S/MIMEProject
ActivePublic

Members

  • This project does not have any members.

Watchers

  • This project does not have any watchers.

Recent Activity

Yesterday

jmrexach added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

werner,
I'm the spanish user. Are you also setting default ocsp responder option?
Setting only ocsp_signer doesn't worked, there are several CA's with diferent ocsp responders.

Tue, Dec 18, 8:19 PM · S/MIME
aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

The reporter said that it did not work for him.

Tue, Dec 18, 2:44 PM · S/MIME

Mon, Dec 17

werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

A list of SHA-1 fingerprints for the valid certificates. With our without colons.

Mon, Dec 17, 5:25 PM · S/MIME
aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

@werner what should the contents of the file look like?

Mon, Dec 17, 3:46 PM · S/MIME
werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

I had to look it up in the code and man page too ;-)

Mon, Dec 17, 10:22 AM · S/MIME
aheinecke added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

Good to know. I thought that ocsp-signer was only used if ocsp-responder is explitly set. I've suggested the workaround in the Message Board.

Mon, Dec 17, 9:48 AM · S/MIME
werner added a comment to T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.

Is using

Mon, Dec 17, 9:44 AM · S/MIME
aheinecke created T4292: gpgsm: Problems with OCSP validation / No CRL known for OCSP Cert id-pkix-ocsp-nocheck?.
Mon, Dec 17, 8:44 AM · S/MIME
aheinecke added a comment to T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows.

In Wald someone reports that this also appears to happen when decrypting. https://wald.intevation.org/forum/message.php?msg_id=6377 Probably run-threaded will help to flush this out.

Mon, Dec 17, 8:33 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win

Fri, Dec 14

werner added a project to T4248: gpg-agent: Rare unresponsiveness after importing a secret S/MIME cert on Windows: S/MIME.
Fri, Dec 14, 10:46 AM · S/MIME, gnupg (gpg22), gpgagent, gpg4win

Thu, Dec 13

werner claimed T4013: Certificate requests generated from Ed25519 keys are not compliant with draft-ietf-curdle-pkix.
Thu, Dec 13, 9:38 AM · S/MIME, Feature Request, libksba

Mon, Nov 19

aheinecke closed T4227: Gpg4win 3.1.5, a subtask of T3967: dirmngr: "flush" does not flush in memory CRL's, as Resolved.
Mon, Nov 19, 10:28 AM · kleopatra, S/MIME, gnupg

Nov 15 2018

aheinecke created T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.
Nov 15 2018, 12:44 PM · S/MIME, gpgme

Nov 12 2018

aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rG678e4706ee61: dirmngr: Add FLUSHCRLs command.
Nov 12 2018, 2:00 PM · kleopatra, S/MIME, gnupg
aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rKLEOPATRA05fb82066b18: Use new FLUSHCRLS command on windows.
Nov 12 2018, 1:56 PM · kleopatra, S/MIME, gnupg
aheinecke closed T3967: dirmngr: "flush" does not flush in memory CRL's as Resolved.
Nov 12 2018, 1:18 PM · kleopatra, S/MIME, gnupg
aheinecke closed T3967: dirmngr: "flush" does not flush in memory CRL's, a subtask of T3948: GPGSM: Multiple issues reported to KMail, as Resolved.
Nov 12 2018, 1:18 PM · gpgme, S/MIME
aheinecke added a subtask for T3967: dirmngr: "flush" does not flush in memory CRL's: T4227: Gpg4win 3.1.5.
Nov 12 2018, 1:18 PM · kleopatra, S/MIME, gnupg
aheinecke added a commit to T3967: dirmngr: "flush" does not flush in memory CRL's: rG00321a025f90: dirmngr: Add FLUSHCRLs command.
Nov 12 2018, 12:43 PM · kleopatra, S/MIME, gnupg

