.
Thu, Sep 28, 9:55 AM · S/MIME, scd

Mon, Sep 18

ebo moved T6559: GPGSM: "always trust like override" or "force" option from QA to gnupg-2.2.42 on the gnupg22 board.
Mon, Sep 18, 4:15 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
ebo moved T6559: GPGSM: "always trust like override" or "force" option from Restricted Project Column to Restricted Project Column on the Restricted Project board.
Mon, Sep 18, 3:42 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
ebo closed T6559: GPGSM: "always trust like override" or "force" option as Resolved.
Mon, Sep 18, 3:39 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
ebo added a comment to T6559: GPGSM: "always trust like override" or "force" option.

Tested on the command line with

  • a previously valid certificate after setting its root certificate to untrusted
  • a expired certificate without the root certificate in the certificate list
Mon, Sep 18, 3:31 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
ebo added a comment to T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag.

With Gpg4win-4.2.1-beta31 I can no longer import the secret part of the Edward.Tester Testkey. Error is "Invalid object".

Mon, Sep 18, 3:11 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project
ebo moved T4779: GpgSM: "Invalid Object" error when importing .p12 certs with wrong passphrase from QA to gnupg-2.4.3 on the gnupg24 board.
Mon, Sep 18, 2:42 PM · gnupg24 (gnupg-2.4.3), Restricted Project, gnupg (gpg23), S/MIME
ebo moved T4779: GpgSM: "Invalid Object" error when importing .p12 certs with wrong passphrase from Backlog to QA on the gnupg24 board.
Mon, Sep 18, 2:42 PM · gnupg24 (gnupg-2.4.3), Restricted Project, gnupg (gpg23), S/MIME
ebo closed T4779: GpgSM: "Invalid Object" error when importing .p12 certs with wrong passphrase as Resolved.

With VS-Desktop-3.2.0.0-beta214 and Gpg4win-4.2.1-beta31 the error is "Bad Passphrase" in this case.
I do not see a reason why this ticket is still open.
The already resolved Kleopatra Task T5713 is probably a duplicate of this one.

Mon, Sep 18, 2:23 PM · gnupg24 (gnupg-2.4.3), Restricted Project, gnupg (gpg23), S/MIME

Thu, Sep 14

ebo moved T6253: GpgSM: Backport ECC support to 2.2 from QA to WiP on the gnupg22 board.

pkcs12 import should be backported, too

Thu, Sep 14, 3:08 PM · gnupg22, Restricted Project, Feature Request, S/MIME

Fri, Sep 8

werner moved T6559: GPGSM: "always trust like override" or "force" option from Backlog to QA for next release on the gpgme board.
Fri, Sep 8, 3:45 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
werner added a project to T6559: GPGSM: "always trust like override" or "force" option: gpgme.
Fri, Sep 8, 3:45 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Thu, Sep 7

ebo changed the status of T6559: GPGSM: "always trust like override" or "force" option from Open to Testing.
Thu, Sep 7, 10:51 AM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Wed, Sep 6

werner removed a project from T3927: gpgsm certificate import fails because of hardcoded password length limitation: gnupg22.

I don't see a value to do this for 2.2 and introduce a regression with that.

Wed, Sep 6, 2:24 PM · Feature Request, gnupg24, S/MIME

Mon, Sep 4

aheinecke added a parent task for T6559: GPGSM: "always trust like override" or "force" option: T6702: Kleopatra: Use GPGME_ENCRYPT_ALWAYS_TRUST.
Mon, Sep 4, 8:49 AM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
aheinecke added a parent task for T6559: GPGSM: "always trust like override" or "force" option: T6701: GpgOL: Use GPGME_ENCRYPT_ALWAYS_TRUST.
Mon, Sep 4, 8:45 AM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Thu, Aug 31

werner moved T6559: GPGSM: "always trust like override" or "force" option from Backlog to QA on the gnupg24 board.
Thu, Aug 31, 12:36 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
werner placed T6559: GPGSM: "always trust like override" or "force" option up for grabs.
Thu, Aug 31, 12:08 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project
werner moved T6559: GPGSM: "always trust like override" or "force" option from Backlog to QA on the gnupg22 board.
Thu, Aug 31, 12:07 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Wed, Aug 30

werner claimed T6559: GPGSM: "always trust like override" or "force" option.
Wed, Aug 30, 6:13 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Aug 25 2023

werner edited projects for T3927: gpgsm certificate import fails because of hardcoded password length limitation, added: Feature Request; removed Bug Report.

Turning this into a feature request: We should create P12 files using AES instead of 3DES

Aug 25 2023, 4:04 PM · Feature Request, gnupg24, S/MIME
werner added a project to T6559: GPGSM: "always trust like override" or "force" option: Feature Request.
Aug 25 2023, 4:00 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Aug 23 2023

werner edited projects for T4892: gpgsm --gen-key with existing key from "ssh-add" fails, added: gnupg24; removed gnupg22.

Needs to be checked again with stable. No backport to 2..2, though.

Aug 23 2023, 8:44 AM · gnupg24, Bug Report, S/MIME

Aug 22 2023

aheinecke triaged T6678: GPGSM: Add support for cert extension 2.5.29.54 Inhibit anyPolicy as Normal priority.
Aug 22 2023, 3:14 PM · S/MIME, Restricted Project
aheinecke triaged T6677: GPGSM: Add support for cert extension 2.5.29.36 Policy Constraints as Normal priority.
Aug 22 2023, 3:08 PM · S/MIME, Restricted Project

Aug 16 2023

aheinecke triaged T6654: gpgsm: p12 passphrase visible in debug output as Normal priority.
Aug 16 2023, 1:37 PM · S/MIME, Restricted Project

Jul 26 2023

ikloecker added a comment to T6152: Text for Import of S/MIME certificates.

