[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#37025: [found the culprit]

From: Uwe Brauer
Subject: bug#37025: [found the culprit]
Date: Thu, 15 Aug 2019 09:38:37 +0200
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/27.0.50 (gnu/linux)

>>> "TL" == Teemu Likonen <address@hidden> writes:

   > Glenn Morris [2019-08-14T21:39:37-04] wrote:
   >> Teemu Likonen wrote:
   >>> Thanks for the report and bisecting. I think we can fix the bug by
   >>> including "--sender" option only with openpgp protocol (i.e. gpg).

   > Because --sender is an OpenPGP thing (gpg) it is logical to narrow its
   > use to that protocol only. Here's the first fix:

A couple of comments. 

    1. A quick fix. Since your patch is not applied. I tried to change
       my setting. To my surprise
       (mml-secure-smime-sign-with-sender nil)
       *did not help*, although I am using smime not opengpg.
       (mml-secure-openpgp-sign-with-sender nil)
       *did help*.
       This should be mentioned in the documentation (NEWS and in the
       relevant doc strings)

    2. I am not sure what will happen with older pgp versions. A quick
       fix would be to set the above variable to nil

    3. I think this issue should be discussed on the devel list.

    4. Who and when your patch will be applied?


   >> gpg --sender
   -> gpg: invalid option "--sender"  # RHEL 7.6 with gpg 2.0.22
   >> The option seems to only by present since gpg 2.1.15.
   >> https://gnupg.org/download/release_notes.html
   >> Ideally you should test if it is supported or not.

   > So there should also be version checking in epg.el's epg-start-sign and
   > epg-start-encrypt functions (or somewhere). Currently I don't know if
   > there are useful infrastructure in epg for dealing with different
   > versions of gpg.

Given that circumstance, is your change really worth the effort?

Attachment: smime.p7s
Description: S/MIME cryptographic signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]