#2428: S/MIME opaque signed mails unverified or undisplayed
Comment (by Alain Bench):
{{{
Hello,
On Friday, August 18, 2006 at 17:21:11 +0200, Alain Bench wrote:
> When displaying S/MIME opaque signed mails, of type
> application/x-pkcs7-mime; smime-type=signed-data, [...] there is no
> OpenSSL output, no uppercase "S" in index, Mutt errors "S/MIME
> signature could NOT be verified.", and $beeps
Found this half random one: It is due to rewinding and reading
openssl's stderr, without flushing it before. Apparently some
combinations of systems and circumstances need that, other don't (but it
doesn't hurt).
> If signature is BAD (expired, lacking CA, whatever) [...] the mail
> text does *not* appear.
This is very annoying, so I propose to adopt the double call in
$smime_verify_opaque_command clean solution. This permits to get the
verification error message, and the mail's text. Furthermore
Václav Ovsík proposed nearly the same solution in Debian Bug#420014
"s/mime, openssl supresses a signed message body when verification
fails".
The attached patch-1.5.15.ab.smime_opaque_flush.1 fixes both aspects
of this bug, adding or reordering some fflush()es in smime.c, and adding
a -noverify fallback to contrib/smime.rc
Bye! Alain.
}}}
--
Ticket URL: <http://dev.mutt.org/trac/ticket/2428#comment:>