Oct 24 2018

aheinecke added a revision to T3967: dirmngr: "flush" does not flush in memory CRL's: D469: dirmngr: Add FLUSHCRLs command.
Oct 24 2018, 10:45 AM · kleopatra, S/MIME, gnupg

Sep 4 2018

aheinecke closed T4029: Gpg4win 3.1.3, a subtask of T3961: GpgOL: Add option to prefer S/MIME over OpenPGP in autoresolution, as Resolved.
Sep 4 2018, 9:24 AM · S/MIME, gpgol
aheinecke closed T4029: Gpg4win 3.1.3, a subtask of T4075: Kleopatra: Setting SigG PIN for Netkey should be optional, as Resolved.
Sep 4 2018, 9:24 AM · gpg4win, kleopatra, S/MIME
aheinecke closed T4029: Gpg4win 3.1.3, a subtask of T4069: GpgSM, Dirmngr communication on Windows sometimes very slow, as Resolved.
Sep 4 2018, 9:24 AM · dirmngr, S/MIME, gpg4win
aheinecke added a comment to T3961: GpgOL: Add option to prefer S/MIME over OpenPGP in autoresolution.

The original reporter in the gpg4win-forums reports that this does not work reliably. :-/

Sep 4 2018, 9:24 AM · S/MIME, gpgol
aheinecke closed T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally as Resolved.

Gpg4win-3.1.3 was released.

Sep 4 2018, 9:20 AM · gpg4win, S/MIME, kleopatra

Aug 31 2018

aheinecke created T4117: GPGSM: SHA-256 Fingerprint handling.
Aug 31 2018, 8:50 AM · kleopatra, S/MIME

Aug 30 2018

aheinecke added a subtask for T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally: T4029: Gpg4win 3.1.3.
Aug 30 2018, 1:06 PM · gpg4win, S/MIME, kleopatra
aheinecke changed the status of T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally from Open to Testing.

We have a progress dialog now and only show details on request. I've also fixed a bug that you could trigger learning the keys twice which lead to undefined behavior.

Aug 30 2018, 1:06 PM · gpg4win, S/MIME, kleopatra
aheinecke added a commit to T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally: rKLEOPATRAdc7953d3d964: Update systray icon correctly if learning certs.
Aug 30 2018, 1:04 PM · gpg4win, S/MIME, kleopatra
aheinecke added a commit to T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally: rKLEOPATRA7ca29d969dcb: Use progress dialog in learncardkeyscommand.
Aug 30 2018, 1:04 PM · gpg4win, S/MIME, kleopatra

Aug 21 2018

werner triaged T4104: gpgsm/ksba removes leading zeros from signature byte array as Normal priority.
Aug 21 2018, 5:25 PM · S/MIME, Bug Report

Aug 20 2018

eoincreedon_gmail.com added a comment to T4003: Trusted-certs folder not being taken into account where System folders are read.

Hi,
Can I ask if there is any update on the issue that I face?

Aug 20 2018, 1:57 PM · dirmngr, S/MIME, Bug Report

Aug 17 2018

Serg67 added a comment to T4098: GpgSM: Add ECC support (Option to create an X.509/ECDSA key).

Ok
Thanks for your answer

Aug 17 2018, 4:38 PM · S/MIME, Bug Report, gpg4win
aheinecke added a comment to T4098: GpgSM: Add ECC support (Option to create an X.509/ECDSA key).

There is currently no ECC key support in the S/MIME component of Gpg4win. I've edited the task a bit to reflect that. So it is impossible to generate an ECC Key for S/MIME with Kleopatra.

Aug 17 2018, 3:41 PM · S/MIME, Bug Report, gpg4win
aheinecke renamed T4098: GpgSM: Add ECC support (Option to create an X.509/ECDSA key) from Create an X.509/ECDSA key to GpgSM: Add ECC support (Option to create an X.509/ECDSA key).
Aug 17 2018, 3:40 PM · S/MIME, Bug Report, gpg4win

Aug 6 2018

gouttegd created T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed in the S1 Public space.
Aug 6 2018, 12:00 AM · S/MIME

Jul 24 2018

aheinecke added a project to T4076: Kleopatra: General Error when trying to encrypt to S/MIME with unknown CRL while offline: Stalled.

