From mboxrd@z Thu Jan  1 00:00:00 1970
MIME-Version: 1.0
Received: by 10.96.157.163 with HTTP; Sat, 10 May 2014 09:54:58 -0700 (PDT)
In-Reply-To: <1399708417-sup-4178@ultralap.site>
References: <1399708417-sup-4178@ultralap.site>
Date: Sat, 10 May 2014 18:54:58 +0200
Message-ID: <CABKe4Msvczo6zDWpBCT9OZspuNObDpVdeTZ0qSDrR4Zv9djDXQ@mail.gmail.com>
Subject: Re: [sup-devel] check keys before sending
From: Gaute Hope <eg@gaute.vetsj.com>
To: Sup developer discussion <sup-devel@rubyforge.org>
Content-Type: multipart/alternative; boundary=f46d0432b276043a7304f90e9318

--f46d0432b276043a7304f90e9318
Content-Type: text/plain; charset=UTF-8

I think this can be included if you test and verify the patch. Definetely
very useful.


On Sat, May 10, 2014 at 10:23 AM, Troy Sankey <sankeytms@gmail.com> wrote:

> Hi sup developers,
>
> Recently I sent an encrypted message to a group of recipients, thinking
> that all their keys were still valid.  However, one of them had an
> expired key, so the message was not encrypted to that recipient and he
> could not read it.
>
> I want sup to prompt the user about potentially invalid keys before
> sending a message.  I think the code will look something like this:
>
>
> diff --git a/lib/sup/crypto.rb b/lib/sup/crypto.rb
> index fd8f824..88ae3cc 100644
> --- a/lib/sup/crypto.rb
> +++ b/lib/sup/crypto.rb
> @@ -167,6 +167,14 @@ EOS
>                                 {:operation => "encrypt", :options =>
> gpg_opts}) || gpg_opts
>      recipients = to + [from]
>      recipients = HookManager.run("gpg-expand-keys", { :recipients =>
> recipients }) || recipients
> +
> +    # make sure all recipients can be encrypted-to
> +    recipients.each do |recipient|
> +      if GPGME::Key.find(:public, recipient).length == 0 and
> !BufferManager.ask_yes_or_no("Could not encrypt to #{recipient}. Really
> send?")
> +        raise Error, "Send message cancelled."
> +      end
> +    end
> +
>      begin
>        if GPGME.respond_to?('encrypt')
>          cipher = GPGME.encrypt(recipients, format_payload(payload),
> gpg_opts)
>
>
> I have not tested this patch, so if it looks wrong then it probably is!
> Does anybody have any thoughts on this feature?
>
> Troy
>
> _______________________________________________
> Sup-devel mailing list
> Sup-devel@rubyforge.org
> http://rubyforge.org/mailman/listinfo/sup-devel
>
>

--f46d0432b276043a7304f90e9318
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">I think this can be included if you test and verify the pa=
tch. Definetely very useful.<br></div><div class=3D"gmail_extra"><br><br><d=
iv class=3D"gmail_quote">On Sat, May 10, 2014 at 10:23 AM, Troy Sankey <spa=
n dir=3D"ltr">&lt;<a href=3D"mailto:sankeytms@gmail.com" target=3D"_blank">=
sankeytms@gmail.com</a>&gt;</span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex">Hi sup developers,<br>
<br>
Recently I sent an encrypted message to a group of recipients, thinking<br>
that all their keys were still valid. =C2=A0However, one of them had an<br>
expired key, so the message was not encrypted to that recipient and he<br>
could not read it.<br>
<br>
I want sup to prompt the user about potentially invalid keys before<br>
sending a message. =C2=A0I think the code will look something like this:<br=
>
<br>
<br>
diff --git a/lib/sup/crypto.rb b/lib/sup/crypto.rb<br>
index fd8f824..88ae3cc 100644<br>
--- a/lib/sup/crypto.rb<br>
+++ b/lib/sup/crypto.rb<br>
@@ -167,6 +167,14 @@ EOS<br>
=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=
=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0 {:operation =3D&gt; &quot;encrypt&qu=
ot;, :options =3D&gt; gpg_opts}) || gpg_opts<br>
=C2=A0 =C2=A0 =C2=A0recipients =3D to + [from]<br>
=C2=A0 =C2=A0 =C2=A0recipients =3D HookManager.run(&quot;gpg-expand-keys&qu=
ot;, { :recipients =3D&gt; recipients }) || recipients<br>
+<br>
+ =C2=A0 =C2=A0# make sure all recipients can be encrypted-to<br>
+ =C2=A0 =C2=A0recipients.each do |recipient|<br>
+ =C2=A0 =C2=A0 =C2=A0if GPGME::Key.find(:public, recipient).length =3D=3D =
0 and !BufferManager.ask_yes_or_no(&quot;Could not encrypt to #{recipient}.=
 Really send?&quot;)<br>
+ =C2=A0 =C2=A0 =C2=A0 =C2=A0raise Error, &quot;Send message cancelled.&quo=
t;<br>
+ =C2=A0 =C2=A0 =C2=A0end<br>
+ =C2=A0 =C2=A0end<br>
+<br>
=C2=A0 =C2=A0 =C2=A0begin<br>
=C2=A0 =C2=A0 =C2=A0 =C2=A0if GPGME.respond_to?(&#39;encrypt&#39;)<br>
=C2=A0 =C2=A0 =C2=A0 =C2=A0 =C2=A0cipher =3D GPGME.encrypt(recipients, form=
at_payload(payload), gpg_opts)<br>
<br>
<br>
I have not tested this patch, so if it looks wrong then it probably is!<br>
Does anybody have any thoughts on this feature?<br>
<span class=3D"HOEnZb"><font color=3D"#888888"><br>
Troy<br>
</font></span><br>_______________________________________________<br>
Sup-devel mailing list<br>
<a href=3D"mailto:Sup-devel@rubyforge.org">Sup-devel@rubyforge.org</a><br>
<a href=3D"http://rubyforge.org/mailman/listinfo/sup-devel" target=3D"_blan=
k">http://rubyforge.org/mailman/listinfo/sup-devel</a><br>
<br></blockquote></div><br></div>

--f46d0432b276043a7304f90e9318--