Re: [PATCH 9/9] add has: query prefix to search for specific properties

[notmuch-archives.git] / 13 / 7214f5db16b144d3bb9f467790fe98db984ae5

Return-Path: <schnouki@schnouki.net>\r
X-Original-To: notmuch@notmuchmail.org\r
Delivered-To: notmuch@notmuchmail.org\r
Received: from localhost (localhost [127.0.0.1])\r
        by olra.theworths.org (Postfix) with ESMTP id 30542431FC3\r
        for <notmuch@notmuchmail.org>; Fri, 20 Jan 2012 01:39:40 -0800 (PST)\r
X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
X-Spam-Flag: NO\r
X-Spam-Score: -0.1\r
X-Spam-Level: \r
X-Spam-Status: No, score=-0.1 tagged_above=-999 required=5\r
        tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1]\r
        autolearn=disabled\r
Received: from olra.theworths.org ([127.0.0.1])\r
        by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
        with ESMTP id 1PZ2x86XCt99 for <notmuch@notmuchmail.org>;\r
        Fri, 20 Jan 2012 01:39:36 -0800 (PST)\r
Received: from ks3536.kimsufi.com (schnouki.net [87.98.217.222])\r
        by olra.theworths.org (Postfix) with ESMTP id 1C8A1431FAF\r
        for <notmuch@notmuchmail.org>; Fri, 20 Jan 2012 01:39:36 -0800 (PST)\r
Received: from thor.loria.fr (thor.loria.fr [152.81.12.250])\r
        by ks3536.kimsufi.com (Postfix) with ESMTPSA id B64516C000B;\r
        Fri, 20 Jan 2012 10:39:23 +0100 (CET)\r
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=schnouki.net;\r
        s=key-schnouki; t=1327052363;\r
        bh=aYkJin9xklD3p00j4qOwXl+UclLO329MeZytu7vdktM=;\r
        h=From:To:Subject:Date:Message-Id:In-Reply-To:References;\r
        b=MHRIV9bfordwhlt+qVPjp3XbdZjhd8NM/3GlrNkMb60r7l1TqveMbnkUx7zKby+xG\r
        UQm9T1V0j5QJ2C01JB8NFiJfX+i0QaVtaVywrIgmaNHVgKDYxepDROXxbfsMrWCkz7\r
        4cACGpkzifBc04dE3vTlXfdGDCfhJxABuR+Nc3UA=\r
From: Thomas Jost <schnouki@schnouki.net>\r
To: notmuch@notmuchmail.org\r
Subject: [PATCH v4 2/3] Add compatibility with gmime 2.6\r
Date: Fri, 20 Jan 2012 10:39:24 +0100\r
Message-Id: <1327052365-20012-2-git-send-email-schnouki@schnouki.net>\r
X-Mailer: git-send-email 1.7.8.4\r
In-Reply-To: <1327052365-20012-1-git-send-email-schnouki@schnouki.net>\r
References: <87fwfaemuc.fsf@thor.loria.fr>\r
        <1327052365-20012-1-git-send-email-schnouki@schnouki.net>\r
X-BeenThere: notmuch@notmuchmail.org\r
X-Mailman-Version: 2.1.13\r
Precedence: list\r
List-Id: "Use and development of the notmuch mail system."\r
        <notmuch.notmuchmail.org>\r
List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
        <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
List-Post: <mailto:notmuch@notmuchmail.org>\r
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
        <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
X-List-Received-Date: Fri, 20 Jan 2012 09:39:40 -0000\r
\r
There are lots of API changes in gmime 2.6 crypto handling. By adding\r
preprocessor directives, it is however possible to add gmime 2.6 compatibility\r
while preserving compatibility with gmime 2.4 too.\r
\r
This is mostly based on id:"8762i8hrb9.fsf@bookbinder.fernseed.info".\r
\r
This was tested against both gmime 2.6.4 and 2.4.31. With gmime 2.4.31, the\r
crypto tests all work fine (as expected). With gmime 2.6.4, one crypto test is\r
currently broken (signature verification with signer key unavailable), most\r
likely because of a bug in gmime which will hopefully be fixed in a future\r
version.\r
---\r
 mime-node.c      |   57 +++++++++++++++++++++++++++++++-\r
 notmuch-client.h |   30 ++++++++++++++++-\r
 notmuch-reply.c  |    7 ++++\r
 notmuch-show.c   |   95 ++++++++++++++++++++++++++++++++++++++++++++++++++++++\r
 show-message.c   |    4 ++\r
 test/crypto      |    2 +\r
 6 files changed, 191 insertions(+), 4 deletions(-)\r
