Re: Smime signature verification in Notmuch - Emacs

diff --git a/b6/21af7312bf365a400bd70887c93f2d09a6b9e5 b/b6/21af7312bf365a400bd70887c93f2d09a6b9e5
new file mode 100644 (file)
index 0000000..1897ce2
--- /dev/null
+++ b/b6/21af7312bf365a400bd70887c93f2d09a6b9e5
@@ -0,0 +1,125 @@
+Return-Path: <dkg@fifthhorseman.net>\r
+X-Original-To: notmuch@notmuchmail.org\r
+Delivered-To: notmuch@notmuchmail.org\r
+Received: from localhost (localhost [127.0.0.1])\r
+       by olra.theworths.org (Postfix) with ESMTP id 13DC7431FBF\r
+       for <notmuch@notmuchmail.org>; Tue, 11 Mar 2014 11:03:20 -0700 (PDT)\r
+X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
+X-Spam-Flag: NO\r
+X-Spam-Score: 0\r
+X-Spam-Level: \r
+X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]\r
+       autolearn=disabled\r
+Received: from olra.theworths.org ([127.0.0.1])\r
+       by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
+       with ESMTP id 1gK+qQn9-Oqb for <notmuch@notmuchmail.org>;\r
+       Tue, 11 Mar 2014 11:03:12 -0700 (PDT)\r
+Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])\r
+       by olra.theworths.org (Postfix) with ESMTP id 69EA6431FBD\r
+       for <notmuch@notmuchmail.org>; Tue, 11 Mar 2014 11:03:12 -0700 (PDT)\r
+Received: from [10.70.10.55] (unknown [38.109.115.130])\r
+       by che.mayfirst.org (Postfix) with ESMTPSA id 708EDF984;\r
+       Tue, 11 Mar 2014 14:03:08 -0400 (EDT)\r
+Message-ID: <531F4FDD.6000506@fifthhorseman.net>\r
+Date: Tue, 11 Mar 2014 14:03:09 -0400\r
+From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>\r
+User-Agent: Mozilla/5.0 (X11; Linux x86_64;\r
+       rv:24.0) Gecko/20100101 Icedove/24.2.0\r
+MIME-Version: 1.0\r
+To: Baptiste <bateast@bat.fr.eu.org>, notmuch@notmuchmail.org\r
+Subject: Re: Smime signature verification in Notmuch - Emacs\r
+References: <87y50r42do.fsf@bat.fr.eu.org>\r
+In-Reply-To: <87y50r42do.fsf@bat.fr.eu.org>\r
+X-Enigmail-Version: 1.6\r
+Content-Type: multipart/signed; micalg=pgp-sha512;\r
+       protocol="application/pgp-signature";\r
+       boundary="9GtqB0nCORLb3dPEnV7SGNs5BUj58uoxD"\r
+X-BeenThere: notmuch@notmuchmail.org\r
+X-Mailman-Version: 2.1.13\r
+Precedence: list\r
+List-Id: "Use and development of the notmuch mail system."\r
+       <notmuch.notmuchmail.org>\r
+List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
+List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
+List-Post: <mailto:notmuch@notmuchmail.org>\r
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
+List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
+X-List-Received-Date: Tue, 11 Mar 2014 18:03:20 -0000\r
+\r
+This is an OpenPGP/MIME signed message (RFC 4880 and 3156)\r
+--9GtqB0nCORLb3dPEnV7SGNs5BUj58uoxD\r
+Content-Type: text/plain; charset=UTF-8\r
+Content-Transfer-Encoding: quoted-printable\r
+\r
+Hi Baptiste--\r
+\r
