Allow SKESK packets in encrypted mails

They are not used by Delta Chat now,
but this will allow to start using them in the future.

CHANGELOG.md

@@ -2,8 +2,9 @@
 
 ## untagged
 
-- check that OpenPGP has only PKESK and SEIPD packets
+- check that OpenPGP has only PKESK, SKESK and SEIPD packets
-  ([#323](https://github.com/deltachat/chatmail/pull/323))
+  ([#323](https://github.com/deltachat/chatmail/pull/323),
+   [#324](https://github.com/deltachat/chatmail/pull/324))
 
 - improve filtermail checks for encrypted messages and drop support for unencrypted MDNs
   ([#320](https://github.com/deltachat/chatmail/pull/320))

chatmaild/src/chatmaild/filtermail.py

@@ -18,7 +18,7 @@ from .config import read_config
 def check_openpgp_payload(payload: bytes):
     """Checks the OpenPGP payload.
 
-    OpenPGP payload must consist only of PKESK packets
+    OpenPGP payload must consist only of PKESK and SKESK packets
     terminated by a single SEIPD packet.
 
     Returns True if OpenPGP payload is correct,
@@ -63,9 +63,11 @@ def check_openpgp_payload(payload: bytes):
                 # Last packet should be
                 # Symmetrically Encrypted and Integrity Protected Data Packet (SEIPD)
                 return True
-        elif packet_type_id != 1:
+        elif packet_type_id not in [1, 3]:
-            # All packets except the last one must be
+            # All packets except the last one must be either
             # Public-Key Encrypted Session Key Packet (PKESK)
+            # or
+            # Symmetric-Key Encrypted Session Key Packet (SKESK)
             return False
 
     if i > len(payload):