1 Return-Path: <jrollins@finestructure.net>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by olra.theworths.org (Postfix) with ESMTP id BFAF0431FB6
\r
6 for <notmuch@notmuchmail.org>; Sat, 17 Jan 2015 14:55:03 -0800 (PST)
\r
7 X-Virus-Scanned: Debian amavisd-new at olra.theworths.org
\r
11 X-Spam-Status: No, score=0.138 tagged_above=-999 required=5
\r
12 tests=[DNS_FROM_AHBL_RHSBL=2.438, RCVD_IN_DNSWL_MED=-2.3]
\r
14 Received: from olra.theworths.org ([127.0.0.1])
\r
15 by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)
\r
16 with ESMTP id QK1BsjEm9z01 for <notmuch@notmuchmail.org>;
\r
17 Sat, 17 Jan 2015 14:55:00 -0800 (PST)
\r
18 Received: from outgoing-mail.its.caltech.edu (outgoing-mail.its.caltech.edu
\r
20 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
\r
21 (No client certificate requested)
\r
22 by olra.theworths.org (Postfix) with ESMTPS id 8ED34431FAF
\r
23 for <notmuch@notmuchmail.org>; Sat, 17 Jan 2015 14:55:00 -0800 (PST)
\r
24 Received: from smtp02.caltech.edu (localhost [127.0.0.1])
\r
25 by filter-return (Postfix) with ESMTP id A381E6C0469;
\r
26 Sat, 17 Jan 2015 14:54:58 -0800 (PST)
\r
27 X-Spam-Scanned: at Caltech-IMSS on smtp02.caltech.edu by amavisd-new
\r
28 Received: from finestructure.net (cpe-104-173-172-86.socal.res.rr.com
\r
30 (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits))
\r
31 (No client certificate requested) (Authenticated sender: jrollins)
\r
32 by smtp-server.its.caltech.edu (Postfix) with ESMTPSA id 250476C0391;
\r
33 Sat, 17 Jan 2015 14:54:58 -0800 (PST)
\r
34 Received: by finestructure.net (Postfix, from userid 1000)
\r
35 id E211D60142; Sat, 17 Jan 2015 14:54:57 -0800 (PST)
\r
36 From: Jameson Graef Rollins <jrollins@finestructure.net>
\r
37 To: David Bremner <david@tethera.net>, Notmuch Mail <notmuch@notmuchmail.org>
\r
38 Subject: Re: [PATCH] test: initial tests for smime
\r
39 In-Reply-To: <87sif99h3c.fsf@maritornes.cs.unb.ca>
\r
40 References: <87wq4ltbma.fsf@servo.finestructure.net>
\r
41 <1421530691-14060-1-git-send-email-david@tethera.net>
\r
42 <87twzpt6e8.fsf@servo.finestructure.net>
\r
43 <87sif99h3c.fsf@maritornes.cs.unb.ca>
\r
44 User-Agent: Notmuch/0.19+28~g3915564 (http://notmuchmail.org) Emacs/24.4.1
\r
45 (x86_64-pc-linux-gnu)
\r
46 Date: Sat, 17 Jan 2015 14:54:54 -0800
\r
47 Message-ID: <87r3utt3up.fsf@servo.finestructure.net>
\r
49 Content-Type: multipart/signed; boundary="=-=-=";
\r
50 micalg=pgp-sha256; protocol="application/pgp-signature"
\r
51 X-BeenThere: notmuch@notmuchmail.org
\r
52 X-Mailman-Version: 2.1.13
\r
54 List-Id: "Use and development of the notmuch mail system."
\r
55 <notmuch.notmuchmail.org>
\r
56 List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,
\r
57 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
58 List-Archive: <http://notmuchmail.org/pipermail/notmuch>
\r
59 List-Post: <mailto:notmuch@notmuchmail.org>
\r
60 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
61 List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,
\r
62 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
63 X-List-Received-Date: Sat, 17 Jan 2015 22:55:03 -0000
\r
66 Content-Type: text/plain
\r
68 On Sat, Jan 17 2015, David Bremner <david@tethera.net> wrote:
\r
69 >> But do we really need to test the message output of openssl? It seems
\r
70 >> like it's broken, and if it ever gets fixed we'll need to change this
\r
73 > I think it's not so much broken as "canonical". There is some discussion
\r
74 > in the openssl-smime man page that pointed me to RFC5751
\r
77 > MIME entities of major type "text" MUST have both their line endings
\r
78 > and character set canonicalized. The line ending MUST be the pair of
\r
79 > characters <CR><LF>
\r
81 Interesting, and oh well. Not going to fall down that rabbit hole!
\r
83 >> But all we really care about is that openssl is properly verifying the
\r
84 >> message, yes? Why not just test that and forget about the rest of
\r
85 >> openssl's output?
\r
87 > Maybe it doesn't add too much as long as the message is using the "clear
\r
88 > signed" multipart/signed format. On the other hand there is an opaque
\r
89 > signed format (application/pkcs7-mime with Signeddata) too, where it
\r
90 > would be interesting to check for mangling of the text. Similarly, when
\r
91 > we add a similar test for encryption, I think we do want to check the
\r
92 > content, so we'll have to figure this out at some point.
\r
94 But at any point are we using the output of the message piped through
\r
95 openssl? Does gmime (possibly via gpgsm) actually pipe the message
\r
96 through openssl before further parsing it? If so, then I guess we do
\r
97 care about what openssl does to the original message. If not, then I'm
\r
98 still not sure we care.
\r
103 Content-Type: application/pgp-signature; name="signature.asc"
\r
105 -----BEGIN PGP SIGNATURE-----
\r
108 iQIcBAEBCAAGBQJUuug+AAoJEO00zqvie6q8ZYsQAJe8WdWAjVbqWIBM//b0FXL7
\r
109 t2i9Jc658NyukDVjOyk0tC3ZL/nktupl1dg8Awn5ddTPNxjB8XVgAur1uXXZqwIS
\r
110 i6rJyQEPoLp/FyHKwr0ox+6Wtvoq6fl4nMy15nUexsGo1hFYgCnop9rWu786aRd+
\r
111 GOfMhEqk6NjxOygCMsYu+uBlnX0iusQ6BlkTnBf0h/2ULbajebNtNWtw4lfRspl3
\r
112 GkU9vTQvyQEXzcZZnxYswBWxtx3JZbni0dZvDhJWQm0bLY7pqyWPH+2e8iS/RDdL
\r
113 BbvIUVmaIHIHoFUkPQdWH/Nq1U0yHwjxEYsTpmJxmQav5+vu7SLa2RNOIDx7ovbx
\r
114 HRW1t0TUgNtN1Yy3bqq0T8lmraln7a1+Egwn9O+Ki9dNXidonInJwNyupBLwkaJc
\r
115 EGdl0ve3RsVPccfA4WLaxfG5S6odRgMdfB/HXmhAsDsAhO6vcjgJ5VsEBYES39f6
\r
116 OJRqc0g8j59iUk6FxJRs6b5nz/KmGUf5r0FV7xA7AmOh45o8w7sP07kq1LTbPHB6
\r
117 f5qassQc5LPjBgqmAhtc9ntWsmzFVE/E04WLGCId03AcStLp3GrqrICnfTXd3wXC
\r
118 3pU4hwXdW5ig9SEQaPqEkfsVLIuLLEP4qpcYfQKC7iotv1QE4Q2VIueYv5jWw41s
\r
119 1Rk/FI5SvJDnWaBQSG0g
\r
121 -----END PGP SIGNATURE-----
\r
projects / notmuch-archives.git / blob