\r
diff --git a/mime-node.c b/mime-node.c\r
index d26bb44..27077f7 100644\r
--- a/mime-node.c\r
+++ b/mime-node.c\r
@@ -33,7 +33,11 @@ typedef struct mime_node_context {\r
     GMimeMessage *mime_message;\r
 \r
     /* Context provided by the caller. */\r
+#ifdef GMIME_ATLEAST_26\r
+    GMimeCryptoContext *cryptoctx;\r
+#else\r
     GMimeCipherContext *cryptoctx;\r
+#endif\r
     notmuch_bool_t decrypt;\r
 } mime_node_context_t;\r
 \r
@@ -57,8 +61,12 @@ _mime_node_context_free (mime_node_context_t *res)\r
 \r
 notmuch_status_t\r
 mime_node_open (const void *ctx, notmuch_message_t *message,\r
-               GMimeCipherContext *cryptoctx, notmuch_bool_t decrypt,\r
-               mime_node_t **root_out)\r
+#ifdef GMIME_ATLEAST_26\r
+               GMimeCryptoContext *cryptoctx,\r
+#else\r
+               GMimeCipherContext *cryptoctx,\r
+#endif\r
+               notmuch_bool_t decrypt, mime_node_t **root_out)\r
 {\r
     const char *filename = notmuch_message_get_filename (message);\r
     mime_node_context_t *mctx;\r
@@ -112,12 +120,21 @@ DONE:\r
     return status;\r
 }\r
 \r
+#ifdef GMIME_ATLEAST_26\r
+static int\r
+_signature_list_free (GMimeSignatureList **proxy)\r
+{\r
+    g_object_unref (*proxy);\r
+    return 0;\r
+}\r
+#else\r
 static int\r
 _signature_validity_free (GMimeSignatureValidity **proxy)\r
 {\r
     g_mime_signature_validity_free (*proxy);\r
     return 0;\r
 }\r
+#endif\r
 \r
 static mime_node_t *\r
 _mime_node_create (const mime_node_t *parent, GMimeObject *part)\r
@@ -165,11 +182,25 @@ _mime_node_create (const mime_node_t *parent, GMimeObject *part)\r
            GMimeMultipartEncrypted *encrypteddata =\r
                GMIME_MULTIPART_ENCRYPTED (part);\r
            node->decrypt_attempted = TRUE;\r
+#ifdef GMIME_ATLEAST_26\r
+           GMimeDecryptResult *decrypt_result = NULL;\r
+           node->decrypted_child = g_mime_multipart_encrypted_decrypt\r
+               (encrypteddata, node->ctx->cryptoctx, &decrypt_result, &err);\r
+#else\r
            node->decrypted_child = g_mime_multipart_encrypted_decrypt\r
                (encrypteddata, node->ctx->cryptoctx, &err);\r
+#endif\r
            if (node->decrypted_child) {\r
                node->decrypt_success = node->verify_attempted = TRUE;\r
+#ifdef GMIME_ATLEAST_26\r
+               /* This may be NULL if the part is not signed. */\r
+               node->sig_list = g_mime_decrypt_result_get_signatures (decrypt_result);\r
+               if (node->sig_list)\r
+                   g_object_ref (node->sig_list);\r
+               g_object_unref (decrypt_result);\r
+#else\r
                node->sig_validity = g_mime_multipart_encrypted_get_signature_validity (encrypteddata);\r
+#endif\r
            } else {\r
                fprintf (stderr, "Failed to decrypt part: %s\n",\r
                         (err ? err->message : "no error explanation given"));\r
@@ -182,6 +213,15 @@ _mime_node_create (const mime_node_t *parent, GMimeObject *part)\r
                     "(must be exactly 2)\n",\r
                     node->nchildren);\r
        } else {\r
+#ifdef GMIME_ATLEAST_26\r
+           node->sig_list = g_mime_multipart_signed_verify\r
+               (GMIME_MULTIPART_SIGNED (part), node->ctx->cryptoctx, &err);\r
+           node->verify_attempted = TRUE;\r
+\r
+           if (!node->sig_list)\r
+               fprintf (stderr, "Failed to verify signed part: %s\n",\r
+                        (err ? err->message : "no error explanation given"));\r
+#else\r
            /* For some reason the GMimeSignatureValidity returned\r
             * here is not a const (inconsistent with that\r
             * returned by\r
@@ -200,12 +240,25 @@ _mime_node_create (const mime_node_t *parent, GMimeObject *part)\r
