Re: PGP/MIME signature verification

diff --git a/9f/d0d439df099047718861cae067ea9ee148685f b/9f/d0d439df099047718861cae067ea9ee148685f
new file mode 100644 (file)
index 0000000..cb6f1e3
--- /dev/null
+++ b/9f/d0d439df099047718861cae067ea9ee148685f
@@ -0,0 +1,120 @@
+Return-Path: <jrollins@finestructure.net>\r
+X-Original-To: notmuch@notmuchmail.org\r
+Delivered-To: notmuch@notmuchmail.org\r
+Received: from localhost (localhost [127.0.0.1])\r
+       by olra.theworths.org (Postfix) with ESMTP id 81982431FB6\r
+       for <notmuch@notmuchmail.org>; Mon, 20 Dec 2010 10:22:30 -0800 (PST)\r
+X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
+X-Spam-Flag: NO\r
+X-Spam-Score: -2.29\r
+X-Spam-Level: \r
+X-Spam-Status: No, score=-2.29 tagged_above=-999 required=5\r
+       tests=[RCVD_IN_DNSWL_MED=-2.3, T_MIME_NO_TEXT=0.01] autolearn=disabled\r
+Received: from olra.theworths.org ([127.0.0.1])\r
+       by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
+       with ESMTP id ETosvHdxrTlK for <notmuch@notmuchmail.org>;\r
+       Mon, 20 Dec 2010 10:22:29 -0800 (PST)\r
+Received: from brinza.cc.columbia.edu (brinza.cc.columbia.edu [128.59.29.8])\r
+       by olra.theworths.org (Postfix) with ESMTP id 9AABD431FB5\r
+       for <notmuch@notmuchmail.org>; Mon, 20 Dec 2010 10:22:29 -0800 (PST)\r
+Received: from servo.finestructure.net (cpe-74-66-82-137.nyc.res.rr.com\r
+       [74.66.82.137])\r
+       (user=jgr2110 author=jrollins@finestructure.net mech=PLAIN bits=0)\r
+       by brinza.cc.columbia.edu (8.14.4/8.14.3) with ESMTP id oBKIMB3R009561\r
+       (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NOT);\r
+       Mon, 20 Dec 2010 13:22:27 -0500 (EST)\r
+Received: from jrollins by servo.finestructure.net with local (Exim 4.72)\r
+       (envelope-from <jrollins@finestructure.net>)\r
+       id 1PUkN9-0002Md-1n; Mon, 20 Dec 2010 13:22:11 -0500\r
+From: Jameson Rollins <jrollins@finestructure.net>\r
+To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>,\r
+       notmuch <notmuch@notmuchmail.org>\r
+Subject: Re: PGP/MIME signature verification\r
+In-Reply-To: <4CF15D67.1070904@fifthhorseman.net>\r
+References: <4CF15D67.1070904@fifthhorseman.net>\r
+User-Agent: Notmuch/0.5 (http://notmuchmail.org) Emacs/23.2.1\r
+       (i486-pc-linux-gnu)\r
+Date: Mon, 20 Dec 2010 13:22:07 -0500\r
+Message-ID: <87aak08fu8.fsf@servo.finestructure.net>\r
+MIME-Version: 1.0\r
+Content-Type: multipart/signed; boundary="=-=-=";\r
+       micalg=pgp-sha256; protocol="application/pgp-signature"\r
+X-No-Spam-Score: Local\r
+X-Scanned-By: MIMEDefang 2.68 on 128.59.29.8\r
+X-BeenThere: notmuch@notmuchmail.org\r
+X-Mailman-Version: 2.1.13\r
+Precedence: list\r
+List-Id: "Use and development of the notmuch mail system."\r
+       <notmuch.notmuchmail.org>\r
+List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