Currently, Kleopatra cannot do anything about this. get_passphrase in protect-tool.c asks those questions and doesn't support a way to give the user more context (e.g. by providing the file name). Once gpg-agent allows giving context, Kleopatra can add for example the file name to the data to import.

Jul 26 2023, 11:51 AM · Feature Request, S/MIME, gnupg, Restricted Project

Jul 24 2023

ebo added a comment to T6152: Text for Import of S/MIME certificates.

yes, one down, two to go...

Jul 24 2023, 4:33 PM · Feature Request, S/MIME, gnupg, Restricted Project

Jul 18 2023

aheinecke raised the priority of T6559: GPGSM: "always trust like override" or "force" option from Wishlist to Normal.

I am raising this up from the wishlist. Error messages from CRL errors can be so obscure, like we just had in a support call.

Jul 18 2023, 1:12 PM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Jul 5 2023

werner added a project to T3927: gpgsm certificate import fails because of hardcoded password length limitation: gnupg24.

Actually it has been fixed for the PBES2 case in 2.2 and 2.4. PBES2 is used with AES128 and AES256. I doubt that there is any value in adding such support for the legacy RC2 and 3DES methods.

Jul 5 2023, 2:44 PM · Feature Request, gnupg24, S/MIME
werner raised the priority of T3927: gpgsm certificate import fails because of hardcoded password length limitation from Low to Normal.
Jul 5 2023, 2:35 PM · Feature Request, gnupg24, S/MIME
werner edited projects for T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag, added: gnupg22 (gnupg-2.2.42); removed gnupg22.

Same for the backport to 2.2 which uses the same test suite.

Jul 5 2023, 2:31 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project
werner changed the status of T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag from Open to Testing.
Jul 5 2023, 2:30 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project
werner closed T4921: Support import of PKCS#12 encoded ECC private keys. as Resolved.

This has long been implemented due to the backport of the P12 parser and the recent rewrite of it.

Jul 5 2023, 2:29 PM · gnupg22 (gnupg-2.2.42), backport, Feature Request, S/MIME
werner closed T4921: Support import of PKCS#12 encoded ECC private keys., a subtask of T4098: GpgSM: Add ECC support, as Resolved.
Jul 5 2023, 2:29 PM · gnupg (gpg23), Feature Request, S/MIME
werner moved T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag from Backlog to WiP on the gnupg22 board.
Jul 5 2023, 2:23 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project

Jul 4 2023

werner edited projects for T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag, added: gnupg24 (gnupg-2.4.3); removed gnupg24.

This was tested by me against the actual sample and the sample is now part of our internal regression test suite.

Jul 4 2023, 2:46 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project

Jul 3 2023

aheinecke triaged T6572: Kleopatra / GPGME: Show difference between nonRepudiation and digitalSignature in summary line as Wishlist priority.
Jul 3 2023, 12:17 PM · S/MIME, kleopatra, gpgme, Restricted Project

Jun 29 2023

werner moved T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag from WiP to QA on the gnupg24 board.
Jun 29 2023, 6:05 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project

Jun 28 2023

werner added a comment to T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag.

Partly done for 2.4. The cram-octet-string stuff is missing, though.

Jun 28 2023, 5:33 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project

Jun 27 2023

werner added a project to T3927: gpgsm certificate import fails because of hardcoded password length limitation: gnupg22.

This has long been fixed in 2.4. Given that Libgcrypt has support for PBKDF2 we can back port this.

Jun 27 2023, 6:00 PM · Feature Request, gnupg24, S/MIME

Jun 26 2023

aheinecke triaged T6559: GPGSM: "always trust like override" or "force" option as Wishlist priority.
Jun 26 2023, 8:37 AM · gnupg22 (gnupg-2.2.42), gpgme, gnupg24, Feature Request, gpgol, S/MIME, kleopatra, Restricted Project

Jun 22 2023

werner moved T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag from Backlog to WiP on the gnupg24 board.
Jun 22 2023, 9:21 AM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project

Jun 16 2023

werner added a subtask for T6540: gpgsm creates invalid CSR (invalid signature) when given invalid subject name: T6541: gpgsm incorrectly prompts "Possible actions for a RSA key:" and shows "Key-Length: 1024" when using nistp521r1 ECDSA key.
Jun 16 2023, 5:55 PM · gnupg24, S/MIME, Bug Report
werner added a parent task for T6541: gpgsm incorrectly prompts "Possible actions for a RSA key:" and shows "Key-Length: 1024" when using nistp521r1 ECDSA key: T6540: gpgsm creates invalid CSR (invalid signature) when given invalid subject name.
Jun 16 2023, 5:55 PM · gnupg24, S/MIME, Bug Report
werner triaged T6541: gpgsm incorrectly prompts "Possible actions for a RSA key:" and shows "Key-Length: 1024" when using nistp521r1 ECDSA key as Low priority.
Jun 16 2023, 5:55 PM · gnupg24, S/MIME, Bug Report
werner triaged T6540: gpgsm creates invalid CSR (invalid signature) when given invalid subject name as Normal priority.

Use Kleopatra which constructs the DN for you ;-).

Jun 16 2023, 5:52 PM · gnupg24, S/MIME, Bug Report

Jun 14 2023

werner added a project to T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag: Bug Report.
Jun 14 2023, 12:39 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project
werner triaged T6536: Extend P12 parser for ShroudedKeyBag inside a CertBag as Normal priority.
Jun 14 2023, 12:36 PM · gnupg22 (gnupg-2.2.42), gnupg24 (gnupg-2.4.3), Bug Report, S/MIME, Restricted Project