https://bugs.exim.org/show_bug.cgi?id=2189
Bug ID: 2189
Summary: dkim ACL not run for all sigs of a multi-signed
message
Product: Exim
Version: 4.89
Hardware: All
OS: All
Status: NEW
Severity: bug
Priority: medium
Component: DKIM
Assignee: tom@???
Reporter: jgh146exb@???
CC: exim-dev@???
The DKIM ACL is documented (and implemented) as only being called once per if
there are duplicates in the list given to dkim_verify_signers.
This is convenient for handling domains+identities, and also for listing
"expected to always sign" domains explicitly.
Unfortunately we only get called for one signature, which is bad if there are
several sigs for a given identity (eg. multiple sig algorithms). We have no
visibility in ACL of the others so cannot make decisions based on them in the
Exim config.
Perhaps we should call the ACL once for each signature matching the
de-duplicated
list of identities.
--
You are receiving this mail because:
You are on the CC list for the bug.
