Projects S/MIME

S/MIMEProject
ActivePublic
Watch Project

Members
View All

  • This project does not have any members.

Watchers
View All

  • This project does not have any watchers.

Recent Activity
View All

Tue, Aug 25

werner closed T4881: "User ID" (Subject, subjectAltName) validity is inaccurate in gpgsm with sample certs. as Resolved.

The CRL states how long it is valid and we cache it for about that time.
OCSP responses are by definition not cachable but we allow for a clock skew of 10 minutes.

Tue, Aug 25, 1:22 PM · Not A Bug, gnupg (gpg22), S/MIME

Aug 19 2020

werner triaged T4881: "User ID" (Subject, subjectAltName) validity is inaccurate in gpgsm with sample certs. as Low priority.
Aug 19 2020, 1:50 PM · Not A Bug, gnupg (gpg22), S/MIME

Jul 16 2020

werner edited projects for T3948: GPGSM: Multiple issues reported to KMail, added: gnupg; removed gpgme.
Jul 16 2020, 3:23 PM · gnupg, S/MIME
werner closed T3348: gpgsm: should default to --disable-crl-checks as Wontfix.
Jul 16 2020, 2:45 PM · gpgme, gnupg, S/MIME
werner added a subtask for T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification: T2919: fix gpgme/gpgsm pipe server session with use_descriptor_passing (was: mutt + gpgme problems with some Outlook S/MIME emails).
Jul 16 2020, 2:42 PM · S/MIME, gpgme

Jul 15 2020

werner merged T4650: Kleopatra crashed with an application error (Windows) into T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.
Jul 15 2020, 4:53 PM · S/MIME, gpgme
werner moved T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification from Backlog to For a future release on the gpgme board.
Jul 15 2020, 4:42 PM · S/MIME, gpgme
werner moved T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification from For next release to Backlog on the gpgme board.
Jul 15 2020, 12:18 PM · S/MIME, gpgme
werner added a comment to T4257: GPGME: op_verify failes for S/MIME with EBADF in multithreaded signature verification.

Its a year since I worked on the mentioned wait code change (wk/new-wait branch) and I more or less forgot about it. it will to risky to release that as 1.14 so this change and the fix to this bug needs to be postponed to 1.15. Sorry.

Jul 15 2020, 12:18 PM · S/MIME, gpgme

Jul 14 2020

werner added a commit to T4538: Support PSS signed CRLs: rGc5ab1dcd543f: gpgsm: Make rsaPSS a compliant scheme in de-vs mode..
Jul 14 2020, 12:31 PM · dirmngr, S/MIME, libksba
werner added a commit to T4538: Support PSS signed CRLs: rG5fe3cdfc7646: gpgsm: Make rsaPSS a compliant scheme in de-vs mode..
Jul 14 2020, 12:28 PM · dirmngr, S/MIME, libksba

Jun 11 2020

dkg reopened T4892: gpgsm --gen-key with existing key from "ssh-add" fails as "Open".

This appears to still be a problem, despite upgrading to libksba 1.4.0:

Jun 11 2020, 1:29 AM · Bug Report, S/MIME

May 27 2020

werner added a comment to T4098: GpgSM: Add ECC support.

GnuTLS seems to have some CMS support; see https://gitlab.com/gnutls/gnutls/-/issues/227 .

May 27 2020, 10:35 AM · gnupg (gpg23), Feature Request, S/MIME

May 19 2020

werner closed T4920: Support ECDH in Libksba as Resolved.
May 19 2020, 4:49 PM · libksba, Feature Request, S/MIME
werner closed T4920: Support ECDH in Libksba, a subtask of T4098: GpgSM: Add ECC support, as Resolved.
May 19 2020, 4:49 PM · gnupg (gpg23), Feature Request, S/MIME
werner changed the status of T4104: gpgsm/ksba removes leading zeros from signature byte array from Open to Testing.

Seems to be fixed now.

May 19 2020, 3:13 PM · Testing, libksba, S/MIME, Bug Report
werner lowered the priority of T4896: ksba: Ed25519 support from High to Normal.

Parsing and creating of certs does now work. I was not able to find sample CMS objects so this part is not yet finished.

May 19 2020, 3:12 PM · Info Needed, libksba, Feature Request, S/MIME
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed, a subtask of T4888: GpgSM: Support ECC key generation by gpgsm_genkey, as Resolved.
May 19 2020, 2:43 PM · Testing, Feature Request, S/MIME
werner closed T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed as Resolved.
May 19 2020, 2:43 PM · Testing, Feature Request, S/MIME
werner added a comment to T4888: GpgSM: Support ECC key generation by gpgsm_genkey.

Finished if an existing key is used. See rG6dc3846d78192e393be73c16c72750734a9174d1 for examples.

May 19 2020, 2:42 PM · Testing, Feature Request, S/MIME
werner added a comment to T4098: GpgSM: Add ECC support.