                *proxy = sig_validity;\r
                talloc_set_destructor (proxy, _signature_validity_free);\r
            }\r
+#endif\r
        }\r
     }\r
 \r
+#ifdef GMIME_ATLEAST_26\r
+    /* sig_list may be created in both above cases, so we need to\r
+     * cleanly handle it here. */\r
+    if (node->sig_list) {\r
+       GMimeSignatureList **proxy = talloc (node, GMimeSignatureList *);\r
+       *proxy = node->sig_list;\r
+       talloc_set_destructor (proxy, _signature_list_free);\r
+    }\r
+#endif\r
+\r
+#ifndef GMIME_ATLEAST_26\r
     if (node->verify_attempted && !node->sig_validity)\r
        fprintf (stderr, "Failed to verify signed part: %s\n",\r
                 (err ? err->message : "no error explanation given"));\r
+#endif\r
 \r
     if (err)\r
        g_error_free (err);\r
diff --git a/notmuch-client.h b/notmuch-client.h\r
index 62ede28..9c1d383 100644\r
--- a/notmuch-client.h\r
+++ b/notmuch-client.h\r
@@ -30,6 +30,14 @@\r
 \r
 #include <gmime/gmime.h>\r
 \r
+/* GMIME_CHECK_VERSION in gmime 2.4 is not usable from the\r
+ * preprocessor (it calls a runtime function). But since\r
+ * GMIME_MAJOR_VERSION and friends were added in gmime 2.6, we can use\r
+ * these to check the version number. */\r
+#ifdef GMIME_MAJOR_VERSION\r
+#define GMIME_ATLEAST_26\r
+#endif\r
+\r
 #include "notmuch.h"\r
 \r
 /* This is separate from notmuch-private.h because we're trying to\r
@@ -69,7 +77,11 @@ typedef struct notmuch_show_format {\r
     void (*part_start) (GMimeObject *part,\r
                        int *part_count);\r
     void (*part_encstatus) (int status);\r
+#ifdef GMIME_ATLEAST_26\r
+    void (*part_sigstatus) (GMimeSignatureList* siglist);\r
+#else\r
     void (*part_sigstatus) (const GMimeSignatureValidity* validity);\r
+#endif\r
     void (*part_content) (GMimeObject *part);\r
     void (*part_end) (GMimeObject *part);\r
     const char *part_sep;\r
@@ -83,7 +95,11 @@ typedef struct notmuch_show_params {\r
     int entire_thread;\r
     int raw;\r
     int part;\r
+#ifdef GMIME_ATLEAST_26\r
+    GMimeCryptoContext* cryptoctx;\r
+#else\r
     GMimeCipherContext* cryptoctx;\r
+#endif\r
     int decrypt;\r
 } notmuch_show_params_t;\r
 \r
@@ -290,11 +306,17 @@ typedef struct mime_node {\r
 \r
     /* True if signature verification on this part was attempted. */\r
     notmuch_bool_t verify_attempted;\r
+#ifdef GMIME_ATLEAST_26\r
+    /* The list of signatures for signed or encrypted containers. If\r
+     * there are no signatures, this will be NULL. */\r
+    GMimeSignatureList* sig_list;\r
+#else\r
     /* For signed or encrypted containers, the validity of the\r
      * signature.  May be NULL if signature verification failed.  If\r
      * there are simply no signatures, this will be non-NULL with an\r
      * empty signers list. */\r
     const GMimeSignatureValidity *sig_validity;\r
+#endif\r
 \r
     /* Internal: Context inherited from the root iterator. */\r
     struct mime_node_context *ctx;\r
@@ -319,8 +341,12 @@ typedef struct mime_node {\r
  */\r
 notmuch_status_t\r
 mime_node_open (const void *ctx, notmuch_message_t *message,\r
-               GMimeCipherContext *cryptoctx, notmuch_bool_t decrypt,\r
-               mime_node_t **node_out);\r
+#ifdef GMIME_ATLEAST_26\r
+               GMimeCryptoContext *cryptoctx,\r
+#else\r
+               GMimeCipherContext *cryptoctx,\r
+#endif\r
+               notmuch_bool_t decrypt, mime_node_t **node_out);\r
 \r
 /* Return a new MIME node for the requested child part of parent.\r
  * parent will be used as the talloc context for the returned child\r
diff --git a/notmuch-reply.c b/notmuch-reply.c\r
index 0f682db..bf67960 100644\r
--- a/notmuch-reply.c\r
+++ b/notmuch-reply.c\r
