Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messages
Open, NormalPublic
Actions

Assigned To

None

Authored By

	• ebo
	Fri, Feb 20, 3:59 PM

Description

Though we use internally "fingerprints" of S/MIME certificates, those are nothing you can reliably identify a certificate with. They are defined by issuer and serial number.

Therefore we should identify them in the messages to the user with these.
Especially if the certificate is not available as at that point no "fingerprint" can be calculated.
And without Issues and S/N the certificate can not be searched for.

This information can be seen with --debug x509:

gpgsm --debug x509 --verify <signed-message>

Related Objects
Search...

		Status	Assigned	Task
		Open	None	T8095 Kleopatra: parent ticket for improvements of verification result messages
		Open	None	T8116 Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messages

Event Timeline

• ebo triaged this task as Normal priority.Fri, Feb 20, 3:59 PM

• ebo created this task.

• ebo created this object with edit policy "Contributor (Project)".

Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messagesOpen, NormalPublicActions

Description

Related ObjectsSearch...

Event Timeline

Draft: Kleopatra: For S/MIME verification do not use "fingerprint" in messages
Open, NormalPublic
Actions

Related Objects
Search...