[kleopatra] [Bug 381919] Kleopatra fails to validate S/MIME signed msgs with MPG CA in the cert chain
Achim Bohnet
bugzilla_noreply at kde.org
Wed Sep 27 20:04:41 BST 2017
https://bugs.kde.org/show_bug.cgi?id=381919
--- Comment #7 from Achim Bohnet <ach at mpe.mpg.de> ---
Here I think the relevant part of the kleopatra log:
4 - 2017-09-27 20:48:12 gpgsm[7370]: detached signature
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_95 -> S NEWSIG
4 - 2017-09-27 20:48:12 gpgsm[7370]: Signatur erzeugt am 2017-09-21 11:34:22
mittels Zertifikat ID 0xA15353E8
4 - 2017-09-27 20:48:12 gpgsm[7370]: Datei `/home/achim/.gnupg/policies.txt'
kann nicht geöffnet werden: Datei oder Verzeichnis nicht gefunden
4 - 2017-09-27 20:48:12 gpgsm[7370]: Hinweis: Die unkritische
Zertifikatsrichtlinie ist nicht erlaubt
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_10 <- # Home:
/home/achim/.gnupg
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_10 <- # Config:
/home/achim/.gnupg/dirmngr.conf
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_10 <- OK Dirmngr 2.1.11 at
your service
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- # Home:
/home/achim/.gnupg
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- # Config:
/home/achim/.gnupg/dirmngr.conf
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- OK Dirmngr 2.1.11 at
your service
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: connection to the dirmngr
established
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> GETINFO version
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- D 2.1.11
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- OK
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> OPTION audit-events=1
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- OK
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> LDAPSERVER
ldap.pca.dfn.de:0:::
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- OK
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> ISVALID
C87B47CB198E371981D5A9C3926F5BCF6A5290D7.1AFE56DB930CEF
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- INQUIRE SENDCERT
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> [ 44 20 30 82 05 80 30
82 04 68 a0 03 02 01 02 02 ...(982 byte(s) skipped) ]
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> [ 44 20 07 30 01 86 27
68 74 74 70 3a 2f 2f 6f 63 ...(444 byte(s) skipped) ]
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> END
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 <- INQUIRE SENDCERT
/1.2.840.113549.1.9.1=#6D70672D6361406D70672E6465,CN=MPG
CA,O=Max-Planck-Gesellschaft,C=DE
4 - 2017-09-27 20:48:12 gpgsm[7370]: certificate not found: Mehrdeutiger Name
4 - 2017-09-27 20:48:12 gpgsm[7370]: DBG: chan_11 -> CAN
4 - 2017-09-27 20:48:13 gpgsm[7370]: DBG: chan_11 <- ERR 167772217 Fehlendes
Zertifikat <Dirmngr>
4 - 2017-09-27 20:48:13 gpgsm[7370]: certificate
#1AFE56DB930CEF/1.2.840.113549.1.9.1=#6D70672D6361406D70672E6465,CN=MPG
CA,O=Max-Planck-Gesellschaft,C=DE
4 - 2017-09-27 20:48:13 gpgsm[7370]: Die CRL konnte nicht geprüft werden:
Nicht gefunden
4 - 2017-09-27 20:48:13 gpgsm[7370]: Benutztes Gültigkeitsmodell: Schale
4 - 2017-09-27 20:48:13 gpgsm[7370]: DBG: chan_95 -> S GOODSIG
BB76E8A1B47AD3C579E402C571473BE1A15353E8 /CN=Achim
Bohnet/OU=Max-Planck-Institut fuer extraterrestrische
Physik/O=Max-Planck-Gesellschaft/C=DE
4 - 2017-09-27 20:48:13 gpgsm[7370]: DBG: chan_95 -> S VALIDSIG
BB76E8A1B47AD3C579E402C571473BE1A15353E8 2017-09-21 20170921T113422
20190308T135315 0 0 1 8 00
4 - 2017-09-27 20:48:13 gpgsm[7370]: invalid certification chain: Nicht
gefunden
4 - 2017-09-27 20:48:13 gpgsm[7370]: DBG: chan_95 -> S TRUST_UNDEFINED 27
More information about the MPG CA: https://info.pca.dfn.de/mpg-ca/index.html
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the Kdepim-bugs
mailing list