improve secure-join message detection #473

adbenitez · 2025-01-24T18:54:29Z

be more strict in checking the secure-join special message structure

still missing: arbitrary Subject header is still allowed

link2xt · 2025-01-24T19:48:44Z

CI is failing because of unrelated file formatting, should be fixed by merging #474 first

Would be nice to have at least one test for this fix.

Changelog is managed manually in this repo, so PR needs a changelog entry.

link2xt · 2025-01-24T20:03:11Z

chatmaild/src/chatmaild/filtermail.py

+        return False
+    parts_count = 0
+    for part in message.iter_parts():
+        if parts_count == 0:


Could be flattened to if parts_count > 0: return False, but otherwise the function looks good.

improved the code to be easier to understand that what we are rejecting is when message has parts_count > 1

link2xt · 2025-01-27T14:49:13Z

This needs rebase now that CI on the main is fixed.

link2xt · 2025-01-27T23:39:53Z

Rebased it now

adbenitez requested review from hpk42, link2xt and missytake January 24, 2025 18:54

link2xt reviewed Jan 24, 2025

View reviewed changes

adbenitez force-pushed the adb/patch-secure-join-detection branch from 03039be to b2eaf1a Compare January 24, 2025 22:32

adbenitez added 5 commits January 27, 2025 23:39

improve secure-join message detection

16fbd3f

update changelog

c8b1947

improve is_securejoin()

e47a10e

add test for secure-join: vc-request

1489383

add missing import

704e464

link2xt force-pushed the adb/patch-secure-join-detection branch from b6d49d2 to 704e464 Compare January 27, 2025 23:39

fix ruff check

17656bd

link2xt approved these changes Jan 28, 2025

View reviewed changes

link2xt merged commit 4d915f9 into main Jan 28, 2025
6 checks passed

link2xt deleted the adb/patch-secure-join-detection branch January 28, 2025 04:48

Provide feedback