@@ -688,15 +688,22 @@ notmuch_reply_command (void *ctx, int argc, char *argv[])\r
        reply_format_func = notmuch_reply_format_default;\r
 \r
     if (decrypt) {\r
+#ifdef GMIME_ATLEAST_26\r
+       /* TODO: GMimePasswordRequestFunc */\r
+       params.cryptoctx = g_mime_gpg_context_new (NULL, "gpg");\r
+#else\r
        GMimeSession* session = g_object_new (g_mime_session_get_type(), NULL);\r
        params.cryptoctx = g_mime_gpg_context_new (session, "gpg");\r
+#endif\r
        if (params.cryptoctx) {\r
            g_mime_gpg_context_set_always_trust ((GMimeGpgContext*) params.cryptoctx, FALSE);\r
            params.decrypt = TRUE;\r
        } else {\r
            fprintf (stderr, "Failed to construct gpg context.\n");\r
        }\r
+#ifndef GMIME_ATLEAST_26\r
        g_object_unref (session);\r
+#endif\r
     }\r
 \r
     config = notmuch_config_open (ctx, NULL, NULL);\r
diff --git a/notmuch-show.c b/notmuch-show.c\r
index 91f566c..190210c 100644\r
--- a/notmuch-show.c\r
+++ b/notmuch-show.c\r
@@ -76,7 +76,11 @@ static void\r
 format_part_encstatus_json (int status);\r
 \r
 static void\r
+#ifdef GMIME_ATLEAST_26\r
+format_part_sigstatus_json (GMimeSignatureList* siglist);\r
+#else\r
 format_part_sigstatus_json (const GMimeSignatureValidity* validity);\r
+#endif\r
 \r
 static void\r
 format_part_content_json (GMimeObject *part);\r
@@ -486,6 +490,21 @@ show_text_part_content (GMimeObject *part, GMimeStream *stream_out)\r
        g_object_unref(stream_filter);\r
 }\r
 \r
+#ifdef GMIME_ATLEAST_26\r
+static const char*\r
+signature_status_to_string (GMimeSignatureStatus x)\r
+{\r
+    switch (x) {\r
+    case GMIME_SIGNATURE_STATUS_GOOD:\r
+       return "good";\r
+    case GMIME_SIGNATURE_STATUS_BAD:\r
+       return "bad";\r
+    case GMIME_SIGNATURE_STATUS_ERROR:\r
+       return "error";\r
+    }\r
+    return "unknown";\r
+}\r
+#else\r
 static const char*\r
 signer_status_to_string (GMimeSignerStatus x)\r
 {\r
@@ -501,6 +520,7 @@ signer_status_to_string (GMimeSignerStatus x)\r
     }\r
     return "unknown";\r
 }\r
+#endif\r
 \r
 static void\r
 format_part_start_text (GMimeObject *part, int *part_count)\r
@@ -592,6 +612,73 @@ format_part_encstatus_json (int status)\r
     printf ("}]");\r
 }\r
 \r
+#ifdef GMIME_ATLEAST_26\r
+static void\r
+format_part_sigstatus_json (GMimeSignatureList *siglist)\r
+{\r
+    printf (", \"sigstatus\": [");\r
+\r
+    if (!siglist) {\r
+       printf ("]");\r
+       return;\r
+    }\r
+\r
+    void *ctx_quote = talloc_new (NULL);\r
+    int i;\r
+    for (i = 0; i < g_mime_signature_list_length (siglist); i++) {\r
+       GMimeSignature *signature = g_mime_signature_list_get_signature (siglist, i);\r
+\r
+       if (i > 0)\r
+           printf (", ");\r
+\r
+       printf ("{");\r
+\r
+       /* status */\r
+       GMimeSignatureStatus status = g_mime_signature_get_status (signature);\r
+       printf ("\"status\": %s",\r
+               json_quote_str (ctx_quote,\r
+                               signature_status_to_string (status)));\r
+\r
+       GMimeCertificate *certificate = g_mime_signature_get_certificate (signature);\r
+       if (status == GMIME_SIGNATURE_STATUS_GOOD) {\r
+           if (certificate)\r
+               printf (", \"fingerprint\": %s", json_quote_str (ctx_quote, g_mime_certificate_get_fingerprint (certificate)));\r
+           /* these dates are seconds since the epoch; should we\r
+            * provide a more human-readable format string? */\r
+           time_t created = g_mime_signature_get_created (signature);\r
+           if (created != -1)\r
+               printf (", \"created\": %d", (int) created);\r
+           time_t expires = g_mime_signature_get_expires (signature);\r
