[exim-dev] [Bug 2189] New: dkim ACL not run for all sigs of …

Top Pagina
Delete this message
Reply to this message
Auteur: admin
Datum:  
Aan: exim-dev
Onderwerp: [exim-dev] [Bug 2189] New: dkim ACL not run for all sigs of a multi-signed message
https://bugs.exim.org/show_bug.cgi?id=2189

            Bug ID: 2189
           Summary: dkim ACL not run for all sigs of a multi-signed
                    message
           Product: Exim
           Version: 4.89
          Hardware: All
                OS: All
            Status: NEW
          Severity: bug
          Priority: medium
         Component: DKIM
          Assignee: tom@???
          Reporter: jgh146exb@???
                CC: exim-dev@???


The DKIM ACL is documented (and implemented) as only being called once per if
there are duplicates in the list given to dkim_verify_signers.

This is convenient for handling domains+identities, and also for listing
"expected to always sign" domains explicitly.

Unfortunately we only get called for one signature, which is bad if there are
several sigs for a given identity (eg. multiple sig algorithms). We have no
visibility in ACL of the others so cannot make decisions based on them in the
Exim config.


Perhaps we should call the ACL once for each signature matching the
de-duplicated
list of identities.

--
You are receiving this mail because:
You are on the CC list for the bug.