GPG signature invalid
Categories
(MailNews Core :: Security: OpenPGP, defect)
Tracking
(Not tracked)
People
(Reporter: bartsmink, Unassigned)
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:86.0) Gecko/20100101 Firefox/86.0
Steps to reproduce:
Hi,
When sending an email that is signed with a PGP signature to a schleuder mailinglist, I received an error bad signature. This means somewhere in the email there is an error. As Thunderbird does not use the default syntax of -----BEGIN PGP SIGNED MESSAGE----- I find it hard to debug this issue.
I found a sed command on topicbox to extract PGP contents from an email, but it did not run on linux, I guess it is a different syntax. So far I have failed to verify it manually what goes wrong.
I tried the last nightly, but the same issues happens as in the stable version of 78.8.1.
Actual results:
When sending an email to my own email address, on opening it the first time it shows an invalid digital signature. When opening it the second time it shows a valid digital signature, with the exact same source of the email.
When sending to a schleuder pgp encrypted mailinglist it gives an indication that the signature is bad.
Expected results:
Emails received should have a valid signature. Schleuder should say the signature is valid. And there should be a valid way to extract this data manually to verify it with the GPG command line utility.
|
||
Comment 1•4 years ago
|
||
support issue?
|
||
Comment 2•4 years ago
|
||
Please provide a testcase to reproduce.
(In reply to Andre Klapper from comment #2)
Please provide a testcase to reproduce.
To reproduce:
- setup pgp
- send an email with signature, without encryption, without public key attached
- go to the sent tab
- click the sent email
- see an invalid pgp signature
Then to see the valid signature
6. click another email
7. click the same sent email again and see a valid signature.
|
|
||
Updated•4 years ago
|
Description
•