QCA2

2022-09-09 Thread Ron Murray 
   I'm working on a project using Qt5, GPG and QCA2, the latter because
it can encrypt and decrypt PGP messages. This, of course, involves
using the qca-gnupg plugin.

   Encryption went fine (there's no need to sign anything (at the
moment, anyway)). Decryption, however, presented a problem: How to get
the password into gpg? I tried following the one example that I could
find (eventhandlerdemo.cpp), but I could never get the PasswordAsker
to, you know, actually ask for a password. I did discover, however,
that if I first used gpg to decrypt something (and supplying my
password to the agent in the process), that my program would
successfully decrypt things until the agent timed out (i.e. ten minutes
or so).

   I began to think  that the problem lay in the qca2 library. I went
through the source code and did a bit of tracing, and I found that QCA
always supplies "--pinentry-mode loopback" on the gpg command line.
This will never invoke the pinentry dialog, because that mode forces
gpg to ask for a password on the command line, which, apart from being
useless in a GUI application, won't work anyway because QCA also
supplies "--no-tty" on the command line, and that suppresses console
output.

   I managed to modify the qca-gnupg plugin code to replace "--
pinentry-mode loopback" with "--pinentry-mode default" when it's
decrypting or signing a message, built the libraries, installed it, and
now I get a proper pinentry dialog when I want to decrypt a message.

   So, the questions that I have are these:

1. I don't think that QCA, on its own, has any way to supply a password
to gpg or gpg-agent (apart, I suppose, by supplying it on the command
line, and nobody wants that), and anyway it's not implemented. But have
I missed something? Has anyone got QCA to decrypt files with GPG
lately?

2. Would this patch be useful for others? Note that it only affects the
qca-gnupg plugin: the rest of QCA is untouched.

   I'm using the current QCA version on Debian testing (2.3.4-1+b1).


-- 
Ron Murray 
PGP Fingerprint: 4D99 70E3 2317 334B 141E 7B63 12F7 E865 B5E2 E761

Re: Putting Flatpak KCM through kdereview

2022-09-09 Thread Harald Sitter 
Amazing!

For future reference: there is a sanity check list linked at
https://community.kde.org/Policies/Application_Lifecycle#kdereview
that you can follow to do a pre-review yourself and find most common
issues.

- Messages.sh missing (I see there is an MR pending)
- you should enable CI and in particular also enable the reuse
template to ensure reuse compliance moving forward
- the KCM name has a "Settings" suffix, that seems rather uncoming,
I'd remove it
- clazy is not happy with some stuff, I suggest you do a compile run
with it and fix its complaints
- missing a bugzilla product (request one via sysadmin ticket)
- missing an appstream file
- I have a rather large margin on the right hand side of the permissions view :O
- please always use i18nc() rather than i18n() for new strings and
provide suitable context. in particular for one-word strings... to a
translator it won't at all be obvious in what context "features"
appears or what "pcsc" refers to

All in all really good stuff.

HS

Putting Flatpak KCM through kdereview

2022-09-09 Thread Suhaas Joshi 
Hello, members of the community!

I am Suhaas Joshi, a GSoC 2022 mentee. I have been working on Flatpak KCM,
which allows users to change the permissions that their Flatpak apps have
been granted.

Until now, this has resided in my personal namespace. We want to move this
to the Plasma group.

Out of the open issues, some will be solved soon (1-2 days), while others
are lower priority and will be worked on after the programme ends.

Repository: https://invent.kde.org/jsuhaas/flatpak-kcm

Following the kdereview instructions, I have also filed a sysadmin ticket
for the same: ⚓ T15811 Moving the Flatpak KCM to Plasma group


Please let me know the next steps to take.

Thanks
Suhaas Joshi