Why I can use x.509 for encrypting thunderbird messages (so I suppose gpg works) but I cannot use kleopatra to encrypt any file?
If I try encrypt using my cacert x.509 certificate I get this error:
Encryption failed, Error in retrieving the registry: Not supported
I found a solution by my self.
I tick this option in Kleopatra settings:
“do not check CRLs for root certificate”
and then I can encrypt using X.509 issued by cacert.
Is it safe?
Bad news!
Even if apparently the X.509 encryption works, when I try to decrypt the file will be EMPTY!
So again there must be a bug using X.509 cacert encryption!
More exactly If I encrypt AND sign then the result will be EMPTY.
If I only encrypt WITHOUT sign then the file will be OK.
So the bug is in the signature.
Data signing succeeded
Yes
Data available
Yes
(data hash algorithm: SHA256)
Signer 1
Okay
(attr hash algorithm: SHA256)
(#133363/1.2.840.113549.1.9.1=#737570706F7274406361636572742E6F7267,CN=CA Cert Signing Authority,OU=http://www.cacert.org,O=Root CA)
(/1.2.840.113549.1.9.1=#64616E69656C654073696E617073692E6F7267,1.2.840.113549.1.9.1=#64616E69656C652E70617373616C616371756140676D61696C2E636F6D,CN=CAcert WoT User)
Hi Dan,
Is this the same Issue as in your other Post[1]?
Best wishes,
Jochen
[1] - https://forum.gnupg.org/t/cannot-verify-this-signed-file/3185
Yes indeed.
I am struggling trying to encrypt and sign using my X.509 Cacert.
I can encrypt and decrypt correctly without signature.
But if I try to encrypt and sign then the result is wrong, the file cannot be decrypted neither the sign could be verified.
I am using windows 10 and Kleopatra ver. 3.0.0
Tanks
Hey,
Can we then concentrate on just one of the Threads? I think it will make things easier when we discuss further in [1].
Best wishes,
Jochen
[1] - https://forum.gnupg.org/t/cannot-verify-this-signed-file/3185
Ok, sorry.
I drop this one and continue on the other.