leap_mail.git/src/leap/mail/incoming, branch develop [leap_mail] [feat] Remove senders X-Leap-* headers if the email came with them 2016-08-01T17:08:56+00:00 Ruben Pollan meskio@sindominio.net 2016-08-01T16:51:08+00:00 f39a5284ee208a8ba8194b4317b77114e38d73d9 We use the X-Leap-Signature and X-Leap-Encryption to signal the signature and encryption status of emails. An attacker could add this headers and trick bitmask to believe that the email was signed and/or encrypted. Now we remove this headers from the original email if they are present before adding ours. - Resolves: #7429 
We use the X-Leap-Signature and X-Leap-Encryption to signal the
signature and encryption status of emails. An attacker could add this
headers and trick bitmask to believe that the email was signed and/or
encrypted. Now we remove this headers from the original email if they
are present before adding ours.

- Resolves: #7429
Merge branch 'pixelated/fix_sign_apple_mail' into develop 2016-06-08T14:47:29+00:00 Ruben Pollan meskio@sindominio.net 2016-06-08T14:47:29+00:00 736ea864f0b6e8148ecca7f003f8d6997319c3b3 






Merge branch 'pixelated/fix_test_decrypt_email' into develop
2016-06-07T19:02:17+00:00

Ruben Pollan
meskio@sindominio.net

2016-06-07T19:02:17+00:00

c3ecebbd26637e628047d71cd1ddd9338efbdc60












[refactor] change the check to validate signature from Apple Mail
2016-05-25T19:11:34+00:00

Caio Carrara
ccarrara@thoughtworks.com

2016-05-25T19:11:34+00:00

1a6aa67ea31b4bedb2a59a84659f7e19b385ec12

It changes the way that incoming service checks if a additional
verification is needed to validate signature. The way before was
checking by the type of signature object and calling the verify
signature method if the type is different from OpenPGPKey. However it
could be more readable if we check the type of decrypted message. If
it's a multipart/signed message and not a plain/text we need to verify
the signature because keymanager couldn't do it during the decryption
process.





It changes the way that incoming service checks if a additional
verification is needed to validate signature. The way before was
checking by the type of signature object and calling the verify
signature method if the type is different from OpenPGPKey. However it
could be more readable if we check the type of decrypted message. If
it's a multipart/signed message and not a plain/text we need to verify
the signature because keymanager couldn't do it during the decryption
process.







[tests] add test to validate signature from apple mail
2016-05-24T18:56:00+00:00

Caio Carrara
ccarrara@thoughtworks.com

2016-05-24T18:56:00+00:00

ff75ceecbff76bc9142516c198d726422c050797

This change adds test to validate signature of encrypted email created
by apple mail. It's important to note that apple mail has a specific way
to encrypt signed messages. First it sign the email and then encrypt the
previous signed message. It was also added a message file with the
expected data.





This change adds test to validate signature of encrypted email created
by apple mail. It's important to note that apple mail has a specific way
to encrypt signed messages. First it sign the email and then encrypt the
previous signed message. It was also added a message file with the
expected data.







[feat] Adapt to the new KeyManager API without key types.
2016-05-18T20:58:19+00:00

Ruben Pollan
meskio@sindominio.net

2016-05-03T14:49:38+00:00

a681acde5bdd757ea7be33426660c0cb41cf01d8

- Related: #8031





- Related: #8031







Add not called asserts to testDecryptEmail
2016-05-18T20:17:21+00:00

Thais Siqueira
thais.siqueira@gmail.com

2016-05-18T20:17:21+00:00

736edc16f5ce9d977586d25d60f423ac9d847b15

The functions decryption_error_not_called and add_decrypted_header_called
were not being called on testDecryptEmail. So the asserts was not being
called as well.

This change adds the above functions as callbacks to be called after the
fetch method.





The functions decryption_error_not_called and add_decrypted_header_called
were not being called on testDecryptEmail. So the asserts was not being
called as well.

This change adds the above functions as callbacks to be called after the
fetch method.







[bug] verify signature of encrypted email from Apple Mail
2016-05-16T20:38:46+00:00

Thais Siqueira
thais.siqueira@gmail.com

2016-05-16T20:38:46+00:00

64f1342d0f8ab27a95624b561b52eb8c2003e771

Fix verify signature on encrypted email from Apple Mail, adding a step
to verify signature after decrypt the email because the keymananger
could not verify signature when decrypting it





Fix verify signature on encrypted email from Apple Mail, adding a step
to verify signature after decrypt the email because the keymananger
could not verify signature when decrypting it







[refactor] change IMAPAccount signature
2016-04-15T20:11:18+00:00

Kali Kaneko
kali@leap.se

2016-04-15T20:06:56+00:00

ec0183a792223e6acd8343beb0e5ba1bf3df43b1

for consistency with the previous Account change.





for consistency with the previous Account change.







[bug] Decode attached keys so they are recognized by keymanager
2016-03-24T16:04:41+00:00

Ruben Pollan
meskio@sindominio.net

2016-03-20T18:52:46+00:00

13927ac178c00b729d8d660107f72d878879a5c3

- Resolves: #7977





- Resolves: #7977