See rG6dc3846d78192e393be73c16c72750734a9174d1 for examples on how to create a cert

May 19 2020, 2:41 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a commit to T4098: GpgSM: Add ECC support: rG44676819f287: sm: Create ECC certificates with AKI and SKI by default..
May 19 2020, 2:37 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a commit to T4888: GpgSM: Support ECC key generation by gpgsm_genkey: rGb18fb0264abd: agent: Allow to use SETHASH for arbitrary data..
May 19 2020, 2:37 PM · Testing, Feature Request, S/MIME
werner added a commit to T4888: GpgSM: Support ECC key generation by gpgsm_genkey: rG6dc3846d7819: sm: Support creation of EdDSA certificates..
May 19 2020, 2:37 PM · Testing, Feature Request, S/MIME

May 18 2020

werner added a commit to T4098: GpgSM: Add ECC support: rK71a2f1e87790: Finish creation of ECDSA and EdDSA certificates..
May 18 2020, 7:34 PM · gnupg (gpg23), Feature Request, S/MIME

May 14 2020

werner removed a subtask for T4098: GpgSM: Add ECC support: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:50 AM · gnupg (gpg23), Feature Request, S/MIME
werner removed a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4888: GpgSM: Support ECC key generation by gpgsm_genkey.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a subtask for T4888: GpgSM: Support ECC key generation by gpgsm_genkey: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:50 AM · Testing, Feature Request, S/MIME
werner added a subtask for T4098: GpgSM: Add ECC support: T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed.
May 14 2020, 10:47 AM · gnupg (gpg23), Feature Request, S/MIME
werner added a parent task for T4092: Certificate requests generated from card-based ECDSA keys are incorrectly marked as RSA-signed: T4098: GpgSM: Add ECC support.
May 14 2020, 10:47 AM · Testing, Feature Request, S/MIME

May 12 2020

werner added a commit to T4896: ksba: Ed25519 support: rK60943d9f1816: Allow parsing of EdDSA certificates..
May 12 2020, 12:04 PM · Info Needed, libksba, Feature Request, S/MIME

May 11 2020

werner claimed T4896: ksba: Ed25519 support.
May 11 2020, 7:50 PM · Info Needed, libksba, Feature Request, S/MIME
werner added a commit to T4098: GpgSM: Add ECC support: rGf44d395bdfec: sm: Support signing using ECDSA..
May 11 2020, 7:02 PM · gnupg (gpg23), Feature Request, S/MIME
werner changed the status of T4098: GpgSM: Add ECC support from Open to Testing.

Signing using ECDSA does now also work. Tested with 3 in disk keys: nistp256, nistp384 and RSA and verified using gpgsm and Governikus Signer.

May 11 2020, 6:46 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a commit to T4920: Support ECDH in Libksba: rKcda81bec2e14: Support creation of ECDSA signed data..
May 11 2020, 6:23 PM · libksba, Feature Request, S/MIME

May 8 2020

werner added a project to T4098: GpgSM: Add ECC support: gnupg (gpg23).
May 8 2020, 6:16 PM · gnupg (gpg23), Feature Request, S/MIME
werner renamed T4098: GpgSM: Add ECC support from GpgSM: Add ECC support (Option to create an X.509/ECDSA key) to GpgSM: Add ECC support.
May 8 2020, 6:15 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a comment to T4098: GpgSM: Add ECC support.

Basic en- and decryption test against Governikus_Signer has now been done. Beware: I had to add a debug option to gpgsm to workaround non-compliance in algorithm support of Governikus; see the rG68b857df13c8a4e6cae5e3a29fd065bf90764547 for details.

May 8 2020, 6:14 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a commit to T4098: GpgSM: Add ECC support: rG68b857df13c8: sm: Allow decryption using dhSinglePass-stdDH-sha1kdf-scheme..
May 8 2020, 6:11 PM · gnupg (gpg23), Feature Request, S/MIME

May 7 2020

werner added a commit to T4938: Support Signature Card V2.0 (NKS15): rGaecc008acb64: scd:nks: Get the PIN prompts right for the Signature Card.
May 7 2020, 2:08 PM · scd, Feature Request, S/MIME
werner added a commit to T4938: Support Signature Card V2.0 (NKS15): rGaf45d884aa1c: scd:nks: Support decryption using ECDH..
May 7 2020, 8:20 AM · scd, Feature Request, S/MIME
werner added a commit to T4098: GpgSM: Add ECC support: rGee6d29f1797e: sm: Support decryption of ECDH data using a smartcard..
May 7 2020, 8:20 AM · gnupg (gpg23), Feature Request, S/MIME
werner created T4938: Support Signature Card V2.0 (NKS15).
May 7 2020, 8:18 AM · scd, Feature Request, S/MIME

May 4 2020

werner changed the status of T4920: Support ECDH in Libksba, a subtask of T4098: GpgSM: Add ECC support, from Open to Testing.
May 4 2020, 3:05 PM · gnupg (gpg23), Feature Request, S/MIME
werner changed the status of T4920: Support ECDH in Libksba from Open to Testing.

It works for me(tm).

May 4 2020, 3:05 PM · libksba, Feature Request, S/MIME
werner added a commit to T4098: GpgSM: Add ECC support: rGd5051e31a8fc: sm: Support encryption using ECDH keys..
May 4 2020, 3:02 PM · gnupg (gpg23), Feature Request, S/MIME
werner added a commit to T4920: Support ECDH in Libksba: rK8ade151b1048: Support creation of ECDH enveloped data object (part 2 of 2).
May 4 2020, 2:55 PM · libksba, Feature Request, S/MIME

May 1 2020

werner added a commit to T4920: Support ECDH in Libksba: rK0ddfbb464e0a: Support creation of ECDH enveloped data object (part 1).
May 1 2020, 5:17 PM · libksba, Feature Request, S/MIME

Apr 27 2020

werner changed the status of T4921: Support import of PKCS#12 encoded ECC private keys. from Open to Testing.
Apr 27 2020, 8:09 PM · backport, gnupg (gpg23), Feature Request, S/MIME