bug#67931: [PATCH] Use S/MIME key from content for mail signing via Open

bug-gnu-emacs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#67931: [PATCH] Use S/MIME key from content for mail signing via Open

From:	Stefan Kangas
Subject:	bug#67931: [PATCH] Use S/MIME key from content for mail signing via OpenSSL
Date:	Thu, 11 Jan 2024 13:05:46 -0800

Illia Ostapyshyn <illia@yshyn.com> writes:

> * Bug
>
> mml-smime-openssl-sign always takes the cdar of smime-keys, resulting in
> keyfile parameter of the #secure tag being ignored.  Hence, only the
> first entry of smime-keys is used, regardless of the mail contents or
> sender address.
>
> * Fix
>
> The relevant information (returned from mml-smime-openssl-sign-query) is
> already in the cont alist passed to mml-smime-openssl-sign, just use
> that instead.

Thanks for the patch.

Could you please provide a way to reproduce the issue that you're
seeing?  We don't have anyone onboard that is deeply familiar with this
code, I think, and it is security-sensitive.  Therefore, I'd like to be
careful when making changes here.

If we could have unit tests for this, it would be even better, of course.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#67931: [PATCH] Use S/MIME key from content for mail signing via OpenSSL, Stefan Kangas <=

Prev by Date: bug#66554: [PATCH] Add the public API of Compat to the core
Next by Date: bug#67611: [PATCH] Add a Pcase pattern `cl-lambda` equivalent to `cl-destructuring-bind`
Previous by thread: bug#67955: [PATCH] Add use-package-vc-prefer-newest user option
Next by thread: bug#67611: [PATCH] Add a Pcase pattern `cl-lambda` equivalent to `cl-destructuring-bind`
Index(es):
- Date
- Thread