From 707843b7da81e794d336eb0b9e69d62b3d6a0e02 Mon Sep 17 00:00:00 2001
From: Dylan Baker <dylan@pnwbakers.com>
Date: Tue, 15 Aug 2017 13:17:43 -0700
Subject: crypto: Don't sign when encrypting

This is a missed difference between pygpgme and gpg, gpg signs by
default when encrypting with an attached signature. Since this isn't
being toggled it's bad, it's a kind of information leak, and increases
the size of the mail for no reason.

NOTE: This is the kind of signature proposed by RFC 2440, which we're
missing tests for.
---
 alot/crypto.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'alot/crypto.py')

diff --git a/alot/crypto.py b/alot/crypto.py
index c73d792c..3c748162 100644
--- a/alot/crypto.py
+++ b/alot/crypto.py
@@ -176,7 +176,8 @@ def encrypt(plaintext_str, keys=None):
     :rtype: str
     """
     ctx = gpg.core.Context(armor=True)
-    out = ctx.encrypt(plaintext_str, recipients=keys, always_trust=True)[0]
+    out = ctx.encrypt(plaintext_str, recipients=keys, sign=False,
+                      always_trust=True)[0]
     return out
 
 
-- 
cgit v1.2.3