+On 03/03/2014 12:29 PM, Baptiste wrote:\r
+> I made a little |Emacs| advice for |notmuch-show-insert-part-multipart/=\r
+signed|=20\r
+> to deal with mails signed with /SMIME/ mechanism. It calls /openssl/ to=\r
+ create=20\r
+> missing :sigstatus.\r
+>=20\r
+> Here it is : https://github.com/bateast/notmuch-openssl\r
+> (it is an org-file, in |Emacs|, use /org-babel-tangle/ on it to extract=\r
+ the .el).\r
+>=20\r
+> You are welcomed to make any comment.\r
+\r
+i'm interested in the functionality you're describing, but i confess i'm\r
+confused by the syntax of your e-mail and the structure of the file in\r
+question, as well as how you think it should be related to the notmuch\r
+project.  This might all be obvious to other people; sorry for my confusi=\r
+on!\r
+\r
+Do you think this should be integrated into notmuch and shipped with it?\r
+ if so, can you provide it as a standard patch for folks here to review?\r
+\r
+Some questions worth documenting if possible:\r
+\r
+ * do you expect this to work for S/MIME encrypted messages as well as\r
+S/MIME signed messages?\r
+\r
+ * is there a reason to do this only in emacs?  PGP/MIME-signed (and\r
+-encrypted) messages can be parsed directly by libnotmuch so they are\r
+useful in other contexts as well\r
+\r
+ * what key management model does this code assume and/or enforce?  how\r
+do we know which keys belong to which users?\r
+\r
+Thanks for working on notmuch!\r
+\r
+Regards,\r
+\r
+       --dkg\r
+\r
+\r
+--9GtqB0nCORLb3dPEnV7SGNs5BUj58uoxD\r
+Content-Type: application/pgp-signature; name="signature.asc"\r
+Content-Description: OpenPGP digital signature\r
+Content-Disposition: attachment; filename="signature.asc"\r
+\r
+-----BEGIN PGP SIGNATURE-----\r
+Version: GnuPG v1\r
+Comment: Using GnuPG with Icedove - http://www.enigmail.net/\r
+\r
+iQJ8BAEBCgBmBQJTH0/dXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w\r
+ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRFQjk2OTEyODdBN0FEREUzNzU3RDkxMUVB\r
+NTI0MDFCMTFCRkRGQTVDAAoJEKUkAbEb/fpcGBAP/14WqoZtyOu4sAzge4hYZ5TZ\r
+tWEDmujJsLn6JWQqekSxlRcs7oq1bBfpD/9wq1cHU7jgD3vKnHgJ+7eFsQOds5W7\r
+yHtVh8lGBmdI3ip1eeo/YJy3ApNb5iJ98xbHFGEq5dRwfCk6DuHGj2GzFabY6+kv\r
+Ow/LEMsjNJ2Yt7ZRPJuJcwpbPVzM1QcZUdcUZa/ROFZEu7XyxvzzGxPi41fvxQb+\r
+Gn6gwuCzwSfulMBqtrNUSEHvOTAuQslHNiwpYL6l9F6RYNWliFwMJBtd2+fVb3/V\r
+9NkgLD3kzEkKK3GyOfWWqF7OO4iBllu8u1m3gWk691tR/UQ2dV5OuAvxeDQ4LzvF\r
+X47+McrSfZoRTkgJQdEIy6DDOpoES0hsEufa9Kh8E8S//Wfzg/FVJRDLwQP1JZLe\r
+EaUNwl4rYd71Z8B/37au46QoxGpwjkJnQ0ygh/IAR7Ql13qfUTEpJ5BGVHwhdUWl\r
+3LNFUkkQoSqw3D2UnxcbFvgCFt8OT8KqcnHA0g3FPO9XorjbSUILJpA92LdUxFhs\r
+BdHmwtVoNu7DArtMPmy0WteWzLcz0rUg739KzryVeDeulHoxweQOFkDQvl/ZqMgL\r
+yVhhjiVcQxtU0xPVlb5mEsybfrE2+osbLzDbISN4aObLHO8qNomOUyWYYSc5zLyV\r
+hcWqFkIZ3+K57xp341cH\r
+=cwod\r
+-----END PGP SIGNATURE-----\r
+\r
+--9GtqB0nCORLb3dPEnV7SGNs5BUj58uoxD--\r