I can't reproduce this. When I make Dirmngr offline I correctly get a No CRL known error. So it must be something different.

Jul 24 2018, 8:02 AM · Stalled, gpg4win, kleopatra, gpgme, S/MIME
aheinecke changed the status of T3961: GpgOL: Add option to prefer S/MIME over OpenPGP in autoresolution from Open to Testing.
Jul 24 2018, 7:51 AM · S/MIME, gpgol

Jul 18 2018

aheinecke closed T4075: Kleopatra: Setting SigG PIN for Netkey should be optional as Resolved.

Tester reports that this works now.

Jul 18 2018, 8:39 AM · gpg4win, kleopatra, S/MIME
aheinecke added a subtask for T4075: Kleopatra: Setting SigG PIN for Netkey should be optional: T4029: Gpg4win 3.1.3.
Jul 18 2018, 8:39 AM · gpg4win, kleopatra, S/MIME
aheinecke added a subtask for T4069: GpgSM, Dirmngr communication on Windows sometimes very slow: T4029: Gpg4win 3.1.3.
Jul 18 2018, 8:34 AM · dirmngr, S/MIME, gpg4win
aheinecke closed T4069: GpgSM, Dirmngr communication on Windows sometimes very slow as Resolved.

I got feedback from the user that had the problem. It's fixed with 2.2.9 which contains your commit afaik.

Jul 18 2018, 8:33 AM · dirmngr, S/MIME, gpg4win

Jul 17 2018

aheinecke created T4080: Kleopatra: Learn Netkey certificates should show diagnostics only optionally.
Jul 17 2018, 11:19 AM · gpg4win, S/MIME, kleopatra
aheinecke added a commit to T4075: Kleopatra: Setting SigG PIN for Netkey should be optional: rKLEOPATRA378084993a0a: Make SigG PIN for NetKey cards optional.
Jul 17 2018, 10:38 AM · gpg4win, kleopatra, S/MIME
aheinecke closed T4077: Kleopatra: Netkey card import should be possible while offline even if CRL checks are activated as Invalid.

This was a misunderstanding. Import is possible. The german translation of Kleopatra wrongly indicated an error because it translated "unknown certificates" as "ungültige Zertifikate".

Jul 17 2018, 10:38 AM · gpg4win, S/MIME, kleopatra

Jul 16 2018

aheinecke created T4077: Kleopatra: Netkey card import should be possible while offline even if CRL checks are activated.
Jul 16 2018, 11:11 AM · gpg4win, S/MIME, kleopatra
aheinecke created T4076: Kleopatra: General Error when trying to encrypt to S/MIME with unknown CRL while offline.
Jul 16 2018, 11:09 AM · Stalled, gpg4win, kleopatra, gpgme, S/MIME
aheinecke created T4075: Kleopatra: Setting SigG PIN for Netkey should be optional.
Jul 16 2018, 11:07 AM · gpg4win, kleopatra, S/MIME

Jul 12 2018

werner added a comment to T4069: GpgSM, Dirmngr communication on Windows sometimes very slow.

Commit rEbd5bcd2dd19ef0b1c3d33a3a388b537ba08a4eb6

Jul 12 2018, 9:37 AM · dirmngr, S/MIME, gpg4win
werner added a comment to T4069: GpgSM, Dirmngr communication on Windows sometimes very slow.

it is not due to windows but due to the use of NTBTLS. I have the same problem here... and found it: We call es_fflush to let ntbtls flush its internal buffers but libgpg-error's estream module does no propagate this explicit flush to the cookie functions of ntbtls. Thus ntbtls gets stuck most of the time. I am not sure when this regression happened but it is pretty obvious.

Jul 12 2018, 9:36 AM · dirmngr, S/MIME, gpg4win