+List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
+List-Post: <mailto:notmuch@notmuchmail.org>\r
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
+List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
+X-List-Received-Date: Mon, 20 Dec 2010 18:22:30 -0000\r
+\r
+--=-=-=\r
+Content-Transfer-Encoding: quoted-printable\r
+\r
+On Sat, 27 Nov 2010 14:35:03 -0500, Daniel Kahn Gillmor <dkg@fifthhorseman.=\r
+net> wrote:\r
+> the signature-verification branch on my git repo [0] contains functional\r
+> PGP/MIME signature verification if you supply the --verify argument to\r
+>=20\r
+>  notmuch show --format=3Djson\r
+>=20\r
+> It relies on gpg being in the path, and on the user having the signer's\r
+> key in their gnupg keyring.\r
+\r
+I was able to merge dkg's signature-verification branch on top of\r
+cworth's current master head (b3caef1f) with only a tiny\r
+easily-resolvable conflict.  It seems to work exactly as advertised, and\r
+I wholeheartedly approve and endorse this patch set for inclusion\r
+upstream:\r
+\r
+Approved-and-Tested-By: Jameson Rollins <jrollins@finestructure.net>\r
+\r
+I have pushed a merged "signature-verification" branch to my repo, along\r
+with a single commit to fix an errant newline in the json --verify\r
+output:\r
+\r
+git://finestructure.net/notmuch\r
+\r
+Carl: can you give an indication of whether or not you intend to\r
+ultimately accept this patch set?  If so, I would like to start work on\r
+representing signature verification information in the emacs UI.  I want\r
+to make sure that we're good with this effort first, though.\r
+\r
+We should probably also start a conversation about how best to represent\r
+the signature verification info.  I'll bring that up in a separate\r
+thread, though.\r
+\r
+dkg: again, great work on this!  Thanks!\r
+\r
+Next up: decrypting!\r
+\r
+jamie.\r
+\r
+--=-=-=\r
+Content-Type: application/pgp-signature\r
+\r
+-----BEGIN PGP SIGNATURE-----\r
+Version: GnuPG v1.4.10 (GNU/Linux)\r
+\r
+iQIcBAEBCAAGBQJND57QAAoJEO00zqvie6q8B+EP/3OkJIhqCozdbkoQLmntUC+W\r
+tuDCh6NNV7D3JuNSmptRqJEX6mpooOMzFHwE7rt4yBdl8K+w03Vvit44HkxjS/XB\r
+6CuHgYe2AHreWV2aLUUd9zFwQNnbXi378MgoyhXsuo7bmeTyn+NhhoKNVWrtXAqx\r
+8lhLViJxFtOPqzq3ugdYJXLxwN9Pgx6b7+A9lqLXxv0EEg2s/7xyILzTx25Einxl\r
+6X0kK9A14giJN6H9DD5RyOXfdR0xNpLj1WwURXy3gnb4X434rZclxfWq6AAld2c9\r
+k7q/V6PsoHKismv7qgAwnR/B4LOmBZEue2Bn2y9m9NkDXf/0mfsxtaWyr6AlFDuW\r
+4X611/NForpsY8IBa/s063gAvRERgQFZ4PhFYKr04XipVAtroofg76rcdX/8zunN\r
+5t2NRDdVpw6NXK7emkx+m7byxpscuImH/FhIxXoePKD6lvoSJRqprNYXb5jPXwTz\r
+wQ3RP736iowKf0f2XS5SMGfnhjfIWaVUWRsidveJUtxxebVPxgnvu3qHhoj2Y6XX\r
+KVvkb6YqAqbLkWExF42ZWpbe3UvlXYbVe6aIFd8/H/qv7W+8uTlU3sjJ0w0PiEwH\r
+3pS9qgbk6hsfK84cUdBdg9xsqTcNC4UenlUNV2hbGUU911lZltU+FCzfODy6Jco1\r
+vhJy3AQ26iYTWCOmO3iL\r
+=OT6k\r
+-----END PGP SIGNATURE-----\r
+--=-=-=--\r