+           if (expires > 0)\r
+               printf (", \"expires\": %d", (int) expires);\r
+           /* output user id only if validity is FULL or ULTIMATE. */\r
+           /* note that gmime is using the term "trust" here, which\r
+            * is WRONG.  It's actually user id "validity". */\r
+           if (certificate) {\r
+               const char *name = g_mime_certificate_get_name (certificate);\r
+               GMimeCertificateTrust trust = g_mime_certificate_get_trust (certificate);\r
+               if (name && (trust == GMIME_CERTIFICATE_TRUST_FULLY || trust == GMIME_CERTIFICATE_TRUST_ULTIMATE))\r
+                   printf (", \"userid\": %s", json_quote_str (ctx_quote, name));\r
+           }\r
+       } else if (certificate) {\r
+           const char *key_id = g_mime_certificate_get_key_id (certificate);\r
+           if (key_id)\r
+               printf (", \"keyid\": %s", json_quote_str (ctx_quote, key_id));\r
+       }\r
+\r
+       GMimeSignatureError errors = g_mime_signature_get_errors (signature);\r
+       if (errors != GMIME_SIGNATURE_ERROR_NONE) {\r
+           printf (", \"errors\": %d", errors);\r
+       }\r
+\r
+       printf ("}");\r
+     }\r
+\r
+    printf ("]");\r
+\r
+    talloc_free (ctx_quote);\r
+}\r
+#else\r
 static void\r
 format_part_sigstatus_json (const GMimeSignatureValidity* validity)\r
 {\r
@@ -652,6 +739,7 @@ format_part_sigstatus_json (const GMimeSignatureValidity* validity)\r
 \r
     talloc_free (ctx_quote);\r
 }\r
+#endif\r
 \r
 static void\r
 format_part_content_json (GMimeObject *part)\r
@@ -990,13 +1078,20 @@ notmuch_show_command (void *ctx, unused (int argc), unused (char *argv[]))\r
        } else if ((STRNCMP_LITERAL (argv[i], "--verify") == 0) ||\r
                   (STRNCMP_LITERAL (argv[i], "--decrypt") == 0)) {\r
            if (params.cryptoctx == NULL) {\r
+#ifdef GMIME_ATLEAST_26\r
+               /* TODO: GMimePasswordRequestFunc */\r
+               if (NULL == (params.cryptoctx = g_mime_gpg_context_new(NULL, "gpg")))\r
+#else\r
                GMimeSession* session = g_object_new(g_mime_session_get_type(), NULL);\r
                if (NULL == (params.cryptoctx = g_mime_gpg_context_new(session, "gpg")))\r
+#endif\r
                    fprintf (stderr, "Failed to construct gpg context.\n");\r
                else\r
                    g_mime_gpg_context_set_always_trust((GMimeGpgContext*)params.cryptoctx, FALSE);\r
+#ifndef GMIME_ATLEAST_26\r
                g_object_unref (session);\r
                session = NULL;\r
+#endif\r
            }\r
            if (STRNCMP_LITERAL (argv[i], "--decrypt") == 0)\r
                params.decrypt = 1;\r
diff --git a/show-message.c b/show-message.c\r
index 8768889..83ecf81 100644\r
--- a/show-message.c\r
+++ b/show-message.c\r
@@ -48,7 +48,11 @@ show_message_part (mime_node_t *node,\r
        format->part_encstatus (node->decrypt_success);\r
 \r
     if (node->verify_attempted && format->part_sigstatus)\r
+#ifdef GMIME_ATLEAST_26\r
+       format->part_sigstatus (node->sig_list);\r
+#else\r
        format->part_sigstatus (node->sig_validity);\r
+#endif\r
 \r
     format->part_content (part);\r
 \r
diff --git a/test/crypto b/test/crypto\r
index 0af4aa8..446a58b 100755\r
--- a/test/crypto\r
+++ b/test/crypto\r
@@ -104,6 +104,8 @@ test_expect_equal \\r
     "$expected"\r
 \r
 test_begin_subtest "signature verification with signer key unavailable"\r
+# this is broken with current versions of gmime-2.6\r
+(ldd $(which notmuch) | grep -Fq gmime-2.6) && test_subtest_known_broken\r
 # move the gnupghome temporarily out of the way\r
 mv "${GNUPGHOME}"{,.bak}\r
 output=$(notmuch show --format=json --verify subject:"test signed message 001" \\r
-- \r
1.7.8.4\r
\r