Mirrors/chatmail-core
1
0
Fork 0
mirror of https://github.com/chatmail/core.git synced 2026-04-17 21:46:35 +03:00
Code Issues Packages Projects Releases Wiki Activity

feat: enable anonymous OpenPGP key IDs

Browse Source 
This was disabled for interoperability in
098084b9a7,
enabling it back now.
This commit is contained in:
link2xt
2026-03-16 01:54:37 +00:00
parent 822a99ea9c
commit 430cccfd32
4 changed files with 6 additions and 39 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/e2ee.rs
View File

@@ -40,7 +40,6 @@ impl EncryptHelper {
keyring: Vec<SignedPublicKey>, keyring: Vec<SignedPublicKey>,
mail_to_encrypt: MimePart<'static>, mail_to_encrypt: MimePart<'static>,
compress: bool, compress: bool,
anonymous_recipients: bool,
seipd_version: SeipdVersion, seipd_version: SeipdVersion,
) -> Result<String> { ) -> Result<String> {
let sign_key = load_self_secret_key(context).await?; let sign_key = load_self_secret_key(context).await?;
@@ -49,15 +48,8 @@ impl EncryptHelper {
let cursor = Cursor::new(&mut raw_message); let cursor = Cursor::new(&mut raw_message);
mail_to_encrypt.clone().write_part(cursor).ok(); mail_to_encrypt.clone().write_part(cursor).ok();
let ctext = pgp::pk_encrypt( let ctext =
raw_message, pgp::pk_encrypt(raw_message, keyring, sign_key, compress, seipd_version).await?;
keyring,
sign_key,
compress,
anonymous_recipients,
seipd_version,
)
.await?;
Ok(ctext) Ok(ctext)
} }

12
src/mimefactory.rs
View File

@@ -1163,17 +1163,6 @@ impl MimeFactory {
_ => None, _ => None,
}; };
// Do not anonymize OpenPGP recipients.
//
// This is disabled to avoid interoperability problems
// with old core versions <1.160.0 that do not support
// receiving messages with wildcard Key IDs:
// <https://github.com/chatmail/core/issues/7378>
//
// The option should be changed to true
// once new core versions are sufficiently deployed.
let anonymous_recipients = false;
if context.get_config_bool(Config::TestHooks).await? if context.get_config_bool(Config::TestHooks).await?
&& let Some(hook) = &*context.pre_encrypt_mime_hook.lock() && let Some(hook) = &*context.pre_encrypt_mime_hook.lock()
{ {
@@ -1211,7 +1200,6 @@ impl MimeFactory {
encryption_keyring, encryption_keyring,
message, message,
compress, compress,
anonymous_recipients,
seipd_version, seipd_version,
) )
.await? .await?

19
src/pgp.rs
View File

@@ -151,7 +151,6 @@ pub async fn pk_encrypt(
public_keys_for_encryption: Vec<SignedPublicKey>, public_keys_for_encryption: Vec<SignedPublicKey>,
private_key_for_signing: SignedSecretKey, private_key_for_signing: SignedSecretKey,
compress: bool, compress: bool,
anonymous_recipients: bool,
seipd_version: SeipdVersion, seipd_version: SeipdVersion,
) -> Result<String> { ) -> Result<String> {
Handle::current() Handle::current()
@@ -198,11 +197,7 @@ pub async fn pk_encrypt(
let mut msg = msg.seipd_v1(&mut rng, SYMMETRIC_KEY_ALGORITHM); let mut msg = msg.seipd_v1(&mut rng, SYMMETRIC_KEY_ALGORITHM);
for pkey in pkeys { for pkey in pkeys {
if anonymous_recipients { msg.encrypt_to_key_anonymous(&mut rng, &pkey)?;
msg.encrypt_to_key_anonymous(&mut rng, &pkey)?;
} else {
msg.encrypt_to_key(&mut rng, &pkey)?;
}
} }
let hash_algorithm = private_key_for_signing.hash_alg(); let hash_algorithm = private_key_for_signing.hash_alg();
@@ -227,11 +222,7 @@ pub async fn pk_encrypt(
); );
for pkey in pkeys { for pkey in pkeys {
if anonymous_recipients { msg.encrypt_to_key_anonymous(&mut rng, &pkey)?;
msg.encrypt_to_key_anonymous(&mut rng, &pkey)?;
} else {
msg.encrypt_to_key(&mut rng, &pkey)?;
}
} }
let hash_algorithm = private_key_for_signing.hash_alg(); let hash_algorithm = private_key_for_signing.hash_alg();
@@ -707,7 +698,6 @@ mod tests {
/// A ciphertext encrypted to Alice & Bob, signed by Alice. /// A ciphertext encrypted to Alice & Bob, signed by Alice.
async fn ctext_signed() -> &'static String { async fn ctext_signed() -> &'static String {
let anonymous_recipients = true;
CTEXT_SIGNED CTEXT_SIGNED
.get_or_init(|| async { .get_or_init(|| async {
let keyring = vec![KEYS.alice_public.clone(), KEYS.bob_public.clone()]; let keyring = vec![KEYS.alice_public.clone(), KEYS.bob_public.clone()];
@@ -718,7 +708,6 @@ mod tests {
keyring, keyring,
KEYS.alice_secret.clone(), KEYS.alice_secret.clone(),
compress, compress,
anonymous_recipients,
SeipdVersion::V2, SeipdVersion::V2,
) )
.await .await
@@ -905,12 +894,12 @@ mod tests {
let pk_for_encryption = load_self_public_key(alice).await?; let pk_for_encryption = load_self_public_key(alice).await?;
// Encrypt a message, but only to self, not to Bob: // Encrypt a message, but only to self, not to Bob:
let compress = true;
let ctext = pk_encrypt( let ctext = pk_encrypt(
plain, plain,
vec![pk_for_encryption], vec![pk_for_encryption],
KEYS.alice_secret.clone(), KEYS.alice_secret.clone(),
true, compress,
true,
SeipdVersion::V2, SeipdVersion::V2,
) )
.await?; .await?;

2
src/reaction.rs
View File

@@ -1031,13 +1031,11 @@ Content-Transfer-Encoding: base64\r
let alice_secret_key = load_self_secret_key(alice).await?; let alice_secret_key = load_self_secret_key(alice).await?;
let public_keys_for_encryption = vec![alice_public_key, bob_public_key]; let public_keys_for_encryption = vec![alice_public_key, bob_public_key];
let compress = true; let compress = true;
let anonymous_recipients = true;
let encrypted_payload = pk_encrypt( let encrypted_payload = pk_encrypt(
plain_text.as_bytes().to_vec(), plain_text.as_bytes().to_vec(),
public_keys_for_encryption, public_keys_for_encryption,
alice_secret_key, alice_secret_key,
compress, compress,
anonymous_recipients,
SeipdVersion::V2, SeipdVersion::V2,
) )
.await?; .await?;