Page MenuHome GnuPG
Create Task
Maniphest T7838

GpgOL: resolver chooses wrong certificate to decide if autosecure should happen
Open, NormalPublic
Actions

Description

If the "autosecure" option of GpgOL is set to "on", the decision to not secure because there is no suitable certificate available for one recipient is sometimes wrong.

In a case reported by a customer the log showed that the decision was made based on an expired key for one recipient address despite a valid certificate was available, too.
Reproduced with one disabled and one valid certificate.
The mail was not automatically secured when sending in spite of the available valid certificate. Im the case of manually choosing "Secure", the mail was encrypted to the expected certificate, though.

Corresponding gpgol + gpgme log file created, sender was the Edward-testing account, receiver Teds.

Details

Version
reported for VSD 3.3.2

Event Timeline

ebo created this task.Thu, Oct 2, 2:50 PM
ebo created this object with edit policy "Contributor (Project)".
ebo added a project: vsd34.
timegrid added a subscriber: timegrid.Thu, Oct 2, 3:26 PM
ebo updated the task description. (Show Details)Thu, Oct 2, 3:39 PM
duddeck_rme added a subscriber: duddeck_rme.Mon, Oct 6, 9:32 AM
duddeck_rme removed a subscriber: duddeck_rme.
ebo triaged this task as Normal priority.Thu, Oct 9, 9:32 AM
ebo moved this task from Backlog to Triage on the gpgol board.